support docker registry 2.8.x version which not support auto redirect…

… path (#397)

Security issue: resolve GHSA-2c7c-3mj9-8fqh (#381)

An attacker specifying a large "p2c" value can cause
JSONWebEncryption.Decrypt and JSONWebEncryption.DecryptMulti to
consume large amounts of CPU, causing a DoS.

Update package github.com/coreos/go-oidc to version that requires
fixed version of go-jose. Note that github.com/square/go-jose is
deprecated and has been replaced by github.com/go-jose/go-jose

commands run:
- go get -u github.com/coreos/go-oidc/[email protected]
- go mod tidy -go=1.16

see:
- GHSA-2c7c-3mj9-8fqh
- coreos/go-oidc#399
- https://github.com/square/go-jose
- https://github.com/go-jose/go-jose

Co-authored-by: Michael Cook <[email protected]>

test with golang 1.20.x

allow LDAP mapping values to be lowercased (#348)

Add the ability to lowercase values when creating label mappings from
LDAP attributes. In the example the groups that the user is a member of
could be mixed case which would make an ACL like:
  match: { account: "/.+/", name: "${labels:groups}/*" }
Not possible. But with this change and the example applied it would be
possible.

Support Unix Domain Sockets (#328)

bugfix: Added sign-in link under gitlab page template (#323)

Co-authored-by: Aleksei Apaseev <[email protected]>

fix build

fix: segmentation fault on arm64 image (#311)

Resolves #310

build on git tag

Existing secret support for helm chart (#267)

* Enable use of existsing secret for server key/cert

* type fix

* Bump chart version

* defaults for crt/key, conditional changed, Readme fixed