Bump github.com/openziti/sdk-golang from 0.22.28 to 0.23.1

[dependabot]

Bumps github.com/openziti/sdk-golang from 0.22.28 to 0.23.1.

Changelog

Sourced from github.com/openziti/sdk-golang's changelog.

Release 0.23.0

What's New

• ApiSession interface abstraction for HA support

ApiSession Interface

With the introduction of High Availability (HA) support, ApiSessions as a struct in zitContext.Events() callbacks is no longer supported. A new ApiSession interface is provided in its place. This affects the following Events() functions:

• AddAuthenticationStatePartialListener
• AddAuthenticationStateFullListener
• AddAuthenticationStateUnauthenticatedListener

This change is meant to alleviate issues between ApiSession fidelity between legacy and HA modes. However, it is possible that information that was available with the struct version of ApiSession that is no longer available via the interface value. As a short term work around, type casting the ApiSession interface to ApiSessionLegacy is suggested. However, please provide feedback on scenarios where this is being done. It may be possible to enhance the interface version if the data is available in both HA OIDC tokens and legacy ApiSession details.

The ApiSession interface supports the following functions:

• GetAccessHeader() (string, string) - returns the HTTP header name and value that should be used to represent this ApiSession
• AuthenticateRequest(request runtime.ClientRequest, _ strfmt.Registry) error - AuthenticateRequest fulfills the interface defined by OpenAPI libraries to authenticate client HTTP requests
• GetToken() []byte - returns the ApiSessions' token bytes
• GetExpiresAt() *time.Time - returns the time when the ApiSession will expire.
• GetAuthQueries() rest_model.AuthQueryList - returns a list of authentication queries the ApiSession is subjected to
• GetIdentityName() string - returns the name of the authenticating identity
• GetIdentityId() string - returns the id of the authenticating identity
• GetId() string - returns the id of the ApiSession

Release 0.22.29

• Improve session refresh behavior.

Changes to API session refresh

• Limit refreshes of both api and sessions to at most every 30 seconds.
• Base faster refreshes not on number of available ERs but on usable ER endpoints, since some ERs may not have usable endpoints
• Only refresh API sessions if session is no longer valid, as opposed if an api session refresh fails, which can happen if the controller is down or busy.
• Only allow one api session refresh at a time
• Use exponential backoff for api session refresh retries

Release 0.22.12

• Deprecate ListenOptions.MaxConnections in favor of ListenOptions.MaxTerminators

Release 0.22.0

• Add SessionRefreshInterval to DialOptions, with a default of 1 hour.

... (truncated)

Commits

• e067e2b Release v0.23.1
• e54cbba Updating dependency github.com/openziti/[email protected]
• 09f0ee6 Merge pull request #500 from openziti/api.session.abstraction
• 59aed8e Merge branch 'main' into api.session.abstraction
• 8a50a3f Updating dependency github.com/openziti/[email protected]
• 344f696 Merge pull request #502 from openziti/session-mgmt
• aa17b70 Update changelog
• 3624392 Improve session management when hosting services. Fixes #501
• 80c40d7 converts ApiSession external representations to an interface
• 903a96f Merge pull request #484 from openziti/fix.ha.ext.jwt.auth
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #1806.