status-im
/
infra-role-oauth-proxy
mirror of https://github.com/status-im/infra-role-oauth-proxy.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
36 Commits 2 Branches 0 Tags 127 KiB
Commit Graph

36 Commits

Author SHA1 Message Date
Alexis Pentori 6e9a3bc34c
migration docker compose v2 
Signed-off-by: Alexis Pentori <alexis@status.im>
 2024-06-27 16:57:03 +02:00
Jakub Sokołowski 9119f7af1f
config: use correct scope for keycloak provider 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-06-10 13:43:21 +02:00
Jakub Sokołowski e984edd9e2
fix logo URL by using status.app assets 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-05-24 11:43:24 +02:00
Jakub Sokołowski 64ee6a0d39
meta: use full names of Ansible roles 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-03-10 13:40:17 +01:00
Jakub Sokołowski f407d25334
fix default scope for GitHub auth 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-02-19 18:43:09 +01:00
Jakub Sokołowski 7da3a17858
add support for Keycloak provider 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-02-13 17:36:17 +01:00
Jakub Sokołowski e23664d0c3
tasks: separate into docker and consul files 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-02-13 17:35:57 +01:00
Jakub Sokołowski 8b03488ae5
upgrade from 7.5.1 to 7.6.0 
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.6.0

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2024-02-13 17:34:39 +01:00
Jakub Sokołowski 1fe033064c
support providing optional --github-team flag 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-09-26 09:15:00 +02:00
Jakub Sokołowski 0cab2cd31f
upgrade from 7.4.0 to 7.5.1 to fix CVEs 
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.5.1
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.5.0

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-09-25 09:18:49 +02:00
Jakub Sokołowski b889d9588f
add arm64 support and version to consul service 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-09-25 09:18:29 +02:00
Jakub Sokołowski c1a6684e97
consul: allow overriding Consul service port 
Useful when an Nginx proxy is used.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-06-28 17:43:32 +02:00
Jakub Sokołowski b8f73add0f
docker: add --scope flag to fix GH 500 errors 
https://github.com/oauth2-proxy/oauth2-proxy/issues/1669

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-06-19 14:54:13 +02:00
Jakub Sokołowski 61e77e7167
upgrade from 7.2.1 to 7.4.0 
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.4.0

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2023-06-07 19:17:45 +02:00
Jakub Sokołowski ff690889d9
add oauth_skip_auth_routes variable 
Useful for excluding `/webhook` from Caddy-git.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-08-09 00:11:01 +02:00
Jakub Sokołowski 121d5c05ae
compose: specify project_name to avoid conflicts 
Otherwise if there are multiple oauth-proxy configurations on a single
host the containers will replace on another when recreated.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-07-14 12:51:17 +02:00
Jakub Sokołowski b551ae2126
consul: don't use ssl-proxy-backend as service name 
We now filter services for `ssl-proxy` using `ssl-proxy-backend` tag.

https://github.com/status-im/infra-hq/issues/73

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-25 16:16:12 +01:00
Jakub Sokołowski f233674d01
set Status logo URL by default 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-23 22:22:57 +01:00
Jakub Sokołowski 70b5d4c6ae
add --reverse-proxy=true flag 
"are we running behind a reverse proxy, controls whether headers like X-Real-IP are accepted and allows X-Forwarded-{Proto,Host,Uri} headers to be used on redirect selection"

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-23 21:50:43 +01:00
Jakub Sokołowski 456c2d31fc
add ssl-proxy-backend Consul service definition 
https://github.com/status-im/infra-hq/issues/73

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-23 10:10:28 +01:00
Jakub Sokołowski 7b461e3996
default to listening on 0.0.0.0 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-23 10:08:55 +01:00
Jakub Sokołowski 4dd42c56a4
convert setup to use Docker Compose 
Makes it easier to debug and modify the setup manually.

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-03-17 14:44:51 +01:00
Jakub Sokołowski b1b60917e8
upgrade 7.1.3 to 7.2.1 
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.2.0
https://github.com/oauth2-proxy/oauth2-proxy/releases/tag/v7.2.1

Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2022-01-17 13:25:58 +01:00
Jakub Sokołowski 05ef1410ab
drop adding iptables rule for opening oauth port 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2021-08-16 11:06:54 +02:00
Jakub Sokołowski 567b4cf59d
add missing iptables rules handler 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2021-05-02 10:17:28 +02:00
Jakub Sokołowski 64639425de
upgrade 5.0.0 to 7.0.0 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2021-02-10 13:27:53 +01:00
Jakub Sokołowski 0d1ce1ce3b
add support for specifying networks 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-10-15 20:39:40 +02:00
Jakub Sokołowski eeb96e6dad
remove unused file 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-10-15 20:35:49 +02:00
Jakub Sokołowski ef357cd2ae
fix warnings about converting int to string 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-18 16:08:53 +01:00
Jakub Sokołowski 14c5cd2609
use 'is not none' instead of is 'is defined' 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-10 01:37:08 +01:00
Jakub Sokołowski 2cd2995953
remove useless debug 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-08 12:13:35 +01:00
Jakub Sokołowski 4e260f4ec8
default to accessing docker host for upstream 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-05 14:50:06 +01:00
Jakub Sokołowski 10fed42d28
upgrade 4.0.0 to 5.0.0 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-03 11:28:32 +01:00
Jakub Sokołowski 3d47721507
fix formatting 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-03 11:27:02 +01:00
Jakub Sokołowski b4f377b8fa
add role files 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-03 11:26:03 +01:00
Jakub Sokołowski f3e53e603f
empty initial commit 
Signed-off-by: Jakub Sokołowski <jakub@status.im>
 2020-02-03 11:23:48 +01:00