github/wonderwall
1
0
Fork 0
mirror of https://github.com/nais/wonderwall.git synced 2026-05-16 21:36:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,121 Commits 2 Branches 0 Tags
1b2728ef9bba750ff83bb896a50fe5f600d1a2d1
Commit Graph

1121 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
1b2728ef9b build(deps): bump google-github-actions/auth in the gh-actions group (#370) 
Bumps the gh-actions group with 1 update: [google-github-actions/auth](https://github.com/google-github-actions/auth).


Updates `google-github-actions/auth` from 2.1.7 to 2.1.10
- [Release notes](https://github.com/google-github-actions/auth/releases)
- [Changelog](https://github.com/google-github-actions/auth/blob/main/CHANGELOG.md)
- [Commits](6fc4af4b14...ba79af0395)

---
updated-dependencies:
- dependency-name: google-github-actions/auth
  dependency-version: 2.1.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gh-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-26 07:49:42 +00:00
Trong Huu Nguyen
798ba7d38b charts: set additional scopes for forward-auth 2025-05-23 09:28:36 +02:00
Trong Huu Nguyen
9bb5ac9210 fix(openid/client): also accept acr and locale params when no defaults are configured 2025-05-23 09:00:45 +02:00
Trong Huu Nguyen
b9963b19f9 refactor(openid): clean up id_token validation tests 2025-05-23 08:59:42 +02:00
Trong Huu Nguyen
c5ec362e60 feat(session): update id_token in session if returned from refresh grant 
Co-authored-by: Thomas Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-22 15:52:15 +02:00
Trong Huu Nguyen
192cd86022 feat: use id_token instead of access_token for forward-auth headers 
Co-authored-by: Thomas Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-22 11:09:59 +02:00
Trong Huu Nguyen
b21068f522 feat: set response headers for forward-auth behind feature flag 2025-05-22 09:04:58 +02:00
Trong Huu Nguyen
18a3c2cf96 charts: add scopes for forward-auth 2025-05-22 09:04:06 +02:00
Trong Huu Nguyen
abf235dac6 feat(handler): attach token in forward-auth response 
Co-authored-by: Thomas Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 15:16:27 +02:00
Thomas Krampl
79c1ed23f9 wonderwall-forward-auth: Set checksum as annotation 
Co-authored-by: Trong Huu Nguyen <trong.huu.nguyen@nav.no>
 2025-05-21 14:44:22 +02:00
Thomas Krampl
023061b496 wonderwall-forward-auth: restart deployment when secret changes 
Co-authored-by: Trong Huu Nguyen <trong.huu.nguyen@nav.no>
 2025-05-21 14:34:26 +02:00
Thomas Krampl
332f39aba9 wonderwall-forward-auth: add zitadel project id as aud 
Co-authored-by: Trong Huu Nguyen <trong.huu.nguyen@nav.no>
 2025-05-21 14:07:12 +02:00
Trong Huu Nguyen
733901ecdf charts: add missing network policies 
Co-Authored-By: Thomas Siegfried Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 11:17:52 +02:00
Trong Huu Nguyen
a59a37e0bd charts: correct template for default redirect URL 
Co-Authored-By: Thomas Siegfried Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 11:03:51 +02:00
Trong Huu Nguyen
14b1247f4a charts: add missing source for forward-auth 
Co-Authored-By: Thomas Siegfried Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 10:52:23 +02:00
Trong Huu Nguyen
0570c87f80 charts: fix things 
Co-Authored-By: Thomas Siegfried Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 10:46:02 +02:00
Trong Huu Nguyen
53dc9d9f40 charts: add wonderwall-forward-auth 
Co-Authored-By: Thomas Siegfried Krampl <thomas.siegfried.krampl@nav.no>
 2025-05-21 10:38:27 +02:00
Trong Huu Nguyen
3543fe08cd build: go 1.24.3 2025-05-21 10:38:27 +02:00
Trong Huu Nguyen
259bf635d1 chore(deps): bump github.com/lestrrat-go/jwx from v2 to v3 2025-05-21 10:38:26 +02:00
Trong Huu Nguyen
c8b8703416 ci: group go-redis updates for dependabot 2025-05-21 10:38:26 +02:00
Trong Huu Nguyen
2ca79b595a test: move upstream struct to reverseproxy file 2025-05-21 10:38:25 +02:00
Sten Røkke
de424d9e7b fix: excluding postgres namespaces from replication config 2025-05-21 09:59:33 +02:00
dependabot[bot]
7ec45dc935 build(deps): bump golang.org/x/crypto from 0.37.0 to 0.38.0 (#369) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.37.0 to 0.38.0.
- [Commits](https://github.com/golang/crypto/compare/v0.37.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.38.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-12 07:40:33 +00:00
dependabot[bot]
170d045e62 build(deps): bump golang.org/x/oauth2 from 0.29.0 to 0.30.0 (#368) 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.29.0 to 0.30.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.29.0...v0.30.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.30.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-12 07:37:00 +00:00
dependabot[bot]
6684763a77 build(deps): bump actions/setup-go in the gh-actions group (#367) 
Bumps the gh-actions group with 1 update: [actions/setup-go](https://github.com/actions/setup-go).


Updates `actions/setup-go` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](0aaccfd150...d35c59abb0)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-version: 5.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gh-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-12 07:16:09 +00:00
dependabot[bot]
38936dab95 build(deps): bump github.com/KimMachineGun/automemlimit (#365) 
Bumps [github.com/KimMachineGun/automemlimit](https://github.com/KimMachineGun/automemlimit) from 0.7.1 to 0.7.2.
- [Release notes](https://github.com/KimMachineGun/automemlimit/releases)
- [Commits](https://github.com/KimMachineGun/automemlimit/compare/v0.7.1...v0.7.2)

---
updated-dependencies:
- dependency-name: github.com/KimMachineGun/automemlimit
  dependency-version: 0.7.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 08:21:52 +00:00
dependabot[bot]
ac065d9150 build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.1.5 to 2.1.6 (#364) 
Bumps [github.com/lestrrat-go/jwx/v2](https://github.com/lestrrat-go/jwx) from 2.1.5 to 2.1.6.
- [Release notes](https://github.com/lestrrat-go/jwx/releases)
- [Changelog](https://github.com/lestrrat-go/jwx/blob/v2.1.6/Changes)
- [Commits](https://github.com/lestrrat-go/jwx/compare/v2.1.5...v2.1.6)

---
updated-dependencies:
- dependency-name: github.com/lestrrat-go/jwx/v2
  dependency-version: 2.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 08:18:15 +00:00
dependabot[bot]
31b857fc04 build(deps): bump github.com/redis/go-redis/extra/redisotel/v9 (#363) 
Bumps [github.com/redis/go-redis/extra/redisotel/v9](https://github.com/redis/go-redis) from 9.7.3 to 9.8.0.
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redis/go-redis/compare/v9.7.3...v9.8.0)

---
updated-dependencies:
- dependency-name: github.com/redis/go-redis/extra/redisotel/v9
  dependency-version: 9.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 08:14:39 +00:00
dependabot[bot]
10807d6866 build(deps): bump github.com/redis/go-redis/extra/redisprometheus/v9 (#362) 
Bumps [github.com/redis/go-redis/extra/redisprometheus/v9](https://github.com/redis/go-redis) from 9.7.3 to 9.8.0.
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redis/go-redis/compare/v9.7.3...v9.8.0)

---
updated-dependencies:
- dependency-name: github.com/redis/go-redis/extra/redisprometheus/v9
  dependency-version: 9.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-05-05 08:11:01 +00:00
Trong Huu Nguyen
762b64eff5 fix(reverseproxy): strip incoming id-token header for unauthenticated requests 2025-04-28 10:50:12 +02:00
Trong Huu Nguyen
6b7e3e8349 ci: use go version from go.mod 2025-04-28 10:49:59 +02:00
dependabot[bot]
45f70350ae build(deps): bump sigstore/cosign-installer in the gh-actions group (#361) 
Bumps the gh-actions group with 1 update: [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer).


Updates `sigstore/cosign-installer` from 3.8.1 to 3.8.2
- [Release notes](https://github.com/sigstore/cosign-installer/releases)
- [Commits](d7d6bc7722...3454372f43)

---
updated-dependencies:
- dependency-name: sigstore/cosign-installer
  dependency-version: 3.8.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: gh-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-28 08:24:13 +00:00
dependabot[bot]
529af0ec91 build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.1.4 to 2.1.5 (#360) 
Bumps [github.com/lestrrat-go/jwx/v2](https://github.com/lestrrat-go/jwx) from 2.1.4 to 2.1.5.
- [Release notes](https://github.com/lestrrat-go/jwx/releases)
- [Changelog](https://github.com/lestrrat-go/jwx/blob/v2.1.5/Changes)
- [Commits](https://github.com/lestrrat-go/jwx/compare/v2.1.4...v2.1.5)

---
updated-dependencies:
- dependency-name: github.com/lestrrat-go/jwx/v2
  dependency-version: 2.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-21 08:12:30 +00:00
dependabot[bot]
f4d344dc85 build(deps): bump golang.org/x/net from 0.36.0 to 0.38.0 (#359) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.36.0 to 0.38.0.
- [Commits](https://github.com/golang/net/compare/v0.36.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-16 23:17:34 +00:00
dependabot[bot]
f8a005730f build(deps): bump actions/checkout in the gh-actions group (#358) 
Bumps the gh-actions group with 1 update: [actions/checkout](https://github.com/actions/checkout).


Updates `actions/checkout` from 4.1.1 to 4.2.2
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](b4ffde65f4...11bd71901b)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gh-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-14 07:12:27 +00:00
Trong Huu Nguyen
ca9d76043f ci: remove codeql workflow 2025-04-08 13:38:48 +02:00
Trong Huu Nguyen
6bd858407b chore(deps): bump dependencies, replace deprecated mapstructure 2025-04-08 12:53:00 +02:00
dependabot[bot]
bcfeedffe9 build(deps): bump golang.org/x/crypto from 0.36.0 to 0.37.0 (#357) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.36.0 to 0.37.0.
- [Commits](https://github.com/golang/crypto/compare/v0.36.0...v0.37.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-07 07:59:53 +00:00
dependabot[bot]
3ec26d5627 build(deps): bump golang.org/x/oauth2 from 0.28.0 to 0.29.0 (#356) 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.28.0 to 0.29.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.28.0...v0.29.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.29.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-04-07 07:56:02 +00:00
Trong Huu Nguyen
ef8dc0a64e chore(deps): go 1.24.2 2025-04-03 08:42:00 +02:00
Trong Huu Nguyen
ca8c09ae10 fix(openid/client): flatten audience for client assertion 
In accordance with OpenID Connect 1.0 Core, draft 36 incorporating
errata set 3:

> aud
>    REQUIRED. Audience. The aud (audience) Claim. [...] The Audience value MUST be the OP's Issuer Identifier passed as a string, and not a single-element array.
 2025-04-02 13:44:37 +02:00
Trong Huu Nguyen
01241f91ac perf: replace bytes.Buffer with strings.Builder 2025-04-02 11:53:30 +02:00
Trong Huu Nguyen
126db31d25 feat: restrict non-navigational requests to oauth2-routes for all modes 2025-04-02 11:53:29 +02:00
Trong Huu Nguyen
48527e47f8 docs: clean up readme 2025-04-02 11:53:25 +02:00
dependabot[bot]
22d35f073c build(deps): bump github.com/redis/go-redis/extra/redisprometheus/v9 (#353) 
Bumps [github.com/redis/go-redis/extra/redisprometheus/v9](https://github.com/redis/go-redis) from 9.7.1 to 9.7.3.
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redis/go-redis/compare/v9.7.1...v9.7.3)

---
updated-dependencies:
- dependency-name: github.com/redis/go-redis/extra/redisprometheus/v9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 08:30:10 +00:00
dependabot[bot]
0d0bd45473 build(deps): bump actions/setup-go in the gh-actions group (#354) 
Bumps the gh-actions group with 1 update: [actions/setup-go](https://github.com/actions/setup-go).


Updates `actions/setup-go` from 5.3.0 to 5.4.0
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v5.3.0...v5.4.0)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gh-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 08:26:53 +00:00
dependabot[bot]
a5c0a4ae74 build(deps): bump github.com/redis/go-redis/extra/redisotel/v9 (#352) 
Bumps [github.com/redis/go-redis/extra/redisotel/v9](https://github.com/redis/go-redis) from 9.7.1 to 9.7.3.
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redis/go-redis/compare/v9.7.1...v9.7.3)

---
updated-dependencies:
- dependency-name: github.com/redis/go-redis/extra/redisotel/v9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 08:23:12 +00:00
dependabot[bot]
1d41448681 build(deps): bump github.com/redis/go-redis/v9 from 9.7.1 to 9.7.3 (#351) 
Bumps [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) from 9.7.1 to 9.7.3.
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/redis/go-redis/compare/v9.7.1...v9.7.3)

---
updated-dependencies:
- dependency-name: github.com/redis/go-redis/v9
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-20 19:00:35 +00:00
dependabot[bot]
03a90af84d build(deps): bump golang.org/x/net from 0.35.0 to 0.36.0 (#349) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.35.0 to 0.36.0.
- [Commits](https://github.com/golang/net/compare/v0.35.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-13 02:13:53 +00:00
dependabot[bot]
57abd075d9 build(deps): bump golang.org/x/crypto from 0.35.0 to 0.36.0 (#348) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.35.0 to 0.36.0.
- [Commits](https://github.com/golang/crypto/compare/v0.35.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-10 08:21:43 +00:00