djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
25a91019c2
ContainerImage.Pinniped/internal
History
Ryan Richard 25a91019c2 Add spec.secretName to OPC and handle case-insensitive hostnames 
- When two different Issuers have the same host (i.e. they differ
  only by path) then they must have the same secretName. This is because
  it wouldn't make sense for there to be two different TLS certificates
  for one host. Find any that do not have the same secret name to
  put an error status on them and to avoid serving OIDC endpoints for
  them. The host comparison is case-insensitive.
- Issuer hostnames should be treated as case-insensitive, because
  DNS hostnames are case-insensitive. So https://me.com and
  https://mE.cOm are duplicate issuers. However, paths are
  case-sensitive, so https://me.com/A and https://me.com/a are
  different issuers. Fixed this in the issuer validations and in the
  OIDC Manager's request router logic.
2020-10-23 16:25:44 -07:00
..
certauthority dynamiccertauthority: fix cert expiration test failure 2020-10-23 15:34:25 -04:00
client Pass namespace properly in client.ExchangeToken. 2020-09-22 10:03:32 -05:00
concierge Supervisor controllers apply custom labels to JWKS secrets 2020-10-15 12:40:56 -07:00
config Supervisor controllers apply custom labels to JWKS secrets 2020-10-15 12:40:56 -07:00
constable Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
controller Add spec.secretName to OPC and handle case-insensitive hostnames 2020-10-23 16:25:44 -07:00
controllerlib Add Go vanity import paths. 2020-09-18 14:56:24 -05:00
controllermanager Supervisor controllers apply custom labels to JWKS secrets 2020-10-15 12:40:56 -07:00
downward Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
dynamiccert internal/provider -> internal/dynamiccert 2020-09-23 08:29:35 -04:00
here Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
httputil Implement the rest of an OIDC client CLI library. 2020-10-12 16:41:46 -05:00
mocks Implement the rest of an OIDC client CLI library. 2020-10-12 16:41:46 -05:00
multierror Backfill tests to OIDCProviderConfig controller 2020-10-09 10:39:17 -04:00
oidc Add spec.secretName to OPC and handle case-insensitive hostnames 2020-10-23 16:25:44 -07:00
oidcclient Implement refresh flow in ./internal/oidcclient package. 2020-10-22 17:54:31 -05:00
registry/credentialrequest Add support for multiple IDPs selected using IdentityProvider field. 2020-09-22 10:03:31 -05:00
testutil dynamiccertauthority: fix cert expiration test failure 2020-10-23 15:34:25 -04:00