k-space
/
dex
Archived
9
0
Fork 0
Code Issues Pull Requests Packages Projects Activity
2,248 Commits 1 Branch 0 Tags 18 MiB
Commit Graph

2248 Commits

Author SHA1 Message Date
Lauri Võsandi 990bf2d721 Fiddling with UID-s is none of Docker's business
continuous-integration/drone Build is passing Details
2023-01-10 15:17:48 +02:00
Lauri Võsandi 87b7c7270d Convert username to lowercase
continuous-integration/drone Build is failing Details
2023-01-10 15:00:25 +02:00
Márk Sági-Kazár 54c9e8231f
Merge pull request #2706 from flant/backport-cve-2022-27665 
Backport #2705 to v2.35.x
 2022-10-11 14:19:16 +02:00
m.nabokikh ccbc86e373 fix: Update gomplate version to 3.11.3 fix CVE-2022-27665 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-10-10 13:25:48 +02:00
Márk Sági-Kazár 9063c79023
Merge pull request #2702 from dexidp/backport-2700 
Backport #2700 to v2.35.x
 2022-10-07 01:05:44 +02:00
Mark Sagi-Kazar 829444de5e
fix(connector/google): only initialize admin service if necessary 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-10-06 20:16:05 +02:00
Márk Sági-Kazár 8e2bce3fb6
Merge pull request #2698 from dexidp/backport-go-update 
Backport Go update to v2.35.x
 2022-10-05 14:29:19 +02:00
dependabot[bot] 24401fdf99
build(deps): bump golang from 1.19.1-alpine3.16 to 1.19.2-alpine3.16 
Bumps golang from 1.19.1-alpine3.16 to 1.19.2-alpine3.16.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-10-05 12:39:57 +02:00
Márk Sági-Kazár 20274136be
Merge pull request #2696 from dexidp/backport-2694 
Backport #2694 to v2.35.x
 2022-10-04 10:37:22 +02:00
Mark Sagi-Kazar 261adee26b
fix(connector/google): make admin email optional for default creds 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-10-04 09:07:37 +02:00
Mark Sagi-Kazar 19b3aab323
Revert "fix: check for no serviceAccountFilePath and no email (#2679)" 
This reverts commit 49477729ce.

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-10-04 09:07:30 +02:00
Márk Sági-Kazár e4bceef9f3
Merge pull request #2692 from flant/refresh-once 
fix: refresh token only once for all concurrent requests
 2022-10-03 12:19:23 +02:00
m.nabokikh 4b5f1d5289 fix: refresh token only once for all concurrent requests 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-10-02 23:37:27 +02:00
Márk Sági-Kazár ffeb4d5e16
Merge pull request #2691 from jannfis/docs/add-adopter-argocd 
docs: Add Argo CD to list of Dex adopters
 2022-09-30 20:12:44 +02:00
Jann Fischer 32f61e1892
Add Argo CD to list of Dex adopters 
Signed-off-by: Jann Fischer <jfischer@redhat.com>
 2022-09-30 14:49:49 +02:00
Márk Sági-Kazár c70a14b14c
Merge pull request #2688 from dexidp/dep-updates 
Update golang.org/x packages
 2022-09-29 20:17:55 +02:00
Mark Sagi-Kazar 542c2f56fd
chore(deps): update golang.org/x packages 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-09-29 15:47:12 +02:00
Márk Sági-Kazár d3864d1e5a
Merge pull request #2684 from dexidp/dependabot/go_modules/entgo.io/ent-0.11.3 
build(deps): bump entgo.io/ent from 0.11.2 to 0.11.3
 2022-09-29 15:13:05 +02:00
dependabot[bot] 186e4092fd
build(deps): bump entgo.io/ent from 0.11.2 to 0.11.3 
Bumps [entgo.io/ent](https://github.com/ent/ent) from 0.11.2 to 0.11.3.
- [Release notes](https://github.com/ent/ent/releases)
- [Commits](https://github.com/ent/ent/compare/v0.11.2...v0.11.3)

---
updated-dependencies:
- dependency-name: entgo.io/ent
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-29 04:04:44 +00:00
Bob Callaway 07e0904923
fix: supply HMACKey in test case (#2683) 
Signed-off-by: Bob Callaway <bcallaway@google.com>
 2022-09-28 22:31:40 +04:00
Bob Callaway 49477729ce
fix: check for no serviceAccountFilePath and no email (#2679) 
Signed-off-by: Bob Callaway <bcallaway@google.com>
 2022-09-28 19:59:28 +02:00
Márk Sági-Kazár 45b6f49674
Merge pull request #2681 from dexidp/dependabot/github_actions/helm/kind-action-1.4.0 
build(deps): bump helm/kind-action from 1.3.0 to 1.4.0
 2022-09-28 17:54:01 +02:00
Márk Sági-Kazár ecac896ae0
Merge pull request #2682 from dexidp/dependabot/go_modules/google.golang.org/api-0.98.0 
build(deps): bump google.golang.org/api from 0.97.0 to 0.98.0
 2022-09-28 16:15:42 +02:00
dependabot[bot] 2a8c7d7ac1
Merge pull request #2666 from dexidp/dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.5 2022-09-28 14:14:02 +00:00
Márk Sági-Kazár 49471b14c8
Merge pull request from GHSA-vh7g-p26c-j2cw 
Add HMAC protection on /approval endpoint
 2022-09-28 16:10:11 +02:00
dependabot[bot] 022050615e
build(deps): bump google.golang.org/api from 0.97.0 to 0.98.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.97.0 to 0.98.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.97.0...v0.98.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-28 04:05:55 +00:00
Bob Callaway 793bcc4b61
address review comments 
Signed-off-by: Bob Callaway <bcallaway@google.com>
 2022-09-26 15:16:18 -04:00
Bob Callaway cf3b19a952
Merge remote-tracking branch 'upstream/master' into advisory-fix-1 
Signed-off-by: Bob Callaway <bcallaway@google.com>
 2022-09-26 15:15:58 -04:00
dependabot[bot] 51a13b3453
build(deps): bump helm/kind-action from 1.3.0 to 1.4.0 
Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.3.0 to 1.4.0.
- [Release notes](https://github.com/helm/kind-action/releases)
- [Commits](https://github.com/helm/kind-action/compare/v1.3.0...v1.4.0)

---
updated-dependencies:
- dependency-name: helm/kind-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-26 04:07:32 +00:00
dependabot[bot] 97d3766a08
build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5 
Bumps [go.etcd.io/etcd/client/v3](https://github.com/etcd-io/etcd) from 3.5.4 to 3.5.5.
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Changelog](https://github.com/etcd-io/etcd/blob/main/Dockerfile-release.amd64)
- [Commits](https://github.com/etcd-io/etcd/compare/v3.5.4...v3.5.5)

---
updated-dependencies:
- dependency-name: go.etcd.io/etcd/client/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-23 21:05:01 +00:00
dependabot[bot] a483f5b504
build(deps): bump google.golang.org/api from 0.95.0 to 0.97.0 (#2677) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.95.0 to 0.97.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.95.0...v0.97.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-24 01:03:19 +04:00
Erwin van Eyk d96f384f2a
Reduce HTTP client creations in the Keystone connector (#2659) 
Signed-off-by: erwinvaneyk <erwinvaneyk@gmail.com>
 2022-09-24 01:02:02 +04:00
Márk Sági-Kazár 7b589ba3a7
Merge pull request #2658 from dexidp/dependabot/go_modules/github.com/coreos/go-oidc/v3-3.4.0 
build(deps): bump github.com/coreos/go-oidc/v3 from 3.3.0 to 3.4.0
 2022-09-14 13:38:42 +02:00
dependabot[bot] 45b3b420d9
Merge pull request #2638 from dexidp/dependabot/go_modules/api/v2/google.golang.org/grpc-1.49.0 2022-09-14 10:15:30 +00:00
dependabot[bot] 8e8d4cc8af
build(deps): bump google.golang.org/grpc in /api/v2 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.49.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.49.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-13 16:06:35 +00:00
dependabot[bot] 02c1f5ff3e
Merge pull request #2652 from dexidp/dependabot/go_modules/google.golang.org/api-0.95.0 2022-09-13 16:05:43 +00:00
dependabot[bot] 3895975af1
build(deps): bump github.com/lib/pq from 1.10.5 to 1.10.7 (#2651) 
Bumps [github.com/lib/pq](https://github.com/lib/pq) from 1.10.5 to 1.10.7.
- [Release notes](https://github.com/lib/pq/releases)
- [Commits](https://github.com/lib/pq/compare/v1.10.5...v1.10.7)

---
updated-dependencies:
- dependency-name: github.com/lib/pq
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-13 11:40:26 +04:00
dependabot[bot] 8f04f97c71
build(deps): bump github.com/coreos/go-oidc/v3 from 3.3.0 to 3.4.0 
Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.3.0 to 3.4.0.
- [Release notes](https://github.com/coreos/go-oidc/releases)
- [Commits](https://github.com/coreos/go-oidc/compare/v3.3.0...v3.4.0)

---
updated-dependencies:
- dependency-name: github.com/coreos/go-oidc/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-12 04:06:17 +00:00
Márk Sági-Kazár 4117bac09e
Merge pull request #2656 from dexidp/update-alpine 
chore: update alpine version in Go image
 2022-09-08 13:02:35 +02:00
Mark Sagi-Kazar addc7850fa
chore: update alpine version in Go image 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-09-08 11:57:34 +02:00
Márk Sági-Kazár b50d6626fb
Merge pull request #2648 from dexidp/nix-go 
build: bump Go version to 1.19 in Nix
 2022-09-07 15:12:46 +02:00
Hoang Quoc Trung a1a3ed5b25
Implement Application Default Credentials for the google connector (#2530) 
Signed-off-by: Trung <trung.hoang@pricehubble.com>
 2022-09-07 15:56:56 +04:00
dependabot[bot] 58fa7a16f1
build(deps): bump google.golang.org/api from 0.94.0 to 0.95.0 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.94.0 to 0.95.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.94.0...v0.95.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-07 11:51:15 +00:00
Márk Sági-Kazár cbe3d24587
Merge pull request #2650 from dexidp/dependabot/docker/golang-1.19.1-alpine3.15 
build(deps): bump golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15
 2022-09-07 13:50:41 +02:00
dependabot[bot] 534ce7fbf0
Merge pull request #2611 from dexidp/dependabot/go_modules/api/v2/google.golang.org/protobuf-1.28.1 2022-09-07 11:49:41 +00:00
dependabot[bot] eb60006117
Merge pull request #2636 from dexidp/dependabot/go_modules/google.golang.org/grpc-1.49.0 2022-09-07 11:49:29 +00:00
dependabot[bot] 9e4c29784d
build(deps): bump golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15 
Bumps golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-07 04:05:12 +00:00
Mark Sagi-Kazar cf572e9154
build: bump Go version to 1.19 in Nix 
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
 2022-09-06 14:08:11 +02:00
dependabot[bot] 59730816e6
build(deps): bump google.golang.org/grpc from 1.47.0 to 1.49.0 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.49.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.49.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-09-01 11:53:31 +00:00
dependabot[bot] 221ff841bc
build(deps): bump github.com/coreos/go-oidc/v3 from 3.2.0 to 3.3.0 (#2646) 
Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/coreos/go-oidc/releases)
- [Commits](https://github.com/coreos/go-oidc/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: github.com/coreos/go-oidc/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-09-01 15:52:27 +04:00