Nick Meves 7eeaea0b3f Support nonce checks in OIDC Provider (#967) ... * Set and verify a nonce with OIDC * Create a CSRF object to manage nonces & cookies * Add missing generic cookie unit tests * Add config flag to control OIDC SkipNonce * Send hashed nonces in authentication requests * Encrypt the CSRF cookie * Add clarity to naming & add more helper methods * Make CSRF an interface and keep underlying nonces private * Add ReverseProxy scope to cookie tests * Align to new 1.16 SameSite cookie default * Perform SecretBytes conversion on CSRF cookie crypto * Make state encoding signatures consistent * Mock time in CSRF struct via Clock * Improve InsecureSkipNonce docstring		2021-04-21 10:33:27 +01:00
..
apis	Support nonce checks in OIDC Provider (#967)	2021-04-21 10:33:27 +01:00
app/pagewriter	Create seperate page getter	2021-03-21 18:34:43 +00:00
authentication/basic	Ensure errors in tests are logged to the GinkgoWriter	2021-02-10 19:50:04 +00:00
clock	Add a clock package for better time mocking (#1136)	2021-04-18 18:25:57 +01:00
cookies	Support nonce checks in OIDC Provider (#967)	2021-04-21 10:33:27 +01:00
encryption	Support nonce checks in OIDC Provider (#967)	2021-04-21 10:33:27 +01:00
header	Ensure errors in tests are logged to the GinkgoWriter	2021-02-10 19:50:04 +00:00
http	Add server group implementation for running multiple servers at once	2021-03-07 11:49:10 +00:00
ip	Fix import path for v7 (#800)	2020-09-29 17:44:42 +01:00
logger	Request ID Logging (#1087)	2021-03-21 18:20:57 +00:00
middleware	Reinstate preferEmailToUser behaviour for basic auth sessions	2021-03-22 13:13:26 +00:00
requests	Request ID Logging (#1087)	2021-03-21 18:20:57 +00:00
sessions	Ensure errors in tests are logged to the GinkgoWriter	2021-02-10 19:50:04 +00:00
upstream	Remove duplication in proxy directors	2021-03-22 13:07:41 +00:00
util	Refactor organization of scope aware request utils	2021-01-16 13:55:48 -08:00
validation	Support nonce checks in OIDC Provider (#967)	2021-04-21 10:33:27 +01:00