1.5.3

Full Changelog

This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices.
Please review the README note for additional details.

Security

• Update auth0 dependencies #80 (jimmyjames)

1.5.2

Full Changelog

Changed

• Update Gradle and configure ship CLI and orb #73 (jimmyjames)

Security

• Update dependencies to address CVE-2022-42003 #74 (jimmyjames)

1.5.1

1.5.1 (2022-03-30)

Full Changelog

Security

• Bump transitive jackson dependencies in auth0 libraries #68 (poovamraj)

1.5.0

Full Changelog

Changed

• Update auth0 dependencies to address CVE-2020-36518 #66 (jimmyjames)

Security

• Update auth0 dependencies to address CVE-2020-36518 #66 (jimmyjames)

1.4.2

Full Changelog

Changed

• Update gradle and publishing plugin #64 (poovamraj)

Security

• Update java jwt and jwks #62 (poovamraj)

1.4.1

Full Changelog

Changed

• Update dependencies #57 (jimmyjames)

1.4.0

Full Changelog](1.3.1...1.4.0)

Added

• Add WWW-Authenticate header for 401 and 403 requests #51 (jimmyjames)
• Deal with list of issuers in JwtAuthenticationProvider #30 (coperator)

1.3.1

1.3.1 (2020-04-24)

Full Changelog

Fixed

• Expose public API dependencies as api scope and update versions #45 (jimmyjames)

1.3.0

Full Changelog

Added

• Extract authorities from permissions claim #40 (jimmyjames)

1.2.6

Full Changelog

Security

• Update dependencies to address CVE #37 (jimmyjames)