github/wonderwall
1
0
Fork 0
mirror of https://github.com/nais/wonderwall.git synced 2026-05-11 10:56:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
c0138f4b49cb38227e2d0044a9049117a9edc799
wonderwall/pkg
History
Trong Huu Nguyen c0138f4b49 feat(session): use locks for refreshing 
One of the changes in OAuth 2.1 addresses attacks with refresh token
replays by recommending the use of one-time use tokens. A refresh token
is thus rotated and invalid after exactly one use, returning a new token
for each successful grant. Any further attempts must thus use the most
recently acquired refresh token. Reusing a refresh token may also
cause the authorization server to invalidate the current active refresh
token, requiring a refresh authorization grant to be reacquired for
further refresh token usage.

The use of locks prevents multiple refresh grant attempts for a given
session from happening across concurrent requests.
2022-09-04 17:14:35 +02:00
..
config
fix(session/handler): lock metadata operations behind feature gate until rollout
2022-08-29 10:00:43 +02:00
cookie
refactor: use pointer receivers when possible
2022-07-19 19:24:28 +02:00
crypto
deps: migrate from lestrrat-go/jwx to lestrrat-go/jwx/v2
2022-05-05 11:09:03 +02:00
handler
refactor(middleware/logentry): add fields to default logger
2022-09-03 20:05:28 +02:00
ingress
feat: add ingress package
2022-08-17 11:39:38 +02:00
jwt
refactor: remove unnecessary interfaces
2022-09-02 17:39:27 +02:00
logging
refactor(middleware/logentry): replace zerologger with logrus
2022-07-18 15:47:35 +02:00
loginstatus
refactor: remove unnecessary interfaces
2022-09-02 17:39:27 +02:00
metrics
fix(session/store): check for existence before update
2022-09-03 16:48:37 +02:00
middleware
refactor(middleware/logentry): add fields to default logger
2022-09-03 20:05:28 +02:00
mock
refactor(mock/openid): use interface for handler
2022-09-02 18:43:59 +02:00
openid
feat(session): use locks for refreshing
2022-09-04 17:14:35 +02:00
retry
refactor: use pointer receivers when possible
2022-07-19 19:24:28 +02:00
router
refactor(handler): split up request handlers into separate modules
2022-09-02 14:53:11 +02:00
server
refactor: clean up main
2021-11-01 11:04:54 +01:00
session
feat(session): use locks for refreshing
2022-09-04 17:14:35 +02:00
strings
refactor: move random string generator to own pkg
2022-05-09 11:48:44 +02:00