v2.0.0-beta.1

Changes since alpha.5

For an overview of v2 changes refer to the upstream docs: https://github.com/coreos/dex/blob/master/Documentation/v2.md

Documentation:

• Add docs on gRPC API (#652)
• Add docs on changes from dex v1 to v2 (#664)

Bug fixes:

• Fixed Postgres transaction level (#654)
• Logging in with a bad username no longer returns a 500 (#658)
• Fixed another case of the server using nano seconds instead of seconds (#671)

Features:

• Conformance tests added for concurrent updates (#654)
• API endpoints for creating and updating "local" passwords (#649)
• API supports client auth (#661)
• Build with go 1.7.3 instead of 1.7.1 (#666)
• Switched yaml parser (#667)
• LDAP connector accepts base64 encoded CA literal in config (#668)
• Expose expiry settings in config (#665)
• Debug flag on example-app (#670)
• Accept raw bcrypt values for staticPasswords (#667, #669)

v2.0.0-alpha.5

Updates since alpha.4

Features:

• Minor improvements to the kubernetes storage
  • Allow arbitrary client IDs (#642)
  • Don't use KUBECONFIG environment variable (#638)
  • Guess current context if there's only one context (#634)
  • Reduce noise for expected "bad" status codes (#629)
  • Guess namespace for in cluster clients using service account token (#626)
• Config can read values from environment (#627)
• Reworked and expanded LDAP connector (#624)
• All callback based connectors now share a callback endpoint (#638)

Bug fixes:

• Fix cache-control header using nano-seconds value instead of seconds (#637)

v2.0.0-alpha.4

v2.0.0-alpha.4

v2.0.0-alpha.3

v2.0.0-alpha.3

v2.0.0-alpha.2

v2.0.0-alpha.2

v2.0.0-alpha.1

v2.0.0-alpha.1

v0.6.1

This is a minor patch release.

Changes since last release:

• revert #579 addressing button styling
• fix root cause of button UI problem with a CSS class

v0.6.0

Changes since last release:

• Deprecate --email-from flag and clean up email config options (#487)
• Add "groups" scope to return list of groups in claims, LDAP only supported implementation (#510)
• Dex can no be used at a relative path (#520, #521, #522, #558)
• Fix API for bearer tokens with multiple audiences (#531)
• Set display name when registering a user (#537)
• Added UAA connector (#542)
• Added refresh token rotation, aka refresh tokens can only be used once (#540)
• Added option to use client credentials against worker API (#529)
• Token response now includes mandatory "expires_in" field (#575)

v0.5.1

This is a minor point release

Features since v0.5.0

• Reduced ID Token size by using smaller JWK Key IDs (#490)
• Cleaned up LDAP connector (#483)
• Return 409 status code in API when resources already exist (#494, #496)

v0.5.0

Features:

• Enable automatic registration for non-local login (#463)
• Cross-client refresh tokens through the "authorized party" claim (#465, #426)
• "public" clients which can use oob flows (#471)
• Clients ID and secrets may now be specified in the bootstrapping API (#479)

Bug fixes:

• Dex now works when backed by Azure AD (#466)

Deprecated:

• Removed APIs which only use client_id and client_secret. Use admin API for this functionality. (#468)