2070fae47c
* Use encoding/json for SessionState serialization In order to make it easier to extend in future. * Store only email and user in cookie when cipher is unavailable This improves safety and robustness, and also preserves the existing behaviour. * Add TestEncodeSessionState/TestDecodeSessionState Use the test vectors with JSON encoding just introduced. * Support session state encoding in older versions * Add test cases for legacy session state strings * Add check for wrong expiration time in session state strings * Avoid exposing time.Time zero value when encoding session state string * Update CHANGELOG.md |
||
---|---|---|
.. | ||
azure_test.go | ||
azure.go | ||
facebook.go | ||
github_test.go | ||
github.go | ||
gitlab_test.go | ||
gitlab.go | ||
google_test.go | ||
google.go | ||
internal_util_test.go | ||
internal_util.go | ||
linkedin_test.go | ||
linkedin.go | ||
logingov_test.go | ||
logingov.go | ||
oidc.go | ||
provider_data.go | ||
provider_default_test.go | ||
provider_default.go | ||
providers.go | ||
session_state_test.go | ||
session_state.go |