wonderwall

github/wonderwall

Fork 0

mirror of https://github.com/nais/wonderwall.git synced 2026-05-13 20:06:41 +00:00

Commit Graph

Select branches

Hide Pull Requests

dependabot/go_modules/otel-3525194e36

master

#1

#10

#101

#102

#103

#104

#105

#106

#107

#108

#109

#11

#110

#111

#111

#112

#113

#114

#115

#117

#118

#119

#12

#120

#121

#122

#123

#124

#125

#126

#127

#128

#129

#13

#130

#131

#132

#133

#134

#135

#136

#138

#139

#14

#140

#141

#142

#143

#144

#145

#146

#147

#148

#149

#15

#150

#151

#152

#153

#154

#155

#157

#158

#159

#16

#160

#161

#162

#163

#164

#165

#166

#167

#168

#169

#170

#171

#172

#173

#174

#175

#176

#177

#178

#179

#18

#180

#181

#182

#183

#184

#185

#186

#187

#188

#189

#19

#190

#192

#193

#194

#195

#196

#197

#198

#199

#2

#20

#200

#201

#202

#203

#204

#205

#206

#207

#208

#209

#21

#210

#211

#212

#213

#214

#215

#216

#217

#218

#219

#22

#220

#221

#222

#223

#224

#225

#226

#227

#228

#229

#23

#230

#231

#232

#233

#234

#236

#237

#238

#239

#24

#240

#241

#242

#243

#244

#245

#246

#247

#248

#249

#25

#250

#251

#252

#253

#254

#255

#256

#257

#258

#259

#26

#260

#261

#263

#264

#265

#266

#267

#268

#269

#27

#270

#271

#272

#273

#274

#275

#276

#277

#278

#279

#28

#280

#281

#282

#283

#284

#285

#286

#287

#288

#289

#29

#290

#291

#292

#293

#294

#295

#296

#297

#298

#299

#3

#30

#300

#301

#302

#303

#304

#305

#308

#309

#31

#310

#311

#312

#313

#314

#316

#317

#318

#319

#32

#320

#321

#322

#323

#325

#326

#327

#328

#329

#33

#330

#331

#332

#333

#334

#335

#336

#337

#338

#339

#34

#340

#341

#342

#343

#344

#345

#346

#347

#348

#349

#35

#350

#351

#352

#353

#354

#355

#356

#357

#358

#359

#360

#361

#362

#363

#364

#365

#366

#367

#368

#369

#37

#370

#371

#372

#373

#374

#375

#376

#377

#378

#379

#38

#380

#381

#382

#383

#384

#385

#386

#387

#388

#389

#39

#390

#391

#392

#393

#394

#395

#396

#397

#398

#399

#4

#40

#400

#401

#402

#403

#404

#405

#406

#407

#408

#409

#41

#410

#411

#412

#413

#414

#415

#416

#417

#418

#419

#42

#420

#421

#422

#423

#424

#425

#426

#427

#428

#429

#43

#430

#431

#432

#433

#435

#436

#437

#438

#439

#44

#440

#441

#442

#443

#444

#445

#446

#447

#448

#449

#45

#450

#451

#452

#453

#454

#455

#456

#457

#458

#459

#46

#460

#461

#462

#463

#464

#465

#466

#467

#468

#469

#47

#470

#48

#5

#51

#53

#56

#57

#58

#59

#60

#61

#62

#63

#64

#65

#66

#68

#69

#70

#72

#73

#74

#75

#76

#77

#78

#79

#8

#80

#81

#82

#83

#84

#85

#86

#87

#88

#89

#9

#90

#91

#92

#93

#94

#95

#96

#97

#98

#99

60846e847a build(deps): bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 (#113) dependabot[bot] 2023-06-06 07:53:28 +00:00
ae1d2f0132 build(deps): bump github.com/alicebob/miniredis/v2 from 2.30.2 to 2.30.3 (#114) dependabot[bot] 2023-06-06 07:50:33 +00:00
c4b834dc1f build(deps): bump github.com/spf13/viper from 1.15.0 to 1.16.0 (#115) dependabot[bot] 2023-06-06 07:47:39 +00:00
6d79f97d05 build(deps): bump aquasecurity/trivy-action from 0.10.0 to 0.11.0 (#111) dependabot[bot] 2023-06-05 19:59:46 +00:00
a804543e0c build(deps): bump github.com/redis/go-redis/v9 from 9.0.4 to 9.0.5 (#110) dependabot[bot] 2023-05-30 06:31:36 +00:00
6646ea28ad build(deps): bump dependabot/fetch-metadata from 1.5.0 to 1.5.1 (#109) dependabot[bot] 2023-05-29 19:59:19 +00:00
46852be025 feat(openid): prepare acr mappings for migration to new idporten Trong Huu Nguyen 2023-05-25 15:54:29 +02:00
021e7551f4 fix(crypto): set max plaintext size Trong Huu Nguyen 2023-05-24 12:18:42 +02:00
5097d40a1d build(deps): bump github.com/sirupsen/logrus from 1.9.0 to 1.9.2 (#108) dependabot[bot] 2023-05-23 07:54:13 +00:00
daab5e3d8c build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 (#107) dependabot[bot] 2023-05-23 07:51:16 +00:00
aab4b972f5 build(deps): bump sigstore/cosign-installer from 3.0.3 to 3.0.5 (#105) dependabot[bot] 2023-05-22 20:06:12 +00:00
59715d6073 build(deps): bump dependabot/fetch-metadata from 1.4.0 to 1.5.0 (#106) dependabot[bot] 2023-05-22 19:59:27 +00:00
b28c91c94c perf(all): use single Transport, set IdleConnTimeout Trong Huu Nguyen 2023-05-16 08:05:59 +02:00
6edfcc1269 build(deps): bump golang.org/x/crypto from 0.8.0 to 0.9.0 (#104) dependabot[bot] 2023-05-16 06:25:33 +00:00
82d975f531 build(deps): bump golang.org/x/oauth2 from 0.7.0 to 0.8.0 (#103) dependabot[bot] 2023-05-16 06:22:14 +00:00
86e9340f9c build(deps): bump actions/setup-go from 4.0.0 to 4.0.1 (#102) dependabot[bot] 2023-05-15 20:00:03 +00:00
97f0d078bf feat(handler): validate acr if configured, change auth status if invalid Trong Huu Nguyen 2023-05-12 08:45:18 +02:00
390cd78e9f feat(handler): set legacy cookie for sso server Trong Huu Nguyen 2023-05-11 20:28:21 +02:00
ae9448bf52 build(deps): bump google-github-actions/auth from 1.1.0 to 1.1.1 (#101) dependabot[bot] 2023-05-08 19:59:23 +00:00
5c96d5a0fd feat(all): reduce log level for some spammy statements Trong Huu Nguyen 2023-05-08 10:49:50 +02:00
350d7ff780 feat(cookie): allow configuration of name prefix Trong Huu Nguyen 2023-05-05 14:39:24 +02:00
0c531d9ec1 perf: increase max idle connections for http clients Trong Huu Nguyen 2023-05-04 14:44:24 +02:00
d2151f9948 build(deps): bump Trong Huu Nguyen 2023-05-04 14:33:45 +02:00
b806ecc787 build: bump to go version 1.20.4 Trong Huu Nguyen 2023-05-04 14:32:26 +02:00
6151aa3279 feat(openid, handler): support runtime override of redirect after single-logout Trong Huu Nguyen 2023-05-04 14:31:59 +02:00
b0bb1aa8ea feat(url): add logout url constructor Trong Huu Nguyen 2023-05-03 09:07:03 +02:00
6ebc95a8e0 feat: add logout cookie Trong Huu Nguyen 2023-05-03 09:05:42 +02:00
d7d5f00554 chore(url): remove unused field from struct Trong Huu Nguyen 2023-05-03 09:04:07 +02:00
00432bcfd6 fix(url/validator): return early if allowed domain is empty Trong Huu Nguyen 2023-05-03 08:38:12 +02:00
c6dc354c34 build(deps): bump github.com/bsm/redislock from 0.9.2 to 0.9.3 (#98) dependabot[bot] 2023-05-02 07:00:04 +00:00
d4523ad5c9 build(deps): bump golang.org/x/vuln (#99) dependabot[bot] 2023-05-02 06:56:55 +00:00
59b2dd1d66 fix(handler/reverseproxy): only trigger acr step up for non-ignored autologin paths Trong Huu Nguyen 2023-05-02 08:33:12 +02:00
f90e57783b build(deps): bump sigstore/cosign-installer from 3.0.2 to 3.0.3 (#97) dependabot[bot] 2023-05-01 20:00:07 +00:00
feb27414a5 refactor(handler/acr): only enable if autologin is also enabled Trong Huu Nguyen 2023-04-29 13:55:42 +02:00
3a239a95c3 feat(reverseproxy): validate acr and redirect if applicable Trong Huu Nguyen 2023-04-29 11:54:53 +02:00
7c98fe161e refactor(handler/reverseproxy): retrieve both session and token Trong Huu Nguyen 2023-04-29 11:00:01 +02:00
d76e9ebbb5 feat(session): store acr Trong Huu Nguyen 2023-04-29 10:27:53 +02:00
2a0c376c4b feat(openid): validate acr in id_token if sent in auth request Trong Huu Nguyen 2023-04-29 10:18:50 +02:00
19095ccfea feat(openid): store acr in state cookie Trong Huu Nguyen 2023-04-29 09:09:02 +02:00
efcc276ed5 fix(handler/sso/proxy): redirect logout callbacks to logout Trong Huu Nguyen 2023-04-29 09:00:28 +02:00
87ffee4a34 fix(handler/sso/proxy): proxy frontchannel logouts Trong Huu Nguyen 2023-04-29 08:55:14 +02:00
ab2a8b6fec fix(handler/sso/proxy): redirect callback requests to login Trong Huu Nguyen 2023-04-29 08:52:41 +02:00
568f9f7683 feat(handler): use 302 instead of 303 for redirects Trong Huu Nguyen 2023-04-29 08:42:29 +02:00
b4baa96ee4 feat(router): don't handle preflight requests for login/logout routes Trong Huu Nguyen 2023-04-29 08:30:45 +02:00
6a31a0a396 refactor(metrics): minor cleanup Trong Huu Nguyen 2023-04-29 08:30:08 +02:00
5d75001b7b feat(metrics): attempt to reduce cardinality for redirect label Trong Huu Nguyen 2023-04-28 11:30:40 +02:00
f8336fa74a feat(metrics): ignore empty hosts for redirect label Trong Huu Nguyen 2023-04-28 07:58:58 +02:00
28abcb3cf8 feat(router): handle HEAD requests for some routes Trong Huu Nguyen 2023-04-28 07:56:22 +02:00
6127417767 fix(router): handle preflight requests for sso server Trong Huu Nguyen 2023-04-28 06:53:47 +02:00
bc651d9082 fix: use 303 instead of 307 for redirects Trong Huu Nguyen 2023-04-28 01:30:17 +02:00
c60f9478a5 fix(metrics): strip urls for login counter Trong Huu Nguyen 2023-04-26 09:57:29 +02:00
55d2e0ce3b feat(metrics): add redirect label for login counter Trong Huu Nguyen 2023-04-26 09:27:26 +02:00
af69c07234 build(deps): bump github.com/alicebob/miniredis/v2 from 2.30.1 to 2.30.2 (#96) dependabot[bot] 2023-04-25 06:36:43 +00:00
b951d381f8 build(deps): bump dependabot/fetch-metadata from 1.3.6 to 1.4.0 (#95) dependabot[bot] 2023-04-24 20:12:34 +00:00
50cb7ca696 build(deps): bump docker/metadata-action from 4.3.0 to 4.4.0 (#93) dependabot[bot] 2023-04-24 20:10:17 +00:00
f904fc0f22 build(deps): bump google-github-actions/auth from 1.0.0 to 1.1.0 (#94) dependabot[bot] 2023-04-24 20:05:50 +00:00
f08ed3863a build(deps): bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 (#92) dependabot[bot] 2023-04-24 19:59:32 +00:00
ad7160e04d fix(handler/sso/proxy): local logout should be reverse proxied Trong Huu Nguyen 2023-04-21 16:43:33 +02:00
0ba41e312a feat(handler): local logout returns 204 instead of redirect Trong Huu Nguyen 2023-04-21 16:23:12 +02:00
9f14c94849 build: move tests and checks out from dockerfile Trong Huu Nguyen 2023-04-21 16:13:09 +02:00
fba165552d feat(router): disable local logout endpoint for idporten Trong Huu Nguyen 2023-04-21 15:34:33 +02:00
0ba124809a feat(handler): local logout redirects back to preconfigured URL Trong Huu Nguyen 2023-04-21 15:21:02 +02:00
c308efb3ef docs: fix notes on refresh tokens and inactivity [ci skip] Trong Huu Nguyen 2023-04-19 13:34:53 +02:00
19b2401831 feat(metrics): add authentication method reference label for successful logins Trong Huu Nguyen 2023-04-18 12:20:23 +02:00
47218da6d2 refactor(openid): simplify parameter handling for auth url Trong Huu Nguyen 2023-04-18 11:16:50 +02:00
1e6eed5f53 build(deps): bump github.com/prometheus/client_golang (#90) dependabot[bot] 2023-04-17 20:07:08 +00:00
bbc91d5838 build(deps): bump github.com/rs/cors from 1.8.3 to 1.9.0 (#91) dependabot[bot] 2023-04-17 19:59:57 +00:00
890159c166 use verified distroless images J-K. Solbakken 2023-04-13 15:09:07 +02:00
9eeb6f5e96 feat(router): root path for sso server should redireect to login Trong Huu Nguyen 2023-04-13 14:30:21 +02:00
bab62c072b feat(handler/sso/server): return not found instead of redirect for wildcard handler Trong Huu Nguyen 2023-04-13 14:20:38 +02:00
5ad603395c fix(handler/sso/proxy): override request path for reverseproxy to sso-server Trong Huu Nguyen 2023-04-13 14:19:48 +02:00
9cb648917b fix(handler/sso/proxy): only set default query parameters for login handler Trong Huu Nguyen 2023-04-13 09:20:34 +02:00
a2d8d6f7c3 fix(router): register OPTIONS routes for CORS middleware Trong Huu Nguyen 2023-04-13 09:03:04 +02:00
163d9e42ad fix(handler/reverseproxy): preserve inbound forwarded/x-forwarded headers Trong Huu Nguyen 2023-04-12 15:05:55 +02:00
b3eac4b118 build: go mod tidy Trong Huu Nguyen 2023-04-11 14:45:13 +02:00
b36942c38b ci: add workflow for auto-merging dependabot PRs Trong Huu Nguyen 2023-04-11 14:39:44 +02:00
ba6f689056 build(deps): bump Trong Huu Nguyen 2023-04-11 14:35:04 +02:00
37557ddf2f ci: only run codeql on schedule Trong Huu Nguyen 2023-04-11 09:59:02 +02:00
765d4e34b1 refactor(url): extract cleaner and validators to separate implementations Trong Huu Nguyen 2023-04-11 09:58:35 +02:00
ec4ac2b8e9 fix(redis): set ConnMaxIdleTime, not ConnMaxLifetime Trong Huu Nguyen 2023-03-29 21:43:11 +02:00
10fd7f2b6c ci: remove race detector Trong Huu Nguyen 2023-03-29 10:03:37 +02:00
e761810630 feat(redis): allow configuration of idle connection timeout Trong Huu Nguyen 2023-03-29 09:55:13 +02:00
ef8c7d2cca feat(sso/server): redirect to login for wildcard handler Trong Huu Nguyen 2023-03-29 09:54:35 +02:00
323362073f ci: enable race detector and shuffle for tests Trong Huu Nguyen 2023-03-28 09:47:13 +02:00
bd09b827f8 build(deps): bump sigstore/cosign-installer (#82) dependabot[bot] 2023-03-28 08:26:16 +02:00
bf964e42f2 build(deps): bump Trong Huu Nguyen 2023-03-21 09:22:12 +01:00
c72093dda9 fix(handler/sso/proxy): use correct query for login url Trong Huu Nguyen 2023-03-21 09:10:37 +01:00
fd73a0a83e refactor(openid/config): more descriptive error message for unsupported values Trong Huu Nguyen 2023-03-21 09:09:51 +01:00
19714e75b8 document image signing J-K. Solbakken 2023-03-17 15:02:11 +01:00
2654f6d317 corrected copypasta error J-K. Solbakken 2023-03-17 14:24:34 +01:00
57f3fa0b7d sign and attest J-K. Solbakken 2023-03-17 13:52:48 +01:00
31961cf96f Merge pull request #77 from nais/dependabot/go_modules/github.com/alicebob/miniredis/v2-2.30.1 Jan-Kåre Solbakken 2023-03-13 21:02:34 +01:00
a3585895c1 build(deps): bump github.com/alicebob/miniredis/v2 from 2.30.0 to 2.30.1 dependabot[bot] 2023-03-13 19:58:41 +00:00
c8a887dd01 build: bump to go version 1.20.2 Trong Huu Nguyen 2023-03-08 14:22:16 +01:00
2116f8d23b build(deps): bump golang.org/x/oauth2 from 0.5.0 to 0.6.0 Trong Huu Nguyen 2023-03-08 13:43:43 +01:00
4ab4b54bfe build(deps): bump golang.org/x/crypto from 0.6.0 to 0.7.0 dependabot[bot] 2023-03-06 19:59:48 +00:00
db499229de build(deps): bump github.com/bsm/redislock from 0.9.0 to 0.9.1 dependabot[bot] 2023-03-06 19:59:54 +00:00
20e733d9f2 ci/dependabot: remove PR limit, add docker Trong Huu Nguyen 2023-03-08 13:01:52 +01:00
da05c7808d build: add trimpath and ldflags to trim resulting binary Trong Huu Nguyen 2023-03-08 12:55:17 +01:00
3dc3c1dee5 feat(sso/server): return not found instead of redirect for wildcard handler Trong Huu Nguyen 2023-03-08 12:53:25 +01:00

... 6 7 8 9 10 ...