v2.38.0
The official container image for this release can be pulled from
ghcr.io/dexidp/dex:v2.38.0
What's Changed
Exciting New Features 🎉
- RFC 8693 OAuth 2.0 Token Exchange by @seankhliao in #2806
Enhancements 🚀
- include granttypes in example config by @seankhliao in #3027
- Add GetClient grpc service by @marcofranssen in #2972
- feat: Update response_types_supported to allow multiple-valued response type combinations by @Cedric-Magnan in #2521
- verify access tokens by checking getuserinfo during a token exchange by @seankhliao in #3031
- Store offline sessions only if they were requested by the user by @MM53 in #3125
- Minimalistic support for group filtering in oidc connector by @mdpradeep in #3074
- feat(connector/microsoft): support custom api and graph URLs by @sagikazarmark in #3084
- Composite claims in OIDC connector by @Oded-B in #3056
- Add support for extra claims to authproxy connector by @mkjpryor in #2851
- Add support for linux/s390x by @lysliu in #3189
- Override OIDC provider discovered claims by @nabokihms in #3267
- Bump gomplate to v3.11.7 by @nabokihms in #3293
- Introduce a dedicated pkg for featureflags by @nabokihms in #3278
- Sign container images by @nabokihms in #3269
- Add context to storage's Create endpoints by @PumpkinSeed in #2935
- feat: add TLS versions configuration by @tuminoid in #3303
Bug Fixes 🐛
- Fix etcd device requests by @MM53 in #3119
- Fix lint errors after merging AllowedHeaders feature by @nabokihms in #3247
- Propagate Dex version from build args by @nabokihms in #3276
Dependency Updates ⬆️
- build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0 by @dependabot in #3036
- build(deps): bump google.golang.org/api from 0.129.0 to 0.130.0 by @dependabot in #3034
- build(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 by @dependabot in #3035
- build(deps): bump helm/kind-action from 1.7.0 to 1.8.0 by @dependabot in #3041
- build(deps): bump google.golang.org/api from 0.130.0 to 0.134.0 by @dependabot in #3054
- build(deps): bump docker/setup-buildx-action from 2.8.0 to 2.9.1 by @dependabot in #3043
- build(deps): bump github/codeql-action from 2.20.1 to 2.21.2 by @dependabot in #3057
- build(deps): bump google.golang.org/grpc from 1.56.1 to 1.57.0 by @dependabot in #3055
- build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0 in /api/v2 by @dependabot in #3021
- build(deps): bump google.golang.org/grpc from 1.55.0 to 1.57.0 in /api/v2 by @dependabot in #3053
- build(deps): bump golang.org/x/net from 0.12.0 to 0.13.0 by @dependabot in #3060
- build(deps): bump google.golang.org/api from 0.134.0 to 0.138.0 by @dependabot in #3079
- build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8 by @dependabot in #3078
- build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 by @dependabot in #3076
- build(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by @dependabot in #3071
- build(deps): bump alpine from 3.18.2 to 3.18.3 by @dependabot in #3069
- build(deps): bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 by @dependabot in #3090
- build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @dependabot in #3099
- build(deps): bump docker/setup-buildx-action from 2.9.1 to 3.0.0 by @dependabot in #3104
- build(deps): bump actions/checkout from 3.5.3 to 4.1.0 by @dependabot in #3117
- build(deps): bump alpine from 3.18.3 to 3.18.4 by @dependabot in #3130
- build(deps): bump github/codeql-action from 2.21.4 to 2.21.9 by @dependabot in #3127
- build(deps): bump google.golang.org/api from 0.138.0 to 0.143.0 by @dependabot in #3121
- build(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 by @dependabot in #3116
- build(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 in /api/v2 by @dependabot in #3115
- build(deps): bump github.com/prometheus/client_golang from 1.16.0 to 1.17.0 by @dependabot in #3132
- build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.5 to 3.4.6 by @dependabot in #3133
- build(deps): bump docker/login-action from 2.2.0 to 3.0.0 by @dependabot in #3134
- build(deps): bump docker/build-push-action from 4.1.1 to 5.0.0 by @dependabot in #3135
- build(deps): bump docker/metadata-action from 4.6.0 to 5.0.0 by @dependabot in #3136
- build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 by @dependabot in #3137
- build(deps): bump docker/setup-qemu-action from 2.2.0 to 3.0.0 by @dependabot in #3138
- build(deps): bump google.golang.org/api from 0.143.0 to 0.147.0 by @dependabot in #3152
- build(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by @dependabot in #3155
- build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 by @dependabot in #3154
- build(deps): bump github/codeql-action from 2.21.9 to 2.22.3 by @dependabot in #3153
- build(deps): bump tonistiigi/xx from 1.2.1 to 1.3.0 by @dependabot in #3161
- build(deps): bump actions/checkout from 4.1.0 to 4.1.1 by @dependabot in #3159
- build(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by @dependabot in #3157
- build(deps): bump golang.org/x/net from 0.7.0 to 0.17.0 in /examples by @dependabot in #3151
- build(deps): bump google.golang.org/api from 0.147.0 to 0.148.0 by @dependabot in #3163
- build(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 in /api/v2 by @dependabot in #3150
- Bump Go 1.21 by @nabokihms in #3165
- build(deps): bump google.golang.org/grpc from 1.58.2 to 1.59.0 in /api/v2 by @dependabot in #3158
- Bump ent (v0.12.4) and example app dependencies by @nabokihms in #3166
- build(deps): bump github.com/fsnotify/fsnotify from 1.6.0 to 1.7.0 by @dependabot in #3167
- build(deps): bump github/codeql-action from 2.22.3 to 2.22.4 by @dependabot in #3168
- build(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1 by @dependabot in #3169
- build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.9 to 3.5.11 by @dependabot in #3216
- build(deps): bump golang from 1.21.3-alpine3.18 to 1.21.5-alpine3.18 by @dependabot in #3213
- build(deps): bump github.com/gorilla/handlers from 1.5.1 to 1.5.2 by @dependabot in #3181
- build(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 by @dependabot in #3182
- build(deps): bump docker/build-push-action from 5.0.0 to 5.1.0 by @dependabot in #3198
- build(deps): bump anchore/sbom-action from 0.14.3 to 0.15.1 by @dependabot in #3210
- build(deps): bump aquasecurity/trivy-action from 0.12.0 to 0.16.0 by @dependabot in #3219
- build(deps): bump actions/dependency-review-action from 3.1.0 to 3.1.4 by @dependabot in #3206
- Bump golangci-lint 1.55.2 by @nabokihms in #3232
- build(deps): bump github.com/mattn/go-sqlite3 from 1.14.17 to 1.14.19 by @dependabot in #3226
- build(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot in #3228
- build(deps): bump alpine from 3.18.4 to 3.19.0 by @dependabot in #3214
- build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 by @dependabot in #3201
- build(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /examples by @dependabot in #3229
- build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 in /examples by @dependabot in #3202
- build(deps): bump github/codeql-action from 2.22.4 to 3.22.12 by @dependabot in #3231
- build(deps): bump google.golang.org/api from 0.148.0 to 0.154.0 by @dependabot in #3223
- Patch gomplate to v3.11.6 by @gburton1 in #3234
- build(deps): bump docker/metadata-action from 5.0.0 to 5.4.0 by @dependabot in #3235
- build(deps): bump google.golang.org/grpc from 1.59.0 to 1.60.1 by @dependabot in #3241
- build(deps): bump actions/setup-go from 4.1.0 to 5.0.0 by @dependabot in #3236
- build(deps): bump github.com/gorilla/mux from 1.8.0 to 1.8.1 by @dependabot in #3239
- build(deps): bump github.com/coreos/go-oidc/v3 from 3.7.0 to 3.9.0 by @dependabot in #3238
- build(deps): bump github.com/prometheus/client_golang from 1.17.0 to 1.18.0 by @dependabot in #3246
- Bump dependencies ent v0.12.5, protobuf v1.32.0 by @nabokihms in #3249
- build(deps): bump actions/dependency-review-action from 3.1.4 to 3.1.5 by @dependabot in #3256
- build(deps): bump google.golang.org/api from 0.154.0 to 0.155.0 by @dependabot in #3257
- build(deps): bump anchore/sbom-action from 0.15.1 to 0.15.3 by @dependabot in #3265
- build(deps): bump github.com/beevik/etree from 1.2.0 to 1.3.0 by @dependabot in #3252
- build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 by @dependabot in #3253
- build(deps): bump golang.org/x/crypto from 0.17.0 to 0.18.0 by @dependabot in #3262
- build(deps): bump docker/metadata-action from 5.4.0 to 5.5.0 by @dependabot in #3259
- build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 by @dependabot in #3264
- build(deps): bump golang.org/x/oauth2 from 0.15.0 to 0.16.0 by @dependabot in #3263
- build(deps): bump golang from 1.21.5-alpine3.18 to 1.21.6-alpine3.18 by @dependabot in #3266
- build(deps): bump google.golang.org/api from 0.155.0 to 0.156.0 by @dependabot in #3270
- build(deps): bump github/codeql-action from 3.23.0 to 3.23.1 by @dependabot in #3282
- build(deps): bump google.golang.org/api from 0.156.0 to 0.157.0 by @dependabot in #3285
- build(deps): bump anchore/sbom-action from 0.15.3 to 0.15.4 by @dependabot in #3286
- build(deps): bump actions/dependency-review-action from 3.1.5 to 4.0.0 by @dependabot in #3287
- build(deps): bump anchore/sbom-action from 0.15.4 to 0.15.5 by @dependabot in #3291
- build(deps): bump google.golang.org/grpc from 1.60.1 to 1.61.0 by @dependabot in #3296
- build(deps): bump google.golang.org/grpc from 1.60.1 to 1.61.0 in /api/v2 by @dependabot in #3294
- build(deps): bump github.com/coreos/go-oidc/v3 from 3.7.0 to 3.9.0 in /examples by @dependabot in #3298
- build(deps): bump google.golang.org/grpc from 1.59.0 to 1.61.0 in /examples by @dependabot in #3300
- build(deps): bump golang from
869193e
to3bd4475
by @dependabot in #3301 - build(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 in /examples by @dependabot in #3299
- build(deps): bump golang.org/x/oauth2 from 0.13.0 to 0.16.0 in /examples by @dependabot in #3297
Other Changes
- feat: Add configurable CORS Headers by @josiah-lunit in #3114
New Contributors
- @Cedric-Magnan made their first contribution in #2521
- @uucloud made their first contribution in #3087
- @MM53 made their first contribution in #3125
- @mdpradeep made their first contribution in #3074
- @Oded-B made their first contribution in #3056
- @gburton1 made their first contribution in #3234
- @josiah-lunit made their first contribution in #3114
- @mkjpryor made their first contribution in #2851
- @lysliu made their first contribution in #3189
- @PumpkinSeed made their first contribution in #2935
- @tuminoid made their first contribution in #3303
Full Changelog: v2.37.0...v2.38.0