Skip to content

release 2.4.16.4
Compare
Choose a tag to compare
@zandbelt zandbelt released this 29 Sep 06:18
· 4 commits to master since this release
v2.4.16.4
38bbedf

Bugfixes

  • add the missing copy of the "x5t" claim in oidc_jwk_copy, which broke private_key_jwt authentication to Microsoft Entra ID / Azure AD since 2.4.13; see #1269; thanks @uoe-pjackson
  • fix accepting custom cookie names in OIDCOAuthAcceptTokenAs cookie:<name>; regression in 2.4.16.1...2.4.16.3; see #1261; thanks @bbartke

Other

  • change warnings about not passing unknown claim types into debug messages; see #1263; thanks @nclarkau
  • use compact encoding and preserve claim order where appropriate for most cases of JSON/JWT serialization
  • improve basic authentication parsing when using OIDCOAuthAcceptTokenAs basic

Commercial

  • binary packages for various other platforms such as Microsoft Windows 64bit/32bit, Red Hat Enterprise Linux 6/7, older Ubuntu and Debian distro's, SUSE Linux, Amazon Linux, Oracle HTTP Server 11.1/12.1/12.2, IBM HTTP Server 8/9, and IBM AIX 7.x are available under a commercial agreement via sales@openidc.com
  • support for Redis/Valkey over TLS, Redis/Valkey (TLS) Sentinel, and Redis/Valkey (TLS) Cluster is available under a commercial license via sales@openidc.com

Contributors

bbartke, nclarkau, and uoe-pjackson
Assets 10
Loading