Affected by GO-2025-4237 and 1 other vulnerabilities

GO-2025-4237: Weaviate OSS has a Path Traversal Vulnerability via Backup ZipSlip in github.com/weaviate/weaviate

GO-2025-4238: Weaviate OSS has path traversal vulnerability via the Shard Movement API in github.com/weaviate/weaviate

oidc

package

v1.32.13 Latest Latest Go to latest Published: Oct 20, 2025 License: BSD-3-Clause Imports: 17 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/weaviate/weaviate

Links

Documentation ¶

Index ¶

type Client
- func New(cfg config.Config, logger logrus.FieldLogger) (*Client, error)
- func (c *Client) Init() error
- func (c *Client) ValidateAndExtract(token string, scopes []string) (*models.Principal, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Client ¶

type Client struct {
	Config config.OIDC
	// contains filtered or unexported fields
}

Client handles the OIDC setup at startup and provides a middleware to be used with the goswagger API

func New ¶

func New(cfg config.Config, logger logrus.FieldLogger) (*Client, error)

New OIDC Client: It tries to retrieve the JWKs at startup (or fails), it provides a middleware which can be used at runtime with a go-swagger style API

func (*Client) Init ¶ added in v1.30.10

func (c *Client) Init() error

func (*Client) ValidateAndExtract ¶

func (c *Client) ValidateAndExtract(token string, scopes []string) (*models.Principal, error)

ValidateAndExtract can be used as a middleware for go-swagger

Source Files ¶

View all Source files

middleware.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL