Releases: tinyauthapp/tinyauth
v2.1.1
Tinyauth v2.1.1
Hello everyone, this is a small unexpected patch fix for an issue in the new access controls. The issue was discovered by @erwinkramer in #28. I also fixed an issue were the internal server error page would redirect to the internal URL instead of the app URL.
Changelog
Fixes
- Check if docker daemon is available before trying to check for container labels
- Redirect to the app URL for the internal server error page
If you face any issues or discover any bugs, feel free to open an issue so I can fix them as soon as possible. Have fun :)
Contributors
Assets 2
v2.1.1-beta.1
chore: bump version
v2.1.0
Tinyauth v2.1.0
Hello everyone! This is Tinyauth v2.1.0 bringing basic access controls! You can now control the authorized OAuth and simple auth users by adding the tinyauth.users (comma separated list of allowed usernames) and tinyauth.oauth.whitelist (comma separated list of allowed OAuth emails) labels to every app protected by Tinyauth. If no users are set everyone is allowed, if a user tries to access a resource they are not allowed to, they will be redirected to an unauthorized page. I also added support for Tailscale OAuth so you can use it to login to your apps. The documentation will be updated as soon as possible with guides for the new features.
Full changelog
New features
- Tailscale OAuth provider
- Access controls for protected apps
Fixes
- Omit the domain port from the cookie domain
- Fix generic OAuth config not getting parsed correctly
- Fix how OAuth providers are displayed
If you face any issues or discover any bugs, feel free to open an issue so I can fix them as soon as possible. Have fun :)
v2.1.0-alpha.2
feat: strip go executable for smaller size
v2.1.0-alpha.1
chore: bump version
v2.0.2
Tinyauth v2.0.2
Hello everyone, this is a small patch in tinyauth fixing issues #18, #19 and #21.
Full changelog
Below is the full changelog:
Improvements
- Handle cross protocol redirection correctly alongside with a verification screen
- The continue screen has a go home button when no redirect URI is provided
- The logger will now not print any sensitive information apart from the email address
Fixes
- Split domain correctly to take account a custom port
- Fix the logger printing debug information without a log level set
If you find any bugs please let me know so I can fix them as soon as possible.
v2.0.2-beta.2
fix: omit port from cookie domain configuration
v2.0.2-beta.1
chore: bump version
v2.0.1
Tinyauth v2.0.1
Hello everyone, this is a small patch fix that fixes a small error in the user parsing when only the file is used.
Full changelog
Below you can find the full changelog:
Fixes
- Do not add comma when the environment variable is empty.
- Trim spaces from users in user file.
v2.0.0
Tinyauth v2.0.0
Warning
This is a breaking release, please check the migration steps below.
Hello everyone, this is an unexpected breaking release and that's because of a typo I made in the environment variables. The major change is that the WHITELIST environment variable is now OAUTH_WHITELIST. I also decided to change the email/password back to username/password because there was no reason to keep an email. The security has also been upgraded since now the OAuth token is not stored on the client anymore.
Migration guide
To migrate you can just change the WHITELIST environment variable to OAUTH_WHITELIST and everything will work correctly. You can also change all your emails back to usernames if you prefer username/password but tinyauth won't stop you from using an email as a username.
Full changelog
Here is the full changelog:
New features
- New
SECRETS_FILE(--secrets-file) environment variable allowing you to use a file to store the app secret. - New
GITHUB_CLIENT_SECRET_FILE(--github-client-secret-file) environment variable allowing you to use a file to store the secret. - New
GOOGLE_CLIENT_SECRET_FILE(--google-client-secret-file) environment variable allowing you to use a file to store the secret. - New
GENERIC_CLIENT_SECRERT_FILE(--generic-client-secret-file) environment variable allowing you to use a file to store the secret. - New
LOG_LEVEL(--log-level) environment variable allowing you to use debug log level for verbose logging.
Improvements
- OAuth token is only used to obtain the user email address and it is not stored on the client.
- Login screen allows you to use non-email values.
- Cookie logic has been rewritten to use the cookie store correctly.
- Debug logs have been added everywhere in the app to make debugging easy.
- Users are not a requirement when using OAuth.
- User parsing has been rewritten.
Fixes
- Fix the
WHITELISTenvironment variable not matching with the--oauth-whitelistflag.
If you come across any bugs or issues please let me know so I can fix them as soon as possible.