clinch

Author	SHA1	Message	Date
Dan Milne	ddcb297c74	Add comprhensive csp polices and reporting endpoint. Add environment support require for protecting against rebinding attacks on ip addresses Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-29 15:37:53 +11:00
Dan Milne	6f7de94623	Rate limit the forward_auth controller Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-29 13:55:36 +11:00
Dan Milne	baa75a3456	Use the IPAddr library to detect ipv4 and ipv6 addresses Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-29 13:47:23 +11:00
Dan Milne	7074242907	Update docs. Implemented a one-time token to work around domain cookies not being immediately return by the browser. Reduce db queries on /api/verify requests.	2025-10-28 08:27:19 +11:00
Dan Milne	da6fd5b800	More logs	2025-10-28 08:27:19 +11:00
Dan Milne	88428bfd97	Add configuration foward-auth headers	2025-10-26 14:41:20 +11:00
Dan Milne	a21b21ace2	remove unneeded action Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-24 11:43:34 +11:00
Dan Milne	ad70841689	Pass the redirect url through the forms Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-24 11:36:11 +11:00
Dan Milne	ee4af20000	Updates	2025-10-23 23:55:21 +11:00
Dan Milne	7200a6735f	OK - 302 + Location Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-23 23:52:01 +11:00
Dan Milne	e3e2a565e7	Oh - we do use a 401, but with a Location header	2025-10-23 22:27:11 +11:00
Dan Milne	19cc425f94	Annnd let extract the correct headers so we can redirect	2025-10-23 22:16:28 +11:00
Dan Milne	96a9ce2258	Redirect when auth fails - I think!	2025-10-23 22:07:58 +11:00
Dan Milne	7f075391c1	Switch user status to enum Some checks failed CI / scan_ruby (push) Has been cancelled Details CI / scan_js (push) Has been cancelled Details CI / lint (push) Has been cancelled Details CI / test (push) Has been cancelled Details CI / system-test (push) Has been cancelled Details	2025-10-23 20:24:19 +11:00

14 Commits