Commits · 5515918436284ead35ad7c41112cee7c6c3a0cb3 · Mirrors / github.com / pusher_oauth2_proxy

Dec 18, 2021
- Prepare changelog for release v7.2.1 · 55159184
  Joel Speed authored Dec 18, 2021
  
  55159184
- Merge pull request #1479 from polarctos/feature/go-1.17 · 95839a28
  Joel Speed authored Dec 18, 2021
```
Update go version to 1.17
```
  95839a28
Dec 17, 2021

polarctos authored Dec 17, 2021

This includes the change to the pruned module graph with the converted go.mod for Go 1.17
https://go.dev/doc/go1.17#go-command

7eaf98b5

Dec 15, 2021
- Merge pull request #1471 from AlexanderBabel/feature/update-aline · c278e0aa
  Joel Speed authored Dec 14, 2021
```
[Security] Update alpine to 3.15
```
  c278e0aa
Dec 14, 2021
- doc: update changelog · 8a951b2b
  Alex Babel authored Dec 14, 2021
  
  8a951b2b
- fix(Dockerfile): bump alpine to 3.15 · a654c9ec
  Alex Babel authored Dec 14, 2021
  
  a654c9ec
Dec 06, 2021
- Merge pull request #1247 from oauth2-proxy/adfs-default-claims · 5933000b
  Joel Speed authored Dec 06, 2021
```
Use `upn` as EmailClaim throughout ADFSProvider
```
  5933000b
Dec 02, 2021
- Update ADFS to new jwt lib · 0fa8fca2
  Nick Meves authored Dec 01, 2021
  
  0fa8fca2
- Handle UPN fallback when profileURL isn't set · bdfca925
  Nick Meves authored Jul 03, 2021
  
  bdfca925
- ADFS supports IDToken nonce, use it · 1621ea3b
  Nick Meves authored Jun 22, 2021
  
  1621ea3b
- Use upn claim as a fallback in Enrich & Refresh · 4980f6af
  Nick Meves authored Jun 22, 2021
```
Only when `email` claim is missing, fallback to `upn` claim which may have it.
```
  4980f6af
- Use `upn` as EmailClaim throughout ADFSProvider · a5319872
  Nick Meves authored Jun 19, 2021
```
By only overriding in the EnrichSession, any Refresh calls
would've overriden it with the `email` claim.
```
  a5319872
Nov 25, 2021
- Merge pull request #1447 from oauth2-proxy/docker-fixes · 1b335a05
  Joel Speed authored Nov 24, 2021
```
Fix docker build/push issues found during last release
```
  1b335a05
- Update changelog for docker fixes · ceb015ee
  Joel Speed authored Nov 14, 2021
  
  ceb015ee
- Drop old makefiles in favour of buildx · 8dea8134
  Joel Speed authored Nov 14, 2021
  
  8dea8134
- Fix docker build and push for all platforms · 60b6dd85
  Joel Speed authored Nov 14, 2021
  
  60b6dd85
Nov 20, 2021

Update LinkedIn provider validate URL (#1444) · 6e54ac27

Jeeva Kandasamy authored Nov 20, 2021



* update LinkedIn validate URL

Signed-off-by: Jeeva Kandasamy <jkandasa@gmail.com>

* update changelog

Signed-off-by: Jeeva Kandasamy <jkandasa@gmail.com>

* update failed unit test

Signed-off-by: Jeeva Kandasamy <jkandasa@gmail.com>

6e54ac27

Nov 15, 2021

Explicitly state precedence of config sources in docs (#1439) · 0693856b

Jack Henschel authored Nov 15, 2021



I was recently looking into the order in which oauth2-proxy evaluates it configuration options from the various sources.
I think this will also be helpful for other users.
Since oauth2-proxy is using viper, the order of configuration sources is as follows [1]:
> Viper uses the following precedence order. Each item takes precedence over the item below it:
>
>    explicit call to Set
>    flag
>    env
>    config
>    key/value store
>    default

[1] https://github.com/spf13/viper/blob/master/README.md#why-viper

Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

0693856b

Nov 13, 2021

Fix docker container multi arch build issue by passing GOARCH details to make build (#1445) · 7ed4e3c8

Jeeva Kandasamy authored Nov 13, 2021



* pass GOARCH details to make process

Signed-off-by: Jeeva Kandasamy <jkandasa@gmail.com>

* update changelog

Signed-off-by: Jeeva Kandasamy <jkandasa@gmail.com>

7ed4e3c8

Let authentication fail when session validation fails (fixes #1396) (#1433) · 2c668a52

Stephan Aßmus authored Nov 12, 2021



* Error page for session validation failure

* Fix existing tests

* Add test-case for session validation failure

* Simplify test

* Add changelog entry for PR

Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

2c668a52

Merge pull request #1419 from jangaraj/patch-1 · 9caf8c70
Joel Speed authored Nov 12, 2021
```
Keycloak OIDC config improvement
```
9caf8c70

Oct 25, 2021
- Keycloak OIDC config improvement · 1e761bf8
  Jan Garaj authored Oct 25, 2021
  
  1e761bf8
Oct 23, 2021
- Merge pull request #1412 from oauth2-proxy/release-7.2.0 · 6c379f74
  Joel Speed authored Oct 22, 2021
```
Release 7.2.0
```
  v7.2.0
  
  6c379f74
- Create versioned docs for release v7.2.x · 4ee3f13c
  Joel Speed authored Oct 18, 2021
```
Created with: yarn run docusaurus docs:version 7.2.x
```
  4ee3f13c
- Update CHANGELOG for v7.2.0 release · 976dc358
  Joel Speed authored Oct 18, 2021
  
  976dc358
Oct 19, 2021
- Merge pull request #1403 from openstandia/fix-redis-tls · d82c2686
  Joel Speed authored Oct 19, 2021
```
Improve TLS handling for Redis to support non-standalone mode with TLS
```
  d82c2686
- Improve TLS handling for Redis to support non-standalone mode with TLS · 7eb3a4fb
  Hiroyuki Wada authored Oct 13, 2021
  
  7eb3a4fb
- Initalize TLS.Config when connecting to Redis with TLS (#1296) · b49e62f9
  Maciej Strzelecki authored Oct 19, 2021
```
* init TLS.Config when connecting to Redis with TLS

* don't overwrite TLS config if it exists

* add tests for Redis with TLS

* remove hardcoded certs

* add GenerateCert func

* use GenerateCert util func

* fix issue reported by go fmt

* limit return statements in GenerateCert
```
  b49e62f9
- fix arg typo in traefik example (#1410) · ea261ca0
  Adam Stephens authored Oct 18, 2021
```
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
```
  ea261ca0
- Merge pull request #1411 from oauth2-proxy/fix-exclude-logging-doc · 543a71ef
  Joel Speed authored Oct 18, 2021
```
Fix exclude-logging-path documentation
```
  543a71ef
- Fix exclude-logging-path documentation · bdab6feb
  Joel Speed authored Oct 18, 2021
  
  bdab6feb
- Merge pull request #1391 from oauth2-proxy/docker-buildx-selection · 85c02821
  Joel Speed authored Oct 18, 2021
```
Improve build times by sharing cache and allowing platform selection
```
  85c02821
- Improve build times by sharing cache and allowing platform selection · 2ce93b6b
  Joel Speed authored Oct 05, 2021
  
  2ce93b6b
- Merge pull request #1404 from oauth2-proxy/improve-no-auth-error · 9d8093f4
  Joel Speed authored Oct 18, 2021
```
Improve error message when no cookie is found
```
  9d8093f4
Oct 14, 2021
- Improve error message when no cookie is found · d8deaa12
  Joel Speed authored Oct 13, 2021
  
  d8deaa12
- Merge pull request #1375 from bancek/feature-force-json-errors · 6cc7da89
  Joel Speed authored Oct 13, 2021
```
Add --force-json-errors flag
```
  6cc7da89
Oct 05, 2021
- Add force-json-errors flag · d3e036d6
  Luka Zakrajšek authored Oct 05, 2021
  
  d3e036d6
Oct 04, 2021
- linkedidn: Update provider to v2 (#1315) · fd5e23e1
  David Emanuel Buchmann authored Oct 04, 2021
```
* linkedin: Update provider to v2

* changelog: Add change
```
  fd5e23e1
Oct 03, 2021

Use the httputil.NewSingleHostReverseProxy instead of yhat/wsutil for … (#1348) · 3957183f

Matt Lilley authored Oct 03, 2021



* Use the httputil.NewSingleHostReverseProxy instad of yhat/wsutil for websocket proxying. This correctly handles 404 responses with keep-alive by terminating the tunnel rather than keeping it alive

* Tidy up dependencies - yhat/wsutil is no longer required

* Update changelog to include reference to 1348

Co-authored-by: Matt Lilley <matt.lilley@securitease.com>
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

3957183f

Sep 28, 2021
- Merge pull request #1379 from janrotter/fix-htpasswd-user-group · a87c27b6
  Joel Speed authored Sep 28, 2021
```
Store groups from the htpasswd-user-group in the session during the manual sign in process
```
  a87c27b6