go/oauth2-proxy
1
0
Fork 0
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git synced 2025-01-10 04:18:14 +02:00
Code Issues Releases Activity
7eeaea0b3f
oauth2-proxy/pkg/validation
History
Nick Meves 7eeaea0b3f
Support nonce checks in OIDC Provider (#967) 
* Set and verify a nonce with OIDC

* Create a CSRF object to manage nonces & cookies

* Add missing generic cookie unit tests

* Add config flag to control OIDC SkipNonce

* Send hashed nonces in authentication requests

* Encrypt the CSRF cookie

* Add clarity to naming & add more helper methods

* Make CSRF an interface and keep underlying nonces private

* Add ReverseProxy scope to cookie tests

* Align to new 1.16 SameSite cookie default

* Perform SecretBytes conversion on CSRF cookie crypto

* Make state encoding signatures consistent

* Mock time in CSRF struct via Clock

* Improve InsecureSkipNonce docstring
2021-04-21 10:33:27 +01:00
..
allowlist_test.go Improve AllowedRoute test table formatting 2020-10-07 10:13:41 -07:00
allowlist.go Improve AllowedRoute test table formatting 2020-10-07 10:13:41 -07:00
common_test.go SecretSource.Value should be plain text in memory 2020-12-01 08:56:46 +00:00
common.go SecretSource.Value should be plain text in memory 2020-12-01 08:56:46 +00:00
cookie_test.go Fix import path for v7 (#800) 2020-09-29 17:44:42 +01:00
cookie.go Fix import path for v7 (#800) 2020-09-29 17:44:42 +01:00
header_test.go SecretSource.Value should be plain text in memory 2020-12-01 08:56:46 +00:00
header.go Add validation for Headers struct 2020-11-07 17:16:54 +00:00
logging.go Fix import path for v7 (#800) 2020-09-29 17:44:42 +01:00
options_test.go Multiple providers in alpha config (#947) 2021-04-03 17:06:30 +01:00
options.go Support nonce checks in OIDC Provider (#967) 2021-04-21 10:33:27 +01:00
providers_test.go Multiple providers in alpha config (#947) 2021-04-03 17:06:30 +01:00
providers.go Multiple providers in alpha config (#947) 2021-04-03 17:06:30 +01:00
sessions_test.go Integrate new header injectors with OAuth2 Proxy 2020-11-07 17:16:58 +00:00
sessions.go Support nonce checks in OIDC Provider (#967) 2021-04-21 10:33:27 +01:00
upstreams_test.go Introduce Duration so that marshalling works for duration strings 2020-11-19 10:35:29 +00:00
upstreams.go Add DefaultUpstreamFlushInterval to replace magic time.Second value 2020-11-19 10:39:21 +00:00
utils.go Add validation for Headers struct 2020-11-07 17:16:54 +00:00
validation_suite_test.go Ensure errors in tests are logged to the GinkgoWriter 2021-02-10 19:50:04 +00:00