sinjuginas/oauth2-proxy
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
1,696 Commits 1 Branch 0 Tags
Commit Graph

1696 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Simon Legner
5b89e975d1
main: fix typo "convert-config-to-alpha" 2022-02-24 08:59:45 +01:00
Joel Speed
b2f780c394
Merge pull request #1512 from r4co0n/fix-docs-cookiesecret-generator-bash 
docs/configuration: Fix entropy for bash secret
 2022-02-21 21:44:04 +00:00
Joel Speed
6dfa3021e8
Merge branch 'master' into fix-docs-cookiesecret-generator-bash 2022-02-20 14:17:12 +00:00
Joel Speed
d34644e160
Merge pull request #1567 from oauth2-proxy/fix-docs-release 
Ensure docs release action has correct env
 2022-02-20 14:14:52 +00:00
Joel Speed
eb43b17750
Ensure docs release action has correct env 2022-02-20 14:07:56 +00:00
Simon Hollenbach
b999c41a5a docs/7.1.x/configuration: Use 32 bytes to generate secret 2022-02-20 14:41:46 +01:00
Simon Hollenbach
4ed564901e docs/versioned_docs: Backport fix entropy for bash secret (#1511) 2022-02-20 14:38:11 +01:00
Simon Hollenbach
db71dd8c55 docs/configuration: Fix entropy for bash secret 
Filtering `/dev/urandom` for alphanumeric characters resulted in loss of
input entropy to base64. Fixing this using a procedure with these steps:

  * Read 32 bytes from `/dev/urandom` (`dd`)
  * Base64-encode (`base64`)
  * Strip newlines (`tr -d`)
  * URL-Escape (`tr`)
  * Append a final newline (`echo`)

This output should be equivalent to output generated using Python and
OpenSSL variants mentioned in the changed document file.

Newlines are stripped as `base64` wraps its output and the option to
disable this (`-w 0`) is not available in all implementations.

Fixes: #1511
 2022-02-20 14:38:11 +01:00
Joel Speed
cc94be0314
Merge pull request #1565 from oauth2-proxy/update-docusaurus 
Update Docusaurus to 2.0.0-beta.15
 2022-02-19 23:10:02 +00:00
Joel Speed
c232136196
Update docs github actions to Node 17 2022-02-19 18:45:07 +00:00
Joel Speed
3ac51f5e2f
Update Docusaurus to 2.0.0-beta.15 2022-02-19 18:40:13 +00:00
Joel Speed
08b9b0c100
Merge pull request #1564 from ianroberts/alpha-config-removed-options 
Update the list of flags obsoleted by alpha config
 2022-02-19 18:14:00 +00:00
Ian Roberts
54ff3b96a7 Added provider flags to the list of those options superseded by alpha config. 2022-02-19 17:05:54 +00:00
Joel Speed
7dc984e664
Merge pull request #1418 from ianroberts/start-url-parameters 
Pass URL parameters from /oauth2/start through to IdP login URL
 2022-02-19 16:22:45 +00:00
Ian Roberts
e1d570c1a2 Changelog entry for #1418. 2022-02-19 16:18:23 +00:00
Ian Roberts
63727103db Support for passing through URL query parameters from /oauth2/start to the ID provider's login URL. 
You must explicitly configure oauth2-proxy (alpha config only) with which parameters are allowed to pass through, and optionally provide an allow-list of valid values and/or regular expressions for each one.  Note that this mechanism subsumes the functionality of the "prompt", "approval_prompt" and "acr_values" legacy configuration options, which must be converted to the equivalent YAML when running in alpha config mode.
 2022-02-19 16:11:09 +00:00
Joel Speed
b547fe0b37
Merge pull request #1559 from oauth2-proxy/refactor-oidc-verifier 
Introduce ProviderVerifier to clean up OIDC discovery code
 2022-02-19 15:43:06 +00:00
Joel Speed
c3158ebc48
Ensure required PKCE information is exposed from provider 2022-02-19 15:38:33 +00:00
Joel Speed
474a3b049e
Add changelog entry for new ProviderVerifier code 2022-02-19 15:38:30 +00:00
Joel Speed
82710a7ac1
Fix other packages that rely on verifiers 2022-02-19 15:37:58 +00:00
Joel Speed
1f992b3f87
Integrate new provider verifier into providers 2022-02-19 15:37:57 +00:00
Joel Speed
e3678aaaff
Add ProviderVerifier to providers/oidc 2022-02-19 15:37:56 +00:00
Joel Speed
3bb9621f5d
Add DiscoveryProvider to perform OIDC discovery 2022-02-19 15:37:55 +00:00
Joel Speed
ed3892296e
Move OIDC IDToken verifier behind interface 2022-02-19 15:37:54 +00:00
Joel Speed
979c3e8cbc
Move internal OIDC package to providers package 2022-02-19 15:37:53 +00:00
Joel Speed
1578d90d0b
Merge pull request #1563 from oauth2-proxy/fix-profile-url 
Ensure claim extractor does not attempt profile call when URL is empty
 2022-02-19 15:37:18 +00:00
Joel Speed
25ef843115
Ensure claim extractor does not attempt profile call when URL is empty 2022-02-19 15:33:30 +00:00
Joel Speed
07aba7db09
Tidy go mod file 2022-02-19 15:32:04 +00:00
Joel Speed
74e2f5069c
Merge pull request #1561 from mgiessing/mgiessing-patch-1 
Add ppc64le support
 2022-02-19 15:20:53 +00:00
mgiessing
515d0f255e
Update CHANGELOG.md 
Add ppc64le support
 2022-02-18 14:20:25 +01:00
mgiessing
873ce3f1c3
Update README.md 
Add ppc64le support
 2022-02-17 23:19:26 +01:00
mgiessing
ac3b36f57a
Update Makefile 2022-02-17 23:08:53 +01:00
mgiessing
e4c32df61e
Update dist.sh 
Add ppc64le support
 2022-02-17 22:59:11 +01:00
mgiessing
24c826c883
Update Makefile 
Add ppc64le support
 2022-02-17 22:57:54 +01:00
mgiessing
f9fb530c11
Update Dockerfile 
Add ppc64le support
 2022-02-17 22:55:57 +01:00
Joel Speed
263a5df820
Merge pull request #1286 from instadeepai/allowed_email_domains-on-auth_request-endpoint 
Add allowed_email_domains on auth_request endpoint
 2022-02-17 17:10:43 +00:00
Joel Speed
ceda5329eb
Merge pull request #1560 from oauth2-proxy/fix-provider-initialisation 
Fix provider data initialisation
 2022-02-17 09:56:00 +00:00
Joel Speed
4eb2a35aa8
Fix provider data initialisation 2022-02-16 16:53:43 +00:00
Joel Speed
f6aa7600ea
Merge pull request #1555 from oauth2-proxy/provider-options 
Refactor provider configuration into providers package
 2022-02-16 11:50:39 +00:00
Joel Speed
eda5eb9243
Add changelog entry for provider refactor 2022-02-16 11:46:32 +00:00
Joel Speed
0791aef8cc
Integrate new provider constructor in main 2022-02-16 10:38:07 +00:00
Joel Speed
2e15f57b70
Remove provider configuration from validation package 2022-02-16 10:38:06 +00:00
Joel Speed
d162b018a8
Move provider initialisation into providers package 2022-02-16 10:38:05 +00:00
Joel Speed
95dd2745c7
Remove options dependency on providers package 2022-02-16 10:38:04 +00:00
Joel Speed
9832844c8a
Merge pull request #1394 from oauth2-proxy/claim-extractor 
Add generic claim extractor to get claims from ID Tokens
 2022-02-16 10:37:20 +00:00
Joel Speed
edb1bc1a11
Add changelog entry for generic claim extractor 2022-02-16 10:31:30 +00:00
Joel Speed
967051314e
Integrate claim extractor into providers 2022-02-16 10:28:33 +00:00
Joel Speed
537e596904
Add claim extractor provider util 2022-02-16 10:28:32 +00:00
Joel Speed
44dc3cad77
Merge pull request #1468 from oauth2-proxy/session-refresh-using-lock 
Implement session locking with session state lock
 2022-02-16 10:23:34 +00:00
Joel Speed
da92648e54
Add changelog entry for session locking 2022-02-16 10:16:14 +00:00