SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for python311-Authlib-1.3.2-lp155.33.1.noarch.rpm :

* Sat Sep 28 2024 Dirk Müller - update to 1.3.2:
* Prevent ever-growing session size for OAuth clients.
* Revert quote client id and secret.
* unquote basic auth header for authorization server.
* Mon Jun 10 2024 Daniel Garcia - Update to 1.3.1 (CVE-2024-37568, bsc#1226138):
* Prevent OctKey to import ssh and PEM strings.
* Tue Jan 23 2024 Antonio Larrosa - Remove the file containing a Commercial license otherwise licensedigger rejects the dual-licensed package. See https://docs.authlib.org/en/latest/community/licenses.html .
* Mon Jan 08 2024 Dirk Müller - update to 1.3.0:
* Restore AuthorizationServer.create_authorization_response behavior, via :PR:`558`
* Include leeway in validate_iat() for JWT, via :PR:`565`
* Fix encode_client_secret_basic, via :PR:`594`
* Use single key in JWK if JWS does not specify kid, via :PR:`596`
* Fix error when RFC9068 JWS has no scope field, via :PR:`598`
* Get werkzeug version using importlib, via :PR:`591`
* New features:
* RFC9068 implementation, via :PR:`586`, by AATTazmeuk.
* Breaking changes:
* End support for python 3.7
* Sun Jun 25 2023 Dirk Müller - update to 1.2.1:
* Apply headers in ``ClientSecretJWT.sign`` method
* Allow falsy but non-None grant uri params
* Fixed ``authorize_redirect`` for Starlette v0.26.0
* Removed ``has_client_secret`` method and documentation
* Removed ``request_invalid`` and ``token_revoked`` remaining occurences and documentation.
* Fixed RFC7591 ``grant_types`` and ``response_types`` default values
* Sun Jun 11 2023 ecsos - Add %{?sle15_python_module_pythons}
* Tue Dec 13 2022 Yogalakshmi Arunachalam - Update to version 1.2.0
* Not passing request.body to ResourceProtector, #485.
* Use flask.g instead of _app_ctx_stack, #482.
* Add headers parameter back to ClientSecretJWT, #457.
* Always passing realm parameter in OAuth 1 clients, #339.
* Implemented RFC7592 Dynamic Client Registration Management Protocol, #505`
* Add default_timeout for requests OAuth2Session and AssertionSession.
* Deprecate jwk.loads and jwk.dumps
* Tue Oct 11 2022 Yogalakshmi Arunachalam - Update to Version 1.1.0
* This release contains breaking changes and security fixes.
* Allow to pass claims_options to Framework OpenID Connect clients, via PR#446.
* Fix .stream with context for HTTPX OAuth clients, via PR#465.
* Fix Starlette OAuth client for cache store, via PR#478.
* Thu Aug 04 2022 Steve Kowalik - Remove unneeded BuildRequires on mock.- Remove duplicated BuildRequires on pytest.
* Mon May 09 2022 Matej Cepl - Fix tests.
* Thu Apr 21 2022 Michael Ströder - Update to 1.0.1
* Fix authenticate_none method, via #438.
* Allow to pass in alternative signing algorithm to RFC7523 authentication methods via #447.
* Fix missing_token for Flask OAuth client, via #448.
* Allow openid in any place of the scope, via #449.
* Security fix for validating essential value on blank value in JWT, via #445.- Update to 1.0.0
* Dropped support for Python 2
* Removed built-in SQLAlchemy integration.
* The whole framework client integrations have been restructured
* Tue Nov 16 2021 Michael Ströder - Update to 0.15.5
* Make Authlib compatible with latest httpx
* Make Authlib compatible with latest werkzeug
* Allow customize RFC7523 alg value
* Fri Aug 13 2021 John Paul Adrian Glaubitz - Update to 0.15.4
* Security fix when JWT claims is None.
* Mon Aug 09 2021 Jan Engelhardt - Drop filler wording from description again.
* Tue Mar 23 2021 Marcus Rueckert - Update to 0.15.3 https://docs.authlib.org/en/latest/changelog.html#version-0-15-3 https://docs.authlib.org/en/latest/changelog.html#version-0-15-2 https://docs.authlib.org/en/latest/changelog.html#version-0-15-1 https://docs.authlib.org/en/latest/changelog.html#version-0-15
* Wed Aug 05 2020 Stasiek Michalski - Initial package
  
ICM