v0.18.3

0.18.3 (2024-10-21)

Bug Fixes

• update google.golang.org/grpc to address GHSA-m425-mq94-257g (96e4f44)

v0.18.2

0.18.2 (2024-10-21)

Bug Fixes

• address CVE-2023-39325 found by https://github.com/canonical/oci-factory/actions/runs/11406456591/job/31741561258 (a68d463)
• deps: update ui deps (6228aa2)
• return error is no login_challenge or return_to (1efbff4)

v0.18.1

0.18.1 (2024-10-16)

Bug Fixes

• improve ui for reset password flow. fixes #322 (2dde4e7)

v0.18.0

0.18.0 (2024-10-11)

Features

• add security headers (37241fd)

Bug Fixes

• add return_to parameter for regenerate backup codes redirect (4bb01a9)
• delete session on recovery (fa39b00)
• deps: update go deps (d7b601b)
• do not redirect to error, on no error (4f74f07)
• do not send kratos session cookie on new login flow (89fbe03)
• do not send session cookie on 1fa (a951882)
• fix backup codes setup (19254b1)
• handle login flow without login_challenge (b902910)
• pass the return_to from request (d4e2399)
• update the setup_secure page (4f92c65)

v0.17.0

0.17.0 (2024-09-04)

Features

• support lookup_secret method, offer user to regenerate the set if 3 or less codes are left (45738a8)

v0.16.0

0.16.0 (2024-08-14)

Features

• add MFA_ENABLED to enable/disable mfa enforcing + KRATOS_ADMIN_URL (511e2a2)
• implement method to check if totp is configured (22c063e)
• implement mfa enforcing (7ff6496)
• implement MFA enforcing for getConsent (a17d0ae)

Bug Fixes

• pass request context to service (0398690)
• redirection in case session is available (b71ab84)

v0.15.0

0.15.0 (2024-07-29)

Features

• add settings flow (fcbd7ec)
• handle missing webauthn credentials error (85979cd)
• settings flow (d6770c8)
• support account recovery (5fe26e5)
• support mfa with totp method (16df279)
• support passwordless webauthn method (ecfa6f4)
• ui support for mfa flows (dc88e6b)

Bug Fixes

• add client id to at aud (20fed79)
• group -> parent/child relationship + add spaces for readability (da553c4)
• handle invalid code case (bbfb9f1)
• handle invalid recovery code case (wip) (c60343a)
• pass cookie when creating settings flow to enable password change once logged in (0fc9bfc)
• remove certificates from image (bfdd295)
• remove unnecessary logging (f446110)
• return to url with flow id (39d299c)
• update docker compose (533a70c)

v0.14.0

0.14.0 (2024-04-30)

Features

• add error handling for login flow WD-10252 (f96567e)
• return common errors to ui (5828a6a)
• support password method (f8842f0)

Bug Fixes

• fix path (e7ffc03)
• password login method WD-10252 (1e98e09)
• use relative path for callback (4aa6c83)

v0.13.0

0.13.0 (2024-04-16)

Features

• add success screen for device flow WD-10251 (e9b77db)

Bug Fixes

• add device flow logic to hydra client (ca4a1f9)
• add error handling to the device_code page (666f95b)
• CheckAllowedProviders: fix OAuthKeeper case (24212f4)
• implement device_code backend logic (06bb0b2)
• pass error response from hydra to UI (b165f43)
• typo in Oathkeeper name (5f7634d)
• update device_code page (4ca0d13)
• update hydra config (cb1e049)

v0.12.0

0.12.0 (2024-01-31)

Features

• Add authorization logic for allowed providers (5da85b7)
• Add authorizer struct (c6170a2)
• add create-fga-model CLI command (42f47df)
• add fallback logo for identity providers (ca957ee)
• Add openfga client (8628fa6)
• remove okta logo from login providers list (88bb621)
• use cobra for CLI (50963a3)
• use new design and add user flows as dummy pages WD-8469 (2ac0e1a)

Bug Fixes

• add noop clients (5b6f62a)
• bump otel/trace version (d2f65fc)
• readme typo (80de6dd)
• switch to zap nop logger (57b37f8)
• update rockcraft.yaml (c595939)
• update ui (e862475)
• Use github as test provider (71eb388)
• Use label to generate button text (0494160)