All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
- SetLogger Bug: Shared logger among requests creates repeating logging context #159
- Enable & Fix Linter #149
- Remove go-kit/kit/log & go-kit/log #148
- Move to zap logger #103
- Security patch, remove debug logged token
- SetLogger Bug: Shared logger among requests creates repeating logging context #159
- CVE-2022-32149 (High) detected in golang.org/x/text-v0.3.7 #153
- Refactored basculehttp to use Clortho instead of key package 135
- Update dependencies. 131
- Update dependencies. 130
- Update CI system. 129
- Add new middleware for specifying the logger. 126
- Added fields to SetLoggerLogger func and bumped cast, viper, arrange, and zap packages. 122
- Removed "github.com/pkg/errors" dependency for "errors". #116
- Update setLogger Authorization header filtering logic. #111
- Switched to github.com/golang-jwt/jwt to address a security vulnerability. #112
- Fix goconst linting warning #113
- fixed Authorization keys in the constructor to be case sensitive. #74
- Removed unused check. #79
- Removed Logger interface in favor of the go-kit one. #79
- Moved log.go to basculehttp and simplified code, with nothing exported. #79
- Added constructor option for letting users decide what gets written on the HTTP response on errors. #84
- Added metric listener for auth validation outcome. #81
- Moved checks to their own package and added capability checks. #85
- Removed emperror package dependency. #94
- Converted basculechecks to use touchstone metrics. #95
- Added method label to metric validator. #96
- Update errors to include reason used by metric validator. #97
- Made Capability Key configurable for CapabilitiesValidator and CapabilitiesMap. #98
- Updated MetricValidator with a New function and options. #99
- Removed Partner from ParsedValues. #99
- Fixed ProvideMetricValidator() so it works. #100
- Updated error response reason's string representation to be snake case. #102
- Updated objects created with options to ignore nils. #104
- Added Provide() functions in basculehttp and basculechecks for easier setup. #104
- added helper function for building basic auth map #59
- fixed references to the main branch #61
- fixed attributes to be case sensitive and simplified the Attributes interface #64
- fixed data race in RemoteBearerTokenAcquirer #55
- Add support for key paths in token attribute getters #52
- Modified URL in context to be a *url.URL #47
- Added a ParseURL function into the basculehttp constructor #47
- Added automated release using travis #49
- Prune use of unnecessary custom time.Duration
- Fixed panic in jws parser
- Fixed ClaimsWithLeeway to be unmarshaled into correctly
- Updated basculehttp logs to provide more information
- Refactored acquirer code to be more flexible/extendable
- Gave examples their own go.mod files so the library doesn't have unnecessary dependencies.
- Fix travis yaml
- Added delimiter option for constructor
- Added Auth for outgoing requests
- Added jwt Validator
- Removed SermoDigital dependency
- Added documentation and examples
- Moved all packages up one folder
- Added Error Response Reason
- Removed tip builds from travis
- Added unit tests
- Added more descriptive errors
- Changed StatusUnauthorized to StatusForbidden
- Fixed Errors
Error()function
- Updated Errors
Error()function - Added request URL and method to context
- Removed request from logging statements
- Added checks
- Added configurable behavior on a key not found in
enforcer - Fixed error message in a check
- Added logging to
constructorandenforcer
- Changed a check to be more generic
- Fixed byte-ifying the value for Bearer parsing
- Initial creation
- Added constructor, enforcer, and listener alice decorators
- Basic code and structure established