Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

AuthX - Extended authentication support (portable and router-friendly) #19590

Merged
merged 25 commits into from
Mar 3, 2021
Merged

AuthX - Extended authentication support (portable and router-friendly) #19590

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
25 commits
Select commit Hold shift + click to select a range
e09616f
CRM_Core_Invoker - Emit authorization event
totten Feb 12, 2021
bb1d197
CRM_Core_Session - Add option 'useFakeSession()' for stateless requests
totten Feb 13, 2021
7946d65
authx - Generate skeleton
totten Feb 12, 2021
9e99ef4
authx - Draft README and info.xml
totten Feb 12, 2021
7b61742
authx - Declare settings for allowed flows and credentials
totten Feb 12, 2021
aef9279
authx - Add page to check identity ('civicrm/authx/id')
totten Feb 12, 2021
7547226
authx - Add the AllFlowsTest
totten Feb 12, 2021
3a429e3
authx - Primary implementation, including Drupal 7 and WordPress
totten Feb 12, 2021
b9cbf1a
authx - Support JWT credentials
totten Feb 16, 2021
d0528c9
authx - Support login/logout flow
totten Feb 16, 2021
682f265
(REF) AllFlowsTest - Misc cleanup
totten Feb 17, 2021
1abd042
authx - Support Backdrop users+sessions
totten Feb 16, 2021
17211d2
authx - Support Drupal 8 users+sessions
totten Feb 16, 2021
6ea9067
authx - Support Joomla users+sessions
totten Feb 16, 2021
5395178
authx - Make it safe to load the 'authx.settings.php' file multiple t…
totten Feb 20, 2021
b482c19
distmaker - Add authx to tarball
totten Feb 17, 2021
9c818a6
AllFlowsTest - Add test for checking contact+user vs contact-only
totten Feb 19, 2021
93628c7
AllFlowsTest - Add cases with multiple identities from the same browser
totten Feb 19, 2021
17802aa
(REF) AllFlowsTest - Cleanup helper signature
totten Feb 20, 2021
8f35c19
AllFlowsTest - When executing on a new deployment, ensure demo user h…
totten Feb 20, 2021
1c61351
authx - Support Joomla users+sessions - Prevent leaks among stateless…
totten Feb 20, 2021
17df918
authx - The "already logged in" check should be less sensitive to int…
totten Feb 23, 2021
a196e83
authx - If using auto-login, then use a redirect to hide the `?_authx…
totten Feb 23, 2021
8a01c43
(REF) Authenticator - Extract field $authxUf
totten Feb 26, 2021
0ecb5a5
(REF) authx - Reorganize internal methods to use an auth-request object
totten Feb 26, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
(REF) authx - Reorganize internal methods to use an auth-request object 
This significantly trims down the `auth()` method and rearranges as three
methods. A data object is passed between the three methods. The main method:

```
    if ($principal = $this->checkCredential($tgt)) {
      $tgt->setPrincipal($principal);
    }
    $this->checkPolicy($tgt);
    $this->login($tgt);
```

This arrangement lays the groundwork for implementing more varied policies.
For example, we could have a policy where the ability to login via
username/password/api_key is dictated by the user's role or permissions.
  • Loading branch information
@totten
totten committed Mar 2, 2021
commit 0ecb5a5f13df00e73b6b249b5c34ddf2ecfd8489
Loading