- Apr 25, 2017
-
-
Pierce Lopez authored
how to pass back the refreshed oauth2_proxy cookie from an nginx auth_request
-
Pierce Lopez authored
/oauth2/auth is not more sensitive than other /oauth2/ paths, does not need "internal" protection "spdy" protocol is obsolete, http2 is the thing to enable now. But it's orthogonal anyway. No need for two separate content/upstream location blocks in this example, reduce to just one, with a comment that it could be serving files instead of proxying.
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
- Apr 07, 2017
-
-
idntfy authored
-
- Mar 29, 2017
-
-
Ashish Kulkarni authored
-
Jehiah Czebotar authored
-
- Jan 24, 2017
-
-
Omar Elazhary authored
* This fixes https://github.com/bitly/oauth2_proxy/issues/205 * Add new boolean option -pass-user-headers to control whether X-Forwarded-User and X-Forwarded-Email headers will be set (as opposed to HTTP BASIC auth) * This is required e.g. for grafana [1] where X-Forwarded-User is needed but HTTP BASIC auth fails (password is not known and must not be known in this scenario) * Keep behaviour of PassBasicAuth unchanged for compatibility [1] http://docs.grafana.org/installation/configuration/#authproxy
-
- Nov 19, 2016
-
-
ReadmeCritic authored
-
- Jul 31, 2016
-
-
Mark Herhold authored
-
- Jul 05, 2016
-
-
Nick Semenkovich authored
-
- Jun 28, 2016
-
-
Nick Semenkovich authored
The correct endpoint is /oauth2/auth
-
- Jun 23, 2016
-
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
* will not re-prompt if the email permission is denied, or if you previously authorized the same FB app without the email scope.
-
- Jun 20, 2016
-
-
Jehiah Czebotar authored
-
- Apr 12, 2016
-
-
Joakim Gustin authored
-
- Feb 24, 2016
-
-
Mike Bland authored
-
- Feb 18, 2016
-
-
Raphaël Pinson authored
-
- Feb 17, 2016
-
-
pmosbach authored
-
Robert Hencke authored
-
- Feb 13, 2016
-
-
Alex authored
-
- Jan 22, 2016
-
-
Ruta Sakalauskaite authored
-
- Jan 20, 2016
-
-
Eelco Cramer authored
-
- Dec 17, 2015
-
-
funkymrrogers authored
Google changed to developer console UI, updated walkthrough to match new UI.
-
- Nov 16, 2015
-
-
Mike Bland authored
-
- Nov 10, 2015
-
-
Mike Bland authored
-
- Nov 09, 2015
-
-
Mike Bland authored
Closes #152.
-
- Sep 24, 2015
-
-
Jeppe Toustrup authored
The path should be provided as a file:// url with the full operating system path. An alias to where the directory is available as can be specified by appending a fragment (ie. "#/static/") at the end of the URL.
-
- Sep 09, 2015
-
-
Justin Burnham authored
-
- Aug 10, 2015
-
-
Srivatsa Ray authored
-
- Jul 31, 2015
-
-
Ed Bardsley authored
By setting this to "force", certain providers, like Google, will interject an additional prompt on every new session. With other values, like "auto", this prompt is not forced upon the user.
-
- Jul 25, 2015
-
-
Sharif Nassar authored
*snicker* *titter* *giggle*
-
- Jul 24, 2015
-
-
Justin Burnham authored
For tools that don't like empty passwords, this change allows one to set a shared secret password for all users.
-
- Jul 03, 2015
-
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
- Jun 24, 2015
-
-
Jehiah Czebotar authored
-
- Jun 13, 2015
-
-
Jehiah Czebotar authored
* bump version to 2.0 * remove --cookie-https-only option * add windows build to dist.sh * rename --cookie-key to --cookie-name
-
- Jun 08, 2015
-
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-