openid-client - npm Package Versions

Version 1.5.3

• 2017-02-15 DIFF
• fixed an ID Token validation for ID Token returned by Token Endpoint that includes c_hash

Version 1.5.2

• 2017-02-01 DIFF
• fixed passport strategy, have it use prototype instead of ES6 class syntax

Version 1.5.1

• 2017-01-29 DIFF
• fixed client_assertion aud claim for _jwt auth methods when used in introspection and revocation

Version 1.5.0

Version 1.4.0

• 2017-01-10 DIFF
• deprecated passing keystore directly to Client#register, pass an object with keystore property instead
• added the option to provide InitialAccessToken value to Client#register

Version 1.3.1

• 2016-12-18 DIFF
• added error messages when expected response is missing

Version 1.3.0

Version 1.2.0

• 2016-12-09 DIFF
• added #claims getter to TokenSets returned from authorizationCallback and refresh;

Version 1.1.0

• 2016-11-23 DIFF
• fixed unpacking aggregated claims with alg=none and no iss claim
• fetching distributed claims now expects a JWT response, previously expected invalid OP responses

Version 1.0.2

• 2016-11-22 DIFF
• fixed signed userinfo response validation in case iss, aud and similar ID Token claims are missing