pinniped

pinniped copied to clipboard

It would be nice to support transformations like are proposed in #1407 on values from the additionalClaimMappings in OIDCIdentityProvider. Here are two examples based on an additional claim named `org_id`...

jeffmace

* Do we need separate FIPS and non-FIPS compilations? * Can we use Paketo to gain any benefit? * Can we use `GOEXPERIMENT=boringcrypto` instead of our custom build tag `fips_strict`?...

joshuatcasey

**Is your feature request related to a problem? Please describe.** For a user who does not have background in auth, explain what is Kubernetes auth and how does it work,...

cfryanr

Superfluous error logs when only `ImpersonationProxy` strategy is available

1

**Is your feature request related to a problem? Please describe.** When running Pinniped Concierge in a managed Kubernetes cluster like EKS, it regularly logs error messages stating that it can't...

peterbuecker-form3

**Is your feature request related to a problem? Please describe.** This would document the answer to very commonly asked questions. **Describe the solution you'd like** A new doc page on...

cfryanr

**Is your feature request related to a problem? Please describe.** This would answer a very common question. The docs do not make the benefits clear enough. E.g. see this conversation...

cfryanr

**What happened?** > Every time access token lifetime ends (5 minutes), user it's prompted again to authenticate because refresh token workflow fails. **What did you expect to happen?** > Refresh...

albgf88

Limit TLS ciphers for tls1.2

4

Limit TLS ciphers for tls1.2. Fixes #1605. Replaces #1927.

joshuatcasey

Use plog.Logger instead of logr.Logger wherever possible

1

Use plog.Logger instead of logr.Logger wherever possible

joshuatcasey

Enforce import aliases

1

Enforce import aliases

joshuatcasey