forgejo/models/migrations
Johnny Oskarsson a07e67d9cc
Minimal OpenID Connect implementation (#14139)
This is "minimal" in the sense that only the Authorization Code Flow
from OpenID Connect Core is implemented.  No discovery, no configuration
endpoint, and no user scope management.

OpenID Connect is an extension to the (already implemented) OAuth 2.0
protocol, and essentially an `id_token` JWT is added to the access token
endpoint response when using the Authorization Code Flow.  I also added
support for the "nonce" field since it is required to be used in the
id_token if the client decides to include it in its initial request.

In order to enable this extension an OAuth 2.0 scope containing
"openid" is needed. Other OAuth 2.0 requests should not be impacted by
this change.

This minimal implementation is enough to enable single sign-on (SSO)
for other sites, e.g. by using something like `mod_auth_openidc` to
only allow access to a CI server if a user has logged into Gitea.

Fixes: #1310

Co-authored-by: 6543 <6543@obermui.de>
Co-authored-by: Lunny Xiao <xiaolunwen@gmail.com>
Co-authored-by: zeripath <art27@cantab.net>
2021-01-02 00:33:27 +08:00
..
migrations.go Minimal OpenID Connect implementation (#14139) 2021-01-02 00:33:27 +08:00
v70.go
v71.go
v72.go
v73.go
v74.go
v75.go
v76.go
v77.go
v78.go
v79.go
v80.go
v81.go
v82.go
v83.go
v84.go
v85.go
v86.go
v87.go
v88.go
v89.go
v90.go
v91.go
v92.go
v93.go
v94.go
v95.go
v96.go Add a storage layer for attachments (#11387) 2020-08-18 12:23:45 +08:00
v97.go
v98.go
v99.go
v100.go
v101.go
v102.go Use transaction in V102 migration (#12395) 2020-08-06 19:16:49 +01:00
v103.go
v104.go
v105.go
v106.go
v107.go
v108.go
v109.go
v110.go
v111.go Fix bug of migraition v111 (#12738) 2020-09-06 11:34:51 +01:00
v112.go Add a storage layer for attachments (#11387) 2020-08-18 12:23:45 +08:00
v113.go
v114.go
v115.go Avatars and Repo avatars support storing in minio (#12516) 2020-10-14 21:07:51 +08:00
v116.go
v117.go
v118.go
v119.go
v120.go
v121.go
v122.go
v123.go
v124.go
v125.go
v126.go
v127.go
v128.go
v129.go
v130.go
v131.go
v132.go
v133.go
v134.go
v135.go
v136.go
v137.go
v138.go
v139.go
v140.go
v141.go
v142.go
v143.go
v144.go Don't use legacy method to send Matrix Webhook (#12348) 2020-07-30 18:04:19 -04:00
v145.go Fix Migration 145 on MSSQL if varchar is changed to nvarchar (#12445) 2020-08-10 16:01:10 +03:00
v146.go Kanban board (#8346) 2020-08-16 23:07:38 -04:00
v147.go Fix bug on migration 147 (#12565) 2020-08-22 18:12:40 +01:00
v148.go [BugFix] Fix comment broken issue ref dependence (#12651) 2020-09-04 09:36:56 +08:00
v149.go Add Created & Updated to Milestone (#12662) 2020-09-05 13:38:54 -04:00
v150.go Add Primary Key to Topic and RepoTopic (#12639) 2020-09-10 20:45:01 +01:00
v151.go Add migration for password algorithm change (#12784) 2020-09-15 18:02:41 -04:00
v152.go Add configurable Trust Models (#11712) 2020-09-20 00:44:55 +08:00
v153.go Add team support for review request (#12039) 2020-10-12 20:55:13 +01:00
v154.go Save TimeStamps for Star, Label, Follow, Watch and Collaboration to Database (#13124) 2020-10-12 20:01:57 -04:00
v155.go [Enhancement] Allow admin to merge pr with protected file changes (#12078) 2020-10-13 14:50:57 -04:00
v156.go Some improvements for v156 (#13497) 2020-11-10 13:44:45 +02:00
v157.go Ensure topics added using the API are added to the repository (#13285) 2020-10-24 15:11:30 +01:00
v158.go Comments on review should have the same sha (#13448) 2020-11-09 01:15:09 -05:00
v159.go Include OriginalAuthor in Reaction constraint (#13505) 2020-11-10 22:37:11 +00:00
v160.go Add block on official review requests branch protection (#13705) 2020-11-28 21:30:46 +02:00
v161.go Move webhook type from int to string (#13664) 2020-12-08 11:41:14 +01:00
v162.go Fix broken migration on webhook (#13911) 2020-12-09 17:20:13 +00:00
v163.go Change topic name size from 25 to 50 (#14150) 2020-12-26 23:28:47 +00:00
v164.go Minimal OpenID Connect implementation (#14139) 2021-01-02 00:33:27 +08:00