Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package apache2-mod_auth_openidc for
openSUSE:Factory checked in at 2021-03-30 21:04:58
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/apache2-mod_auth_openidc (Old)
and /work/SRC/openSUSE:Factory/.apache2-mod_auth_openidc.new.2401 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "apache2-mod_auth_openidc"
Tue Mar 30 21:04:58 2021 rev:14 rq:873294 version:2.4.6
Changes:
--------
---
/work/SRC/openSUSE:Factory/apache2-mod_auth_openidc/apache2-mod_auth_openidc.changes
2020-11-26 23:15:01.081019325 +0100
+++
/work/SRC/openSUSE:Factory/.apache2-mod_auth_openidc.new.2401/apache2-mod_auth_openidc.changes
2021-03-30 21:06:18.441107314 +0200
@@ -1,0 +2,29 @@
+Thu Feb 18 07:43:54 UTC 2021 - [email protected]
+
+- re-download tarball
+
+-------------------------------------------------------------------
+Wed Feb 17 18:34:10 UTC 2021 - Michael Str??der <[email protected]>
+
+- Update to version 2.4.6
+ * Bugfixes
+ - don't set SameSite=None on cookies when on plain http
+ - fix semaphore cleanup on graceful restarts; see #522
+ - fix inconsistent public/private keys loading order; closes #515
+ - return HTTP 400 Bad Request instead of 500 Internal Server Error when
state cookie matching fails
+ - optimize Redis AUTH execution once per connection
+ - avoid segmentation fault when hitting an endpoint configured with
+ AuthType openid-connect in an OAuth 2.0 only setup; see #529
+ - make sure the module compiles with Apache 2.2 for passphrase exec:
+ * Features
+ - add Redis database selection option with OIDCRedisCacheDatabase; closes
#423
+ - add base64url option to OIDCPassClaimsAs primitive; closes #417
+ - add environment variable to control libcURL CURLOPT_SSL_OPTIONS
behaviors e.g.:
+ - SetEnvIfExpr true CURLOPT_SSL_OPTIONS=CURLSSLOPT_NO_REVOKE
+ - removed support for
https://tools.ietf.org/html/draft-bradley-oauth-jwt-encoded-state
+ * Security
+ - avoid displaying the client_secret in debug logs
+ * Dependencies
+ - libcjose >= 0.5.1
+
+-------------------------------------------------------------------
Old:
----
apache2-mod_auth_openidc-2.4.5.tar.gz
New:
----
apache2-mod_auth_openidc-2.4.6.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ apache2-mod_auth_openidc.spec ++++++
--- /var/tmp/diff_new_pack.WR03Ha/_old 2021-03-30 21:06:18.965107889 +0200
+++ /var/tmp/diff_new_pack.WR03Ha/_new 2021-03-30 21:06:18.969107894 +0200
@@ -1,7 +1,7 @@
#
# spec file for package apache2-mod_auth_openidc
#
-# Copyright (c) 2020 SUSE LLC
+# Copyright (c) 2021 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
%define apxs %{_sbindir}/apxs2
%define apache_libexecdir %(%{apxs} -q LIBEXECDIR)
Name: apache2-mod_auth_openidc
-Version: 2.4.5
+Version: 2.4.6
Release: 0
Summary: Apache2.x module for an OpenID Connect enabled Identity
Provider
License: Apache-2.0
@@ -35,7 +35,7 @@
%endif
BuildRequires: libtool
BuildRequires: pkgconfig
-BuildRequires: pkgconfig(cjose) >= 0.4.1
+BuildRequires: pkgconfig(cjose) >= 0.5.1
BuildRequires: pkgconfig(jansson) >= 2.0
BuildRequires: pkgconfig(libcurl)
BuildRequires: pkgconfig(libpcre)
++++++ apache2-mod_auth_openidc-2.4.5.tar.gz ->
apache2-mod_auth_openidc-2.4.6.tar.gz ++++++
++++ 4725 lines of diff (skipped)
