Commit graph

2097 commits

Author SHA1 Message Date
Márk Sági-Kazár
c8ff7ed40a
Merge pull request #2478 from dexidp/distroless
Publish official distroless images
2022-04-15 08:48:42 +02:00
Mark Sagi-Kazar
3702525c86
ci: disable Docker job on push
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 16:08:39 +02:00
Mark Sagi-Kazar
8b2ce6252d
ci: build distroless images
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 16:07:00 +02:00
Mark Sagi-Kazar
6038af5044
build: help dependabot detect base image versions
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 15:18:28 +02:00
Mark Sagi-Kazar
95e81a925f
ci: update trivy scan job
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 15:08:26 +02:00
Márk Sági-Kazár
4a5f2dbb4d
Merge pull request #2474 from dexidp/artifact-build
New docker image build
2022-04-14 13:38:27 +02:00
Mark Sagi-Kazar
aa35fa6580
ci: wait for container images with container scan
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 12:50:12 +02:00
Mark Sagi-Kazar
0f5481a00a
ci: new docker image build
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-14 01:44:13 +02:00
Márk Sági-Kazár
783a7621e0
Merge pull request #2471 from MattiasGees/bump-alpine
Bump Alpine to latest version
2022-04-14 01:05:55 +02:00
Mattias Gees
169b5a59cc Bump Alpine to latest version
Signed-off-by: Mattias Gees <mattias.gees@gmail.com>
2022-04-13 14:31:46 +01:00
Daniel Haus
4088d4f897
Remove external setting, enable injection of HTTP client to config.
Signed-off-by: Daniel Haus <dhaus@redhat.com>
2022-04-12 17:38:59 +02:00
Daniel Haus
2b262ff5d6
Create setting to allow to trust the system root CAs
Previously, when rootCA was set, the trusted system root CAs were ignored. Now, allow for both being able to be configured and used

Signed-off-by: Daniel Haus <dhaus@redhat.com>
2022-04-12 17:38:58 +02:00
Márk Sági-Kazár
a2089dd8e7
Merge pull request #2467 from dexidp/dependabot/github_actions/actions/setup-go-3
build(deps): bump actions/setup-go from 2 to 3
2022-04-11 12:14:48 +02:00
Márk Sági-Kazár
fdc43a0c36
Merge pull request #2466 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.2.3
build(deps): bump aquasecurity/trivy-action from 0.2.2 to 0.2.3
2022-04-11 12:14:36 +02:00
dependabot[bot]
d8289d3429
build(deps): bump actions/setup-go from 2 to 3
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-11 04:07:31 +00:00
dependabot[bot]
23de36d721
build(deps): bump aquasecurity/trivy-action from 0.2.2 to 0.2.3
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.2.2 to 0.2.3.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.2.2...0.2.3)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-11 04:07:31 +00:00
Márk Sági-Kazár
a51ed2c4db
Merge pull request #2428 from dexidp/update-ent
Update ent
2022-04-07 17:26:43 +02:00
Mark Sagi-Kazar
9b1a8409f1
revert: atlas and precision change
Looks like Atlas (the new migration library under Ent) cannot
handle precision properly.

An issue has been reported to Ent: https://github.com/ent/ent/issues/2454

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-06 16:27:33 +02:00
Mark Sagi-Kazar
b51e73bc2e
fix: define milisecond precision for postgres
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-06 16:27:33 +02:00
Mark Sagi-Kazar
0c3c577b52
feat: use the new atlas engine for migrations
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-06 16:27:32 +02:00
Mark Sagi-Kazar
20b03b3f6d
feat: update generated storage files
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-06 16:27:32 +02:00
Mark Sagi-Kazar
07a43f2d66
feat: update entgo library
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-04-06 16:27:31 +02:00
dependabot[bot]
493c0eb8b7
Merge pull request #2451 from dexidp/dependabot/go_modules/google.golang.org/protobuf-1.28.0 2022-04-06 11:11:23 +00:00
Márk Sági-Kazár
50dc2f5518
Merge pull request #2433 from flant/implicit_flow_discovery
fix: Implicit Grant discovery
2022-04-06 12:42:43 +02:00
dependabot[bot]
ff68ca1aae
build(deps): bump google.golang.org/protobuf from 1.27.1 to 1.28.0
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.27.1 to 1.28.0.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash)
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.27.1...v1.28.0)

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-06 10:33:34 +00:00
dependabot[bot]
cf78e741ca
Merge pull request #2458 from dexidp/dependabot/go_modules/google.golang.org/api-0.74.0 2022-04-06 10:32:54 +00:00
dependabot[bot]
e462d69353
Merge pull request #2461 from dexidp/dependabot/docker/alpine-3.15.4 2022-04-06 10:31:58 +00:00
dependabot[bot]
b163944ee5
build(deps): bump alpine from 3.15.3 to 3.15.4
Bumps alpine from 3.15.3 to 3.15.4.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-05 04:06:34 +00:00
dependabot[bot]
a136c0141e
build(deps): bump google.golang.org/api from 0.70.0 to 0.74.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.70.0 to 0.74.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.70.0...v0.74.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-31 04:07:36 +00:00
dependabot[bot]
2ebcd70d30
Merge pull request #2456 from dexidp/dependabot/docker/alpine-3.15.3 2022-03-29 08:13:35 +00:00
dependabot[bot]
6692759586
build(deps): bump alpine from 3.15.1 to 3.15.3
Bumps alpine from 3.15.1 to 3.15.3.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-29 04:08:06 +00:00
Márk Sági-Kazár
897ae8d2a3
Merge pull request #2446 from dexidp/update-base-image
Update alpine version
2022-03-22 14:09:20 +01:00
Mark Sagi-Kazar
863416f0a3
chore: update alpine version
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-03-22 13:10:17 +01:00
Márk Sági-Kazár
090593b7f9
Merge pull request #2444 from dexidp/dependabot/docker/alpine-3.15.1
build(deps): bump alpine from 3.15.0 to 3.15.1
2022-03-22 13:08:47 +01:00
dependabot[bot]
df1cb1cdbf
build(deps): bump alpine from 3.15.0 to 3.15.1
Bumps alpine from 3.15.0 to 3.15.1.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-18 04:07:09 +00:00
dependabot[bot]
20e2e429b3
Merge pull request #2440 from dexidp/dependabot/go_modules/github.com/stretchr/testify-1.7.1 2022-03-16 12:27:51 +00:00
dependabot[bot]
c98636457b
build(deps): bump github.com/stretchr/testify from 1.7.0 to 1.7.1
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.0 to 1.7.1.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-16 04:08:06 +00:00
dependabot[bot]
f1cc7133da
Merge pull request #2437 from dexidp/dependabot/go_modules/github.com/spf13/cobra-1.4.0 2022-03-12 10:48:01 +00:00
dependabot[bot]
111ce66bd0
build(deps): bump github.com/spf13/cobra from 1.3.0 to 1.4.0
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md)
- [Commits](https://github.com/spf13/cobra/compare/v1.3.0...v1.4.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-11 04:06:24 +00:00
m.nabokikh
57e9611ff6 fix: Implicit Grant discovery
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
2022-03-08 16:16:25 +04:00
Maksim Nabokikh
cb9f0b5d5e
Merge pull request #2418 from dirien/acr_values
feat: Add acr_values support for OIDC
2022-03-08 10:22:07 +04:00
dependabot[bot]
a322f42a10
Merge pull request #2426 from dexidp/dependabot/docker/golang-1.17.8-alpine3.14 2022-03-07 11:10:18 +00:00
dependabot[bot]
22a7d3acd3
build(deps): bump golang from 1.17.7-alpine3.14 to 1.17.8-alpine3.14
Bumps golang from 1.17.7-alpine3.14 to 1.17.8-alpine3.14.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-07 04:07:46 +00:00
Engin Diri
5d9d68106a
feat: Add acr_values support for OIDC
Signed-off-by: Engin Diri <engin.diri@mail.schwarz>
2022-03-05 09:25:27 +01:00
dependabot[bot]
b83ba01c40
Merge pull request #2424 from dexidp/dependabot/go_modules/github.com/russellhaering/goxmldsig-1.2.0 2022-03-04 09:34:54 +00:00
Maksim Nabokikh
5f9abc5be8
Merge pull request #2371 from seuf/authproxy-groups-configuration
Allow configuration of returned groups via authproxy connector
2022-03-04 00:44:56 +04:00
dependabot[bot]
98ed9b70a4
build(deps): bump github.com/russellhaering/goxmldsig
Bumps [github.com/russellhaering/goxmldsig](https://github.com/russellhaering/goxmldsig) from 1.1.1 to 1.2.0.
- [Release notes](https://github.com/russellhaering/goxmldsig/releases)
- [Commits](https://github.com/russellhaering/goxmldsig/compare/v1.1.1...v1.2.0)

---
updated-dependencies:
- dependency-name: github.com/russellhaering/goxmldsig
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-03 04:06:30 +00:00
dependabot[bot]
a190bba9e6
Merge pull request #2422 from dexidp/dependabot/github_actions/actions/checkout-3 2022-03-02 10:06:49 +00:00
Maksim Nabokikh
5b0cb0704a
Merge pull request #2342 from dhaus67/refresh-token-openshift-connector
Add support for RefreshConnector for openshift connector.
2022-03-02 11:46:21 +04:00
dependabot[bot]
616e20b334
build(deps): bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-03-02 04:08:38 +00:00