Skip to content

v0.38.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 20 May 03:14
· 48 commits to main since this release
v0.38.0
6af8b29
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

New: OAuth Password Grant

The oauth_token transform now supports the RFC 6749 4.3 resource-owner password grant. Configure grant: password with username, password, and client_id (plus optional client_secret). Caching, single-flight, and token refresh on expiry behave the same as the other grant types.

- name: oauth_token
  config:
    tokens:
      - grant: password
        username:       {type: env, var: API_USERNAME}
        password:       {type: env, var: API_PASSWORD}
        client_id:      {type: env, var: API_CLIENT_ID}
        client_secret:  {type: env, var: API_CLIENT_SECRET}
        token_endpoint: "https://api.example.com/token"
        rules:
          - host: "api.example.com"

New: Token Endpoint Headers

A new token_endpoint_headers map on any oauth_token grant sends extra headers on the token POST itself. Each value is a discrete secret source. Use this when the token endpoint requires an API key or other credential alongside the standard form-body client auth.

token_endpoint_headers:
  x-api-key: {type: env, var: API_KEY}

Changelog

  • 63f1d2e feat(oauth): add password grant and token_endpoint_headers (#131)
  • 6af8b29 refactor(oauth): fingerprint secret sources with BLAKE3 (#132)
Assets 8
Loading