OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
APACHE-2.0 License
Bot releases are hidden (Show)
Published by sagikazarmark over 3 years ago
The official container image for this release can be pulled from
ghcr.io/dexidp/dex:v2.29.0
Features:
Bugfixes:
/token
endpoint to get tokens with device flow (#2010, @nabokihms)Security:
Minor changes:
Find more details in the v2.29.0 milestone.
Many thanks to everyone who contributed to this release!
Published by sagikazarmark over 3 years ago
The official docker release for this release can be pulled from
ghcr.io/dexidp/dex:v2.28.1
Bugfixes:
Published by sagikazarmark over 3 years ago
The official docker release for this release can be pulled from
ghcr.io/dexidp/dex:v2.28.0
Features:
Bugfixes:
Minor changes:
Published by justaugustus almost 4 years ago
This security release addresses the following advisory: https://github.com/dexidp/dex/security/advisories/GHSA-m9hp-7r99-94h5
Dex users should immediately update to v2.27.0.
The official container images for this release can be pulled from:
dexidp/dex:v2.27.0
ghcr.io/dexidp/dex:v2.27.0
Make sure to always use an image with a version tag.
connector/saml: Validate XML roundtrip data before processing request
Build the sqlite storage backend via build tag so Dex can compile when cgo is disabled
Update image versions
Copy module dependencies to Docker image for CVE scanning / dependency analysis
MAINTAINERS: @srenatus is now Emeritus
README.md: Use maintainers list for reporting security issues
.github: Add release notes block to pull request template
Fully automate dev setup with Gitpod
Implements a fully-automated development setup using Gitpod.io, an
online IDE for GitHub and GitLab that enables Dev-Environments-As-Code.
This makes it easy for anyone to get a ready-to-code workspace for any branch,
issue or pull request almost instantly with a single click.
Enable CodeQL for the Dex repository
docs: Fixup broken links
Nothing has changed.
Published by sagikazarmark almost 4 years ago
The official docker release for this release can be pulled from
dexidp/dex:v2.26.0
ghcr.io/dexidp/dex:v2.26.0
⚠️ As of this release the latest
Docker image tag will always point to master
. ⚠️
Make sure to always use an image with a version tag.
Features:
Bugfixes:
Minor changes:
else
statement (#1769, @batara666)Published by sagikazarmark about 4 years ago
The official docker release for this release can be pulled from
dexidp/dex:v2.25.0
Features:
Bugfixes:
Minor changes:
Published by sagikazarmark about 4 years ago
This release publishes the existing V2 API under a separate module.
The existing API package will remain available for backward compatibility reasons,
but new features will only be added to the new module.
Although Dex remains backward compatible and continues to provide the API under the original location,
we highly recommend replacing it with the new location in your project (if you use the official API package):
go get github.com/dexidp/dex/api/[email protected]
Then replace every occurrence of github.com/dexidp/dex/api
with github.com/dexidp/dex/api/v2
in your code.
Finally, make sure to get rid of the main Dex module dependency:
go mod tidy
We also recommend using the new API module instead of manually downloading the proto and generating client stubs using protoc
.
Read more about the reasons below. (tl;dr: certain future changes might break backward compatibility for these consumers)
Dex V2 came with a major rewrite of its API using gRPC and Protobuf.
Consumers of this new API generally followed one of two paths in their applications:
Many users imported the github.com/dexidp/dex/api
package directly.
While this worked quite well for most of the time,
it introduced a dependency between consuming projects and the main Dex module itself (with all of its own dependencies).
Sometimes this caused conflicts with other dependencies of the project (aka. dependency hell).
Using Dex this way also forced us to remain backward compatible in a bunch of other areas.
To solve the dependency problem, many consumers decided to download the single proto file from the repository
and generate client stubs themselves. This turned out to be a great alternative to importing the whole Dex project
(just to use its generated API package).
For quite some time, we wanted to break this status quo.
We tried to steer users away from importing Dex and recommended generating stubs instead.
Ultimately, the recent changes introduced in the Protobuf V2 API for Go lead us to our current solution.
Namely, the new requirement of having a go_package
directive in every proto file basically forces us to provide a package with generated code and
makes code generation on the consumer side nearly impossible. (Obviously, someone can hack around this limitation, but it can't be solved nicely)
Although this requirement does not affect us at the moment, since we still use the V1 API for Protobuf,
in the future we might want to upgrade to the new API. So we decided to find a better, official place for the Dex API that consumers can use
without depending on the Dex project itself.
We spent some time with experimenting, trying to find the best possible option.
We wanted to find a solution that's backward compatible, but also fits into our future plans with Dex.
After a few iterations, we ended up creating a new package under the original API package, called /v2
and we made it a separate Go module.
This allows us to keep the API close to the main project and lets consumers import the API without the rest of Dex's dependencies.
The first tag of this package is v2.0.0
and we intend to keep versioning this package, separately from the main Dex project.
When adding new features to the API, we will tag new minor versions. Breaking changes will result in a new major version of the API,
which may also result in a major Dex version, but that's still in the future.
Thanks to protobuf's backward compatibility (and our BC promise for the API),
you should be able to talk to Dex with older API versions (compared to the one compiled into Dex itself),
but we recommend using the same version. Although the proto itself should be backward compatible,
the API package depends on gRPC, which is (unfortunately) known to break things between different versions
(thanks to the relatively large shared library).
We have plans to extend the API with new features. Most of them should be backward compatible changes,
so they will likely be added to the v2 API.
That being said, there are a bunch of changes that will break backward compatibility and as such, will require a v3 release.
Although we know it will happen, we don't have it on our near term roadmap. Whether the v2 and v3 will coexist or not is still undecided,
but there is a chance they can.
If you have any questions related to this release, feel free to open an issue or reach out on the #dexidp
channel in the Kubernetes Slack workspace.
Published by srenatus over 4 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.24.0
Features:
Bug fixes, misc changes:
Published by bonifaido over 4 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.23.0
Features:
Bugfixes:
Minor changes:
Published by sagikazarmark over 4 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.22.0
Features:
google
: Implement group whitelisting (#1591, @bonifaido)Bugfixes:
google
: Fix group retrieval (#1627, @jfrabaute)Minor changes:
microsoft
: Improved connector tests (#1622, @chlunde)Published by bonifaido almost 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.21.0
Notes:
The "only" main feature of this release is around OIDC and Google groups which were pretty long-awaited. 🎉
Features:
Bugfixes:
Published by bonifaido almost 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.20.0
Notes:
The preferred_username
OIDC claim was added to the ID Token in case of GitLab, GitHub, LDAP. This claim could be extended to other providers as well later on.
Features:
Bug fixes, misc changes:
Published by srenatus about 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.19.0
Notes:
Features:
Bug fixes, misc changes:
openid-ca
(#1521, @erwinvaneyk)x/net/context
with stdlib context
(#, @erwinvaneyk)Published by srenatus about 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.18.0
Features:
Bug fixes, misc changes:
golint
will compile (#1509, @venezia)Published by srenatus over 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.17.0
Notes:
Features:
Bug fixes, misc changes:
Published by ericchiang over 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.16.0
Features:
Bug fixes, misc changes:
Published by JoelSpeed over 5 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.15.0
Notes:
Features:
Bug fixes, misc changes:
Published by srenatus almost 6 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.14.0
Notes:
Features:
Bug fixes, misc changes:
Published by ericchiang almost 6 years ago
The official docker release for this release can be pulled from
quay.io/dexidp/dex:v2.13.0
Published by srenatus about 6 years ago
The official docker release for this release is at
quay.io/dexidp/dex:v2.12.0
....and fixes to docs, as well as an upgrade of a dependency library
(go-jose v2.1.8, @fajran).
🎉 Thank you very much, all old and new contributors! 😉