2
- add libssl-dev to Debian control build dependencies
6
- apply html encoding to error display
7
- bump version number to 1.6.0rc4
10
- avoid crash when downloading metadata from OIDCProviderMetadataURL fails
11
- set OIDCProviderMetadataURL retrieval interval to 24 hours
12
- return error on configurations mixing OIDCProviderMetadataURL and OIDCMetadataDir
13
- bump version number to 1.6.0rc3
16
- support provider configuration from a metadata URL (OIDCProviderMetadataURL)
17
- bump version number to 1.6.0rc2
20
- be less strict about issuer validation in metadata
22
- improve logging about userinfo endpoint
25
- refactor cache so it is partitioned in to sections (i.e. avoid future key collisions)
28
- add support for "x5c" JWK representation
29
- return JWKS on jwks_uri with content-type "application/json"
32
- remove support for the X-Frame-Options as it is not needed in 302s
33
- create and use log macros that printout function name
36
- support for passing runtime determined authentication request parameters in the discovery response
37
- include name/version in logs and bump to 1.6.0rc1
38
- don't use the X-Frame-Options by default
41
- add support for the X-Frame-Options header as recommended by the spec
44
- set expiry on state cookies; don't clear session cookie after cache miss or corruption
45
- fix JSON array memory leak in oauth.c
48
- merge #34 (g10f), fix session management Javascript bug
51
- improve error handling on hitting the redirect URI directly
52
- fix set_slot functions for algorithm/url used as default for dynamic registration
53
- rewording of auth_openidc.conf docs on JWK settings
56
- add session management based on http://openid.net/specs/openid-connect-session-1_0.html (draft 21)
59
- add configuration option to POST extra parameters to the token endpoint
2
62
- correct cookie_path comparison