Joe Finney
ae79677fd0
Remove global var for OIDC retry/backoff, and remove retries from unit tests.
2016-04-07 14:18:29 -07:00
Harry Zhang
a4d04095d0
Refactor crlf & crypto
2016-03-21 20:20:05 +08:00
Eric Chiang
8df55ddbe5
plugin/pkg/auth/authenticator/token/oidc: update test to new go-oidc types
...
The provider config has changed a little bit in go-oidc. It is more
complete and now throws errors when unmarshaling provider configs
that are missing required fields (as defined by the OpenID Connect
Discovery spec).
Update the oidc plugin to use the new type.
2016-03-01 11:39:18 -08:00
k8s-merge-robot
7f1b699880
Merge pull request #21071 from soltysh/server_close
...
Auto commit by PR queue bot
2016-02-23 06:34:27 -08:00
k8s-merge-robot
f366baeaeb
Merge pull request #21128 from yifan-gu/fix_oidc_tailing_slash_issuer
...
Auto commit by PR queue bot
2016-02-15 17:46:49 -08:00
k8s-merge-robot
43fb544a4a
Merge pull request #21001 from ericchiang/oidc_groups
...
Auto commit by PR queue bot
2016-02-14 05:24:43 -08:00
Eric Chiang
92d37d5cc5
plugin/pkg/auth/authenticator/token/oidc: get groups from custom claim
2016-02-12 09:58:18 -08:00
Dan Williams
905dfd9b77
Fix another instance of golang #12262
...
Reliably reproducible on two up-to-date Fedora 23 machines using
go 1.5.3, both one Core i7-4770R and a Core i7-4790.
https://github.com/golang/go/issues/12262
2016-02-12 10:04:48 -06:00
Yifan Gu
36bd693d3a
oidc: Remove tailing slash before fetching the provider config.
2016-02-12 16:40:45 +08:00
Maciej Szulik
72654d347c
Comment out calls to httptest.Server.Close() to work around
...
https://github.com/golang/go/issues/12262 . See #19254 for
more details. This change should be reverted when we upgrade
to Go 1.6.
2016-02-11 16:16:11 +01:00
Harry Zhang
936a11e775
Use networking to hold network related pkgs
...
Change names of unclear methods
Use net as pkg name for short
2016-01-15 13:46:16 +08:00
David Oppenheimer
8ac484793d
Comment out calls to httptest.Server.Close() to work around
...
https://github.com/golang/go/issues/12262 . See #19254 for
more details. This change should be reverted when we upgrade
to Go 1.6.
2016-01-11 23:02:11 -08:00
Yifan Gu
04db432fb4
auth: Add Close() for OIDC authenticator.
2015-12-23 01:26:20 -08:00
Yifan Gu
207fb721b9
Godeps: bump go-oidc to fix the race in tests.
2015-12-14 13:32:16 -08:00
Rohith
ee691aa1ab
[tokenfile]
...
- the groups field has been changed to a single column option as requested in https://github.com/kubernetes/kubernetes/pull/15704
[docs]
- updated the docs related the the tokefile along with an example
2015-10-21 10:37:35 +01:00
Rohith
f02c80584b
[plugin/auth/tokenfile]
...
- allowing for variable length groups to be added to the static token file
[docs/admin/authentication]
- updating the documentation for token file
2015-10-19 17:14:14 +01:00
Jordan Liggitt
2a1286c8f2
Add util to set transport defaults
2015-10-02 02:29:46 -04:00
Yifan Gu
ae22bd5710
plugin/pkg/auth: add tests for OpenID Connect authenticator.
2015-08-21 15:27:08 -07:00
Yifan Gu
6376e41850
plugin/pkg/auth: add OpenID Connect token authenticator.
...
Also add related new flags to apiserver:
"--oidc-issuer-url", "--oidc-client-id", "--oidc-ca-file", "--oidc-username-claim",
to enable OpenID Connect authentication.
2015-08-21 15:27:08 -07:00
Mike Danese
8e33cbfa28
rewrite go imports
2015-08-05 17:30:03 -07:00
Eric Paris
6b3a6e6b98
Make copyright ownership statement generic
...
Instead of saying "Google Inc." (which is not always correct) say "The
Kubernetes Authors", which is generic.
2015-05-01 17:49:56 -04:00
Jordan Liggitt
c895331277
Make master take authenticator.Request interface instead of tokenfile
2014-11-19 15:07:51 -05:00