v4.0.0.4: Critical Security Fix for SAML
·
18 commits
to main
since this release
There is a critical security fix for SAML. Please update as soon as possible. Thanks to N.P. for finding the issue.
Additional bugfixes are also included.
What's Changed
- Add Pocket ID config steps by @mhlas7 in 9p4/jellyfin-plugin-sso#312
- fix: invalidate state immediately after auth by @jon4hz in 9p4/jellyfin-plugin-sso#343
- Add kanidm config steps by @Joker9944 in 9p4/jellyfin-plugin-sso#347
- Update README dead link, add warning for permission overwritten by @ForsakenRei in 9p4/jellyfin-plugin-sso#318
- Bugfix: Prevent KeyNotFoundExceptions in OidPost by @mandos21 in 9p4/jellyfin-plugin-sso#349
New Contributors
- @mhlas7 made their first contribution in 9p4/jellyfin-plugin-sso#312
- @jon4hz made their first contribution in 9p4/jellyfin-plugin-sso#343
- @Joker9944 made their first contribution in 9p4/jellyfin-plugin-sso#347
- @ForsakenRei made their first contribution in 9p4/jellyfin-plugin-sso#318
- @mandos21 made their first contribution in 9p4/jellyfin-plugin-sso#349
Full Changelog: 9p4/jellyfin-plugin-sso@v4.0.0.3...v4.0.0.4
Contributors
mhlas7, Joker9944, and 3 other contributors