tag:github.com,2008:https://github.com/cesanta/docker_auth/releasesTags from docker_auth2025-06-20T01:42:56Ztag:github.com,2008:Repository/36470954/1.14.02025-06-20T01:43:38Z1.14.0<p>Bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 in /auth_server (</p>
<p><a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/408">#408</a>)</p>
<p>Bumps [github.com/go-jose/go-jose/v3](<a href="https://github.com/go-jose/go-jose">https://github.com/go-jose/go-jose</a>) from 3.0.3 to 3.0.4.
<br />- [Release notes](<a href="https://github.com/go-jose/go-jose/releases">https://github.com/go-jose/go-jose/releases</a>)
<br />- [Changelog](<a href="https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md">https://github.com/go-jose/go-jose/blob/main/CHANGELOG.md</a>)
<br />- [Commits](<a class="commit-link" href="https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4">go-jose/go-jose@<tt>v3.0.3...v3.0.4</tt></a>)</p>
<p>---
<br />updated-dependencies:
<br />- dependency-name: github.com/go-jose/go-jose/v3
<br /> dependency-version: 3.0.4
<br /> dependency-type: indirect
<br />...</p>
<p>Signed-off-by: dependabot[bot] <[email protected]>
<br />Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com></p>techknowlogicktag:github.com,2008:Repository/36470954/1.13.02024-12-31T22:31:00Z1.13.0<p>support docker registry 2.8.x version which not support auto redirect…</p>
<p>… path (<a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/397">#397</a>)</p>techknowlogicktag:github.com,2008:Repository/36470954/1.12.02024-02-05T20:15:14Z1.12.0<p>Security issue: resolve <a title="GHSA-2c7c-3mj9-8fqh" href="https://github.com/advisories/GHSA-2c7c-3mj9-8fqh">GHSA-2c7c-3mj9-8fqh</a> (<a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/381">#381</a>)</p>
<p>An attacker specifying a large "p2c" value can cause
<br />JSONWebEncryption.Decrypt and JSONWebEncryption.DecryptMulti to
<br />consume large amounts of CPU, causing a DoS.</p>
<p>Update package github.com/coreos/go-oidc to version that requires
<br />fixed version of go-jose. Note that github.com/square/go-jose is
<br />deprecated and has been replaced by github.com/go-jose/go-jose</p>
<p>commands run:
<br />- go get -u github.com/coreos/go-oidc/[email protected]
<br />- go mod tidy -go=1.16</p>
<p>see:
<br />- <a title="GHSA-2c7c-3mj9-8fqh" href="https://github.com/advisories/GHSA-2c7c-3mj9-8fqh">GHSA-2c7c-3mj9-8fqh</a>
<br />- <a class="issue-link js-issue-link" href="https://github.com/coreos/go-oidc/pull/399">coreos/go-oidc#399</a>
<br />- <a href="https://github.com/square/go-jose">https://github.com/square/go-jose</a>
<br />- <a href="https://github.com/go-jose/go-jose">https://github.com/go-jose/go-jose</a></p>
<p>Co-authored-by: Michael Cook <[email protected]></p>techknowlogicktag:github.com,2008:Repository/36470954/1.11.02023-03-01T20:44:10Z1.11.0techknowlogicktag:github.com,2008:Repository/36470954/1.10.02022-09-28T17:24:04Z1.10.0<p>allow LDAP mapping values to be lowercased (<a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/348">#348</a>)</p>
<p>Add the ability to lowercase values when creating label mappings from
<br />LDAP attributes. In the example the groups that the user is a member of
<br />could be mixed case which would make an ACL like:
<br /> match: { account: "/.+/", name: "${labels:groups}/*" }
<br />Not possible. But with this change and the example applied it would be
<br />possible.</p>techknowlogicktag:github.com,2008:Repository/36470954/1.9.02021-12-07T20:42:52Z1.9.0techknowlogicktag:github.com,2008:Repository/36470954/1.8.12021-11-25T18:31:33Z1.8.1<p>bugfix: Added sign-in link under gitlab page template (<a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/323">#323</a>)</p>
<p>Co-authored-by: Aleksei Apaseev <[email protected]></p>techknowlogicktag:github.com,2008:Repository/36470954/1.8.02021-10-04T19:26:11Z1.8.0techknowlogicktag:github.com,2008:Repository/36470954/1.7.12021-07-08T03:07:55Zdocker_auth 1.7.1<p>fix: segmentation fault on arm64 image (<a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/pull/311">#311</a>)</p>
<p><span class="issue-keyword tooltipped tooltipped-se">Resolves</span> <a class="issue-link js-issue-link" href="https://github.com/cesanta/docker_auth/issues/310">#310</a></p>techknowlogicktag:github.com,2008:Repository/36470954/1.7.02021-03-07T02:15:45Zdocker_auth 1.7.0techknowlogick