oauth2-proxy

Go to file

Mariano Vallés a999270cf3

Add req.host to targetURL when redirecting to https (#668 )

* Add req.host to targetURL when redirecting to https

The req.URL.Host might not be present when redirecting to https if the
given req.URL is something like "/". In such scenario, the req.Host is
still present and valid.

This commit adds the original req.Host to the targetURL before returning
the 308 status, to avoid having a `Location: https:///` in the response.

* Bring back empty line

* Wrap the setting of targetURL.Host in a condition

* Add a comment to the test explaining why the redirectURL includes example.com

* Add changelog entry

2020-07-07 09:55:38 +01:00

.github

Update CODEOWNERS to request review from reviewers team (#613 )

2020-07-02 21:09:55 +01:00

contrib

Update changelog ready for release v6.0.0

2020-06-27 12:10:27 +01:00

docs

Make example args a codeblock

2020-07-06 12:04:16 +02:00

pkg

Add req.host to targetURL when redirecting to https (#668 )

2020-07-07 09:55:38 +01:00

providers

Migrate all requests to result pattern

2020-07-06 20:38:00 +01:00

test

Merge pull request from GHSA-5m6c-jp6f-2vcv

2020-06-27 12:07:24 +01:00

.dockerignore

Ignore Dockerfile.dev

2019-01-22 02:54:17 +09:00

.gitignore

Set up code coverage within Travis for Code Climate (#533 )

2020-05-10 07:29:37 +01:00

.golangci.yml

Move SessionStore tests to independent package

2020-07-01 06:41:35 +01:00

.travis.yml

Set up code coverage within Travis for Code Climate (#533 )

2020-05-10 07:29:37 +01:00

CHANGELOG.md

Add req.host to targetURL when redirecting to https (#668 )

2020-07-07 09:55:38 +01:00

CONTRIBUTING.md

Drop configure script in favour of native Makefile env and checks (#515 )

2020-05-09 16:07:46 +01:00

dist.sh

Migrate to oauth2-proxy/oauth2-proxy

2020-03-29 15:40:10 +01:00

Dockerfile

Drop configure script in favour of native Makefile env and checks (#515 )

2020-05-09 16:07:46 +01:00

Dockerfile.arm64

Drop configure script in favour of native Makefile env and checks (#515 )

2020-05-09 16:07:46 +01:00

Dockerfile.armv6

Drop configure script in favour of native Makefile env and checks (#515 )

2020-05-09 16:07:46 +01:00

go.mod

Move SessionStore tests to independent package

2020-07-01 06:41:35 +01:00

go.sum

Move SessionStore tests to independent package

2020-07-01 06:41:35 +01:00

htpasswd_test.go

Lint for non-comment linter errors

2018-11-29 14:26:41 +00:00

htpasswd.go

Migrate to oauth2-proxy/oauth2-proxy

2020-03-29 15:40:10 +01:00

http_test.go

Move RedirectToHTTPS to middleware package

2020-07-03 17:19:09 +01:00

http.go

Move RedirectToHTTPS to middleware package

2020-07-03 17:19:09 +01:00

LICENSE

add MIT license for google_auth_proxy

2014-06-09 16:25:26 -04:00

logging_handler_test.go

Integrate HealthCheck middleware

2020-06-14 21:05:17 +01:00

logging_handler.go

Integrate HealthCheck middleware

2020-06-14 21:05:17 +01:00

main.go

Move RedirectToHTTPS to middleware package

2020-07-03 17:19:09 +01:00

MAINTAINERS

Remove Syscll as a maintainer (#540 )

2020-05-10 11:51:15 +01:00

Makefile

Add nginx test environment to demonstrate protecting multiple subdomains

2020-05-12 16:06:17 +01:00

nsswitch.conf

Add nsswitch.conf to Docker image (#400 )

2020-02-23 18:16:18 +00:00

oauthproxy_test.go

fix: do not add Cache-Control header to response from auth only endpoint

2020-07-06 19:04:31 +09:00

oauthproxy.go

fix: do not add Cache-Control header to response from auth only endpoint

2020-07-06 19:04:31 +09:00

README.md

Update changelog ready for release v6.0.0

2020-06-27 12:10:27 +01:00

RELEASE.md

Migrate to oauth2-proxy/oauth2-proxy

2020-03-29 15:40:10 +01:00

templates_test.go

Add basic string functions to templates (#514 )

2020-05-09 21:05:51 +01:00

templates.go

Add basic string functions to templates (#514 )

2020-05-09 21:05:51 +01:00

validator_test.go

remove unnecessary validator tests (#288 )

2019-10-18 08:49:33 -07:00

validator.go

Migrate to oauth2-proxy/oauth2-proxy

2020-03-29 15:40:10 +01:00

version.go

Introduce Makefile

2019-01-04 10:58:30 +00:00

watcher_unsupported.go

Migrate to oauth2-proxy/oauth2-proxy

2020-03-29 15:40:10 +01:00

watcher.go

Add new linters (#486 )

2020-04-14 09:36:44 +01:00

README.md

A reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group.

Note: This repository was forked from bitly/OAuth2_Proxy on 27/11/2018. Versions v3.0.0 and up are from this fork and will have diverged from any changes in the original fork. A list of changes can be seen in the CHANGELOG.

Note: This project was formerly hosted as pusher/oauth2_proxy but has been renamed as of 29/03/2020 to oauth2-proxy/oauth2-proxy. Going forward, all images shall be available at quay.io/oauth2-proxy/oauth2-proxy and binaries wiil been named oauth2-proxy.

Installation

Choose how to deploy:

a. Download Prebuilt Binary (current release is v6.0.0)

b. Build with $ go get github.com/oauth2-proxy/oauth2-proxy which will put the binary in $GOROOT/bin

c. Using the prebuilt docker image quay.io/oauth2-proxy/oauth2-proxy (AMD64, ARMv6 and ARM64 tags available)

Prebuilt binaries can be validated by extracting the file and verifying it against the sha256sum.txt checksum file provided for each release starting with version v3.0.0.

sha256sum -c sha256sum.txt 2>&1 | grep OK
oauth2-proxy-x.y.z.linux-amd64: OK

Security

If you are running a version older than v6.0.0 we strongly recommend you please update to a current version. See open redirect vulnverability for details.

Docs

Read the docs on our Docs site.

Getting Involved

If you would like to reach out to the maintainers, come talk to us in the #oauth2_proxy channel in the Gophers slack.

Contributing

Please see our Contributing guidelines. For releasing see our release creation guide.

Languages

Go 98.3%

Makefile 0.7%

HTML 0.5%

Shell 0.3%

Dockerfile 0.2%