Skip to content

v1.0.3

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 10 Oct 15:17
v1.0.3
This tag was signed with the committer’s verified signature.
nacx Ignasi Barrera
GPG key ID: 3D5414A0D959B94F
Learn about vigilant mode.
adea4ec
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Authservice 1.0.3 adds support for PKCE in the Authorization Code Grant Flow. Thanks @gdasson for your contribution! More details about PKCE can be found here:

https://oauth.net/2/pkce/
https://blog.postman.com/what-is-pkce/

It also comes with a change to not allow Client IDs to have the : character, as it breaks client authentication when calling the token endpoint. This is now properly validated and the configuration is rejected.

Detailed Changelog

  • Validate that clientId does not contain ':' by @nacx in #266
  • chore: use a better maintained and more flexible license checker tool by @nacx in #267
  • Add support for PKCE by @gdasson in #265

New Contributors

Full Changelog: v1.0.2...v1.0.3

Contributors

nacx and gdasson
Assets 6
Loading