Skip to content

@zandbelt zandbelt released this Jan 22, 2019 · 58 commits to master since this release


  • fix XSS vulnerability CSNC-2019-001 wrt. poll parameter in OIDC Session Management RP iframe; thanks Mischa Bachmann

This release was made possible thanks to sustaining sponsor GLUU.

Please consider sponsoring maintenance and development of mod_auth_openidc via Patreon.


  • the libcjose >= 0.5.1 binaries that this module depends on are available from the release 2.3.0 "Assets" section
  • Ubuntu Xenial packages can also be used on Ubuntu Yakkety, Zesty and Artful; the Debian Wheezy package can be used on Ubuntu Precise
  • packages for various other platforms such as Redhat Enterprise Linux 6, SUSE LInux Enterprise Server, IBM HTTP Server 8.5.5 and Microsoft Windows 64bit are available under a commercial agreement via
Assets 7
You can’t perform that action at this time.