pomerium

mirror of https://github.com/pomerium/pomerium.git synced 2025-07-20 10:08:38 +02:00

History

Kenneth Jenkins 5459e6940a authorize: do not redirect if invalid client cert (#4344 ) If an authorization policy requires a client certificate, but an incoming request does not include a valid certificate, we should serve a deny error page right away, regardless of whether the user is authenticated via the identity provider or not. Do not redirect to the identity provider login page in this case. Update the existing integration tests accordingly, and add a unit test case for this scenario.		2023-07-10 16:39:26 -07:00
..
evaluator	authorize: remove JWT timestamp format workaround (#4321 )	2023-06-30 11:54:46 -07:00
internal/store	authorize: move sign out and jwks urls to route, update issuer for JWT (#4046 )	2023-03-08 12:40:15 -07:00
access_tracker.go	sets: convert set types to generics (#3519 )	2022-07-29 12:32:17 -06:00
access_tracker_test.go	databroker: add support for putting multiple records (#3291 )	2022-04-26 16:41:38 -06:00
authorize.go	keep trace span context (#3724 )	2022-11-04 17:52:13 -04:00
authorize_test.go	log context (#2107 )	2021-04-22 10:58:13 -04:00
check_response.go	authorize: do not redirect if invalid client cert (#4344 )	2023-07-10 16:39:26 -07:00
check_response_test.go	authorize: do not redirect if invalid client cert (#4344 )	2023-07-10 16:39:26 -07:00
databroker.go	authorize: fix user caching (#3734 )	2022-11-08 08:23:41 -07:00
databroker_test.go	authorize: fix user caching (#3734 )	2022-11-08 08:23:41 -07:00
grpc.go	Merge pull request from GHSA-pvrc-wvj2-f59p	2023-05-26 13:34:21 -07:00
grpc_test.go	config: remove source, remove deadcode, fix linting issues (#4118 )	2023-04-21 17:25:11 -06:00
log.go	authorize: use query instead of sync for databroker data (#3377 )	2022-06-01 15:40:07 -06:00
state.go	authenticate: fix authenticate_internal_service_url for all in one (#4003 )	2023-02-22 10:42:27 -05:00