443006634d0e2bff03606e11c5c7e91c8b2fc18b - release.go.x.ref

commit	443006634d0e2bff03606e11c5c7e91c8b2fc18b	[log] [tgz]
author	Suharsh Sivakumar <suharshs@suharshs-macbookair.roam.corp.google.com>	Tue Sep 23 11:35:06 2014 -0700
committer	Suharsh Sivakumar <suharshs@suharshs-macbookair.roam.corp.google.com>	Tue Sep 23 11:35:08 2014 -0700
tree	da567fc5e0d76bdf3193e37cebae53211976a554
parent	026a90f851b5f25b9a0eeac7f8a37294eaac47a2 [diff]

veryon/services/identity: CSRFCop uses macaroons to send data along with token.

* Updated CSRFCop to take arbritrary input in NewToken.
* In ValidateToken the input is decoded and the HMAC is verified.
* Updated the identity server revocation to use a macaroon instead of maintaining state.
* Updated csrf_test to test for varying cookies instead of varying tokens.
* This also fixes https://code.google.com/p/envyor/issues/detail?id=319.

Change-Id: Ife8f7dd9533c0c0149a182179f9226253d61f3d3

services/identity/googleoauth/handler.go[diff]
services/identity/googleoauth/template.go[diff]
services/identity/googleoauth/utils.go[diff]
services/identity/googleoauth/utils_test.go[diff]
services/identity/identityd/main.go[diff]
services/identity/util/csrf.go[diff]
services/identity/util/csrf_test.go[diff]
services/identity/util/write.go[diff]

8 files changed

tree: da567fc5e0d76bdf3193e37cebae53211976a554

lib/
profiles/
runtimes/
security/
services/
tools/