mlsmaycon b16d63643c Add group-based access control for SSO reverse proxy authentication ...

Implement user group validation during OAuth callback to ensure users
belong to allowed distribution groups before granting access to reverse
proxies. This provides account isolation and fine-grained access control.

Key changes:
- Add ValidateUserGroupAccess to ProxyServiceServer for group membership checks
- Redirect denied users to error page with access_denied parameter
- Handle OAuth error responses in proxy middleware
- Add comprehensive integration tests for auth callback flow

2026-02-10 16:25:00 +01:00

..

accesslog

Set forwarded headers from trusted proxies only

2026-02-08 17:49:03 +08:00

acme

add back notBefore and now to cert log

2026-02-09 20:37:20 +01:00

auth

Add group-based access control for SSO reverse proxy authentication

2026-02-10 16:25:00 +01:00

certwatch

Add cert hot reload and cert file locking

2026-02-09 22:55:12 +08:00

debug

Add cert health info to checks

2026-02-09 22:55:12 +08:00

flock

Add cert health info to checks

2026-02-09 22:55:12 +08:00

grpc

Add proxy <-> management authentication

2026-02-08 14:33:27 +08:00

health

Add graceful shutdown for Kubernetes

2026-02-09 22:55:12 +08:00

k8s

Add cert health info to checks

2026-02-09 22:55:12 +08:00

proxy

Remove peer card from proxy error page

2026-02-10 14:39:25 +01:00

roundtrip

add network map support for clustering

2026-02-10 14:29:20 +01:00

types

Use a 1:1 mapping of netbird client to netbird account

2026-02-04 14:48:20 +08:00