All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Add issuer and azp validation, improve audience validation @julien-nc #642
- Encrypt stored oidc provider client secrets and id4me client secrets @julien-nc #636
- fix Oracle database support by avoiding empty strings that are replaced with null @julien-nc #563
- use more recent Ubuntu image for PhpUnit tests as the old ones are not picked up by runners @julien-nc #619
- better error handling and throttling in Id4Me and login controllers @julien-nc #615 #618
- show redirect URI to help configuring the client on the provider side @julien-nc #598
- add Nextcloud 27 support @julien-nc #616
- fix id4me/id4me-rp imports @julien-nc #585
- don't include .nextcloudignore in app releases @julien-nc #595
- avoid using IUserManager::getDisplayName that was introduced in NC 25 @julien-nc #594
- Group provisioning @MarvinOehlerkingCap #502
- Group mapping @MarvinOehlerkingCap #502
- Prefix user ID with provider ID @MarvinOehlerkingCap #502
- User provisioning on API requests authenticated with a Bearer token @MarvinOehlerkingCap #502
- DiscoveryService tests @julien-nc #518
- Expected code being exposed when the received one does not match @julien-nc #580
- Non-unique database indexes @julien-nc #541
- User display name change propagation @julien-nc #530
- Fix discovery URL generation with GET parameters @julien-nc #518
- Safer user sync with LDAP user provisioning @julien-nc #535
- Support for Nextcloud 26 @nickvergessen #504
- Support backchannel logout @julien-nc #464
- New endpoint to pre-provision users @julien-nc #450
- Create and populate user storage if necessary on bearer token validation @julien-nc #443
- Fix crash on bearer token validation before first login @julien-nc #498
- Potential XSS with Safari @julien-nc #496
- Fix single logout when using Keycloak >= 18 @ubipo #493
- Enforce HTTPS @julien-nc #495
- Check if user was deleted in LDAP if necessary @julien-nc #451
- Perform a user search before login to make sure LDAP users are synced @julien-nc #436
- Make sure the user avatar is generated on login @julien-nc #437
- Fix upsert command resetting the scope if none provided @julien-nc #433
- Fix upsert command not printing the provider when no parameter given @julien-nc #431
- Fix single logout with non-auto provisioned users @julien-nc #429
- Modernize settings frontend (use
@nextcloud/vue
, bump js libs...) @julien-nc #497
- Fix and polish upsert and delete commands @eneiluj #338
- Remove redundant and time consuming userinfo validation @eneiluj #334
- Cache provider public keys @eneiluj #337
- Move to IBootstrap @juliushaertl #385
- New system config to disable SelfEncodedValidator bearer token validator @eneiluj #372
- Dispatch new event when a bearer token is validated @eneiluj #381
- Add new provider setting to request extra claims @eneiluj #407
- Implement single logout @eneiluj #373
- Avoid claiming 'sub', display code response error @eneiluj #329
- Optionally keep userinfo validator for api calls only, use all providers @eneiluj #335
- Let .nextcloudignore skip defined paths only in root @juliushaertl #353
- Avoid empty session on certain redirect situations in Safari @juliushaertl #358
- Cache discovery endpoint results @juliushaertl #367
- Fix a small php 8 compatibility issue @CarlSchwan #406
- Cache user object when checking existance @CarlSchwan #412
- Ensure that a remember me cookie is created @juliushaertl #425
- #304 Allow to disable other login methods
- #306 Add integration tests with keycloak
- #317 Claim handling and complex mapping rules @tsdicloud
- #320 Bearer token validation
- #303 Properly handle redirect after login
- #319 Fix typo in quota attribute @rgfernandes
- #316 Fix provider edition
- #314 Fix header/column label missmatch @alerque
- Dependency updates
v1.0.0 (2021-08-03)
Implemented enhancements:
- Add provider admin commands #292 (tsdicloud)
- Move to npm7 and update actions #286 (skjnldsv)
- Custom attribute mappings #268 (juliushaertl)
- Implement missing user backend methods #267 (juliushaertl)
- Update webpack config and add settings icon #259 (skjnldsv)
Fixed bugs:
- Move mozart out of regular dependencies #296 (juliushaertl)
- Make column explitly nullable
- NC 21 support
- Installing on NC20
- Basic implementation of OIDC client
- Expirimental support for ID4ME