Release v2.0.0 (#170)

- pushing out version v2.0.0
- updated changelog to reflect changes

CHANGELOG.md

 
-#### **2.0.0 (unreleased or in master)**
+#### **2.0.0**
 
 FEATURES:
  * Adding the --skip-openid-provider-tls-verify option to bypass the TLS verification for Idp [#PR147](https://github.com/gambol99/keycloak-proxy/pull/147)

doc.go

@@ -24,7 +24,7 @@ import (
 )
 
 var (
-	release = "v1.2.8"
+	release = "v2.0.0"
 	gitsha  = "no gitsha provided"
 	version = release + " (git+sha: " + gitsha + ")"
 )

handlers.go

@@ -169,9 +169,15 @@ func (r *oauthProxy) oauthCallbackHandler(cx *gin.Context) {
 					"error": err.Error(),
 				}).Warnf("failed to save the refresh token in the store")
 			}
+			// step: get expiration of the refresh token if we can
+			_, ident, err := parseToken(response.RefreshToken)
+			if err != nil {
+				r.dropAccessTokenCookie(cx, session.Encode(), time.Duration(72)*time.Hour)
+			} else {
+				r.dropAccessTokenCookie(cx, session.Encode(), ident.ExpiresAt.Sub(time.Now()))
+			}
 		default:
-			// step: attempt to decode the refresh token (not all refresh tokens are jwt tokens;
-			// gooogle for instance.
+			// step: attempt to decode the refresh token (not all refresh tokens are jwt tokens; google for instance.
 			if _, ident, err := parseToken(response.RefreshToken); err != nil {
 				r.dropRefreshTokenCookie(cx, encrypted, time.Duration(72)*time.Hour)
 			} else {