2021-11-09 10:53:55 +00:00
|
|
|
# [3.2.0](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/compare/v3.1.0...v3.2.0) (2021-11-09)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
### Features
|
|
|
|
|
|
|
|
|
|
* 🎸 Adderd e-INFRA CZ template ([5eb50f6](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/commit/5eb50f64414db6a42cff76003c5b41f4e8e03535))
|
|
|
|
|
|
2021-11-08 06:57:26 +00:00
|
|
|
# [3.1.0](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/compare/v3.0.1...v3.1.0) (2021-11-08)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
### Features
|
|
|
|
|
|
|
|
|
|
* 🎸 Sign refresh tokens ([23a6354](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/commit/23a6354fc708bd89301bf2cac0619bbebb431f4f))
|
|
|
|
|
|
2021-11-05 10:40:38 +00:00
|
|
|
## [3.0.1](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/compare/v3.0.0...v3.0.1) (2021-11-05)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
### Bug Fixes
|
|
|
|
|
|
|
|
|
|
* 🐛 fix loading JWKS ([371adc1](https://github.com/CESNET/OpenID-Connect-Java-Spring-Server/commit/371adc13fbff6150a32fcd8b5242ef03899c758b))
|
|
|
|
|
|
2017-05-09 18:54:47 +00:00
|
|
|
Unreleased:
|
2019-04-19 20:00:06 +00:00
|
|
|
|
|
|
|
|
*1.3.3*:
|
2018-05-03 18:52:49 +00:00
|
|
|
- Authorization codes are now longer
|
|
|
|
|
- Client/RS can parse the "sub" and "user_id" claims in introspection response
|
|
|
|
|
- Database-direct queries for fetching tokens by user (optimization)
|
|
|
|
|
- Device flow supports verification_uri_complete (must be turned on)
|
|
|
|
|
- Long scopes display properly and are still checkable
|
|
|
|
|
- Language system remebers when it can't find a file and stops throwing so many errors
|
|
|
|
|
- Index added for refresh tokens
|
2019-04-19 20:00:06 +00:00
|
|
|
- Updated to Spring Security 4.2.11
|
|
|
|
|
- Updated Spring to 4.3.22
|
|
|
|
|
- Change approve pages to use issuer instead of page context
|
|
|
|
|
- Updated oracle database scripts
|
2018-02-07 14:09:07 +00:00
|
|
|
|
2019-04-19 20:00:06 +00:00
|
|
|
*1.3.2*:
|
2018-02-07 14:03:09 +00:00
|
|
|
- Added changelog
|
|
|
|
|
- Set default redirect URI resolver strict matching to true
|
|
|
|
|
- Fixed XSS vulnerability on redirect URI display on approval page
|
|
|
|
|
- Removed MITRE from copyright
|
|
|
|
|
- Disallow unsigned JWTs on client authentication
|
|
|
|
|
- Upgraded Nimbus revision
|
|
|
|
|
- Added French translation
|
|
|
|
|
- Added hooks for custom JWT claims
|
2018-02-07 14:05:43 +00:00
|
|
|
- Removed "Not Yet Implemented" tag from post-logout redirect URI
|
2017-05-09 18:54:47 +00:00
|
|
|
|
|
|
|
|
*1.3.1*:
|
2018-02-07 14:03:09 +00:00
|
|
|
- Added End Session endpoint
|
|
|
|
|
- Fixed discovery endpoint
|
|
|
|
|
- Downgrade MySQL connector dependency version from developer preview to GA release
|
2017-05-09 18:54:47 +00:00
|
|
|
|
|
|
|
|
*1.3.0*:
|
2018-02-07 14:03:09 +00:00
|
|
|
- Added device flow support
|
|
|
|
|
- Added PKCE support
|
|
|
|
|
- Modularized UI to allow better overlay and extensions
|
|
|
|
|
- Modularized data import/export API
|
|
|
|
|
- Added software statements to dynamic client registration
|
|
|
|
|
- Added assertion processing framework
|
|
|
|
|
- Removed ID tokens from storage
|
|
|
|
|
- Removed structured scopes
|
2017-05-09 18:54:47 +00:00
|
|
|
|
|
|
|
|
*1.2.6*:
|
2018-02-07 14:03:09 +00:00
|
|
|
- Added strict HEART compliance mode
|
