Firstyear
Firstyear
**Describe the bug** on-boot-script-2.x contains a dockerfile to provide an environment to allow building the package. This dockerfile fails to operate, failing with: 14.72 Reading package lists... 14.74 W: The...
There are cases where there may be two or more confidental clients that wish to forward access-tokens between them for authentication. In these cases because each client needs to authenticate...
Relates #2513 - add design for key-objects Checklist - [ x ] This pr contains no AI generated code - [ ] cargo fmt has been run - [ ]...
Fixes #2515 Fixes #2552 Improves the domain version upgrade framework, force re-migration for dev versions, improve startup time, and improve some low level elements for migrations over replication. Adds uuid...
Fixes #2489 This cleans up most of the api between internal an v1. I was over-cautious in moving things to internal, so that we have the choice to move things...
https://www.rfc-editor.org/rfc/rfc9068.html See https://github.com/kanidm/kanidm/issues/2545#issuecomment-1953857642
The Oauth2 rfc allows a refresh request to request any scope that was *granted* not just any scope that was requested. As a result, since we issue supplemental scopes, this...
Currently we don't make this easy to access. We should improve the CLI to accomodate this.
There may be applications where a user wants oauth2 to allow passthrough of an access token to the REST api of Kanidm. This could be to develop a custom UI...
To prevent spurious log entries on 404, especially since a missing entry can sometimes be legitimate, we should only raise these as info messages, not warn.