Added regexWhiteList feature.

.dockerignore

@@ -0,0 +1,13 @@
+config/config.yml
+pkg/model/storage-test.db
+main
+config/google_config.json
+.vscode/*
+lasso
+config/config.yml_google
+config/config.yml_github
+config/secret
+config/config.yml_orig
+.dockerignore
+Dockerfile
+handlers/rice-box.go

.github/ISSUE_TEMPLATE/open-a-github-issue-to-receive-support.md

@@ -0,0 +1,38 @@
+---
+name: open a GitHub Issue to receive support
+about: Create a report to receive support with your config and to help us improve
+title: ''
+labels: ''
+assignees: ''
+
+---
+
+**First read the README**
+Specifically ***[Troubleshooting, Support and Feature Requests](https://github.com/vouch/vouch-proxy#troubleshooting-support-and-feature-requests)***.
+
+And turn on `vouch.testing` before you ask for support.
+
+**Use a Paste Service**
+We like [hasteb.in](https://hasteb.in/), but a [gist](https://gist.github.com/) is also acceptable
+Do not post logs and configs to this issue
+
+**Describe the problem**
+A clear and concise description of the behavior you are observing.
+Please include which OAuth provider you are using.
+
+**Expected behavior**
+A clear and concise description of what you expected to happen.
+
+**Desktop (please complete the following information):**
+ - OS: [e.g. iOS]
+ - Browser [e.g. chrome, safari]
+ - Version [e.g. 22]
+
+**Smartphone (please complete the following information):**
+ - Device: [e.g. iPhone6]
+ - OS: [e.g. iOS8.1]
+ - Browser [e.g. stock browser, safari]
+ - Version [e.g. 22]
+
+**Additional context**
+Add any other context about the problem here.

.github/workflows/docker-release.yml

@@ -0,0 +1,43 @@
+name: Docker build and push voucher/vouch-proxy:latest-arm
+
+on:
+  push:
+    branches:
+      - master
+
+jobs:
+  Publish-to-docker:
+    runs-on: ubuntu-latest
+    env:
+      DOCKER_TAG: latest-arm
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+      - name: Set up Docker Buildx
+        id: buildx
+        uses: crazy-max/ghaction-docker-buildx@v1
+        with:
+          version: latest
+      - name: List available platforms
+        run: echo ${{ steps.buildx.outputs.platforms }}
+      - name: Docker login (set DOCKER_USERNAME and DOCKER_PASSWORD in secrets)
+        if: ${{ success() && startsWith(github.repository, 'vouch/')}} # Remove this line, if you want everybody to publish to docker hub
+        run: docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }}
+      - name: Publish to docker as voucher/vouch-proxy
+        if: ${{ success() && startsWith(github.repository, 'vouch/')}}
+        run: |
+          docker buildx build \
+            --platform linux/arm/v7,linux/arm64 \
+            --push \
+            -t voucher/vouch-proxy:$DOCKER_TAG \
+            .
+    # Uncomment below to have github build to docker for every user. Watch out for indentation
+    #   -
+    #     name: Publish to docker as github_user/github_repo
+    #     if: ${{ success() && !startsWith(github.repository, 'vouch/')}}
+    #     run: |
+    #       docker buildx build \
+    #         --platform linux/amd64,linux/arm/v7,linux/arm64 \
+    #         --push \
+    #         -t $GITHUB_REPOSITORY:latest \
+    #         .

.gitignore

@@ -1,6 +1,13 @@
-config/config.yml
-data/lasso_bolt.db
-pkg/model/storage-test.db
+vouch
+vouch-proxy
 main
+config/config.yml
+config/*config.yml
+config/config.yml_*
 config/google_config.json
-.vscode/*
+config/secret
+!config/testing/*
+pkg/model/storage-test.db
+.vscode/*
+coverage.out
+coverage.html

.travis.yml

@@ -0,0 +1,35 @@
+language: go
+go_import_path: github.com/vouch/vouch-proxy
+
+sudo: false
+
+services:
+  - docker
+
+go:
+  - "1.13"
+
+before_install:
+  - ./do.sh goget
+
+script:
+  - ./do.sh build
+  - ./do.sh test
+#  - docker build -t $TRAVIS_REPO_SLUG .
+
+#deploy:
+#  - provider: script
+#    skip_cleanup: true
+#    script: bash .travis/docker_push
+#    on:
+#      go: "1.10"
+#      branch: master
+#  - provider: script
+#    skip_cleanup: true
+#    script: bash .travis/docker_push
+#    on:
+#      go: "1.10"
+#      tags: true
+#
+notifications:
+  irc: "chat.freenode.net#vouch"

.travis/docker_push

@@ -0,0 +1,7 @@
+#!/bin/bash
+echo "$DOCKER_PASSWORD" | docker login -u "$DOCKER_USERNAME" --password-stdin
+docker push $TRAVIS_REPO_SLUG
+if [ "$TRAVIS_BRANCH" != "master" ]; then
+  docker tag $TRAVIS_REPO_SLUG $TRAVIS_REPO_SLUG:$TRAVIS_BRANCH
+  docker push $TRAVIS_REPO_SLUG:$TRAVIS_BRANCH
+fi

AUTHORS.txt

@@ -0,0 +1,2 @@
+bnfinet
+aaronpk

Dockerfile

@@ -1,18 +1,29 @@
-# bfoote/lasso
-# https://github.com/bnfinet/lasso
-FROM golang:1.8
+# voucher/vouch-proxy
+# https://github.com/vouch/vouch-proxy
+FROM golang:1.13 AS builder
+
+LABEL maintainer="vouch@bnf.net"
+
+RUN mkdir -p ${GOPATH}/src/github.com/vouch/vouch-proxy
+WORKDIR ${GOPATH}/src/github.com/vouch/vouch-proxy
 
-RUN mkdir -p ${GOPATH}/src/github.com/bnfinet/lasso
-WORKDIR ${GOPATH}/src/github.com/bnfinet/lasso
-
 COPY . .
 
-RUN go-wrapper download   # "go get -d -v ./..."
-RUN go-wrapper install    # "go install -v ./..."
+# RUN go-wrapper download  # "go get -d -v ./..."
+# RUN ./do.sh build    # see `do.sh` for vouch build details
+# RUN go-wrapper install # "go install -v ./..."
 
-RUN rm -rf ./config ./data \
-    && ln -s /config ./config \
-    && ln -s /data ./data 
+RUN ./do.sh goget
+RUN ./do.sh gobuildstatic # see `do.sh` for vouch-proxy build details
+RUN ./do.sh install
 
+FROM scratch
+LABEL maintainer="vouch@bnf.net"
+COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
+COPY templates/ templates/
+# see note for /static in main.go
+COPY static /static
+COPY --from=builder /go/bin/vouch-proxy /vouch-proxy
 EXPOSE 9090
-CMD ["/go/bin/lasso"] 
+ENTRYPOINT ["/vouch-proxy"]
+HEALTHCHECK --interval=1m --timeout=5s CMD [ "/vouch-proxy", "-healthcheck" ]

Dockerfile.alpine

@@ -0,0 +1,30 @@
+# voucher/vouch-proxy
+# https://github.com/vouch/vouch-proxy
+FROM golang:1.13 AS builder
+
+LABEL maintainer="vouch@bnf.net"
+
+RUN mkdir -p ${GOPATH}/src/github.com/vouch/vouch-proxy
+WORKDIR ${GOPATH}/src/github.com/vouch/vouch-proxy
+
+COPY . .
+
+# RUN go-wrapper download  # "go get -d -v ./..."
+# RUN ./do.sh build    # see `do.sh` for vouch build details
+# RUN go-wrapper install # "go install -v ./..."
+
+RUN ./do.sh goget
+RUN ./do.sh gobuildstatic # see `do.sh` for vouch-proxy build details
+RUN ./do.sh install
+
+FROM alpine:latest
+LABEL maintainer="vouch@bnf.net"
+COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
+COPY templates/ templates/
+# see note for /static in main.go
+COPY static /static
+COPY do.sh /do.sh
+COPY --from=builder /go/bin/vouch-proxy /vouch-proxy
+EXPOSE 9090
+ENTRYPOINT ["/vouch-proxy"]
+HEALTHCHECK --interval=1m --timeout=5s CMD [ "/vouch-proxy", "-healthcheck" ]

LICENSE

@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2017 Benjamin Foote
+Copyright (c) 2017 The Vouch Proxy Authors
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal