Jan Larwig
Jan Larwig
@sandy2008 you have one test failure in `pkg/validation/cookie_test.go` `TestValidateCookie`. You are trying to open "magic" `/tmp/cookie-secret-32.txt` which doesn't exist
Already addressed in: https://github.com/oauth2-proxy/oauth2-proxy/pull/1923
First of all, you are right the refresh token is not supposed to have a `nonce`: > it SHOULD NOT have a nonce Claim, even when the ID Token issued...
Regarding testing we should extend the `oidc_test.go` with additional tests for the `ValidateSession` methods.
Hi @mohsek, thank you for the contribution but we do have a contribution guide and a PR description template that is automatically applied when you open a PR via the...
Furthermore, we need to check if this would interfere with the token refresh flow. Especially this PR: https://github.com/oauth2-proxy/oauth2-proxy/pull/1955
I agree with Joel this might be a breaking change for some users. There is another PR that wants to introduce a new option to actively skip validation of expiry....
your issue is your really really old keycloak version https://oauth2-proxy.github.io/oauth2-proxy/configuration/providers/keycloak_oidc I quote: ``` --oidc-issuer-url=https:///realms/ // For Keycloak versions
@jjlakis could I have your opinion on this PR?