v0.4.0

This release consists of a bunch of minor bug fixes, and example and doc tweaks.

Features

• None!

Bugs Fixed

• remove outdated godep hack, since we use glide now (#417)
• example app uses passed redirect instead of hard-coded one (#420)
• Fix examples/README.md doc (#421)
• Fix kubernetes example (#422)
• git-version creates valid docker tags if dirty (#425)
• Update to latest go-oidc to fix JWT parse issues (#430)

Misc

• Better testing for Token end point (#409)
• Update Kubernetes examples to use 1.2 features (#414, #424)
• Refactoring of client repo to allow for custom Client fields (#411)
• Split up build-docker-push into build, push (#434)
• Use go 1.6.2 for docker build. (#433)

v0.3.0

Features

• LDAP connector added (#178)
• Dynamic client registration (#267)
• dexctl can read connectors from stdin (#277)
• Generated API docs added to repo (#285)
• dex now uses sqlite for --no-db mode and tests (does not add general sqlite support) (#304)
• New API endpoint for resending an invite email (#331)
• example app's default flags now work with --no-db mode (#333)

Bugs Fixed

• API status codes now differentiate between unauthenticated and unauthorized requests (#280)
• dex now uses 302 for redirects rather than 307 (#288)
• Emails now use case insensitive comparison (#339)
• When consuming OAuth2 credentials through basic auth, dex now correctly expects URL escaped values (#357)

Migration Note:

Duplicate Emails

The former use of case insensitive comparison for emails may have resulted in duplicate emails in the dex database for some instances.

For this release, dex will refuse to migrate the database if it detects duplicated emails in the authd_user table. In this case admins must resolve this by editing the table manually, dropping the rows they feel appropriate.

Admins who wish to delete duplicate emails in their database but don’t care which row is preserved can run the following SQL command:

DELETE FROM authd_user
WHERE id IN (SELECT id
    FROM (SELECT id,
        ROW_NUMBER() OVER (partition BY LOWER(email) ORDER BY id) AS rnum
        FROM authd_user) t
    WHERE t.rnum > 1);

v0.2.3

This is a minor point release to update dex's automated build process from Go version 1.5.2 to 1.5.3 which fixes a bug that impacts RSA private keys. See the write up by the Go team here.

This release is primarily for users who pull dex from quay.io and updates that image to use dex binaries built with Go 1.5.3.

Features

• Better command line error message when secrets have bad length (#259)

Security fixes

• Update Go version in TravisCI from 1.5.2 to 1.5.3 for tests and Docker image builds (#269).

v0.2.2

This is a minor point release to include a critical bug fix to 0.2.1

Features

• Better help messages for dexctl (#249)
• Better error messages when remote ID already exists (#246)

Bugs Fixed

• Add DB migration to allow storing 2048 bit RSA keys (CRITICAL FIX) (#250)
• Fix redirect when user logs in through a different connector (#242)

v0.2.1

This is a minor point release to include a handful of bug fixes merged since v0.2.0.

Features

• Continuous integration through Travis CI (#231, #234, #236)
• Don't rebuild database migration assets on every build (#233)
• HTML page titles use --issuer-name (#216)

Bugs Fixed

• Updated go-oidc for race condition fixes (#235)
• Prevent panics created by empty --key-secrets flag (#215)
• Fixed field name in OIDC provider config (#213)

v0.2.0

Features

• Added GitHub and Bitbucket connectors (#190)
• Added ability to invite users (#168, #179)
• Stronger encryption of token-signing keys (AES-GCM replaces AES-CBC) (#167)
• Added ability to disable users (#140)
• Admin API now requires client authorization (#145)
• Added ability to disable user registration (#144)
• Added SMTP support for email configuration (#129)

Bugs Fixed

• Fixed race condition in OIDC client (#210)
• Can't create a user with a connector that doesn't exist (#199)
• Corrected email validation during registration (#190, #188)
• Fixed registration failures when scope was provided (#183)
• Block until connectors are available (#128)
• Lots of documentation fixes

v0.1.0

This is the first release of dex!