djpbessems/ContainerImage.Pinniped
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
602f3c59ba
ContainerImage.Pinniped/internal
History
Matt Moyer 602f3c59ba
Fix a regression in securityheader package. 
The bug itself has to do with when headers are streamed to the client. Once a wrapped handler has sent any bytes to the `http.ResponseWriter`, the value of the map returned from `w.Header()` no longer matters for the response. The fix is fairly trivial, which is to add those response headers before invoking the wrapped handler.

The existing unit test didn't catch this due to limitations in `httptest.NewRecorder()`. It is now replaced with a new test that runs a full HTTP test server, which catches the previous bug.

Signed-off-by: Matt Moyer <moyerm@vmware.com>
2020-12-16 12:41:05 -06:00
..
certauthority Add a CA.Pool() method to ./internal/certauthority. 2020-12-02 15:55:34 -06:00
client Split the config CRDs into two API groups. 2020-10-30 19:22:46 -05:00
concierge Temporarily disable max inflight checks for mutating requests 2020-11-19 21:21:10 -05:00
config Add log level support 2020-11-10 10:22:27 -05:00
constable Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
controller Supervisor storage garbage collection controller enabled in production 2020-12-11 15:21:34 -08:00
controllerlib Disable the goerr113 linter. 2020-12-07 15:53:41 -06:00
controllermanager Add JWTAuthenticator controller 2020-12-08 15:41:48 -05:00
crud Supervisor storage garbage collection controller enabled in production 2020-12-11 15:21:34 -08:00
downward Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
dynamiccert internal/provider -> internal/dynamiccert 2020-09-23 08:29:35 -04:00
fositestorage KubeStorage annotates every Secret with garbage-collect-after timestamp 2020-12-10 14:47:58 -08:00
here Save 2 lines by using inline-style comments for Copyright 2020-09-16 10:35:19 -04:00
httputil Fix a regression in securityheader package. 2020-12-16 12:41:05 -06:00
mocks Always close JWTAuthenticator underlying authenticator 2020-12-08 15:41:48 -05:00
multierror Backfill tests to OIDCProviderConfig controller 2020-10-09 10:39:17 -04:00
oidc Log when unexpected Upstream OIDC Providers found 2020-12-15 10:49:13 -08:00
plog Finish the WIP from the previous commit for saving authorize endpoint state 2020-11-11 12:29:14 -08:00
registry/credentialrequest Add JWTAuthenticator controller 2020-12-08 15:41:48 -05:00
testutil Add Cache-Control, Pragma, Expires, and X-DNS-Prefetch-Control headers 2020-12-14 15:28:32 -08:00
upstreamoidc Refactor UpstreamOIDCIdentityProviderI claim handling. 2020-12-04 15:35:35 -06:00