pomerium

mirror of https://github.com/pomerium/pomerium.git synced 2025-07-06 19:38:09 +02:00

History

Kenneth Jenkins e448909042 authorize: remove incorrect "valid-client-certificate" reason (#4470 ) Fix the logic around when to add the default invalid_client_certificate rule: this should only be added if mTLS is enabled and the enforcement mode is not set to "policy". Add a unit test for this logic.		2023-08-17 08:13:57 -07:00
..
evaluator	authorize: rework token substitution in headers (#4456 )	2023-08-14 15:28:10 -07:00
internal/store	authorize: move sign out and jwks urls to route, update issuer for JWT (#4046 )	2023-03-08 12:40:15 -07:00
access_tracker.go	sets: convert set types to generics (#3519 )	2022-07-29 12:32:17 -06:00
access_tracker_test.go	databroker: add support for putting multiple records (#3291 )	2022-04-26 16:41:38 -06:00
authorize.go	authorize: remove incorrect "valid-client-certificate" reason (#4470 )	2023-08-17 08:13:57 -07:00
authorize_test.go	authorize: remove incorrect "valid-client-certificate" reason (#4470 )	2023-08-17 08:13:57 -07:00
check_response.go	authorize: add "client-certificate-required" reason (#4389 )	2023-07-25 10:03:51 -07:00
check_response_test.go	authorize: add "client-certificate-required" reason (#4389 )	2023-07-25 10:03:51 -07:00
databroker.go	authorize: fix user caching (#3734 )	2022-11-08 08:23:41 -07:00
databroker_test.go	authorize: fix user caching (#3734 )	2022-11-08 08:23:41 -07:00
grpc.go	authorize: do not rely on Envoy client cert validation (#4438 )	2023-08-03 10:45:55 -07:00
grpc_test.go	authorize: do not rely on Envoy client cert validation (#4438 )	2023-08-03 10:45:55 -07:00
log.go	authorize: log id token claims separately from id token (#4394 )	2023-07-26 11:45:10 -06:00
log_test.go	authorize: log id token claims separately from id token (#4394 )	2023-07-26 11:45:10 -06:00
state.go	authenticate: fix authenticate_internal_service_url for all in one (#4003 )	2023-02-22 10:42:27 -05:00