4e10cc76e0
Add silence ping logging flag using ExcludePath
...
- Add `ping-path` option to enable switching on and passing to `logger.go`
Default remains unchanged at: `"/ping"`
- Add note in configuration.md about silence flag taking precedence
Potential tests:
- `options.go` sets `logger.SetExcludePath` based on silence flag?
- Changing `PingPath` reflected in router?
2019-07-16 09:46:53 +12:00
630db3769b
Merge branch 'master' into refactor
2019-07-15 11:30:43 +01:00
aa37564655
Merge branch 'master' into banner-flag
2019-07-02 14:03:21 +01:00
924eab6355
Adds banner flag
...
This is to override what's displayed on the main page.
2019-06-25 16:41:51 +01:00
d24aacdb5c
Fix lint errors
2019-06-23 21:39:13 +01:00
bd651df3c2
Ensure groups in JWT Bearer tokens are also validated
...
Fix a minor auth logging bug
2019-06-20 13:40:04 -07:00
5a50f6223f
Do not infer username from email
2019-06-17 12:58:40 -07:00
2f6dcf3b5f
Move refreshing code to block acquiring cookied session
2019-06-17 12:52:44 -07:00
58b06ce761
Fall back to using sub if email is none (as in PR #57 )
2019-06-17 12:52:13 -07:00
187960e9d8
Improve token pattern matching
...
Unit tests for token discovery
2019-06-17 12:52:13 -07:00
8083501da6
Support JWT Bearer Token and Pass through
2019-06-17 12:51:35 -07:00
6366690927
Fix gofmt for changed files
2019-06-15 11:34:00 +02:00
fb9616160e
Move logger to pkg/logger
2019-06-15 11:33:58 +02:00
d1ef14becc
Move cookie to pkg/encryption
2019-06-15 11:33:57 +02:00
d69560d020
No need for case when only 2 conditions
2019-06-15 18:48:27 +10:00
f35c82bb0f
The AuthOnly path also needs the response headers set
2019-06-07 14:25:12 +10:00
9e59b4f62e
Restructure so that serving data from upstream is only done when explicity allowed, rather
...
than as implicit dangling else
2019-06-07 13:50:44 +10:00
093f9da881
Move cipher creation to options and away from oauth2_proxy.go
2019-05-20 11:26:13 +02:00
37e31b5f09
Remove dead code
2019-05-20 11:26:11 +02:00
c61f3a1c65
Use SessionStore for session in proxy
2019-05-20 11:26:10 +02:00
fbee5eae16
Initialise SessionStore in Options
2019-05-20 11:26:04 +02:00
2ab8a7d95d
Move SessionState to its own package
2019-05-18 13:09:56 +02:00
1a8bd70b46
fixing code redemption error string logging
2019-05-07 10:47:15 -07:00
9eaa9fdcbf
Standardizing log messages to colons
2019-04-23 09:36:18 -07:00
d77119be55
Merging changes
2019-04-12 09:26:44 -07:00
c22731afa0
Fixed linting errors.
2019-04-12 08:59:46 -07:00
37c415b889
Self code review changes
2019-04-12 08:59:46 -07:00
8ec025f536
Auth and standard logging with file rolling
2019-04-12 08:59:46 -07:00
071d17b521
Expose -cookie-path as configuration parameter
2019-04-10 00:36:35 +03:00
978c0a33e4
Improve websocket support
2019-03-22 17:19:38 -04:00
6f9eac5190
Set redirect URL path when host is present
2019-03-20 09:25:04 -07:00
f715c9371b
Fixes deletion of splitted cookies - Issue #69 ( #70 )
...
* fixes deletion of splitted cookies
* three minor adjustments to improve the tests
* changed cookie name matching to regex
* Update oauthproxy.go
Co-Authored-By: einfachchr <einfachchr@gmail.com>
* removed unused variable
* Changelog
2019-03-15 07:18:37 +00:00
e195a74e26
Revert OAuthCallbackPath
2019-03-12 16:46:37 +00:00
c7193b4085
Merge websocket proxy feature from openshift/oauth-proxy. Original author: Hiram Chirino <hiram@hiramchirino.com>
2019-03-11 14:05:16 +01:00
549766666e
fix redirect url param handling ( #10 )
...
* Added conditional to prevent user-supplied redirect URL getting
clobbered
Change-type: patch
* use redirectURL as OAuthCallbackURL (as it should be!)
Change-type: patch
2019-03-05 14:58:26 +00:00
2280b42f59
Access token forwarding through nginx auth request ( #68 )
...
* Access token forwarding through nginx auth request
Related to #420 .
(cherry picked from commit b138872bea6fab314f72https://github.com/pusher/oauth2_proxy/pull/68
* Fix Changelog message location
2019-02-22 07:49:57 +00:00
fb13ee87c8
Merge pull request #34 from marratj/cookie-separator
...
Change cookie index separator to underscore
2019-02-03 13:21:51 +00:00
fa2545636b
Merge pull request #15 from pusher/whitelist-domains
...
Whitelist domains
2019-02-02 18:55:37 +00:00
a339baf94e
change cookie index separator to underscore
2019-01-31 20:07:28 +01:00
3326194422
Extract the application/json mime type into a const
2019-01-31 16:23:01 +01:00
c12db0ebf7
Returns HTTP unauthorized for ajax requests instead of redirecting to the sing-in page
2019-01-31 16:23:01 +01:00
01c5f5ae3b
Implemented flushing interval ( #23 )
...
* Implemented flushing interval
When proxying streaming responses, it would not flush the response writer buffer until some seemingly random point (maybe the number of bytes?). This makes it flush every 1 second by default, but with a configurable interval.
* flushing CHANGELOG
* gofmt and goimports
2019-01-31 14:02:15 +00:00
bc4d5941fc
Remove duplicated logic
2019-01-30 17:30:48 +00:00
2a1691a994
Add whitelist domains flag
2019-01-30 17:30:40 +00:00
090ff11923
redirect to original path after login ( #24 )
...
* redirect to original path after login
* tests for new redirect behaviour
* fixed comment
* added redirect fix to changelog
2019-01-29 12:13:02 +00:00
714e2bdfba
Fix cookie split should account for cookie name
2019-01-22 11:34:55 +00:00
d4b588dbe9
Split large cookies
2019-01-22 11:34:54 +00:00
68d4164897
Add Authorization header flags
2019-01-22 11:34:23 +00:00
d37cc2889e
Fix err declaration shadowing
2018-12-20 10:46:19 +00:00
ee913fb788
Add comments to exported methods for root package
2018-12-20 09:30:42 +00:00
Karl Skewes
Joel Speed
Henry Jenkins
Henry Jenkins
Brian Van Klaveren
Adam Eijdenberg
timothy-spencer
Mister Wil
MisterWil
Costel Moraru
gyson
Patrick Koenig
einfachchr
Adam Szalkowski
dt-rush
David Holsgrove
Marcel Juhnke
Cosmin Cojocar
Steve Arch