- Sep 09, 2017
-
-
Eric Chiang authored
See the README for usage with Dex or any other OIDC provider. To test run a backend: python3 -m http.server Run dex and modify the example config with the proxy callback: go get github.com/coreos/dex/cmd/dex cd $GOPATH/src/github.com/coreos/dex sed -i.bak \ 's|http://127.0.0.1:5555/callback|http://127.0.0.1:5555/oauth2/callback|g' \ examples/config-dev.yaml make ./bin/dex serve examples/config-dev.yaml Then run the oauth2_proxy oauth2_proxy \ --oidc-issuer-url http://127.0.0.1:5556/dex \ --upstream http://localhost:8000 \ --client-id example-app \ --client-secret ZXhhbXBsZS1hcHAtc2VjcmV0 \ --cookie-secret foo \ --email-domain '*' \ --http-address http://127.0.0.1:5555 \ --redirect-url http://127.0.0.1:5555/oauth2/callback \ --cookie-secure=false Login with the username/password "admin@example.com:password"
-
- Apr 25, 2017
-
-
Jehiah Czebotar authored
dist.sh: use go build option to strip binaries
-
Pierce Lopez authored
30% release binary size reduction
-
Pierce Lopez authored
-
Jehiah Czebotar authored
Release v2.2
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
- Apr 21, 2017
-
-
Jehiah Czebotar authored
Fix url parse error
-
- Apr 07, 2017
-
-
Jehiah Czebotar authored
#369: Optionally allow skipping authentication for preflight requests
-
idntfy authored
-
- Apr 03, 2017
-
-
Travis Hunter authored
-
- Mar 30, 2017
-
-
Jehiah Czebotar authored
various fixes for getting Nginx auth_request mode working
-
- Mar 29, 2017
-
-
Ashish Kulkarni authored
-
Sjoerd Mulder authored
This is useful in Nginx auth_request mode, if a 401 handler is configured to redirect to the sign-in page. As the request URL does not reflect the actual URL, the value is taken from the header "X-Auth-Request-Redirect" instead. Based on #247
-
Lukasz Siudut authored
This is enhancement of #173 to use "Auth Request" consistently in the command-line option, configuration file and response headers. It always sets the X-Auth-Request-User response header and if the email is available, sets X-Auth-Request-Email as well.
-
Jehiah Czebotar authored
Option to skip SSL verification
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
travis: run gofmt and go vet
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
CSRF protection for OAuth flow.
-
Colin Arnott authored
-
Jehiah Czebotar authored
Allow to pass user headers only
-
Jehiah Czebotar authored
Oversize Cookie Alert
-
Jehiah Czebotar authored
Skip 404 errors when looking up Google groups
-
Jehiah Czebotar authored
Improve redirect checks
-
Colin Arnott authored
-
- Mar 28, 2017
-
-
Eskil Andreen authored
When checking user membership against Google groups the groups are checked one at a time and in the order that they were supplied. If one of the groups does not exist then the checking is halted with the following error. google.go:201: googleapi: Error 404: Resource Not Found: groupKey, notFound None of the groups following the missing group are checked either. This means that something as trivial as a typo in the first group will make it impossible for anybody to login. This change catches the 404, logs a message, and then carries on as usual. In this way a typo will cause a particular group to stop working but will not affect any other groups.
-
Jehiah Czebotar authored
Update vendored dependencies.
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
This fixes a test w request signing due to a content-length:0 header from Go 1.8
-
Jehiah Czebotar authored
dist.sh and Godeps updates
-
Pierce Lopez authored
-
Pierce Lopez authored
golang.org/x/oauth2/google is same repo as golang.org/x/oauth2 - this sometimes confused gpm/git cloud.google.com/go/compute/metadata is a missing dependency of golang.org/x/oauth2
-
Pierce Lopez authored
so gpm is not affected if module exists in user's GOPATH already
-
Pierce Lopez authored
-
Jehiah Czebotar authored
dist.sh: add .exe for windows build
-
Pierce Lopez authored
-
- Mar 23, 2017
-
-
Jehiah Czebotar authored
[signout] Implement logout endpoint
-
- Mar 22, 2017
-
-
Guillaume Bienkowski authored
-