Skip to content

Version 2.1.0

Latest
Latest
Compare
Choose a tag to compare
@abompard abompard released this 09 Oct 10:12
· 17 commits to develop since this release
2.1.0
This tag was signed with the committer’s verified signature.
abompard Aurélien Bompard
GPG key ID: 31584CFEB9BF64AD
Learn about vigilant mode.
1bed41f
This commit was signed with the committer’s verified signature.
abompard Aurélien Bompard
GPG key ID: 31584CFEB9BF64AD
Learn about vigilant mode.

Fixed

  • Handle token expiration when there is no refresh_token or no token URL (#39)

Changed

  • Restore the OVERWRITE_REDIRECT_URI configuration option as OIDC_OVERWRITE_REDIRECT_URI.
  • The redirect_uri that is generated and sent to the ID provider is no longer forced to HTTPS, because the the OIDC spec is actually only a strong recommendation (#35). You can use OIDC_OVERWRITE_REDIRECT_URI if you want to force it to HTTPS (or any other URL).
Assets 2