fix(deps): update module github.com/auth0/go-jwt-middleware to v2 - autoclosed

[tradeshift-renovate]

This PR contains the following updates:

Package	Type	Update	Change
github.com/auth0/go-jwt-middleware	require	major	v1.0.2-0.20210804140707-b4090e955b98 -> v2.2.1

---

Release Notes

auth0/go-jwt-middleware (github.com/auth0/go-jwt-middleware)

v2.2.1

Compare Source

Full Changelog

Security

• Bump golang.org/x/crypto from 0.4.0 to 0.17.0 #​234 (dependabot[bot])
• Bump gopkg.in/go-jose/go-jose.v2 from 2.6.1 to 2.6.2 #​229 (dependabot[bot])

v2.2.0

Compare Source

Full Changelog

Added

• add echo example #​208 (mehulgohil)
• added example for iris web framework #​199 (mehulgohil)

Changed

• ESD-32688: Improve locking and blocking associated with key retrieval #​225 (ewanharris)
• Replace deprecated pkg/errors in favor of Go's standard library #​189 (molaga)
• Replace square/go-jose with go-jose/go-jose #​188 (sergiught)
• Fail to instantiate validator when audience is an empty string #​183 (sergiught)

v2.1.0

Compare Source

Full Changelog

Added

• Allow setting a custom http.Client on the jwks.Provider (#​151)
• Add example tests (#​157)
• Add example for the gin web framework (#​175)

Fixed

• Fix CookieTokenExtractor to not throw error when no cookie present (#​172)
• Fix panic threat when using type-cast for customClaims in validator (#​165)
• Fix authentication error when setting multiple audiences on validator (#​176)

v2.0.1

Compare Source

Full Changelog

Security

• Update Crypto dependency (#​146)

v2.0.0

Compare Source

Full Changelog

BEFORE YOU UPGRADE

• This is a major release that includes breaking changes. Please see MIGRATION_GUIDE before
  upgrading. This release will require changes to your application.

Added

• Use github.com/pkg/errors (#​98)
• Add a migration guide (#​99)
• Add cookie token extractor (#​93, #​63)
• Add token validator using square/go-jose.v2 (#​84, #​81, #​79, #​74, #​53)
• Add allowed signing algorithms in validator (#​128)
• Add issuer and audience as required params in validator (#​119)
• Add support for jwks

Changed

• Update docs (#​72)
• Reorganize imports across the project
• Reorder fields to use less memory
• Split jwtmiddleware into multiple files

Breaking

• Simplify JWT library functionality into an interface (#​77)
• Rename Claims to RegisteredClaims in validator pkg
• Refactor main middleware (#​90, #​51, #​51)
• Write back error messages on DefaultErrorHandler

Fixed

• Fix code smells and code style

v2.0.0-beta.1

Compare Source

Full Changelog

Changed

• Improved how we pass CustomClaims to Validator for concurrent scenarios (#​134)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Never, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[tradeshift-renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻️ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum

Command failed: install-tool golang 1.22.1

[wiz-inc-48d099cbad]

Wiz Scan Summary

IaC Misconfigurations
Vulnerabilities
Total
Secrets