Socket
Socket
Sign inDemoInstall

openid-client

Package Overview
Dependencies
35
Maintainers
1
Versions
180
Alerts
File Explorer

Advanced tools

npm Scripts
License

Install Socket

Detect and block malicious and high-risk dependencies

Install
Previous1
57
18Next

4.2.2

Diff
panva
 published 4.2.2 •

Changelog

Source

4.2.2 (2020-11-30)

Bug Fixes

  • push pkce <> response type resolution to the authenticate function (1970af4), closes #312

4.2.1

Diff
panva
 published 4.2.1 •

Changelog

Source

4.2.1 (2020-10-27)

Bug Fixes

  • typescript: add state property to AuthorizationParameters (#305) (b9dfa60), closes #304

4.2.0

Diff
panva
 published 4.2.0 •

Changelog

Source

4.2.0 (2020-10-03)

Features

  • add callback extras to strategy options (#295) (b77466d)

4.1.1

Diff
panva
 published 4.1.1 •

Changelog

Source

4.1.1 (2020-09-14)

Bug Fixes

  • typescript: ts module interop issues with default export (6ca57d0), closes #291

4.1.0

Diff
panva
 published 4.1.0 •

Changelog

Source

4.1.0 (2020-09-11)

Features

  • OAuth 2.0 DPoP in various relevant API interfaces (44a0de7)

4.0.2

Diff
panva
 published 4.0.2 •

Changelog

Source

4.0.2 (2020-09-11)

Bug Fixes

  • updated request object mime-type as per draft-ietf-oauth-jwsreq-30 (d5cc619)

4.0.1

Diff
panva
 published 4.0.1 •

Changelog

Source

4.0.1 (2020-09-10)

Bug Fixes

  • ensure minimal got version handles upcoming node version changes (fd737a3)

4.0.0

Diff
panva
 published 4.0.0 •

Changelog

Source

4.0.0 (2020-09-09)

⚠ BREAKING CHANGES

  • the deprecated issuer.key() method was removed
  • due to added ESM module support Node.js version with ESM implementation bugs are no longer supported, this only affects early v13.x versions. The resulting Node.js semver range is ^10.19.0 || >=12.0.0 < 13 || >=13.7.0 (also taking into account the got dependency update)
  • upgraded got http request library dependency from v9.x to v11.x. If you override some of the http request options you will most certainly have to accomodate them.
  • Signed Request Object "typ" changed from JWT to oauth.authz.req+jwt
  • Encrypted Request Object "cty" changed from JWT to oauth.authz.req+jwt
  • PKCE is now used by default in the passport strategy
  • client.userinfo() verb parameter was renamed to method
  • the deprecated client.resource() method was removed

Features

  • added support for ESM (ECMAScript modules) (3ac37e8)
  • passport strategy will now use PKCE by default where applicable (56f9fe7)

Bug Fixes

  • request object type changed from 'JWT' to 'oauth.authz.req+jwt' (641a42f)

Refactor

  • remove deprecated client.resource() (c0ec865)
  • remove deprecated issuer.key() (5cd1ecf)
  • rename client.userinfo() verb parameter to method (4cb21a4)
  • upgrade got from v9.x to v11.x (c72b5e8)

3.15.10

Diff
panva
 published 3.15.10 •

Changelog

Source

3.15.10 (2020-09-02)

Bug Fixes

3.15.9

Diff
panva
 published 3.15.9 •

Changelog

Source

3.15.9 (2020-07-26)

Bug Fixes

  • typescript: max_age in AuthorizationParameters is a number (5ce2a73), closes #279
Previous1
57
18Next
SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

About

Packages

Stay in touch

Get open source security insights delivered straight into your inbox.

  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc