coreos / go-oidc

A Go OpenID Connect client.

coreos/go-oidc Issues

Option to enforce algorithm matching between JWT and JWK
Closed 2 months ago7
Upgrade go-jose to fix CVE-2024-28180
Closed 2 months ago3
Bump actions/checkout@v3, actions/setup-go@v4
Closed 2 months ago1
Test with go 1.20/ go 1.21
Closed 2 months ago1
CVE-2020-9283
Closed 3 months ago4
Figure out a strategy for handling Azure
Updated 3 months ago4
Microsoft Entra ID support for appid url parameter
Closed 3 months ago2
[question] problems inside of docker
Closed 3 months ago2
Access blocked: Authorization Error
Closed 3 months ago1
Inherit Provider http client settings in calls
Closed 5 months ago2
Allow the use of Pushed Authentication Requests when supported by the provider
Updated 5 months ago3
Access Denied
Closed 5 months ago1
code_challenge is missing
Closed 3 years ago2
Support for multiple client IDs in the verifier
Updated 6 months ago2
Extract code_challenge_methods_supported from discovery JSON
Closed 6 months ago1
Setting SameSite on the session cookie?
Updated 6 months ago
How to use UserInfo?
Closed 8 months ago3
using http instead of https?
Closed 10 months ago2
Add Scope value predefined in the specification (profile, email, address, phone)
Updated 10 months ago2
Backport PR 249 to 2.x stream?
Closed a year ago2
Add custom headers
Closed a year ago4
Support verifying access tokens provided from Client Credential Flow or Resource Owner Password Flow
Closed a year ago5
No way to check if server supports UserInfo
Closed a year ago1
Retry RemoteKeySet#updateKeys on error
Updated a year ago4
Non-expiring JWT is rejected as expired
Closed a year ago3
OpenID Connect Federation support
Updated a year ago
Verify azp claim
Updated a year ago5
Microsoft nonce and state doesn't match
Updated a year ago
Non-obvious behavior with long lived `oidc.Provider` objects: `remoteKeySet` caches original context
Closed a year ago4
Use context in new requests
Closed a year ago3
provider well-known configuration URL is not created per spec
Closed a year ago3
Request to Azure AD's open-id config occasionally fails
Closed 2 years ago1
Add oidctest package
Updated 2 years ago1
Add device flow authorization support
Closed 2 years ago2
Create a reusable server for OIDC flow in CLIs
Closed 2 years ago1
How to force re-authentication?
Closed 2 years ago1
Support scenario: AzureAD has "none" signature in ID token returned
Closed 2 years ago6
Verify calls jose.ParseSigned twice
Closed 2 years ago4
404 error while trying to get user info from keycloak
Closed 2 years ago1
issuer did not match the issuer returned by provider, expected "https://xxxxx.com" got "https://xxxxx.com/"
Closed 2 years ago1
Make ClientID in Config an array
Closed 2 years ago5
IDTokenVerifier from Provider
Closed 2 years ago2
What is the appropriate way to handle the errors returned from IDTokenVerifier.Verify()?
Updated 2 years ago2
Support provider without discovery
Closed 2 years ago12
RemoteKeySet should re-query discovery
Closed 2 years ago7
Help wanted for SPA (react) + code flow
Closed 2 years ago1
Discovery document parsing not extensible
Closed 2 years ago1
Getting error "state not found"
Closed 2 years ago3
Support self-signed certificate
Closed 3 years ago1
Expose whether UserInfo endpoint is supported by provider
Closed 3 years ago2