peezy-tech/jojo
2
0
Fork 0
mirror of https://codeberg.org/forgejo/forgejo.git synced 2026-05-12 22:10:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
jojo/services/auth/method
History
Mathieu Fenniak e5eb5f8e63 feat: allow Authorized Integrations to have multiple values for a claim match (#12482) 
Adds new Authorized Integration claim comparison rules for "in a list" and "in a list of globs", which would be required to permit multiple Forgejo Action events to match a JWT (per [design work](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-14510514), [comment](https://codeberg.org/forgejo/forgejo/issues/3571#issuecomment-14512185)).

## Checklist

The [contributor guide](https://forgejo.org/docs/next/contributor/) contains information that will be helpful to first time contributors. All work and communication must conform to Forgejo's [AI Agreement](https://codeberg.org/forgejo/governance/src/branch/main/AIAgreement.md). There also are a few [conditions for merging Pull Requests in Forgejo repositories](https://codeberg.org/forgejo/governance/src/branch/main/PullRequestsAgreement.md). You are also welcome to join the [Forgejo development chatroom](https://matrix.to/#/#forgejo-development:matrix.org).

### Tests for Go changes

- I added test coverage for Go changes...
  - [x] in their respective `*_test.go` for unit tests.
  - [ ] in the `tests/integration` directory if it involves interactions with a live Forgejo server.
- I ran...
  - [x] `make pr-go` before pushing

### Documentation

- [ ] I created a pull request [to the documentation](https://codeberg.org/forgejo/docs) to explain to Forgejo users how to use this change.
- [x] I did not document these changes and I do not expect someone else to do it.

### Release notes

- [ ] This change will be noticed by a Forgejo user or admin (feature, bug fix, performance, etc.). I suggest to include a release note for this change.
- [x] This change is not visible to a Forgejo user or admin (refactor, dependency upgrade, etc.). I think there is no need to add a release note for this change.

Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/12482
Reviewed-by: Gusted <gusted@noreply.codeberg.org>
2026-05-10 04:52:02 +02:00
..
access_token.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
action_runtime_token.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
action_runtime_token_test.go feat: expose immutable identifiers in Forgejo Actions JWTs (#12355) 2026-05-03 15:46:58 +02:00
action_task_token.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
additional_scopes_test.go
auth.go
auth_result_accesstoken.go
auth_result_actionstask.go
auth_result_authorized_integration.go feat: allow Authorized Integrations to authenticate to Forgejo's package registries (#12310) 2026-04-29 19:13:01 +02:00
auth_result_basicpassword.go
auth_result_httpsign.go
auth_result_oauth.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
auth_result_reverseproxy.go
auth_result_session.go
auth_test.go
authorized_integration.go feat: allow Authorized Integrations to have multiple values for a claim match (#12482) 2026-05-10 04:52:02 +02:00
authorized_integration_claims.go feat: authorized integrations DB models and authentication implementation (#12261) 2026-04-26 20:52:42 +02:00
authorized_integration_claims_test.go feat: authorized integrations DB models and authentication implementation (#12261) 2026-04-26 20:52:42 +02:00
authorized_integration_oidc.go feat: authorized integrations DB models and authentication implementation (#12261) 2026-04-26 20:52:42 +02:00
authorized_integration_oidc_test.go feat: authorized integrations DB models and authentication implementation (#12261) 2026-04-26 20:52:42 +02:00
authorized_integration_test.go feat: allow Authorized Integrations to have multiple values for a claim match (#12482) 2026-05-10 04:52:02 +02:00
basic.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
group.go refactor: clarify four different outputs that authentication methods provide (#12231) 2026-04-23 02:30:41 +02:00
httpsign.go refactor: clarify four different outputs that authentication methods provide (#12231) 2026-04-23 02:30:41 +02:00
main_test.go
mocks_test.go feat: allow Forgejo Actions to be used an Authorized Integration in-memory with internal issuer (#12364) 2026-05-01 17:42:34 +02:00
oauth2.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
reverseproxy.go refactor: clarify four different outputs that authentication methods provide (#12231) 2026-04-23 02:30:41 +02:00
reverseproxy_test.go
session.go refactor: clarify four different outputs that authentication methods provide (#12231) 2026-04-23 02:30:41 +02:00
signin.go
util.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00
util_test.go refactor: split "basic" and "oauth2" authentication impl into smaller single-purpose components (#12236) 2026-04-24 18:19:58 +02:00