go-oidc
go-oidc copied to clipboard
coreos
A Go OpenID Connect client.
First off, thanks for maintaining this project! I recently updated go-oidc, and realised that #364 is actually a breaking change in some cases. After this change, go-oidc uses the deadline...
It would be helpful to be able to call `ProviderConfig()` on Provider to return a reusable config, or make the fields not private I'm working on a project that requires...
Hi, I am trying to figure out open-id connect with Microsoft. I am getting nonce and state doesn't match errors. Cookie in the browser doesn't seem to update. If I...
Could be error inside parsing remoteKeySet After library update to v3.10.0 from 3.9.0 got this error in parsing remote key. oidc: invalid userinfo jwt signature fetching keys oidc: failed to...
It would be good if this package correctly and safely picked the issuer and discovery values for Azure AD. There are nuances about the tentantID and policyName that I'm not...
This method is similar to this [one](https://cs.opensource.google/go/x/oauth2/+/d3ed0bb2:token.go;l=86). I need a way, in my test cases, to return an ID Token from my mock verifier, I currently use this [reflect hack](https://github.com/drakkan/sftpgo/blob/main/httpd/oidc_test.go#L72).
I would like to be able to use PAR with go-oidc, but sadly it does not seem to support that. See https://datatracker.ietf.org/doc/html/rfc9126 and https://medium.com/oauth-2/pushed-authorization-requests-draft-adopted-by-oauth-working-group-a1060007150f I am willing to take a...
This is required if an RP wants to use PKCE, but doesn't know whether the provider supports the code challenge or not.
This Pull Request adds error types to some of the errors returned but the `IDTokenVerifier.Verify` method. The reasoning here is that in some cases these errors can return more information...
We use `github.com/coreos/go-oidc`. IDTokenVerifier in the [Kubernetes authenticator package](https://github.com/kubernetes/kubernetes/blob/master/staging/src/k8s.io/apiserver/plugin/pkg/authenticator/token/oidc/oidc.go#L297). I'm working on supporting [Structured Authentication Configuration](https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/3331-structured-authentication-configuration) in Kubernetes. As part of this feature, we're going to support configuring multiple client...
