OpenID Connect Relying Party and OAuth 2.0 Resource Server for Apache HTTP Server 2.x
OpenID Connect Relying Party and OAuth 2.0 Resource Server for Apache HTTP Server 2.x
- Developed at Apache:Modules
- Sources inherited from project openSUSE:Factory
-
2
derived packages
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Factory:zSystems/apache2-mod_auth_openidc && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| apache2-mod_auth_openidc-2.4.3.tar.gz | 0000249136 243 KB | |
| apache2-mod_auth_openidc.changes | 0000011274 11 KB | |
| apache2-mod_auth_openidc.spec | 0000002243 2.19 KB |
Revision 10 (latest revision is 31)
Dominique Leuenberger (dimstar_suse)
accepted
request 825751
from
Petr Gajdos (pgajdos)
(revision 10)
- Update to version 2.4.3
* Bugfixes
- prevent open redirect on refresh token requests
- add new OIDCRedirectURLsAllowed primitive to handle post logout
and refresh-return-to validation
addresses #453; closes #466
- when stripping cookies, add a space between cookies in the resulting header (required by RFC 6265)
- fix compilation against Apache 2.0
* Features
- add OIDCStateInputHeaders that allows configuring the header values
used to calculate the fingerprint of the state during authentication
- added OIDCValidateIssuer primitive to allow for disabling of issuer
matching, helps to support multi-tenant applications i.e. Microsoft AAD
Comments 0