Skip to content

Releases: fosrl/badger

v1.3.1

22 Dec 19:03
@miloschwartz miloschwartz
v1.3.1
e0a2d76
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.3.1 Latest
Latest

What's Changed

  • Add send Badger version to Pangolin for verify-session

Full Changelog: v1.3.0...v1.3.1

Assets 2
Loading

v1.3.0

21 Dec 22:01
@miloschwartz miloschwartz
v1.3.0
1d15b5b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.3.0

What's Changed

  • Add support for Cloudflare proxy real IP headers to get client IP addresses when behind Cloudflare proxy
  • Add support for custom trusted proxy headers to get client IP addresses when behind a trusted proxy other than Cloudflare proxy
  • Add Remote-Role header to Badger passthrough headers
  • Add throw a 401 redirect as necessary for the header auth to prompt the browser for a user and password

Full Changelog: v1.2.1...v1.3.0

Cloudflare Proxy Real IP Support

This release improves how Badger determines the real client IP when requests pass through proxies.

Badger 1.3.0 now automatically supports Cloudflare by trusting Cloudflare IP ranges and extracting the client IP from the CF-Connecting-IP header, ensuring accurate IPs for rate limiting, logging, geoblocking, and downstream services without extra configuration.

It also adds support for non-Cloudflare setups. You can now define custom trusted proxy IP ranges and specify a custom header to extract the client IP, making Badger usable behind any trusted load balancer or reverse proxy.

For more information about how this works read the README.
For how this works with Pangolin, read the Pangolin Docs.

Loading

v1.2.1

02 Nov 21:39
@miloschwartz miloschwartz
v1.2.1
cc45f41
This commit was signed with the committer’s verified signature.
miloschwartz Milo Schwartz
SSH Key Fingerprint: eIWugdg0kXi+A2Swxha3ZhdxemYNNll7cs1RQdqsWzU
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.2.1

What's Changed

  • Always set Remote-* headers

Full Changelog: v1.2.0...v1.2.1

Loading

v1.2.0

05 Jun 15:36
@miloschwartz miloschwartz
v1.2.0
d553b6c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.2.0

What's Changed

  • Add auth headers to request

New Contributors

  • @pyrho made their first contribution in #7

Full Changelog: v1.1.0...v1.2.0

Contributors

pyrho
Loading

v1.1.0

06 Apr 15:30
@miloschwartz miloschwartz
v1.1.0
e951e42
This commit was signed with the committer’s verified signature.
miloschwartz Milo Schwartz
SSH Key Fingerprint: eIWugdg0kXi+A2Swxha3ZhdxemYNNll7cs1RQdqsWzU
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.1.0

What's Changed

  • Pass all headers and query params in verify-session request body
  • Apply response headers to http response
  • Remove accessTokenQueryParam
    • Access token check is now performed by third party in verify-session request

Full Changelog: v1.0.0...v1.1.0

Loading

v1.0.0

04 Mar 03:38
@miloschwartz miloschwartz
v1.0.0
3a18098
This commit was signed with the committer’s verified signature.
miloschwartz Milo Schwartz
SSH Key Fingerprint: eIWugdg0kXi+A2Swxha3ZhdxemYNNll7cs1RQdqsWzU
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0

What's Changed

  • Bump version for out of beta release

Full Changelog: v1.0.0-beta.3...v1.0.0

Loading

v1.0.0-beta.3

30 Jan 04:02
@miloschwartz miloschwartz
v1.0.0-beta.3
9cae64d
This commit was signed with the committer’s verified signature.
miloschwartz Milo Schwartz
SSH Key Fingerprint: 7CW89fo5BbLkvmh87Bd5PSGelqQUMOU3xt2B9QqY0FI
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0-beta.3

What's Changed

  • Exchange temporary resource session for real resource session using query param
  • Remove resource_session_cookie_name
  • Pass request client IP to Pangolin

Full Changelog: v1.0.0-beta.2...v1.0.0-beta.3

Loading

v1.0.0-beta.2

12 Jan 19:44
@miloschwartz miloschwartz
v1.0.0-beta.2
d5fd63a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0-beta.2

What's Changed

  • Extract Pangolin access token from query param
  • Pass through cookies from Pangolin to response

Full Changelog: https://github.com/fosrl/badger/commits/v1.0.0-beta.2

Loading