Overview
Request 825732 superseded
- Update to version 2.4.3
* Bugfixes
- prevent open redirect on refresh token requests
- add new OIDCRedirectURLsAllowed primitive to handle post logout
and refresh-return-to validation
addresses #453; closes #466
- when stripping cookies, add a space between cookies in the resulting header (required by RFC 6265)
- fix compilation against Apache 2.0
* Features
- add OIDCStateInputHeaders that allows configuring the header values
used to calculate the fingerprint of the state during authentication
- added OIDCValidateIssuer primitive to allow for disabling of issuer
matching, helps to support multi-tenant applications i.e. Microsoft AAD (forwarded request 825719 from stroeder)
- Created by pgajdos
- In state superseded
- Superseded by 825751
-
Open review for
licensedigger
-
Open review for
factory-staging
Request History
pgajdos created request
- Update to version 2.4.3
* Bugfixes
- prevent open redirect on refresh token requests
- add new OIDCRedirectURLsAllowed primitive to handle post logout
and refresh-return-to validation
addresses #453; closes #466
- when stripping cookies, add a space between cookies in the resulting header (required by RFC 6265)
- fix compilation against Apache 2.0
* Features
- add OIDCStateInputHeaders that allows configuring the header values
used to calculate the fingerprint of the state during authentication
- added OIDCValidateIssuer primitive to allow for disabling of issuer
matching, helps to support multi-tenant applications i.e. Microsoft AAD (forwarded request 825719 from stroeder)
factory-auto declined review
Output of check script:
apache2-mod_auth_openidc-2.4.3.tar.gz /home/go/co/825732/apache2-mod_auth_openidc/apache2-mod_auth_openidc-2.4.3.tar.gz differ: char 5, line 1
ERROR: download_files is configured to fail when the upstream file is different than the committed file... this is the case!
Source URLs are not valid. Try "osc service localrun download_files".
factory-auto declined request
Output of check script:
apache2-mod_auth_openidc-2.4.3.tar.gz /home/go/co/825732/apache2-mod_auth_openidc/apache2-mod_auth_openidc-2.4.3.tar.gz differ: char 5, line 1
ERROR: download_files is configured to fail when the upstream file is different than the committed file... this is the case!
Source URLs are not valid. Try "osc service localrun download_files".
superseded by 825751
