Release v1.1.0 · buzzfeed/sso

Please take the SSO Community Survey to let us know how we're doing, and to help us plan our roadmap!

Remove support for legacy alternative cookie cipher (#54)
Ensure that sso_auth responds to pings (#65)
Static files are embedded directly into binaries (#63)
Allow per-upstream configuration of TLS verification (#49)
Fixed data race for encryption cipher (#77)
Refactoring of some provider logic, to facilitate additional providers (#76)
PROXY_ROOT_DOMAIN is now a required option for sso_auth (#92)
Added optional PROVIDER_URL_INTERNAL for split dns deployments (#88, #123)
Removed default provider and associated unused functions (#87)
Access token is now forwarded to upstreams via X-Forwarded-AccessToken header, when proxy option PASS_ACCESS_TOKEN is set (#109)
Added support for digital signing of upstream requests, via Sso-Signature header (#106)
Added preserve_host option to upstream configs (#55)
Various other minor fixes, cleanups, etc.

Provide feedback