issues
search
ory
/
oathkeeper
A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
https://www.ory.sh/?utm_source=github&utm_medium=banner&utm_campaign=hydra
Apache License 2.0
3.24k
stars
357
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Allow API key pre-authorization in oauth2_introspection authenticator
#1126
marcinfigiel
closed
1 year ago
2
Allow/deny `remote(_json)` authorizers depending response content
#1125
David-Wobrock
closed
1 month ago
2
chore: bump ory/herodot
#1124
alnr
closed
1 year ago
1
fix: change distroless to base [Do not merge yet]
#1123
Demonsthere
closed
1 year ago
2
fix: properly copy x-forwarded headers from upstream
#1121
aeneasr
closed
1 year ago
0
feat: flag to disable hop-by-hop defenses
#1120
aeneasr
closed
1 year ago
0
feat: support token rotation in ID token mutator
#1119
aeneasr
closed
1 year ago
1
chore: update gRPC to v1.56.1
#1118
aeneasr
closed
1 year ago
0
chore: support in README
#1117
vinckr
closed
1 year ago
1
chore(deps): bump google.golang.org/grpc from 1.52.0 to 1.53.0
#1116
dependabot[bot]
closed
1 year ago
2
Configure JWT authenticator not to logging sensitive data
#1115
StanislavStefanov
opened
1 year ago
3
feat: add distroless images
#1114
Demonsthere
closed
1 year ago
1
chore(deps): update ory/x to v0.0.565
#1113
davidspek
closed
1 year ago
1
Observed memory leak in v0.40.3
#1112
shoujun
closed
1 year ago
4
chore(deps): bump github.com/knadh/koanf to v2.0.1
#1111
kralicky
closed
1 year ago
1
feat: sqa metrics v2
#1110
misamu
closed
1 year ago
1
chore: update security scanners
#1107
Demonsthere
closed
1 year ago
1
fix: [Bearer_token] Use Query.Get when fetching QueryParameter
#1106
marbergq
closed
1 year ago
2
Authenticator: Bearer_token w. "query_parameter" selector consumes request body
#1105
marbergq
opened
1 year ago
0
fix: leak sensitive secrets option not working
#1104
joshm91
closed
1 year ago
1
chore(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible
#1103
dependabot[bot]
closed
1 year ago
1
X-Forwarded headers missing from oauth2-client-credentials authenticator request on v.0.40.3, breaking hydra TLS termination
#1102
mathportillo
closed
1 year ago
1
Oathkeeper duplicates CORS headers
#1100
kamilkloch
opened
1 year ago
6
test: use reliable upstream server
#1099
zepatrik
closed
1 year ago
1
fix: switch to `httputil.ReverseProxy.Rewrite`
#1098
zepatrik
closed
1 year ago
1
chore(deps): bump @nestjs/core and @openapitools/openapi-generator-cli
#1097
dependabot[bot]
closed
1 year ago
1
Regex path matching isn't working.
#1095
KieronWiltshire
closed
1 year ago
10
fix: sqa config values unified across projects
#1094
misamu
closed
1 year ago
1
fix: noop mutator don't overwrite session headers
#1091
davidspek
closed
1 year ago
4
fix: report 499, 502, or 504
#1090
alnr
closed
1 year ago
1
Allow for easily matching rules using path prefixes
#1089
davidspek
closed
4 weeks ago
8
The ability to pass oauth scopes to the application layer without having to write checks on every route.
#1088
KieronWiltshire
closed
1 year ago
2
chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 20.10.24+incompatible
#1087
dependabot[bot]
closed
1 year ago
2
feat: tracing for gRPC middleware
#1086
alnr
closed
1 year ago
1
`strip_path` strips the prefix from the final upstream request, not the initial request
#1085
syserr0r
opened
1 year ago
2
chore(deps): bump github.com/opencontainers/runc from 1.1.4 to 1.1.5
#1084
dependabot[bot]
closed
1 year ago
1
Support distributed cache access token when introspection
#1082
tinhtn1508
closed
5 months ago
1
Custom bearer token not redacted
#1081
SkypLabs
opened
1 year ago
1
feat: improved tracing for authorizers
#1079
alnr
closed
1 year ago
1
Issue with Oathkeeper authenticator oauth_introspection
#1078
dblane-digicatapult
closed
1 year ago
1
docs: update security email
#1077
vinckr
closed
1 year ago
1
Your documentation doesn't work
#1076
oneacik
closed
1 year ago
1
feat: json schema for access rules
#1074
imrushi
opened
1 year ago
4
feat: allow for easily matching rules using path prefixes
#1073
davidspek
opened
1 year ago
3
Watch rules changes on remote repositories
#1072
emmanuelgautier
closed
6 months ago
1
No response for reported security issue for a month
#1071
viters
closed
1 year ago
4
chore: update alpine version
#1070
aeneasr
closed
1 year ago
1
chore(deps): bump golang.org/x/net from 0.5.0 to 0.7.0
#1069
dependabot[bot]
closed
1 year ago
1
0.40.1 does not build on macos
#1068
radekg
closed
1 year ago
1
Leak sensitive secrets option not working
#1067
SkypLabs
closed
1 year ago
9
Previous
Next