0_4_0.md

doc/release_notes/0_4_0.md
Last Update: 2024-03-27 06:16:45 +0000

0.4.0 (13/11/2020)

Features

  • A new method, get_additional_param(account, claim), is now exposed; this method will be called whenever non-OIDC scopes are requested in the emission of the ID token.

  • The form_post response is now supported, either by passing the response_mode=form_post request param in the authorization URL, or by setting oauth_response_mode "form_post" option. This improves the overall security of an Authorization server even more, as authorization codes are sent to client applications via a POST request to the redirect URI.

Improvements

  • For the OIDC address scope, proper claims are now emitted as per the standard, i.e. the “formatted”, “street_address”, “locality”, “region”, “postal_code”, “country”. These will be the ones referenced in the get_oidc_param method.

Bugfixes

  • The rails templates were missing declarations from a few params, which made some of the flows (the PKCE for example) not work out-of-the box;

  • rails tests were silently not running in CI;

  • The CI suite was revamped, so that all Oauth tests would be run under rails as well. All versions from rails equal or above 5.0 are now targeted;