Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move the state and nonce from an encrypted cookie into the session store #71

Merged
merged 2 commits into from
Feb 27, 2020
Merged

Move the state and nonce from an encrypted cookie into the session store #71

merged 2 commits into from
Feb 27, 2020

Conversation

cfryanr
Copy link

@cfryanr cfryanr commented Feb 26, 2020

Fixes #69

@cfryanr @Changdrew
Move the state and nonce from an encrypted cookie into the session store
faef663 
- Removes two configuration options that are no longer needed:
  `cryptor_secret` and `timeout`
- Removes the cookie encryption code and related helpers
- Does not set or delete the state cookie anymore
- Adds the state and nonce values to the session store
- Renamed the SessionIdGenerator to SessionStringGenerator because it
  now also generates state and nonce values

[Issue #69]

Signed-off-by: Andrew Chang <anchang@pivotal.io>
@istio-testing
Copy link
Collaborator

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: cfryanr
To complete the pull request process, please assign sawlanipradeep
You can assign the PR to them by writing /assign @sawlanipradeep in a comment when ready.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@googlebot googlebot added the cla: yes CLA positive status label Feb 26, 2020
@Changdrew
Copy link

/lgtm

@Changdrew @cfryanr
Fix a memory management mistake in oidc_filter_test.cc
70f531b 
- Remove an unused include in in_memory_session_store_test.cc
- Add a new target in the Makefile to help run focused tests from
  the command line

[Issue #69]

Signed-off-by: Ryan Richard <rrichard@pivotal.io>
@cfryanr cfryanr added this to In progress in authservice Feb 26, 2020
@peterhaochen47
Copy link

/lgtm

@peterhaochen47 peterhaochen47 merged commit 2e2be29 into master Feb 27, 2020
authservice automation moved this from In progress to Done Feb 27, 2020
nacx added a commit to nacx/authservice that referenced this pull request Mar 11, 2024
@nacx
Configure FIPS builds (istio-ecosystem#71)
17e1bd8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BrenoDeMedeiros BrenoDeMedeiros Awaiting requested review from BrenoDeMedeiros

@liminw liminw Awaiting requested review from liminw

Assignees

@Changdrew Changdrew

@peterhaochen47 peterhaochen47

Labels
cla: yes CLA positive status lgtm size/XXL
Projects
authservice
  
Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Put the state and nonce into the session store instead of using a cookie
5 participants
@cfryanr @istio-testing @Changdrew @peterhaochen47 @googlebot