Affected by GO-2024-2965 and 1 other vulnerabilities

GO-2024-2965: Pomerium exposed OAuth2 access and ID tokens in user info endpoint response in github.com/pomerium/pomerium

GO-2024-3179: Pomerium service account access token may grant unintended access to databroker API in github.com/pomerium/pomerium

header

package

v0.25.1 Latest Latest Go to latest Published: Mar 13, 2024 License: Apache-2.0 Imports: 5 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/pomerium/pomerium

Links

Open Source Insights

Documentation ¶

Overview ¶

Package header provides a request header based implementation of a session loader.

Index ¶

func TokenFromHeaders(r *http.Request) string
type Store
- func NewStore(enc encoding.Unmarshaler) *Store
- func (as *Store) LoadSession(r *http.Request) (string, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func TokenFromHeaders ¶ added in v0.16.0

func TokenFromHeaders(r *http.Request) string

TokenFromHeaders retrieves the value of the authorization header(s) from a given request and authentication type.

Types ¶

type Store ¶

type Store struct {
	// contains filtered or unexported fields
}

Store implements the load session store interface using http authorization headers.

func NewStore ¶

func NewStore(enc encoding.Unmarshaler) *Store

NewStore returns a new header store for loading sessions from authorization header as defined in as defined in rfc2617

NOTA BENE: While most servers do not log Authorization headers by default, you should ensure no other services are logging or leaking your auth headers.

func (*Store) LoadSession ¶

func (as *Store) LoadSession(r *http.Request) (string, error)

LoadSession tries to retrieve the token string from the Authorization header.

Source Files ¶

View all Source files

header_store.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL