github ory/hydra v26.2.0
on GitHub

11 hours ago

v26.2.0

Bug Fixes

  • Always retry curl invocations to surmount transient third-party failures (c28a6c8):

  • Broken older down migrations (8ed407d):

  • Context passing and limit response size (f33d6a8):

  • Context passing in jsonnetsecure (5884774):

  • Correctly detect when to use self-signed certificates (6f9af27):

  • Correctly scan SQL NULL into go JSON types (163c579):

  • Data race in hydra-oss test (262f85b):

  • deps: Update dependency prettier to v3.7.4 (106865d):

  • Do not cache pairwise subject algorithm (a341867):

  • Down migrations in newer MySQL versions (5b0360d):

  • Fix benchmark test (d0e0659):

  • Flaky tests on hydra-oss tests (ce58946):

  • Incorrect default value for page_tokens (f1290da):

  • Incorrect usage of database/sql (a8142d0):

  • Properly validate policy URI on client creation (44347e7):

  • Remove flaky test for unused function (e8c8803):

  • Remove WithDumpMigrations option to MigrationBox (6fd8a64):

  • Request log config key (11ad1ac):

  • Stray debug print (f6b28db):

  • Transactions managed by fosite were not working (3ad64db):

  • Update CONTRIBUTING.md (0c78aa7):

  • Update go modules (845cc4d):

  • Update packages to fix GHSA-7h2j-956f-4vf2 (ae75488):

  • Upgrade vulnerable dependencies across Go and npm (f28904c):

    Co-authored-by: Deepak Prabhakara deepak.prabhakara@ory.sh

  • X data race and parallize some tests (d37af61):

Code Generation

  • Prepare for OSS release - v26.2.0 (0b84568):

Code Refactoring

  • Squash merge old backoffice migration and fix up command (9d96bbd):

Documentation

Features

  • Add ratelimit buckets to swagger definitions (1819465):

  • Add support for NULL and more column types to keysetpagination (6a041ef):

  • Automatic transaction retries for postgres (a008e91):

  • Collect external latency data and write to logs (46846e9):

  • Consider Go migrations DirHash when restoring full schema from backups (5306aaf):

  • Forward (some) user request headers to SMS HTTP channel (640eb0b):

  • Generate events for SSO and SCIM provider revisions (47a9384):

  • Hydra benchmarking tool (f5b4aed):

  • Improved tracing (724e425):

  • Keto-cli improvements (9f81a29):

  • Make SCIM work with MySQL (10ec9bf):

  • Move search sidecar to its own docker image (8bd331c):

  • Optionally do not store skipped consents (cf77ed6):

  • Rename project revision columns (af69132):

  • Use keysetpagination planner for keto read queries (5ca4c85):

Reverts

  • Simplify consent store (fdca960):

Tests

  • Deflake and improve performance (cdf972e):

  • Deflake directory watcherx (ea02ce9):

  • Faster and more reliable courier tests (a43d8f8):

  • Fix multiple data races (4f8ff8e):

  • hydra: Add plaintext backups for all DB types (822ea26):

  • Minor setup improvements (e65fba7):

Changelog

  • 2580424 autogen(docs): generate and bump docs
  • 5c51033 autogen(sdk): bump to 05ddc40c27a9fb30a648f0efc7aa5360fef9df7a
  • e76172c autogen(sdk): bump to 0747fafb24ad69bdee50488fdd1baa64a2988954
  • d93a822 autogen(sdk): bump to 11290d8d01b00c2eecb1ddf7aa5a46b2f806fe82
  • cb1bfce autogen(sdk): bump to 17d4d13913cbfcaaec44f5c608a9f602d447adc8
  • d2c58c4 autogen(sdk): bump to 453eb025ad68ecf42882f6c7f8405e230708d541
  • 0383012 autogen(sdk): bump to 6d7d1f13997c8d9eb4a55553973a53b2a8e07904
  • 82b1e3c autogen(sdk): bump to 870c658ea99439b16d7ad40cd810477cf0dbc491
  • 6309f91 autogen(sdk): bump to 9c2abd78343503d5ad1cc4b7a815220c38dd59e0
  • 1b6e8f3 autogen(sdk): bump to f149949f3fdd7b1264ce78c011d49dee61af52a2
  • 0b84568 autogen: prepare for OSS release - v26.2.0
  • fc32cb5 chore(deps): update actions/cache action to v5
  • 2f10442 chore(deps): update actions/checkout action to v6
  • 20fd22c chore(deps): update dependency @types/lodash to v4.17.21
  • 67b8f20 chore(deps): update dependency golangci/golangci-lint to v2.10.1
  • 1435b4c chore(deps): update dependency golangci/golangci-lint to v2.11.0
  • 105741f chore(deps): update dependency golangci/golangci-lint to v2.11.1
  • eb9ebf1 chore(deps): update docker/setup-buildx-action action to v4
  • e2eb8b4 chore(deps): update go modules
  • 0866b86 chore(deps): update golangci/golangci-lint-action action to v9
  • 57818db chore(deps): update hydra to v4 (major)
  • ae65101 chore(deps): update jackson (major)
  • 55dadd5 chore(deps): update mysql docker tag to v9.6
  • 11db47b chore(keto): use ory/x router
  • 9746c8a chore(kratos): use httprouter from ory/x
  • 8d25e4a chore: add cause to context cancels with 'context.WithTimeoutCause' in ./x
  • 19e9987 chore: add helpers for Kratos OEL to support various databases
  • 0c9364d chore: add retries to more curl invocations
  • b8307f8 chore: added CLIENT_SECRET_VERIFIER to our deployment
  • 10df7e1 chore: always use ristretto/v2
  • d774b36 chore: audit and fix npm dependencies
  • 3357c2e chore: bump to CRDB v25.4
  • 74348bb chore: bump to Go 1.26 massive cleanup in ory/x
  • 5a12526 chore: clean up / compress recent migrations to avoid creating and dropping indices unnecessarily
  • 9dd9247 chore: cleanup package-lock files
  • 5364144 chore: configure mappers when creating onboarding portal
  • 72e3747 chore: correct typos
  • c7b53c0 chore: delete unused CRDB changefeed watcherx module
  • 29ca852 chore: deprecate organization APIs
  • 1f4b512 chore: drop flow table defaults
  • 011a01c chore: fix for critical CVE - GHSA-p77j-4mvh-x3m3
  • eaa9393 chore: fix golangci-lint issues in Hydra
  • db17987 chore: fosite and hydra interface enhancements
  • a52a01e chore: fully implement provider pattern
  • ea76644 chore: improve clidoc generation
  • 9023ef4 chore: improve error reporting to help diagnose flaky test
  • 71e6385 chore: improve readability of popx.MigrationBox
  • f9af4a1 chore: keysetpagination improvements
  • 11c2b05 chore: more npm security updates
  • 223eadd chore: remove internal address types
  • b7b297e chore: remove unnecessary check constraint
  • e8586df chore: remove unused code
  • c72853f chore: remove unused internal AXv2 ACL check API
  • 502b8cc chore: remove unused log code
  • 6255bf8 chore: remove unused x/watcherx/websocket
  • 0f16952 chore: rename and simplify some internals
  • 10b8b58 chore: run go mod tidy and misc cleanup
  • 0ff58dd chore: run npm audit fix
  • 6280d3a chore: security updates for glob library
  • a6dda62 chore: simplify HTTP metrics instrumentation
  • 028908f chore: simplify consent store
  • 2dd6b94 chore: simplify consent store
  • 2dc4ebe chore: simplify decoderx usage
  • dacd7fd chore: split SCIM from multi-region & make it work with SQLite
  • 37d18a6 chore: unify common dependency interfaces
  • bbed48f chore: update @openapitools/openapi-generator-cli
  • c760183 chore: update OSS ory.sh to ory.com
  • 1171b85 chore: update go.mod
  • 517677c chore: update pop to latest & only run pop.SetNowFunc() inside init()
  • 1cdb046 chore: update to dockertest v4
  • b1d203f chore: updated axios
  • 48cb166 chore: updated golang.org/x/crypto
  • b7ac883 chore: updated minimatch
  • 02c6085 chore: use pgx pool in Kratos OEL & fix some OEL commands not using enterprise migrations
  • 8d9ac2b ci: add docker driver to cve scan
  • 8daeebb docs: update readmes
  • 1819465 feat: add ratelimit buckets to swagger definitions
  • 6a041ef feat: add support for NULL and more column types to keysetpagination
  • a008e91 feat: automatic transaction retries for postgres
  • 46846e9 feat: collect external latency data and write to logs
  • 5306aaf feat: consider Go migrations DirHash when restoring full schema from backups
  • 640eb0b feat: forward (some) user request headers to SMS HTTP channel
  • 47a9384 feat: generate events for SSO and SCIM provider revisions
  • f5b4aed feat: hydra benchmarking tool
  • 724e425 feat: improved tracing
  • 9f81a29 feat: keto-cli improvements
  • 10ec9bf feat: make SCIM work with MySQL
  • 8bd331c feat: move search sidecar to its own docker image
  • cf77ed6 feat: optionally do not store skipped consents
  • af69132 feat: rename project revision columns
  • 5ca4c85 feat: use keysetpagination planner for keto read queries
  • 106865d fix(deps): update dependency prettier to v3.7.4
  • c28a6c8 fix: always retry curl invocations to surmount transient third-party failures
  • 8ed407d fix: broken older down migrations
  • f33d6a8 fix: context passing and limit response size
  • 5884774 fix: context passing in jsonnetsecure
  • 6f9af27 fix: correctly detect when to use self-signed certificates
  • 163c579 fix: correctly scan SQL NULL into go JSON types
  • 262f85b fix: data race in hydra-oss test
  • a341867 fix: do not cache pairwise subject algorithm
  • 5b0360d fix: down migrations in newer MySQL versions
  • d0e0659 fix: fix benchmark test
  • ce58946 fix: flaky tests on hydra-oss tests
  • f1290da fix: incorrect default value for page_tokens
  • a8142d0 fix: incorrect usage of database/sql
  • 44347e7 fix: properly validate policy URI on client creation
  • 6fd8a64 fix: remove WithDumpMigrations option to MigrationBox
  • e8c8803 fix: remove flaky test for unused function
  • 11ad1ac fix: request log config key
  • f6b28db fix: stray debug print
  • 3ad64db fix: transactions managed by fosite were not working
  • 0c78aa7 fix: update CONTRIBUTING.md
  • 845cc4d fix: update go modules
  • ae75488 fix: update packages to fix GHSA-7h2j-956f-4vf2
  • f28904c fix: upgrade vulnerable dependencies across Go and npm
  • d37af61 fix: x data race and parallize some tests
  • 9d96bbd refactor: squash merge old backoffice migration and fix up command
  • fdca960 revert: simplify consent store
  • 822ea26 test(hydra): add plaintext backups for all DB types
  • cdf972e test: deflake and improve performance
  • ea02ce9 test: deflake directory watcherx
  • a43d8f8 test: faster and more reliable courier tests
  • 4f8ff8e test: fix multiple data races
  • e65fba7 test: minor setup improvements

Artifacts can be verified with cosign using this public key.

Check out latest releases or
releases around ory/hydra v26.2.0

Don't miss a new hydra release

NewReleases is sending notifications on new releases.

Get notifications