letro/letro-authentication-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
1,347 Commits 2 Branches 1 Tag
01ba7abc2a7de4113e889fe3bcceed4e9e8bc4e2
Commit Graph

69 Commits

Author SHA1 Message Date
Quentin Gliech
82afe9471c Better frontend assets handling and move the react app to /account/ (#1324) 
This makes the Vite assets handling better, namely:

 - make it possible to include any vite assets in the templates
 - include the right `<link rel="preload">` tags for assets
 - include Subresource Integrity hashes
 - pre-compress assets and remove on-the-fly compression by the Rust server
 - build the CSS used by templates through Vite

It also moves the React app from /app/ to /account/, and remove some of the old SSR account screens.
 2023-07-06 15:30:26 +02:00
dependabot[bot]
1ae70cce18 build(deps): bump actions/setup-node from 3.6.0 to 3.7.0 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v3.6.0...v3.7.0)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-06 08:16:37 +02:00
dependabot[bot]
572a38f884 build(deps): bump Swatinem/rust-cache from 2.5.0 to 2.5.1 
Bumps [Swatinem/rust-cache](https://github.com/swatinem/rust-cache) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/swatinem/rust-cache/releases)
- [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md)
- [Commits](https://github.com/swatinem/rust-cache/compare/v2.5.0...v2.5.1)

---
updated-dependencies:
- dependency-name: Swatinem/rust-cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-07-04 00:58:49 +02:00
dependabot[bot]
42642151d1 build(deps): bump docker/setup-buildx-action from 2.7.0 to 2.8.0 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2.7.0...v2.8.0)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-29 09:26:50 +02:00
dependabot[bot]
fb140e0a38 build(deps): bump sigstore/cosign-installer from 3.1.0 to 3.1.1 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.1.0...v3.1.1)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-28 09:17:16 +02:00
dependabot[bot]
b13999c1da build(deps): bump sigstore/cosign-installer from 3.0.5 to 3.1.0 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.5 to 3.1.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.0.5...v3.1.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-27 15:31:23 +02:00
dependabot[bot]
583ff6931b build(deps): bump Swatinem/rust-cache from 2.4.0 to 2.5.0 
Bumps [Swatinem/rust-cache](https://github.com/Swatinem/rust-cache) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/Swatinem/rust-cache/releases)
- [Changelog](https://github.com/Swatinem/rust-cache/blob/master/CHANGELOG.md)
- [Commits](https://github.com/Swatinem/rust-cache/compare/v2.4.0...v2.5.0)

---
updated-dependencies:
- dependency-name: Swatinem/rust-cache
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-20 18:14:11 +02:00
Quentin Gliech
47280025a3 ci: split the coverage jobs into a separate workflow 
Also have a better message when the generated files are not up to date.
 2023-06-20 17:41:29 +02:00
dependabot[bot]
b406435878 build(deps): bump open-policy-agent/setup-opa from 2.0.1 to 2.1.0 
Bumps [open-policy-agent/setup-opa](https://github.com/open-policy-agent/setup-opa) from 2.0.1 to 2.1.0.
- [Release notes](https://github.com/open-policy-agent/setup-opa/releases)
- [Commits](https://github.com/open-policy-agent/setup-opa/compare/v2.0.1...v2.1.0)

---
updated-dependencies:
- dependency-name: open-policy-agent/setup-opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-14 12:40:08 +02:00
Quentin Gliech
be837a54e3 Bump Rust dependencies 2023-06-14 12:02:16 +02:00
Quentin Gliech
7784e0f14f ci: pin actions versions 2023-06-13 19:08:48 +02:00
Quentin Gliech
edbafe5bfd ci: Make it set the docker context again 2023-06-13 19:08:48 +02:00
dependabot[bot]
818b9d3056 build(deps): bump sigstore/cosign-installer from 3.0.2 to 3.0.5 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.2 to 3.0.5.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.0.2...v3.0.5)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-26 16:14:55 +02:00
Quentin Gliech
3ea8668e39 Bump the OTEL crates to 0.19.0 (#1132) 
* Bump the OTEL crates to 0.19.0

Also pins a bunch of versions in the Dockerfile and fixes the docker build in CI
 2023-04-24 17:10:55 +00:00
Quentin Gliech
e62a3592d5 Update Rust to 1.69.0 2023-04-24 11:42:01 +02:00
dependabot[bot]
aea2ff3f5f build(deps): bump docker/bake-action from 2 to 3 
Bumps [docker/bake-action](https://github.com/docker/bake-action) from 2 to 3.
- [Release notes](https://github.com/docker/bake-action/releases)
- [Commits](https://github.com/docker/bake-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: docker/bake-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-18 22:21:13 +02:00
dependabot[bot]
9dce8d7d7a build(deps): bump sigstore/cosign-installer from 3.0.1 to 3.0.2 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v3.0.1...v3.0.2)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-04-14 10:23:14 +02:00
Quentin Gliech
2c0fd14211 ci: add a --yes flag to the cosign sign command 2023-03-16 10:43:54 +01:00
Quentin Gliech
fe963a41c1 ci: fix cosign step 2023-03-16 00:51:31 +01:00
Quentin Gliech
2821843478 ci: Fix image signature 2023-03-15 15:03:50 +01:00
Quentin Gliech
68e1f7e35c ci: Remove the COSIGN_EXPERIMENTAL env var 2023-03-14 14:04:10 +01:00
dependabot[bot]
e71d2cfb08 build(deps): bump sigstore/cosign-installer from 2.8.1 to 3.0.1 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.8.1 to 3.0.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.8.1...v3.0.1)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-14 14:04:10 +01:00
Quentin Gliech
3b2b0c6ae8 Fix frontend code coverage generation 2023-03-14 12:07:09 +01:00
Quentin Gliech
3bdf5904dd ci: also run Clippy on tests 2023-02-23 10:15:40 +01:00
Quentin Gliech
8e485c397d Upgrade rustc (and clippy) to 1.67.0 2023-02-01 10:37:04 +01:00
Quentin Gliech
79d72b9123 ci: Update clippy to 1.66 and fix new warnings 2022-12-16 18:16:18 +01:00
Quentin Gliech
643c53f241 Upgrade Rust, OPA, Node in CI and Docker image 2022-12-16 18:16:18 +01:00
Quentin Gliech
412bb92bf8 Disable the Prometheus feature by default 
It remains enabled in the Docker image, but this avoids having to have
protoc installed to build the binary
 2022-11-19 00:11:04 +01:00
Quentin Gliech
44d397b54c Do not embed the WASM-compiled policies in the binary 2022-11-18 22:37:55 +01:00
Quentin Gliech
d04664a681 Setup Jest 2022-11-18 13:43:01 +01:00
Quentin Gliech
f33810ce1a Lint GraphQL schema and operations with eslint 2022-11-18 13:43:01 +01:00
Quentin Gliech
d72e702b73 Automate schema updates 2022-11-09 19:17:12 +01:00
Quentin Gliech
d0c864cec2 Bump rustc to 1.65 2022-11-03 21:56:58 +01:00
Quentin Gliech
447517f0b0 ci: Run clippy from a fixed version instead of stable 2022-11-03 16:18:06 +01:00
Quentin Gliech
68febbff2d dockerfile: cross-compile with cargo-zigbuild & embed audit infos 2022-11-03 15:19:49 +01:00
Quentin Gliech
8eb4891aa2 ci: Checkout the code but use the remote context in docker build 2022-11-03 15:19:49 +01:00
Quentin Gliech
c7baf6a549 Fix Docker build context URL 2022-11-03 15:19:49 +01:00
Quentin Gliech
3c31212074 Build docker image without checking out the code 2022-11-03 15:19:49 +01:00
Quentin Gliech
901b9bbfae Simplify and speedup CI 2022-11-03 15:19:49 +01:00
Quentin Gliech
cdf486d0cd Bump Rust, OPA and NodeJS in Docker image 2022-10-27 15:39:16 +02:00
dependabot[bot]
77262ff5ce Bump sigstore/cosign-installer from 2.8.0 to 2.8.1 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.8.0 to 2.8.1.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.8.0...v2.8.1)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-20 08:29:47 +02:00
dependabot[bot]
71c019635a Bump sigstore/cosign-installer from 2.7.0 to 2.8.0 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.7.0...v2.8.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-18 10:43:51 +02:00
dependabot[bot]
ab2e1f5f8e Bump actions/cache from 3.0.8 to 3.0.11 
Bumps [actions/cache](https://github.com/actions/cache) from 3.0.8 to 3.0.11.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v3.0.8...v3.0.11)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-18 10:43:34 +02:00
Quentin Gliech
01d464c887 Gate the prometheus exporter behind a feature 
Also fixes the Docker image building and the CI builds
 2022-09-28 11:13:53 +02:00
Quentin Gliech
f2b3649d75 Bump MSRV to 1.61.0 2022-09-27 19:05:25 +02:00
Quentin Gliech
8adc54b479 ci: do not run the tests with --all-features 2022-09-27 19:05:25 +02:00
dependabot[bot]
87055c0dfe Bump sigstore/cosign-installer from 2.6.0 to 2.7.0 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.6.0...v2.7.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-27 18:56:18 +02:00
dependabot[bot]
6ad5aa23e2 Bump sigstore/cosign-installer from 2.5.1 to 2.6.0 
Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](https://github.com/sigstore/cosign-installer/compare/v2.5.1...v2.6.0)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-12 22:58:06 +02:00
Quentin Gliech
8316433bb8 Also include doctests in code coverage 2022-09-02 15:37:46 +02:00
Quentin Gliech
aba1919ba9 Bump OPA in GitHub Actions 2022-08-22 15:23:53 +02:00