oauth2-proxy

go/oauth2-proxy

Fork 0

mirror of https://github.com/oauth2-proxy/oauth2-proxy.git synced 2025-05-21 22:33:38 +02:00

Commit Graph

Author	SHA1	Message	Date
Matthias Penner	a393ea3ca0	pkg/cookies: use 'Max-Age' instead of 'Expires' for cookie expiration	2025-02-24 11:14:51 +01:00
Koen van Zuijlen	343bd61ebb	chore(deps): Updated to ginkgo v2 (#2459 ) * chore(deps): Updated to ginkgo v2 * fix basic auth test suite cleanup * fix redis store tests * add changelog entry --------- Co-authored-by: Jan Larwig <jan@larwig.com>	2024-07-18 22:41:02 +02:00
Nick Meves	7eeaea0b3f	Support nonce checks in OIDC Provider (#967 ) * Set and verify a nonce with OIDC * Create a CSRF object to manage nonces & cookies * Add missing generic cookie unit tests * Add config flag to control OIDC SkipNonce * Send hashed nonces in authentication requests * Encrypt the CSRF cookie * Add clarity to naming & add more helper methods * Make CSRF an interface and keep underlying nonces private * Add ReverseProxy scope to cookie tests * Align to new 1.16 SameSite cookie default * Perform SecretBytes conversion on CSRF cookie crypto * Make state encoding signatures consistent * Mock time in CSRF struct via Clock * Improve InsecureSkipNonce docstring	2021-04-21 10:33:27 +01:00

Author

SHA1

Message

Date

Matthias Penner

a393ea3ca0

pkg/cookies: use 'Max-Age' instead of 'Expires' for cookie expiration

2025-02-24 11:14:51 +01:00

Koen van Zuijlen

343bd61ebb

chore(deps): Updated to ginkgo v2 (#2459 )

* chore(deps): Updated to ginkgo v2

* fix basic auth test suite cleanup

* fix redis store tests

* add changelog entry

---------

Co-authored-by: Jan Larwig <jan@larwig.com>

2024-07-18 22:41:02 +02:00

Nick Meves

7eeaea0b3f

Support nonce checks in OIDC Provider (#967 )

* Set and verify a nonce with OIDC

* Create a CSRF object to manage nonces & cookies

* Add missing generic cookie unit tests

* Add config flag to control OIDC SkipNonce

* Send hashed nonces in authentication requests

* Encrypt the CSRF cookie

* Add clarity to naming & add more helper methods

* Make CSRF an interface and keep underlying nonces private

* Add ReverseProxy scope to cookie tests

* Align to new 1.16 SameSite cookie default

* Perform SecretBytes conversion on CSRF cookie crypto

* Make state encoding signatures consistent

* Mock time in CSRF struct via Clock

* Improve InsecureSkipNonce docstring

2021-04-21 10:33:27 +01:00

3 Commits