authenticate/proxy: add backend refresh (#438)

2025-06-05 04:13:11 +02:00 · 2019-12-30 10:47:54 -08:00 · 2019-12-30 10:47:54 -08:00 · ec029c679b
commit ec029c679b
parent 9a330613aa
35 changed files with 1226 additions and 445 deletions
--- a/internal/sessions/errors.go
+++ b/internal/sessions/errors.go
@ -0,0 +1,28 @@
+package sessions // import "github.com/pomerium/pomerium/internal/sessions"
+
+import (
+	"errors"
+)
+
+var (
+	// ErrNoSessionFound is the error for when no session is found.
+	ErrNoSessionFound = errors.New("internal/sessions: session is not found")
+
+	// ErrMalformed is the error for when a session is found but is malformed.
+	ErrMalformed = errors.New("internal/sessions: session is malformed")
+
+	// ErrNotValidYet indicates that token is used before time indicated in nbf claim.
+	ErrNotValidYet = errors.New("internal/sessions: validation failed, token not valid yet (nbf)")
+
+	// ErrExpired indicates that token is used after expiry time indicated in exp claim.
+	ErrExpired = errors.New("internal/sessions: validation failed, token is expired (exp)")
+
+	// ErrExpiryRequired indicates that the token does not contain a valid expiry (exp) claim.
+	ErrExpiryRequired = errors.New("internal/sessions: validation failed, token expiry (exp) is required")
+
+	// ErrIssuedInTheFuture indicates that the iat field is in the future.
+	ErrIssuedInTheFuture = errors.New("internal/sessions: validation field, token issued in the future (iat)")
+
+	// ErrInvalidAudience indicated invalid aud claim.
+	ErrInvalidAudience = errors.New("internal/sessions: validation failed, invalid audience claim (aud)")
+)