Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upstream master #16

Closed
wants to merge 53 commits into from
Closed

Upstream master #16

wants to merge 53 commits into from

Conversation

yannvery
Copy link

@yannvery yannvery commented Apr 28, 2021
edited
Loading

This PR is a branch dedicated to follow the main branch of https://github.com/m0n9oose/omniauth_openid_connect.
It also includes a feature to add params to the authorize request omniauth#90

This PR has to be used as it.

gregmolnar and others added 30 commits January 4, 2019 18:03
@gregmolnar @m0n9oose
upgrade openid_connect dependency
5018392
@gregmolnar @m0n9oose
fix mocha deprecation warning
a2984e2
@gregmolnar @m0n9oose
tweak travis settings
b4928a1
Fix tests, update some dependencies
ed291e9
Fix warnings
83a6d9d
@yannvery @m0n9oose
Allows ui_locales, claims_locales and login_hint as request params
0e23970 
Ref:
[http://openid.net/specs/openid-connect-core-1_0.html#AuthRequest](http://openid.net/specs/openid-connect-core-1_0.html#AuthRequest)
These params are allowed to be used during Authentication request.
@yannvery @m0n9oose
forward params call to request.params
4d645b2
@yannvery @m0n9oose
RP-Initiated Logout phase (#5)
4c024ea 
* Add logout phase

* Avoid to make a discover for each other_phase call

* avoid using match when MatchData is not used
@iconoeugen @m0n9oose
Make uid label configurable (#11)
471c0bc
@bcarr092 @m0n9oose
fix: Allow rails applications to handle state mismatch (#14)
6d09051 
* fix: Allow rails applications to handle state mismatch

* Addressed reviewer-bot
@m0n9oose
Do not use bundler gem as development dep
e618f95
@ivan05almeida @m0n9oose
Handle errors when fetching access_token at callback_phase (#17)
fe05597
@eszjay @m0n9oose
Allow state method to receive env (#19)
5432737 
* Allow state method to receive env

I have a state algorithm that requires access to values in env. This change allows it to receive that reference in a backwards compatible way and brings the state method in line with the setup method.

* Add parenthesis and eliminate ternary operator

* Add test for dynamic state generation
@m0n9oose
Update README.md
eeebd27
@m0n9oose
Create CHANGELOG.md
594f697
Bump version to 0.3.0
06baefd
@m0n9oose
Code cleanup
95977df
@m0n9oose
Update travis.yml
c8c6573
@m0n9oose
Update dependencies
4cab5b2
@stanhu @m0n9oose
Set default OmniAuth name to openid_connect (omniauth#23)
3913c8f 
* Set default OmniAuth name to openid_connect

If no name option is given, OmniAuth will attempt to translate
OmniAuth::Strategies::OpenIDConnect to openidconnect. This led
to confusion for a number of GitLab users who omitted the name
argument because /users/auth/openid_connect did not match
/users/auth/openidconnect.

* Fix tests to use openid_connect
Bump version to 0.3.1
963244d
@m0n9oose
Update omniauth dependency (omniauth#26)
bd8b57f 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9284

fix omniauth#25
@krzysiek1507 @m0n9oose
Move verification of IdToken to before accessing tokens (omniauth#28)
c6c64a4
@januszm @m0n9oose
Use response_mode in authorize_uri if the option is defined (omniauth#30
ca7e97e 
)
Bump version to 0.3.2
afd495b
@erbridge @m0n9oose
Fix gemspec homepage (omniauth#33)
f392719 
It's used by things like Dependabot to find commit diffs, changelogs, etc., and currently points to the wrong place.
@januszm @m0n9oose
Add support for response_type id_token (omniauth#32)
3f52ccd 
* Add support for response_type id_token

* Simplify the response_type validation

* Remove unnecessary statements from README
@januszm @m0n9oose
Support both symbol and string version of response_type option (omnia…
67665b1 
…uth#35)

Apparently it never worked as a symbol, although it was mentioned in README
@januszm @m0n9oose
Cast response_type to string when checking if it is set in params (om…
e05e60d 
…niauth#36)

* Cast response_type to string when checking if it is set in params

Rails will provide params with indifferent access but that's not guaranteed with other frameworks.
Omniauth sets keys as string, e.g. hash[field] = request.params[field.to_s]

* Define a normalized response_type method for use in string comparisons
@aperakett @m0n9oose
Add raw_info to auth_hash for response_type id_token (omniauth#42)
1424452 
* The complete id_token is now a part of the hash that is returned to the application
* Bugfix: Redefining env method for Strategy class caused race condition in test execution
m0n9oose and others added 23 commits November 9, 2019 10:11
@m0n9oose
Do not try to verify id_token when id_token is not used (omniauth#41)
d76e82b
@kogre @m0n9oose
Pass acr_values to authorize_url (omniauth#43)
2c091b3
Bump version to 0.3.3
a0da42b
@m0n9oose
Update README.md
af1e49b
@naari3 @m0n9oose
Try to verify id_token when response_type is code (omniauth#44)
244f8d2
Add Rubocop linter GitHub action
f55a39e
@m0n9oose
Create stale.yml
a0403c5
@Sutto @m0n9oose
Support custom parameters to the authorize URI
885c606 
Some OIDC providers allow extra paramters, not convered by the default configuration
we pass through.

An example of this is Azure AD, which adds the `resource` parameter which is used to
scope access of the resultant access token.

This adds the ability to pass through custom attributes, as a catch all, to the authorize URI.
@hobbypunk90
Provide more information on error (omniauth#49)
d6c2f22 
* Provide more information on error

* Better information on invalid state

* Change working with callback error
Update configuration documentation (omniauth#53)
d2c23d9 
* added table for options information

* added table for client options configuration
@lscorcia
Add documentation about the send_scope_to_token_endpoint config prope…
d76ba17 
…rty (omniauth#52)

Co-authored-by: Luca Leonardo Scorcia <lucaleonardo.scorcia@mise.gov.it>
@bufferoverflow
refactor: take uid_field from raw_attributes (omniauth#54)
1d90219
@bufferoverflow
chore(ci): add 2.7, ruby-head and jruby-head (omniauth#55)
48d7679
Fix rubocop offense
c0d8a6b
Update Rubocop Linter Action
c7179e1
Bump version to 0.3.4
b2f5f71
@ignatiusreza
bugfix: NoMethodError (undefined method `count' for #<OpenIDConnect::…
6398ad1 
…ResponseObject::IdToken:0x0000000008d9dde0>): (omniauth#60)

since id_token gets decoded twice

fix omniauth#59
@ignatiusreza
bugfix: info from decoded id_token is not exposed (omniauth#61)
b14d4c1
Bump version to 0.3.5
ef29420
@yannvery
Support dynamic parameters to the authorize URI
de0da53
@yannvery
Fix: redirect_uri is customisable via request param
2e14df3
@yannvery
Fix: redirect_uri is validated with request url
3cb05d6
@yannvery
feat(logout): default post_logout_redirect_uri can be overrided by param
8f9ef21
@yannvery yannvery closed this Apr 11, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone