mirror of
https://github.com/oauth2-proxy/oauth2-proxy.git
synced 2024-12-12 11:15:02 +02:00
1961424561
* Add -user-id-claim to support other claims than email Fix #431 - This is a minimal change to allow the user to configure which claim is the source of the "user ID". - Add the option `user-id-claim` (defaults to email) - OIDC extracts this claim into session.Email (to be renamed later) - providers: add `CreateSessionStateFromBearerToken` with a default impl taken from `GetJwtSession` and overridden by oidc to respect `user-id-claim` Once #466 is merged, I can continue to rename SessionState.Email to .UserID and add HTTP headers with a corresponding name. * Apply suggestions from code review Co-Authored-By: Joel Speed <Joel.speed@hotmail.co.uk> * Review feedback: Don't extract claims manually Instead, parse them twice - it might be sligtly slower but less bug-prone as the code evolves. * Fix indentation Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk> |
||
|---|---|---|
| .. | ||
| auth_test.go | ||
| azure_test.go | ||
| azure.go | ||
| bitbucket_test.go | ||
| bitbucket.go | ||
| digitalocean_test.go | ||
| digitalocean.go | ||
| facebook.go | ||
| github_test.go | ||
| github.go | ||
| gitlab_test.go | ||
| gitlab.go | ||
| google_test.go | ||
| google.go | ||
| internal_util_test.go | ||
| internal_util.go | ||
| keycloak_test.go | ||
| keycloak.go | ||
| linkedin_test.go | ||
| linkedin.go | ||
| logingov_test.go | ||
| logingov.go | ||
| nextcloud_test.go | ||
| nextcloud.go | ||
| oidc_test.go | ||
| oidc.go | ||
| provider_data.go | ||
| provider_default_test.go | ||
| provider_default.go | ||
| providers.go | ||