github/wonderwall
1
0
Fork 0
mirror of https://github.com/nais/wonderwall.git synced 2026-05-21 07:42:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
494 Commits 3 Branches 0 Tags
31961cf96fd017cf5869f9355957d1e191bdfffd
Commit Graph

494 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jan-Kåre Solbakken
31961cf96f Merge pull request #77 from nais/dependabot/go_modules/github.com/alicebob/miniredis/v2-2.30.1 
build(deps): bump github.com/alicebob/miniredis/v2 from 2.30.0 to 2.30.1
 2023-03-13 21:02:34 +01:00
dependabot[bot]
a3585895c1 build(deps): bump github.com/alicebob/miniredis/v2 from 2.30.0 to 2.30.1 
Bumps [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) from 2.30.0 to 2.30.1.
- [Release notes](https://github.com/alicebob/miniredis/releases)
- [Changelog](https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/alicebob/miniredis/compare/v2.30.0...v2.30.1)

---
updated-dependencies:
- dependency-name: github.com/alicebob/miniredis/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-13 19:58:41 +00:00
Trong Huu Nguyen
c8a887dd01 build: bump to go version 1.20.2 2023-03-08 14:22:16 +01:00
Trong Huu Nguyen
2116f8d23b build(deps): bump golang.org/x/oauth2 from 0.5.0 to 0.6.0 
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/oauth2/releases)
- [Commits](https://github.com/golang/oauth2/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-08 13:43:43 +01:00
dependabot[bot]
4ab4b54bfe build(deps): bump golang.org/x/crypto from 0.6.0 to 0.7.0 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-08 13:43:26 +01:00
dependabot[bot]
db499229de build(deps): bump github.com/bsm/redislock from 0.9.0 to 0.9.1 
Bumps [github.com/bsm/redislock](https://github.com/bsm/redislock) from 0.9.0 to 0.9.1.
- [Release notes](https://github.com/bsm/redislock/releases)
- [Changelog](https://github.com/bsm/redislock/blob/main/CHANGELOG.md)
- [Commits](https://github.com/bsm/redislock/compare/v0.9.0...v0.9.1)

---
updated-dependencies:
- dependency-name: github.com/bsm/redislock
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-03-08 13:43:23 +01:00
Trong Huu Nguyen
20e733d9f2 ci/dependabot: remove PR limit, add docker 2023-03-08 13:01:52 +01:00
Trong Huu Nguyen
da05c7808d build: add trimpath and ldflags to trim resulting binary 2023-03-08 12:55:17 +01:00
Trong Huu Nguyen
3dc3c1dee5 feat(sso/server): return not found instead of redirect for wildcard handler 2023-03-08 12:53:25 +01:00
Trong Huu Nguyen
07cf8e12b3 feat(cookie): support overriding session cookie name 2023-03-01 11:27:26 +01:00
Trong Huu Nguyen
133d3fd855 refactor(middleware/logentry): ignore ping route 2023-03-01 10:11:37 +01:00
Trong Huu Nguyen
a375ac774d feat(router): add ping route for health probes 2023-03-01 09:27:06 +01:00
dependabot[bot]
27bc5aee60 build(deps): bump honnef.co/go/tools from 0.4.0 to 0.4.2 (#72) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-28 08:12:28 +01:00
dependabot[bot]
f720842e03 build(deps): bump github.com/stretchr/testify from 1.8.1 to 1.8.2 (#73) 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-02-28 08:04:38 +01:00
Trong Huu Nguyen
7c21af2d58 build: clean up dockerfile and compose setup, use distroless image 2023-02-27 14:13:57 +01:00
Trong Huu Nguyen
442e056b26 refactor(handler): inline error handler, remove unnecessary getters 2023-02-24 19:24:02 +01:00
Trong Huu Nguyen
f346e9e91d refactor(router): use a more apt name for wildcard handler 2023-02-24 18:33:41 +01:00
Trong Huu Nguyen
5342913676 refactor: move cookie options to handler constructors 2023-02-24 18:21:36 +01:00
Trong Huu Nguyen
d5b603c98f feat(router): add cors middleware for sso server 2023-02-23 14:30:55 +01:00
Trong Huu Nguyen
08c6e96670 refactor(session): wrap error for decrypt 2023-02-23 14:29:49 +01:00
Trong Huu Nguyen
b248dd8875 docs: add flags for sso configs 2023-02-22 10:24:06 +01:00
Trong Huu Nguyen
3e93423464 refactor(sso/server): redirect requests for wildcard routes to default URL 2023-02-22 10:19:26 +01:00
Trong Huu Nguyen
9ecfdb73ef fix(handler): time-to-refresh in session metadata is disabled for sso 2023-02-22 10:11:39 +01:00
Trong Huu Nguyen
afc8fd6962 style: formatting 2023-02-21 15:37:48 +01:00
Trong Huu Nguyen
e7d411b5c9 build: add gofumt and Makefile target for formatting 2023-02-21 15:36:14 +01:00
Trong Huu Nguyen
2796e1c9bc refactor(session): remove duplicate method, token expiry must be shorter than inactivity timeout 2023-02-21 15:34:50 +01:00
Trong Huu Nguyen
9074547163 docs: clarifications for refresh behaviour 2023-02-21 15:32:43 +01:00
Trong Huu Nguyen
ec572db957 refactor(session): remove internal method from Reader interface 2023-02-21 15:12:45 +01:00
Trong Huu Nguyen
925a1c70e7 fix(config): require redis when sso is enabled 2023-02-21 14:54:29 +01:00
Trong Huu Nguyen
492e0b5625 feat(sso/proxy): implement upstream reverseproxy with prerequisites 2023-02-21 14:50:51 +01:00
Trong Huu Nguyen
94a66fac2a refactor(handler): extract path matcher for reuse 2023-02-21 14:45:14 +01:00
Trong Huu Nguyen
59a2e7b7a0 refactor(session): simplify AccessToken method, don't export methods that are only used within package 2023-02-21 14:40:27 +01:00
Trong Huu Nguyen
27897dad63 refactor(handler/standalone): use new sessionmanager, remove unneeded methods 2023-02-21 14:16:51 +01:00
Trong Huu Nguyen
5b33313ccb feat(session): add GetOrRefresh method 2023-02-21 14:12:56 +01:00
Trong Huu Nguyen
7a52b0d1a3 refactor(handler/reverseproxy): require GetAccessToken from source instead of obsolete session handler 2023-02-21 13:31:06 +01:00
Trong Huu Nguyen
f4ae907a2b refactor(handler/reverseproxy): clean up error handling 2023-02-21 13:30:29 +01:00
Trong Huu Nguyen
820fb733e6 refactor(session): separate handler into manager and reader, use session struct to avoid polluting exported methods 2023-02-21 13:25:07 +01:00
Trong Huu Nguyen
9d330d8395 deps: bump 2023-02-21 13:13:23 +01:00
Trong Huu Nguyen
49a90f3dbf refactor(session/ticket): rename method for clarity, add doc comments, clean up error handling 2023-02-21 12:28:21 +01:00
Trong Huu Nguyen
db391a9e44 refactor(session/store): consolidate session errors and use multi-error wrapping 2023-02-21 10:06:44 +01:00
Trong Huu Nguyen
17f39f8c5f feat(session/data): add more validation methods 2023-02-21 09:59:38 +01:00
Trong Huu Nguyen
94d4b1a524 refactor(session): extract external ID function to separate file 2023-02-20 12:40:23 +01:00
Trong Huu Nguyen
c6d3d11072 refactor(url): rename named import 2023-02-20 12:39:05 +01:00
Trong Huu Nguyen
fb28da7241 refactor: consolidate handlers 2023-02-16 10:55:50 +01:00
Trong Huu Nguyen
3274cc5c65 refactor: move redirect package into url, clean up naming 2023-02-16 09:24:39 +01:00
Trong Huu Nguyen
2a8386637e deps: bump em 2023-02-15 08:47:55 +01:00
Trong Huu Nguyen
2c5d964983 refactor(handler/reverseproxy): reduce log severity for cookie decrypt failures 2023-02-15 08:43:25 +01:00
Trong Huu Nguyen
c3532d2e60 build: bump to go version 1.20.1 2023-02-14 21:50:34 +01:00
Trong Huu Nguyen
411201b3de refactor(redirect): clean up logging 2023-02-14 21:50:33 +01:00
Trong Huu Nguyen
0537c8172f feat(session): use tickets for per-session data encryption 
Replace the usage of a single application-wide session crypter
with per-session crypters.

The application is no longer able to decrypt any session
encrypted with its symmetric key alone. Instead, a session ticket
with its associated data encryption key (DEK) is also required in order
to decrypt the associated session data. The ticket itself is
encrypted with the application's crypter; the latter of which is
effectively a key-encryption key (KEK).

Fixes #49.
 2023-02-14 21:50:19 +01:00