044cbd0325
Updated versions in docs for v0.22.0 release
2023-01-20 05:17:45 +00:00
e6a18978d1
Merge pull request #1385 from vmware-tanzu/update_kube_deps_0.26.1
...
Update Kube deps to 0.26.1
2023-01-19 15:48:41 -08:00
14858a6db3
Increase lint timeout to 20m for CI
2023-01-19 14:41:42 -08:00
8cad5ea3c9
Update Kube deps to 0.26.1
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-19 14:03:37 -08:00
0ffd01d993
Merge pull request #1372 from vmware-tanzu/jtc/support-k8s-0.26-and-bump-generated-code
...
bump k8s deps to 0.26 and bump generated code to include 1.26
2023-01-19 13:47:12 -08:00
23f6dd44a0
Use Go 1.19 for fips builds
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-18 16:00:16 -08:00
7ff3b3d9cb
Code changes to support Kube 0.26 deps
2023-01-18 14:39:22 -08:00
a430f4b730
Bump K8s deps to 0.26 and add codegen for 0.26
2023-01-18 13:41:06 -08:00
585adc96d8
Bump generated files for K8s 1.22, 1.23, 1.24, 1.25
2023-01-18 13:38:36 -08:00
3b46547efc
add hack/update-copyright-year.sh
2023-01-18 13:36:23 -08:00
53f56f328b
Merge pull request #1371 from vmware-tanzu/jtc/bump-deps-except-k8s
...
Bump Golang and Deps (except K8s)
2023-01-18 09:19:27 -08:00
9aafff78f1
bump two more direct deps
2023-01-18 08:26:55 -08:00
a49e48c6f7
Bump FIPS Golang to 1.18.10b7
...
Resolves #1367
2023-01-17 21:20:50 -06:00
6926c1ab64
Bump Golang to 1.19.5
...
Resolves #1368
2023-01-17 21:20:37 -06:00
f9e2212882
Bump all deps except K8s
...
Resolves:
- #1360
- #1361
- #1362
- #1363
- #1364
- #1365
2023-01-17 21:11:39 -06:00
95d35a174d
Merge pull request #1294 from vmware-tanzu/additional_claim_mapping
...
Add `spec.claims.additionalClaimMappings` to OIDCIdentityProvider
2023-01-17 20:48:58 -06:00
2f9b8b105d
update copyright to 2023 in files changed by this PR
2023-01-17 15:54:16 -08:00
3d20fa79a7
Two more integration tests for additionalClaimMappings
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-17 15:36:39 -08:00
74c3156059
Assert more cluster-scoped ID token claims in supervisor_login_test.go
2023-01-17 13:10:51 -08:00
6156fdf175
Expect complex subclaims of additionalClaims to have type interface{}
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
2023-01-17 13:27:40 -06:00
f494c61790
additionalClaims claim should not be present when no sub claims are expected
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Benjamin A. Petersen <ben@benjaminapetersen.me>
2023-01-17 11:58:08 -06:00
2633d72ce2
Change some test variable names related to additional claims
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-13 14:59:59 -08:00
a94bbe70c7
Add integration test to verify that additionalClaims are present in an ID Token
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
Co-authored-by: Benjamin A. Petersen <ben@benjaminapetersen.me>
2023-01-13 14:59:59 -08:00
9acc456fd7
Update token_handler_test to check additionalClaims for bools, numbers, and slices
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
Co-authored-by: Benjamin A. Petersen <ben@benjaminapetersen.me>
2023-01-13 14:59:59 -08:00
8ff6ef32e9
Allow additional claims to map into an ID token issued by the supervisor
...
- Specify mappings on OIDCIdentityProvider.spec.claims.additionalClaimMappings
- Advertise additionalClaims in the OIDC discovery endpoint under claims_supported
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-13 14:59:50 -08:00
f4c9202f49
Merge pull request #1369 from vmware-tanzu/kube_cert_agent_reduce_memory
...
Reduce memory consumption of pinniped-concierge-kube-cert-agent binary
2023-01-13 14:26:39 -06:00
bc7ffd37a6
Reduce memory consumption of pinniped-concierge-kube-cert-agent binary
...
Co-authored-by: Joshua Casey <joshuatcasey@gmail.com>
2023-01-13 11:07:42 -08:00
f691baec74
Updated versions in docs for v0.21.0 release
2022-12-21 13:12:06 +00:00
39a95e1198
Merge pull request #1354 from vmware-tanzu/dump_more_deps_dec_2022
...
Bump Go 1.19.1 -> 1.19.4, and go-boringcrypto 1.18.6b7 -> 1.18.9b7
2022-12-15 10:35:54 -08:00
6d3ed73eee
Bump Go 1.19.1 -> 1.19.4, and go-boringcrypto 1.18.6b7 -> 1.18.9b7
2022-12-15 09:40:32 -08:00
e3a963b73f
Merge pull request #1340 from vmware-tanzu/jtc/update-maintainers
...
Update maintainers
2022-12-15 09:31:14 -08:00
30818cb66d
Merge pull request #1353 from vmware-tanzu/dump_deps_dec_2022
...
Upgrade project Go dependencies
2022-12-15 09:23:16 -08:00
976035115e
Stop using pointer pkg functions that were deprecated by dependency bump
2022-12-14 08:47:16 -08:00
85b67f254c
Add more assertion to token_handler_test.go for token exchange exp claim
2022-12-14 08:47:16 -08:00
e1a0367b03
Upgrade project Go dependencies
...
Most of the changes in this commit are because of these fosite PRs
which changed behavior and/or APIs in fosite:
- https://github.com/ory/fosite/pull/667
- https://github.com/ory/fosite/pull/679 (from me!)
- https://github.com/ory/fosite/pull/675
- https://github.com/ory/fosite/pull/688
Due to the changes in fosite PR #688 , we need to bump our storage
version for anything which stores the DefaultSession struct as JSON.
2022-12-14 08:47:16 -08:00
a9aac69c65
Add https://github.com/joshuatcasey as a Maintainer. Remove Technical Lead role.
2022-12-08 11:47:06 -06:00
d88895c4a5
Prettify MAINTAINERS.md
2022-12-08 11:43:09 -06:00
d35306aa85
Merge pull request #1322 from rooso/main
...
Update example configuration for Active Directory
2022-11-09 09:35:32 -08:00
3548362ce4
Update example configuration for Active Directory
...
there was an typo in the example configuration for Microsoft Active Directory. Attribute was `userPrincipleName` but should be `userPrincipalName`
2022-10-20 14:34:12 +02:00
4951cbe5d4
Merge pull request #1306 from vmware-tanzu/ci-updates-for-external-idps
...
Update TestLDAPSearch_Parallel to notice different var for external ldap server
2022-09-29 12:35:50 -04:00
66f4ee8a1b
Update more tests to notice different var for external ldap server
2022-09-28 14:32:10 -07:00
09b9075abb
Update TestLDAPSearch_Parallel to notice different var for external ldap server
2022-09-28 16:02:56 -04:00
99c635c38d
Merge pull request #1304 from vmware-tanzu/site-footers
...
Update site footer and maintainers page
2022-09-27 16:18:18 -04:00
265c63fa54
Update site footer and maintainers page
...
Co-authored-by: Ryan Richard <richardry@vmware.com>
Co-authored-by: Benjamin A. Petersen <ben@benjaminapetersen.me>
2022-09-27 16:13:55 -04:00
2995e6a48c
Updated versions in docs for v0.20.0 release
2022-09-27 17:16:32 +00:00
563c193499
Fix integration test expectation for AKS clusters
2022-09-26 17:00:11 -07:00
0d215566d8
Yet another integration test fix for dynamic clients feature with Okta
2022-09-26 16:41:52 -07:00
23185d55a5
Another integration test fix for dynamic clients feature with Okta
...
Also increase the timeout in an integration test because it is flaking
on one of the GKE environments sometimes, probably because the
Concierge controllers aren't ready fast enough before the integration
tests start.
2022-09-26 14:43:50 -07:00
f302e71b0f
Fix some integration tests' handling of groups to work with Okta
2022-09-26 12:40:07 -07:00
110681cdb8
Fix the name of the API Service updater controller in the log messages
2022-09-26 12:37:34 -07:00
Pinny