* [DOC] Fix broken link

* Update auth.md

* Update auth.md

* Update auth.md

Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

* [DOC] Add header to cookie secret paragraph

* Update overview.md

* Update overview.md

* Update overview.md

Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

Co-authored-by: Nick Meves <nick.meves@greenhouse.io>

Ensure config flags get parsed correctly when other flags preceed them

Flatten array-based response headers

Prepare for Release v7.0.0

Created within: yarn run docusaurus docs:version 7.0.x

* Update alpine version to 3.13 

alpine 3.12 has a CVE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28928 which got fixed in recent version

* address review comments

* Use comma separated value for multiple claims

* Fix lint error

* Fix more tests

* Fix one more test

* Always flatten the headers

* Ensure we test the real multi-groups

* Only update map when necessary

* Update CHANGELOG

* Move to the right location of change log

* Fix blank line

* Add sensible logging flag to default setup for logger

* Use logger instead of fmt for info logging with sensible data

* Remove sensible logging flag

* Update CHANGELOG.md

Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>

Add docs and generated reference for Alpha configuration

Track the ReverseProxy config setting in the request Scope

Additionally, convert a lot of helper methods to be private

Reorganized the structure of the Request Utils due to their widespread use
resulting in circular imports issues (mostly because of middleware & logger).

This allows for proper handling of reverse proxy based headers throughout
the lifecycle of a request.

Add Security Policy

Adapt isAjax to support mimetype lists

Fixes #988

Add NickMeves to MAINTAINERS

* properly handle splitted cookies with names ending with _

* test update

* provide cookieName into joinCookies instead of processing the suffix

* changelog update

* test update

Refactor Keycloak Provider Methods