sso
sso copied to clipboard
buzzfeed
sso, aka S.S.Octopus, aka octoboi, is a single sign-on solution for securing internal services
I find some structs are repeat, such as UpstreamConfig struct and OptionsConfig struct, there are some fields are repeated, and I saw the sso-proxy code , and find it is...
Hey! I have been reading around about the project and it does look very interesting. I am trying to understand if it can fit a non-browser flow: if we wanted...
**Describe the bug** When making a request to the internal auth URL for the `/redeem` endpoint, the `Host` header for the request is being set to be the external URL....
**Is your feature request related to a problem? Please describe.** We want to use sso for our internal accesses, and also provide access to customer using basic authentication. It's great...
One can define allowed Google email addresses by setting either the `SSO_EMAIL_DOMAIN` or `SSO_EMAIL_ADDRESSES` environment variable. One can also set both variables and I wonder if I correctly understand how...
**Describe the bug** If you're on a network that doesn't use a well-behaved DNS server (like 1.1.1.1 or 8.8.8.8), and DNS is hijacked for NXDOMAIN responses, the test suite will...
Can you please add the ability to define an upsteam based on path? Or if it's already possible please provide an example or test? For instance when trying to secure...
**Is your feature request related to a problem? Please describe.** This feature request will solve a problem we're currently experiencing when the SSO is used for a cross-origin backend server....
In the ideal case, we'd implement a firewall rule and asymmetric request signing between SSO proxy and the upstream service, but we are discovering that this is impractical in many...
**Describe the bug** The SSO proxy does not handle upstream [server-sent events](https://en.wikipedia.org/wiki/Server-sent_events) (SSE) / `text/event-stream`. SSO proxy attempts to handle the request before failing with: `ReverseProxy read error during body...
