sso
sso copied to clipboard
buzzfeed
sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services
## Problem Session state can become quite large and can easily exceed the maximum cookie size. I previously tried to fix it with #150 but that proved to be a...
## Problem We have a limited number of linters and other static code analyzers. We should add more to improve our codebase and make review better and easier. ## Solution...
We're using SSO proxy to sit in the middle of another auth component that blocks waiting for authentication to complete. We need a long timeout to allow the user to...
pr for https://github.com/buzzfeed/sso/issues/36 #### Solution Using `LDFLAGS` for the go version and looking up the version variable or the binary version
This pull request implements support for Azure AD as an identity provider. It supports groups passed to the upstream via the `X-Forwarded-Groups` header. ## Notes Requires "Read All Groups" /...
**Describe the bug** So I'm having the following errors when use `allowed_groups` options: ``` {"action":"redeem","http_status":200,"level":"info","msg":"","proxy_host":"example.com","remote_address":"1.2.3.4","request_duration":0.21089899999999998,"request_method":"POST","request_uri":"/redeem","service":"sso-authenticator","time":"2019-07-19 09:59:34.7199","user":"[email protected]","user_agent":"sso_proxy/HEAD"} {"circuit_change_from":2,"circuit_change_to":1,"level":"info","msg":"circuit breaker trigger","service":"sso-authenticator","time":"2019-07-19 09:59:34.7199"} {"circuit_change_from":1,"circuit_change_to":2,"level":"info","msg":"circuit breaker trigger","service":"sso-authenticator","time":"2019-07-19 09:59:35.7199"} {"backoff_duration":557015243,"backoff_reset":"2019-07-19T09:59:35.592592582Z","level":"info","msg":"circuit breaker backoff set","service":"sso-authenticator","time":"2019-07-19 09:59:35.7199"} {"error":"googleapi:...
**Is your feature request related to a problem? Please describe.** We have a frontend service, behind SSO, running on `frontend.sso.example.com` that makes XHR calls to a backend service at `backend.sso.example.com`....
**Describe the bug** Getting 500 internal server error after authenticating with google on redirect in quickstart. **Screenshots** 
## Background The `github.com/buzzfeed/sso` uses [Go modules](https://github.com/golang/go/wiki/Modules) and the current release version is `v2`. And it’s module path is `"github.com/buzzfeed/sso"`, instead of `"github.com/buzzfeed/sso/v2"`. It must comply with the specification of...
**Describe the bug** When protecting both `yyy.xxx.website.com` and `xxx.website.com`, if I sign out via `yyy.xxx.website.com/oauth2/sign_out`, I can still access `yyy.xxx.website.com`. It feels like it is related to the cookie of...
