public_git
/
oauth2-proxy
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
oauth2-proxy/pkg
History
stagswtf 51e80f24ef
fix: use GetSecret() in ticket.go makeCookie to respect cookie-secret-file (#3228) 
* fix: use GetSecret() in ticket.go makeCookie

The makeCookie method in ticket.go was using t.options.Secret directly, which
meant cookie-secret-file was not being respected. Updated to use GetSecret()
which handles both cookie-secret and cookie-secret-file properly.

Also added test coverage for cookie-secret-file functionality.

Fixes #3224

Signed-off-by: stagswtf <142280349+stagswtf@users.noreply.github.com>

* docs: update CHANGELOG.md for cookie-secret-file fix

Signed-off-by: stagswtf <142280349+stagswtf@users.noreply.github.com>

* correct PR link and undo file formatting

Signed-off-by: stagswtf <142280349+stagswtf@users.noreply.github.com>

* fix: error wrapping

Signed-off-by: Jan Larwig <jan@larwig.com>

---------

Signed-off-by: stagswtf <142280349+stagswtf@users.noreply.github.com>
Signed-off-by: Jan Larwig <jan@larwig.com>
Co-authored-by: Jan Larwig <jan@larwig.com>
 		2025-10-28 08:37:25 +01:00
..
apis feat: allow disable-keep-alives configuration in upstream (#3156) 2025-08-19 07:56:16 +02:00
app chore(lint): fix staticcheck issues (#3061) 2025-05-26 12:29:34 +02:00
authentication/basic chore: fix function names in comment 2024-09-15 09:34:15 +02:00
clock chore(deps): Updated to ginkgo v2 (#2459) 2024-07-18 22:41:02 +02:00
cookies feat(cookie): add feature support for cookie-secret-file (#3104) 2025-07-22 18:59:55 +02:00
encryption feat: bump to go1.24.5 and full dependency update (#3116) 2025-07-13 21:55:57 +02:00
header chore(deps): Updated to ginkgo v2 (#2459) 2024-07-18 22:41:02 +02:00
http fix: systemd socket support build handling for windows 2025-01-13 16:41:33 +01:00
ip feat: add CF-Connecting-IP as supported real ip header (#2821) 2024-11-04 23:28:08 +01:00
logger Request ID Logging (#1087) 2021-03-21 18:20:57 +00:00
middleware Add --bearer-token-login-fallback option (#2924) 2025-04-21 13:40:39 +01:00
providers feat: ability to parse JWT encoded profile claims (#3014) 2025-04-28 16:39:09 +02:00
requests Merge commit from fork 2025-07-30 19:46:58 +02:00
sessions fix: use GetSecret() in ticket.go makeCookie to respect cookie-secret-file (#3228) 2025-10-28 08:37:25 +01:00
upstream feat: allow disable-keep-alives configuration in upstream (#3156) 2025-08-19 07:56:16 +02:00
util Issue: 2236 - adds an option to append CA certificates (#2237) 2023-10-25 11:36:17 +01:00
validation feat: make google-groups argument optional (#3138) 2025-07-24 07:55:54 +02:00
version feat: Replace default Go user-agent with oauth2-proxy and version (#2570) 2024-07-14 21:09:17 +01:00
watcher Fix Linting Errors (#1835) 2022-10-21 11:57:51 +01:00