commit apache2-mod_auth_openidc for openSUSE:Factory

[Source-Sync]

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package apache2-mod_auth_openidc for 
openSUSE:Factory checked in at 2021-03-30 21:04:58
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/apache2-mod_auth_openidc (Old)
 and      /work/SRC/openSUSE:Factory/.apache2-mod_auth_openidc.new.2401 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "apache2-mod_auth_openidc"

Tue Mar 30 21:04:58 2021 rev:14 rq:873294 version:2.4.6

Changes:
--------
--- 
/work/SRC/openSUSE:Factory/apache2-mod_auth_openidc/apache2-mod_auth_openidc.changes
        2020-11-26 23:15:01.081019325 +0100
+++ 
/work/SRC/openSUSE:Factory/.apache2-mod_auth_openidc.new.2401/apache2-mod_auth_openidc.changes
      2021-03-30 21:06:18.441107314 +0200
@@ -1,0 +2,29 @@
+Thu Feb 18 07:43:54 UTC 2021 - pgaj...@suse.com
+
+- re-download tarball
+
+-------------------------------------------------------------------
+Wed Feb 17 18:34:10 UTC 2021 - Michael Str??der <mich...@stroeder.com>
+
+- Update to version 2.4.6
+  * Bugfixes
+    - don't set SameSite=None on cookies when on plain http
+    - fix semaphore cleanup on graceful restarts; see #522
+    - fix inconsistent public/private keys loading order; closes #515
+    - return HTTP 400 Bad Request instead of 500 Internal Server Error when 
state cookie matching fails
+    - optimize Redis AUTH execution once per connection
+    - avoid segmentation fault when hitting an endpoint configured with
+      AuthType openid-connect in an OAuth 2.0 only setup; see #529
+    - make sure the module compiles with Apache 2.2 for passphrase exec:
+  * Features
+    - add Redis database selection option with OIDCRedisCacheDatabase; closes 
#423
+    - add base64url option to OIDCPassClaimsAs primitive; closes #417
+    - add environment variable to control libcURL CURLOPT_SSL_OPTIONS 
behaviors e.g.:
+    - SetEnvIfExpr true CURLOPT_SSL_OPTIONS=CURLSSLOPT_NO_REVOKE
+    - removed support for 
https://tools.ietf.org/html/draft-bradley-oauth-jwt-encoded-state
+  * Security
+    - avoid displaying the client_secret in debug logs
+  * Dependencies
+    - libcjose >= 0.5.1
+
+-------------------------------------------------------------------

Old:
----
  apache2-mod_auth_openidc-2.4.5.tar.gz

New:
----
  apache2-mod_auth_openidc-2.4.6.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ apache2-mod_auth_openidc.spec ++++++
--- /var/tmp/diff_new_pack.WR03Ha/_old  2021-03-30 21:06:18.965107889 +0200
+++ /var/tmp/diff_new_pack.WR03Ha/_new  2021-03-30 21:06:18.969107894 +0200
@@ -1,7 +1,7 @@
 #
 # spec file for package apache2-mod_auth_openidc
 #
-# Copyright (c) 2020 SUSE LLC
+# Copyright (c) 2021 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %define apxs %{_sbindir}/apxs2
 %define apache_libexecdir %(%{apxs} -q LIBEXECDIR)
 Name:           apache2-mod_auth_openidc
-Version:        2.4.5
+Version:        2.4.6
 Release:        0
 Summary:        Apache2.x module for an OpenID Connect enabled Identity 
Provider
 License:        Apache-2.0
@@ -35,7 +35,7 @@
 %endif
 BuildRequires:  libtool
 BuildRequires:  pkgconfig
-BuildRequires:  pkgconfig(cjose) >= 0.4.1
+BuildRequires:  pkgconfig(cjose) >= 0.5.1
 BuildRequires:  pkgconfig(jansson) >= 2.0
 BuildRequires:  pkgconfig(libcurl)
 BuildRequires:  pkgconfig(libpcre)

++++++ apache2-mod_auth_openidc-2.4.5.tar.gz -> 
apache2-mod_auth_openidc-2.4.6.tar.gz ++++++
++++ 4725 lines of diff (skipped)