There is only one change included compared to v0.4.0:
- When the the Supervisor is configured to use the upstream OIDC Provider's
username, then validate that the
email_verifiedclaim has the value
email_verifiedclaim was included in the upstream ID token. If the
email_validatedclaim is not included in the upstream ID token, then assume that the upstream provider doesn't implement it and allow the login to continue. This change only impacts configurations where the configured upstream OIDC Provider supports the
email_verifiedclaim, which is usually supported Providers which allow users to either self-register for an account or modify their email addresses on an existing account.