- Use newer `ash_authentication` version since old version had
dependency resolution errors
- Add `ash-functions` to the extensions list
- Fixes compiler warning when the item is missing
* docs: improve security in the 'Get Started' guide
- Use a bang function to ensure that the `signing_secret` will raise an
exception if it is absent from the config (instead of just silently
evaluating to `nil`)
- Add config example for the secret signing token
- Add warning so that users are informed about the security implications
of using the basic configuration provided by the tutorial
- Rearrange the sections a bit so the `Token Generation` section comes
after the relevant code example
* docs: use correct function and modify secrets warning
The OIDC implementation of assent requires the base_url to be set and ignores the different *_url attributes. At favours the returned configuration from the openid_configuration_uri. To not configure some unused attributes they're removed.
* chore(deps): Bump assent from 0.2.7 to 0.2.8
Bumps [assent](https://github.com/pow-auth/assent) from 0.2.7 to 0.2.8.
- [Release notes](https://github.com/pow-auth/assent/releases)
- [Changelog](https://github.com/pow-auth/assent/blob/main/CHANGELOG.md)
- [Commits](https://github.com/pow-auth/assent/compare/v0.2.7...v0.2.8)
---
updated-dependencies:
- dependency-name: assent
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* chore(OAuth2): Reflect `assent` `site` -> `base_url` change.
I considered just rewriting it behind the scenes, but I think it's probably better in the long run if we just emit a deprecation.
---------
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: James Harton <james@harton.nz>
* feat: Add Google strategy
* fix: include Google strategy cheat sheet
* fix: Add documentation grouping for Google strategy
* chore: update formatter.
---------
Co-authored-by: James Harton <james@harton.nz>
Applies to both OAuth2 and OpenID Connect.
With this the developer can provide either the full
URL or the URL up to the AuthPlug path. If the suffix
is already there we won't add it again.
Should make it easier to get it on the first try.
Now any DSL option which allows the configuring of a token lifetime
can take _either_ a positive integer in it's previous default unit
or a tuple containing a positive integer and a unit.
Closes#376.
Additionally includes switching the resettable entity to being a singleton since that
feature didn't exist when I started.