Cadoles/bouncer
Cadoles
/
bouncer
10
0
Fork 0
Code Issues 2 Pull Requests 1 Projects Releases 3 Wiki Activity

Compare commits

base: Cadoles:d5c846a9ce7055be188d82cf64078908f9977ff5
Branches Tags
Cadoles:develop
Cadoles:fix-append
Cadoles:authn-oidc-redirect-url
Cadoles:feat/dockerfile
Cadoles:k8s
Cadoles:basicauth-tutorial
Cadoles:master
Cadoles:v2024.11.14-ce7415a
Cadoles:v2024.11.8-74c2a2c
Cadoles:v2024.11.8-239d457
Cadoles:v2024.11.8-cffe3ec
Cadoles:v2024.10.21-a686c52
Cadoles:v2024.10.11-8983a44
Cadoles:v2024.10.2-69501f6
Cadoles:v2024.9.27-0ff9391
Cadoles:v2024.9.27-590505e
Cadoles:v2024.9.27-867e7c5
Cadoles:v2024.9.26-169578c
Cadoles:v2024.9.26-b0a71fc
Cadoles:v2024.9.25-eea51c6
Cadoles:v2024.9.25-cb9260a
Cadoles:v2024.9.25-0b032fc
Cadoles:v2024.9.23-f374250
Cadoles:v2024.9.23-4801974
Cadoles:v2024.9.23-bf15732
Cadoles:v2024.6.28-f35384c
Cadoles:v2024.6.28-c73fe8c
Cadoles:v2024.6.27-3c1939f
Cadoles:v2024.6.27-3565618
Cadoles:v2024.6.27-d5669a4
Cadoles:v2024.6.27-f3aa8b9
Cadoles:v2024.6.27-2de5e28
Cadoles:v2024.6.27-87e1c65
Cadoles:v2024.6.26-f092520
Cadoles:v2024.6.26-9084b6e
Cadoles:v2024.6.26-059af1b
Cadoles:v2024.6.26-49f2ccb
Cadoles:v2024.6.26-8a751af
Cadoles:v2024.6.25-1146089
Cadoles:v2024.6.25-9d902a7
Cadoles:v2024.6.25-ea68724
Cadoles:v2024.6.24-1009eb1
Cadoles:v2024.6.5-19fda6a
Cadoles:v2024.6.5-65238f1
Cadoles:v2024.6.5-d4da9cb
Cadoles:v2024.5.29-2952f68
Cadoles:v2024.5.29-3e98901
Cadoles:v2024.5.28-d667bb0
Cadoles:v2024.5.28-42dab57
Cadoles:v2024.5.28-132bf1e
Cadoles:v2024.5.22-499bb36
Cadoles:v2024.5.22-920fc1a
Cadoles:v2024.5.22-5720935
Cadoles:v2024.5.21-0d4319f
Cadoles:v2024.5.21-c4dcf57
Cadoles:v2024.5.21-db09533
Cadoles:v2024.5.17-6d0a382
Cadoles:v2024.5.17-28ef57b
Cadoles:v2024.5.17-8b1c649
Cadoles:v2024.5.17-5ed1946
Cadoles:v2024.5.17-7456dba
Cadoles:v2024.5.17-af34ee2
Cadoles:v2024.4.19-bb5796a
Cadoles:v2024.4.5-83fcb9a
Cadoles:v2024.3.29-ad90757
Cadoles:v2024.3.29-3a89497
Cadoles:v2024.3.29-274bef1
Cadoles:v2024.3.28-f548c8c
Cadoles:v2024.3.28-a82fe46
Cadoles:v2024.3.28-3571742
Cadoles:v2024.3.27-1630546
Cadoles:v2024.3.27-d8b78ad
Cadoles:v2024.3.26-61012b0
Cadoles:v2024.3.26-441d3a6
Cadoles:v2024.3.25-734ed64
Cadoles:v2024.2.21-c8fc143
Cadoles:v2024.2.21-f91c14e
Cadoles:v2024.2.5-1602626
Cadoles:v2024.2.5-c23d8e3
Cadoles:v2024.2.5-5453988
Cadoles:v2023.7.8-b44ff2a
Cadoles:v2023.7.7-2b91c1e
Cadoles:v2023.7.7-cebf1da
Cadoles:v2023.7.7-fc983ea
Cadoles:v2023.7.7-6734cf6
Cadoles:v2023.7.6-33a9787
Cadoles:v2023.7.6-553513d
Cadoles:v2023.7.6-64b5182
Cadoles:v2023.7.5-ce2c19f
Cadoles:v2023.7.5-1ffec1f
Cadoles:v2023.7.5-aab5452
Cadoles:v2023.7.5-a176b75
Cadoles:v2023.7.5-7b04eb2
Cadoles:v2023.7.4-5bd7cbc
Cadoles:v2023.7.1-1b06f07
Cadoles:v2023.7.1-b78bcf0
Cadoles:v2023.7.1-82228fd
Cadoles:v2023.7.1-15daddb
Cadoles:v2023.7.1-5a7062d
Cadoles:v2023.6.30-74409f1
Cadoles:v2023.6.30-ab7f64a
Cadoles:v2023.6.30-5bf391b
Cadoles:v2023.6.30-74928fe
Cadoles:v2023.6.30-ff1d018
Cadoles:v2023.6.29-e0d81c0
Cadoles:v2023.6.26-440d467
Cadoles:v2023.6.26-f8d3329
Cadoles:v2023.6.26-6fed635
Cadoles:v2023.6.24-ef869a0
Cadoles:v2023.6.23-8d91f64
Cadoles:v2023.6.23-e32c72e
Cadoles:v2023.6.23-8d21e90
Cadoles:v2023.6.13-2a88494
Cadoles:v2023.5.28-830d4d3
Cadoles:v2023.5.28-7a45a5b
Cadoles:v2023.5.28-8f0501b
Cadoles:v2023.5.21-e66938f
Cadoles:v2023.5.21-b651fec
Cadoles:v2023.5.21-d56a3c6
Cadoles:v2023.5.18-59c0865
Cadoles:v2023.5.18-fe2ee90
Cadoles:v2023.5.16-f9a6a3a
Cadoles:v2023.5.15-b0f3cba
Cadoles:v2023.5.13-3e69a2f
Cadoles:v2023.5.12-af4e8e5
Cadoles:v2023.5.2-ac21629
Cadoles:v2023.5.2-ce8ff3c
..
compare: Cadoles:26a9ad0e2e37cac3c475eb5ff9fbbc3357b2188e
Branches Tags
Cadoles:fix-append
Cadoles:develop
Cadoles:authn-oidc-redirect-url
Cadoles:feat/dockerfile
Cadoles:k8s
Cadoles:basicauth-tutorial
Cadoles:master
Cadoles:v2024.11.14-ce7415a
Cadoles:v2024.11.8-74c2a2c
Cadoles:v2024.11.8-239d457
Cadoles:v2024.11.8-cffe3ec
Cadoles:v2024.10.21-a686c52
Cadoles:v2024.10.11-8983a44
Cadoles:v2024.10.2-69501f6
Cadoles:v2024.9.27-0ff9391
Cadoles:v2024.9.27-590505e
Cadoles:v2024.9.27-867e7c5
Cadoles:v2024.9.26-169578c
Cadoles:v2024.9.26-b0a71fc
Cadoles:v2024.9.25-eea51c6
Cadoles:v2024.9.25-cb9260a
Cadoles:v2024.9.25-0b032fc
Cadoles:v2024.9.23-f374250
Cadoles:v2024.9.23-4801974
Cadoles:v2024.9.23-bf15732
Cadoles:v2024.6.28-f35384c
Cadoles:v2024.6.28-c73fe8c
Cadoles:v2024.6.27-3c1939f
Cadoles:v2024.6.27-3565618
Cadoles:v2024.6.27-d5669a4
Cadoles:v2024.6.27-f3aa8b9
Cadoles:v2024.6.27-2de5e28
Cadoles:v2024.6.27-87e1c65
Cadoles:v2024.6.26-f092520
Cadoles:v2024.6.26-9084b6e
Cadoles:v2024.6.26-059af1b
Cadoles:v2024.6.26-49f2ccb
Cadoles:v2024.6.26-8a751af
Cadoles:v2024.6.25-1146089
Cadoles:v2024.6.25-9d902a7
Cadoles:v2024.6.25-ea68724
Cadoles:v2024.6.24-1009eb1
Cadoles:v2024.6.5-19fda6a
Cadoles:v2024.6.5-65238f1
Cadoles:v2024.6.5-d4da9cb
Cadoles:v2024.5.29-2952f68
Cadoles:v2024.5.29-3e98901
Cadoles:v2024.5.28-d667bb0
Cadoles:v2024.5.28-42dab57
Cadoles:v2024.5.28-132bf1e
Cadoles:v2024.5.22-499bb36
Cadoles:v2024.5.22-920fc1a
Cadoles:v2024.5.22-5720935
Cadoles:v2024.5.21-0d4319f
Cadoles:v2024.5.21-c4dcf57
Cadoles:v2024.5.21-db09533
Cadoles:v2024.5.17-6d0a382
Cadoles:v2024.5.17-28ef57b
Cadoles:v2024.5.17-8b1c649
Cadoles:v2024.5.17-5ed1946
Cadoles:v2024.5.17-7456dba
Cadoles:v2024.5.17-af34ee2
Cadoles:v2024.4.19-bb5796a
Cadoles:v2024.4.5-83fcb9a
Cadoles:v2024.3.29-ad90757
Cadoles:v2024.3.29-3a89497
Cadoles:v2024.3.29-274bef1
Cadoles:v2024.3.28-f548c8c
Cadoles:v2024.3.28-a82fe46
Cadoles:v2024.3.28-3571742
Cadoles:v2024.3.27-1630546
Cadoles:v2024.3.27-d8b78ad
Cadoles:v2024.3.26-61012b0
Cadoles:v2024.3.26-441d3a6
Cadoles:v2024.3.25-734ed64
Cadoles:v2024.2.21-c8fc143
Cadoles:v2024.2.21-f91c14e
Cadoles:v2024.2.5-1602626
Cadoles:v2024.2.5-c23d8e3
Cadoles:v2024.2.5-5453988
Cadoles:v2023.7.8-b44ff2a
Cadoles:v2023.7.7-2b91c1e
Cadoles:v2023.7.7-cebf1da
Cadoles:v2023.7.7-fc983ea
Cadoles:v2023.7.7-6734cf6
Cadoles:v2023.7.6-33a9787
Cadoles:v2023.7.6-553513d
Cadoles:v2023.7.6-64b5182
Cadoles:v2023.7.5-ce2c19f
Cadoles:v2023.7.5-1ffec1f
Cadoles:v2023.7.5-aab5452
Cadoles:v2023.7.5-a176b75
Cadoles:v2023.7.5-7b04eb2
Cadoles:v2023.7.4-5bd7cbc
Cadoles:v2023.7.1-1b06f07
Cadoles:v2023.7.1-b78bcf0
Cadoles:v2023.7.1-82228fd
Cadoles:v2023.7.1-15daddb
Cadoles:v2023.7.1-5a7062d
Cadoles:v2023.6.30-74409f1
Cadoles:v2023.6.30-ab7f64a
Cadoles:v2023.6.30-5bf391b
Cadoles:v2023.6.30-74928fe
Cadoles:v2023.6.30-ff1d018
Cadoles:v2023.6.29-e0d81c0
Cadoles:v2023.6.26-440d467
Cadoles:v2023.6.26-f8d3329
Cadoles:v2023.6.26-6fed635
Cadoles:v2023.6.24-ef869a0
Cadoles:v2023.6.23-8d91f64
Cadoles:v2023.6.23-e32c72e
Cadoles:v2023.6.23-8d21e90
Cadoles:v2023.6.13-2a88494
Cadoles:v2023.5.28-830d4d3
Cadoles:v2023.5.28-7a45a5b
Cadoles:v2023.5.28-8f0501b
Cadoles:v2023.5.21-e66938f
Cadoles:v2023.5.21-b651fec
Cadoles:v2023.5.21-d56a3c6
Cadoles:v2023.5.18-59c0865
Cadoles:v2023.5.18-fe2ee90
Cadoles:v2023.5.16-f9a6a3a
Cadoles:v2023.5.15-b0f3cba
Cadoles:v2023.5.13-3e69a2f
Cadoles:v2023.5.12-af4e8e5
Cadoles:v2023.5.2-ac21629
Cadoles:v2023.5.2-ce8ff3c

2 Commits
d5c846a9ce ... 26a9ad0e2e

Author SHA1 Message Date
wpetit 26a9ad0e2e feat(authn-oidc): match login callback/logout urls with query string by default
Cadoles/bouncer/pipeline/head This commit looks good Details
2024-05-24 15:28:21 +02:00
wpetit 3e5dd446cb feat(authn-oidc): use relative redirection to prevent internal/public host mixing 2024-05-24 15:27:43 +02:00
2 changed files with 4 additions and 3 deletions
Show Stats Expand all files Collapse all files

3
internal/proxy/director/layer/authn/oidc/client.go
View File

@ -2,6 +2,7 @@ package oidc
import ( import (
"bytes" "bytes"
"fmt"
"net/http" "net/http"
"net/url" "net/url"
"strings" "strings"
@ -74,7 +75,7 @@ func (c *Client) login(w http.ResponseWriter, r *http.Request, sess *sessions.Se
sess.Values[sessionKeyLoginState] = state sess.Values[sessionKeyLoginState] = state
sess.Values[sessionKeyLoginNonce] = nonce sess.Values[sessionKeyLoginNonce] = nonce
sess.Values[sessionKeyPostLoginRedirectURL] = originalURL.String() sess.Values[sessionKeyPostLoginRedirectURL] = fmt.Sprintf("%s?%s", originalURL.Path, originalURL.Query().Encode())
if err := sess.Save(r, w); err != nil { if err := sess.Save(r, w); err != nil {
logger.Error(ctx, "could not save session", logger.E(errors.WithStack(err))) logger.Error(ctx, "could not save session", logger.E(errors.WithStack(err)))

4
internal/proxy/director/layer/authn/oidc/layer_options.go
View File

@ -49,9 +49,9 @@ func fromStoreOptions(storeOptions store.LayerOptions, baseURL string) (*LayerOp
LayerOptions: authn.DefaultLayerOptions(), LayerOptions: authn.DefaultLayerOptions(),
OIDC: OIDCOptions{ OIDC: OIDCOptions{
LoginCallbackURL: baseURL + loginCallbackPath, LoginCallbackURL: baseURL + loginCallbackPath,
MatchLoginCallbackURL: "*" + loginCallbackPath, MatchLoginCallbackURL: "*" + loginCallbackPath + "*",
LogoutURL: baseURL + logoutPath, LogoutURL: baseURL + logoutPath,
MatchLogoutURL: "*" + logoutPath, MatchLogoutURL: "*" + logoutPath + "*",
Scopes: []string{"openid"}, Scopes: []string{"openid"},
}, },
Cookie: CookieOptions{ Cookie: CookieOptions{