Skip to content

CHANGELOG.md

Latest commit

 

History

History
239 lines (110 loc) · 13.2 KB

CHANGELOG.md

File metadata and controls

239 lines (110 loc) · 13.2 KB

Changelog

2.9.0 (2026-04-16)

Features

  • add HEADER_MAPPING_BASE flag to control JWT claims source for HEADER_MAPPING (#144) (a43f4f4), closes #143

2.8.1 (2026-04-13)

Bug Fixes

  • trim userinfo to mapped fields before storing in session cookie (#141) (683d79a)
  • use /v2 module path (#139) (fb2d63e)

2.8.0 (2026-04-03)

Features

  • forward authenticated user identity to upstream via headers (#135) (e847ed5), closes #130

2.7.0 (2026-04-03)

Features

  • add unauthenticated /healthz endpoint for health checks (#131) (9803d0f)

Bug Fixes

  • prevent panic on SSE reverse proxy when backend closes connection (#128) (76d1ac5)
  • set JWT audience claim to external URL for RFC 8707 compliance (#133) (351305a), closes #129

2.6.1 (2026-03-18)

Bug Fixes

  • generate server-side OAuth state when client omits it (#126) (940e91e)

2.6.0 (2026-03-16)

Features

  • Add OIDC Attribute-Based Authorization (#120) (51b6e85)
  • support injecting cryptographic keys via env vars (#119) (ec9e857)

Bug Fixes

  • fix prettier formatting in oauth-setup.md (#124) (ef5731d)
  • normalize external URL with trailing slash per RFC 3986 (#125) (e377aa9)

2.5.4 (2026-03-03)

Bug Fixes

  • follow backend 307/308 redirects in transparent proxy (#116) (4546f40)
  • widen OAuth signature columns from VARCHAR(255) to VARCHAR(512) (#117) (68437b1), closes #111

2.5.3 (2026-01-03)

Bug Fixes

  • send MCP initialize metadata for stdio backends (#106) (16de9cd)

2.5.2 (2025-12-04)

Bug Fixes

  • docker: update base image to golang:1.22-bookworm and switch to debian:bookworm-slim (#98) (dbeabda)
  • upgrade dependencies (#100) (8c1c8fd)
  • upgrade Go version to 1.25 in workflow files (#101) (3b869e9)

2.5.1 (2025-12-04)

Bug Fixes

  • idp: replace hardcoded issuer with external URL in IDP router (#96) (a7dbccb)

2.5.0 (2025-10-22)

Features

  • tls: add support for manual TLS certificate management and auto-reloading (#90) (f888826)

2.4.0 (2025-10-22)

Features

  • repository: add SQL repository support with multiple backends (#88) (e3699bd)

2.3.0 (2025-08-28)

Features

  • auth: add no-provider-auto-select flag to disable auto-redirect (#80) (128e1cc)

2.2.0 (2025-08-25)

Features

  • support glob patterns for OIDC allowed users (#77) (fe65156)

Bug Fixes

  • replace context.Done() with Wait() in backend tests (#75) (47ed79f)

2.1.0 (2025-08-24)

Features

  • refactor backend architecture with interface pattern and trusted proxy support (#72) (9d7f9d0)

2.0.0 (2025-08-24)

⚠ BREAKING CHANGES

  • Authorization interface changed from separate GetUserID/Authorization calls to combined Authorization method

Features

  • enhance OAuth providers with organization and workspace support (#69) (239f2b2)

Bug Fixes

  • improve Docker image tagging strategy for releases (#70) (37bbe8c)

1.3.2 (2025-08-21)

Bug Fixes

  • resolve configuration merge conflicts and update documentation (#58) (76791f8)

1.3.1 (2025-08-21)

Miscellaneous Chores

1.3.0 (2025-08-20)

Features

  • add OIDC provider support (#40) (f8edabe)
  • improve error handling with custom error template (#47) (2ff3804)
  • improve session security with HttpOnly and MaxAge options (#46) (9038812)

Bug Fixes

  • improve authentication flow and session handling (#45) (cd28916)
  • remove oauth2.AccessTypeOffline from AuthCodeURL calls (#41) (a2d0d88)

1.2.3 (2025-08-19)

Bug Fixes

  • improve KVS repository error handling (#36) (126ff82)
  • improve KVS update method error handling (#37) (92eb5d4)

1.2.2 (2025-08-18)

Bug Fixes

  • implement OAuth CSRF protection with state validation (#30) (e1030ba)

1.2.1 (2025-08-18)

Bug Fixes

  • improve proxy header handling and remove existing Authorization header (#25) (409b10e)

1.2.0 (2025-08-18)

Features

  • add automatic TLS host detection and improve server lifecycle management (#21) (dc3c058)
  • add support for stdio MCP servers (#19) (b159d26)

Bug Fixes

  • handle stderr properly in stdio MCP server execution (#23) (f972958)
  • improve backend lifecycle management and error handling (#24) (4b5e828)

1.1.1 (2025-08-17)

Bug Fixes

  • simplify proxy header handling logic (#15) (cae3de3)

1.1.0 (2025-08-17)

Features

  • add PROXY_BEARER_TOKEN and PROXY_HEADERS options (#13) (abbbcf6)

1.0.0 (2025-08-17)

⚠ BREAKING CHANGES

  • GLOBAL_SECRET environment variable and --global-secret flag are no longer supported. Secrets are now automatically generated and persisted.

Features

  • replace global secret parameter with auto-generated secret (#6) (05ccbb2)

Bug Fixes

  • update release workflow permissions (#8) (2be8e5f)