Skip to content

Orionis v0.2.0

Choose a tag to compare

@stremovskyy stremovskyy released this 04 Jul 12:37
f3f9a57

Highlights

  • Added JSON key rotation for cmd/orionis-auth with keys and active_kid while preserving legacy single-key config.
  • Added /readyz beside /healthz for readiness checks.
  • Added endpoint-specific rate limiting and structured audit logs for /oauth/token and /readyz.
  • Kept cmd/orionis-auth thin by moving runtime/config/security wiring into internal auth runtime code.
  • Added release image smoke testing that validates /healthz, /readyz, JWKS rotation, token issuance, and active JWT kid.

Docker and Deploy

  • Docker Hub and GHCR release images are pinned to 0.2.0 in docs and ECS examples.
  • ECS config and task definition now support active and previous signing-key PEM secrets for rotation.
  • CI and Docker publish workflows build and smoke-test the auth image before publish.

Verification

  • go test -count=1 ./...
  • go test -race -count=1 ./...
  • go vet ./...
  • staticcheck ./...
  • govulncheck ./...
  • JSON and Docker Compose config validation
  • scripts/smoke-release-image.sh stremovskyy/orionis:ci