mirror/dex - dex - xhrpb gitea

Commit Graph

Author	SHA1	Message	Date
Alex Lyashko	2cd0cd54ff	microsoft: get rid of User.Read scope which leads to additional consents It seems that when a user is already logged in with Microsoft in a browser and dex requires User.Read scope it forces Microsoft to show an additional screen from time to time: ----------- Permissions Requested ... This app would like to: Sign in and read user profile ----------- If instead a more standart OIDC connector procedure is used with openid,profile,email scopes - it doesn't happen and no microsoft screens are shown. This patch kills the need for User.Read scope and follows a more standart OIDC connector procedure for Microsoft login. Note, microsoft doesn't fully follow spec, so issuer field in well-known configuration and token is verified manually. Signed-off-by: Alex Lyashko <alex.lyashko@gmail.com>	3 years ago
Maksim Nabokikh	28aaa8f511	fix: Do not skip approval screen by default (#2897 ) Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>	3 years ago
Márk Sági-Kazár	e568cdc973	Merge pull request #2885 from dexidp/dependabot/go_modules/github.com/spf13/cobra-1.7.0 build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0	3 years ago
Márk Sági-Kazár	4de0b16499	Merge pull request #2884 from dexidp/dependabot/docker/golang-1.20.3-alpine3.16 build(deps): bump golang from 1.20.2-alpine3.16 to 1.20.3-alpine3.16	3 years ago
Márk Sági-Kazár	c59c0a59ce	Merge pull request #2892 from dexidp/dependabot/go_modules/golang.org/x/oauth2-0.7.0 build(deps): bump golang.org/x/oauth2 from 0.6.0 to 0.7.0	3 years ago
dependabot[bot]	49b34d1ad1	build(deps): bump golang.org/x/oauth2 from 0.6.0 to 0.7.0 Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.6.0 to 0.7.0. - [Release notes](https://github.com/golang/oauth2/releases) - [Commits](https://github.com/golang/oauth2/compare/v0.6.0...v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	c059d952b1	build(deps): bump github.com/spf13/cobra from 1.6.1 to 1.7.0 Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.6.1 to 1.7.0. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](https://github.com/spf13/cobra/compare/v1.6.1...v1.7.0) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	fbe79bc21d	build(deps): bump golang from 1.20.2-alpine3.16 to 1.20.3-alpine3.16 Bumps golang from 1.20.2-alpine3.16 to 1.20.3-alpine3.16. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	8b6ff2d401	Merge pull request #2873 from dexidp/dependabot/go_modules/google.golang.org/grpc-1.54.0	3 years ago
dependabot[bot]	13cc77d7a4	Merge pull request #2881 from dexidp/dependabot/github_actions/mheap/github-action-required-labels-4	3 years ago
dependabot[bot]	1e02151c59	build(deps): bump mheap/github-action-required-labels from 3 to 4 Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 3 to 4. - [Release notes](https://github.com/mheap/github-action-required-labels/releases) - [Commits](https://github.com/mheap/github-action-required-labels/compare/v3...v4) --- updated-dependencies: - dependency-name: mheap/github-action-required-labels dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	93b55485bf	build(deps): bump alpine from 3.17.2 to 3.17.3 (#2879 ) Bumps alpine from 3.17.2 to 3.17.3. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	86323dc5c5	build(deps): bump google.golang.org/grpc from 1.53.0 to 1.54.0 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.53.0 to 1.54.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.53.0...v1.54.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	2bb4896d12	Merge pull request #2870 from dexidp/update-tools chore: upgrade tools	3 years ago
Márk Sági-Kazár	007a120aa4	Merge pull request #2569 from stealthybox/patch-1 Bump image in examples/k8s/dex.yaml to v2.32.0	3 years ago
Mark Sagi-Kazar	d8f2628a84	chore: regenerate proto Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Mark Sagi-Kazar	ba8fa1f2d7	chore: upgrade tools Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Márk Sági-Kazár	0d8df5ffbe	Merge pull request #2816 from dexidp/dependabot/go_modules/api/v2/google.golang.org/grpc-1.53.0 build(deps): bump google.golang.org/grpc from 1.52.0 to 1.53.0 in /api/v2	3 years ago
dependabot[bot]	29af8bb2bf	build(deps): bump google.golang.org/grpc in /api/v2 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.52.0 to 1.53.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.52.0...v1.53.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	46ec98f589	Merge pull request #2845 from dexidp/dependabot/go_modules/examples/golang.org/x/crypto-0.1.0 build(deps): bump golang.org/x/crypto from 0.0.0-20220112180741-5e0467b6c7ce to 0.1.0 in /examples	3 years ago
dependabot[bot]	368b6d22a5	Merge pull request #2867 from dexidp/dependabot/go_modules/api/v2/google.golang.org/protobuf-1.30.0	3 years ago
dependabot[bot]	b9d7c65c50	build(deps): bump google.golang.org/protobuf in /api/v2 Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.28.1 to 1.30.0. - [Release notes](https://github.com/protocolbuffers/protobuf-go/releases) - [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash) - [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.28.1...v1.30.0) --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	082659afe3	Merge pull request #2866 from dexidp/dependabot/go_modules/google.golang.org/protobuf-1.30.0	3 years ago
dependabot[bot]	7e3038d9fb	build(deps): bump google.golang.org/protobuf from 1.28.1 to 1.30.0 Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.28.1 to 1.30.0. - [Release notes](https://github.com/protocolbuffers/protobuf-go/releases) - [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash) - [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.28.1...v1.30.0) --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	1c5b44b8bb	Merge pull request #2862 from dexidp/dependabot/go_modules/github.com/russellhaering/goxmldsig-1.3.0	3 years ago
dependabot[bot]	3049da4d7d	Merge pull request #2863 from dexidp/dependabot/github_actions/actions/setup-go-4	3 years ago
dependabot[bot]	cb86b34508	Merge pull request #2869 from dexidp/dependabot/go_modules/google.golang.org/api-0.114.0	3 years ago
dependabot[bot]	2c3d83a068	build(deps): bump google.golang.org/api from 0.112.0 to 0.114.0 Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.112.0 to 0.114.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.112.0...v0.114.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	89ee66fcd0	build(deps): bump github.com/russellhaering/goxmldsig Bumps [github.com/russellhaering/goxmldsig](https://github.com/russellhaering/goxmldsig) from 1.2.0 to 1.3.0. - [Release notes](https://github.com/russellhaering/goxmldsig/releases) - [Commits](https://github.com/russellhaering/goxmldsig/compare/v1.2.0...v1.3.0) --- updated-dependencies: - dependency-name: github.com/russellhaering/goxmldsig dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	c22c3d0ff0	build(deps): bump actions/setup-go from 3 to 4 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	f88ebc48b2	Merge pull request #2857 from dexidp/fix-verify Fix verify	3 years ago
Mark Sagi-Kazar	15c7180612	chore: fix linter by temporarily disabling failing ones Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Mark Sagi-Kazar	bbed8a056a	chore: regenerate ent Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Mark Sagi-Kazar	bf410dfd16	chore(deps): update ent Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Mark Sagi-Kazar	d12a1fc687	update linter Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Mark Sagi-Kazar	b507c21df9	update nix Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>	3 years ago
Márk Sági-Kazár	47dac4fa80	Merge pull request #2853 from dexidp/dependabot/go_modules/google.golang.org/api-0.112.0 build(deps): bump google.golang.org/api from 0.108.0 to 0.112.0	3 years ago
dependabot[bot]	61a0533174	build(deps): bump google.golang.org/api from 0.108.0 to 0.112.0 Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.108.0 to 0.112.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.108.0...v0.112.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	b43bebcdb0	build(deps): bump golang.org/x/crypto in /examples Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.0.0-20220112180741-5e0467b6c7ce to 0.1.0. - [Release notes](https://github.com/golang/crypto/releases) - [Commits](https://github.com/golang/crypto/commits/v0.1.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	45fd37dc00	build(deps): bump golang.org/x/oauth2 from 0.4.0 to 0.6.0 (#2847 ) Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2) from 0.4.0 to 0.6.0. - [Release notes](https://github.com/golang/oauth2/releases) - [Commits](https://github.com/golang/oauth2/compare/v0.4.0...v0.6.0) --- updated-dependencies: - dependency-name: golang.org/x/oauth2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Sean Liao	737c97b248	DEP for rfc 8693 (#2812 ) Signed-off-by: Sean Liao <sean+git@liao.dev> Co-authored-by: Kim Hallberg <hallberg.kim@gmail.com>	3 years ago
dependabot[bot]	7bd11a2968	build(deps): bump golang.org/x/crypto from 0.6.0 to 0.7.0 (#2856 ) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0 to 0.7.0. - [Release notes](https://github.com/golang/crypto/releases) - [Commits](https://github.com/golang/crypto/compare/v0.6.0...v0.7.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Márk Sági-Kazár	247aae67a8	Merge pull request #2858 from deckhouse/fix-verify-order fix: Run go mod tidy last (fix verify command)	3 years ago
m.nabokikh	7667a61444	fix: Run go mod tidy last (fix verify command) Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>	3 years ago
Márk Sági-Kazár	dae6854cfa	Merge pull request #2840 from deckhouse/bump-gomplate-3-11-4 feat: Bump gomplate 3.11.4	3 years ago
Márk Sági-Kazár	0c9f98003f	Merge pull request #2844 from deckhouse/makefile-refactoring feat: Bump dependencies and Makefile refactoring	3 years ago
Márk Sági-Kazár	ab97862c88	Merge pull request #2805 from nobuyo/skip-redirection-to-approval-endpoint Skip redirection to approval when it is not required (#2686)	3 years ago
dependabot[bot]	5f03ae87e1	build(deps): bump golang from 1.20.1-alpine3.16 to 1.20.2-alpine3.16 (#2849 ) Bumps golang from 1.20.1-alpine3.16 to 1.20.2-alpine3.16. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	f00844cca9	build(deps): bump aquasecurity/trivy-action from 0.9.1 to 0.9.2 (#2850 ) Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.9.1 to 0.9.2. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.9.1...0.9.2) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	78ff68c5aa	build(deps): bump golang from 1.20.0-alpine3.16 to 1.20.1-alpine3.16 (#2827 ) Bumps golang from 1.20.0-alpine3.16 to 1.20.1-alpine3.16. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago

1 2 3 4 5 ...

2387 Commits (2cd0cd54ffb04ae4e669f5ac6cbe52077e0b73e3) All Branches Search

2387 Commits (2cd0cd54ffb04ae4e669f5ac6cbe52077e0b73e3)

All Branches