heroku/identity

This repository has been archived on 12/Feb/2022
Stars
247
Rank 164,086 (Top 4 %)
Language
CSS
License
MIT License
Created almost 12 years ago
Updated over 2 years ago

heroku/identity

heroku

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

[DEPRECATED] Login and OAuth management service for Heroku

NOTICE:

This repo is no longer used by Heroku.

Identity

Based on the concept of web-based Heroku user management not belonging in the API over the long-term, Identity pulls session-based authentication out of API and provides a drop-in replacement for the Heroku OAuth API that OAuth clients can use instead.

OAuth session management is achieved by a "meta-OAuth" provider implementation. Identity first authorizes itself to get access to a user's account, then authorizes other consumers that use it as a target by proxying calls to the API (but using only the JSON authentication APIs). The one caveat here is that Identity must have the can_manage_authorizations flag set for it in API.

Issue and Security Vulnerability Reporting

In general Heroku makes extensive use of GitHub issues, and for the vast majority of bugs we encourage reporters to use them here. For the limited case of exploitable security vulnerabilities, we ask researchers to report problems to [email protected]. We also have general reporting guidelines, which list the security team's PGP key.

Usage

bundle install
cp .env.sample .env # And then edit it
foreman start
# check localhost:5000

Docker

Install docker toolbox (includes virtualbox) from https://www.docker.com/toolbox

git clone https://github.com/heroku/identity.git
docker-compose up
curl -i http://$(docker-machine ip identity):5000

Platform Install

heroku config:add COOKIE_ENCRYPTION_KEY=...
heroku config:add DASHBOARD_URL="https://dashboard.heroku.com"
heroku config:add HEROKU_API_URL="https://api.heroku.com"
heroku config:add SIGNUP_URL="https://signup.heroku.com"
heroku config:add HEROKU_OAUTH_ID=...
heroku config:add HEROKU_OAUTH_SECRET=...
git push heroku master

Your OAuth client will also need to be able to manage authorizations, which is set by an internal flag.

Test

rake test

Docker

docker-compose run identity bundle exec rake

## Platform Apps

* `id-production` (production)
* `id-staging` (staging)

react-refetch

A simple, declarative, and composable way to fetch data for React components

legacy-cli

heroku-pg-extras

A heroku plugin for awesome pg:* commands that are also great and fun and super.

heroku-buildpack-nodejs

The official Heroku buildpack for Node.js apps.

node-js-getting-started

Getting Started with Node on Heroku

logplex

[DEPRECATED] Heroku log router

heroku-buildpack-python

The official Heroku buildpack for Python apps

heroku-django-template

A Django 2.0 base template featuring all recommended best practices for deployment on Heroku and local development.

node-js-sample

This repository is deprecated. Head over to https://github.com/heroku/node-js-getting-started

cli

rails_12factor

python-getting-started

Getting Started with Python on Heroku.

heroku-buildpack-php

The official PHP buildpack for Heroku.

heroku-buildpack-go

Heroku Go Buildpack

heroku-buildpack-ruby

Heroku's Ruby Buildpack

hk

DEPRECATED: see

heroku-buildpack-static

[DEPRECATED] Heroku buildpack for handling static sites and single page web apps

heroku-repo

Plugin for heroku CLI that can manipulate the repo

vegur

Vegur: HTTP Proxy Library

heroku-accounts

Helps use multiple accounts on Heroku.

django-heroku

[DEPRECATED] Do not use! See https://github.com/heroku/django-heroku/issues/56

heroku-buildpack-pgbouncer

Run pgbouncer in a dyno along with your application

devcenter-embedded-tomcat

webapp-runner

Lightweight Application Launcher. Launch your webapp in the most popular open source web container available with a single command.

docker-registry-client

A Go API client for the v2 Docker Registry API

heroku-buildpack-google-chrome

Run (headless) Google Chrome on Heroku

stack-images

Recipies for building Heroku's stack images

java-getting-started

Getting Started with Java on Heroku

go-getting-started

Getting Started with Go on Heroku https://devcenter.heroku.com/articles/getting-started-with-go

heroku-buildpack-nginx

Run NGINX in a Heroku app

heroku-buildpack-apt

Buildpack that installs APT based dependencies

log-shuttle

HTTP log transport.

terrier

Terrier is a Image and Container analysis tool that can be used to scan Images and Containers to identify and verify the presence of specific files according to their hashes.

umpire

HTTP metrics monitoring endpoint

platform-api

Ruby HTTP client for the Heroku API

starboard

onboarding, offboarding, or crossboarding made easy

salesforce-bulk

Python interface to the Salesforce.com Bulk API

php-getting-started

Getting Started with PHP on Heroku

heroku-container-tools

DEPRECATED Heroku Toolbelt plugin to help configure, test and release apps to Heroku using local containers.

heroku-buildpack-scala

Heroku buildpack: Scala

node-heroku-client

A wrapper around the Heroku API for Node.js

vulcan

A build server in the cloud.

pg_lock

Use Postgres advisory lock to isolate code execution across machines

awsdetailedbilling

A toolkit for importing AWS detailed billing reports into Redshift

heroku-buildpack-java

A Heroku buildpack for Java apps.

pulse

DEPRECATED: Real-time Heroku operations dashboard

heroku.rb

DEPRECATED! Official Heroku Ruby Legacy API wrapper

heroku-buildpack-multi

[DEPRECATED] Please use https://devcenter.heroku.com/articles/using-multiple-buildpacks-for-an-app instead

erlang-in-anger

A little guide about how to be the Erlang medic in a time of war. It is first and foremost a collection of tips and tricks to help understand where failures come from, and a dictionary of different code snippets and practices that helped developers debug production systems that were built in Erlang.

plexy

A toolkit for building excellent APIs with Elixir

heroku-buildpack-multi-procfile

Everyone gets a Procfile!

log2viz

DEFUNCT: Realtime analysis of your Heroku app logs.

heroku.py

DEPRECATED! Heroku API wrapper for Python.

facebook-template-nodejs

ruby-getting-started

Getting Started with Ruby on Heroku

heroku-buildpack-chromedriver

Installs chromedriver in a Heroku slug

heroku-buildpack-clojure

Heroku's buildpack for Clojure applications.

mobile-template1

instruments

Collecting metrics over discrete time intervals

heroku-sbt-plugin

An sbt plugin for deploying Heroku Scala applications

heroku-buildpack-erlang

Erlang buildpack

terraform-provider-heroku

Terraform Heroku provider

cli-engine

semver.io

*DEPRECATED* The semver.io instance has now been sunset: https://github.com/heroku/semver.io/issues/74

facebook-template-php

example facebook app for heroku

dotnet-buildpack

ASP.NET 5 Buildpack

kensa

A tool to help Heroku add-on providers integrate their services with Heroku

netrc

Reads and writes netrc files.

hstore_example

alpinehelloworld

An Alpine-based Docker example

heroku-kong

🐒 Kong API gateway as a Heroku app

heroku-buildpack-hello

heroku-releases-retry

CLI plugin to allow retrying the latest release-phase command

faceplate

A Node.js wrapper for Facebook authentication and API

rails_stdout_logging

Logs to stdout so you don't have to

shaas

Shell as a Service: API to inspect and execute scripts in a server's environment via HTTP and WebSockets

devcenter-spring-mvc-hibernate

heroku-buildpack-core-data

A Heroku Buildpack that generates a REST webservice from a Core Data model

heroku-buildpack-emberjs

**This buildpack is deprecated!** Please use the official Node.js buildpack combined with the static or nginx buildpack instead.

facebook-template-python

devcenter-java

heroku-buildpack-c

C Language Pack

nibs

heroku-buildpack-gradle

This is a Heroku buildpack for Gradle apps. It uses Gradle to build your application and OpenJDK to run it.

heroku-buildpack-ember-cli

A Heroku buildpack for ember-cli apps; powers dashboard.heroku.com

heroku-guardian

Easy to use CLI security checks for the Heroku platform. Validate baseline security configurations for your own Heroku deployments.

cnb-builder-images

Recipes for building Heroku's Cloud Native Buildpacks builder images

list-of-ingredients

An example of using Create React App with Rails 5 API and ActiveAdmin on Heroku

heroku-fork

Heroku CLI plugin to fork an existing app into a new app

salesforce-buildpack

Heroku Buildpack for Salesforce

ruby-rails-sample

facebook-template-ruby

heroku-jupyterlab

An example of running JupyterLab on Heroku, with Amazon S3.

heroku-maven-plugin

This plugin is used to deploy Java applications directly to Heroku without pushing to a Git repository.

stillir

Cache environment variables as Erlang app variables

rails_serve_static_assets

heroku-gradle-plugin

A Gradle plugin for deploying JAR and WAR files to Heroku.

x

A set of packages for reuse within Heroku Go applications

template-java-spring-hibernate

scala-getting-started

Getting Started with Scala / Play on Heroku