zitadel-oidc

Author	SHA1	Message	Date
Livio Amstutz	653209a23c	feat: add all optional claims of the introspection response	2022-07-21 09:34:14 +02:00
dependabot[bot]	aea3f43268	chore(deps): bump github.com/stretchr/testify from 1.7.5 to 1.8.0 (#192 ) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.5 to 1.8.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.5...v1.8.0) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-07-04 09:21:02 +02:00
David Sharnoff	498b70bae1	chore: add some docs to NewOpenIDProvider() (#191 ) * add some docs to NewOpenIDProvider() * typo	2022-07-04 09:20:29 +02:00
David Sharnoff	fb0c466839	chore: add doc links (#190 )	2022-06-30 13:20:18 +02:00
David Sharnoff	385d5c15da	define GrantType constants in one place (#189 )	2022-06-29 09:39:32 +00:00
dependabot[bot]	c4d951cad2	chore(deps): bump github.com/stretchr/testify from 1.7.4 to 1.7.5 (#187 ) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.4 to 1.7.5. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.4...v1.7.5) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-06-29 11:39:29 +02:00
David Sharnoff	9f36a5a3a9	fix typo in filename (#188 )	2022-06-29 11:37:21 +02:00
Livio Spring	854e14b7c4	fix: state and auth code response encoding (#185 ) * fix: add state in access token response (implicit flow) * fix: encode auth response correctly (when using query in redirect uri) * fix query param handling	2022-06-21 07:24:40 +02:00
dependabot[bot]	c4812dd8de	chore(deps): bump github.com/stretchr/testify from 1.7.1 to 1.7.4 (#186 ) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.1 to 1.7.4. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.7.4) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-06-21 07:24:22 +02:00
Jederson Zuchi	9b0954f3d4	feat(rp): Adding end_session endpoint to relaying party interface (#179 )	2022-05-13 09:17:20 +02:00
Livio Amstutz	ff124f87f5	docs(readme): update features and add contributors (#180 )	2022-05-11 10:19:16 +02:00
James Batt	86fd502434	feat(op): implemented support for client_credentials grant (#172 ) * implemented support for client_credentials grant * first draft * Update pkg/op/token_client_credentials.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * updated placeholder interface name * updated import paths * ran mockgen Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-05-09 15:06:54 +02:00
Florian Forster	550f7877f2	fix: move to new org (#177 ) * chore: move to new org * chore: change import * fix: update logging lib Co-authored-by: Fabienne <fabienne.gerschwiler@gmail.com> Co-authored-by: adlerhurst <silvan.reusser@gmail.com>	2022-04-26 23:48:29 +02:00
dependabot[bot]	72f28a10ce	chore(deps): bump github/codeql-action from 1 to 2 (#176 )	2022-04-25 21:41:08 +02:00
dependabot[bot]	c07c504f7f	chore(deps): bump codecov/codecov-action from 3.0.0 to 3.1.0 (#175 )	2022-04-25 21:40:15 +02:00
Livio Amstutz	885fe0d45c	docs(example): implement OpenID Provider (#165 ) * chore(example): implement OpenID Provider * jwt profile and fixes * some comments * remove old op example * fix code flow example * add service user and update readme * fix password for example use * ignore example and mock folders for code coverage * Update example/server/internal/storage.go Co-authored-by: Silvan <silvan.reusser@gmail.com> * Update client.go Co-authored-by: Silvan <silvan.reusser@gmail.com>	2022-04-21 17:54:00 +02:00
Livio Amstutz	c195452bb0	feat(rp): provide key by data (not only path) for jwt profile (#168 )	2022-04-14 10:10:56 +02:00
dependabot[bot]	478795ad79	chore(deps): bump actions/setup-go from 2 to 3 (#170 ) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-04-12 08:00:56 +02:00
dependabot[bot]	fd416ce413	chore(deps): bump codecov/codecov-action from 2.1.0 to 3.0.0 (#171 ) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.1.0 to 3.0.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v2.1.0...v3.0.0) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-04-12 08:00:40 +02:00
Livio Amstutz	0dd79cb6f9	chore(build): add go 1.18 to matrix build (#166 ) * chore(build): add go 1.18 to matrix build * add 1.18 * Update README.md * Update release.yml	2022-03-22 07:26:00 +01:00
dependabot[bot]	d740fe1710	chore(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1 (#163 ) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.0 to 1.7.1. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-03-16 11:18:08 +01:00
dependabot[bot]	ab76b3518f	chore(deps): bump github.com/caos/logging from 0.0.2 to 0.3.1 (#159 ) * chore(deps): bump github.com/caos/logging from 0.0.2 to 0.3.1 Bumps [github.com/caos/logging](https://github.com/caos/logging) from 0.0.2 to 0.3.1. - [Release notes](https://github.com/caos/logging/releases) - [Changelog](https://github.com/caos/logging/blob/master/.releaserc.js) - [Commits](https://github.com/caos/logging/compare/v0.0.2...v0.3.1) --- updated-dependencies: - dependency-name: github.com/caos/logging dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * update logging * update logging Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2022-03-16 11:14:57 +01:00
Livio Amstutz	c07557be02	feat: build the redirect after a successful login with AuthCallbackURL function (#164 )	2022-03-16 10:55:29 +01:00
dependabot[bot]	b914990e15	chore(deps): bump actions/checkout from 2 to 3 (#161 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2022-03-08 06:59:53 +01:00
Silvan	1b81a2e890	Merge pull request #151 from caos/sign-concurrency	2022-03-01 10:07:30 +01:00
Ydris Rebibane	5601add628	feat: Allow the use of a custom discovery endpoint (#152 ) * Allow the use of custom endpoints * Remove the custom constrtouctor and replace with an optional argument to override the discovery endpoit	2022-02-16 09:14:54 +01:00
Livio Amstutz	e39146c98e	fix: ensure signer has key on OP creation	2022-01-31 07:27:52 +01:00
Fabi	219ba4e038	Merge pull request #150 from caos/key-selection fix: handle keys without `use` in FindMatchingKey	2022-01-28 09:53:29 +01:00
Livio Amstutz	7ea5ddf250	add missing import	2022-01-28 09:48:37 +01:00
Livio Amstutz	bcd9ec8d85	fix: handle keys without `use` in FindMatchingKey	2022-01-28 09:42:42 +01:00
Rohinish	f103b56e95	docs(readme): corrected terminology	2022-01-22 19:20:58 +01:00
Livio Amstutz	eb10752e48	feat: Token Revocation, Request Object and OP Certification (#130 ) FEATURES (and FIXES): - support OAuth 2.0 Token Revocation [RFC 7009](https://datatracker.ietf.org/doc/html/rfc7009) - handle request object using `request` parameter [OIDC Core 1.0 Request Object](https://openid.net/specs/openid-connect-core-1_0.html#RequestObject) - handle response mode - added some information to the discovery endpoint: - revocation_endpoint (added with token revocation) - revocation_endpoint_auth_methods_supported (added with token revocation) - revocation_endpoint_auth_signing_alg_values_supported (added with token revocation) - token_endpoint_auth_signing_alg_values_supported (was missing) - introspection_endpoint_auth_signing_alg_values_supported (was missing) - request_object_signing_alg_values_supported (added with request object) - request_parameter_supported (added with request object) - fixed `removeUserinfoScopes ` now returns the scopes without "userinfo" scopes (profile, email, phone, addedd) [source diff](https://github.com/caos/oidc/pull/130/files#diff-fad50c8c0f065d4dbc49d6c6a38f09c992c8f5d651a479ba00e31b500543559eL170-R171) - improved error handling (pkg/oidc/error.go) and fixed some wrong OAuth errors (e.g. `invalid_grant` instead of `invalid_request`) - improved MarshalJSON and added MarshalJSONWithStatus - removed deprecated PEM decryption from `BytesToPrivateKey` [source diff](https://github.com/caos/oidc/pull/130/files#diff-fe246e428e399ccff599627c71764de51387b60b4df84c67de3febd0954e859bL11-L19) - NewAccessTokenVerifier now uses correct (internal) `accessTokenVerifier` [source diff](https://github.com/caos/oidc/pull/130/files#diff-3a01c7500ead8f35448456ef231c7c22f8d291710936cac91de5edeef52ffc72L52-R52) BREAKING CHANGE: - move functions from `utils` package into separate packages - added various methods to the (OP) `Configuration` interface [source diff](https://github.com/caos/oidc/pull/130/files#diff-2538e0dfc772fdc37f057aecd6fcc2943f516c24e8be794cce0e368a26d20a82R19-R32) - added revocationEndpoint to `WithCustomEndpoints ` [source diff](https://github.com/caos/oidc/pull/130/files#diff-19ae13a743eb7cebbb96492798b1bec556673eb6236b1387e38d722900bae1c3L355-R391) - remove unnecessary context parameter from JWTProfileExchange [source diff](https://github.com/caos/oidc/pull/130/files#diff-4ed8f6affa4a9631fa8a034b3d5752fbb6a819107141aae00029014e950f7b4cL14)	2021-11-02 13:21:35 +01:00
Witold Konior	763d3334e7	feat: Enable parsing email_verified from string. (#139 ) * Enable parsing email_verified from string. AWS Cognito will return email_verified from /userinfo endpoint as string. This fix will accept proper boolean values as well as string values. Links for reference: https://forums.aws.amazon.com/thread.jspa?messageID=949441&#949441 https://discuss.elastic.co/t/openid-error-after-authenticating-against-aws-cognito/206018/11 * feat: Enable parsing email_verified from string.	2021-11-02 09:14:33 +01:00
陈杨文	c45f03e144	fix: allowed ConcatenateJSON with empty input (#138 )	2021-10-28 07:06:34 +02:00
Livio Amstutz	55ec7d9dd2	docs: remove implicit and hybrid flow from supported RP features in readme (#136 ) * docs: remove implicit flow from supported features in readme * docs: remove implicit flow from supported features in readme Co-authored-by: Florian Forster <florian@caos.ch> Co-authored-by: Florian Forster <florian@caos.ch>	2021-10-26 09:15:02 +02:00
jmillerv	292188ba30	docs: fix readme typos (#134 )	2021-10-10 19:30:24 +00:00
Livio Amstutz	eb38b7aa60	chore: build on fork PRs (#133 )	2021-10-08 08:23:53 +02:00
陈杨文	ff2c164057	fix: improve example & fix userinfo marshal (#132 ) * fix: example client should track state, call cli.CodeFlow need context * fix: oidc userinfo can UnmarshalJSON with address * rp Discover use client.Discover * add instruction for example to README.md	2021-10-08 08:20:45 +02:00
Livio Amstutz	a63fbee93d	fix: improve JWS and key verification (#128 ) * fix: improve JWS and key verification * fix: get remote keys if no cached key matches * fix: get remote keys if no cached key matches * fix exactMatch * fix exactMatch * chore: change default branch name in .releaserc.js	2021-09-14 15:13:44 +02:00
Livio Amstutz	2b5b436c41	Merge pull request #127 from caos/dependabot/github_actions/codecov/codecov-action-2.1.0 chore(deps): bump codecov/codecov-action from 2.0.3 to 2.1.0	2021-09-14 07:18:37 +02:00
dependabot[bot]	391b603cce	chore(deps): bump codecov/codecov-action from 2.0.3 to 2.1.0 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.3 to 2.1.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v2.0.3...v2.1.0) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2021-09-13 19:01:38 +00:00
Livio Amstutz	fcad98f4bd	fix: make pkce code_verifier spec compliant #125 fix: make pkce code_verifier spec compliant #125	2021-09-13 14:52:07 +02:00
Timo Volkmann	99812e0b8e	pkce: encode code verifier with base64 without padding Co-authored-by: Livio Amstutz <livio.a@gmail.com>	2021-09-13 13:56:38 +02:00
Timo Volkmann	af3a497b6d	fix: make pkce code_verifier spec compliant #125 follow recommendations for code_verifier: https://datatracker.ietf.org/doc/html/rfc7636#section-4.1	2021-09-09 14:33:59 +02:00
Livio Amstutz	3574b211c8	Merge pull request #121 from caos/dependabot/github_actions/codecov/codecov-action-2.0.3 chore(deps): bump codecov/codecov-action from 2.0.2 to 2.0.3	2021-09-03 07:19:18 +02:00
dependabot[bot]	353bee9ebe	chore(deps): bump codecov/codecov-action from 2.0.2 to 2.0.3 Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 2.0.2 to 2.0.3. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/master/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/v2.0.2...v2.0.3) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2021-09-03 05:18:02 +00:00
Livio Amstutz	3ed3fa5c0a	chore: fix sem rel configuration	2021-08-27 15:40:31 +02:00
Livio Amstutz	1bd04e9f36	Merge pull request #117 from caos/workflow chore: start improving external contribution	2021-08-27 15:36:51 +02:00
Livio Amstutz	1a2cc86f3c	chore: change default branch name in .releaserc.js	2021-08-27 15:31:54 +02:00
Livio Amstutz	a3e5d6ba96	chore: add CONTRIBUTING.md	2021-08-27 15:26:41 +02:00

1 2 3 4 5 ...

294 commits