Skip to content
Snippets Groups Projects
Select Git revision
  • dependabot/go_modules/github.com/go-sql-driver/mysql-1.9.1
  • dependabot/go_modules/github.com/redis/go-redis/v9-9.7.3
  • dependabot/go_modules/github.com/coreos/go-oidc/v3-3.13.0
  • prerel default protected
  • master protected
  • dependabot/go_modules/github.com/coreos/go-oidc/v3-3.8.0
  • dependabot/go_modules/golang.org/x/mod-0.14.0
  • dependabot/go_modules/github.com/gofiber/fiber/v2-2.51.0
  • dependabot/go_modules/github.com/valyala/fasthttp-1.51.0
  • dependabot/go_modules/golang.org/x/oauth2-0.15.0
  • dependabot/go_modules/github.com/lestrrat-go/jwx-1.2.27
  • dependabot/go_modules/golang.org/x/term-0.15.0
  • dependabot/go_modules/golang.org/x/crypto-0.16.0
  • dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.1
  • dependabot/go_modules/golang.org/x/crypto-0.15.0
  • dependabot/go_modules/golang.org/x/oauth2-0.14.0
  • dependabot/go_modules/golang.org/x/term-0.14.0
  • dependabot/go_modules/github.com/redis/go-redis/v9-9.3.0
  • dependabot/go_modules/github.com/coreos/go-oidc/v3-3.7.0
  • dependabot/go_modules/github.com/gofiber/fiber/v2-2.50.0
  • v0.10.1
  • v0.10.0
  • v0.9.2
  • v0.9.1
  • v0.9.0
  • v0.8.1
  • v0.8.0
  • v0.7.2
  • v0.7.1
  • v0.7.0
  • v0.6.1
  • v0.6.1-c
  • v0.6.1-b
  • v0.6.1-a
  • v0.6.0
  • v0.5.4
  • v0.5.3
  • v0.5.2
  • v0.5.1
  • v0.5.0
40 results
Blame Permalink
To find the state of this project's repository at the time of any of these versions, check out the tags.
CHANGELOG.md 2.35 KiB

mytoken 0.3.3

Mytoken

  • Added the name of a mytoken to the JWT.

API

  • Don't redirect from /.well-known/openid-configuration to /.well-known/mytoken-configuration. Instead returning the same content on both endpoints.

Enhancements

  • Removed buttons from webinterface in the tokeninfo tabs. The content now loads directly when switching the tab.
  • Removed most need for CDNs; now self-hosting resources.
  • Added setup of db database and db user to the setup utility.
  • Made Link in the web interface on the create-mytoken page better visible.

Bugfixes

  • Fixed the error returned from the server if no capability for a mytoken was provided.
  • Fixed PKCE code verifier length.
  • Fixed Datetimepicker issues on consent page.
  • Fixed response type if an (oidc) error occures on the redirect step of the authorization code flow.

mytoken 0.3.2

  • Fixed password prompt for migratedb

mytoken 0.3.1

  • Improved helper tools

mytoken 0.3.0

Features

  • Changes to the mytoken
    • Added a version to the mytoken token
    • Added token type 'mytoken'
    • Now using a hash value as the subject
  • Added Dockerfiles; mytoken can easily run with swarm
  • Added OIDC-compatibility for requesting ATs
    • ATs can be requested using the mytoken as the refresh token in a OIDC refresh flow
  • Deployment Configuration
    • Added option to set maximum lifetime of mytokens
    • Added option to disable restriction keys
    • Made request limits configurable
  • Changed setup db to new db migration tool
  • Added support for token rotation, incl. optional auto revocation
  • Added option to set maximum token length when requesting a mytoken

Webinterface

  • Added option to create mytoken in the web interface
  • Reworked consent screen
  • Added possibility to set scopes and audiences when requesting an AT
  • Improvements

Enhancements

  • Using better cryptographic functions
  • Set cookie as secure if issuer uses https, indepent of a potential proxy
  • Improved packaging
  • Improved code base
  • Improved error tracebility

Bugfixes

  • Fixed bugs in the webinterface
  • Fixed other bugs

OIDC

  • Add PKCE support

Dependencies

  • Bumped several dependencies

A HIFIS Service | Privacy | Imprint | Support | Documentation | Changelog