ef457b1765
Move Error page rendering to app package
2021-02-12 21:12:05 +00:00
9cdcd2b2d4
Merge pull request #1028 from oauth2-proxy/templates
...
Refactor templates, update theme and provide styled error pages
2021-02-12 21:02:52 +00:00
881f43f793
Add changelog entry for refactored templates
2021-02-12 16:56:25 +00:00
0151ca11f6
Move template loading to app package
2021-02-12 16:55:52 +00:00
84f76c6060
Move template options to their own struct
2021-02-12 16:55:51 +00:00
801edeba23
Update templates to bulma framework
2021-02-12 16:55:45 +00:00
465789b044
Merge pull request #1039 from oauth2-proxy/fix-test-logging
...
Ensure errors in tests are logged to the GinkgoWriter
2021-02-11 09:48:24 +00:00
b6cca79cb9
Ensure errors in tests are logged to the GinkgoWriter
2021-02-10 19:50:04 +00:00
4fa607f173
Merge pull request #1038 from oauth2-proxy/prep-7.0.1
...
Prepare for release v7.0.1
2021-02-10 19:34:51 +00:00
e87a51f0e5
Prepare for release v7.0.1
2021-02-10 18:25:39 +00:00
7def4bf360
[DOC] Fix broken link to cookie secret generation ( #1024 )
...
* [DOC] Fix broken link
* Update auth.md
* Update auth.md
* Update auth.md
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
2021-02-10 17:55:42 +00:00
0f859215f0
[DOC] Add header to cookie secret paragraph ( #1025 )
...
* [DOC] Add header to cookie secret paragraph
* Update overview.md
* Update overview.md
* Update overview.md
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
2021-02-08 12:58:38 +00:00
b97c83297e
Update release process to use makefile go version check ( #1027 )
...
Co-authored-by: Nick Meves <nick.meves@greenhouse.io>
2021-02-06 15:19:33 -08:00
c9d9769f6f
Merge pull request #1026 from oauth2-proxy/fix-flag-loading
...
Ensure config flags get parsed correctly when other flags preceed them
2021-02-06 14:49:45 -08:00
ae17e38403
Ensure config flags get parsed correctly when other flags preceed them
2021-02-06 15:25:08 +00:00
9df3a752a6
Merge pull request #1020 from grnhse/flatten-response-headers
...
Flatten array-based response headers
2021-02-04 08:10:59 +00:00
c3f31b4dd5
Flatten array-based response headers
2021-02-03 16:48:26 -08:00
06985879e1
Merge pull request #1007 from oauth2-proxy/release-v7.0.0
...
Prepare for Release v7.0.0
2021-02-01 18:16:08 +00:00
1ccaea7710
Add advisory note to changelog
2021-02-01 18:12:34 +00:00
d1a249262f
Create v7.0.x versioned docs
...
Created within: yarn run docusaurus docs:version 7.0.x
2021-02-01 18:05:47 +00:00
a909d33355
Update CHANGELOG for release v7.0.0
2021-02-01 18:05:44 +00:00
780ae4f3c9
Merge pull request from GHSA-4mf2-f3wh-gvf2
2021-02-01 18:04:33 +00:00
48b1658e5d
Update alpine version to 3.13 ( #1013 )
...
* Update alpine version to 3.13
alpine 3.12 has a CVE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28928 which got fixed in recent version
* address review comments
2021-01-30 15:33:28 +00:00
b541805dc1
Use comma separated multiple values for header ( #799 )
...
* Use comma separated value for multiple claims
* Fix lint error
* Fix more tests
* Fix one more test
* Always flatten the headers
* Ensure we test the real multi-groups
* Only update map when necessary
* Update CHANGELOG
* Move to the right location of change log
* Fix blank line
2021-01-22 08:48:34 +00:00
8087de7a03
Add Gitlab version warning/constaint in documentation ( #1004 )
2021-01-20 19:57:22 +00:00
57640764c0
Use logger for sensitive data logging to be able to disable it ( #1002 )
...
* Add sensible logging flag to default setup for logger
* Use logger instead of fmt for info logging with sensible data
* Remove sensible logging flag
* Update CHANGELOG.md
Co-authored-by: Joel Speed <Joel.speed@hotmail.co.uk>
2021-01-20 19:56:13 +00:00
56075e3776
Merge pull request #903 from oauth2-proxy/reference-generator
...
Add docs and generated reference for Alpha configuration
2021-01-19 19:27:38 +00:00
fbfc0959cb
Add changelog entry for new alpha configuration docs
2021-01-18 09:57:51 +00:00
5c64e236fb
Generate reference page in configuration
2021-01-18 09:57:44 +00:00
eb129a342c
Ensure code is generated during CI
2021-01-18 09:56:07 +00:00
9c126f5740
Merge pull request #964 from grnhse/reverse-proxy-context
...
Track the ReverseProxy config setting in the request Scope
2021-01-17 18:32:32 +00:00
da02914a9c
Log IsValidRedirect violations and do a final safety call
2021-01-16 13:56:38 -08:00
fa6a785eaf
Improve handler vs helper organization in oauthproxy.go
...
Additionally, convert a lot of helper methods to be private
2021-01-16 13:55:49 -08:00
73fc7706bc
Figure out final app redirect URL with proxy aware request utils
2021-01-16 13:55:49 -08:00
f054682fb7
Make HTTPS Redirect middleware Reverse Proxy aware
2021-01-16 13:55:48 -08:00
6fb3274ca3
Refactor organization of scope aware request utils
...
Reorganized the structure of the Request Utils due to their widespread use
resulting in circular imports issues (mostly because of middleware & logger).
2021-01-16 13:55:48 -08:00
b625de9490
Track the ReverseProxy option in the request Scope
...
This allows for proper handling of reverse proxy based headers throughout
the lifecycle of a request.
2021-01-16 13:55:48 -08:00
8e02fac2cc
Merge pull request #995 from oauth2-proxy/security
...
Add Security Policy
2021-01-16 13:54:07 -08:00
e50e6ed373
Add Security Policy
2021-01-16 19:47:47 +00:00
a0d37518e0
Merge pull request #989 from rassie/master
...
Adapt isAjax to support mimetype lists
2021-01-12 15:28:07 -08:00
81bf1ef8ce
Adapt isAjax to support mimetype lists
...
Fixes #988
2021-01-12 19:37:30 +01:00
dd60fe4fef
Merge pull request #982 from grnhse/maintainer-update
...
Add NickMeves to MAINTAINERS
2021-01-11 09:03:00 +00:00
d08b9b7cc4
Add NickMeves to MAINTAINERS
2021-01-10 10:56:01 -08:00
597ffeb121
Fix joined cookie name for those containing underline in the suffix ( #970 )
...
* properly handle splitted cookies with names ending with _
* test update
* provide cookieName into joinCookies instead of processing the suffix
* changelog update
* test update
2021-01-04 17:21:17 -08:00
1d74a51cd7
Use X-Forwarded-{Proto,Host,Uri} on redirect as last resort ( #957 )
2021-01-01 15:23:11 -08:00
91b3f5973e
Merge pull request #953 from grnhse/keycloak-refactor-provider-methods
...
Refactor Keycloak Provider Methods
2021-01-01 10:40:55 +00:00
4b28e6886c
Handle ValidateURL fallback for nil & empty struct cases
2020-12-24 14:04:20 -08:00
816d9a4566
Use a generic http.HandlerFunc in Keycloak tests
2020-12-24 14:04:19 -08:00
f07a5630f1
Update Keycloak documentation
2020-12-24 14:04:19 -08:00
138a6b128a
Use ProfileURL for userinfo EnrichSession calls in Keycloak
2020-12-24 14:04:19 -08:00
Joel Speed
Aleksander Stelmaczonek
Nick Meves
Nishanth Reddy
Lida Li
Wilfried OLLIVIER
Kevin Kreitner
Nikolai Prokoschenko
Ilia Pertsev
İlteriş Eroğlu