Hello community, here is the log from the commit of package dex-oidc for openSUSE:Leap:15.2 checked in at 2020-04-08 12:49:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2/dex-oidc (Old) and /work/SRC/openSUSE:Leap:15.2/.dex-oidc.new.3248 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "dex-oidc" Wed Apr 8 12:49:27 2020 rev:2 rq:791912 version:2.23.0 Changes: -------- --- /work/SRC/openSUSE:Leap:15.2/dex-oidc/dex-oidc.changes 2020-02-21 23:50:50.188743513 +0100 +++ /work/SRC/openSUSE:Leap:15.2/.dex-oidc.new.3248/dex-oidc.changes 2020-04-08 12:50:00.918393276 +0200 @@ -1,0 +2,139 @@ +Fri Apr 03 10:44:54 UTC 2020 - fcaste...@suse.com + +- Remove example programs from the final package. They are not needed and + would make the dex container bigger. +- Removed fix-default-web-path.patch: the patch already merged upstream +- Removed fix-unmarshal-web-config.patch: the patch already merged upstream +- Update to version 2.23.0: + * Features: + - connector: Atlassian Crowd connector + - connector/ldap: add multiple user to group mapping + - Add support for password grant + - Add ability to set ID and Secret from environment variables for static clients + * Bugfixes: + - Provider icons use the connector name, not the ID + - storage/mysql: increase auth_request.state length to 4096 +- Changes from version 2.22.0: + * Features: + - google: Implement group whitelisting + - Read static password hash from environment variable + - OpenShift connector + * Bugfixes: + - Provider icons use the connector name, not the ID +- Changes from version 2.21.0: + * Features: + - Implement refreshing with Google + - Fetch groups in a Google Connector + - Add option to enable groups for oidc connectors + * Bugfixes: + - Fix spelling errors in docs + - preferred_username claim added on refresh token +- Changes from version 2.20.0: + * Features: + - connector/saml: Adding group filtering + - Run getUserInfo prior to claim enforcement + - server: templates: use relative URLs to refer to assets + - add preffered_username to idToken + * Bug fixes, misc changes: + - gitlab: add groups scope by default when filtering is requested + - Fix typo + - Fix typo + - storage/mysql: support pre-5.7.20 instances with tx_isolation only + - Fix URLs in curl cmd as stated in the overview doc + - Add note for redirect uri +- Changes from version 2.19.0: + * Features: + - connector/LDAP: display login error + - HTTPS/gRPC: Use a more conservative set of CipherSuites + * Bug fixes, misc changes: + - Update ADOPTERS.md + - storage/kubernetes: Removing Kubernetes TPR support + - Dockerfile: build with Golang 1.12.9 + - Kubernetes docs: Clarify the origin of openid-ca + - Code update: Replace x/net/context with stdlib context +- Changes from version 2.18.0: + * Features: + - Storage: New MySQL storage backend + - gRPC: Add reflection to gRPC API + - Add option to always display connector selection even if there's only one + - Added "connector_id" to skip straight to a connector + - Allow arbitrary data to be passed to templates + - Gitlab: implement useLoginAsID as in GitHub connector + - Microsoft: option for group UUIDs instead of name and group whitelist + - gRPC: Add VerifyPassword to API + * Bug fixes, misc changes: + - Update ADOPTERS.md + - example-app: add connector_id + - Docs: fix MySQL sample query + - Code quality: fix some lint issues + - gRPC: fix logging in VerifyPassword + - Return config validation errors in one go + - Update all deps + - Return HTTP 400 for invalid state parameter + - Adjusting Makefile so that golint will compile + - Add tests for some callback handler error conditions + - Add examples for recent additions to oauth2 configuration options + - Bump deps for http2 issues + - Connectors: refactor filter code into a helper package +- Changes from version 2.17.0: + * Features: + - Add UserInfo endpoint + - Linkedin: Update to use v2 APIs + - server: add metrics for CORS handlers + - OIDC: Add option to hit the optional userinfo endpoint + - OIDC: Make userID configurable + - OIDC: Make userName configurable + - GitLab: support for group whitelist + * Bug fixes, misc changes: + - Print appropriate error when listing connectors fails + - Bitbucket docs: update permission requirements + - Round out logging interface with functions for all levels + - Fix typo in SAMLConnector interface + - travis: replace golang 1.10 and 1.11 with 1.12 + - OIDC: truely ignore "email_verified" claim if configured that way +- Changes from version 2.16.0: + * Features: + - Add an option to the OpenID Connect connector to always set email_verified to true + - Docker image no longer runs dex as root + * Bug fixes, misc changes: + - Dex now logs client name instead of client_id + - Fixes for Go 1.11.4 modules + - Refactor logging to use an interface instead of logrus directly +- Changes from version 2.15.0: + * Features: + - Added Active Directory and Kubelogin integration sample + - Added option to use GitHub login as id + * Bug fixes, misc changes: + - Dockerfile Go version bumped to v1.11.5 + - Minimum TLS version bumped to TLSv1.2 + - Added @JoelSpeed as maintainer + - Added tests for LDAP filtering + - Print Access token in example app + - Add periodic storage health checking +- Changes from version 2.14.0: + * Features: + - There's a brand new Keystone connector! + - Github connector now returns a full group list when no org is specified, and you have + - opted-in to that behaviour + - Github connector allows for a 'both' option to use team name AND slug in TeamNameField + - Gitlab connector no longer requires to API scope + - Postgres storage backeng now works with UNIX sockets + - Postgres storage backend now exposes some tunables + - gRPC API: Add UpdateClient + - Make expiry of auth requests configurable + - LDAP connector - add emailSuffix config option + * Bug fixes, misc changes: + - Render error message provided by connector if user authentication failed + - Fix bogus conformance failure due to time zones + - Improved LDAP errors from upgrading go-ldap + - Removed incomplete, unmaintained storage adapters for CockroachDB and MySQL + - Removed unused startup scripts, adapted docs + - LDAP connector: Document that 'DN' must be in capitals + - Kubernetes docs: clarify steps around use/creation of TLS assets + - Bumped github.com/lib/pq + - Migrate to go modules + - Makefile: cleanups for newer versions of Go + - Dockerfile: update to Go 1.11.3 + - Replace "GET", "POST" to http.MethodGet and http.MethodPost + +------------------------------------------------------------------- Old: ---- fix-default-web-path.patch fix-unmarshal-web-config.patch v2.13.0.tar.gz New: ---- dex-2.23.0.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ dex-oidc.spec ++++++ --- /var/tmp/diff_new_pack.omd83z/_old 2020-04-08 12:50:01.318393484 +0200 +++ /var/tmp/diff_new_pack.omd83z/_new 2020-04-08 12:50:01.322393486 +0200 @@ -1,7 +1,7 @@ # # spec file for package dex-oidc # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,21 +16,22 @@ # +# Project name when using go tooling. +%define go_version 1.13 + Name: dex-oidc -Version: 2.13.0 +Version: 2.23.0 Release: 0 Summary: OpenID Connect Identity (OIDC) and OAuth 2.0 Provider with Pluggable Connectors License: Apache-2.0 Group: System/Management URL: https://github.com/dexidp/dex -Source: https://github.com/dexidp/dex/archive/v%{version}.tar.gz -Patch1: fix-default-web-path.patch -Patch2: fix-unmarshal-web-config.patch +Source: dex-%{version}.tar.xz BuildRequires: fdupes BuildRequires: git -BuildRequires: go >= 1.11.1 BuildRequires: golang-packaging -BuildRequires: golang(API) = 1.11 +BuildRequires: golang(API) = %{go_version} + Requires(post): %fillup_prereq Conflicts: dex # caasp-dex was last used in openSUSE Leap15 @@ -50,14 +51,12 @@ %prep %setup -q -n dex-%{version} -%patch1 -%patch2 %build +%define ldflags "-w -X github.com/dexidp/dex/version.Version=%{version}" + %{goprep} github.com/dexidp/dex -%{gobuild} -ldflags "-w -X github.com/dexidp/dex/version.Version=%{version}" cmd/dex -%{gobuild} -ldflags "-w -X github.com/dexidp/dex/version.Version=%{version}" cmd/example-app -%{gobuild} -ldflags "-w -X github.com/dexidp/dex/version.Version=%{version}" examples/grpc-client +%{gobuild} -mod=vendor -ldflags %{ldflags} cmd/dex %install %{goinstall} @@ -81,7 +80,5 @@ %dir %{_datadir}/%{name}/web/themes/tectonic %{_datadir}/%{name}/web/* %{_bindir}/dex -%{_bindir}/example-app -%{_bindir}/grpc-client %changelog ++++++ _service ++++++ --- /var/tmp/diff_new_pack.omd83z/_old 2020-04-08 12:50:01.354393502 +0200 +++ /var/tmp/diff_new_pack.omd83z/_new 2020-04-08 12:50:01.354393502 +0200 @@ -4,12 +4,12 @@ <param name="scm">git</param> <param name="filename">dex</param> <param name="exclude">.git</param> - <param name="versionformat">2.13.0</param> - <param name="revision">v2.13.0</param> + <param name="versionformat">2.23.0</param> + <param name="revision">v2.23.0</param> <param name="changesgenerate">enable</param> </service> <service name="recompress" mode="disabled"> - <param name="file">dex-*.tar.gz</param> + <param name="file">dex-*.tar</param> <param name="compression">xz</param> </service> <service name="set_version" mode="disabled"> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.omd83z/_old 2020-04-08 12:50:01.370393511 +0200 +++ /var/tmp/diff_new_pack.omd83z/_new 2020-04-08 12:50:01.370393511 +0200 @@ -1,4 +1,4 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/dexidp/dex.git</param> - <param name="changesrevision">13a167989266540f7a61e1355d2724214dbdc162</param></service></servicedata> + <param name="changesrevision">99c3ec68203c0b2764a49724ecb9ecc26b520482</param></service></servicedata> \ No newline at end of file
