Releases: agilezebra/jwt-middleware
Releases · agilezebra/jwt-middleware
v1.3.2
Always arbitrarily delete headers named in headerMap when receiving a no-token optional request.
Delete existing header values prior to setting to avoid multi-value behaviour.
Full Changelog: v1.3.1...v1.3.2
v1.3.1
What's Changed
- Added
$andand$orlogical operators by @agilezebra in #58
Full Changelog: v1.3.0...v1.3.1
Contributors
agilezebra
Assets 2
v1.3.0
What's Changed
- Mimic V3 traefik logging with output direct to stderr by @agilezebra in #56
- DEBUG and ERROR use the stdout and logger->stderr mechanisms which are picked up by traefik and decorated and formatted by its logger
- INFO and WARN output directly to stderr and are formatted to match the traefik logger output. This means INFO and WARN output should look a lot better in v3, with info message neither showing as ERR not hiding if debug level is not enabled. In v2 traefik the logged messages won't quite look as consistent, given the v2 logger doesn't use this format, but they will all be present and otherwise correct.
infoToStdoutoption now has no effect.
Full Changelog: v1.2.19...v1.3.0
Contributors
agilezebra
Assets 2
v1.2.19
What's Changed
- Fix issue: 54 integer precision loss when decoding jwt payload json by @agilezebra in #55
use jwt.WithJSONNumber() for JWT parsing
Full Changelog: v1.2.18...v1.2.19
Contributors
agilezebra
Assets 2
v1.2.18
What's Changed
- Allow fallback to ".well-known/jwks.json" when the openid-configurati… by @agilezebra in #52
- Support jwks fallback by @agilezebra in #53
Thanks to @markdingram-anaplan
Full Changelog: v1.2.17...v1.2.18
Contributors
agilezebra and markdingram-anaplan
Assets 2
v1.2.17
What's Changed
- allow fixed secrets with no issuers by @agilezebra in #51
Full Changelog: v1.2.16...v1.2.17
Contributors
agilezebra
Assets 2
v1.2.16
What's Changed
- use sonarqube-scan-action by @agilezebra in #50
- Remove missing headers option by @agilezebra in #49
Full Changelog: v1.2.15...v1.2.16
Contributors
agilezebra
Assets 2
v1.2.15
What's Changed
- Handle JSON types of array, object, null and boolean in claim->header by @agilezebra in #48
Full Changelog: v1.2.14...v1.2.15
Contributors
agilezebra
Assets 2
v1.2.14
What's Changed
- Bump golang.org/x/crypto from 0.31.0 to 0.35.0 by @dependabot in #46
- go version by @agilezebra in #45
Full Changelog: v1.2.13...v1.2.14
Contributors
agilezebra and dependabot
Assets 2
v1.2.13
What's Changed
- Resolves CVE-2025-30204: bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 by @dependabot in #43
Full Changelog: v1.2.12...v1.2.13
Contributors
dependabot