1. 001dcd2 Redirect to index on auth-failure if user not logged in (fixes #192) by Akron · 1 year, 10 months ago
  2. 9ccf69a Improve error handling for non-redirect errors by Akron · 1 year, 10 months ago
  3. 9d82690 Improve security of redirect URIs (fixes #166) by Akron · 1 year, 10 months ago
  4. 2c142ab Make scope a requirement when authorizing a client by Akron · 1 year, 10 months ago
  5. db1f467 Fix unknown client handling and replace client info API (fixes #181) by Akron · 1 year, 10 months ago
  6. 1009e19 Security update by Akron · 1 year, 11 months ago
  7. 5ea0f5d Fix error handling when no client_id is given by Akron · 1 year, 10 months ago
  8. 340c128 Introduced StartWithBackend plugin by Akron · 2 years ago
  9. b427992 Add KrillIndexer plugin by Akron · 2 years ago
  10. e40933b Set version via environment variable by Akron · 2 years ago
  11. d8db672 Add KALAMAR_PLUGINS environment variable by Akron · 2 years ago
  12. 53a171e Introduce environment variable KALAMAR_CLIENT_FILE in auth plugin by Akron · 2 years ago
  13. c9e53cd Remove deprecated 'auth_support' parameter by Akron · 2 years ago
  14. e4276a9 Upgrade version number by Akron · 2 years ago
  15. 66ef3b5 Support client_file parameter as an alternative to client_id and client_secret by Akron · 2 years ago
  16. 3340ae7 Add command to generate super_client_info files by Akron · 2 years ago
  17. b774905 Improve token filtering in leaf nodes (fixes #168) by Akron · 2 years, 4 months ago
  18. 99968a9 Fix handling of public clients by Akron · 2 years, 6 months ago
  19. 61850b9 Increase maximum query length from 1000 to 4096 by Marc Kupietz · 2 years, 5 months ago
  20. d91a1ca Remove JWT flow for authorization by Akron · 2 years, 6 months ago v0.45
  21. 8627609 Set expiration of cookies in Auth plugin to 3 days by Akron · 2 years, 6 months ago
  22. 9fa7cc5 Reintroduce email support for login (fixes #165; reverts #e208d30513f7cfafb6405324fee5b88902dcf2fb) - 2 by Akron · 2 years, 7 months ago
  23. 6b75d12 Show source code of registered plugins by Akron · 2 years, 7 months ago
  24. 408bc7c Fetch client information before request grant by Akron · 2 years, 7 months ago
  25. 9f2ad34 Support plugin source on registration by Akron · 2 years, 7 months ago
  26. 8dc8b13 Added confidential marker in client view by Akron · 2 years, 7 months ago
  27. b45300f Mark confidential clients as slightly more secure by Akron · 2 years, 7 months ago
  28. a8efaa9 OAuth client authorization handling (Fixes #54) by Akron · 2 years, 8 months ago
  29. b6b156e Support confidential clients by Akron · 2 years, 8 months ago
  30. 6227fba Introduce korapxml2krill command by Akron · 3 years, 2 months ago
  31. 653461e Introduce tei2korapxml command by Akron · 3 years, 2 months ago
  32. c23ce66 Format page numbers in pagination by Akron · 3 years ago
  33. 3d68ac3 Prevent Autosecret migration if old secret is > 22 chars (fixes #157) by Akron · 2 years, 11 months ago
  34. 5799740 Use containerMenu as a base for HintMenu instead of regular menu by Leo Repp · 3 years, 3 months ago
  35. 6a228db Fix wrong handling of utf8 that could lead to server crashes by Akron · 3 years, 1 month ago
  36. a4b17f7 Support inactive buttongroup items by Akron · 3 years, 1 month ago
  37. 638fc97 Disable CSP for development purposes by Akron · 3 years, 2 months ago
  38. 1419aad Add demo server plugin by Akron · 3 years, 2 months ago
  39. a7258cb Fold all top-level navigation items in doc by Akron · 3 years, 2 months ago
  40. dd5ab89 Tutorial: Introduce legacy links by Akron · 3 years, 3 months ago
  41. 64833cc Fix behaviour of folded subdirectories in navigation by Akron · 3 years, 3 months ago
  42. fcadda6 Tutorial: rename korap to devlopment also internally by Marc Kupietz · 3 years, 3 months ago
  43. da903dd Tutorial: move dev/team section to the bottom by hebasta · 3 years, 4 months ago
  44. aef5cf2 Remove X-Frame-Options in favor of CSP frame-ancestors by Akron · 3 years, 5 months ago
  45. cce055c Fix error message in case of server error by Akron · 3 years, 5 months ago
  46. 5f75641 Added 'copy-to-clipboard' for client ids by Akron · 3 years, 5 months ago
  47. 116eace Add option to toggle password fields by Akron · 3 years, 6 months ago
  48. ff08811 Fix rendering error in not authenticated oauth route by Akron · 3 years, 5 months ago
  49. 276afc0 Update client list API according to API change by Akron · 3 years, 6 months ago
  50. 013c39f Fix integration of form buttons in button groups by Akron · 3 years, 6 months ago
  51. e997bb5 Improve localization of OAuth2 client and token management by Akron · 3 years, 6 months ago
  52. 7fb78d6 Deprecate JWT flow in favor of OAuth2 flow by Akron · 3 years, 6 months ago
  53. ad011bb Disable caching in auth routes by Akron · 3 years, 6 months ago
  54. 041ca4d Reorganize OAuth endpoints by Akron · 3 years, 6 months ago
  55. c1aaf93 Allow to revoke tokens by Akron · 3 years, 6 months ago
  56. 9ffb4a3 Style token list by Akron · 3 years, 6 months ago
  57. aa5cf80 Fix bug where missing documentation raises exceptions in Mojo >= 9.0 by Akron · 3 years, 6 months ago
  58. 2c2ddbd Introduce autorotating secrets for security by Akron · 3 years, 9 months ago
  59. abdf9a9 Added query reference plugin to connect and mock query reference api endpoints by Akron · 3 years, 11 months ago
  60. bc94a9c List tokens of a client by Akron · 3 years, 8 months ago
  61. dc50c89 Update OAuth2 management parameters to follow the new scheme of Kustvakt by Akron · 3 years, 7 months ago
  62. 26244a7 Change samesite cookie value to 'none' to allow for session riding by Akron · 3 years, 7 months ago
  63. 83209f7 Issue a new token for a public client by Akron · 3 years, 10 months ago
  64. 0e983a0 Add frame-src to Piwik plugin as * may be overwritten by Akron · 3 years, 9 months ago
  65. 1011daf Make mailto: embedding CSP compliant by Akron · 3 years, 9 months ago
  66. baae980 Fix working directory for default plugin configurations by Akron · 3 years, 9 months ago
  67. 08952df Move tracking asset to simplify proxy configuration by Akron · 3 years, 9 months ago
  68. 30e7bc7 Introduce Kalamar::Request by Akron · 3 years, 9 months ago
  69. be60634 Remove debrecated API methods by Akron · 3 years, 9 months ago
  70. 03c3c9d Support Mojolicious >= 9.0 by Akron · 3 years, 9 months ago
  71. 87468c2 Define resources in Makefile by Akron · 3 years, 10 months ago
  72. 1871f03 Support CSP in overview image by Akron · 3 years, 10 months ago
  73. 0a4d36e Support CSP in Matomo/Piwik plugin by Akron · 3 years, 10 months ago
  74. 8dda1c6 Add CSP compliance to plugins by Akron · 3 years, 10 months ago
  75. cb5c171 Make notifications framework CSP compliant by Akron · 3 years, 10 months ago
  76. 52b32d0 Introduce X-XSS-Protection header by Akron · 3 years, 10 months ago
  77. 88fc41c Introduce X-Frame-Origin header by Akron · 3 years, 10 months ago
  78. 5b6d727 Improve CORS by Akron · 3 years, 10 months ago
  79. 807225b Send 'nosniff' header (fixes #97) by Akron · 3 years, 11 months ago
  80. 1bee5a4 Introduce HSTS header for https_only conf by Akron · 3 years, 11 months ago
  81. b7b91c5 Remove no-js declaration in nonce-enabled inline script by Akron · 3 years, 10 months ago
  82. dac9561 Fixed nonce to be base64 by Akron · 3 years, 10 months ago
  83. c4ea2e5 Adopt CSP plugin for main headers by Akron · 3 years, 10 months ago
  84. eb53ac3 Added nonce helper to CSP plugin by Akron · 3 years, 10 months ago
  85. 354f453 Establish CSP plugin by Akron · 3 years, 10 months ago
  86. 8f8deda Remove default endpoint from config file by Akron · 3 years, 11 months ago
  87. bc6b3f2 Introduce CSP headers to Kalamar (start of #72) by Akron · 3 years, 11 months ago
  88. 337f15d Introduce CORS headers in proxy by Akron · 3 years, 11 months ago
  89. 8f9aae5 Update for recent version of Mojolicious by Akron · 4 years ago
  90. e208d30 Remove email support from login (fixes #99) by Akron · 4 years ago
  91. 58f7c81 Bump version by Akron · 4 years, 2 months ago
  92. c58bfc4 Fix pipes behaviour in mock server to be consistent with Kustvakt by Akron · 4 years, 2 months ago
  93. fd49bab Forward 'pipes' instead of 'pipe' by Akron · 4 years, 2 months ago
  94. ccd9d7d Introduce 'Plugins' plugin to embed external services by Akron · 4 years, 2 months ago
  95. 88c26b1 Exclude search results from robot indices (closes #120) by Akron · 4 years, 3 months ago
  96. 7b9a196 Forward pipe to backend by Akron · 4 years, 5 months ago
  97. e7ad84e Add information on secret file to readme by Akron · 4 years, 5 months ago
  98. 3b3c7af Fix order of promises in login to not wrongfully congratulate on failing login by Akron · 4 years, 7 months ago
  99. 27031aa Encourage login on zero matches (fixes #67) by Akron · 4 years, 7 months ago
  100. 7c87c1a Establish 'after_search' hook by Akron · 4 years, 7 months ago