oauth2_proxy/providers/providers.go

45 lines
1.3 KiB
Go
Raw Normal View History

package providers
import (
2019-05-05 12:33:13 +00:00
"github.com/pusher/oauth2_proxy/pkg/apis/sessions"
2019-05-24 16:06:48 +00:00
"github.com/pusher/oauth2_proxy/pkg/encryption"
)
// Provider represents an upstream identity provider implementation
type Provider interface {
Data() *ProviderData
2019-05-05 12:33:13 +00:00
GetEmailAddress(*sessions.SessionState) (string, error)
GetUserName(*sessions.SessionState) (string, error)
Redeem(string, string) (*sessions.SessionState, error)
ValidateGroup(string) bool
2019-05-05 12:33:13 +00:00
ValidateSessionState(*sessions.SessionState) bool
2015-06-06 18:15:43 +00:00
GetLoginURL(redirectURI, finalRedirect string) string
2019-05-05 12:33:13 +00:00
RefreshSessionIfNeeded(*sessions.SessionState) (bool, error)
2019-05-24 16:06:48 +00:00
SessionFromCookie(string, *encryption.Cipher) (*sessions.SessionState, error)
CookieForSession(*sessions.SessionState, *encryption.Cipher) (string, error)
}
// New provides a new Provider based on the configured provider string
func New(provider string, p *ProviderData) Provider {
switch provider {
2015-04-17 22:33:17 +00:00
case "linkedin":
return NewLinkedInProvider(p)
case "facebook":
return NewFacebookProvider(p)
2015-05-21 03:23:48 +00:00
case "github":
return NewGitHubProvider(p)
2015-11-09 08:28:34 +00:00
case "azure":
return NewAzureProvider(p)
2016-02-17 12:19:52 +00:00
case "gitlab":
return NewGitLabProvider(p)
case "oidc":
return NewOIDCProvider(p)
add login.gov provider (#55) * first stab at login.gov provider * fixing bugs now that I think I understand things better * fixing up dependencies * remove some debug stuff * Fixing all dependencies to point at my fork * forgot to hit save on the github rehome here * adding options for setting keys and so on, use JWT workflow instead of PKCE * forgot comma * was too aggressive with search/replace * need JWTKey to be byte array * removed custom refresh stuff * do our own custom jwt claim and store it in the normal session store * golang json types are strange * I have much to learn about golang * fix time and signing key * add http lib * fixed claims up since we don't need custom claims * add libs * forgot ioutil * forgot ioutil * moved back to pusher location * changed proxy github location back so that it builds externally, fixed up []byte stuff, removed client_secret if we are using login.gov * update dependencies * do JWTs properly * finished oidc flow, fixed up tests to work better * updated comments, added test that we set expiresOn properly * got confused with header and post vs get * clean up debug and test dir * add login.gov to README, remove references to my repo * forgot to remove un-needed code * can use sample_key* instead of generating your own * updated changelog * apparently golint wants comments like this * linter wants non-standard libs in a separate grouping * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * remove sample_key, improve comments related to client-secret, fix changelog related to PR feedback * github doesn't seem to do gofmt when merging. :-) * update CODEOWNERS * check the nonce * validate the JWT fully * forgot to add pubjwk-url to README * unexport the struct * fix up the err masking that travis found * update nonce comment by request of @JoelSpeed * argh. Thought I'd formatted the merge properly, but apparently not. * fixed test to not fail if the query time was greater than zero
2019-03-20 13:44:51 +00:00
case "login.gov":
return NewLoginGovProvider(p)
2019-07-22 21:22:19 +00:00
case "adfs":
return NewADFSProvider(p)
default:
return NewGoogleProvider(p)
}
}