ContainerImage.Pinniped/internal/oidc
Andrew Keesler e17bc31b29
Pass CSRF cookie signing key from controller to cache
This also sets the CSRF cookie Secret's OwnerReference to the Pod's grandparent
Deployment so that when the Deployment is cleaned up, then the Secret is as
well.

Obviously this controller implementation has a lot of issues, but it will at
least get us started.

Signed-off-by: Andrew Keesler <akeesler@vmware.com>
2020-12-11 11:49:27 -05:00
..
auth Use just-in-time HMAC signing key fetching in our Fosite config 2020-12-11 11:16:46 -05:00
callback Use just-in-time HMAC signing key fetching in our Fosite config 2020-12-11 11:16:46 -05:00
csrftoken WIP for saving authorize endpoint state into upstream state param 2020-11-10 17:58:00 -08:00
discovery Discovery does not return token_endpoint_auth_signing_alg_values_supported 2020-12-07 14:15:31 -08:00
dynamiccodec Set lifespans on state and CSRF cooking encoding 2020-12-11 11:49:22 -05:00
jwks WIP: start to wire signing key into token handler 2020-12-03 15:37:25 -05:00
oidctestutil Merge branch 'main' into token-endpoint 2020-12-04 15:52:49 -08:00
provider Pass CSRF cookie signing key from controller to cache 2020-12-11 11:49:27 -05:00
token Use just-in-time HMAC signing key fetching in our Fosite config 2020-12-11 11:16:46 -05:00
dynamic_oauth2_hmac_strategy.go Use just-in-time HMAC signing key fetching in our Fosite config 2020-12-11 11:16:46 -05:00
dynamic_open_id_connect_ecdsa_strategy_test.go Backfill test for token endpoint error when JWK is not yet available 2020-12-07 11:53:24 -08:00
dynamic_open_id_connect_ecdsa_strategy.go Backfill test for token endpoint error when JWK is not yet available 2020-12-07 11:53:24 -08:00
kube_storage.go Supervisor token endpoint returns refresh tokens when requested 2020-12-08 11:47:39 -08:00
nullstorage_test.go Update TestNullStorage_GetClient with adjusted pinniped-cli scopes. 2020-12-09 09:12:32 -06:00
nullstorage.go WIP towards using k8s fosite storage in the supervisor's callback endpoint 2020-12-01 11:01:42 -08:00
oidc.go Set lifespans on state and CSRF cooking encoding 2020-12-11 11:49:22 -05:00
token_exchange.go Fixed error handling for token exchange when openid scope missing 2020-12-09 15:15:50 -08:00