8cc5fbf859
* first stab at login.gov provider * fixing bugs now that I think I understand things better * fixing up dependencies * remove some debug stuff * Fixing all dependencies to point at my fork * forgot to hit save on the github rehome here * adding options for setting keys and so on, use JWT workflow instead of PKCE * forgot comma * was too aggressive with search/replace * need JWTKey to be byte array * removed custom refresh stuff * do our own custom jwt claim and store it in the normal session store * golang json types are strange * I have much to learn about golang * fix time and signing key * add http lib * fixed claims up since we don't need custom claims * add libs * forgot ioutil * forgot ioutil * moved back to pusher location * changed proxy github location back so that it builds externally, fixed up []byte stuff, removed client_secret if we are using login.gov * update dependencies * do JWTs properly * finished oidc flow, fixed up tests to work better * updated comments, added test that we set expiresOn properly * got confused with header and post vs get * clean up debug and test dir * add login.gov to README, remove references to my repo * forgot to remove un-needed code * can use sample_key* instead of generating your own * updated changelog * apparently golint wants comments like this * linter wants non-standard libs in a separate grouping * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * Update options.go Co-Authored-By: timothy-spencer <timothy.spencer@gsa.gov> * remove sample_key, improve comments related to client-secret, fix changelog related to PR feedback * github doesn't seem to do gofmt when merging. :-) * update CODEOWNERS * check the nonce * validate the JWT fully * forgot to add pubjwk-url to README * unexport the struct * fix up the err masking that travis found * update nonce comment by request of @JoelSpeed * argh. Thought I'd formatted the merge properly, but apparently not. * fixed test to not fail if the query time was greater than zero
13 lines
591 B
Plaintext
13 lines
591 B
Plaintext
# Default owner should be a Pusher cloud-team member unless overridden by later
|
|
# rules in this file
|
|
* @pusher/cloud-team
|
|
|
|
# login.gov provider
|
|
# Note: If @timothy-spencer terms out of his appointment, your best bet
|
|
# for finding somebody who can test the oauth2_proxy would be to ask somebody
|
|
# in the login.gov team (https://login.gov/developers/), the cloud.gov team
|
|
# (https://cloud.gov/docs/help/), or the 18F org (https://18f.gsa.gov/contact/
|
|
# or the public devops channel at https://chat.18f.gov/).
|
|
providers/logingov.go @timothy-spencer
|
|
providers/logingov_test.go @timothy-spencer
|