From 6545a33f938dc5a881abc1a44dc2c1a1d004874d Mon Sep 17 00:00:00 2001
From: Joel Speed <Joel.speed@hotmail.co.uk>
Date: Fri, 12 Apr 2019 10:27:42 +0100
Subject: [PATCH] Update changelog for release v3.2.0

---
 CHANGELOG.md | 17 +++++++++++++++++
 README.md    |  4 ++--
 2 files changed, 19 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 3efe7dda..336d07fc 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,22 @@
 # Vx.x.x (Pre-release)
 
+## Changes since v3.2.0
+
+# v3.2.0
+
+## Release highlights
+- Internal restructure of session state storage to use JSON rather than proprietary scheme
+- Added health check options for running on GCP behind a load balancer
+- Improved support for protecting websockets
+- Added provider for login.gov
+- Allow manual configuration of OIDC providers
+
+## Important notes
+- Dockerfile user is now non-root, this may break your existing deployment
+- In the OIDC provider, when no email is returned, the ID Token subject will be used
+instead of returning an error
+- GitHub user emails must now be primary and verified before authenticating
+
 ## Changes since v3.1.0
 
 - [#96](https://github.com/bitly/oauth2_proxy/pull/96) Check if email is verified on GitHub (@caarlos0)
diff --git a/README.md b/README.md
index 43c8a934..c313770a 100644
--- a/README.md
+++ b/README.md
@@ -19,7 +19,7 @@ A list of changes can be seen in the [CHANGELOG](CHANGELOG.md).
 
 1.  Choose how to deploy:
 
-    a. Download [Prebuilt Binary](https://github.com/pusher/oauth2_proxy/releases) (current release is `v3.1.0`)
+    a. Download [Prebuilt Binary](https://github.com/pusher/oauth2_proxy/releases) (current release is `v3.2.0`)
 
     b. Build with `$ go get github.com/pusher/oauth2_proxy` which will put the binary in `$GOROOT/bin`
 
@@ -29,7 +29,7 @@ Prebuilt binaries can be validated by extracting the file and verifying it again
 
 ```
 sha256sum -c sha256sum.txt 2>&1 | grep OK
-oauth2_proxy-3.1.0.linux-amd64: OK
+oauth2_proxy-3.2.0.linux-amd64: OK
 ```
 
 2.  Select a Provider and Register an OAuth Application with a Provider