Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Fix RefreshTokens for other OPs when using GoogleOp (upgrades go to 1.21) #201

Merged
merged 2 commits into from May 6, 2024
Merged

feat: Fix RefreshTokens for other OPs when using GoogleOp (upgrades go to 1.21) #201

merged 2 commits into from May 6, 2024

Conversation

ymarcus93
Copy link
Collaborator

@ymarcus93 ymarcus93 commented May 6, 2024
edited by EthanHeilman

This PR upgrades the zitadel/oidc/v3 dependency to the latest version v3.23.2 which has my PRs merged that fix refresh when the OP is Okta (zitadel/oidc#599) and when the OP is Microsoft (zitadel/oidc#594).

The fix for Okta requires no changes except for upgrading the zitadel dependency. The fix for Microsoft requires the inclusion of rp.WithNonce(nil) to disable the nonce check when verifying the refreshed id_token (now possible due to upgrading).

Also, I had to upgrade us to go1.21 because zitadel's minimum version is that as well.

Tested refresh manually for Google, Microsoft, and Okta using GoogleOp.

  • Changed CI workflows to read go version from go.mod file instead of hardcoding version

Tests

@EthanHeilman EthanHeilman self-requested a review May 6, 2024 20:17
EthanHeilman
EthanHeilman approved these changes May 6, 2024
View reviewed changes
Copy link
Member

@EthanHeilman EthanHeilman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is good to merge, let's just run the manual checks to make sure the upgrade to 1.21 didn't break anything

@EthanHeilman
Copy link
Member

Running into this error while trying to run github actions manual test https://github.com/openpubkey/gha-test/actions/runs/8975428256/job/24649977713

@EthanHeilman EthanHeilman changed the title Fix RefreshTokens for other OPs when using GoogleOp feat: Fix RefreshTokens for other OPs when using GoogleOp (upgrades go to 1.21) May 6, 2024
@EthanHeilman EthanHeilman added the enhancement New feature or request label May 6, 2024
@EthanHeilman EthanHeilman added this to the Release v0.4.0 milestone May 6, 2024
@EthanHeilman EthanHeilman merged commit 33da55b into openpubkey:main May 6, 2024
3 checks passed
@EthanHeilman EthanHeilman mentioned this pull request May 8, 2024
Merged
@ymarcus93 ymarcus93 mentioned this pull request May 8, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@EthanHeilman EthanHeilman EthanHeilman approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
Release v0.4.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@ymarcus93 @EthanHeilman