610341a068
Make ProcessCookie() fail when cookie parse fails
2015-05-09 16:54:27 -04:00
bd4eae8fec
Store access token when cookie-refresh is set
...
cookie-refresh now no longer requires pass-access-token in order to work.
2015-05-09 16:54:27 -04:00
b6e07d51b2
Validate access_token when auto-refreshing cookie
2015-05-09 15:09:31 -04:00
25372567ac
ValidateToken() to check access_token validity
2015-05-09 13:17:37 -04:00
8e2d83600c
Implement cookie auto-refresh
...
The intention is to refresh the cookie whenever the user accesses an
authenticated service with less than `cookie-refresh` time to go before the
cookie expires.
2015-05-08 14:05:09 -04:00
5cbdb74518
Add ProcessCookie() test
2015-05-08 14:05:09 -04:00
83ad43a571
Make proper PassAccessTokenTest methods
2015-04-07 10:11:35 -04:00
5f747bb768
Redirect to / when /oauth2/sign_in accessed
...
Without this change, clicking the sign-in button on /oauth2/sign_in will
always redirect back to /oauth2/sign_in, essentially creating an infinite
loop.
2015-04-06 22:10:03 -04:00
ad3c9a886f
Pass the access token to the upstream client
...
This is accomplished by encoding the access_token in the auth cookie and
unpacking it as the X-Forwarded-Access-Token header for upstream requests.
2015-04-03 15:32:01 -04:00
a9837f90aa
Ensure TestNewReverseProxy() passes when offline
...
This reflects the apparent intent of TestNewReverseProxy(). Without this
change, the test will fail when run without an Internet connection.
2015-04-02 21:38:48 -04:00
16f2c981f3
fix upstream request path
2015-03-21 15:29:07 -04:00
71ae70834d
pass raw unencoded request URI upstream
2015-03-19 13:18:49 -04:00
263e16eeea
add --proxy-host-header option
2015-03-17 15:53:01 -04:00
20a152261c
Adds failing test for using upstream Host header.
2015-03-17 15:04:27 -04:00
Mike Bland
Jehiah Czebotar
John Boxall