go/oauth2-proxy
1
0
Fork 0
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git synced 2025-01-10 04:18:14 +02:00
Code Issues Releases Activity
bdfca925a3
oauth2-proxy/pkg/encryption
History
Nick Meves 7eeaea0b3f
Support nonce checks in OIDC Provider (#967) 
* Set and verify a nonce with OIDC

* Create a CSRF object to manage nonces & cookies

* Add missing generic cookie unit tests

* Add config flag to control OIDC SkipNonce

* Send hashed nonces in authentication requests

* Encrypt the CSRF cookie

* Add clarity to naming & add more helper methods

* Make CSRF an interface and keep underlying nonces private

* Add ReverseProxy scope to cookie tests

* Align to new 1.16 SameSite cookie default

* Perform SecretBytes conversion on CSRF cookie crypto

* Make state encoding signatures consistent

* Mock time in CSRF struct via Clock

* Improve InsecureSkipNonce docstring
2021-04-21 10:33:27 +01:00
..
cipher_test.go Reduce SessionState size better with MessagePack + LZ4 (#632) 2020-07-13 20:56:05 +01:00
cipher.go Reduce SessionState size better with MessagePack + LZ4 (#632) 2020-07-13 20:56:05 +01:00
nonce.go Support nonce checks in OIDC Provider (#967) 2021-04-21 10:33:27 +01:00
utils_test.go Stop accepting legacy SHA1 signed cookies 2020-09-24 10:31:34 -07:00
utils.go Stop accepting legacy SHA1 signed cookies 2020-09-24 10:31:34 -07:00