Skip to content

Update plugin #14

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 98 commits into
base: master
Choose a base branch
from
Open

Update plugin #14

wants to merge 98 commits into from

Conversation

dkasemodel
Copy link

Update plugin from original repo.

Darguelles and others added 30 commits October 20, 2020 13:55
@Darguelles
Update Dockerfile image
cda3caf
@bodewig
redirect kill's stderr as it causes too much noise
df75c6e
@bodewig
don't fix lua-resty-jwt version to 0.2.0
68504de 
closes #362
closes #363
closes #366

Signed-off-by: Stefan Bodewig <[email protected]>
@zandbelt
release 1.7.4
0c75741 
Signed-off-by: Hans Zandbelt <[email protected]>
@zandbelt
upgrade Travis luarocks
49be803 
Signed-off-by: Hans Zandbelt <[email protected]>
@bodewig
close session in access_token() and a certain path in authenticate()
f1886fa 
closes #374

Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
typos
e35fa16
@zandbelt
update support and disclaimer text
6534df0 
Signed-off-by: Hans Zandbelt <[email protected]>
@zandbelt
Merge branch 'master' of https://github.com/zmartzone/lua-resty-openidc
cc35f2e
@zandbelt
move support text to end of README
59d0157 
Signed-off-by: Hans Zandbelt <[email protected]>
@arcivanov
Allow lifecycle handlers to fail, altering the course of request proc…
e63cde5 
…essing
@bodewig
honor introspection_cache_ignore in jwt_verify functions
56ea9b5 
see #399
@bodewig
Merge pull request #384 from arcivanov/failing_lifecycle_handlers
2710a83 
Allow lifecycle handlers to fail, altering the course of request processing
@bodewig
record and document #384
6ba3a5f
@bodewig
split caches of token introspection and JWT verification
a73ebd9 
see #399

Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
take some configuration options into account for cache keys
d387399 
see #399

Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
add a new option that allows caches to be segregated
1e1e66f 
see #399

Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
Merge pull request #400 from zmartzone/harden-introspection-cache
5c8cb34 
try to avoid cache confusion
@thorstenfleischmann
Make revoke_token() accessible
c2eb2d7 
New function revoke_token() and revoke_tokens()
@bodewig
fix potential null dereference in openidc_revoke_token's logs
8c75bc1
@thorstenfleischmann
AUTHORS and README
c4ac86c
@thorstenfleischmann
Merge branch 'zmartzone:master' into revoke_token
82b5f18
@thorstenfleischmann
fix null dereference in openidc.revoke_token log
e001314
@thorstenfleischmann
basic revoke_tokens test
94c384f
@thorstenfleischmann
#404 Possibilty to pass in a existing session
a50d767
@bodewig
Merge pull request #402 from thorstenfleischmann/revoke_token
50f237b 
Make revoke_token() accessible
@bodewig
record #402
d2b3197
@bodewig
treat empty x5c claim in JWK like a missing x5c claim
d52fc6c 
closes #406

Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
Merge pull request #405 from thorstenfleischmann/404-Possibilty-to-pa…
2af65d4 
…ss-in-a-existing-session

#404 Possibilty to pass in a existing session
@bodewig
track #405
bc41861 
Signed-off-by: Stefan Bodewig <[email protected]>
bodewig and others added 5 commits February 5, 2023 21:45
@bodewig
record newer luarocks release
432d45a 
Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
properly base64url-encode n in test key
4ff4189 
Signed-off-by: Stefan Bodewig <[email protected]>
@bodewig
deal with Authorization headers without blank
ae3bc54 
closes #473

Signed-off-by: Stefan Bodewig <[email protected]>
@zhuizhuhaomeng
optimization: some small optimizations.
40a3f8e
@bodewig
Merge pull request #467 from zhuizhuhaomeng/opt
734a3f4 
optimization: some small optimizations on base64 encoding&decoding.
@dkasemodel dkasemodel closed this Nov 22, 2023
@dkasemodel dkasemodel reopened this Nov 22, 2023
NatePlumm and others added 23 commits January 18, 2024 17:11
@NatePlumm
#345 handle the userinfo response as JWT
65e4794
@zandbelt
Merge pull request #508 from n8lab/issue_345
9f3a4fc 
#345 handle the userinfo response as JWT
@bodewig
restrict zero-pixel image logout to actual image requests
d284d71 
should fix #521
@bodewig
XHTML should also win over PNG
ab9c386
@oldium
Migrate lua-resty-session to 4.0.3
0fa034a 
Signed-off-by: Oldřich Jedlička <[email protected]>
@oldium
Allow changing of query parameters in on_created call
baf2643 
Signed-off-by: Oldřich Jedlička <[email protected]>
@oldium
Fix logout with no session
20aa033 
Bug in lua-resty-session does not permit calling session:destroy() on
freshly started session with unset "audience" feature, so check for empty
session before trying to destroy it.

Signed-off-by: Oldřich Jedlička <[email protected]>
@oldium
Fix usage of RFC 5737 address
742236f 
Address range 192.0.2.0/24 is reserved for documentation according to RFC
5737. The recommendation is to reject routing of this address range on
routers, but as this is not mandatory, it might happen that the address
is really routed. The tests on Docker on Windows fail because of this it,
the fail reason is different to the expected one.

Fix this by configuring Nginx to listen on 127.0.0.1:80 (and not
0.0.0.0:80) and connecting to 127.1.2.3 instead of 192.0.2.1.

Signed-off-by: Oldřich Jedlička <[email protected]>
@oldium
Fix Base64Url decoding of JWT in tests
d0dc1fd 
The mime module expects padded Base64 value, so add missing padding.

Signed-off-by: Oldřich Jedlička <[email protected]>
@bodewig
Merge pull request #525 from zmartzone/try-to-fix-ff-logout
eb38cce 
restrict zero-pixel image logout to actual image requests
@zandbelt
fix missing entry about userinfo response as JWT in the ChangeLog
9875456 
Signed-off-by: Hans Zandbelt <[email protected]>
@zandbelt
Merge pull request #489 from oldium/resty-session-4.x
0a2aa18 
Migrate lua-resty-session to 4.0.3 [tested, works]
@zandbelt
merge support for lua-resty-session 4.x; see #489
cebfa35 
closes #464 #480 #503; thanks @oldium @balajiv113

Signed-off-by: Hans Zandbelt <[email protected]>
@zandbelt
update logout_spec.lua to match lua-resty-openidc 4.x set-cookie header
7548b25 
Signed-off-by: Hans Zandbelt <[email protected]>
@zandbelt
release 1.8.0; fix cross-tenant requests; closes #526
4702769 
Signed-off-by: Hans Zandbelt <[email protected]>
@boscard
Enable caching of negative introspection responses
03ec1d3
@boscard
Adding option to disable negative cache
eb68d90
@dc487
Update documentation to describe the configuration of lua-resty-sessi…
7183e9d 
…on version 4

The current documentation describes configuration for lua-resty-session version 3 only. Since following the default installation steps will set up lua-rest-session version 4, the documentation should reflect the configuration of version 4 instead.

This configuration should also provide an answer to several outstanding questions in the GitHub issues.
@zandbelt
Merge pull request #523 from boscard/master
9e37848 
Enable caching of negative introspection responses
fixes #537: Incorrect Handling of Bearer Token with trailing space in…
9b47502 
… openidc_get_bearer_access_token
fixes #537: Incorrect Handling of Bearer Token with trailing space in…
18ffe28 
… openidc_get_bearer_access_token
@zandbelt
Merge pull request #533 from dc487/patch-1
d181a80 
Update documentation for configuration of lua-resty-session v4
@zandbelt
Merge pull request #538 from gustoliv/master
fabf64e 
Incorrect Handling of Bearer Token with trailing space in openidc_get_bearer_access_token
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.