Rei Shimizu

@incfly I think there are two problems here. 1. Even though header vaue is case-insensitive from the [RFC3982](https://www.rfc-editor.org/rfc/rfc2616#section-4.2), header matching in current code is case-sensitive. It allows attackers to violate...

> 2021-11-26T23:05:05.530987Z error Request to probe app failed: Get "http://192.168.92.233:10004/healthz": dial tcp 127.0.0.6:0->192.168.92.233:10004: connect: connection refused, original URL path = /app-health/authservice/readyz It seems that healthcheck requests were failed. This is...

@ZackButcher @incfly I found that `GITHUB_TOKEN` has only permission to read `ghcr.io` on the organization level. Thus we can't run to push built images to the registry on gha. But...

@incfly It seems that permission is not enough. (All permissions are readonly)  We should configure it on the organization level. (This screenshot have taken from my...

This is why we don't have any cleanup method. https://github.com/istio-ecosystem/authservice/blob/master/src/filters/oidc/redis_session_store.cc#L227

@incfly I think it is worth doing. Should we include this in the next release plan?

@yskopets This problem seems resolved with [this](https://github.com/proxy-wasm/proxy-wasm-rust-sdk/pull/38).

@yangminzhu There is no filter API changes in this PR. I will send another PR even if we need to change it. I'd like this PR only to be re-implementation...

@yangminzhu Right. I see. I will consider the new API. Thanks.

@yangminzhu @bianpengyuan For now, building problem is resolved so that reopened to work this. But, this PR is too large to be hard to review. I prefer split out this...