Table of Contents generated with DocToc

Change Log

Change Log

Unreleased

Full Changelog

Implemented enhancements:

Remove the need for outbound internet connection from Oathkeeper #234

Fixed bugs:

vendor: Update ory/x/viperx dependency #285 (aeneasr)

Closed issues:

[Helm chart] Quick changes #278
Env vars for jwks_url in id_token mutator not working in versions >v0.19.0-beta.1 #276
missing release assets in release v0.19.2-beta.1+oryOS.12 #275
Env vars for client ID/secret in oauth2_introspection don't work anymore in v0.19.0-beta.1 #270

Merged pull requests:

Auto-kill test runner after 10 retries #286 (aeneasr)
Dereference config schema and resolve issues #282 (aeneasr)
Support alternative token location #271 (kubadz)

v0.32.0-beta.1 (2019-10-20)

Full Changelog

v0.31.0-beta.1 (2019-10-20)

Full Changelog

Implemented enhancements:

Version access rules #266
rule: Add migration capabilities #268 (aeneasr)

Fixed bugs:

Client Credentials Authenticators not compatible with Hydra? #260
"jwt" authenticator returns 403 instead of 401 #256

Closed issues:

Access-rules conversion error. #274
The configuration is invalid and could not be loaded. #273
Update mutators in documentation #261
Support fully both Oauth & JWT authenticator in access rule #257

Merged pull requests:

authn: Force auth style in oauth2 client credentials authn #267 (aeneasr)
fix #256: change error code from 403 to 401 #259 (ngrigoriev)

v0.19.0-beta.1 (2019-09-23)

Full Changelog

Closed issues:

Keto engine doesn't build correctly the payload to call keto for URL with query parameters #250
Mutator: unrecognized by oathkeeper (v0.17.5) #248
Mutator issuing JWT with custom claims #228

Merged pull requests:

Resolve broken tests #262 (aeneasr)
Homogenize configuration management #258 (aeneasr)

v0.18.0-beta.1 (2019-08-22)

Full Changelog

Merged pull requests:

Fix #250: Ignore query parameters to build payload for Keto engine #251 (GuillaumeSmaha)
ID Token Custom Claims #246 (aeneasr)
docs: Updates issue and pull request templates #245 (aeneasr)
Add mutator for modifying authenticationSession with external API #240 (kubadz)
docs: Updates issue and pull request templates #239 (aeneasr)
docs: Updates issue and pull request templates #238 (aeneasr)
docs: Updates issue and pull request templates #237 (aeneasr)
doc: Add adopters placeholder #236 (aeneasr)
support multiple mutators #233 (jakkab)

v0.17.4-beta.1 (2019-08-09)

Full Changelog

Merged pull requests:

Add sprig template library #235 (hypnoglow)
docs: Updates issue and pull request templates #232 (aeneasr)

v0.17.3-beta.1 (2019-08-03)

Full Changelog

Fixed bugs:

rule: Resolve k8s configmap reload issue #231 (aeneasr)

v0.17.2-beta.1 (2019-08-02)

Full Changelog

Closed issues:

Panic on rolling update in Kubernetes #224
Helm chart for oathkeeper #186

Merged pull requests:

rules: Support kubernetes configmap reloading #230 (aeneasr)
docs: Updates issue and pull request templates #226 (aeneasr)

v0.17.1-beta.1 (2019-07-23)

Full Changelog

Merged pull requests:

Fix panic on send on closed channel #225 (hypnoglow)

v0.17.0-beta.1 (2019-07-18)

Full Changelog

Implemented enhancements:

Add file watcher for access rules #216
Add file watcher for config file #215

Merged pull requests:

ci: Automate schema confiugration sync #222 (aeneasr)
Validate Configuration with JSON Schema #220 (aeneasr)
cmd: Do not fatal when immutable value is changed #218 (aeneasr)
Watch configuration and access rule changes #217 (aeneasr)
Add support for rules in YAML format #213 (hypnoglow)

v0.16.0-beta.5 (2019-06-28)

Full Changelog

Closed issues:

Unable to build docker image on linux #207
Always return 404 when used with Ambassador Auth Service #199

Merged pull requests:

Add description into the name of subtest #212 (minchao)
Add cookie session authenticator #211 (alexdavid)
ci: Update golangci install script #210 (aeneasr)
docker: Use non-root user in image #209 (aeneasr)
Remove binary license #208 (aeneasr)
Update config.yaml #204 (haf)

v0.16.0-beta.4 (2019-05-28)

Full Changelog

Merged pull requests:

server: Properly declare negroni middleware #200 (aeneasr)
docs: Updates issue and pull request templates #198 (aeneasr)
docs: Updates issue and pull request templates #197 (aeneasr)
docs: Updates issue and pull request templates #196 (aeneasr)

v0.16.0-beta.3 (2019-05-19)

Full Changelog

Implemented enhancements:

Clean up environment variables and throw errors on misconfiguration #140
Missing serve all, both proxy/api using 4455 #122

Closed issues:

json: cannot unmarshal string into Go value #183
Oathkeeper (v0.14.2_oryOS.10) returning empty reply on slow/long distance database calls #178
Moving forward with ORY Oathkeeper #177
Replace ORY Hydra JWK fetcher with local strategy and storage #174
Support multiple JWKS URL in oathkeeper config rather than environment variable #168
Move to new configuration management #164
Do not disable filters, instead show decent error messages on misconfiguration #141
make id_token credential issuer optional #136

Merged pull requests:

ci: Rename job release-docs to docs #193 (aeneasr)
ci: Resolve goreleaser issues #192 (aeneasr)
ci: Update release pipeline #191 (aeneasr)
docs: Updates issue and pull request templates #189 (aeneasr)
install.sh: fix install script #187 (mkontani)
Reduce deployment complexity and refactor internals #185 (aeneasr)

v0.15.2 (2019-05-04)

Full Changelog

Fixed bugs:

Credential issuer config is base64 encoded #182

Merged pull requests:

Fix json encode of config for "credentials_issuer" and "authorizer" during import #184 (stszap)

v0.15.1 (2019-04-29)

Full Changelog

Merged pull requests:

vendor: Add go.sum #180 (aeneasr)

v0.15.0 (2019-04-29)

Full Changelog

Implemented enhancements:

Adopt new Keto SDK #172

Fixed bugs:

Adopt new Keto SDK #172

Closed issues:

Forward all auth* headers in judge mode #166
Move to go-swagger client #165
Unable to install oathkeeper CLI #161
Using Oathkeeper - External Consumer App #158
Allow multiple rules for one URL #157
CORS Not working as expected #151
keto_engine_acp_ory not working with oryOS10 #150
Update README building-from-source part with the gomodule way #149
required_scope of authenticator validate only scope claim and not scp claim #138

Merged pull requests:

docker: Remove full tag from build pipeline #179 (aeneasr)
sdk: Remove sdk dependencies to keto/hydra #173 (aeneasr)
ci: Adopt new release pipeline #171 (aeneasr)
sdk: Move to go-swagger SDK code generation #170 (aeneasr)
judge: Set request headers for credential issuers #169 (aeneasr)
Update dependencies #163 (aeneasr)
proxy: Use scp,scope,scopes in jwt authenticator #162 (aeneasr)
ci: Resolve CI build issue #160 (aeneasr)
Ensure rule matcher is locked before updating #159 (jtescher)
proxy: improve debugability of JWT authenticator #156 (aeneasr)
issue #149 - Update README building-from-source part with the gomodul… #152 (pink-lucifer)
ci: Fix docker push arguments in publish task #148 (aeneasr)

v0.14.2+oryOS.10 (2018-12-13)

Full Changelog

v0.14.1+oryOS.10 (2018-12-13)

Full Changelog

Merged pull requests:

ci: Fix docker release task #147 (aeneasr)

v0.14.0+oryOS.10 (2018-12-13)

Full Changelog

Closed issues:

Moving forward with this project's versioning #130
Add OPA authorizer #98

Merged pull requests:

vendor: Update keto to latest #146 (aeneasr)
proxy: Update to recent keto changes #145 (aeneasr)
docs: Update documentation links #144 (aeneasr)
docs: Align changelog, upgrade with new versions #143 (aeneasr)
docs: Fix proxy help command description #142 (aeneasr)
Ignore query parameters when matching url in rules. #139 (stszap)
Support "scope" claim as a string in jwt authenticator #137 (stszap)
cmd: TLS environment variables #124 (fredbi)

v0.13.9+oryOS.9 (2018-11-14)

Full Changelog

v0.13.8+oryOS.8 (2018-11-14)

Full Changelog

v0.13.7+oryOS.7 (2018-11-14)

Full Changelog

v0.13.6+oryOS.6 (2018-11-14)

Full Changelog

v0.13.5+oryOS.5 (2018-11-14)

Full Changelog

v0.13.4+oryOS.4 (2018-11-14)

Full Changelog

v0.13.3+oryOS.3 (2018-11-14)

Full Changelog

v0.13.2+oryOS.2 (2018-11-14)

Full Changelog

v0.13.1+oryOS.1 (2018-11-14)

Full Changelog

Implemented enhancements:

Add JWT authenticator #112
cmd: Should not fatal if ORY Hydra SDK is unable to start #71
Slow POST through proxy causes timeout after 5 seconds #64
proxy: Add JWT authenticator #109 (aeneasr)
cmd: Disable cors per default #107 (aeneasr)
Resolve various issues #93 (aeneasr)
rule: Adds validator for rules #77 (aeneasr)

Fixed bugs:

oathkeeper beta8 builds on older hydra SDK #101
Invalid Url Validator #92
Resolve stack overflow in key & rule refresher #80
Deletion of conflicting rule doesn't solve the route conflict #73
proxy: Improve compatibility with ORY Hydra 1.0.0-beta.8 #108 (aeneasr)
cmd: Disable cors per default #107 (aeneasr)
Resolve various issues #93 (aeneasr)
rules: Properly handle conflicts on PUT and POST #76 (aeneasr)
rules: Resolves an issue with cached matchers #75 (aeneasr)

Closed issues:

Keto Warden Authorizer: Make Subject configurable. #128
Inconsistent Environment Variable Docs #121
--config flag doesn't work #110
noop authenticator should not bypass allow/deny authorizers #97
[Proposal/Discussion] New Credentials Issuers #96
Build and upload binaries upon release #89
Feature request: vault authenticator #88
kid does not match .well-known/jwks.json #83
MySQL not supported #82
Make Oathkeeper work without Hydra (Fix JWK Manager) #65
Expected at least one private key #61
Disallow unknown JSON fields #45
Write AWS Lambda function for oathkeeper #44
Add endpoint for answering access requests directly #42
Add input validator to rules #41
PUT rules/unknownId does not error #38

Merged pull requests:

docs: Improve some docs and update SDK #135 (aeneasr)
Add environment parameters (and description) to configure proxy server timeout settings #132 (7phs)
Make subject configurable using go template #129 (lsjostro)
docs: Updates issue and pull request templates #127 (aeneasr)
docs: Updates issue and pull request templates #126 (aeneasr)
docs: Fix typo in README. #118 (ddunkin)
cmd: Properly document JWT refresh #117 (aeneasr)
cmd: Enables TLS option on serve api #116 (fredbi)
Prepare beta.9 release #115 (aeneasr)
Aligned TLS options with hydra: allow cert&key to be specified with file #114 (fredbi)
Improve integration tests #113 (aeneasr)
cmd: Remove config flag #111 (aeneasr)
(fix) Typo in checkResponse function print message #106 (devprincess)
proxy: add cookies ci to handler factory #103 (zikes)
proxy: add cookies credentials issuer #102 (zikes)
Headers Credentials Issuer #100 (zikes)
Resolve various issues #99 (aeneasr)
Node sdk #94 (aeneasr)
judge: Add endpoint for answering access requests directly #91 (aeneasr)
health: Introduce health and version endpoint #90 (aeneasr)
docs: fix broken link #87 (orisano)
README: grammatical fix in stability sentence #86 (philips)
rsakey: Resolve HS256 kid mismatch #85 (aeneasr)
cmd: Allows connectivity to MySQL #84 (aeneasr)
cmd: Resolves recursive stack overflow #81 (aeneasr)
docs: Adds link to examples repository #79 (aeneasr)
docs: Adds gh templates & code of conduct #78 (aeneasr)
ci: Prevent pushes from forks to coveralls #74 (aeneasr)
Reduces setup complexity #72 (aeneasr)
proxy: Resolves potential panic in request handler #70 (aeneasr)
Minor improvements #69 (aeneasr)
rsakey: Resolves issues with broken tests #68 (aeneasr)
cmd: Improves cors parsing #67 (aeneasr)
cmd: Doesn't fatal if no ORY Hydra is unresponsive. #66 (aeneasr)
Keto #60 (aeneasr)