kubelogin

mirror of https://github.com/int128/kubelogin.git synced 2026-05-09 01:16:35 +00:00

Author	SHA1	Message	Date
renovate[bot]	a301ec17a7	chore(deps): update golang docker tag to v1.26.0 (#1502 ) * chore(deps): update golang docker tag to v1.26.0 * Fix printf args Error: pkg/usecases/setup/setup.go:86:18: non-constant format string in call to (github.com/int128/kubelogin/pkg/infrastructure/logger.Interface).Printf --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Hidetake Iwata <int128@gmail.com>	2026-02-22 19:01:27 +09:00
Hidetake Iwata	3981c78387	Add `--oidc-request-header` flag (#1359 ) * fix(authcode): Set Origin header on token request Allow passing Azure AD CORS checks. on-behalf-of: @eon-se opensource@eon.com Signed-off-by: Maximilian Blatt <maximilian.blatt.external@eon.com> * Add `--oidc-request-header` flag * Add doc --------- Signed-off-by: Maximilian Blatt <maximilian.blatt.external@eon.com> Co-authored-by: Maximilian Blatt <maximilian.blatt.external@eon.com>	2025-07-13 11:04:40 +09:00
Hidetake Iwata	0f2f54d4bf	Add `--oidc-redirect-url` to override redirect URL (#1263 )	2025-06-16 13:42:48 +09:00
Hidetake Iwata	3a38753ee7	Refactor setup command and docs (#1253 ) * Refactor setup command and docs * Fix slice flags * Fix	2025-01-25 16:08:28 +09:00
Hidetake Iwata	a2a6ea229d	Improve docs (#1250 ) * Refactor docs * Update --exec-api-version * Add device authorization grant * Fix	2025-01-19 15:02:02 +09:00
Hidetake Iwata	aa1f445672	Rename flag to --oidc-pkce-method and improve docs (#1240 ) * Add --oidc-pkce-method and improve docs * Fix lint * Refactor * Refactor	2025-01-14 09:57:19 +09:00
Hidetake Iwata	898e8a12de	Refactor PKCE implementation (#1239 )	2025-01-12 21:41:20 +09:00
Hidetake Iwata	606f1cd0b6	Remove unused struct field (#1238 )	2025-01-12 15:55:26 +09:00
Hidetake Iwata	66127ff3fc	Migrate to mockery packages feature (#1124 ) * Migrate to mockery packages feature * Fix workflow	2024-08-17 12:27:13 +09:00
Adam Kafka	905238ce07	Add new `--oidc-use-access-token` flag to `get-token` (#1084 ) * Add new `--oidc-use-access-token` flag to `get-token` Implements https://github.com/int128/kubelogin/issues/1083. See description there for context. In its current form, this PR is bare bones functionality. I have not yet added any tests to confirm this behavior. Additionally, we could consider updtating some of the naming. It is confusing to return a `TokenSet` where `IDToken` actually has an `accessToken`. I'm open to feedback on how best to improve this. However, this PR is functional. I have validated it locally. Without adding `--oidc-use-access-token`, and `id_token` is successfully returned. Adding `--oidc-use-access-token` results in an `access_token` being successfully returned. * Fix failing tests Needed to plumb through our new parameter `UseAccessToken` to the mocks as well. * Add a test to make sure new flag is plumbed through * Support Access Tokens whose audience differ from the client_id As noted in the PR, there are some cases where the access token `aud` field will not be the `client_id`. To allow for these, we use a different token verifier that will not verify that claim. --------- Co-authored-by: Adam kafka <akafka@tesla.com>	2024-08-16 16:57:05 +09:00
renovate[bot]	9e2fcd8cdb	fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 (#925 ) * fix(deps): update module github.com/golang-jwt/jwt/v4 to v5 * Replace with `jwt.RegisteredClaims` * Replace with `jwt.NewNumericDate` --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Hidetake Iwata <int128@gmail.com>	2023-05-14 21:38:48 +09:00
Hidetake Iwata	10412effa2	Run go fmt (#866 ) * Run go fmt * Generated by GitHub Actions (go / generate) https://github.com/int128/kubelogin/actions/runs/4971610724 --------- Co-authored-by: update-generated-files-action <41898282+github-actions[bot]@users.noreply.github.com>	2023-05-14 18:21:55 +09:00
Huang Huang	3602948645	Correct the --listen-address flag at stage 2 instructions (#815 )	2022-10-16 14:26:54 +09:00
Hidetake Iwata	7152bccd21	refactor: migrate to Testify Mock (#739 )	2022-07-16 16:55:51 +09:00
Hidetake Iwata	237e53313d	Add flag to set custom browser command (#622 ) * Add flag to set custom browser command * Use --browser-command in system_test * Add --browser-command= to setup message	2021-09-05 11:35:03 +09:00
Pedro Kiefer	a0cfde7198	refactor: add --oidc-use-pkce flag to force PKCE authorization flow (#599 )	2021-08-04 06:38:26 +09:00
Hidetake Iwata	b1d8e8f7e1	Refactor: rewrite with Go errors package (#427 )	2020-11-21 12:10:42 +09:00
Hidetake Iwata	5a3227409c	Refactor: rename to infrastructure package (#426 )	2020-11-21 07:56:52 +09:00
Hidetake Iwata	34762216c1	Refactor: extract tlsclientconfig.Config (#409 )	2020-11-03 14:37:24 +09:00
Hidetake Iwata	5b2c82fc33	Refactor: replace DTO with oidc.TokenSet type (#394 ) * Refactor: remove IDTokenClaims from TokenSet and decode in use-cases * Refactor: use oidc.TokenSet for cache repository	2020-10-03 17:49:21 +09:00
Hidetake Iwata	1dee4a354e	Refactor: extract oidc.Provider (#393 )	2020-10-03 08:35:35 +09:00
TJ Miller	56169d1673	Add support for HTTPS redirect URI (#381 ) * Add local server certificate option * fix trailing slash from step 5 kubectl config set-credentials * Add local https documentation * Change flags to --local-server-cert and --local-server-key * Add tests for flags Co-authored-by: TJ Miller <millert@us.ibm.com> Co-authored-by: Hidetake Iwata <int128@gmail.com>	2020-09-25 09:44:00 +09:00
Hidetake Iwata	c488888834	Refactor: pull up packages of domain (#349 )	2020-07-30 09:37:10 +09:00
Hidetake Iwata	a0e81e762c	Refactor: split authentication package into methods (#346 )	2020-07-30 00:31:23 +09:00
Hidetake Iwata	804a245fde	Refactor: rename to AuthCodeBrowser (#342 )	2020-07-26 18:49:22 +09:00
Hidetake Iwata	3fb074a4a8	Refactor: replace ClusterRoleBinding manifest with kubectl command (#270 )	2020-04-08 20:38:35 +09:00
MOZGIII	7f4f72c9e0	Correct the command args at stage 2 instructions (#261 )	2020-03-29 18:26:29 +09:00
Hidetake Iwata	8b9e31b4c5	Refactor: error messages and testing/logger (#243 ) * Refactor: respect -v option in testing/logger * Refactor: revise error messages	2020-02-22 12:31:00 +09:00
Hidetake Iwata	aac8780caf	Refactor: move to testing/logger	2020-02-21 22:39:27 +09:00
Hidetake Iwata	f89525b184	Refactor: extract domain/jwt and testing/jwt (#241 ) * Refactor: extract domain/jwt and testing/jwt * Refactor: remove jwt-go dep from product code	2020-02-21 22:33:08 +09:00
Hidetake Iwata	42879dc915	Revise setup instruction (#235 )	2020-02-12 21:27:08 +09:00
Hidetake Iwata	d223175b92	Refactor dependency injection (#209 ) * Refactor: use func type instead of factory interface * Refactor: remove duplicated dependencies in di.go	2020-01-17 22:01:40 +09:00
Hidetake Iwata	6075c9dbe7	Add --listen-address option to bind all interfaces (#208 )	2020-01-17 20:57:05 +09:00
Hidetake Iwata	76f61300d6	Refactor: extract oidc.Claims model (#202 ) * Refactor: extract oidc.Claims model * Refactor: extract Claims.IsExpired()	2019-12-26 20:17:30 +09:00
Hidetake Iwata	ec7f7a062a	Refactor: extract GrantOptionSet (#180 )	2019-10-31 11:02:03 +09:00
Hidetake Iwata	5a71247214	Refactor: extract authentication options (#177 ) * Refactor: extract authentication options * Refactor: make subtests	2019-10-30 21:32:51 +09:00
Hidetake Iwata	2700e439b9	Refactor: remove kubeconfig.OIDCConfig for single responsibility (#173 ) * Refactor: remove kubeconfig.OIDCConfig for single responsibility * fixup: add comments and rename methods * fixup: fix methods name * fixup: replace GetX509OrNil with SetRootCAs	2019-10-28 23:45:17 +09:00
Hidetake Iwata	dbf6238029	Refactor: rename auth package (#172 )	2019-10-28 20:02:59 +09:00
Hidetake Iwata	93e893bc36	Refactor: replace ListenPort with BindAddress option (#171 )	2019-10-28 19:59:45 +09:00
Hidetake Iwata	8c640f6c73	Add setup command (#157 ) * Add setup command * Refactor: extract IDTokenSubject instead of sub claims	2019-09-29 18:34:59 +09:00

40 Commits