Commit Graph

2207 Commits

Author SHA1 Message Date
Mark Sagi-Kazar
addc7850fa
chore: update alpine version in Go image
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-09-08 11:57:34 +02:00
Márk Sági-Kazár
b50d6626fb
Merge pull request #2648 from dexidp/nix-go
build: bump Go version to 1.19 in Nix
2022-09-07 15:12:46 +02:00
Hoang Quoc Trung
a1a3ed5b25
Implement Application Default Credentials for the google connector (#2530)
Signed-off-by: Trung <trung.hoang@pricehubble.com>
2022-09-07 15:56:56 +04:00
Márk Sági-Kazár
cbe3d24587
Merge pull request #2650 from dexidp/dependabot/docker/golang-1.19.1-alpine3.15
build(deps): bump golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15
2022-09-07 13:50:41 +02:00
dependabot[bot]
534ce7fbf0
Merge pull request #2611 from dexidp/dependabot/go_modules/api/v2/google.golang.org/protobuf-1.28.1 2022-09-07 11:49:41 +00:00
dependabot[bot]
eb60006117
Merge pull request #2636 from dexidp/dependabot/go_modules/google.golang.org/grpc-1.49.0 2022-09-07 11:49:29 +00:00
dependabot[bot]
9e4c29784d
build(deps): bump golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15
Bumps golang from 1.19.0-alpine3.15 to 1.19.1-alpine3.15.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-07 04:05:12 +00:00
Mark Sagi-Kazar
cf572e9154
build: bump Go version to 1.19 in Nix
Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>
2022-09-06 14:08:11 +02:00
dependabot[bot]
59730816e6
build(deps): bump google.golang.org/grpc from 1.47.0 to 1.49.0
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.49.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.49.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-01 11:53:31 +00:00
dependabot[bot]
221ff841bc
build(deps): bump github.com/coreos/go-oidc/v3 from 3.2.0 to 3.3.0 (#2646)
Bumps [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) from 3.2.0 to 3.3.0.
- [Release notes](https://github.com/coreos/go-oidc/releases)
- [Commits](https://github.com/coreos/go-oidc/compare/v3.2.0...v3.3.0)

---
updated-dependencies:
- dependency-name: github.com/coreos/go-oidc/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-09-01 15:52:27 +04:00
Marcelo Clavel
29b3523e07
feat(connector/authproxy): support multiple groups (#2643)
Signed-off-by: Marcelo Clavel <mclavel00@gmail.com>
2022-09-01 15:46:24 +04:00
Maksim Nabokikh
d33e994805
chore: Bump Go 1.19 (#2641)
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
2022-08-29 15:03:26 +04:00
Maksim Nabokikh
7efe1e28a8
chore: Bump ent to 0.11.2 (#2640)
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
2022-08-29 11:16:12 +04:00
dependabot[bot]
f14952213c
build(deps): bump google.golang.org/protobuf in /api/v2
Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.28.0 to 1.28.1.
- [Release notes](https://github.com/protocolbuffers/protobuf-go/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash)
- [Commits](https://github.com/protocolbuffers/protobuf-go/compare/v1.28.0...v1.28.1)

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-28 16:04:00 +00:00
dependabot[bot]
c5833e6b6f
build(deps): bump google.golang.org/api from 0.93.0 to 0.94.0 (#2637)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.93.0 to 0.94.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.93.0...v0.94.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-28 20:03:15 +04:00
Joost Buskermolen
72dd3c60c0
fix: Fallback when group claim is a string instead of an array of strings (#2639)
Signed-off-by: Joost Buskermolen <joost@buskervezel.nl>
Co-authored-by: Michiel van Pouderoijen <michiel@pouderoijen.nl>
2022-08-25 11:55:30 +03:00
Maksim Nabokikh
f90318ea1d
Merge pull request #2633 from dexidp/dependabot/go_modules/google.golang.org/api-0.93.0
build(deps): bump google.golang.org/api from 0.89.0 to 0.93.0
2022-08-23 23:00:13 +04:00
Maksim Nabokikh
d016f5c277
Merge pull request #2635 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.7.1
build(deps): bump aquasecurity/trivy-action from 0.7.0 to 0.7.1
2022-08-20 08:00:36 +04:00
dependabot[bot]
12bf923dd6
build(deps): bump aquasecurity/trivy-action from 0.7.0 to 0.7.1
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.7.0 to 0.7.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.7.0...0.7.1)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-19 04:04:56 +00:00
Maksim Nabokikh
148417d675
Merge pull request #2634 from dexidp/dependabot/go_modules/github.com/mattn/go-sqlite3-1.14.15
build(deps): bump github.com/mattn/go-sqlite3 from 1.14.11 to 1.14.15
2022-08-18 10:06:36 +04:00
Maksim Nabokikh
ea18fc22fa
Merge pull request #2632 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.7.0
build(deps): bump aquasecurity/trivy-action from 0.6.1 to 0.7.0
2022-08-17 19:23:13 +04:00
dependabot[bot]
ef864a433e
build(deps): bump github.com/mattn/go-sqlite3 from 1.14.11 to 1.14.15
Bumps [github.com/mattn/go-sqlite3](https://github.com/mattn/go-sqlite3) from 1.14.11 to 1.14.15.
- [Release notes](https://github.com/mattn/go-sqlite3/releases)
- [Commits](https://github.com/mattn/go-sqlite3/compare/v1.14.11...v1.14.15)

---
updated-dependencies:
- dependency-name: github.com/mattn/go-sqlite3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-17 04:06:38 +00:00
dependabot[bot]
cb6d0945b8
build(deps): bump google.golang.org/api from 0.89.0 to 0.93.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.89.0 to 0.93.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.89.0...v0.93.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-17 04:06:25 +00:00
dependabot[bot]
98fffed0d4
build(deps): bump aquasecurity/trivy-action from 0.6.1 to 0.7.0
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.6.1 to 0.7.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.6.1...0.7.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-17 04:06:05 +00:00
Maksim Nabokikh
2081f7d057
Merge pull request #2620 from mayurwaghmode/master
Signed-off-by: mayurwaghmode <waghmodemayur17@gmail.com>
2022-08-15 13:39:07 +04:00
mayurwaghmode
b9d88c723f updated gomplate version and added ppc64le support
Signed-off-by: mayurwaghmode <waghmodemayur17@gmail.com>
2022-08-11 02:31:12 -07:00
dependabot[bot]
e74acdff6c
build(deps): bump github.com/prometheus/client_golang (#2623)
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.2 to 1.13.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.12.2...v1.13.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-08-11 10:18:39 +03:00
Márk Sági-Kazár
b479d26137
Merge pull request #2624 from dexidp/dependabot/docker/alpine-3.16.2
build(deps): bump alpine from 3.16.1 to 3.16.2
2022-08-10 11:45:06 +02:00
dependabot[bot]
adb5454913
build(deps): bump alpine from 3.16.1 to 3.16.2
Bumps alpine from 3.16.1 to 3.16.2.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-08-10 04:04:29 +00:00
dependabot[bot]
4bcdcf8e1e
build(deps): bump aquasecurity/trivy-action from 0.6.0 to 0.6.1 (#2604)
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.6.0 to 0.6.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.6.0...0.6.1)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-28 15:39:50 +03:00
dependabot[bot]
3df7c489ce
build(deps): bump google.golang.org/api from 0.86.0 to 0.89.0 (#2605)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.86.0 to 0.89.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.86.0...v0.89.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-28 15:39:14 +03:00
dependabot[bot]
ce11154529
build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.2 to 3.4.4 (#2606)
Bumps [github.com/go-ldap/ldap/v3](https://github.com/go-ldap/ldap) from 3.4.2 to 3.4.4.
- [Release notes](https://github.com/go-ldap/ldap/releases)
- [Commits](https://github.com/go-ldap/ldap/compare/v3.4.2...v3.4.4)

---
updated-dependencies:
- dependency-name: github.com/go-ldap/ldap/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-28 15:38:35 +03:00
Bob Callaway
e1a407830d
add config to explicitly set scopes for microsoft connector (#2582)
Signed-off-by: Bob Callaway <bcallaway@google.com>
2022-07-27 19:03:29 +03:00
Bob Callaway
83e2df821e
add PKCE support to device code flow (#2575)
Signed-off-by: Bob Callaway <bobcallaway@users.noreply.github.com>
2022-07-27 19:02:18 +03:00
dependabot[bot]
454122ca22
build(deps): bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0 (#2599)
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) from 1.8.1 to 1.9.0.
- [Release notes](https://github.com/sirupsen/logrus/releases)
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sirupsen/logrus/compare/v1.8.1...v1.9.0)

---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-26 13:52:10 +04:00
Björn Busse
4a0218e87c
grpc-client: Do not crash on empty response (#2584)
Signed-off-by: Björn Busse <bj.rn@baerlin.eu>
2022-07-25 23:30:22 +04:00
Joe Knight
27c25d00be
Add domainHint parameter to Microsoft Connector (#2586)
Signed-off-by: Joe Knight <josephtknight@users.noreply.github.com>
2022-07-25 23:12:55 +04:00
dependabot[bot]
367487d7c5
build(deps): bump golang from 1.18.3-alpine3.15 to 1.18.4-alpine3.15 (#2592)
Bumps golang from 1.18.3-alpine3.15 to 1.18.4-alpine3.15.

---
updated-dependencies:
- dependency-name: golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 23:11:24 +04:00
dependabot[bot]
3b7e56035a
build(deps): bump alpine from 3.16.0 to 3.16.1 (#2598)
Bumps alpine from 3.16.0 to 3.16.1.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 23:11:06 +04:00
dependabot[bot]
f53fab6b06
build(deps): bump aquasecurity/trivy-action from 0.5.1 to 0.6.0 (#2602)
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.5.1 to 0.6.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.5.1...0.6.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-07-25 23:10:46 +04:00
dhaus67
100246328b
Use GitLab's refresh_token during Refresh. (#2352)
Signed-off-by: Daniel Haus <dhaus@redhat.com>
2022-07-20 13:16:12 +04:00
Maksim Nabokikh
d564cc7200
Merge pull request #2591 from chancez/patch-1
Add expiry.refreshToken settings to config.yaml.dist
2022-07-18 23:23:16 +04:00
Chance Zibolski
a3e2946cfc
Add expiry.refreshToken settings to config.yaml.dist
Signed-off-by: Chance Zibolski <chance.zibolski@gmail.com>
2022-07-13 15:45:21 -07:00
Maksim Nabokikh
f49e7bc218
Merge pull request #2560 from dexidp/dependabot/go_modules/github.com/spf13/cobra-1.5.0
build(deps): bump github.com/spf13/cobra from 1.4.0 to 1.5.0
2022-07-04 23:03:15 +04:00
Maksim Nabokikh
9ebcd651ff
Merge pull request #2574 from dexidp/dependabot/go_modules/google.golang.org/api-0.86.0
build(deps): bump google.golang.org/api from 0.82.0 to 0.86.0
2022-07-04 22:27:42 +04:00
dependabot[bot]
1aaa7fa0b7
build(deps): bump github.com/spf13/cobra from 1.4.0 to 1.5.0
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-07-04 18:22:22 +00:00
Maksim Nabokikh
c561318baa
Merge pull request #2565 from dexidp/dependabot/github_actions/mheap/github-action-required-labels-2
build(deps): bump mheap/github-action-required-labels from 1 to 2
2022-07-04 22:21:19 +04:00
Maksim Nabokikh
5066414735
Merge pull request #2576 from dexidp/dependabot/github_actions/aquasecurity/trivy-action-0.5.1
build(deps): bump aquasecurity/trivy-action from 0.4.0 to 0.5.1
2022-07-04 22:20:59 +04:00
Maksim Nabokikh
731d0d7d9d
Merge pull request #2577 from dexidp/dependabot/go_modules/github.com/stretchr/testify-1.8.0
build(deps): bump github.com/stretchr/testify from 1.7.2 to 1.8.0
2022-07-04 22:20:20 +04:00
Márk Sági-Kazár
1cc26fab2f
Merge pull request #2468 from flant/cwe-79-device-code
fix: prevent cross-site scripting for the device flow
2022-06-30 22:52:33 +03:00