wonderwall

github/wonderwall

Fork 0

mirror of https://github.com/nais/wonderwall.git synced 2026-05-09 18:06:42 +00:00

Commit Graph

Select branches

Hide Pull Requests

dependabot/go_modules/otel-3525194e36

master

#1

#10

#101

#102

#103

#104

#105

#106

#107

#108

#109

#11

#110

#111

#111

#112

#113

#114

#115

#117

#118

#119

#12

#120

#121

#122

#123

#124

#125

#126

#127

#128

#129

#13

#130

#131

#132

#133

#134

#135

#136

#138

#139

#14

#140

#141

#142

#143

#144

#145

#146

#147

#148

#149

#15

#150

#151

#152

#153

#154

#155

#157

#158

#159

#16

#160

#161

#162

#163

#164

#165

#166

#167

#168

#169

#170

#171

#172

#173

#174

#175

#176

#177

#178

#179

#18

#180

#181

#182

#183

#184

#185

#186

#187

#188

#189

#19

#190

#192

#193

#194

#195

#196

#197

#198

#199

#2

#20

#200

#201

#202

#203

#204

#205

#206

#207

#208

#209

#21

#210

#211

#212

#213

#214

#215

#216

#217

#218

#219

#22

#220

#221

#222

#223

#224

#225

#226

#227

#228

#229

#23

#230

#231

#232

#233

#234

#236

#237

#238

#239

#24

#240

#241

#242

#243

#244

#245

#246

#247

#248

#249

#25

#250

#251

#252

#253

#254

#255

#256

#257

#258

#259

#26

#260

#261

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#275

#276

#277

#278

#279

#28

#280

#281

#282

#283

#284

#285

#286

#287

#288

#289

#29

#290

#291

#292

#293

#294

#295

#296

#297

#298

#299

#3

#30

#300

#301

#302

#303

#304

#305

#308

#309

#31

#310

#311

#312

#313

#314

#316

#317

#318

#319

#32

#320

#321

#322

#323

#325

#326

#327

#328

#329

#33

#330

#331

#332

#333

#334

#335

#336

#337

#338

#339

#34

#340

#341

#342

#343

#344

#345

#346

#347

#348

#349

#35

#350

#351

#352

#353

#354

#355

#356

#357

#358

#359

#360

#361

#362

#363

#364

#365

#366

#367

#368

#369

#37

#370

#371

#372

#373

#374

#375

#376

#377

#378

#379

#38

#380

#381

#382

#383

#384

#385

#386

#387

#388

#389

#39

#390

#391

#392

#393

#394

#395

#396

#397

#398

#399

#4

#40

#400

#401

#402

#403

#404

#405

#406

#407

#408

#409

#41

#410

#411

#412

#413

#414

#415

#416

#417

#418

#419

#42

#420

#421

#422

#423

#424

#425

#426

#427

#428

#429

#43

#430

#431

#432

#433

#435

#436

#437

#438

#439

#44

#440

#441

#442

#443

#444

#445

#446

#447

#448

#449

#45

#450

#451

#452

#453

#454

#455

#456

#457

#458

#459

#46

#460

#461

#462

#463

#464

#465

#466

#467

#468

#469

#47

#470

#48

#5

#51

#53

#56

#57

#58

#59

#60

#61

#62

#63

#64

#65

#66

#68

#69

#70

#72

#73

#74

#75

#76

#77

#78

#79

#8

#80

#81

#82

#83

#84

#85

#86

#87

#88

#89

#9

#90

#91

#92

#93

#94

#95

#96

#97

#98

#99

a230599351 deps: bumpity bump Trong Huu Nguyen 2022-07-14 12:20:51 +02:00
aab249d78a refactor(jwt): skip parsing access tokens Trong Huu Nguyen 2022-07-14 12:14:22 +02:00
6469c527a7 refactor(mock/openid): validate params in auth and token requests Trong Huu Nguyen 2022-07-14 10:08:51 +02:00
0398d17074 test(router): add some missing assertions Trong Huu Nguyen 2022-07-14 10:06:08 +02:00
9ac091fe91 test(openid/client): fix broken login callback tests Trong Huu Nguyen 2022-07-14 10:05:34 +02:00
9c29bb180b refactor(mock): ensure scope is correctly set for openid client Trong Huu Nguyen 2022-07-14 10:04:34 +02:00
aead53c60a refactor(openid/client): expose method for generating code challenge Trong Huu Nguyen 2022-07-14 10:03:14 +02:00
2b730f1c32 refactor(openid/client): scope is not required for client assertions Trong Huu Nguyen 2022-07-14 09:17:29 +02:00
1f59173266 refactor(openid/client): scope is already set by oauth2 pkg Trong Huu Nguyen 2022-07-14 09:14:59 +02:00
66cf08e602 refactor(openid/logout): simplify logout logic Trong Huu Nguyen 2022-07-12 15:09:40 +02:00
c321cff4eb test(openid/client): add missing tests Trong Huu Nguyen 2022-07-11 15:32:41 +02:00
b937c64dd6 refactor(openid/client): ensure callback cookies are not nil Trong Huu Nguyen 2022-07-11 14:30:04 +02:00
48160e7986 fix(handler/callback): pass correct error to error handler Trong Huu Nguyen 2022-07-11 13:39:48 +02:00
b770f22174 refactor(handler/logoutcallback): extract to openid client Trong Huu Nguyen 2022-07-11 13:37:40 +02:00
ad3201fbfb refactor(handler/logout): extract to openid client Trong Huu Nguyen 2022-07-11 13:09:10 +02:00
451642caf8 refactor(handler/frontchannellogout): extract to openid client Trong Huu Nguyen 2022-07-11 10:56:24 +02:00
8c28a3b109 refactor(router): group routes and extract middlewares Trong Huu Nguyen 2022-07-08 16:10:11 +02:00
2f237ec89c refactor(handler/callback): extract openid specific code to client Trong Huu Nguyen 2022-07-08 15:07:16 +02:00
aed89bfa94 nit(openid/clients): clean up error messages Trong Huu Nguyen 2022-07-08 13:31:57 +02:00
5bfb80b934 wip: add todos Trong Huu Nguyen 2022-07-08 13:29:37 +02:00
42938ee8b3 refactor(handler): deduplicate configuration Trong Huu Nguyen 2022-07-05 14:43:40 +02:00
a4c3e72fc9 fix(router/handler): use long-lived context for refreshing jwks Trong Huu Nguyen 2022-07-05 13:18:38 +02:00
1f5635239a refactor: split out openid client, config and provider Trong Huu Nguyen 2022-07-05 13:01:16 +02:00
d49db13e5f refactor(openid/clients): consolidate configuration Trong Huu Nguyen 2022-07-04 15:24:21 +02:00
10dddd00bc refactor(router): begin extraction of openid client Trong Huu Nguyen 2022-06-21 10:48:54 +02:00
d1559f5479 style(main): rename variable for clarity Trong Huu Nguyen 2022-06-18 12:22:07 +02:00
a19cbe375c refactor(router/session): extract cookie store Trong Huu Nguyen 2022-06-17 14:40:57 +02:00
31eb0d5a1e refactor(router/cookies): move related functions to cookies pkg Trong Huu Nguyen 2022-06-17 12:40:28 +02:00
a752978f8f refactor(session): move data to own file Trong Huu Nguyen 2022-06-17 12:20:55 +02:00
d73a5f24bb refactor(session): move session id generator to relevant pkg Trong Huu Nguyen 2022-06-17 12:19:44 +02:00
debf97efda feat(session): store metadata Trong Huu Nguyen 2022-06-17 12:00:00 +02:00
402d8b940f refactor: use expiry in token response instead of jwt claim Trong Huu Nguyen 2022-06-17 11:17:08 +02:00
497cf9fba7 feat: store refresh tokens in session Trong Huu Nguyen 2022-06-17 11:15:04 +02:00
543d7b387c router/request: add some test cases for canonical redirects Trong Huu Nguyen 2022-07-04 13:20:35 +02:00
303708ea65 router/request: add some clarifying comments Trong Huu Nguyen 2022-07-04 13:21:33 +02:00
1f830b5dc8 fix(router/request): add query string when redirecting back to referrer (#37) André Roaldseth 2022-07-04 13:25:41 +02:00
22a4ca4c1a Merge pull request #38 from nais/dependabot/go_modules/github.com/stretchr/testify-1.7.5 Jan-Kåre Solbakken 2022-06-28 08:53:58 +02:00
afd1a29671 build(deps): bump github.com/stretchr/testify from 1.7.2 to 1.7.5 dependabot[bot] 2022-06-27 19:25:46 +00:00
414b7a9c68 refactor(handler/default): remove unneeded modifications for reverse proxy requests Trong Huu Nguyen 2022-06-15 08:37:57 +02:00
184102d365 perf(session/redis): set minIdleConns to alleviate cold start performance Trong Huu Nguyen 2022-06-14 14:17:12 +02:00
557cca2a08 build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.0.2 to 2.0.3 (#34) dependabot[bot] 2022-06-14 08:27:37 +02:00
9cc9bd72b9 refactor(middleware/logentry): only include relevant cookies Trong Huu Nguyen 2022-06-13 15:43:02 +02:00
a4c96d3217 deps: bumpity bump Trong Huu Nguyen 2022-06-09 13:18:52 +02:00
2534c4dcd6 deps: bump prometheus/client_golang to 1.12.2 Trong Huu Nguyen 2022-05-19 08:25:51 +02:00
10f9a48cc1 ci: bump actions/checkout to v3 Trong Huu Nguyen 2022-05-19 08:24:09 +02:00
65ac98f5a8 fix(middleware/logentry): use fallback logger if not set in context Trong Huu Nguyen 2022-05-10 15:56:41 +02:00
0a73b1cf3b deps: bump jwx to v2.0.1 Trong Huu Nguyen 2022-05-10 09:25:27 +02:00
32dd80b5da feat: add handler for logout callbacks Trong Huu Nguyen 2022-05-09 11:50:19 +02:00
b3dfa54768 refactor: change default post-logout redirect uri for idporten Trong Huu Nguyen 2022-05-09 11:49:44 +02:00
441d890fe7 refactor: move random string generator to own pkg Trong Huu Nguyen 2022-05-09 11:48:44 +02:00
04fab6104a feat(handler/callback): add retries for requests to external services Trong Huu Nguyen 2022-05-06 12:28:58 +02:00
18fffcc755 deps: migrate from lestrrat-go/jwx to lestrrat-go/jwx/v2 Trong Huu Nguyen 2022-05-05 11:09:03 +02:00
eb2a93dbf0 deps: bump various libs Trong Huu Nguyen 2022-05-05 11:05:54 +02:00
afeaf6a381 deps: bump to go 1.18 Trong Huu Nguyen 2022-05-05 11:03:25 +02:00
fc695b079b ci: bump setup-go from v2 to v3 Trong Huu Nguyen 2022-05-05 11:03:03 +02:00
f10bb80f9e refactor(handler): use logger with request context Trong Huu Nguyen 2022-05-05 09:15:59 +02:00
cd57e72d56 refactor(router/request): clean up construction of canonical redirect uris; add missing tests Trong Huu Nguyen 2022-05-05 08:12:23 +02:00
40a4c8a02c docs: minor cleanups, add overview with diagrams Trong Huu Nguyen 2022-05-04 15:47:21 +02:00
2252b1dbce refactor(handler/callback): unconditionally clear callback cookies Trong Huu Nguyen 2022-03-25 11:26:24 +01:00
cc78d2195b fix: ensure canonical redirect URL is not empty Trong Huu Nguyen 2022-03-10 11:03:01 +01:00
2fb145fc00 all repos should have CODEOWNERS and LICENSE files J-K. Solbakken 2022-03-08 14:50:26 +01:00
0792c8a783 deps: bump versions Trong Huu Nguyen 2022-03-01 07:53:20 +01:00
f0318b269e fix: ensure jwk set is refreshed regularly Trong Huu Nguyen 2022-03-01 07:49:51 +01:00
9c114f198a feat: set path for cookies for ingresses with subpaths Trong Huu Nguyen 2022-02-14 13:18:29 +01:00
502d5f73f0 refactor(frontchannel-logout): accidentally a level too high Trong Huu Nguyen 2022-02-11 11:41:36 +01:00
785186bf5a refactor: route errors should still log at least warning Trong Huu Nguyen 2022-02-10 15:40:10 +01:00
714fc7e34f refactor: reduce log level severity for front-channel logout Trong Huu Nguyen 2022-02-10 14:52:11 +01:00
8362722929 fix: don't log all requests at info level Trong Huu Nguyen 2022-02-10 14:20:01 +01:00
de27328a84 refactor: improve error page Trong Huu Nguyen 2022-02-10 13:38:02 +01:00
e5917964ba refactor: reduce log level severity for some spammy warnings Trong Huu Nguyen 2022-02-10 13:31:58 +01:00
5373360c41 refactor: improve some log statements Trong Huu Nguyen 2022-02-07 15:32:48 +01:00
3d45cfb998 refactor(config): remove features stanza Trong Huu Nguyen 2022-02-03 13:52:48 +01:00
72f64b6c4c refactor(handler/frontchannellogout): better log statements Trong Huu Nguyen 2022-02-03 12:17:56 +01:00
f95e618585 refactor(jwt): azure ad sets uti claim instead of jti Trong Huu Nguyen 2022-02-03 10:47:34 +01:00
3828437dc5 refactor(jwt): clean up and deduplicate Trong Huu Nguyen 2022-02-03 09:33:18 +01:00
59532eab0f build: add coverprofile for tests Trong Huu Nguyen 2022-02-02 22:00:28 +01:00
b449ab2191 refactor: token -> jwt for accuracy Trong Huu Nguyen 2022-02-02 21:00:58 +01:00
eeccebc5dd feat: log jwt IDs for tracability Trong Huu Nguyen 2022-02-02 20:01:43 +01:00
e4e95ef5c6 refactor: move token parsing to own package; prepare for audit logs Trong Huu Nguyen 2022-02-02 18:13:32 +01:00
6a4a268e15 docs: update available flags Trong Huu Nguyen 2022-02-02 08:39:41 +01:00
c3da899190 feat(loginstatus): ensure that cookie is set in default route Trong Huu Nguyen 2022-02-01 14:31:28 +01:00
fcba6815b9 feat: add feature toggled support for loginstatus Trong Huu Nguyen 2022-02-01 12:21:31 +01:00
f36d65a6ba fix(openid/config): close response body after get Trong Huu Nguyen 2022-01-31 09:54:47 +01:00
996f543f4d add: dependabot.yml, update workflow with test job and only deploy when its on master. ybelMekk 2022-02-02 13:36:00 +01:00
2668963e94 Merge pull request #8 from nais/support-for-front-channel-logout Trong Huu Nguyen 2022-01-28 11:01:41 +01:00
05fae6ca5e refactor: get or generate session ID with fallbacks Trong Huu Nguyen 2022-01-27 12:57:49 +01:00
834c79ef1d style: go fmt Trong Huu Nguyen 2022-01-25 15:59:57 +01:00
b40dbffa19 refactor: clean up tests Trong Huu Nguyen 2022-01-25 15:58:16 +01:00
24cae11ba2 refactor: split out session ID generation to own file, add tests Trong Huu Nguyen 2022-01-25 15:33:42 +01:00
abc8bd1835 fix: clean up tests and fix name ybelMekk 2022-01-25 12:08:42 +01:00
1a2b85a5f5 fix: rename from externalSessionId to sessionID. Better impl. for generating a random sessionID. ybelMekk 2022-01-25 11:38:17 +01:00
413b8dfc19 fix: revert frontChannelLogout impl. ybelMekk 2022-01-25 11:36:41 +01:00
768aa7af49 fix: test to only check for generated session_state, remove frontChannel from CheckIframe test. ybelMekk 2022-01-25 11:35:56 +01:00
8df169e6e0 debug: remove print statm. ybelMekk 2022-01-24 23:13:10 +01:00
f996c4a6fe fix: remove omitempty from check_session_iframe, more robust checking of empty values in checkIframe configuration function. Fix bug in extractExternalSessionID in frontChannelLogout, return first match. ybelMekk 2022-01-24 23:12:07 +01:00
74c1592d0a remove: unused function ybelMekk 2022-01-24 22:57:43 +01:00
bc5f5138e4 add: handle trigger of logout for third-party and session_state ybelMekk 2022-01-24 22:44:45 +01:00
a23595b9b4 add: handle trigger of logout for third-party and session_state ybelMekk 2022-01-23 23:14:25 +01:00
e4c47f59e8 fix: create function for externalSessionId add random string generator. fix tests to reflect provider with checkSessionIframe Session management. ybelMekk 2022-01-23 21:37:36 +01:00
65a0b5de52 fix: create function for externalSessionId add random string generator. ybelMekk 2022-01-23 14:31:01 +01:00

... 9 10 11 12 13 ...