1. aef5cf2 Remove X-Frame-Options in favor of CSP frame-ancestors by Akron · 3 years, 6 months ago
  2. cce055c Fix error message in case of server error by Akron · 3 years, 6 months ago
  3. dc0b3ab Show settings only on demand by Akron · 3 years, 6 months ago
  4. ff08811 Fix rendering error in not authenticated oauth route by Akron · 3 years, 7 months ago
  5. 1d09b53 Add settings menu by default by Akron · 3 years, 6 months ago
  6. 276afc0 Update client list API according to API change by Akron · 3 years, 7 months ago
  7. e997bb5 Improve localization of OAuth2 client and token management by Akron · 3 years, 7 months ago
  8. 7fb78d6 Deprecate JWT flow in favor of OAuth2 flow by Akron · 3 years, 7 months ago
  9. ad011bb Disable caching in auth routes by Akron · 3 years, 7 months ago
  10. 041ca4d Reorganize OAuth endpoints by Akron · 3 years, 7 months ago
  11. c1aaf93 Allow to revoke tokens by Akron · 3 years, 7 months ago
  12. aa5cf80 Fix bug where missing documentation raises exceptions in Mojo >= 9.0 by Akron · 3 years, 7 months ago
  13. 2c2ddbd Introduce autorotating secrets for security by Akron · 3 years, 10 months ago
  14. abdf9a9 Added query reference plugin to connect and mock query reference api endpoints by Akron · 4 years ago
  15. 3b3a434 Update dependency to recent version of Mojo by Akron · 3 years, 7 months ago
  16. bc94a9c List tokens of a client by Akron · 3 years, 9 months ago
  17. dc50c89 Update OAuth2 management parameters to follow the new scheme of Kustvakt by Akron · 3 years, 8 months ago
  18. 69481a4 Added tests for Mojo >= 9.11 compat by Akron · 3 years, 9 months ago
  19. 83209f7 Issue a new token for a public client by Akron · 4 years ago
  20. 0e983a0 Add frame-src to Piwik plugin as * may be overwritten by Akron · 3 years, 10 months ago
  21. 1011daf Make mailto: embedding CSP compliant by Akron · 3 years, 10 months ago
  22. 08952df Move tracking asset to simplify proxy configuration by Akron · 3 years, 10 months ago
  23. 30e7bc7 Introduce Kalamar::Request by Akron · 3 years, 10 months ago
  24. 690066c Enable guided tour with CSP switched on by Akron · 4 years ago
  25. 0a4d36e Support CSP in Matomo/Piwik plugin by Akron · 4 years ago
  26. 8dda1c6 Add CSP compliance to plugins by Akron · 4 years ago
  27. cb5c171 Make notifications framework CSP compliant by Akron · 4 years ago
  28. 52b32d0 Introduce X-XSS-Protection header by Akron · 4 years ago
  29. 88fc41c Introduce X-Frame-Origin header by Akron · 4 years ago
  30. 5b6d727 Improve CORS by Akron · 4 years ago
  31. 807225b Send 'nosniff' header (fixes #97) by Akron · 4 years ago
  32. 1bee5a4 Introduce HSTS header for https_only conf by Akron · 4 years ago
  33. b7b91c5 Remove no-js declaration in nonce-enabled inline script by Akron · 4 years ago
  34. a24af0a Add citation configuration in form of a test by Akron · 4 years ago
  35. eb53ac3 Added nonce helper to CSP plugin by Akron · 4 years ago
  36. 354f453 Establish CSP plugin by Akron · 4 years ago
  37. 8f8deda Remove default endpoint from config file by Akron · 4 years ago
  38. bc6b3f2 Introduce CSP headers to Kalamar (start of #72) by Akron · 4 years ago
  39. 337f15d Introduce CORS headers in proxy by Akron · 4 years ago
  40. 8f9aae5 Update for recent version of Mojolicious by Akron · 4 years ago
  41. e208d30 Remove email support from login (fixes #99) by Akron · 4 years, 1 month ago
  42. c58bfc4 Fix pipes behaviour in mock server to be consistent with Kustvakt by Akron · 4 years, 3 months ago
  43. ccd9d7d Introduce 'Plugins' plugin to embed external services by Akron · 4 years, 3 months ago
  44. 88c26b1 Exclude search results from robot indices (closes #120) by Akron · 4 years, 4 months ago
  45. 7b9a196 Forward pipe to backend by Akron · 4 years, 6 months ago
  46. 18a2a27 Fixes a test that weirdly fails in recent versions of Mojolicious by Akron · 4 years, 6 months ago
  47. f1f1df3 Merge "Fix order of promises in login to not wrongfully congratulate on failing login" by Akron · 4 years, 7 months ago
  48. 3b3c7af Fix order of promises in login to not wrongfully congratulate on failing login by Akron · 4 years, 8 months ago
  49. 3e0fdc1 Test for long passwords (as this surprisingly broke in older versions) by Akron · 4 years, 8 months ago
  50. 27031aa Encourage login on zero matches (fixes #67) by Akron · 4 years, 8 months ago
  51. 7c87c1a Establish 'after_search' hook by Akron · 4 years, 8 months ago
  52. 4cdc4fc Add content area behind search results in templates by Akron · 4 years, 8 months ago
  53. e8fdc81 Merge "Declare proxy as stable and enable by default" by Akron · 4 years, 8 months ago
  54. 8a21b4d Declare proxy as stable and enable by default by Akron · 4 years, 9 months ago
  55. 17de86e Add OAuth client information page by Akron · 4 years, 9 months ago
  56. 1a9d5be Added support for OAuth2 client unregistration by Akron · 4 years, 9 months ago
  57. 3c390c4 Improve status codes and support HTML match responses by Akron · 4 years, 9 months ago
  58. 0f1b93b Added support for OAuth2 client listing by Akron · 4 years, 10 months ago
  59. 5999212 Initial token management by Akron · 5 years ago
  60. d00b427 Improve proxy for redirects by Akron · 5 years ago
  61. 07d8de6 Document the API URI by Akron · 5 years ago
  62. 90be03b Support X-Forwarded-Host name for proxy by Akron · 5 years ago
  63. 23ab047 Make proxy timeouts configurable by Akron · 5 years ago
  64. b5b70d0 Catch timeouts in proxy by Akron · 5 years ago
  65. 909ed08 Fixed matchID transformation to deal with textSigles having dashes by Akron · 5 years ago
  66. f7ec444 Added settings and navi helpers by Akron · 5 years ago
  67. d512ea6 Generalized the usage of the navigation helper by introducing a 'realm' parameter by Akron · 5 years ago
  68. 3cfa26d Added 'realm' parameter to 'embedded_link_to' helper by Akron · 5 years ago
  69. 254fe21 Simplified documentation routing by Akron · 5 years ago
  70. 9490e3b Generalize documentation helpers by Akron · 5 years ago
  71. 41a190a Cleanup helper plugins to separate page helpers from functional helpers by Akron · 5 years ago
  72. 4cefe1f Revoke refresh token on logout (cherrypicked) by Akron · 5 years ago
  73. cdfd9d5 Implement token refresh mechanism by Akron · 5 years ago
  74. 4c7cf95 Fix pagination by not repeating page value in URL by Akron · 5 years ago
  75. 91a7685 Fix treatment of legacy 'collection' parameter by Akron · 5 years ago
  76. a130fa5 Emit 'after_render' hook in proxy to make requests accessible for post processing by Akron · 5 years ago
  77. 0c4cd22 Rename all cookies to be instance-independent (Requires relogin) - fixes #94 by Akron · 5 years ago
  78. 1bd65d9 Updated annotation documentation by Akron · 5 years ago
  79. b7876a8 Enable experimental proxy via configuration option 'experimental_proxy' by Akron · 5 years ago
  80. 5fa61e9 Update API for statistics (replace corpusQuery parameters with cq) by Akron · 5 years ago
  81. cd42a14 Deprecated 'collection' parameter in favor of 'cq' - fixes #92 by Akron · 5 years ago
  82. 56b3d0d Close connections in proxy as a workaround for problematic connection handling in embedding proxies by Akron · 5 years ago
  83. 35adb0e Merge "When authorization header exists, do not introduce token (required for proxying)" by Akron · 5 years ago
  84. 63d963b Added experimental proxy route to backend api - fixes #91 by Akron · 5 years ago
  85. 4796e00 When authorization header exists, do not introduce token (required for proxying) by Akron · 5 years ago
  86. 8bbbecf Added token refresh helper for OAuth2 by Akron · 5 years ago
  87. 33f5c67 Optionally replace JWT request flow with OAuth2 user credential flow by Akron · 6 years ago
  88. 7eb32c6 Remove deprecated auth_support support by Akron · 6 years ago
  89. 951a995 Fix path for plugin server demo by Akron · 6 years ago
  90. 751e9e4 Deal with large numerical values in statistics - fixes #87 by Akron · 6 years ago
  91. a3c353c Mark total results for cache in case of timeout - fixes #84 by Akron · 6 years ago
  92. 3d67306 Fix handling of login errors by Akron · 6 years ago
  93. 1b1a271 Make doc navigation extensible by Akron · 6 years ago
  94. bc33beb Introduce #search element as required in failure template by Akron · 6 years ago v0.31
  95. 2d01d29 content_block_ok is not enough to check for existing sidebar content by Akron · 6 years ago
  96. c82b1bc Introduce headerButtonGroup content_block by Akron · 6 years ago
  97. a9c8b0e Added 'sidebar' content block and make login form part of Auth plugin by Akron · 6 years ago
  98. 864c293 Decoupled authentication from core and introduced as a plugin by Akron · 6 years ago
  99. b89863a Set custom action titles for Ajax request to improve Piwik integration by Akron · 6 years ago v0.30
  100. 7c75841 Support piwik.embed directive by Akron · 6 years ago