coreos/go-oidc

Issues

• well-known URLs not accessible from `Provider`

  #424 opened 9 months ago by tfahrenreich
  3

• cacheing well-known files

  #436 opened 5 months ago by amir4895
  2

• Build broken since go-oidc/v3 v3.10.0 which upgraded to go-jose/v4 "undefined: max"

  #435 opened 5 months ago by timmalich
  4

• Share the http.Client in all methods that make a request

  #434 opened 5 months ago by sebastianfrh
  0

• Figure out a strategy for handling Azure

  #344 opened 3 years ago by ericchiang
  5

• `RemoteKeySet` stores and reuses initial context

  #428 opened 6 months ago by zakcutner
  3

• Add custom issuer validation for discovery based Providers creation

  #431 opened 7 months ago by yuri-potatoq
  2

• id token signed with unsupported algorithm Error (error at traefik-forward-auth)

  #429 opened 8 months ago by AdriDevelopsThings
  5

• Getting AADSTS54005: OAuth2 Authorization code was already redeemed

  #427 opened 9 months ago by Jarecamang
  1

• Microsoft nonce and state doesn't match

  #366 opened 2 years ago by onattech
  1

• Bug: issuer validation breaking integration for Authentik OIDC

  #423 opened 9 months ago by JeroenoBoy
  4

• Error in parsing remoteKeySet endpoint

  #422 opened 10 months ago by s1ovac
  1

• Option to enforce algorithm matching between JWT and JWK

  #356 opened 10 months ago by adamcfraser
  7

• Upgrade go-jose to fix CVE-2024-28180

  #417 opened 10 months ago by bcandeias
  3

• Bump actions/checkout@v3, actions/setup-go@v4

  #391 opened 10 months ago by arukiidou
  1

• Test with go 1.20/ go 1.21

  #388 opened 10 months ago by arukiidou
  1

• CVE-2020-9283

  #367 opened 10 months ago by pure-jliao
  4

• Microsoft Entra ID support for appid url parameter

  #415 opened a year ago by marcowartmann
  2

• [question] problems inside of docker

  #412 opened a year ago by ghstahl
  2

• Access blocked: Authorization Error

  #411 opened a year ago by MikeMwita
  1

• Inherit Provider http client settings in calls

  #402 opened a year ago by p53
  2

• Allow the use of Pushed Authentication Requests when supported by the provider

  #409 opened a year ago by istyf
  3

• Access Denied

  #403 opened a year ago by Gartito
  1

• Support for multiple client IDs in the verifier

  #397 opened a year ago by aramase
  2

• Extract code_challenge_methods_supported from discovery JSON

  #401 opened a year ago by mitar
  1

• Setting SameSite on the session cookie?

  #398 opened a year ago by eliben
  0

• How to use UserInfo?

  #392 opened a year ago by tamis-laan
  3

• using http instead of https?

  #386 opened a year ago by tamis-laan
  2

• Add Scope value predefined in the specification (profile, email, address, phone)

  #385 opened a year ago by arukiidou
  2

• Backport PR 249 to 2.x stream?

  #383 opened 2 years ago by tstephen-relx
  2

• Add custom headers

  #382 opened 2 years ago by p53
  4

• Support verifying access tokens provided from Client Credential Flow or Resource Owner Password Flow

  #379 opened 2 years ago by miner46er
  5

• No way to check if server supports UserInfo

  #373 opened 2 years ago by crawshaw
  1

• Retry RemoteKeySet#updateKeys on error

  #372 opened 2 years ago by punkeel
  4

• Non-expiring JWT is rejected as expired

  #371 opened 2 years ago
  3

• OpenID Connect Federation support

  #370 opened 2 years ago by ericchiang
  0

• Verify azp claim

  #355 opened 2 years ago by manjinder-mckc
  5

• Non-obvious behavior with long lived `oidc.Provider` objects: `remoteKeySet` caches original context

  #339 opened 2 years ago by kuttas
  4

• Use context in new requests

  #362 opened 2 years ago by argenta-quanto
  3

• provider well-known configuration URL is not created per spec

  #359 opened 2 years ago by gotwarlost
  3

• Request to Azure AD's open-id config occasionally fails

  #358 opened 2 years ago by weeco
  1

• Add oidctest package

  #345 opened 3 years ago by ericchiang
  1

• Add device flow authorization support

  #357 opened 2 years ago by sealbro
  2

• Create a reusable server for OIDC flow in CLIs

  #354 opened 2 years ago by jlewi
  1

• How to force re-authentication?

  #353 opened 2 years ago by patrickjane
  1

• Support scenario: AzureAD has "none" signature in ID token returned

  #350 opened 2 years ago by tommed
  6

• Verify calls jose.ParseSigned twice

  #346 opened 2 years ago by horpto
  4

• 404 error while trying to get user info from keycloak

  #343 opened 3 years ago by mhkarimi1383
  1

• issuer did not match the issuer returned by provider, expected "https://xxxxx.com" got "https://xxxxx.com/"

  #338 opened 3 years ago by shuaiganzi
  1

• IDTokenVerifier from Provider

  #335 opened 3 years ago by mitar
  2