Andrei Aaron cb1b7ae9b8 fix(auth): fix anonymous auth for ui (#1662) ...

The ui sends the header X-ZOT-API-CLIENT=zot-ui regardless of session authentication status.
In case of new sessions zot would reject the unauthenticated call on /v2 (which is used to determine
if anonymous access is allowed by the server when the header was set) expecting all users sending
this header to be already authenticated.

Since the ui received 401 from the server, it would not show the option for anonymous login.

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

2023-07-29 09:18:33 -07:00

..

config

fix(authn): fix several issues with authn, closes #1632 (#1633)

2023-07-19 09:27:04 -07:00

constants

feat: integrate openID auth logic and user profile management (#1381)

2023-07-07 09:27:10 -07:00

errors

refactor: move helper functions under common, in usage specific named files (#1540)

2023-06-22 14:29:45 +03:00

authn.go

fix(auth): fix anonymous auth for ui (#1662)

2023-07-29 09:18:33 -07:00

authz.go

fix(authn): fix several issues with authn, closes #1632 (#1633)

2023-07-19 09:27:04 -07:00

controller_test.go

fix(auth): fix anonymous auth for ui (#1662)

2023-07-29 09:18:33 -07:00

controller.go

fix(authn): session authn is skipped when anonymous policy is configured (#1647)

2023-07-27 09:55:25 -07:00

ldap.go

feat(groups)!: added "groups" mechanism for authZ (#1123)

2023-03-08 11:47:15 -08:00

routes_test.go

feat(refator): refactoring repodb into meta (#1626)

2023-07-18 10:27:26 -07:00

routes.go

fix(conformance): OCI-Filters-Applied should return a literal (#1640)

2023-07-22 16:25:02 -07:00

session.go

chore(lint): gci to separate zot from other imports (#870)

2022-10-20 09:39:20 -07:00