oidctestutil

package

Go to main page

Versions in this module

v0

v0.35.0

Nov 5, 2024

v0.34.0

Oct 16, 2024

v0.33.0

Aug 7, 2024

v0.32.0

Jun 18, 2024

v0.31.0

Jun 5, 2024

Changes in this version

+ type ExchangeAuthcodeArgs struct

+ Authcode string

+ Ctx context.Context

+ RedirectURI string

+ type GetUserArgs struct

+ AccessToken string

+ Ctx context.Context

+ IDPDisplayName string

+ type PerformLDAPRefreshArgs struct

+ Ctx context.Context

+ IDPDisplayName string

+ StoredRefreshAttributes upstreamprovider.LDAPRefreshAttributes

+ type PerformOIDCRefreshArgs struct

+ Ctx context.Context

+ RefreshToken string

+ type TestUpstreamGitHubIdentityProvider struct

+ AllowedOrganizations *setutil.CaseInsensitiveSet

+ AuthorizationURL string

+ ClientID string

+ DisplayNameForFederationDomain string

+ ExchangeAuthcodeFunc func(ctx context.Context, authcode string) (string, error)

+ GetUserFunc func(ctx context.Context, accessToken string) (*upstreamprovider.GitHubUser, error)

+ GroupNameAttribute v1alpha1.GitHubGroupNameAttribute

+ Name string

+ ResourceUID types.UID

+ Scopes []string

+ TransformsForFederationDomain *idtransform.TransformationPipeline

+ UsernameAttribute v1alpha1.GitHubUsernameAttribute

+ func (u *TestUpstreamGitHubIdentityProvider) ExchangeAuthcode(ctx context.Context, authcode string, redirectURI string) (string, error)

+ func (u *TestUpstreamGitHubIdentityProvider) ExchangeAuthcodeArgs(call int) *ExchangeAuthcodeArgs

+ func (u *TestUpstreamGitHubIdentityProvider) ExchangeAuthcodeCallCount() int

+ func (u *TestUpstreamGitHubIdentityProvider) GetAllowedOrganizations() *setutil.CaseInsensitiveSet

+ func (u *TestUpstreamGitHubIdentityProvider) GetAuthorizationURL() string

+ func (u *TestUpstreamGitHubIdentityProvider) GetClientID() string

+ func (u *TestUpstreamGitHubIdentityProvider) GetGroupNameAttribute() v1alpha1.GitHubGroupNameAttribute

+ func (u *TestUpstreamGitHubIdentityProvider) GetResourceName() string

+ func (u *TestUpstreamGitHubIdentityProvider) GetResourceUID() types.UID

+ func (u *TestUpstreamGitHubIdentityProvider) GetScopes() []string

+ func (u *TestUpstreamGitHubIdentityProvider) GetUser(ctx context.Context, accessToken string, idpDisplayName string) (*upstreamprovider.GitHubUser, error)

+ func (u *TestUpstreamGitHubIdentityProvider) GetUserArgs(call int) *GetUserArgs

+ func (u *TestUpstreamGitHubIdentityProvider) GetUserCallCount() int

+ func (u *TestUpstreamGitHubIdentityProvider) GetUsernameAttribute() v1alpha1.GitHubUsernameAttribute

+ type TestUpstreamGitHubIdentityProviderBuilder struct

+ func NewTestUpstreamGitHubIdentityProviderBuilder() *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) Build() *TestUpstreamGitHubIdentityProvider

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithAccessToken(token string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithAllowedOrganizations(value *setutil.CaseInsensitiveSet) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithAuthcodeExchangeError(err error) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithAuthorizationURL(value string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithClientID(value string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithDisplayNameForFederationDomain(value string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithGetUserError(err error) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithGroupNameAttribute(value v1alpha1.GitHubGroupNameAttribute) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithName(value string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithResourceUID(value types.UID) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithScopes(value []string) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithTransformsForFederationDomain(transforms *idtransform.TransformationPipeline) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithUser(user *upstreamprovider.GitHubUser) *TestUpstreamGitHubIdentityProviderBuilder

+ func (u *TestUpstreamGitHubIdentityProviderBuilder) WithUsernameAttribute(value v1alpha1.GitHubUsernameAttribute) *TestUpstreamGitHubIdentityProviderBuilder

type TestUpstreamLDAPIdentityProvider

+ func (u *TestUpstreamLDAPIdentityProvider) GetResourceName() string

type TestUpstreamOIDCIdentityProvider

+ func (u *TestUpstreamOIDCIdentityProvider) GetResourceName() string

type UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithUpstreamIDPName(upstreamIDPName string) *UpstreamStateParamBuilder

v0.30.0

May 9, 2024

v0.29.0

Mar 13, 2024

Changes in this version

type TestUpstreamOIDCIdentityProvider

+ func (u *TestUpstreamOIDCIdentityProvider) PasswordCredentialsGrantAndValidateTokensArgs(call int) *PasswordCredentialsGrantAndValidateTokensArgs

+ func (u *TestUpstreamOIDCIdentityProvider) PasswordCredentialsGrantAndValidateTokensCallCount() int

v0.28.0

Dec 13, 2023

Changes in this version

type TestFederationDomainIdentityProvidersListerFinder

+ func (t *TestFederationDomainIdentityProvidersListerFinder) HasDefaultIDP() bool

+ func (t *TestFederationDomainIdentityProvidersListerFinder) IDPCount() int

v0.27.0

Oct 10, 2023

v0.26.0

Sep 19, 2023

Changes in this version

+ type TestFederationDomainIdentityProvidersListerFinder struct

+ func (t *TestFederationDomainIdentityProvidersListerFinder) FindDefaultIDP() (*resolvedprovider.FederationDomainResolvedOIDCIdentityProvider, ...)

+ func (t *TestFederationDomainIdentityProvidersListerFinder) FindUpstreamIDPByDisplayName(upstreamIDPDisplayName string) (*resolvedprovider.FederationDomainResolvedOIDCIdentityProvider, ...)

+ func (t *TestFederationDomainIdentityProvidersListerFinder) GetActiveDirectoryIdentityProviders() []*resolvedprovider.FederationDomainResolvedLDAPIdentityProvider

+ func (t *TestFederationDomainIdentityProvidersListerFinder) GetLDAPIdentityProviders() []*resolvedprovider.FederationDomainResolvedLDAPIdentityProvider

+ func (t *TestFederationDomainIdentityProvidersListerFinder) GetOIDCIdentityProviders() []*resolvedprovider.FederationDomainResolvedOIDCIdentityProvider

+ func (t *TestFederationDomainIdentityProvidersListerFinder) SetActiveDirectoryIdentityProviders(providers []*TestUpstreamLDAPIdentityProvider)

+ func (t *TestFederationDomainIdentityProvidersListerFinder) SetLDAPIdentityProviders(providers []*TestUpstreamLDAPIdentityProvider)

+ func (t *TestFederationDomainIdentityProvidersListerFinder) SetOIDCIdentityProviders(providers []*TestUpstreamOIDCIdentityProvider)

type TestUpstreamLDAPIdentityProvider

+ DisplayNameForFederationDomain string

+ TransformsForFederationDomain *idtransform.TransformationPipeline

+ type TestUpstreamLDAPIdentityProviderBuilder struct

+ func NewTestUpstreamLDAPIdentityProviderBuilder() *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) Build() *TestUpstreamLDAPIdentityProvider

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithAuthenticateFunc(...) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithDisplayNameForFederationDomain(displayName string) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithName(name string) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithPerformRefreshArgs(args []*PerformRefreshArgs) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithPerformRefreshCallCount(count int) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithPerformRefreshErr(err error) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithPerformRefreshGroups(groups []string) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithResourceUID(uid types.UID) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithTransformsForFederationDomain(transforms *idtransform.TransformationPipeline) *TestUpstreamLDAPIdentityProviderBuilder

+ func (t *TestUpstreamLDAPIdentityProviderBuilder) WithURL(url *url.URL) *TestUpstreamLDAPIdentityProviderBuilder

type TestUpstreamOIDCIdentityProvider

+ DisplayNameForFederationDomain string

+ TransformsForFederationDomain *idtransform.TransformationPipeline

type TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithDisplayNameForFederationDomain(displayName string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithTransformsForFederationDomain(transforms *idtransform.TransformationPipeline) *TestUpstreamOIDCIdentityProviderBuilder

type UpstreamIDPListerBuilder

+ func (b *UpstreamIDPListerBuilder) BuildDynamicUpstreamIDPProvider() dynamicupstreamprovider.DynamicUpstreamIDPProvider

+ func (b *UpstreamIDPListerBuilder) BuildFederationDomainIdentityProvidersListerFinder() *TestFederationDomainIdentityProvidersListerFinder

+ func (b *UpstreamIDPListerBuilder) WithDefaultIDPDisplayName(defaultIDPDisplayName string) *UpstreamIDPListerBuilder

v0.25.0

Aug 9, 2023

v0.24.0

Jun 1, 2023

v0.23.0

Apr 4, 2023

v0.22.0

Jan 19, 2023

Changes in this version

type TestUpstreamOIDCIdentityProvider

+ AdditionalClaimMappings map[string]string

+ func (u *TestUpstreamOIDCIdentityProvider) GetAdditionalClaimMappings() map[string]string

type TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithAdditionalClaimMappings(m map[string]string) *TestUpstreamOIDCIdentityProviderBuilder

v0.21.0

Dec 15, 2022

v0.20.0

Sep 27, 2022

Changes in this version

+ func FilterClientSecretCreateActions(actions []kubetesting.Action) []kubetesting.Action

v0.19.0

Aug 26, 2022

v0.18.0

Jun 8, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

type ExpectedUpstreamStateParamFormat

+ T string

+ type UpstreamStateParamBuilder ExpectedUpstreamStateParamFormat

+ func (b *UpstreamStateParamBuilder) WithAuthorizeRequestParams(params string) *UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithCSRF(csrf string) *UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithNonce(nonce string) *UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithPKCE(pkce string) *UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithStateVersion(version string) *UpstreamStateParamBuilder

+ func (b *UpstreamStateParamBuilder) WithUpstreamIDPType(upstreamIDPType string) *UpstreamStateParamBuilder

+ func (b UpstreamStateParamBuilder) Build(t *testing.T, stateEncoder *securecookie.SecureCookie) string

v0.17.0

May 5, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.16.0

Apr 19, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.15.0

Mar 3, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

type TestUpstreamLDAPIdentityProvider

+ PerformRefreshGroups []string

v0.14.0

Feb 9, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.13.0

Jan 21, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

+ type PerformRefreshArgs struct

+ Ctx context.Context

+ DN string

+ ExpectedSubject string

+ ExpectedUsername string

+ RefreshToken string

+ type RevokeTokenArgs struct

+ Ctx context.Context

+ Token string

+ TokenType provider.RevocableTokenType

type TestUpstreamLDAPIdentityProvider

+ PerformRefreshErr error

+ ResourceUID types.UID

+ func (u *TestUpstreamLDAPIdentityProvider) GetResourceUID() types.UID

+ func (u *TestUpstreamLDAPIdentityProvider) PerformRefresh(ctx context.Context, storedRefreshAttributes provider.StoredRefreshAttributes) error

+ func (u *TestUpstreamLDAPIdentityProvider) PerformRefreshArgs(call int) *PerformRefreshArgs

+ func (u *TestUpstreamLDAPIdentityProvider) PerformRefreshCallCount() int

type TestUpstreamOIDCIdentityProvider

+ AdditionalAuthcodeParams map[string]string

+ PerformRefreshFunc func(ctx context.Context, refreshToken string) (*oauth2.Token, error)

+ ResourceUID types.UID

+ RevocationURL *url.URL

+ RevokeTokenFunc func(ctx context.Context, refreshToken string, ...) error

+ UserInfoURL bool

+ ValidateTokenAndMergeWithUserInfoFunc func(ctx context.Context, tok *oauth2.Token, expectedIDTokenNonce nonce.Nonce) (*oidctypes.Token, error)

+ func (u *TestUpstreamOIDCIdentityProvider) GetAdditionalAuthcodeParams() map[string]string

+ func (u *TestUpstreamOIDCIdentityProvider) GetResourceUID() types.UID

+ func (u *TestUpstreamOIDCIdentityProvider) GetRevocationURL() *url.URL

+ func (u *TestUpstreamOIDCIdentityProvider) HasUserInfoURL() bool

+ func (u *TestUpstreamOIDCIdentityProvider) PerformRefresh(ctx context.Context, refreshToken string) (*oauth2.Token, error)

+ func (u *TestUpstreamOIDCIdentityProvider) PerformRefreshArgs(call int) *PerformRefreshArgs

+ func (u *TestUpstreamOIDCIdentityProvider) PerformRefreshCallCount() int

+ func (u *TestUpstreamOIDCIdentityProvider) RevokeToken(ctx context.Context, token string, tokenType provider.RevocableTokenType) error

+ func (u *TestUpstreamOIDCIdentityProvider) RevokeTokenArgs(call int) *RevokeTokenArgs

+ func (u *TestUpstreamOIDCIdentityProvider) RevokeTokenCallCount() int

+ func (u *TestUpstreamOIDCIdentityProvider) ValidateTokenAndMergeWithUserInfo(ctx context.Context, tok *oauth2.Token, expectedIDTokenNonce nonce.Nonce, ...) (*oidctypes.Token, error)

+ func (u *TestUpstreamOIDCIdentityProvider) ValidateTokenAndMergeWithUserInfoArgs(call int) *ValidateTokenAndMergeWithUserInfoArgs

+ func (u *TestUpstreamOIDCIdentityProvider) ValidateTokenAndMergeWithUserInfoCallCount() int

type TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithAccessToken(token string, expiry metav1.Time) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithAdditionalAuthcodeParams(params map[string]string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithEmptyAccessToken() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithEmptyRefreshToken() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithPerformRefreshError(err error) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithRefreshToken(token string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithRefreshedTokens(tokens *oauth2.Token) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithResourceUID(value types.UID) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithRevokeTokenError(err error) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithUserInfoURL() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithValidateTokenAndMergeWithUserInfoError(err error) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithValidatedAndMergedWithUserInfoTokens(tokens *oidctypes.Token) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutAccessToken() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutRefreshToken() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutUserInfoURL() *TestUpstreamOIDCIdentityProviderBuilder

type UpstreamIDPListerBuilder

+ func (b *UpstreamIDPListerBuilder) RequireExactlyOneCallToPerformRefresh(t *testing.T, expectedPerformedByUpstreamName string, ...)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyOneCallToRevokeToken(t *testing.T, expectedPerformedByUpstreamName string, ...)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyOneCallToValidateToken(t *testing.T, expectedPerformedByUpstreamName string, ...)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyZeroCallsToPerformRefresh(t *testing.T)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyZeroCallsToRevokeToken(t *testing.T)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyZeroCallsToValidateToken(t *testing.T)

+ type ValidateRefreshArgs struct

+ Ctx context.Context

+ StoredAttributes provider.StoredRefreshAttributes

+ Tok *oauth2.Token

+ type ValidateTokenAndMergeWithUserInfoArgs struct

+ Ctx context.Context

+ ExpectedIDTokenNonce nonce.Nonce

+ RequireIDToken bool

+ RequireUserInfo bool

+ Tok *oauth2.Token

v0.12.1

Feb 9, 2022 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.12.0

Sep 16, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.11.0

Aug 31, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

+ type PasswordCredentialsGrantAndValidateTokensArgs struct

+ Ctx context.Context

+ Password string

+ Username string

type TestUpstreamOIDCIdentityProvider

+ AllowPasswordGrant bool

+ PasswordCredentialsGrantAndValidateTokensFunc func(ctx context.Context, username string, password string) (*oidctypes.Token, error)

+ func (u *TestUpstreamOIDCIdentityProvider) AllowsPasswordGrant() bool

+ func (u *TestUpstreamOIDCIdentityProvider) PasswordCredentialsGrantAndValidateTokens(ctx context.Context, username, password string) (*oidctypes.Token, error)

+ type TestUpstreamOIDCIdentityProviderBuilder struct

+ func NewTestUpstreamOIDCIdentityProviderBuilder() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) Build() *TestUpstreamOIDCIdentityProvider

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithAllowPasswordGrant(value bool) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithAuthorizationURL(value url.URL) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithClientID(value string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithGroupsClaim(value string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithIDTokenClaim(name string, value interface{}) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithName(value string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithPasswordGrantError(err error) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithScopes(values []string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithUpstreamAuthcodeExchangeError(err error) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithUsernameClaim(value string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutGroupsClaim() *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutIDTokenClaim(claim string) *TestUpstreamOIDCIdentityProviderBuilder

+ func (u *TestUpstreamOIDCIdentityProviderBuilder) WithoutUsernameClaim() *TestUpstreamOIDCIdentityProviderBuilder

type UpstreamIDPListerBuilder

+ func (b *UpstreamIDPListerBuilder) RequireExactlyOneCallToExchangeAuthcodeAndValidateTokens(t *testing.T, expectedPerformedByUpstreamName string, ...)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyOneCallToPasswordCredentialsGrantAndValidateTokens(t *testing.T, expectedPerformedByUpstreamName string, ...)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyZeroCallsToExchangeAuthcodeAndValidateTokens(t *testing.T)

+ func (b *UpstreamIDPListerBuilder) RequireExactlyZeroCallsToPasswordCredentialsGrantAndValidateTokens(t *testing.T)

+ func (b *UpstreamIDPListerBuilder) WithActiveDirectory(upstreamActiveDirectoryIdentityProviders ...*TestUpstreamLDAPIdentityProvider) *UpstreamIDPListerBuilder

v0.10.0

Jul 30, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

+ func RequireAuthCodeRegexpMatch(t *testing.T, actualContent string, wantRegexp string, ...)

v0.9.2

Jun 14, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.9.1

Jun 3, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

v0.9.0

Jun 1, 2021 GO-2022-0981

GO-2022-0981: Pinniped Supervisor Insufficient Session Expiration vulnerability in go.pinniped.dev

Changes in this version

+ func RequireAuthcodeRedirectLocation(t *testing.T, actualRedirectLocation string, wantRedirectLocationRegexp string, ...)

+ func VerifyECDSAIDToken(t *testing.T, issuer, clientID string, jwtSigningKey *ecdsa.PrivateKey, ...) *coreosoidc.IDToken

+ type ExchangeAuthcodeAndValidateTokenArgs struct

+ Authcode string

+ Ctx context.Context

+ ExpectedIDTokenNonce nonce.Nonce

+ PKCECodeVerifier pkce.Code

+ RedirectURI string

+ type ExpectedUpstreamStateParamFormat struct

+ C string

+ K string

+ N string

+ P string

+ U string

+ V string

+ type TestUpstreamLDAPIdentityProvider struct

+ AuthenticateFunc func(ctx context.Context, username, password string) (*authenticator.Response, bool, error)

+ Name string

+ URL *url.URL

+ func (u *TestUpstreamLDAPIdentityProvider) AuthenticateUser(ctx context.Context, username, password string) (*authenticator.Response, bool, error)

+ func (u *TestUpstreamLDAPIdentityProvider) GetName() string

+ func (u *TestUpstreamLDAPIdentityProvider) GetURL() *url.URL

+ type TestUpstreamOIDCIdentityProvider struct

+ AuthorizationURL url.URL

+ ClientID string

+ ExchangeAuthcodeAndValidateTokensFunc func(ctx context.Context, authcode string, pkceCodeVerifier pkce.Code, ...) (*oidctypes.Token, error)

+ GroupsClaim string

+ Name string

+ Scopes []string

+ UsernameClaim string

+ func (u *TestUpstreamOIDCIdentityProvider) ExchangeAuthcodeAndValidateTokens(ctx context.Context, authcode string, pkceCodeVerifier pkce.Code, ...) (*oidctypes.Token, error)

+ func (u *TestUpstreamOIDCIdentityProvider) ExchangeAuthcodeAndValidateTokensArgs(call int) *ExchangeAuthcodeAndValidateTokenArgs

+ func (u *TestUpstreamOIDCIdentityProvider) ExchangeAuthcodeAndValidateTokensCallCount() int

+ func (u *TestUpstreamOIDCIdentityProvider) GetAuthorizationURL() *url.URL

+ func (u *TestUpstreamOIDCIdentityProvider) GetClientID() string

+ func (u *TestUpstreamOIDCIdentityProvider) GetGroupsClaim() string

+ func (u *TestUpstreamOIDCIdentityProvider) GetName() string

+ func (u *TestUpstreamOIDCIdentityProvider) GetScopes() []string

+ func (u *TestUpstreamOIDCIdentityProvider) GetUsernameClaim() string

+ func (u *TestUpstreamOIDCIdentityProvider) ValidateToken(_ context.Context, _ *oauth2.Token, _ nonce.Nonce) (*oidctypes.Token, error)

+ type UpstreamIDPListerBuilder struct

+ func NewUpstreamIDPListerBuilder() *UpstreamIDPListerBuilder

+ func (b *UpstreamIDPListerBuilder) Build() provider.DynamicUpstreamIDPProvider

+ func (b *UpstreamIDPListerBuilder) WithLDAP(upstreamLDAPIdentityProviders ...*TestUpstreamLDAPIdentityProvider) *UpstreamIDPListerBuilder

+ func (b *UpstreamIDPListerBuilder) WithOIDC(upstreamOIDCIdentityProviders ...*TestUpstreamOIDCIdentityProvider) *UpstreamIDPListerBuilder

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL