Affected by GO-2023-1800 and 2 other vulnerabilities

GO-2023-1800: Pomerium vulnerable to Incorrect Authorization with specially crafted requests in github.com/pomerium/pomerium

GO-2024-2965: Pomerium exposed OAuth2 access and ID tokens in user info endpoint response in github.com/pomerium/pomerium

GO-2024-3179: Pomerium service account access token may grant unintended access to databroker API in github.com/pomerium/pomerium

auth0

package

v0.17.1 Latest Latest Go to latest Published: Mar 30, 2022 License: Apache-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package auth0 implements OpenID Connect for auth0

View Source

const (
	// Name identifies the Auth0 identity provider
	Name = "auth0"
)

This section is empty.

This section is empty.

type Provider struct {
	*pom_oidc.Provider
}

Provider is an Auth0 implementation of the Authenticator interface.

func New(ctx context.Context, o *oauth.Options) (*Provider, error)

New instantiates an OpenID Connect (OIDC) provider for Auth0.

func (p *Provider) Name() string

Name returns the provider name.