ContainerImage.Pinniped/internal/oidc/provider
Ryan Richard e0ecdc004b Allow dynamic clients to be used in downstream OIDC flows
This is only a first commit towards making this feature work.
- Hook dynamic clients into fosite by returning them from the storage
  interface (after finding and validating them)
- In the auth endpoint, prevent the use of the username and password
  headers for dynamic clients to force them to use the browser-based
  login flows for all the upstream types
- Add happy path integration tests in supervisor_login_test.go
- Add lots of comments (and some small refactors) in
  supervisor_login_test.go to make it much easier to understand
- Add lots of unit tests for the auth endpoint regarding dynamic clients
  (more unit tests to be added for other endpoints in follow-up commits)
- Enhance crud.go to make lifetime=0 mean never garbage collect,
  since we want client secret storage Secrets to last forever
- Move the OIDCClient validation code to a package where it can be
  shared between the controller and the fosite storage interface
- Make shared test helpers for tests that need to create OIDC client
  secret storage Secrets
- Create a public const for "pinniped-cli" now that we are using that
  string in several places in the production code
2022-07-14 09:51:11 -07:00
..
csp Login page styling/structure for users, screen readers, passwd managers 2022-05-05 13:13:25 -07:00
formposthtml Bump project deps, including kube 0.23.6->0.24.1 and Go 1.18.1->1.18.3 2022-06-07 15:26:30 -04:00
manager Allow dynamic clients to be used in downstream OIDC flows 2022-07-14 09:51:11 -07:00
dynamic_tls_cert_provider.go Add a way to set a default supervisor TLS cert for when SNI won't work 2020-10-27 16:33:08 -07:00
dynamic_upstream_idp_provider.go Don't do ldap group search when group scope not specified 2022-06-22 10:58:08 -07:00
federation_domain_issuer_test.go Rename all "op" and "opc" usages 2020-12-17 11:34:49 -08:00
federation_domain_issuer.go Rename all "op" and "opc" usages 2020-12-17 11:34:49 -08:00