github H2CK/oidc 1.16.0
Nextcloud OIDC Provider App - 1.16.0
on GitHub

7 hours ago

Nextcloud OpenID Connect Provider App - 1.16.0

This is the an OIDC App for Nextcloud. This application allows to use your Nextcloud Login at other services supporting OpenID Connect.

Provided features:

  • Support for OpenID Connect Code (response_type = code) and Implicit (response_type = id_token) Flow - Implicite Flow must be activated per client
  • Support for PKCE
  • Public and confidential types of clients are supported
  • Creation of ID Token with claims based on requested scope (Currently supported scopes: openid, profile, email, roles, groups, and offline_access)
  • Supported signing algorithms RS256 (default) and HS256
  • Group memberships are passed as roles in ID token
  • Clients can be assigned to dedicated user groups - Only users in the configured group are allowed to retrieve an access token to fetch the ID token
  • Support for RFC9068 JWT Access Tokens (must be activated per client)
  • Discovery & WebFinger endpoint provided
  • Logout endpoint
  • Dynamic Client Registration
  • Client Configuration Management (RFC 7592)
  • Token Introspection (RFC 7662)
  • Support for resource url (RFC 9728) at introspection
  • User Consent Management
  • Support for custom claims
  • Administration of clients via CLI
  • Generation and validation of access tokens using events
  • User specific settings to define which data is passed to clients in ID token and via userinfo endpoint

Changes:

  • Refactoring of admin settings UI
  • Added possibility to configure custom claims to UI
  • Introduced settings API v2
  • Fix partitial session fallback #620
  • Make use of CredentialManager for storing private key
  • Updated dependencies
  • Updated translations

Full documentation can be found at:

User Documentation
Developer Documentation

What's Changed

  • Build(deps-dev): Bump phpunit/phpunit from 11.5.49 to 11.5.50 in the composer group across 1 directory by @dependabot[bot] in #615
  • Build(deps-dev): Bump qs from 6.14.1 to 6.14.2 in the npm_and_yarn group across 1 directory by @dependabot[bot] in #616
  • Build(deps-dev): Bump ajv from 6.12.6 to 6.14.0 in the npm_and_yarn group across 1 directory by @dependabot[bot] in #617
  • Build(deps): Bump firebase/php-jwt from 7.0.2 to 7.0.3 by @dependabot[bot] in #618
  • Build(deps-dev): Bump minimatch from 3.1.2 to 3.1.5 in the npm_and_yarn group across 1 directory by @dependabot[bot] in #619
  • Use CredentialsManager for storing of private key by @H2CK in #622
  • Build(deps): Bump the npm_and_yarn group across 1 directory with 2 updates by @dependabot[bot] in #623
  • 620 pkce error with multiple OIDC clients are registered by @H2CK in #621

Full Changelog: 1.15.0...1.16.0

Check out latest releases or
releases around H2CK/oidc 1.16.0

Don't miss a new oidc release

NewReleases is sending notifications on new releases.

Get notifications