Releases: H2CK/oidc
Nextcloud OIDC Provider App - 1.2.0
Nextcloud OpenID Connect Provider App - 1.2.0
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
- Administration of clients via CLI
Changes:
- Added claims family_name, use_info to ID token and user info endpoint - Please read README for further details -> section Scopes (thanks to @ThoFrank)
- Added trimming of whitespaces to redirect and logout URIs on creation (thanks to @jannisko)
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 1.1.0
Nextcloud OpenID Connect Provider App - 1.1.0
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
- Administration of clients via CLI
Changes:
- Added quota claim to ID token and user info endpoint (Please read README for further details - section Scopes)
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 1.0.0
Nextcloud OpenID Connect Provider App - 1.0.0
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
- Administration of clients via CLI
Changes:
- Added CLI commands to manage clients (thanks to @opsocket)
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.9.4
Nextcloud OpenID Connect Provider App - 0.9.4
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
Changes:
- Bugfix for lost session data when using BasicAuth for client authentication
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.9.3
Nextcloud OpenID Connect Provider App - 0.9.3
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
Changes:
- Added support for Nextcloud 30
- Removed support for Nextcloud < 28
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.9.2
Nextcloud OpenID Connect Provider App - 0.9.2
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
Changes:
- Improved CORS handling for single requests
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.9.1
Nextcloud OpenID Connect Provider App - 0.9.1
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
Changes:
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.9.0
Nextcloud OpenID Connect Provider App - 0.9.0
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
- Dynamic Client Registration - Disabled by default
Changes:
- Removed support for Nextcloud < 27
- Added BruteForce and RateLimiting functionality
- Added dynamic client registration functionalilty
- Limited Basic Authentication to token endpoint only
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.8.1
Nextcloud OpenID Connect Provider App - 0.8.1
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow (since version 0.4.0) - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
Changes:
- Added support for Nextcloud 29
- Updated dependencies
- Updated translations
Full documentation can be found at:
Nextcloud OIDC Provider App - 0.8.0
Nextcloud OpenID Connect Provider App - 0.8.0
This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.
Provided features:
- Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow (since version 0.4.0) - Implicit Flow must be activated per client.
- Configuration of accepted client for whom JWT Tokens are provided. Public and confidential types are supported.
- Creation of JWT Token with claims based on requested scope. (Currently supported scopes openid, profile, email, roles and groups)
- Supported signing algorithms RS256 (default) and HS256
- Group memberships are passed as roles in JWT token.
- Support multiple Redirect URIs per client
- Limit access for a client to specific user groups
- Discovery & WebFinger endpoint provided
- Logout endpoint supports partial RP-Initated logout (support for id_token_hint, client_id and post_logout_redirect_uri attributes)
Changes:
- Added possibility to overwrite email_verified claim to always be true
- Added support for Basic Authentication for token endpoint (implemented a pseudo user backend)
- Updated dependencies
Full documentation can be found at: