mystiq
/
dex
Archived
4
0
Fork 1
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,183 Commits 27 Branches 73 Tags 23 MiB
Commit Graph

2183 Commits

Author SHA1 Message Date
Bob Callaway 6eeba947f1 Merge remote-tracking branch 'upstream/master' into issue2289 2022-05-30 11:52:05 -04:00
Maksim Nabokikh a858ffbcf2
Merge pull request #2538 from loopholelabs/2537-fix-json-response 
Device Code Flow does not return application/json in Content-Type header
 2022-05-30 17:55:24 +04:00
Shivansh Vij 65592d0b5a
Updating test cases 
Fixes https://github.com/dexidp/dex/issues/2537

Signed-off-by: Shivansh Vij <shivanshvij@outlook.com>
 2022-05-26 15:54:54 -04:00
Shivansh Vij cbf158bcc0
Fixes https://github.com/dexidp/dex/issues/2537 
Signed-off-by: Shivansh Vij <shivanshvij@outlook.com>
 2022-05-26 15:49:49 -04:00
Maksim Nabokikh 6da5187b47
Merge pull request #2482 from flant/profiling-endpoint 
feat: enable profiling endpoints
 2022-05-25 20:55:05 +04:00
Maksim Nabokikh 957def7928
Merge pull request #2533 from flant/notify-groups-access 
fix: add notification about groups access to the Grant Access page
 2022-05-25 18:20:30 +04:00
Márk Sági-Kazár ec4ac04c41
Merge pull request #2463 from dexidp/release-config 
Release note configuration
 2022-05-25 16:04:47 +02:00
m.nabokikh bdfb10137a Add the comment about groups request notification 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-05-25 17:50:12 +04:00
dependabot[bot] e9d17888d8
Merge pull request #2535 from dexidp/dependabot/docker/golang-1.18.2-alpine3.15 2022-05-25 12:13:35 +00:00
Mark Sagi-Kazar b4ccd92d65
chore: release note configuration 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-05-25 13:46:28 +02:00
dependabot[bot] 505726e7d5
build(deps): bump golang from 1.18.0-alpine3.15 to 1.18.2-alpine3.15 
Bumps golang from 1.18.0-alpine3.15 to 1.18.2-alpine3.15.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-25 11:40:20 +00:00
Márk Sági-Kazár 70e6cc2205
Merge pull request #2441 from dexidp/go118 
feat: upgrade Go to 1.18
 2022-05-25 13:39:37 +02:00
dependabot[bot] 3df9cf2cb9
Merge pull request #2452 from dexidp/dependabot/go_modules/api/v2/google.golang.org/protobuf-1.28.0 2022-05-25 09:46:13 +00:00
Mark Sagi-Kazar a02f2e8fac
chore: fix lint violations 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-05-25 11:17:34 +02:00
dependabot[bot] 55d963ac77
build(deps): bump google.golang.org/protobuf in /api/v2 
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.27.1 to 1.28.0.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash)
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.27.1...v1.28.0)

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-25 09:09:15 +00:00
dependabot[bot] c2f3bea207
Merge pull request #2517 from dexidp/dependabot/go_modules/api/v2/google.golang.org/grpc-1.46.2 2022-05-25 09:08:30 +00:00
Mark Sagi-Kazar 1736f95024
chore: upgrade linter 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-05-25 10:58:20 +02:00
Mark Sagi-Kazar ab02a2d714
feat: upgrade Go to 1.18 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-05-25 10:47:38 +02:00
dependabot[bot] a3dfe30a12
build(deps): bump google.golang.org/grpc in /api/v2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.44.0 to 1.46.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.44.0...v1.46.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-25 08:39:38 +00:00
dependabot[bot] 1884705b87
Merge pull request #2534 from dexidp/dependabot/go_modules/google.golang.org/api-0.81.0 2022-05-25 08:39:09 +00:00
dependabot[bot] 8e6d123772
build(deps): bump google.golang.org/api from 0.74.0 to 0.81.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.74.0 to 0.81.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.74.0...v0.81.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-25 04:07:33 +00:00
dependabot[bot] 999d3855c1
Merge pull request #2527 from dexidp/dependabot/go_modules/github.com/felixge/httpsnoop-1.0.3 2022-05-24 12:17:52 +00:00
dependabot[bot] 81818b9afe
build(deps): bump github.com/felixge/httpsnoop from 1.0.2 to 1.0.3 
Bumps [github.com/felixge/httpsnoop](https://github.com/felixge/httpsnoop) from 1.0.2 to 1.0.3.
- [Release notes](https://github.com/felixge/httpsnoop/releases)
- [Commits](https://github.com/felixge/httpsnoop/compare/v1.0.2...v1.0.3)

---
updated-dependencies:
- dependency-name: github.com/felixge/httpsnoop
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 11:15:22 +00:00
dependabot[bot] 2baf728d1f
Merge pull request #2529 from dexidp/dependabot/go_modules/github.com/prometheus/client_golang-1.12.2 2022-05-24 11:14:49 +00:00
dependabot[bot] 7071480c2a
Merge pull request #2526 from dexidp/dependabot/go_modules/google.golang.org/grpc-1.46.2 2022-05-24 11:14:37 +00:00
dependabot[bot] 071969f172
Merge pull request #2528 from dexidp/dependabot/go_modules/github.com/coreos/go-oidc/v3-3.2.0 2022-05-24 11:13:43 +00:00
dependabot[bot] f881fb4b2e
build(deps): bump github.com/prometheus/client_golang 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.1 to 1.12.2.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.12.1...v1.12.2)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 10:13:11 +00:00
dependabot[bot] bbb3bba01a
build(deps): bump github.com/coreos/go-oidc/v3 from 3.1.0 to 3.2.0 
Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/coreos/go-oidc/releases)
- [Commits](https://github.com/coreos/go-oidc/compare/v3.1.0...v3.2.0)

---
updated-dependencies:
- dependency-name: github.com/coreos/go-oidc/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 10:13:11 +00:00
dependabot[bot] 97c7f2491b
build(deps): bump google.golang.org/grpc from 1.45.0 to 1.46.2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.45.0 to 1.46.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.45.0...v1.46.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 10:13:10 +00:00
dependabot[bot] 6c5286cbfe
Merge pull request #2491 from dexidp/dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.4 2022-05-24 10:12:05 +00:00
dependabot[bot] a3880c7371
build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.2 to 3.5.4 
Bumps [go.etcd.io/etcd/client/v3](https://github.com/etcd-io/etcd) from 3.5.2 to 3.5.4.
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Changelog](https://github.com/etcd-io/etcd/blob/main/Dockerfile-release.amd64)
- [Commits](https://github.com/etcd-io/etcd/compare/v3.5.2...v3.5.4)

---
updated-dependencies:
- dependency-name: go.etcd.io/etcd/client/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 09:29:30 +00:00
dependabot[bot] dc0dfa771f
Merge pull request #2531 from dexidp/dependabot/docker/alpine-3.16.0 2022-05-24 09:28:32 +00:00
Márk Sági-Kazár 6759369e16
Merge pull request #2532 from flant/go-mod-compact-1-17 
chore: Go mod update 1.17
 2022-05-24 11:27:38 +02:00
m.nabokikh a7ca81f03a chore: Go mod update 1.17 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-05-24 10:10:10 +04:00
dependabot[bot] 51f1ec441d
build(deps): bump alpine from 3.15.4 to 3.16.0 
Bumps alpine from 3.15.4 to 3.16.0.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-24 04:07:07 +00:00
dependabot[bot] a4fb0a089f
Merge pull request #2525 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.3.0 2022-05-23 18:33:56 +00:00
dependabot[bot] c98646f004
build(deps): bump aquasecurity/trivy-action from 0.2.5 to 0.3.0 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.2.5 to 0.3.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.2.5...0.3.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-23 04:07:04 +00:00
Maksim Nabokikh 9da59ce5dd
Merge pull request #2523 from flant/increase-lint-timeout 
Bump lint timeout to reduce the number of failed executions
 2022-05-21 00:04:42 +04:00
Michael Kelly 502a2d0d4a
Limit the amount of objects we attempt to GC on each cycle 
If something causes the number k8s resources to increase beyond a
certain threshold, garbage collection can fail because the query to
retrieve those resources will time out, resulting in a perpetual cycle
of being unable to garbage collect resources.

In lieu of trying to get *every* object each cycle, we can limit the
number of resources retrieved per GC cycle to some reasonable number.

Signed-off-by: Michael Kelly <mkelly@arista.com>
 2022-05-20 09:18:05 -07:00
dependabot[bot] f09af6102c
Merge pull request #2506 from dexidp/dependabot/github_actions/docker/setup-buildx-action-2 2022-05-20 14:50:39 +00:00
m.nabokikh 3d5a3befb4 fix: prevent cross-site scripting for the device flow 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-05-20 18:26:49 +04:00
m.nabokikh 97254db62a Bump lint timeout to reduce the number of failed executions 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-05-20 18:21:40 +04:00
dependabot[bot] 0270536a2e
Merge pull request #2508 from dexidp/dependabot/github_actions/docker/setup-qemu-action-2 2022-05-20 13:55:27 +00:00
dependabot[bot] 861ad968c5
build(deps): bump docker/setup-buildx-action from 1 to 2 
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 1 to 2.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-20 13:52:12 +00:00
dependabot[bot] d26d4e15bc
Merge pull request #2507 from dexidp/dependabot/github_actions/docker/login-action-2 2022-05-20 13:51:31 +00:00
dependabot[bot] 96e0229205
Merge pull request #2509 from dexidp/dependabot/github_actions/docker/metadata-action-4 2022-05-20 13:50:43 +00:00
dependabot[bot] 866f3e0c76
Merge pull request #2510 from dexidp/dependabot/github_actions/docker/build-push-action-3 2022-05-20 13:50:09 +00:00
dependabot[bot] 47411e9a75
build(deps): bump docker/login-action from 1 to 2 
Bumps [docker/login-action](https://github.com/docker/login-action) from 1 to 2.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-20 13:15:47 +00:00
dependabot[bot] f26181558c
build(deps): bump docker/setup-qemu-action from 1 to 2 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 1 to 2.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-20 13:15:37 +00:00
dependabot[bot] 574650abe3
build(deps): bump docker/metadata-action from 3 to 4 
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3 to 4.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](https://github.com/docker/metadata-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-05-20 13:14:49 +00:00