cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
607 commits 8 branches 227 tags 3.4 MiB
Commit graph

328 commits

Author SHA1 Message Date
Livio Amstutz
1518c843de
feat: token introspection (#83) 
* introspect

* introspect and client assertion

* introspect and client assertion

* scopes

* token introspection

* introspect

* refactoring

* fixes

* clenaup

* Update example/internal/mock/storage.go

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>

* clenaup

Co-authored-by: Fabi <38692350+fgerschwiler@users.noreply.github.com>
 2021-02-15 13:43:50 +01:00
Livio Amstutz
1049c44c3e Merge remote-tracking branch 'origin/token-introspection' into signingkey 
# Conflicts:
#	pkg/op/mock/storage.mock.go
#	pkg/op/storage.go
 2021-02-12 13:02:04 +01:00
Livio Amstutz
5678693d44 clenaup 2021-02-12 12:52:33 +01:00
Livio Amstutz
0c7b2605bd clenaup 2021-02-12 07:02:10 +01:00
Livio Amstutz
01ff740f4e fixes 2021-02-12 06:47:16 +01:00
Livio Amstutz
0ca2370d48 refactoring 2021-02-11 17:38:58 +01:00
Livio Amstutz
138da8a208 introspect 2021-02-10 16:42:01 +01:00
Livio Amstutz
134999bc33 Merge branch 'master' into token-introspection 2021-02-04 07:52:34 +01:00
Livio Amstutz
fa92a20615
fix: make GenerateJWTProfileToken public (#82) 2021-02-03 13:04:06 +01:00
Livio Amstutz
345fc7e837 token introspection 2021-02-03 10:42:01 +01:00
Livio Amstutz
4b426c899a scopes 2021-02-02 11:41:50 +01:00
Livio Amstutz
960be5af1f introspect and client assertion 2021-02-01 17:17:40 +01:00
Livio Amstutz
50ab51bb46 introspect and client assertion 2021-01-28 08:41:36 +01:00
Livio Amstutz
a1a21f0d59 introspect 2021-01-08 15:01:23 +01:00
Livio Amstutz
b23f37f7eb fix: clock skew when using jwt profile 2020-12-21 21:04:07 +01:00
Livio Amstutz
b2f23dc5b7 Merge branch 'master' into signingkey 2020-12-16 08:01:37 +01:00
Fabi
27f3bc0f4a
fix: change callbackpath (#74) 
* fix: append client id to aud

* handle new callback path

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
 2020-11-30 11:21:09 +01:00
Livio Amstutz
36800145d6 renaming 2020-11-26 16:12:27 +01:00
Livio Amstutz
24120554e5 feat: add clock skew and option to put userinfo (profile, email, phone, address) into id_token 2020-11-26 15:46:08 +01:00
Fabi
13b14734b9
fix: append client id to aud (#71) 
* fix: append client id to aud

* fix: append client id to aud

* Update pkg/oidc/token.go

Co-authored-by: Livio Amstutz <livio.a@gmail.com>

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
 2020-11-16 08:26:19 +01:00
Fabi
2370409a55
fix: allow additional scopes (#69) 
* feat: allow additional scopes

* fix: mocks and tests

* fix: restrict additional scopes

* fix: restrict additional scopes

* fix: remove comments

* fix: remove comments
 2020-11-03 08:07:02 +01:00
Livio Amstutz
deb33653d4 fix: decode basic auth header components (clientID, clientSecret) 2020-10-23 15:59:44 +02:00
Livio Amstutz
84a295c2b5 update configuration.mock.go 2020-10-21 10:38:38 +02:00
Livio Amstutz
2ebbd7a2e0 fix: grant_types_supported in discovery 2020-10-21 10:36:34 +02:00
Livio Amstutz
3acc62e79e cleanup 2020-10-20 07:39:36 +02:00
Livio Amstutz
06dcac4c2f fix: remove signing key creation (when not found) 2020-10-19 15:26:34 +02:00
Livio Amstutz
9b480be13a fix: UserInfo with JWT access token (return error in DecryptAES) 2020-10-16 10:47:33 +02:00
Livio Amstutz
736d6902d9 solve PR issues 2020-10-15 15:23:33 +02:00
Livio Amstutz
5cc884766e improve ValidateAuthReqScopes 2020-10-15 14:02:53 +02:00
Livio Amstutz
ed33332dce merging and missing mocks 2020-10-15 13:41:31 +02:00
Livio Amstutz
d89470a33f improve userinfo token handling 2020-10-15 12:39:07 +02:00
Livio Amstutz
8be8306511 Merge branch 'master' into serializing 
# Conflicts:
#	example/internal/mock/storage.go
#	pkg/op/mock/storage.mock.go
#	pkg/op/storage.go
 2020-10-15 11:19:20 +02:00
Livio Amstutz
44c341d42e improve userinfo token handling 2020-10-15 09:41:50 +02:00
Fabi
9943f20215
feat: bearer access token includes tokenid and subject (#62) 2020-10-15 09:38:06 +02:00
Livio Amstutz
b8d892443c claims assertion 2020-10-14 16:41:04 +02:00
Livio Amstutz
d6203fb0d5 chore: move CAOS_OIDC_DEV to const (and ensure TestValidateIssuer runs (even on machines with env set)) 2020-10-07 08:49:23 +02:00
Livio Amstutz
b311610d06 feat: check allowed scopes (and pass clientID to GetUserinfoFromScopes) 2020-10-07 08:44:26 +02:00
Livio Amstutz
f845ce2010 comments 2020-09-29 08:34:37 +02:00
Livio Amstutz
507a437c56 scope form encoding 2020-09-29 08:13:51 +02:00
Livio Amstutz
1661b40fbe fix tests 2020-09-28 15:06:14 +02:00
Livio Amstutz
0cad2e4652 jwt profile and authorization handling 2020-09-28 13:55:22 +02:00
Livio Amstutz
d368b2d950 refactoring 2020-09-28 09:07:46 +02:00
Livio Amstutz
d7ed59db2b refactoring 2020-09-28 08:14:10 +02:00
Livio Amstutz
542ec6ed7b refactoring 2020-09-25 16:41:25 +02:00
Fabi
6cfd02e4c9
feat: prompt option (#59) 
* feat: prompt option

* Update pkg/rp/relaying_party.go

Co-authored-by: Livio Amstutz <livio.a@gmail.com>

Co-authored-by: Livio Amstutz <livio.a@gmail.com>
 2020-09-21 15:11:42 +02:00
Livio Amstutz
60560ce239
fix: marshal user info address (#58) 2020-09-21 10:44:19 +02:00
Livio Amstutz
c90a9d53c8 cleanup 2020-09-16 16:23:38 +02:00
adlerhurst
28f731c219 fix: remove test because we know it works. :P 
fix: key as string instead of bytes
 2020-09-16 15:48:52 +02:00
Livio Amstutz
779ad703c8 add NewJWTProfileAssertionFromKeyJSON 2020-09-16 15:35:21 +02:00
Livio Amstutz
0547bfbc1e Merge remote-tracking branch 'origin/service-accounts' into service-accounts 2020-09-16 15:22:26 +02:00