From c0654e3d9f6cb6d888bc2b71a2c2c429e9ac4bea Mon Sep 17 00:00:00 2001 From: Joel Speed Date: Wed, 24 Mar 2021 22:30:33 +0000 Subject: [PATCH] Remove unused fields from OAuthProxy --- CHANGELOG.md | 1 + oauthproxy.go | 15 --------------- oauthproxy_test.go | 10 +++------- 3 files changed, 4 insertions(+), 22 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index b9639416..7dc9305a 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -9,6 +9,7 @@ ## Changes since v7.1.1 - [#1129](https://github.com/oauth2-proxy/oauth2-proxy/pull/1129) Rewrite OpenRedirect tests in ginkgo (@JoelSpeed) +- [#1127](https://github.com/oauth2-proxy/oauth2-proxy/pull/1127) Remove unused fields from OAuthProxy (@JoelSpeed) # V7.1.1 diff --git a/oauthproxy.go b/oauthproxy.go index ec7b3b7b..8ef5cd03 100644 --- a/oauthproxy.go +++ b/oauthproxy.go @@ -60,15 +60,12 @@ type allowedRoute struct { // OAuthProxy is the main authentication proxy type OAuthProxy struct { - CookieSeed string - CookieName string CSRFCookieName string CookieDomains []string CookiePath string CookieSecure bool CookieHTTPOnly bool CookieExpire time.Duration - CookieRefresh time.Duration CookieSameSite string Validator func(string) bool @@ -88,16 +85,7 @@ type OAuthProxy struct { ProxyPrefix string basicAuthValidator basic.Validator serveMux http.Handler - SetXAuthRequest bool - PassBasicAuth bool - SetBasicAuth bool SkipProviderButton bool - PassUserHeaders bool - BasicAuthPassword string - PassAccessToken bool - SetAuthorization bool - PassAuthorization bool - PreferEmailToUser bool skipAuthPreflight bool skipJwtBearerTokens bool realClientIPParser ipapi.RealClientIPParser @@ -191,15 +179,12 @@ func NewOAuthProxy(opts *options.Options, validator func(string) bool) (*OAuthPr } p := &OAuthProxy{ - CookieName: opts.Cookie.Name, CSRFCookieName: fmt.Sprintf("%v_%v", opts.Cookie.Name, "csrf"), - CookieSeed: opts.Cookie.Secret, CookieDomains: opts.Cookie.Domains, CookiePath: opts.Cookie.Path, CookieSecure: opts.Cookie.Secure, CookieHTTPOnly: opts.Cookie.HTTPOnly, CookieExpire: opts.Cookie.Expire, - CookieRefresh: opts.Cookie.Refresh, CookieSameSite: opts.Cookie.SameSite, Validator: validator, diff --git a/oauthproxy_test.go b/oauthproxy_test.go index 9be2da49..5f2cd32e 100644 --- a/oauthproxy_test.go +++ b/oauthproxy_test.go @@ -714,7 +714,7 @@ func (patTest *PassAccessTokenTest) getCallbackEndpoint() (httpCode int, // getEndpointWithCookie makes a requests againt the oauthproxy with passed requestPath // and cookie and returns body and status code. func (patTest *PassAccessTokenTest) getEndpointWithCookie(cookie string, endpoint string) (httpCode int, accessToken string) { - cookieName := patTest.proxy.CookieName + cookieName := patTest.opts.Cookie.Name var value string keyPrefix := cookieName + "=" @@ -983,9 +983,6 @@ func NewProcessCookieTest(opts ProcessCookieTestOpts, modifiers ...OptionsModifi } pcTest.proxy.provider.(*TestProvider).SetAllowedGroups(pcTest.opts.AllowedGroups) - // Now, zero-out proxy.CookieRefresh for the cases that don't involve - // access_token validation. - pcTest.proxy.CookieRefresh = time.Duration(0) pcTest.rw = httptest.NewRecorder() pcTest.req, _ = http.NewRequest("GET", "/", strings.NewReader("")) pcTest.validateUser = true @@ -1107,7 +1104,6 @@ func TestProcessCookieFailIfRefreshSetAndCookieExpired(t *testing.T) { err = pcTest.SaveSession(startSession) assert.NoError(t, err) - pcTest.proxy.CookieRefresh = time.Hour session, err := pcTest.LoadCookiedSession() assert.NotEqual(t, nil, err) if session != nil { @@ -2003,7 +1999,7 @@ func TestClearSplitCookie(t *testing.T) { t.Fatal(err) } - p := OAuthProxy{CookieName: opts.Cookie.Name, CookieDomains: opts.Cookie.Domains, sessionStore: store} + p := OAuthProxy{sessionStore: store} var rw = httptest.NewRecorder() req := httptest.NewRequest("get", "/", nil) @@ -2036,7 +2032,7 @@ func TestClearSingleCookie(t *testing.T) { t.Fatal(err) } - p := OAuthProxy{CookieName: opts.Cookie.Name, CookieDomains: opts.Cookie.Domains, sessionStore: store} + p := OAuthProxy{sessionStore: store} var rw = httptest.NewRecorder() req := httptest.NewRequest("get", "/", nil)