public_git
/
oauth2-proxy
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
oauth2-proxy/pkg/apis
History
andoks 43752a9aa7
feat: add support for specifying allowed OIDC JWT signing algorithms (#2753) 
TODO:
- [ ] update docs
- [ ] add support in yaml (modern) config
- [ ] add more test(s)?

Add (legacy for now) configuration flag "oidc-enabled-signing-alg" (cfg:
oidc_enabled_signing_algs) that allows setting what signing algorithms
are specified by provider in JWT header ("alg" header claim).

In particular useful when skip_oidc_discovery = true, as verifier
defaults to only accept "RS256" in alg field in such circumstances.
 		2026-03-14 10:48:06 +08:00
..
ip Move RealClientIP code to IP packages 2020-05-23 15:17:41 +01:00
middleware adapting unit tests and fixing minor issues introduced with the derefing 2025-11-16 22:38:57 +01:00
options feat: add support for specifying allowed OIDC JWT signing algorithms (#2753) 2026-03-14 10:48:06 +08:00
sessions refactor: ptr.Ptr to ptr.To 2025-11-16 22:38:59 +01:00