Skip to content

Releases: panva/node-oidc-provider

v9.7.0

06 Mar 22:44
@github-actions github-actions
Immutable release. Only release title and notes can be modified.
v9.7.0
a355655
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.7.0 Latest
Latest

Features

  • add configuration for limiting external resource body limits (0c424cd)
  • experimental support for Client ID Metadata Document (CIMD) (d5323f4)
  • prevent fetching special-use IP address resources (1548834)

Documentation

  • align section titles and auto-generate toc (287bfa8)
  • description fixes and various editorial edits (a8f4f15)
  • fix attestClientAuth link (9c6f095)
  • solve generated nested lists (d1ebcd2)
  • update README.md prose for experimental features (b029f47)
  • update the generated content to reflect the jsdoc structure (aa9f83b)

Refactor

  • extract setWWWAuthenticateHeader to a shared module (bb66e62)
Assets 3
Loading
0 Join discussion

v9.6.1

19 Feb 08:01
@github-actions github-actions
Immutable release. Only release title and notes can be modified.
v9.6.1
d329eba
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.6.1

Refactor

  • extract NON_REJECTABLE_CLAIMS into shared constant (2b7c025)
  • extract shared grant handler helpers to reduce duplication (f5eee9e)
  • extract shared token finder for introspection and revocation (666c2b0)

Fixes

  • required PAR should not affect CIBA and DAG (8167bd0)
Loading
0 Join discussion

v9.6.0

07 Dec 19:27
@github-actions github-actions
Immutable release. Only release title and notes can be modified.
v9.6.0
5380f49
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.6.0

Features

Documentation

Loading
0 Join discussion

v9.5.2

24 Oct 08:28
@github-actions github-actions
v9.5.2
890b722
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.5.2

Refactor

Loading
0 Join discussion

v9.5.1

29 Aug 19:50
@github-actions github-actions
v9.5.1
642faf1
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.5.1

Fixes

  • safeguard global navigator access (1caae21)
Loading
0 Join discussion

v9.5.0

29 Aug 11:14
@github-actions github-actions
v9.5.0
3bb139e
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.5.0

Features

  • support ML-DSA JWS algorithm identifiers (f308b09)

Refactor

  • add a warning for more unsupported runtimes (c55d58e)
  • make warn/info warnings colorization a no-op in nonTTY (0c0a5b6)
Loading
0 Join discussion

v9.4.2

23 Aug 08:06
@github-actions github-actions
v9.4.2
653e42b
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.4.2

Fixes

  • check for native logout redirect allowed same way as during auth (419f286), closes #1351
Loading
0 Join discussion

v9.4.1

11 Aug 07:20
@github-actions github-actions
v9.4.1
362a724
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.4.1

Documentation

  • add an getAttestationSignaturePublicKey example (3a7730c)

Refactor

  • avoid code generation from strings by pre-compiling eta views (f997073)
  • drop the default implementation of pairwiseIdentifier (6a2338a)
  • remove oidc-token-hash dependency (b607491)
Loading
0 Join discussion

v9.4.0

17 Jul 20:37
@github-actions github-actions
v9.4.0
e310d4a
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.4.0

Features

  • Experimental support for Attestation-Based Client Authentication (d655ebd)

Refactor

  • consistently lowercase header names and use req/res aliases (1748a54)
  • cors: update default client-based cors helper (77e06eb)
  • reconcile dpop and attestation challenge implementations (e31f639)

Documentation

  • updated documentation for configuration options (5710d61)
Loading
0 Join discussion

v9.3.0

16 Jul 10:53
@github-actions github-actions
v9.3.0
8ec58b2
This commit was signed with the committer’s verified signature.
panva Filip Skokan
SSH Key Fingerprint: 6MlzZGZfuo3Q2uHohmeYGPFrmF20CeYC7G824Trr9o4
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v9.3.0

Features

  • revocation: add an allowed token revocation policy helper (a7e47e4)

Documentation

Fixes

  • introspection: use unsupported_token_type to indicate structured jwt tokens cannot be introspected (c9001be)
  • revocation: use unsupported_token_type to indicate structured jwt tokens cannot be revoked (b45b00c)

Refactor

  • pull structured token rejection to a shared middleware (30367af)
Loading
0 Join discussion