- Feb 18, 2022
- Feb 17, 2022
-
-
Joel Speed authored
Fix provider data initialisation
-
Joel Speed authored
-
- Feb 16, 2022
-
-
Joel Speed authored
Refactor provider configuration into providers package
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
Add generic claim extractor to get claims from ID Tokens
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
-
Joel Speed authored
Implement session locking with session state lock
-
Joel Speed authored
-
Joel Speed authored
-
Kevin Kreitner authored
-
Michael Hienle authored
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-
Kevin Schu authored
* implementation draft * add cfg options skip-au-when-missing && client-id-verification-claim; enhance the provider data verification logic for sake of the added options * refactor configs, added logging and add additional claim verification * simplify logic by just having one configuration similar to oidc-email-claim * added internal oidc token verifier, so that aud check behavior can be managed with oauth2-proxy and is compatible with extra-jwt-issuers * refactored verification to reduce complexity * refactored verification to reduce complexity * added docs * adjust tests to support new OIDCAudienceClaim and OIDCExtraAudiences options * extend unit tests and ensure that audience is set with the value of aud claim configuration * revert filemodes and update docs * update docs * remove unneccesary logging, refactor audience existence check and added additional unit tests * fix linting issues after rebase on origin/main * cleanup: use new imports for migrated libraries after rebase on origin/main * adapt mock in keycloak_oidc_test.go * allow specifying multiple audience claims, fixed bug where jwt issuers client id was not the being considered and fixed bug where aud claims with multiple audiences has broken the whole validation * fixed formatting issue * do not pass the whole options struct to minimize complexity and dependency to the configuration structure * added changelog entry * update docs Co-authored-by: Sofia Weiler <sofia.weiler@aoe.com> Co-authored-by: Christian Zenker <christian.zenker@aoe.com>
-
- Feb 15, 2022
-
-
Valentin Pichard authored
Add the allowed_email_domains and the allowed_groups on the auth_request endpoint + support standard wildcard char for validation with sub-domain and email-domain. Signed-off-by: Valentin Pichard <github@w3st.fr>
-
- Feb 11, 2022
-
-
Joel Speed authored
Fix broken link
-
Michael Hienle authored
-
- Feb 10, 2022
-
-
Joel Speed authored
Fix issue with query string allowed group panic on skip methods
-
Andy Thompson authored
-
Andy Thompson authored
-
Joel Speed authored
Add option to specify the tls.Config.MinVersion for the server to be able to restrict it to TLS 1.3
-
polarctos authored
-
polarctos authored
-
- Feb 04, 2022
-
-
Preston Sheldon authored
* Add ValidateSession function to LoginGovProvder to include Auth Header * Update CHANGELOG for PR 1509 * Update logingov_test to include ValidationURL
-
Joel Speed authored
Fix Docker Buildx push to include build version
-
Joel Speed authored
-
- Jan 18, 2022
-
-
ThomasKalten authored
-
ThomasKalten authored
-
- Dec 30, 2021
-
-
Magnus Lübeck authored
Fixing a typo for the docker-compose-alpha-config.yaml
-
- Dec 24, 2021
-
-
Ole-Martin Bratteng authored
* Remove the information about `Microsoft Azure AD` * Put `proxy_buffer_size` in a code tag * Update `CHANGELOG.md` Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
-