search

AzureAD / microsoft-authentication-library-for-go

The MSAL library for Go is part of the Microsoft identity platform for developers (formerly named Azure AD) v2.0. It enables you to acquire security tokens to call protected APIs. It uses industry standard OAuth2 and OpenID Connect.
MIT License
218 stars 87 forks source link

Support AuthenticationScheme interface to enable PoP bound access tokens #443

Closed manojampalam closed 10 months ago

manojampalam commented 11 months ago

PR attempting to realize proposal - https://github.com/AzureAD/microsoft-authentication-library-for-go/issues/439

This is to gather initial feedback. Comprehensive unit and integration tests will be added once code changes are agreed/acked.

sonarcloud[bot] commented 10 months ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 4 Code Smells

No Coverage information No Coverage information
0.6% 0.6% Duplication

julienstroheker commented 10 months ago

We were able to validate this changes e2e on our side using Kubelogin to generate the token and Guard to validates it.

Kubelogin PR In Progress

Token generated by kubelogin via interactive mode :

image

Token validated by Guard :

image

Token expired rejected by Guard :

image

u claim mismatch rejected by Guard :

image