github OpenIDC/mod_auth_openidc v2.4.16.4
release 2.4.16.4
on GitHub

4 hours ago

Bugfixes

  • fix oidc_jwk_copy wrt. "x5t", which broke private_key_jwt authentication to Microsoft Entra ID / Azure AD since 2.4.13; see #1269; thanks @uoe-pjackson
  • fix accepting custom cookie names in OIDCOAuthAcceptTokenAs cookie:<name>; see #1261; thanks @bbartke

Other

  • change warnings about not passing unknown claim types into debug messages; see #1263; thanks @nclarkau
  • use compact encoding and preserve claim order where appropriate for most cases of JSON/JWT serialization
  • improve basic authentication parsing when using OIDCOAuthAcceptTokenAs basic

Commercial

  • binary packages for various other platforms such as Microsoft Windows 64bit/32bit, Red Hat Enterprise Linux 6/7, older Ubuntu and Debian distro's, SUSE Linux, Amazon Linux, Oracle HTTP Server 11.1/12.1/12.2, IBM HTTP Server 8/9, and IBM AIX 7.x are available under a commercial agreement via sales@openidc.com
  • support for Redis/Valkey over TLS, Redis/Valkey (TLS) Sentinel, and Redis (TLS) Cluster is available under a commercial license via sales@openidc.com
Check out latest releases or
releases around OpenIDC/mod_auth_openidc v2.4.16.4

Don't miss a new mod_auth_openidc release

NewReleases is sending notifications on new releases.

Get notifications