- Mar 29, 2017
-
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
travis: run gofmt and go vet
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
CSRF protection for OAuth flow.
-
Colin Arnott authored
-
Jehiah Czebotar authored
Allow to pass user headers only
-
Jehiah Czebotar authored
Oversize Cookie Alert
-
Jehiah Czebotar authored
Skip 404 errors when looking up Google groups
-
Jehiah Czebotar authored
Improve redirect checks
-
Colin Arnott authored
-
- Mar 28, 2017
-
-
Eskil Andreen authored
When checking user membership against Google groups the groups are checked one at a time and in the order that they were supplied. If one of the groups does not exist then the checking is halted with the following error. google.go:201: googleapi: Error 404: Resource Not Found: groupKey, notFound None of the groups following the missing group are checked either. This means that something as trivial as a typo in the first group will make it impossible for anybody to login. This change catches the 404, logs a message, and then carries on as usual. In this way a typo will cause a particular group to stop working but will not affect any other groups.
-
Jehiah Czebotar authored
Update vendored dependencies.
-
Jehiah Czebotar authored
-
Jehiah Czebotar authored
This fixes a test w request signing due to a content-length:0 header from Go 1.8
-
Jehiah Czebotar authored
dist.sh and Godeps updates
-
Pierce Lopez authored
-
Pierce Lopez authored
golang.org/x/oauth2/google is same repo as golang.org/x/oauth2 - this sometimes confused gpm/git cloud.google.com/go/compute/metadata is a missing dependency of golang.org/x/oauth2
-
Pierce Lopez authored
so gpm is not affected if module exists in user's GOPATH already
-
Pierce Lopez authored
-
Jehiah Czebotar authored
dist.sh: add .exe for windows build
-
Pierce Lopez authored
-
- Mar 23, 2017
-
-
Jehiah Czebotar authored
[signout] Implement logout endpoint
-
- Mar 22, 2017
-
-
Guillaume Bienkowski authored
-
- Feb 24, 2017
-
-
Brian Dwyer authored
Cookies cannot be larger than 4kb
-
- Jan 24, 2017
-
-
Omar Elazhary authored
* This fixes https://github.com/bitly/oauth2_proxy/issues/205 * Add new boolean option -pass-user-headers to control whether X-Forwarded-User and X-Forwarded-Email headers will be set (as opposed to HTTP BASIC auth) * This is required e.g. for grafana [1] where X-Forwarded-User is needed but HTTP BASIC auth fails (password is not known and must not be known in this scenario) * Keep behaviour of PassBasicAuth unchanged for compatibility [1] http://docs.grafana.org/installation/configuration/#authproxy
-
- Nov 19, 2016
-
-
Jehiah Czebotar authored
Correct the spelling of GitHub in README
-
ReadmeCritic authored
-
- Aug 25, 2016
-
-
Jehiah Czebotar authored
repo golang.org/x/oauth2/google has moved, fixes travis build
-
Marc Tamsky authored
this fixes the travis build, which is broken
-
- Aug 03, 2016
-
-
Jehiah Czebotar authored
Strip sensitive URL parameters from provider log output
-
nickmiller-wf authored
-
- Jul 31, 2016
-
-
Jehiah Czebotar authored
Adding skip-provider-button docs
-
Mark Herhold authored
-
- Jul 20, 2016
-
-
Jehiah Czebotar authored
Bump travis version
-
James Tancock authored
-
tanuck authored
Validate cookie name passes go's isCookieNameValid check
-
- Jul 05, 2016
-
-
Nick Semenkovich authored
-
- Jul 04, 2016
-
-
Jehiah Czebotar authored
Getting mail for Azure provider fix + tests
-
Jehiah Czebotar authored
-