- Oct 10, 2019
-
-
Christian Franke authored
Commit e245ef48 switched dependency management from dep to go module. This should be reflected in `CONTRIBUTING.md`.
-
Joel Speed authored
Some code improvements
-
- Oct 09, 2019
-
-
Kirill Motkov authored
* Remove shadowing of predeclared identifier: new. * strings.ReplaceAll instead of strings.Replace with -1. * Change strings.ToLower comparison to strings.EqualFold. * Rewrite if-else-if-else chain as a switch.
-
- Oct 08, 2019
-
-
Joel Speed authored
docker: build from debian buster
-
Dan Bond authored
-
Dan Bond authored
-
Dan Bond authored
-
Dhi Aurrahman authored
Signed-off-by: Dhi Aurrahman <dio@tetrate.io>
-
- Oct 04, 2019
-
-
Joel Speed authored
Fix permalinks for configuration and sessions
-
- Oct 03, 2019
-
-
Joel Speed authored
-
- Oct 02, 2019
-
-
Joel Speed authored
Escape original request URI in sample kubernetes ingress configuration
-
T S authored
The current sample configuration for kubernetes ingress demonstrates using the `auth-signin` annotation to redirect a user to oauth2_proxy's signin page. It constructs the link to do so by directly concatenating `$request_uri` as the `rd` parameter, so the sign-in page knows where to send the user after signin is complete. However, this does not work correctly if the original request URI contains multiple query parameters separated by an ampersand, as that ampersand is interpereted as separating query parameters of the `/oauth2/start` URI. For example: If the user requests a URL: https://example.com/foo?q1=v1&q2=v2 they may be redirected to the signin url https://example.com/oauth2/start?rd=https://example.com/foo?q1=v1&q2=v2 and after completing signin, oauth2_proxy will redirect them to https://example.com/foo?q1=v1 nginx-ingress added an $escaped_request_uri variable about a year ago, to help resolve this kind of issue (https://github.com/kubernetes/ingress-nginx/pull/2811)
-
- Oct 01, 2019
-
-
Joel Speed authored
More fully support X-Auth-Request-Redirect header
-
Joel Speed authored
-
- Sep 26, 2019
-
-
Joel Speed authored
Add keycloak provider
-
Dan Bond authored
-
Dan Bond authored
-
- Sep 20, 2019
-
-
Ian Hunter authored
-
Ian Hunter authored
-
- Aug 28, 2019
-
-
Nelson Menezes authored
-
- Aug 21, 2019
-
-
Joel Speed authored
Bump nokogiri from 1.10.1 to 1.10.4 in /docs
-
dependabot[bot] authored
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.1 to 1.10.4. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.1...v1.10.4) Signed-off-by: dependabot[bot] <support@github.com>
-
- Aug 18, 2019
-
-
Ian Hunter authored
Docs showed that the X-Auth-Request-Redirect header can specify a redirect URI, but only the rd POST parameter was being honored This fixes that.
-
- Aug 17, 2019
-
-
Henry Jenkins authored
-
- Aug 16, 2019
-
-
Joel Speed authored
Update changelog for v4.0.0 release
-
Joel Speed authored
-
aledeganopix4d authored
Add a new provider for Bitbucket, can be configured from the options specifying team and/or repository that the user must be part/have access to in order to grant login.
-
Joel Speed authored
Made setting of proxied headers deterministic based on configuration alone
-
Adam Eijdenberg authored
alone Previously some headers that are normally set by the proxy (and may be replied upstream for authorization decisiions) were not being set depending on values in the users sesssion. This change ensure that if a given header is sometimes set, it will always be either set or removed. It might be worth considerating always deleting these headers if we didn't add them.
-
- Aug 15, 2019
-
-
Joel Speed authored
Fix links in docs
-
- Aug 14, 2019
-
-
Henry Jenkins authored
-
Henry Jenkins authored
Docs only: format Command Line Options using a table
-
Joel Speed authored
-
Henry Jenkins authored
-
Henry Jenkins authored
Fix some typos
-
Brady Mitchell authored
-
Brady Mitchell authored
-
- Aug 13, 2019
-
-
Dan Bond authored
-
Dan Bond authored
-
Joel Speed authored
Add OIDC support for UserInfo Endpoint Email Verification
-