mirror/dex - dex - xhrpb gitea

Commit Graph

Author	SHA1	Message	Date
iliaandreevde	098ab6036e	feat: support ES256 local signer (#4682 ) Signed-off-by: Ilia Andreev <ilia.andreev@palark.com> Co-authored-by: Ilia Andreev <ilia.andreev@palark.com>	2 days ago
Maksim Nabokikh	08dc8eeb0a	docs: add CONTRIBUTING.md (#4685 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 days ago
Maksim Nabokikh	cf2c017038	build(deps): update entgo.io/ent to v0.14.6 and ariga.io/atlas to v0.36.2 (#4684 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 days ago
dependabot[bot]	894f87dfea	build(deps): bump the etcd group with 2 updates (#4680 )	3 days ago
dependabot[bot]	2e41d5b211	build(deps): bump anchore/sbom-action from 0.23.1 to 0.24.0 (#4681 )	3 days ago
dependabot[bot]	9d2274888a	build(deps): bump github/codeql-action from 4.33.0 to 4.34.1 (#4679 )	3 days ago
Maksim Nabokikh	363e9d5228	feat: use protobuf for session cookie (#4675 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	6 days ago
Maksim Nabokikh	3c7e159750	chore: update Go and gRPC dependencies to latest versions (#4673 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	6 days ago
Maksim Nabokikh	449f66477c	feat: Add AuthSession GC (#4667 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	6 days ago
Maksim Nabokikh	5bbc400c5a	feat: implement id_token_hint (#4670 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com> Signed-off-by: Maksim Nabokikh <maksim.nabokikh@flant.com>	7 days ago
Maksim Nabokikh	3b5be6a876	Disable MFA configuration in config-dev.yaml (#4672 ) Comment out multi-factor authentication configuration. Signed-off-by: Maksim Nabokikh <maksim.nabokikh@flant.com>	7 days ago
Taylor Silva	92f51f9d67	fix non-constant format string in call to newRedirectedErr (#4671 ) Signed-off-by: Taylor Silva <dev@taydev.net>	7 days ago
Maksim Nabokikh	c3bc1d7466	feat: add auth_time, prompt, and max_age fields (#4662 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	1 week ago
Maksim Nabokikh	7ec1760c6b	feat: Add OIDC conformance testing scripts and configuration (#4663 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	1 week ago
dependabot[bot]	ff5bc7c269	build(deps): bump actions/cache from 5.0.3 to 5.0.4 (#4665 ) Bumps [actions/cache](https://github.com/actions/cache) from 5.0.3 to 5.0.4. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](`cdf6c1fa76...668228422a`) --- updated-dependencies: - dependency-name: actions/cache dependency-version: 5.0.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	56914a8ad6	build(deps): bump github.com/lib/pq from 1.11.2 to 1.12.0 (#4666 ) Bumps [github.com/lib/pq](https://github.com/lib/pq) from 1.11.2 to 1.12.0. - [Release notes](https://github.com/lib/pq/releases) - [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md) - [Commits](https://github.com/lib/pq/compare/v1.11.2...v1.12.0) --- updated-dependencies: - dependency-name: github.com/lib/pq dependency-version: 1.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	8938c98ede	build(deps): bump github.com/russellhaering/goxmldsig (#4664 ) Bumps [github.com/russellhaering/goxmldsig](https://github.com/russellhaering/goxmldsig) from 1.5.0 to 1.6.0. - [Release notes](https://github.com/russellhaering/goxmldsig/releases) - [Commits](https://github.com/russellhaering/goxmldsig/compare/v1.5.0...v1.6.0) --- updated-dependencies: - dependency-name: github.com/russellhaering/goxmldsig dependency-version: 1.6.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
Maksim Nabokikh	86abd336f8	Two-Factor authentication (TOTP) (#3712 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	1 week ago
kt	503ddcaeea	DEP for Identity Assertion JWT Authorization Grant (ID-JAG) / requested_token_type urn:ietf:params:oauth:token-type:id-jag (#4600 ) Signed-off-by: kanywst <niwatakuma@icloud.com>	1 week ago
Maksim Nabokikh	cbd7dd7f5a	feat: Create AuthSessions and set cookies (#4650 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	1 week ago
dependabot[bot]	8af6d3c4be	build(deps): bump google.golang.org/grpc in /examples (#4661 ) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.79.2 to 1.79.3. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.79.2...v1.79.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	7f4a5a755b	build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.12 to 3.4.13 (#4659 ) Bumps [github.com/go-ldap/ldap/v3](https://github.com/go-ldap/ldap) from 3.4.12 to 3.4.13. - [Release notes](https://github.com/go-ldap/ldap/releases) - [Commits](https://github.com/go-ldap/ldap/compare/v3.4.12...v3.4.13) --- updated-dependencies: - dependency-name: github.com/go-ldap/ldap/v3 dependency-version: 3.4.13 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	285d83b15a	build(deps): bump google.golang.org/grpc from 1.79.2 to 1.79.3 (#4658 ) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.79.2 to 1.79.3. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.79.2...v1.79.3) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
Maksim Nabokikh	1e65dda440	fix(localSigner): simplify Algorithm method to always return RSA algorithm (#4655 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	1 week ago
Yarden Shoham	90fd51b81e	feat(ldap): allow specifying multiple attributes on username input (#4061 ) In some use-cases, one would like to login using either their username or email. Administrators now don't have to choose a single field but may specify multiple fields to count as "username". Signed-off-by: Yarden Shoham <git@yardenshoham.com>	1 week ago
dependabot[bot]	d31ed97430	build(deps): bump github.com/mattn/go-sqlite3 from 1.14.34 to 1.14.37 (#4653 ) Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) from 1.14.34 to 1.14.37. - [Release notes](https://github.com/mattn/go-sqlite3/releases) - [Commits](https://github.com/mattn/go-sqlite3/compare/v1.14.34...v1.14.37) --- updated-dependencies: - dependency-name: github.com/mattn/go-sqlite3 dependency-version: 1.14.37 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	72e63fa158	build(deps): bump google.golang.org/api from 0.271.0 to 0.272.0 (#4652 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.271.0 to 0.272.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.271.0...v0.272.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-version: 0.272.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
dependabot[bot]	de1e85a872	build(deps): bump github/codeql-action from 4.32.6 to 4.33.0 (#4651 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.6 to 4.33.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`0d579ffd05...b1bff81932`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.33.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	1 week ago
Maksim Nabokikh	6b9ce00e11	feat: implement AuthSession CRUD operations (#4646 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
Maksim Nabokikh	12339f2cef	feat: implement user identity creation and persisting consent (#4645 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
Uğur Tafralı	0f9b7eba77	Pin GitHub API version in requests (#4647 ) Signed-off-by: utafrali <tafraliugur@gmail.com>	2 weeks ago
Maksim Nabokikh	93985dedff	fix: increase lock acquisition attempts from 60 to 200 for better reliability (#4644 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
dependabot[bot]	4433b362b1	build(deps): bump distroless/static-debian13 from `f512d81` to `e3f9456` (#4648 ) Bumps distroless/static-debian13 from `f512d81` to `e3f9456`. --- updated-dependencies: - dependency-name: distroless/static-debian13 dependency-version: nonroot dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2 weeks ago
dependabot[bot]	fe79863158	build(deps): bump mheap/github-action-required-labels (#4649 ) Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 5.5.1 to 5.5.2. - [Release notes](https://github.com/mheap/github-action-required-labels/releases) - [Commits](`8afbe8ae6a...0ac283b4e6`) --- updated-dependencies: - dependency-name: mheap/github-action-required-labels dependency-version: 5.5.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2 weeks ago
Mark Liu	4fb3e7810b	feat(logger): add excludeFields config for PII redaction (#4621 ) Adds an slog.Handler wrapper (excludingHandler) that drops log attributes matching a configured set of keys. This allows GDPR-sensitive deployments to suppress PII fields like email, username, preferred_username, or groups at the logger level rather than per-callsite. Also adds user_id to the "login successful" log line so operators who exclude PII fields still have a pseudonymous identifier. Closes #4391 --------- Signed-off-by: Mark Liu <mark@prove.com.au>	2 weeks ago
Maksim Nabokikh	5a4395fd12	feat: add UserIdentity entity and CRUD operations (#4643 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com> Signed-off-by: Maksim Nabokikh <max.nabokih@gmail.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>	2 weeks ago
Maksim Nabokikh	e8f79fe9ab	DEP: Auth Sessions - Introduce (#4561 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com> Signed-off-by: Maksim Nabokikh <max.nabokih@gmail.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>	2 weeks ago
Maksim Nabokikh	175dc57a3b	feat(cel): implement CEL compiler with library (#4607 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
Maksim Nabokikh	0568abeb03	DEP: CEL integration (#4601 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com> Signed-off-by: Maksim Nabokikh <max.nabokih@gmail.com> Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>	2 weeks ago
Maksim Nabokikh	5bbfbbe168	feat: add PKCE (Proof Key for Code Exchange) configuration to OAuth2 settings (#4638 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
Maksim Nabokikh	2bda64690d	test: fix token introspection tests to use consistent timestamps (#4639 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
dependabot[bot]	13f012fb81	build(deps): bump golang.org/x/net from 0.51.0 to 0.52.0 (#4635 ) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.51.0 to 0.52.0. - [Commits](https://github.com/golang/net/compare/v0.51.0...v0.52.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.52.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2 weeks ago
dependabot[bot]	734d60f485	build(deps): bump golang.org/x/crypto from 0.48.0 to 0.49.0 (#4636 )	2 weeks ago
Maksim Nabokikh	80d297b8a4	feat: update CSS for improved theming and button styles (#4634 )	2 weeks ago
Maksim Nabokikh	f80a89dd5d	feat(client): add allowed connectors field to client configuration (#4610 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
Maksim Nabokikh	7777773067	feat(connector): connectors for grants (#4619 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
dependabot[bot]	47b645406c	build(deps): bump google.golang.org/api from 0.270.0 to 0.271.0 (#4633 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.270.0 to 0.271.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.270.0...v0.271.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-version: 0.271.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2 weeks ago
Maksim Nabokikh	3d97c59032	test: add concurrency tests for storage implementations (#4631 ) Signed-off-by: maksim.nabokikh <max.nabokih@gmail.com>	2 weeks ago
dependabot[bot]	ae8c5af72e	build(deps): bump anchore/sbom-action from 0.23.0 to 0.23.1 (#4629 )	2 weeks ago
dependabot[bot]	7bd3c2a576	build(deps): bump google.golang.org/api from 0.269.0 to 0.270.0 (#4630 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.269.0 to 0.270.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.269.0...v0.270.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-version: 0.270.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2 weeks ago

1 2 3 4 5 ...

3799 Commits (098ab6036e0f475a2ea682eae93f080662b393ff) All Branches Search

3799 Commits (098ab6036e0f475a2ea682eae93f080662b393ff)

All Branches