archives/FHeD
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases 40 Activity

Update dependency jumbojett/openid-connect-php to v0.9.10 #164

Merged
renovate[bot] merged 1 commits from renovate/jumbojett-openid-connect-php-0.x-lockfile into main 2023-03-16 18:25:00 +00:00
Conversation 0 Commits 1 Files Changed 1 +82 -18
renovate[bot] commented 2023-03-15 15:58:18 +00:00 (Migrated from github.com)
Copy Link

Mend Renovate

This PR contains the following updates:

Package Type Update Change
jumbojett/openid-connect-php require patch 0.9.0 -> 0.9.10

Release Notes

jumbojett/OpenID-Connect-PHP

v0.9.10

Compare Source

Fixed
  • private_key_jwt and client_secret_jwt need to explicitly be enabled #​331

v0.9.9

Compare Source

Added
  • Added support for back-channel logout. #​302
  • Added support for private_key_jwt Client Authentication method #​322
  • Added support for client_secret_jwt Client Authentication method #​324
  • Added PS512 encryption support #​342
Fixed
  • Harden self-signed JWK header usage. #​323

v0.9.8

Compare Source

Fixed
  • Do not use PKCE if IdP does not support it. #​317

v0.9.7

Compare Source

Added
  • Support for Self-Contained JWTs. #​308
  • Support for RFC8693 Token Exchange Request. #​275
Fixed

v0.9.6

Compare Source

Added
Changed
  • Allow serializing OpenIDConnectClient using serialize() #​295

v0.9.5

Compare Source

Changed
  • signOut() Method parameter $accessToken -> $idToken to prevent confusion about access and id tokens usage. #​127
  • Fixed issue where missing nonce within the claims was causing an exception. #​280

v0.9.4

Compare Source

Added
  • Enabled client_secret_basic authentication on refreshToken() #​215
  • Basic auth support for requestResourceOwnerToken #​271

v0.9.3

Compare Source

Added
  • getRedirectURL() will not log a warning for PHP 7.1+ #​179
  • it is now possible to disable upgrading from HTTP to HTTPS for development purposes by calling setHttpUpgradeInsecureRequests(false) #​241
  • bugfix in getSessionKey when _SESSION key does not exist #​251
  • Added scope parameter to refresh token request #​225
  • bugfix in verifyJWTclaims when $accessToken is empty and $claims->at_hash is not #​276
  • bugfix with the empty function in PHP 5.4 #​267

v0.9.2

Compare Source

Added
  • Support for PKCE. Currently, the supported methods are 'plain' and 'S256'.

v0.9.1

Compare Source

Fixed
  • private_key_jwt and client_secret_jwt need to explicitly be enabled #​331

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com) This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [jumbojett/openid-connect-php](https://togithub.com/jumbojett/OpenID-Connect-PHP) | require | patch | `0.9.0` -> `0.9.10` | --- ### Release Notes <details> <summary>jumbojett/OpenID-Connect-PHP</summary> ### [`v0.9.10`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;0910---2022-09-30) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.9...v0.9.10) ##### Fixed - `private_key_jwt` and `client_secret_jwt` need to explicitly be enabled [#&#8203;331](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/331) ### [`v0.9.9`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;099---2022-09-28) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.8...v0.9.9) ##### Added - Added support for back-channel logout. [#&#8203;302](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/302) - Added support for `private_key_jwt` Client Authentication method [#&#8203;322](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/322) - Added support for `client_secret_jwt` Client Authentication method [#&#8203;324](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/324) - Added PS512 encryption support [#&#8203;342](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/342) ##### Fixed - Harden self-signed JWK header usage. [#&#8203;323](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/323) ### [`v0.9.8`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;098---2022-08-05) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.7...v0.9.8) ##### Fixed - Do not use PKCE if IdP does not support it. [#&#8203;317](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/317) ### [`v0.9.7`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;097---2022-07-13) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.6...v0.9.7) ##### Added - Support for Self-Contained JWTs. [#&#8203;308](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/308) - Support for RFC8693 Token Exchange Request. [#&#8203;275](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/275) ##### Fixed - PHP 5.4 compatibility. [#&#8203;304](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/304) - Use session_status(). [#&#8203;306](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/306) ### [`v0.9.6`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;096---2022-05-08) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.5...v0.9.6) ##### Added - Support for [phpseclib/phpseclib](https://phpseclib.com/) version **3**. [#&#8203;260](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/260) - Support client_secret on token endpoint with PKCE. [#&#8203;293](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/293) - Added new parameter to `requestTokens()` to pass custom HTTP headers [#&#8203;297](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/297) ##### Changed - Allow serializing `OpenIDConnectClient` using `serialize()` [#&#8203;295](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/295) ### [`v0.9.5`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;095---2021-11-24) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.4...v0.9.5) ##### Changed - signOut() Method parameter $accessToken -> $idToken to prevent confusion about access and id tokens usage. [#&#8203;127](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/127) - Fixed issue where missing nonce within the claims was causing an exception. [#&#8203;280](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/280) ### [`v0.9.4`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;094---2021-11-21) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.3...v0.9.4) ##### Added - Enabled `client_secret_basic` authentication on `refreshToken()` [#&#8203;215](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/215) - Basic auth support for requestResourceOwnerToken [#&#8203;271](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/271) ### [`v0.9.3`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;093---2021-11-20) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.2...v0.9.3) ##### Added - getRedirectURL() will not log a warning for PHP 7.1+ [#&#8203;179](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/179) - it is now possible to disable upgrading from HTTP to HTTPS for development purposes by calling `setHttpUpgradeInsecureRequests(false)` [#&#8203;241](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/241) - bugfix in getSessionKey when \_SESSION key does not exist [#&#8203;251](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/251) - Added scope parameter to refresh token request [#&#8203;225](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/225) - bugfix in `verifyJWTclaims` when $accessToken is empty and $claims->at_hash is not [#&#8203;276](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/276) - bugfix with the `empty` function in PHP 5.4 [#&#8203;267](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/267) ### [`v0.9.2`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;092---2020-11-16) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.1...v0.9.2) ##### Added - Support for [PKCE](https://tools.ietf.org/html/rfc7636). Currently, the supported methods are 'plain' and 'S256'. ### [`v0.9.1`](https://togithub.com/jumbojett/OpenID-Connect-PHP/blob/HEAD/CHANGELOG.md#&#8203;0910---2022-09-30) [Compare Source](https://togithub.com/jumbojett/OpenID-Connect-PHP/compare/v0.9.0...v0.9.1) ##### Fixed - `private_key_jwt` and `client_secret_jwt` need to explicitly be enabled [#&#8203;331](https://togithub.com/jumbojett/OpenID-Connect-PHP/issues/331) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://app.renovatebot.com/dashboard#github/luketainton/FHeD). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNS44LjAiLCJ1cGRhdGVkSW5WZXIiOiIzNS44LjAifQ==-->
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
dependencies
Pull requests that update a dependency file
 release:major
Auto Version - Major release
 release:minor
Auto Version - Minor release
 release:patch
Auto Version - Patch release
 status:duplicate
This issue or pull request already exists
 status:stale
Auto-closed due to inactivity
 type:bug
Something isn't working
 type:docs
Improvements or additions to documentation
 type:epic
Major/breaking changes to the codebase
 type:feature
New feature or request
 type:question
Further information is requested
No Label
Milestone
No items
No Milestone
Assignees
Clear assignees
luke
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: archives/FHeD#164
Delete Branch "renovate/jumbojett-openid-connect-php-0.x-lockfile"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?