public_git
/
oauth2-proxy
mirror of https://github.com/oauth2-proxy/oauth2-proxy.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
oauth2-proxy/pkg/providers/oidc
History
Peter Triebe a301bcc174 feat: add trusted issuer prefix support for dynamic JWT verification 
Add a new --trusted-issuer-prefix flag that allows configuring issuer URL
prefixes paired with audiences. Any JWT whose issuer starts with a
configured prefix will be dynamically verified via OIDC discovery.

This is useful for multi-tenant setups (e.g. Keycloak realms) where each
tenant has a unique issuer URL under a common prefix, eliminating the need
to enumerate every issuer individually.

Signed-off-by: Peter Triebe <peter.triebe@de.bosch.com>
 		2026-05-22 16:06:12 +02:00
..
oidc_suite_test.go chore(deps): Updated to ginkgo v2 (#2459) 2024-07-18 22:41:02 +02:00
prefix_verifier.go feat: add trusted issuer prefix support for dynamic JWT verification 2026-05-22 16:06:12 +02:00
prefix_verifier_test.go feat: add trusted issuer prefix support for dynamic JWT verification 2026-05-22 16:06:12 +02:00
provider.go fix typo (#2001) 2023-02-20 14:21:42 +00:00
provider_test.go chore(deps): Updated to ginkgo v2 (#2459) 2024-07-18 22:41:02 +02:00
provider_verifier.go feat: add support for specifying allowed OIDC JWT signing algorithms (#2753) (#2851) 2026-03-18 22:24:27 +08:00
provider_verifier_test.go feat: add support for specifying allowed OIDC JWT signing algorithms (#2753) (#2851) 2026-03-18 22:24:27 +08:00
verifier.go Move OIDC IDToken verifier behind interface 2022-02-19 15:37:54 +00:00
verifier_test.go chore(deps): Updated to ginkgo v2 (#2459) 2024-07-18 22:41:02 +02:00