Fork https://github.com/pusher/oauth2_proxy.git Adding gitea provider

Go to file

Jonas Fonseca 7a8fb58ad1 Only validate tokens if ValidateURL resolves to a non-empty string Fix an unsupported protocol scheme error when validating tokens by ensuring that the ValidateURL generates a non-empty string. The Azure provider doesn't define any ValidateURL and therefore uses the default value of `url.Parse("")` which is not `nil`. The following log summary shows the issue: 2019/06/14 12:26:04 oauthproxy.go:799: 10.244.1.3:34112 ("10.244.1.1") refreshing 16h26m29s old session cookie for Session{email:jonas.fonseca@example.com user:jonas.fonseca token:true} (refresh after 1h0m0s) 2019/06/14 12:26:04 internal_util.go:60: GET ?access_token=eyJ0... 2019/06/14 12:26:04 internal_util.go:61: token validation request failed: Get ?access_token=eyJ0...: unsupported protocol scheme "" 2019/06/14 12:26:04 oauthproxy.go:822: 10.244.1.3:34112 ("10.244.1.1") removing session. error validating Session{email:jonas.fonseca@example.com user:jonas.fonseca token:true}		2019-06-14 12:52:22 -04:00
.github	add login.gov provider (#55 )	2019-03-20 13:44:51 +00:00
api	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
contrib	Fix repo link	2019-06-01 05:36:28 +03:00
cookie	Lint for non-comment linter errors	2018-11-29 14:26:41 +00:00
docs	Documentation updates around Redis and Redis Sentinel use	2019-06-05 00:11:42 -07:00
logger	Fixed linting errors.	2019-04-12 08:59:46 -07:00
pkg	Ensure SessionStores can handle recieving cookies for the wrong implementation	2019-06-05 00:11:42 -07:00
providers	Only validate tokens if ValidateURL resolves to a non-empty string	2019-06-14 12:52:22 -04:00
.dockerignore	Ignore Dockerfile.dev	2019-01-22 02:54:17 +09:00
.gitignore	Add make targets for serving docs locally	2019-05-10 12:07:16 +01:00
.travis.yml	Merge pull request #176 from govau/fixnogopath	2019-06-03 16:21:39 +01:00
CHANGELOG.md	Only validate tokens if ValidateURL resolves to a non-empty string	2019-06-14 12:52:22 -04:00
configure	Merge pull request #176 from govau/fixnogopath	2019-06-03 16:21:39 +01:00
CONTRIBUTING.md	fix(docker): simplify build by copying ca-certificates.crt	2019-02-02 20:01:27 +13:00
dist.sh	distribution: remove gpm references and update to use dep	2017-12-04 09:54:31 -05:00
Dockerfile	Update Alpine to 3.9	2019-05-31 18:54:20 +12:00
Dockerfile.arm64	Update Alpine to 3.9	2019-05-31 18:54:20 +12:00
Dockerfile.armv6	Update Alpine to 3.9	2019-05-31 18:54:20 +12:00
env_options_test.go	Allow embedded structs in env_options	2019-05-18 13:09:58 +02:00
env_options.go	Allow embedded structs in env_options	2019-05-18 13:09:58 +02:00
Gopkg.lock	Merge branch 'master' into bumpoidc	2019-06-06 17:38:19 +01:00
Gopkg.toml	Merge branch 'master' into bumpoidc	2019-06-06 17:38:19 +01:00
htpasswd_test.go	Lint for non-comment linter errors	2018-11-29 14:26:41 +00:00
htpasswd.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
http_test.go	found another edge case to test	2019-03-25 10:47:30 -07:00
http.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
LICENSE	add MIT license for google_auth_proxy	2014-06-09 16:25:26 -04:00
logging_handler_test.go	Requested changes	2019-04-12 09:48:21 -07:00
logging_handler.go	Merging changes	2019-04-12 09:26:44 -07:00
main.go	Documentation updates around Redis and Redis Sentinel use	2019-06-05 00:11:42 -07:00
Makefile	Merge pull request #170 from zeha/release-tarballs-as-before	2019-06-03 16:23:30 +01:00
oauthproxy_test.go	Move cipher creation to options and away from oauth2_proxy.go	2019-05-20 11:26:13 +02:00
oauthproxy.go	Move cipher creation to options and away from oauth2_proxy.go	2019-05-20 11:26:13 +02:00
options_test.go	added better tests for gcp healthcheck stuff	2019-03-25 09:56:56 -07:00
options.go	Move cipher creation to options and away from oauth2_proxy.go	2019-05-20 11:26:13 +02:00
README.md	Shorten README.md (#154 )	2019-05-10 12:25:05 +01:00
string_array.go	Implement Getter interface for StringArray (#104 )	2019-03-20 13:58:14 +00:00
templates_test.go	Swap out bmizerany/assert package that is deprecated in favor of stretchr/testify/assert	2017-10-23 12:24:17 -04:00
templates.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
validator_test.go	Lint for non-comment linter errors	2018-11-29 14:26:41 +00:00
validator_watcher_copy_test.go	Lint for non-comment linter errors	2018-11-29 14:26:41 +00:00
validator_watcher_test.go	Lint for non-comment linter errors	2018-11-29 14:26:41 +00:00
validator.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
version.go	Introduce Makefile	2019-01-04 10:58:30 +00:00
watcher_unsupported.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00
watcher.go	Auth and standard logging with file rolling	2019-04-12 08:59:46 -07:00

README.md

oauth2_proxy

A reverse proxy and static file server that provides authentication using Providers (Google, GitHub, and others) to validate accounts by email, domain or group.

Note: This repository was forked from bitly/OAuth2_Proxy on 27/11/2018. Versions v3.0.0 and up are from this fork and will have diverged from any changes in the original fork. A list of changes can be seen in the CHANGELOG.

Installation

Choose how to deploy:

a. Download Prebuilt Binary (current release is v3.2.0)

b. Build with $ go get github.com/pusher/oauth2_proxy which will put the binary in $GOROOT/bin

c. Using the prebuilt docker image quay.io/pusher/oauth2_proxy (AMD64, ARMv6 and ARM64 tags available)

Prebuilt binaries can be validated by extracting the file and verifying it against the sha256sum.txt checksum file provided for each release starting with version v3.0.0.

sha256sum -c sha256sum.txt 2>&1 | grep OK
oauth2_proxy-3.2.0.linux-amd64: OK

Docs

Read the docs on our Docs site.

Contributing

Please see our Contributing guidelines.