The official container image for this release can be pulled from
ghcr.io/dexidp/dex:v2.40.0
Know before update
Important
Dex migrated to the log/slog for logging. Both text and json log format outputs changed.
The change can affect users, that import Dex as a library in their projects.
What's Changed
Exciting New Features 🎉
- Add introspect endpoint to introspect access & refresh token by @supercairos in #3404
- Use log/slog for structured logging by @seankhliao in #3502
Enhancements 🚀
- Add support for configurable prompt type for Google connector by @abhisek in #3475
- Google: Implement groups fetch by default service account from metadata (support for GKE workload identity) by @vsychov in #2989
- OIDC connector option to override jwksURI by @sohgaura in #3543
- Allow domain names or IDs in keystone connector by @cardoe in #3506
Bug Fixes 🐛
- Fix function names in comment by @mountcount in #3464
- Fix slight grammar errors. by @adeinega in #3538
Dependency Updates ⬆️
- build(deps): bump google.golang.org/api from 0.172.0 to 0.179.0 by @dependabot in #3516
- build(deps): bump golang from 1.22.2-alpine3.18 to 1.22.3-alpine3.18 by @dependabot in #3514
- build(deps): bump aquasecurity/trivy-action from 0.18.0 to 0.20.0 by @dependabot in #3512
- build(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.20.0 in /examples by @dependabot in #3508
- build(deps): bump anchore/sbom-action from 0.15.9 to 0.15.11 by @dependabot in #3497
- build(deps): bump golang.org/x/net from 0.20.0 to 0.23.0 in /api/v2 in the go_modules group by @dependabot in #3483
- build(deps): bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @dependabot in #3472
- build(deps): bump distroless/static-debian12 from
42c8865toe9ac71eby @dependabot in #3469 - build(deps): bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @dependabot in #3462
- build(deps): bump google.golang.org/protobuf from 1.33.0 to 1.34.1 in /api/v2 by @dependabot in #3510
- build(deps): bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 by @dependabot in #3526
- build(deps): bump google.golang.org/api from 0.179.0 to 0.180.0 by @dependabot in #3525
- build(deps): bump actions/dependency-review-action from 4.2.5 to 4.3.2 by @dependabot in #3524
- build(deps): bump helm/kind-action from 1.9.0 to 1.10.0 by @dependabot in #3523
- build(deps): bump github/codeql-action from 3.24.10 to 3.25.4 by @dependabot in #3522
- build(deps): bump mheap/github-action-required-labels from 5.4.0 to 5.4.1 by @dependabot in #3521
- build(deps): bump actions/setup-go from 5.0.0 to 5.0.1 by @dependabot in #3520
- build(deps): bump google.golang.org/grpc from 1.62.1 to 1.63.2 in /api/v2 by @dependabot in #3465
- build(deps): bump google.golang.org/grpc from 1.62.1 to 1.63.2 in /examples by @dependabot in #3460
- build(deps): bump alpine from 3.19.1 to 3.20.0 by @dependabot in #3547
- build(deps): bump anchore/sbom-action from 0.15.11 to 0.16.0 by @dependabot in #3545
- build(deps): bump github/codeql-action from 3.25.4 to 3.25.6 by @dependabot in #3544
- build(deps): bump actions/checkout from 4.1.2 to 4.1.6 by @dependabot in #3542
- build(deps): bump google.golang.org/api from 0.180.0 to 0.181.0 by @dependabot in #3541
- build(deps): bump golang from
4531927toff6ab2bby @dependabot in #3536 - build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @dependabot in #3534
- build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.1 to 4.0.2 by @dependabot in #3531
- build(deps): bump github.com/beevik/etree from 1.3.0 to 1.4.0 by @dependabot in #3530
- build(deps): bump google.golang.org/grpc from 1.63.2 to 1.64.0 in /examples by @dependabot in #3535
- build(deps): bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in #3551
- build(deps): bump golang from
ff6ab2btod1a601bby @dependabot in #3550 - build(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 by @dependabot in #3552
- Bump google.golang.org/grpc to v1.64.0 by @nabokihms in #3553
- build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.13 to 3.5.14 by @dependabot in #3555
- build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.13 to 3.5.14 by @dependabot in #3556
- build(deps): bump github/codeql-action from 3.25.6 to 3.25.7 by @dependabot in #3561
- Bump gomplate 3.11.8 by @nabokihms in #3565
New Contributors
- @elehcim made their first contribution in #3474
- @abhisek made their first contribution in #3475
- @mountcount made their first contribution in #3464
- @adeinega made their first contribution in #3538
- @sohgaura made their first contribution in #3543
- @cardoe made their first contribution in #3506
Full Changelog: v2.39.1...v2.40.0