Add OIDC support (#24)

This PR adds OIDC support to the plugin as well as a CLI login helper that can be imported by Vault. It also adds for both OIDC/JWT: * default role support (fixes #6) * the ability to copy claims into metadata, whether using OIDC or the existing JWT flow. (see discussion on #14) It removes the "group_delimiter" method of specifying claims, replacing it with [JSONPointer](https://tools.ietf.org/html/rfc6901).
hashicorp · Feb 14, 2019 · a61556b · a61556b
1 parent a608a5a
commit a61556b
Show file tree

Hide file tree

Showing 568 changed files with 77,686 additions and 12,764 deletions.
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,85 @@
+# Compiled Object files, Static and Dynamic libs (Shared Objects)
+*.o
+*.a
+*.so
+
+# Folders
+_obj
+_test
+.cover
+
+# Architecture specific extensions/prefixes
+*.[568vq]
+[568vq].out
+
+*.cgo1.go
+*.cgo2.c
+_cgo_defun.c
+_cgo_gotypes.go
+_cgo_export.*
+
+_testmain.go
+
+*.exe
+*.test
+*.prof
+
+# Other dirs
+/bin/
+/pkg/
+
+# Vault-specific
+example.hcl
+example.vault.d
+
+# Ruby
+website/vendor
+website/.bundle
+website/build
+
+# Vagrant
+.vagrant/
+Vagrantfile
+
+# Configs
+*.hcl
+
+.DS_Store
+.idea
+.vscode
+
+dist/*
+
+tags
+
+# Editor backups
+*~
+*.sw[a-z]
+
+# IntelliJ IDEA project files
+.idea
+*.ipr
+*.iml
+
+# compiled output
+ui/dist
+ui/tmp
+
+# dependencies
+ui/node_modules
+ui/bower_components
+
+# misc
+ui/.DS_Store
+ui/.sass-cache
+ui/connect.lock
+ui/coverage/*
+ui/libpeerconnection.log
+ui/npm-debug.log
+ui/testem.log
+tmp/
+
+scripts/custom.sh
+
+# binary
+cmd/vault-plugin-auth-jwt/vault-plugin-auth-jwt