Yehowshua/ZIm - Forgejo: Beyond coding. We Forge.

Author	SHA1	Message	Date
Max Brunsfeld	93d068a746	Update verify_access_token doc comment	2024-01-17 18:06:16 -08:00
Max Brunsfeld	9f04fd9019	For impersonating access tokens, store impersonatee in the new column This way, we don't need an index on both columns	2024-01-17 18:06:16 -08:00
Max Brunsfeld	ab1bea515c	Store the impersonator id on access tokens created via ZED_IMPERSONATE * Use the impersonator id to prevent these tokens from counting against the impersonated user when limiting the users' total of access tokens. * When connecting using an access token with an impersonator add the impersonator as a field to the tracing span that wraps the task for that connection. * Disallow impersonating users via the admin API token in production, because when using the admin API token, we aren't able to identify the impersonator. Co-authored-by: Marshall <marshall@zed.dev>	2024-01-17 18:06:16 -08:00
Marshall Bowers	cf5dc099fb	Add more documentation to `collab` (#4095 ) This PR adds more documentation to the `collab` crate. Release Notes: - N/A --------- Co-authored-by: Conrad <conrad@zed.dev>	2024-01-17 13:38:12 -05:00
Max Brunsfeld	b8e8363a72	Add logging and metric for time spent hashing auth tokens Co-authored-by: Mikayla Maki <mikayla@zed.dev>	2023-03-17 14:32:13 -07:00
Max Brunsfeld	623133ffa0	Reduce scrypt work factor to speed up websocket authentication Co-authored-by: Mikayla Maki <mikayla@zed.dev>	2023-03-17 14:31:39 -07:00
Max Brunsfeld	9633a4b527	Return a 400, not a 500 when token validation fails Co-authored-by: Antonio Scandurra <antonio@zed.dev>	2023-03-17 13:56:12 -07:00
Max Brunsfeld	26dae3c04e	Lookup access tokens by id when authenticating a connection This avoids the cost of hashing an access token multiple times, to compare it to all known access tokens for a given user. Co-authored-by: Antonio Scandurra <antonio@zed.dev>	2023-03-17 11:13:50 -07:00
Antonio Scandurra	d2385bd6a0	Start using the new sea-orm backed database	2022-12-01 14:41:59 +01:00
Max Brunsfeld	bed06346d1	Total WIP - try making Db a generic struct instead of a trait	2022-11-09 19:28:06 -08:00
Max Brunsfeld	83e4e26989	Allow setting ZED_SERVER_URL to URL of a collab server	2022-10-19 13:27:14 -07:00
Max Brunsfeld	c410935c9c	Allow impersonating users via the api token, bypassing oauth	2022-10-18 17:36:54 -07:00
ForLoveOfCats	8ba2f77148	One big cleanup pass of clippy lints Co-authored-by: Mikayla <mikayla@zed.dev>	2022-08-10 16:51:01 -07:00
Nathan Sobo	3d7e912c6b	Enable descriptive HTTP errors to be returned from DB layer For now, we only use this when redeeming an invite code. Co-Authored-By: Antonio Scandurra <me@as-cii.com>	2022-05-19 11:55:55 -06:00
Nathan Sobo	d1b7a249b4	WIP	2022-05-19 11:09:44 -06:00
Nathan Sobo	a3b9ad75b0	Include login in connection-related tracing spans/events Also, include metadata on more events and add an event called "signing out" with all this metadata to make it easier to search for.	2022-05-12 12:06:06 -06:00
Nathan Sobo	2adb9fe472	Get zed.dev working with new collab backend Co-Authored-By: Antonio Scandurra <me@as-cii.com>	2022-04-26 11:15:41 -06:00
Nathan Sobo	538fc23a77	WIP	2022-04-25 20:05:09 -06:00
Nathan Sobo	35bec69fa4	Finish adding API routes We haven't tested them yet. Co-Authored-By: Max Brunsfeld <maxbrunsfeld@gmail.com>	2022-04-25 17:51:13 -06:00
Nathan Sobo	447c1d2f71	WIP: Get compiling with Tokio by commenting almost everything Co-Authored-By: Antonio Scandurra <me@as-cii.com>	2022-04-22 13:33:19 -06:00
Nathan Sobo	0cf7bba483	Remove remaining bits of web front-end	2022-04-21 09:30:08 -06:00
Nathan Sobo	9f0b044ba0	Remove more unused code related to GitHub auth and errors	2022-04-21 08:57:49 -06:00
Nathan Sobo	ab8204368c	Rename zed-server to collab Over time, I think we may end up having multiple services, so it seems like a good opportunity to name this one more specifically while the cost is low. It just seems like naming it "zed" and "zed-server" leaves it a bit open ended.	2022-04-09 08:30:42 -06:00

23 commits