зеркало из https://github.com/nextcloud/user_oidc.git
14 KiB
14 KiB
Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
6.1.2 – 2024-10-30
Fixed
- Fix state token missing while trying to login using Nextcloud Desktop (login flow) @joselameira #971
6.1.1 – 2024-10-22
Fixed
- Ensure providerClientId is declared when validating bearer tokens @artonge #969
6.1.0 – 2024-10-15
Added
- feat(provisioning): New system config flag to disable user creation in soft auto provisioning @julien-nc #954
- feat(ApiController): Add endpoint to de-provision user @edward-ly #960
- Add an OCS API controller for pre-provisioning and de-provisioning @julien-nc #963
Changed
- Make aud and azp checks optional when logging in or validating a bearer token @julien-nc #921
- Bump max NC version to 31
Fixed
- Fix provisioning mistake when setting role @julien-nc #930
- Fix LoginController: revert default
token_endpoint_auth_methodvalue @edward-ly #946 - Fix integration tests sometimes not finding docker-compose but 'docker compose' @julien-nc #953
- Backchannel logout endpoint should only return 200 or 400 @julien-nc #955
- Use correct userId when getting user folder in provisioning endpoint if unique-uid is enabled @julien-nc #958
- Re-enable PKCE by default (if supported by the IdP) @edward-ly #956
- Prevent redirecting to an absolute URL after login @julien-nc #961
- Fix provisioning: If address attr is an object but can't be parsed to an array, give null to the 'attr mapped' event @julien-nc #948
6.0.1 – 2024-07-26
Fixed
- Many fixes in ProvisioningServer @julien-nc #905
6.0.0 – 2024-07-23
Changed
- Update npm pkgs
- Use nextcloud/vue 8.15.0
- Support more token endpoint authentication methods @xataxxx #897
Fixed
- Set avatar on login @julien-nc #838
- Fix small accessibility issue with NcModal @julien-nc
5.0.3 – 2024-06-21
Added
- Support search by email in the user backend @tcoupin #815
Changed
- Improve the stub so it's not confusing IDEs @nickvergessen @julien-nc #862 #863
- Set group displayname when provisioning @towo @julien-nc #880
- Add issuer, audience and azp checks in bearer token validator @julien-nc #864
- Allow to disable default quota, displayName, groups and email claims @julien-nc #883
Fixed
- Fix, improve and refactor the upsert occ command @julien-nc #860
- Fix biography attr being used to set the account gender @julien-nc #888
5.0.2 – 2024-03-18
Changed
- Update npm packages
Fixed
- Stop using missing OC::->getEventDispatcher method (dropped in NC 28) @julien-nc #818
5.0.1 – 2024-02-28
Added
- Soft auto-provisioning @julien-nc #730
Fixed
- Prevent using ID4ME routes if ID4ME is disabled @julien-nc
- Fix(login): user get null check @skjnldsv #789
1.3.6 – 2024-01-29
Added
- Customizeable end session endpoint @nc-fkl #724
- Implement ICountUsersBackend to give a user count in 'occ user:report' @julien-nc #733
- Many additional user attribute mapping @nc-fkl #729
- Psalm checks @julien-nc #765
- Ensure the discovery endpoint result is valid @nc-fkl #750
Changed
- Bump max NC version to 29 @julien-nc #717
- Bump min NC version to 25 @julien-nc #765
- Increased database column length for client id and secret @nc-fkl #711
- Make PKCE optional @julien-nc #740
- Update nextcloud/vue to v8 @julien-nc #763
Fixed
- Avoid a lot of error log on token validation failure @aro-lew #721
- Avoid identifier edition when editing a provider @nc-fkl #714
1.3.5 – 2023-11-24
Added
- PKCE support #697 @rullzer @nc-fkl
Changed
- improve id4me token validation #715 @julien-nc
Fixed
- fix potentially missing alg in jwks #713 @julien-nc
1.3.4
Changed
Fixed
- Disable password confirmation for SSO @juliushaertl #668
1.3.3
Changed
- Add issuer and azp validation, improve audience validation @julien-nc #642
- Encrypt stored oidc provider client secrets and id4me client secrets @julien-nc #636
1.3.2
Fixed
- fix Oracle database support by avoiding empty strings that are replaced with null @julien-nc #563
- use more recent Ubuntu image for PhpUnit tests as the old ones are not picked up by runners @julien-nc #619
- better error handling and throttling in Id4Me and login controllers @julien-nc #615 #618
Other
- show redirect URI to help configuring the client on the provider side @julien-nc #598
- add Nextcloud 27 support @julien-nc #616
1.3.1
Fixed
- fix id4me/id4me-rp imports @julien-nc #585
- don't include .nextcloudignore in app releases @julien-nc #595
- avoid using IUserManager::getDisplayName that was introduced in NC 25 @julien-nc #594
1.3.0
Added
- Group provisioning @MarvinOehlerkingCap #502
- Group mapping @MarvinOehlerkingCap #502
- Prefix user ID with provider ID @MarvinOehlerkingCap #502
- User provisioning on API requests authenticated with a Bearer token @MarvinOehlerkingCap #502
- DiscoveryService tests @julien-nc #518
Fixed
- Expected code being exposed when the received one does not match @julien-nc #580
- Non-unique database indexes @julien-nc #541
- User display name change propagation @julien-nc #530
- Fix discovery URL generation with GET parameters @julien-nc #518
Other
- Safer user sync with LDAP user provisioning @julien-nc #535
1.2.1
Added
- Support for Nextcloud 26 @nickvergessen #504
- Support backchannel logout @julien-nc #464
- New endpoint to pre-provision users @julien-nc #450
- Create and populate user storage if necessary on bearer token validation @julien-nc #443
Fixed
- Fix crash on bearer token validation before first login @julien-nc #498
- Potential XSS with Safari @julien-nc #496
- Fix single logout when using Keycloak >= 18 @ubipo #493
- Enforce HTTPS @julien-nc #495
- Check if user was deleted in LDAP if necessary @julien-nc #451
- Perform a user search before login to make sure LDAP users are synced @julien-nc #436
- Make sure the user avatar is generated on login @julien-nc #437
- Fix upsert command resetting the scope if none provided @julien-nc #433
- Fix upsert command not printing the provider when no parameter given @julien-nc #431
- Fix single logout with non-auto provisioned users @julien-nc #429
Other
- Modernize settings frontend (use
@nextcloud/vue, bump js libs...) @julien-nc #497
1.2.0
Added
- Fix and polish upsert and delete commands @eneiluj #338
- Remove redundant and time consuming userinfo validation @eneiluj #334
- Cache provider public keys @eneiluj #337
- Move to IBootstrap @juliushaertl #385
- New system config to disable SelfEncodedValidator bearer token validator @eneiluj #372
- Dispatch new event when a bearer token is validated @eneiluj #381
- Add new provider setting to request extra claims @eneiluj #407
- Implement single logout @eneiluj #373
Fixed
- Avoid claiming 'sub', display code response error @eneiluj #329
- Optionally keep userinfo validator for api calls only, use all providers @eneiluj #335
- Let .nextcloudignore skip defined paths only in root @juliushaertl #353
- Avoid empty session on certain redirect situations in Safari @juliushaertl #358
- Cache discovery endpoint results @juliushaertl #367
- Fix a small php 8 compatibility issue @CarlSchwan #406
- Cache user object when checking existance @CarlSchwan #412
- Ensure that a remember me cookie is created @juliushaertl #425
v1.1.0
Added
- #304 Allow to disable other login methods
- #306 Add integration tests with keycloak
- #317 Claim handling and complex mapping rules @tsdicloud
- #320 Bearer token validation
Fixed
- #303 Properly handle redirect after login
- #319 Fix typo in quota attribute @rgfernandes
- #316 Fix provider edition
- #314 Fix header/column label missmatch @alerque
Other
- Dependency updates
v1.0.0 (2021-08-03)
Implemented enhancements:
- Add provider admin commands #292 (tsdicloud)
- Move to npm7 and update actions #286 (skjnldsv)
- Custom attribute mappings #268 (juliushaertl)
- Implement missing user backend methods #267 (juliushaertl)
- Update webpack config and add settings icon #259 (skjnldsv)
Fixed bugs:
- Move mozart out of regular dependencies #296 (juliushaertl)
[0.3.1] - 2021-02-02
Fixed
- Make column explitly nullable
[0.3.0] - 2021-02-02
Added
- NC 21 support
Fixed
- Installing on NC20
[0.1.0] - 2020-04-29
Added
- Basic implementation of OIDC client
- Expirimental support for ID4ME