meutel/oauth2_proxy
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
205 Commits 6 Branches 12 Tags 1.8 MiB
e61fc9e7a6
Commit Graph

205 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mike Bland
e61fc9e7a6 Add /auth endpoint to support Nginx's auth_request 
Closes #152.
 2015-11-09 10:31:41 -05:00
Jehiah Czebotar
e6e2dbe459 Merge pull request #164 from philips/go-code-style 
Go code style
 2015-11-09 09:37:11 -05:00
Brandon Philips
6db18804f3 *: rename Oauth to OAuth 
Be consistent with Go capitalization styling and use a single way of
spelling this across the tree.
 2015-11-09 00:57:01 +01:00
Brandon Philips
1ff2fce25b oauthproxy: rename Uri to URI 
Be consistent with Go coding style for acroynyms.
 2015-11-09 00:50:42 +01:00
Brandon Philips
51a2e4e48c *: rename Url to URL everywhere 
Go coding style says that acronyms should be all lower or all upper. Fix
Url to URL.
 2015-11-09 00:47:44 +01:00
Jehiah Czebotar
1b0144ba75 Merge pull request #148 from johnboxall/patch-1 
Pass `ProxyPrefix` into the error template.
 2015-10-03 20:06:23 -04:00
John Boxall
a653c3eeeb Pass ProxyPrefix into the error template. 
The default `error.html` uses `ProxyPrefix` but it isn't supplied in the context, causing it to error.
 2015-10-03 15:59:47 -07:00
Jehiah Czebotar
3ed828ef45 Merge pull request #142 from Tenzer/static-file-server 
Add support for serving static files from a directory
 2015-09-24 09:48:04 -04:00
Jeppe Toustrup
ffeccfe552 Add support for serving static files from a directory 
The path should be provided as a file:// url with the full operating system path.
An alias to where the directory is available as can be specified by appending
a fragment (ie. "#/static/") at the end of the URL.
 2015-09-24 15:37:45 +02:00
Jehiah Czebotar
2a784ae0d0 Merge pull request #139 from jburnham/google_group_auth 
[RDY] google: Support restricting access to a specific group(s)
 2015-09-09 07:19:33 -04:00
Justin Burnham
3fd8f911c2 google: Support restricting access to a specific group(s) 2015-09-09 02:10:32 -07:00
Jehiah Czebotar
d1c0208824 Merge pull request #131 from ebardsley/master 
Allow passing the value of "approval_prompt" as a flag or option.
 2015-08-27 07:33:07 -04:00
Jehiah Czebotar
ba81a0d30a Merge pull request #137 from guotie/master 
Update github.go
 2015-08-25 12:22:40 -04:00
铁哥
8da7325683 Update github.go 2015-08-26 00:11:24 +08:00
Jehiah Czebotar
7ba51ba9f2 Merge pull request #133 from sricola/master 
Google auth configuration screen flow has changed
 2015-08-09 15:22:02 -04:00
Srivatsa Ray
85fcd66be6 Google auth configuration screen flow has changed 2015-08-09 12:08:21 -07:00
Ed Bardsley
33045a792b Add a flag to set the value of "approval_prompt". 
By setting this to "force", certain providers, like Google,
will interject an additional prompt on every new session. With other values,
like "auto", this prompt is not forced upon the user.
 2015-07-31 00:43:47 -07:00
Jehiah Czebotar
5ff8aa3581 Merge pull request #128 from jehiah/github_debug_128 
provider github not work with scope read:org
 2015-07-28 07:58:54 -04:00
Jehiah Czebotar
221c99b1ec Merge pull request #130 from mrwacky42/patch-1 
Fix spelling
 2015-07-24 17:35:26 -04:00
Sharif Nassar
f3353c0eea Fix spelling 
*snicker*
*titter*
*giggle*
 2015-07-24 14:31:25 -07:00
Jehiah Czebotar
0692c3763f More robust handling for missing email 2015-07-24 16:26:40 -04:00
Jehiah Czebotar
c1bf1ad167 github: better debug output for org/team validation 2015-07-24 16:10:10 -04:00
Jehiah Czebotar
1e48d89e00 clarify required email validation settings 2015-07-24 16:09:33 -04:00
Jehiah Czebotar
c086bddcbe Merge pull request #129 from jburnham/basic_auth_password 
Add support for setting the basic auth password.
 2015-07-24 11:06:32 -04:00
Justin Burnham
7dd5d299e1 Add support for setting the basic auth password. 
For tools that don't like empty passwords, this change allows
one to set a shared secret password for all users.
 2015-07-24 09:17:43 +00:00
Jehiah Czebotar
58d2b88406 Merge pull request #126 from mattk42/master 
Check email validity on all requests rather than only on login.
 2015-07-14 12:04:44 -04:00
mattk42
6cd3e72e09 Check email validity on all requests rather than only on login/refresh 2015-07-14 08:40:59 -06:00
Jehiah Czebotar
3a792555f1 tag v2.0.1 2015-07-02 23:29:25 -04:00
Jehiah Czebotar
51852c045a Doc updates clarifying external Load Balancer config 2015-07-02 23:21:59 -04:00
Jehiah Czebotar
01c9d04feb Merge pull request #117 from jehiah/always_refresh_117 
Google - continually use refresh token
 2015-07-02 23:14:01 -04:00
Jehiah Czebotar
d49c3e167f SessionState refactoring; improve token renewal and cookie refresh 
* New SessionState to consolidate email, access token and refresh token
* split ServeHttp into individual methods
* log on session renewal
* log on access token refresh
* refactor cookie encription/decription and session state serialization
 2015-07-02 23:09:11 -04:00
Jehiah Czebotar
b9ae5dc8d7 Merge pull request #116 from jehiah/google_refresh_token_116 
Google - use offline access token
 2015-06-23 14:01:35 -04:00
Jehiah Czebotar
aa0a725a3a Readme: doc updates 2015-06-23 14:01:05 -04:00
Jehiah Czebotar
8d50b372e4 immediately redeem refresh token for provider==Google 2015-06-23 13:56:14 -04:00
Jehiah Czebotar
ae2a1e55ab Merge pull request #115 from jehiah/cookie_renew_115 
Cookie Refresh Improvements
 2015-06-23 07:57:07 -04:00
Jehiah Czebotar
e9b5631eed cookie refresh: validation fixes, interval changes 
* refresh now calculated as duration from cookie set
 2015-06-23 07:51:00 -04:00
Jehiah Czebotar
66a0484721 Merge pull request #111 from jehiah/version_two_111 
Release Version Two
 2015-06-12 13:12:20 -04:00
Jehiah Czebotar
d78aa13464 v2.0 & cleanup changes 
* bump version to 2.0
* remove --cookie-https-only option
* add windows build to dist.sh
* rename --cookie-key to --cookie-name
 2015-06-12 13:07:26 -04:00
Jehiah Czebotar
1946739e98 Merge pull request #99 from jehiah/ssl_99 
Native SSL support
 2015-06-07 23:36:02 -04:00
Jehiah Czebotar
f5b2b20f67 support TLS directly 2015-06-07 23:14:48 -04:00
Jehiah Czebotar
5a5d6dff7e Merge pull request #108 from jehiah/unmarshal_error_108 
Page defaults to Google sign in
 2015-06-07 21:06:50 -04:00
Jehiah Czebotar
f5db2e1ff7 More complete HTTP error logging 2015-06-07 21:03:53 -04:00
Jehiah Czebotar
13e82923f0 Merge pull request #109 from jehiah/github_org_109 
Github provider "Invalid Account"
 2015-06-06 14:54:01 -04:00
Jehiah Czebotar
a6694ad3c7 github: handle users part of an Org not on a team 2015-06-06 14:44:42 -04:00
Jehiah Czebotar
b313e99352 Merge pull request #91 from jehiah/email_domain_91 
disable email validation
 2015-06-06 14:43:48 -04:00
Jehiah Czebotar
56d19b1c84 disable email validation; rename email-domain argument 
This adds a "*" option to --email-domain to disable email validation, and this renames `--google-apps-domain` to `--email-domain` for clarity across providers
 2015-06-06 14:37:54 -04:00
tonymeng
c5ccd43767 Enable specific oauth2proxy path; change cookie name to _oauth2proxy 2015-06-06 14:21:42 -04:00
Jehiah Czebotar
71b79baf33 Merge pull request #107 from 18F/fix-validator-test 
Fix validator_test hang on Solaris, Plan 9
 2015-05-31 00:06:45 -04:00
Mike Bland
c3590b5c4c Fix validator_test hang on Solaris, Plan 9 
On these platforms, the `done <- true` statement in during TearDown() was
hanging, since the `watcher_unsupported.go` version was never draining the
channel. Also took the opportunity to update the WatchForUpdates() signature
to not return bool anymore.
 2015-05-30 22:11:02 -04:00
Jehiah Czebotar
577a3f7f09 Merge pull request #106 from 18F/fix-watcher-build-tags 
Fix unsupported WatchForUpdates and build tags
 2015-05-30 20:05:40 -04:00