- Mar 29, 2020
-
-
Joel Speed authored
-
Joel Speed authored
Update Changelog for Release 5.1.0
-
Joel Speed authored
-
Joel Speed authored
-
- Mar 18, 2020
-
-
Mitsuo Heijo authored
* fix: http.Cookie SameSite is not copied. * Update CHANGELOG.md
-
Jakub Holy authored
-
- Mar 16, 2020
-
-
Mariusz Strzelecki authored
* Bitbucket Auth Provider docs * Typo fixed
-
Erico Fusco authored
Fix PR link for #435
-
- Mar 14, 2020
-
-
Mitsuo Heijo authored
* Upgrade base image tags and golangci-lint * Upgrade golang and golangci-lint in travis-ci * fix: tests, pointed out by golangci-lint and format files * Upgrade dependencies * update changelog * fix: tests related to https://github.com/pusher/oauth2_proxy/pull/418 * Separate tests using go version build tags * Update CHANGELOG * Revert "Separate tests using go version build tags" This reverts commit 9b7e65eb90cae954dc7b6316345d3207205d488a. * fix test to support go1.14 and go1.13 Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Jakub Holy authored
Fixes #441 + a minor link fix
-
Wolfgang Richter authored
* cleaned up source to make golangci-lint pass * providers/azure_test.go: use build in POST constant * options_test.go: do not export unnecessary variables Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Jakub Holy authored
Fix #380
-
Jakub Holy authored
Clarify how to rename CLI options to be able to set them in the config file. I have just spent an hour trying to find out why `whitelist_domain="..."` does not work :-) Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Erico Fusco authored
* Revert group validation on every request * Fix syntax * Remove unit tests associated with reverted change * Update CHANGELOG
-
- Mar 08, 2020
-
-
Joel Speed authored
Support the PreferEmailToUser option on PassUserHeaders
-
- Mar 04, 2020
-
-
Jordan Crawford authored
Previously in #401, an option was added to support forwarding the email address as the username to the upstream service when the PassBasicAuth option is used. The PassBasicAuth option is not appropriate for all users, with PassUserHeaders allowing very similar functionality without specifying a basic auth headers. The PreferEmailToUser option has been expanded to support the PassUserHeaders option.
-
- Mar 02, 2020
-
-
Joel Speed authored
Add GitHub Action to tidy stale issues
-
Dan Bond authored
Co-Authored-By: Theo Barber-Bany <theo.barberbany@pusher.com>
-
Dan Bond authored
Co-Authored-By: Theo Barber-Bany <theo.barberbany@pusher.com>
-
- Mar 01, 2020
-
-
Joel Speed authored
-
Felix Fontein authored
* Add support for preferred username. * Add missing TOC entries. * Add note about preferred_username support. * Adjust tests. * Check on not implemented error for GetPreferredUsername() call. Co-authored-by: Felix Fontein <felix@fontein.de> Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
ume authored
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
D. Spindel authored
With some providers the Username is an upstream Unique ID, like fex. in the case of Google. When matching this with downstream databases, it's sometimes preferred to use the email address as the known identifier. However, when _mixing_ this with sometimes other sources, like htaccess, which doesn't have a concept of an email address, it can turn difficult. This change makes the headers _prefer_ to use the Email address, if such exists, for the Username identifier when passing data to downstream services. Defaults to Off. Signed-off-by: D.S. Ljungmark <ljungmark@modio.se> Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
- Feb 29, 2020
-
-
dependabot[bot] authored
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.10.4 to 1.10.8. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md) - [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.4...v1.10.8) Signed-off-by: dependabot[bot] <support@github.com>
-
- Feb 28, 2020
-
-
Timo Beckers authored
* Use OAuthProxy.GetRedirect in /sign_in, honoring the 'rd' query parameter * CHANGELOG.md - Add a changelog entry for #405
-
- Feb 24, 2020
-
-
Luke Tainton authored
* Add nsswitch.conf to Docker image Created nsswitch.conf to use locally defined translations before DNS. Copied to /etc/nsswitch.conf in the image. * Add new line * Updated Changelog Co-authored-by: Dan Bond <danbond@protonmail.com>
-
- Feb 19, 2020
-
-
Jakub Holy authored
-
- Feb 17, 2020
-
-
Nir Aizik authored
-
- Feb 15, 2020
-
-
Iain Buclaw authored
Refactors the setting of the Authorization header into getGitHubHeader. Refs #382 Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Jakub Holy authored
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Pavel Kirichenko authored
* added ClientSecretFile in ProviderData * add documentation notes on client secret file * added Changelog entry for Client Secret File PR * fixing configuration.md * addressing PR issue of ClientSecret property naming * Update providers/provider_data.go Co-Authored-By: Joel Speed <Joel.speed@hotmail.co.uk> * corrected changelog entry * fixed typo in GetClientSecret Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Devin Nemec authored
* Fallback to secondary verified email * Add change to changelog
-
- Feb 07, 2020
-
-
Ben Letton authored
* OIDC Token Refresh works without id_tokens Addresses https://github.com/pusher/oauth2_proxy/issues/318 Refactoring the OIDC provider so that the refresh process works when there are no id_tokens present in the response. Added unit tests to the oidc_test.go to prove the redeem and refresh still work. The expiry time of the session is now taken from the outh token expiry and not the id_token (preventing stale access_tokens in sessions). * Refactoring the to use a KeySetStub in the oidc_test.go. This allows the elimination of the slightly contrived function passing elements used previously. (This change is being applied to address the bug #318) * Changes as per the PR comments and preparing for 5.x release * Fixup changelog Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Yan Yao authored
* Extend the redis session store to support redis cluster * rename function newRedisClient to newRedisCmdable * update docs about redis cluster as session store * update autocomplete script with redis cluster options * add check about conflict between option redis-use-sentinel and redis-use-cluster * update change log * Update docs/configuration/sessions.md Co-Authored-By: Joel Speed <Joel.speed@hotmail.co.uk> * Update pkg/sessions/redis/redis_store.go Co-Authored-By: Joel Speed <Joel.speed@hotmail.co.uk> * add the dropped option back Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
- Feb 06, 2020
-
-
Nick Watts authored
-
- Feb 03, 2020
-
-
Jakub Holy authored
-
- Jan 31, 2020
-
-
Felix Fontein authored
* Fix login page fragment handling after soft reload on Firefox. * Add comments. * Move changelog entry to correct place. Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk> Co-authored-by: Felix Fontein <felix@fontein.de>
-
- Jan 29, 2020
-
-
David Stark authored
Open redirect (security vulnerability) notes
-
David Stark authored
-
David Stark authored
check for /\ redirects
-