pomerium

3763 commits 165 branches 127 tags 105 MiB

Author	SHA1	Message	Date
Caleb Doxsey	93b8c93daa	authenticate: add support for apple identity tokens (#5610 ) ## Summary Add support for IdP identity token authorization for Apple. Apple does not appear to support access token validation. This allows a user to pass an identity token directly as a bearer token: ``` curl -H 'Authorization: Bearer Apple-Identity-Token' ... ``` ## Related issues - [ENG-2000](https://linear.app/pomerium/issue/ENG-2000/core-implement-token-validation-for-apple) ## Checklist - [x] reference any related issues - [x] updated unit tests - [x] add appropriate label (`enhancement`, `bug`, `breaking`, `dependencies`, `ci`) - [x] ready for review	2025-05-09 11:01:34 -06:00
Caleb Doxsey	b9fd926618	authorize: support authenticating with idp tokens (#5484 ) * identity: add support for verifying access and identity tokens * allow overriding with policy option * authenticate: add verify endpoints * wip * implement session creation * add verify test * implement idp token login * fix tests * add pr permission * make session ids route-specific * rename method * add test * add access token test * test for newUserFromIDPClaims * more tests * make the session id per-idp * use type for * add test * remove nil checks	2025-02-18 13:02:06 -07:00
Joe Kralicky	332932b7a8	Replace usages of x/exp/maps + bump golang.org/x/exp (#5221 ) Bump golang.org/x/exp; replace usages of x/exp/maps with stdlib equivalents	2024-08-15 17:49:24 -04:00
Caleb Doxsey	d225288ab3	core/identity: dynamic authenticator registration (#5105 )	2024-05-07 16:45:39 -06:00

Renamed from internal/identity/oauth/apple/apple.go (Browse further)

4 commits