mirror/dex - dex - xhrpb gitea

Commit Graph

Author	SHA1	Message	Date
dependabot[bot]	efcdf763a9	build(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.58.2. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.58.2) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	f146858240	Merge pull request #3121 from dexidp/dependabot/go_modules/google.golang.org/api-0.143.0 build(deps): bump google.golang.org/api from 0.138.0 to 0.143.0	3 years ago
Márk Sági-Kazár	7d871a1118	Merge pull request #3127 from dexidp/dependabot/github_actions/github/codeql-action-2.21.9 build(deps): bump github/codeql-action from 2.21.4 to 2.21.9	3 years ago
Márk Sági-Kazár	e391249441	Merge pull request #3130 from dexidp/dependabot/docker/alpine-3.18.4 build(deps): bump alpine from 3.18.3 to 3.18.4	3 years ago
Márk Sági-Kazár	c726c0f0eb	Merge pull request #3117 from dexidp/dependabot/github_actions/actions/checkout-4.1.0 build(deps): bump actions/checkout from 3.5.3 to 4.1.0	3 years ago
Márk Sági-Kazár	c5477c70c2	Merge pull request #3104 from dexidp/dependabot/github_actions/docker/setup-buildx-action-3.0.0 build(deps): bump docker/setup-buildx-action from 2.9.1 to 3.0.0	3 years ago
Márk Sági-Kazár	ac144e3f31	Merge pull request #3099 from dexidp/dependabot/github_actions/actions/upload-artifact-3.1.3 build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3	3 years ago
Márk Sági-Kazár	aeff8dfb5a	Merge pull request #3090 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.12.0 build(deps): bump aquasecurity/trivy-action from 0.11.2 to 0.12.0	3 years ago
dependabot[bot]	3b8e972eb8	build(deps): bump alpine from 3.18.3 to 3.18.4 Bumps alpine from 3.18.3 to 3.18.4. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	cf93875fb4	build(deps): bump github/codeql-action from 2.21.4 to 2.21.9 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.4 to 2.21.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`a09933a12a...ddccb87388`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	130a06346a	build(deps): bump google.golang.org/api from 0.138.0 to 0.143.0 Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.138.0 to 0.143.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.138.0...v0.143.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	72723fbe1a	build(deps): bump actions/checkout from 3.5.3 to 4.1.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 4.1.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](`c85c95e3d7...8ade135a41`) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	2516d6bf7f	build(deps): bump docker/setup-buildx-action from 2.9.1 to 3.0.0 Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.9.1 to 3.0.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](`4c0219f9ac...f95db51fdd`) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	fc8004cecc	build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](`0b7f8abb15...a8a3f3ad30`) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	bbdff7072b	build(deps): bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.11.2 to 0.12.0. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](`41f05d9ecf...fbd16365eb`) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	70d7a2c7c1	Merge pull request #3069 from dexidp/dependabot/docker/alpine-3.18.3 build(deps): bump alpine from 3.18.2 to 3.18.3	3 years ago
Márk Sági-Kazár	c2747bdaf4	Merge pull request #3071 from dexidp/dependabot/github_actions/actions/setup-go-4.1.0 build(deps): bump actions/setup-go from 4.0.1 to 4.1.0	3 years ago
Márk Sági-Kazár	948439c1bc	Merge pull request #3076 from dexidp/dependabot/github_actions/github/codeql-action-2.21.4 build(deps): bump github/codeql-action from 2.21.2 to 2.21.4	3 years ago
Márk Sági-Kazár	baea62ca97	Merge pull request #3078 from dexidp/dependabot/github_actions/actions/dependency-review-action-3.0.8 build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8	3 years ago
Márk Sági-Kazár	c4a29a62da	Merge pull request #3079 from dexidp/dependabot/go_modules/google.golang.org/api-0.138.0 build(deps): bump google.golang.org/api from 0.134.0 to 0.138.0	3 years ago
dependabot[bot]	2f63b094d7	build(deps): bump google.golang.org/api from 0.134.0 to 0.138.0 Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.134.0 to 0.138.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.134.0...v0.138.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	1a78743d21	build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8 Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.6 to 3.0.8. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](`1360a344cc...f6fff72a32`) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	48e2d4e22c	build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.21.2 to 2.21.4. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`0ba4244466...a09933a12a`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	96d6e0a402	build(deps): bump actions/setup-go from 4.0.1 to 4.1.0 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.0.1 to 4.1.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](`fac708d667...93397bea11`) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	fbbac8cc1f	build(deps): bump alpine from 3.18.2 to 3.18.3 Bumps alpine from 3.18.2 to 3.18.3. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
Márk Sági-Kazár	a9d1fd31c3	Merge pull request #3060 from dexidp/dependabot/go_modules/golang.org/x/net-0.13.0 build(deps): bump golang.org/x/net from 0.12.0 to 0.13.0	3 years ago
dependabot[bot]	9a23dce727	build(deps): bump golang.org/x/net from 0.12.0 to 0.13.0 Bumps [golang.org/x/net](https://github.com/golang/net) from 0.12.0 to 0.13.0. - [Commits](https://github.com/golang/net/compare/v0.12.0...v0.13.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	3 years ago
dependabot[bot]	b78bf1ff6d	build(deps): bump google.golang.org/grpc in /api/v2 (#3053 ) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.55.0 to 1.57.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.55.0...v1.57.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	90afec1b37	build(deps): bump google.golang.org/protobuf in /api/v2 (#3021 ) Bumps google.golang.org/protobuf from 1.30.0 to 1.31.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	9890559a3b	build(deps): bump google.golang.org/grpc from 1.56.1 to 1.57.0 (#3055 ) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.56.1 to 1.57.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.56.1...v1.57.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Sean Liao	affd4d4e49	verify access tokens by checking getuserinfo during a token exchange (#3031 ) The provider.Verifier.Verify endpoint we were using only works with ID tokens. This isn't an issue with systems which use ID tokens as access tokens (e.g. dex), but for systems with opaque access tokens (e.g. Google / GCP), those access tokens could not be verified. Instead, check the access token against the getUserInfo endpoint. Signed-off-by: Sean Liao <sean+git@liao.dev> Co-authored-by: Maksim Nabokikh <max.nabokih@gmail.com>	3 years ago
dependabot[bot]	f2358ef26d	build(deps): bump github/codeql-action from 2.20.1 to 2.21.2 (#3057 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.20.1 to 2.21.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`f6e388ebf0...0ba4244466`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	664c3b7421	build(deps): bump docker/setup-buildx-action from 2.8.0 to 2.9.1 (#3043 ) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.8.0 to 2.9.1. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](`16c0bc4a6e...4c0219f9ac`) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	0a21c575ba	build(deps): bump google.golang.org/api from 0.130.0 to 0.134.0 (#3054 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.130.0 to 0.134.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.130.0...v0.134.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Márk Sági-Kazár	295b0acd61	Merge pull request #2521 from Cedric-Magnan/master feat: Update response_types_supported to allow multiple-valued response type combinations	3 years ago
dependabot[bot]	bfa6d61214	build(deps): bump helm/kind-action from 1.7.0 to 1.8.0 (#3041 ) Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.7.0 to 1.8.0. - [Release notes](https://github.com/helm/kind-action/releases) - [Commits](https://github.com/helm/kind-action/compare/v1.7.0...v1.8.0) --- updated-dependencies: - dependency-name: helm/kind-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	769a26eb47	build(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#3035 ) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.10.0 to 0.11.0. - [Commits](https://github.com/golang/crypto/compare/v0.10.0...v0.11.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	ea26e6592e	build(deps): bump google.golang.org/api from 0.129.0 to 0.130.0 (#3034 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.129.0 to 0.130.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.129.0...v0.130.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	e768dc5b27	build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0 (#3036 ) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.11.0 to 0.12.0. - [Commits](https://github.com/golang/net/compare/v0.11.0...v0.12.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Marco Franssen	895b166681	Implement GetClient gRPC endpoint (#2972 ) Signed-off-by: Marco Franssen <marco.franssen@gmail.com>	3 years ago
Sean Liao	8ac8dca9f4	include granttypes in example config (#3027 ) Signed-off-by: Sean Liao <sean+git@liao.dev>	3 years ago
Sean Liao	dcf7b18510	OAuth 2.0 Token Exchange (#2806 ) Signed-off-by: Sean Liao <sean+git@liao.dev> Co-authored-by: Maksim Nabokikh <max.nabokih@gmail.com>	3 years ago
dependabot[bot]	08bb7fb98b	build(deps): bump docker/setup-buildx-action from 2.7.0 to 2.8.0 (#3023 ) Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.7.0 to 2.8.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](`ecf95283f0...16c0bc4a6e`) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	b01283e98b	build(deps): bump google.golang.org/api from 0.127.0 to 0.129.0 (#3022 ) Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.127.0 to 0.129.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.127.0...v0.129.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	76d5274933	build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 (#3019 ) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.3 to 2.2.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](`80e868c13c...08b4669551`) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	a1f14da3c5	build(deps): bump anchore/sbom-action from 0.14.2 to 0.14.3 (#3014 ) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.14.2 to 0.14.3. - [Release notes](https://github.com/anchore/sbom-action/releases) - [Commits](`4d571ad103...78fc58e266`) --- updated-dependencies: - dependency-name: anchore/sbom-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	645ee45fbd	build(deps): bump github/codeql-action from 2.20.0 to 2.20.1 (#3015 ) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.20.0 to 2.20.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`6c089f53dd...f6e388ebf0`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	31e45d149c	build(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 (#3016 ) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.56.0 to 1.56.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](https://github.com/grpc/grpc-go/compare/v1.56.0...v1.56.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Márk Sági-Kazár	1d3dc4111e	Merge pull request #3010 from dexidp/dependabot/go_modules/github.com/prometheus/client_golang-1.16.0 build(deps): bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0	3 years ago
Márk Sági-Kazár	96557f0818	Merge pull request #3009 from dexidp/dependabot/go_modules/google.golang.org/grpc-1.56.0 build(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0	3 years ago

1 2 3 4 5 ...

2566 Commits (efcdf763a93f7b4daefedb2e0ddfdfcae2ca123e) All Branches Search

2566 Commits (efcdf763a93f7b4daefedb2e0ddfdfcae2ca123e)

All Branches