Nick Misasi
5d3a04760b
[MM-67605] Add DCR redirect URI allowlist for OAuth DCR ( #35291 )
...
* [MM-67605] Add DCR redirect URI allowlist enforcement
Introduce ServiceSettings.DCRRedirectURIAllowlist with glob-based validation and enforce it during OAuth dynamic client registration to block unapproved redirect URIs. Add System Console wiring and tests for config validation, wildcard matching semantics, API error behavior, and localhost wildcard support.
Co-authored-by: Cursor <cursoragent@cursor.com>
* Fix pre-commit checks: TypeScript type assertion, gofmt, and regenerate CI artifacts
- admin_definition_dcr_allowlist.test.tsx: Add AdminDefinitionSettingInput type assertion for 'multiple' property
- oauth_dcr_test.go: Fix comment spacing (gofmt)
- Regenerate mocks, go.sum, gen-serialized, mmctl-docs per CI requirements
Co-authored-by: Cursor <cursoragent@cursor.com>
* Revert unnecessary pre-commit regenerations
Revert mmctl docs, mocks, go.sum, and gen-serialized to master. Keep only
the TypeScript and gofmt fixes from the previous commit.
Co-authored-by: Cursor <cursoragent@cursor.com>
* Fix import order in admin_definition_dcr_allowlist.test.tsx
Co-authored-by: Cursor <cursoragent@cursor.com>
* Fix i18n
* Update server/public/model/oauth_dcr.go
Co-authored-by: Eva Sarafianou <eva.sarafianou@gmail.com>
* Fix
---------
Co-authored-by: Cursor <cursoragent@cursor.com>
Co-authored-by: Eva Sarafianou <eva.sarafianou@gmail.com>
Co-authored-by: Mattermost Build <build@mattermost.com>
2026-02-19 01:06:08 +00:00
Ben Cooke
c78ebc5ec1
add audit logs to DCR ( #34598 )
API / build (push) Waiting to run
Server CI / Compute Go Version (push) Waiting to run
Server CI / Check mocks (push) Blocked by required conditions
Server CI / Check go mod tidy (push) Blocked by required conditions
Server CI / check-style (push) Blocked by required conditions
Server CI / Check serialization methods for hot structs (push) Blocked by required conditions
Server CI / Vet API (push) Blocked by required conditions
Server CI / Check migration files (push) Blocked by required conditions
Server CI / Generate email templates (push) Blocked by required conditions
Server CI / Check store layers (push) Blocked by required conditions
Server CI / Check mmctl docs (push) Blocked by required conditions
Server CI / Postgres with binary parameters (push) Blocked by required conditions
Server CI / Postgres (push) Blocked by required conditions
Server CI / Postgres (FIPS) (push) Blocked by required conditions
Server CI / Generate Test Coverage (push) Blocked by required conditions
Server CI / Run mmctl tests (push) Blocked by required conditions
Server CI / Run mmctl tests (FIPS) (push) Blocked by required conditions
Server CI / Build mattermost server app (push) Blocked by required conditions
Web App CI / check-lint (push) Waiting to run
Web App CI / check-i18n (push) Waiting to run
Web App CI / check-types (push) Waiting to run
Web App CI / test (push) Waiting to run
Web App CI / build (push) Waiting to run
2025-11-28 11:44:15 -05:00
Ben Cooke
da3ba59f7e
OAuth public client improvements ( #34435 )
API / build (push) Waiting to run
Server CI / Compute Go Version (push) Waiting to run
Server CI / Check mocks (push) Blocked by required conditions
Server CI / Check go mod tidy (push) Blocked by required conditions
Server CI / check-style (push) Blocked by required conditions
Server CI / Check serialization methods for hot structs (push) Blocked by required conditions
Server CI / Vet API (push) Blocked by required conditions
Server CI / Check migration files (push) Blocked by required conditions
Server CI / Generate email templates (push) Blocked by required conditions
Server CI / Check store layers (push) Blocked by required conditions
Server CI / Check mmctl docs (push) Blocked by required conditions
Server CI / Postgres with binary parameters (push) Blocked by required conditions
Server CI / Postgres (push) Blocked by required conditions
Server CI / Postgres (FIPS) (push) Blocked by required conditions
Server CI / Generate Test Coverage (push) Blocked by required conditions
Server CI / Run mmctl tests (push) Blocked by required conditions
Server CI / Run mmctl tests (FIPS) (push) Blocked by required conditions
Server CI / Build mattermost server app (push) Blocked by required conditions
Web App CI / check-lint (push) Waiting to run
Web App CI / check-i18n (push) Waiting to run
Web App CI / check-types (push) Waiting to run
Web App CI / test (push) Waiting to run
Web App CI / build (push) Waiting to run
2025-11-11 16:57:49 -05:00
Ben Cooke
a79ac96b50
OAuth public client support through DCR and PKCE support for public/confidential clients ( #33664 )
...
* public client support along with PKCE for public/confidential clients
---------
Co-authored-by: Mattermost Build <build@mattermost.com>
2025-11-11 17:43:37 +00:00
Ben Cooke
a9c9953439
Authorization metadata endpoint and Dynamic Client Registration of Confidential OAuth Apps ( #33642 )
...
API / build (push) Waiting to run
Server CI / Compute Go Version (push) Waiting to run
Server CI / Check mocks (push) Blocked by required conditions
Server CI / Check go mod tidy (push) Blocked by required conditions
Server CI / check-style (push) Blocked by required conditions
Server CI / Check serialization methods for hot structs (push) Blocked by required conditions
Server CI / Vet API (push) Blocked by required conditions
Server CI / Check migration files (push) Blocked by required conditions
Server CI / Generate email templates (push) Blocked by required conditions
Server CI / Check store layers (push) Blocked by required conditions
Server CI / Check mmctl docs (push) Blocked by required conditions
Server CI / Postgres with binary parameters (push) Blocked by required conditions
Server CI / Postgres (push) Blocked by required conditions
Server CI / Postgres (FIPS) (push) Blocked by required conditions
Server CI / Generate Test Coverage (push) Blocked by required conditions
Server CI / Run mmctl tests (push) Blocked by required conditions
Server CI / Run mmctl tests (FIPS) (push) Blocked by required conditions
Server CI / Build mattermost server app (push) Blocked by required conditions
Web App CI / check-lint (push) Waiting to run
Web App CI / check-i18n (push) Waiting to run
Web App CI / check-types (push) Waiting to run
Web App CI / test (push) Waiting to run
Web App CI / build (push) Waiting to run
* initial DCR and metadata implementation
* check for duplicate registrations
* tests and other cleanup
* dcr fixes
* tidy up unused DCR fields
* remove initial access token support
* remove duplicate client checks
* remove unused store function
* remove restrictive redirect url checks
* create some constants for endpoints
* surface support for implicit grant and add system console setting
* fix frontend issues with DCR clients
* rate limiting the DCR endpoint
* lint
* lint and cleanup
* remove storage of grants, responses and methods. Just enforce in the code
* fix lint and tests
* docs and test
* accidentally removed comments
* fix mock
* translations
* do not advertise public client capability
* validate supplied token_endpoint_auth_method
* fix pr comments
* updates
* add metadata endpoint to docs
* add definition
* lint
* fix client4
* fix client methods
* fix client again
---------
Co-authored-by: Mattermost Build <build@mattermost.com>
2025-11-11 14:27:18 +00:00
Vishal
dbc04cfebe
use consts for audit events ( #33433 )
2025-07-16 10:17:03 +05:30
David Krauser
aaa62a40ae
[MM-64686] Expose audit logging functionality via plugin API ( #31204 )
...
This commit exposes audit logging functionality to plugins via the plugin API, allowing plugins to create and log audit records. Additionally, it addresses a gob encoding issue that could cause plugin crashes when audit data contains nil pointers or unregistered types.
2025-06-25 20:37:32 -04:00
Arya Khochare
cab714a629
errcheck issues fixed ( #28477 )
2024-10-04 07:11:24 +02:00
enzowritescode
d44c3d5d45
Replace Hard-coded HTTP Verbs with Constants ( #27219 )
...
* Replace hard-coded HTTP verbs with constants in `net/http`
2024-07-15 08:52:03 -06:00
Ben Schumacher
30d450c4d8
Cleanup usage of global logger ( #26835 )
2024-04-24 11:52:33 +02:00
Agniva De Sarker
efaa6264cc
MM-53032: Fix module path after repo rename ( #23689 )
...
It was a good decision in hindsight to keep the public module as 0.x
because this would have been a breaking change again.
https://mattermost.atlassian.net/browse/MM-53032
```release-note
Changed the Go module path from github.com/mattermost/mattermost-server/server/v8 to github.com/mattermost/mattermost/server/v8.
For the public facing module, it's path is also changed from github.com/mattermost/mattermost-server/server/public to github.com/mattermost/mattermost/server/public
```
2023-06-11 10:54:35 +05:30
Jesse Hallam
bb02b35048
Expose public/ API as submodule ( #23345 )
...
* model -> public/model
* plugin -> public/plugin
* public/model/utils -> public/utils
* platform/shared/mlog -> public/shared/mlog
* platform/shared/i18n -> public/shared/i18n
* platform/shared/markdown -> public/shared/markdown
* platform/services/timezones -> public/shared/timezones
* channels/einterfaces -> einterfaces
* expose public/ submodule
* go mod tidy
* .github: cache-dependency-path, setup-go-work
* modules-tidy for public/ too
* remove old gomodtidy
2023-05-10 13:07:02 -03:00
Agniva De Sarker
b200a07881
v8.0 module release ( #22975 )
...
https://mattermost.atlassian.net/browse/MM-52079
```release-note
We upgrade the module version to 8.0. The new module path is github.com/mattermost-server/server/v8.
```
Co-authored-by: Doug Lauder <wiggin77@warpmail.net>
2023-04-18 11:05:28 +05:30
Doug Lauder
c943ed6859
Mono repo -> Master ( #22553 )
...
Combines the following repositories into one:
https://github.com/mattermost/mattermost-server
https://github.com/mattermost/mattermost-webapp
https://github.com/mattermost/focalboard
https://github.com/mattermost/mattermost-plugin-playbooks
2023-03-22 17:22:27 -04:00
