Sync from upstream #1
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Invokes go get -u -v ./... to try to get rid of stale dependencies cloud.google.com/[email protected] (released in December 2018) and that dependency unfortunately imported a stale version of go.opencensus.io that then transitively imports another that has a vulnerability. Change-Id: I0a520e8f979ff3ddcd6197b234cdc0f4154bb735 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/245517 Run-TryBot: Emmanuel Odeke <[email protected]> TryBot-Result: Gobot Gobot <[email protected]> Reviewed-by: Bryan C. Mills <[email protected]>
These are used to support some extended utilities to help with STS requests. Change-Id: Iafc145b06ca42374cfc2ac6572762a50bcf560f2 GitHub-Last-Rev: 3085fe5 GitHub-Pull-Request: #439 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/259777 Trust: Cody Oss <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]> Reviewed-by: Tyler Bui-Palsulich <[email protected]>
Adds the ExchangeToken() function and support structs, but depends on #439 Change-Id: Id738a27b0c2ac083409156af1f60283b9140b159 GitHub-Last-Rev: 1aa066d GitHub-Pull-Request: #444 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/261918 Run-TryBot: Tyler Bui-Palsulich <[email protected]> TryBot-Result: Go Bot <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]> Reviewed-by: Tyler Bui-Palsulich <[email protected]>
Change-Id: I90a3334507f4501ee082afeb878b82f71b3392ae Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/275303 Trust: Julie Qiu <[email protected]> Reviewed-by: Andrew Gerrand <[email protected]>
Links to godoc.org are changed to pkg.go.dev. The README badge alt text is changed to "Go Reference" to match the updated alt text generated by pkg.go.dev/badge. Change-Id: I935cbe03477131a4361a8ac7b5ba9fd3e378cbdd Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/276016 Reviewed-by: Dmitri Shuralyov <[email protected]> Reviewed-by: Andrew Gerrand <[email protected]> Trust: Julie Qiu <[email protected]>
Implements the core functionality to allow 3rd party identities access to Google APIs. Specifically, this PR implements the base account credential type and supports file-sourced credentials such as Kubernetes workloads. Later updates will add support for URL-sourced credentials such as Microsoft Azure and support for AWS credentials. Change-Id: I6e09a450f5221a1e06394b51374cff70ab3ab8a7 GitHub-Last-Rev: 3ab5162 GitHub-Pull-Request: #462 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/276312 Reviewed-by: Tyler Bui-Palsulich <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]> Run-TryBot: Tyler Bui-Palsulich <[email protected]> TryBot-Result: Go Bot <[email protected]>
NewRequestWithContext requires 1.13. As this is just a convenience we should try to retatin the 1.11 compatibility by using NewRequest then calling WithContext instead. Change-Id: I6208a92061b208a119fdf04fd561a3e4d22bc547 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/283535 Reviewed-by: Tyler Bui-Palsulich <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]> Run-TryBot: Tyler Bui-Palsulich <[email protected]> TryBot-Result: Go Bot <[email protected]>
Implements functionality to allow for URL-sourced 3rd party credentials, expanding the functionality added in #462 . Change-Id: Ib7615fb618486612960d60bee6b9a1ecf5de1404 GitHub-Last-Rev: 9571392 GitHub-Pull-Request: #466 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/283372 Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]> Reviewed-by: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]>
Change-Id: I59b4a13ed0433de7dfaa064a0f7dc1f3dd724518 GitHub-Last-Rev: 8cdc6a9 GitHub-Pull-Request: #467 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/284632 Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Reviewed-by: Cody Oss <[email protected]>
Adds support for service account impersonation when a URL for service account impersonation is provided. Change-Id: I9f3bbd6926212cecb13938fc5dac358ba56855b8 GitHub-Last-Rev: 9c21878 GitHub-Pull-Request: #468 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/285012 Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Reviewed-by: Cody Oss <[email protected]>
Change-Id: I655b38f7fb8023866bb284c7ce80ab9888682e73 GitHub-Last-Rev: 648f0b3 GitHub-Pull-Request: #471 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/287752 Reviewed-by: Cody Oss <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]>
• Subject Token needs to be query escaped • Null options need to be omitted (like they are in other languages) Change-Id: I67d1ed3ba96a35283a8928f196bc7e912084d1ab GitHub-Last-Rev: 1aae076 GitHub-Pull-Request: #474 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/290513 Reviewed-by: Cody Oss <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]>
I found some errors while manually testing service account impersonation on Azure. This PR includes the fixes that I made. Change-Id: Ia2b194be6c9a7c843e615f9789c8f8203bcbc151 GitHub-Last-Rev: 5690716 GitHub-Pull-Request: #475 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/291209 Reviewed-by: Cody Oss <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]>
Document using workload identity federation from non-Google Cloud platforms to access Google Cloud resources. This covers federation from AWS, Azure and OIDC providers via Application Default Credentials. Change-Id: I77ee7f6aac5a75d095304f07f3004ec3fb7b9613 GitHub-Last-Rev: 07c9dd0 GitHub-Pull-Request: #478 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/293751 Reviewed-by: Cody Oss <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]>
These structs and funcs cannot be used by the end consumer. Unexporting them helps cleans up our documentation Change-Id: I2eadb69e87de912ac39f53e83cd9bdfe76a15e3e GitHub-Last-Rev: 60b58ee GitHub-Pull-Request: #479 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/293752 Reviewed-by: Cody Oss <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]>
Make all our package sources use Go 1.17 gofmt format (adding //go:build lines). Not strictly necessary but will avoid spurious changes as files are edited. Part of //go:build change (#41184). See https://golang.org/design/draft-gobuild Change-Id: I22803ea9e936fbb08984a64155302f47e181de27 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/294420 Trust: Russ Cox <[email protected]> Trust: Cody Oss <[email protected]> Run-TryBot: Russ Cox <[email protected]> TryBot-Result: Go Bot <[email protected]> Reviewed-by: Cody Oss <[email protected]>
If times are stored in different time zones, then we occasionally get heisenbugs about expired tokens Change-Id: I0c117977688d8d6c7b12b211092e5040a41a1f46 GitHub-Last-Rev: 3ff51b3 GitHub-Pull-Request: #482 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/300929 Reviewed-by: Tyler Bui-Palsulich <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Trust: Cody Oss <[email protected]> Run-TryBot: Tyler Bui-Palsulich <[email protected]> TryBot-Result: Go Bot <[email protected]>
See #424 Change-Id: I1fa6230082261f60a8e41387ad2bf481df0a1fce GitHub-Last-Rev: 6fba3dd GitHub-Pull-Request: #453 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/271826 Reviewed-by: Brad Fitzpatrick <[email protected]> Trust: Brad Fitzpatrick <[email protected]> Trust: Tobias Klauser <[email protected]> Run-TryBot: Brad Fitzpatrick <[email protected]> TryBot-Result: Go Bot <[email protected]>
Added authhandler.go, which implements a TokenSource to support "three-legged OAuth 2.0" via a custom AuthorizationHandler. Added example_test.go with a sample command line implementation for AuthorizationHandler. This patch adds support for 3-legged-OAuth flow using an OAuth Client ID file downloaded from Google Cloud Console. Change-Id: Iefe54494d6f3ee326a6b1b2a81a7d5d1a7ba3331 GitHub-Last-Rev: 48fc036 GitHub-Pull-Request: #419 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/232238 Reviewed-by: Tyler Bui-Palsulich <[email protected]> Reviewed-by: Shin Fan <[email protected]> Reviewed-by: Cody Oss <[email protected]> Trust: Shin Fan <[email protected]> Trust: Cody Oss <[email protected]>
Update test cases to use const test data file references. Change-Id: Ic08b6de5a84db7b2ae2c649ee676c5a2c13f4227 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/306749 Reviewed-by: Cody Oss <[email protected]> Trust: Cody Oss <[email protected]> Trust: Tyler Bui-Palsulich <[email protected]> Run-TryBot: Cody Oss <[email protected]> TryBot-Result: Go Bot <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.