Open alexandre-leites opened 6 years ago
For those interested I have an update on the progress of the Pusher fork.
v3.0.0
release on the Pusher fork to distinguish where the migration was made and start accepting functionality PRs no top of this releasejoel[at]pusher.com
For interested parties, the new v3.0.0
release has now been merged and I will now start working on migrating PRs and issues over to the Pusher fork as and when I have time
Thanks! Did you see the v3.0.0 image has a few known vulnerable libraries or alerts? The quay page 404's for me, but maybe they're visible to you?
https://quay.io/repository/pusher/oauth2_proxy?tag=latest&tab=tags
For interested parties, the new
v3.0.0
release has now been merged and I will now start working on migrating PRs and issues over to the Pusher fork as and when I have time
@JoelSpeed Great work! Looking forward to switching to the Pusher version. Do you know when you will merge in the changes from your fork such as OIDC session refresh?
Thanks! Did you see the v3.0.0 image has a few known vulnerable libraries or alerts? The quay page 404's for me, but maybe they're visible to you?
Noted, they are also 404'ing for me so I will try and look into this, I suspect they are vulnerabilities in the debian base image we are using
@JoelSpeed Great work! Looking forward to switching to the Pusher version. Do you know when you will merge in the changes from your fork such as OIDC session refresh?
Working on that this week! See https://github.com/pusher/oauth2_proxy/pull/14
I recently released pomerium. Pomerium may be a good fit for new users, or those okay with significant breaking changes from oauth2_proxy.
Like oauth2_proxy, pomerium is a reverse proxy but has additional goals of supporting dynamic policy, and identity/device aware access control similar to BeyondCorp.
@desimone Hi, Pomerium looks nice, especially in terms of code quality and structure. I do miss a few features (e.g. a provider for GitLab) but would be willing to contribute them. Is there a Gitter/Slack/similar chat to discuss things?
@fnkr thank you for your kind words!
If you don't mind creating an issue in our repo, I'm sure we can address both adding support for GitLab and finding a good place to discuss things.
Hey Everyone! There are several good forks out there. We recommend looking at them and using them! I have listed out the ones that I found in this list and will add them to the README redirecting people there.
@apriendeau I already have a PR open to add a notice that this repo is archived and list maintained forks, do you have the ability to review it? #684
@JoelSpeed Thanks for saving me the effort! It has been merged and I am going to lock this conversation 👍
Hi,
As everyone here can see, the project is almost abandoned.
I believe someone or preferable a group of people fluent in Go lang should create an 'official' fork of the project so the community can contribute with PRs which won't be waiting forever at "Pull Requests" tab.
I'm not fluent in Go but I can help with docker images or something like that if needed.
====== Edit =====
According to @russtacular comment on 29 Aug 2018 this project is oficially discontinued. Therefore, while the community is discussing where it will be 'oficially' forked and supported, there are several projects already taking place as a migration path:
https://github.com/pusher/oauth2_proxy (see https://github.com/bitly/oauth2_proxy/issues/628#issuecomment-453494239) https://github.com/buzzfeed/sso https://github.com/openshift/oauth-proxy https://github.com/ploxiln/oauth2_proxy (see https://github.com/bitly/oauth2_proxy/issues/628#issuecomment-449255369 and https://github.com/bitly/oauth2_proxy/issues/628#issuecomment-449544677)
Also, there is a discussion on gofrs https://github.com/gofrs/help-requests/issues/32#issue-388720547