Commit Graph

786 Commits

Author SHA1 Message Date
Jehiah Czebotar
07c74f55c6 improve handling of cookie domains 2015-03-19 16:18:02 -04:00
Jehiah Czebotar
d5169f92f7 Merge pull request #71 from jehiah/cookie_secure_flag_71
Rename flag to set secure (https) cookies
2015-03-19 14:49:11 -04:00
Jehiah Czebotar
de04e0c519 rename cookie secure flag 2015-03-19 14:08:17 -04:00
Jehiah Czebotar
e67f2d5944 Merge pull request #69 from jehiah/default_redirect_url_69
make redirect-uri optional
2015-03-19 14:04:05 -04:00
Jehiah Czebotar
ebae065b11 make redirect_uri optional 2015-03-19 14:03:05 -04:00
Jehiah Czebotar
748247dde1 Merge pull request #17 from jehiah/encoded_slashes_17
Encoded slashes are expanded by the proxy
2015-03-19 14:01:56 -04:00
Jehiah Czebotar
71ae70834d pass raw unencoded request URI upstream 2015-03-19 13:18:49 -04:00
Jehiah Czebotar
85e025db25 Merge pull request #70 from jehiah/templates_dir_70
Custom Sign In Template Support
2015-03-17 23:18:00 -04:00
Jehiah Czebotar
2b2324e410 support (optional) custom templates 2015-03-17 18:11:58 -04:00
Jehiah Czebotar
b2dfbd8564 Merge pull request #68 from jehiah/upstream_host_header_68
Proxied requests use the upstream Host as Host Header
2015-03-17 16:03:53 -04:00
Jehiah Czebotar
a162ee809e bump travis Go versions 2015-03-17 16:02:21 -04:00
Jehiah Czebotar
263e16eeea add --proxy-host-header option 2015-03-17 15:53:01 -04:00
John Boxall
24ef555547 Requests are proxied to the Host specified by the target. 2015-03-17 15:04:27 -04:00
John Boxall
20a152261c Adds failing test for using upstream Host header. 2015-03-17 15:04:27 -04:00
Jehiah Czebotar
ade9502dd2 Merge pull request #66 from 18F/enforce-cookie-secret
Catch more options errors at once; add test
2015-03-16 23:03:11 -04:00
Mike Bland
d751bbea4c Catch more options errors at once; add test 2015-03-16 14:45:20 -04:00
Jehiah Czebotar
30e5b636bf Merge pull request #63 from freelancer/http-address-scheme
Added scheme parsing to http-address param
2015-02-10 23:15:31 -05:00
David Howden
975c7173c2 Added scheme parsing to http-address param
Can now listen for HTTP clients on unix sockets (and any other Go-supported stream oriented network - see golang.org/pkg/net/#Listen).  Default behaviour is unchanged, any http-address without a scheme is given the default of tcp.

Amended the README so that the usage output is up to date.
2015-02-11 14:51:57 +11:00
Jehiah Czebotar
601ae6f4ec Merge pull request #60 from tomtaylor/gofmt-fixes
Run gofmt over source
2015-01-19 12:48:57 -05:00
Jehiah Czebotar
1f8797e468 Merge pull request #58 from tomtaylor/httponly-cookie
Add flag to enable/disable cookie's HttpOnly flag.
2015-01-19 12:48:16 -05:00
Tom Taylor
5201f26ffc Run gofmt over source. 2015-01-19 16:10:37 +00:00
Tom Taylor
132e3d91d6 Add flag to enable/disable cookie's HttpOnly flag. 2015-01-19 16:00:49 +00:00
Jehiah Czebotar
9d264f304f Merge pull request #50 from vishnuchilamakuru/master
Support for multi white listed urls with regex url match.
2015-01-12 08:51:05 -05:00
vishnu chilamakuru
c4d25d271f Adding Support for multi white listed urls with regex url match. 2015-01-12 14:48:41 +05:30
Jehiah Czebotar
73953259da Merge pull request #54 from rhoml/rhoml/documentation
Fix typo
2014-12-29 07:52:43 -05:00
Rhommel Lamas
942245f93d Fix typo 2014-12-29 11:24:46 +01:00
Jehiah Czebotar
a80b93130c Merge pull request #46 from drewolson/hide_custom_login_ui
Allow hiding custom login UI even if an htpasswd file is provided.
2014-12-09 16:14:04 -05:00
Jehiah Czebotar
71a7347e89 bump to alpha 2014-12-09 15:47:28 -05:00
drew
69804e588a Allow hiding custom login UI even if an htpasswd file is provided. 2014-12-09 14:38:57 -06:00
Jehiah Czebotar
5199e0028b Merge pull request #40 from jehiah/env_parsing_40
When loading client-id/client-secret/cookie-secret from env variables, google_auth_proxy blows up.
2014-11-14 23:18:08 -05:00
Jehiah Czebotar
1c5a01cb7b test/fix environment var parsing 2014-11-14 23:15:27 -05:00
Dan Lotterman
d552effc1e Merge pull request #38 from jehiah/release_38
1.0 release
2014-11-10 08:51:33 -05:00
Jehiah Czebotar
1fa1494e0e fix default in config to match 2014-11-09 23:45:59 -05:00
Jehiah Czebotar
1f515eba3c options bug fixes; set https cookies on by default 2014-11-09 22:21:46 -05:00
Jehiah Czebotar
ba7aee91d6 update install steps; show login img 2014-11-09 22:06:40 -05:00
Jehiah Czebotar
a49eadadeb template updates to display version 2014-11-09 22:01:50 -05:00
Jehiah Czebotar
a5f96b1754 release scripts 2014-11-09 21:48:09 -05:00
Jehiah Czebotar
3a1db8f457 Merge pull request #37 from jehiah/env_parsing_37
Better environment variable parsing
2014-11-10 03:24:42 +01:00
Jehiah Czebotar
9060feb436 better environment parsing 2014-11-09 21:12:36 -05:00
Jehiah Czebotar
01969eebdc Merge pull request #20 from jehiah/config_support_20
add option/flag to specify config file in place of commandline options
2014-11-10 02:34:37 +01:00
Jehiah Czebotar
d4fe9a4f57 Add config file support 2014-11-09 20:33:12 -05:00
Jehiah Czebotar
899749a08d Merge pull request #36 from jehiah/better_templates_36
Better (mobile) sign in template
2014-11-09 20:28:15 +01:00
Jehiah Czebotar
b8ef5107de pretty styling of sign in page 2014-11-09 00:42:49 -05:00
Jehiah Czebotar
7fae45a7b6 Merge pull request #34 from jehiah/secure_cookies_34
Use of secure attribute in cookies
2014-11-08 20:35:35 +01:00
Jehiah Czebotar
bc26835076 always set httponly (there is no good reason not to); simplify httponly and expire flags 2014-11-08 14:32:35 -05:00
Igor Dolgiy
6cdf05e7f2 Added cookie settings 2014-11-08 13:35:45 -05:00
Jehiah Czebotar
23a89b06de Merge pull request #22 from dbrgn/empty_upstream_path
Handle upstreams without a trailing slash
2014-11-08 19:17:44 +01:00
Vikrum Nijjar
ad57a9391f Fixed timing attack in cookie validation.
- Changed from using string == to hmac.Equal
- See more details here: http://verboselogging.com/2012/08/20/a-timing-attack-in-action
2014-11-08 13:16:39 -05:00
Jehiah Czebotar
2f165345a8 Merge pull request #35 from rogerhu/email
Pass in the original email address too as X-Forwarded-Email.
2014-11-08 19:11:51 +01:00
Roger Hu
ec9c11ed28 Pass in the original email address too as X-Forwarded-Email. 2014-11-08 07:33:14 -08:00