google: Add support for OAuth2 token exchange over mTLS #630
Conversation
Add OAuthClientTokenSource in google/google.go Add DefaultAuthorizationHandler in authhandler.go
Added authhandler.go, which implements a TokenSource to support "three-legged OAuth 2.0" via a custom AuthorizationHandler. Added default_authhandler.go to provide a command line implementation for AuthorizationHandler.
Sync from upstream
Sync with upstream master
|
This PR (HEAD: d171fca) has been imported to Gerrit for code review. Please visit https://go-review.googlesource.com/c/oauth2/+/470396 to see it. Tip: You can toggle comments from me using the |
|
Message from Shin Fan: Patch Set 1: Code-Review+2 Run-TryBot+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 1: TryBot-Result+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Andy Zhao: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 1: Code-Review+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Cody Oss: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Andy Zhao: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Cody Oss: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
This PR (HEAD: a1f84d6) has been imported to Gerrit for code review. Please visit https://go-review.googlesource.com/c/oauth2/+/470396 to see it. Tip: You can toggle comments from me using the |
|
Message from Matt Hickford: Patch Set 2: Run-TryBot+1 Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 2: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 2: TryBot-Result+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Andy Zhao: Patch Set 2: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 3: -Code-Review Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 3: Run-TryBot+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Cody Oss: Patch Set 3: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Andy Zhao: Patch Set 3: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
This PR (HEAD: 07e4849) has been imported to Gerrit for code review. Please visit https://go-review.googlesource.com/c/oauth2/+/470396 to see it. Tip: You can toggle comments from me using the |
|
Message from Andy Zhao: Patch Set 4: Code-Review+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Andy Zhao: Patch Set 4: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Shin Fan: Patch Set 4: Code-Review+2 Run-TryBot+1 Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 4: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Gopher Robot: Patch Set 4: TryBot-Result+1 (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 4: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
|
Message from Matthew Hickford: Patch Set 4: Code-Review+1 Run-TryBot+1 Please don’t reply on this GitHub thread. Visit golang.org/cl/470396. |
With Context Aware Access enabled, users must use the endpoint "https://oauth2.mtls.googleapis.com/token" for token exchange. This PR adds support for runtime configuration of the OAuth2 token endpoint (as determined by the caller). If using the mTLS oauth2 endpoint, the caller will also need to specify an mTLS-enabled HTTPClient via the "context" mechanism for use by the OAuth2 transport. Change-Id: Ic83342ec1d224d3acdabf00d863249330424fc54 GitHub-Last-Rev: 07e4849 GitHub-Pull-Request: #630 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/470396 Run-TryBot: Matthew Hickford <[email protected]> Reviewed-by: Shin Fan <[email protected]> Run-TryBot: Shin Fan <[email protected]> Reviewed-by: Matthew Hickford <[email protected]> Reviewed-by: Andy Zhao <[email protected]> TryBot-Result: Gopher Robot <[email protected]>
|
This PR is being closed because golang.org/cl/470396 has been merged. |
With Context Aware Access enabled, users must use the endpoint "https://oauth2.mtls.googleapis.com/token" for token exchange. This PR adds support for runtime configuration of the OAuth2 token endpoint (as determined by the caller). If using the mTLS oauth2 endpoint, the caller will also need to specify an mTLS-enabled HTTPClient via the "context" mechanism for use by the OAuth2 transport.