Skip to content

Version 1.9.2
Compare
Choose a tag to compare
@RoSk0 RoSk0 released this 31 Oct 22:51
1.9.2
This tag was signed with the committer’s verified signature.
RoSk0 Kirill Roskolii
GPG key ID: A769F923B0AFEED5
Learn about vigilant mode.
056aec6
This commit was signed with the committer’s verified signature.
RoSk0 Kirill Roskolii
GPG key ID: A769F923B0AFEED5
Learn about vigilant mode.

This is a security in depth defence release eliminating potential replay attack in case the module specific cookie was stolen.

N.B. Usage of the cookie is completely removed from drupalauth:External authentication source. You should remove cookie_name from the configuration. Use this release in only with version 8.x-1.3 >= of DrupalAuth for SimpleSAMLphp Drupal module.

Assets 2
Loading