github ory/oathkeeper v0.40.4

latest releases: v0.40.7, v0.40.7-pre.0, v0.40.6...
16 months ago

Added distroless image, fixed some bugs, and added support for JWKs key rotation in the ID token mutator.

Bug Fixes

Code Generation

  • Pin v0.40.4 release commit (70d63f3)

Features

  • Add distroless images (#1114) (8ac1dac)

  • Sqa metrics v2 (#1110) (baeecc6)

  • Support token rotation in ID token mutator (#1119) (5dd4571):

    Previously, only one JWK may be returned by the JWKS URL. This made token rotation impossible. This patch allows for multiple keys to be returned by the JWKS URL and the first key found will be used for signing.

Tests

Changelog

  • 48c90c1 autogen(docs): generate and bump docs
  • 47e3d19 autogen(docs): regenerate and update changelog
  • b7c57ca autogen(docs): regenerate and update changelog
  • 6761be1 autogen(docs): regenerate and update changelog
  • 64aed38 autogen(docs): regenerate and update changelog
  • ccdf1e4 autogen(docs): regenerate and update changelog
  • 9275dcd autogen(docs): regenerate and update changelog
  • 1c333b9 autogen(docs): regenerate and update changelog
  • 4f08af7 autogen(docs): regenerate and update changelog
  • 3276408 autogen(openapi): regenerate swagger spec and internal client
  • 97e9660 autogen(openapi): regenerate swagger spec and internal client
  • 12d0aea autogen: add v0.40.3 to version.schema.json
  • 70d63f3 autogen: pin v0.40.4 release commit
  • c85d0a9 autogen: pin v0.40.4 release commit
  • 596ad11 chore(deps): bump github.com/knadh/koanf to v2.0.1 (#1111)
  • 0a767e7 chore(deps): update ory/x to v0.0.565 (#1113)
  • 56779c4 chore: support in README (#1117)
  • 91ae714 chore: update gRPC to v1.56.1 (#1118)
  • 1857ba3 chore: update security scanners (#1107)
  • 8ac1dac feat: add distroless images (#1114)
  • baeecc6 feat: sqa metrics v2 (#1110)
  • 5dd4571 feat: support token rotation in ID token mutator (#1119)
  • 08b2bfb fix: apk install issue
  • d9b0965 fix: ensure logger uses config (#1104)
  • 3a716f2 fix: noop mutator don't overwrite session headers (#1091)
  • c520e50 fix: use Query.Get when fetching QueryParameter (#1106)
  • af5ce29 test: use reliable upstream server (#1099)

Artifacts can be verified with cosign using this public key.

Don't miss a new oathkeeper release

NewReleases is sending notifications on new releases.