1.2.1

What's Changed

• fix: aligned claims to trust_mark_issuers by @rglauco in #284
• Add missing migrations by @vernans in #285

New Contributors

• @vernans made their first contribution in #285

Full Changelog: v1.2.0...v1.2.1

1.2.0

What's Changed

• missing federation_resolve_endpoint in dumps by @carlotafuro in #280
• fix: SPID attributes aligned to the specs v.1.3 by @rglauco in #281
• fix: openid-configuration endpoint not reachable by @mattebit in #282

New Contributors

• @carlotafuro made their first contribution in #280
• @mattebit made their first contribution in #282

Full Changelog: v1.1.2...v1.2.0

1.1.2

What's Changed

• fix: corrected redirect_uri on deny consent by @rglauco in #275
• fix: typo in redirect_uri f string by @rglauco in #277
• fix: corrected redirect_uri on deny consent by @peppelinux in #276

Full Changelog: v1.1.1...v1.1.2

1.1.1

What's Changed

• fix: Access Token audience by @peppelinux in #273

Full Changelog: v1.1.0...v1.1.1

1.1.0

What's Changed

• fix: create settingslocal.py.example in TA example by @rglauco in #268
• fix: example project by @peppelinux in #267
• feat: unique jti for each JWT, different RT behaviour between SPID and CIE providers by @rglauco in #269
• fixes for httpd connections parameters and jwks evaluation and added openid_credential_issuer by @peppelinux in #270
• Refresh Token, custom entities with policy loader, trust marked endpoint by @peppelinux in #272

• feat: different jti for every token type
• feat: refresh tokens renewal based on user consent timeframe validity
• fix: error in user_attributes
• fix: [RP] differentiate refresh token tests CIE/SPID
• fix: entity statement construct with missing jwks
• fix: added openid_credential_issuer
• feat: trust marked listing endpoint
• fix: policy loading on missing profiles
• feat: OIDCFED_PROVIDER_MAX_CONSENT_TIMEFRAME and resolve html form error

Full Changelog: v1.0.0...v1.1.0

1.0.0

What's Changed

• Wallet TA by @peppelinux in #265
• Wallet Trust Anchor example project (without trailing slash in the web urls, finally)
• federation historical key registry endpoint
• feat: source_endpoint claim in ES
• feat: Federation Historical Key Registry wk endpoint and admin
• fix: oidc core jwks not mandatory in EC since we have pure fed entities

Full Changelog: v0.9.0...v1.0.0

0.9.0

What's Changed

• fix: userinfo response - encrypt only with a key that has a kid! by @peppelinux in #259
• update pydantic version
• added python 3.11
• feat: RP userinfo page with token introspection and token lifetime counter @rglauco
• feat: long-lived token lifetime according to the national specs @rglauco
• feat: at_hash checks @rglauco
• feat: added optional/custom protected header parameter in JWS creation utilities
• fix: added code_verifier min/max length @rglauco

New Contributors

• @rglauco

Full Changelog: v0.8.14...v0.8.15

0.8.14

What's Changed

• Fixing issue #256 - Open Redirect vulnerability by @voidz0r in #257
• Userinfo encryption also with EC by @peppelinux in #255

New Contributors

• @voidz0r made their first contribution in #257

Full Changelog: v0.8.13...v0.8.14

v0.8.13

What's Changed

• feat: [authz request] user attributes aligned to technical specs by @peppelinux in #254

Full Changelog: v0.8.12...v0.8.13

0.8.12

What's Changed

• fix: invalid metadata policy scope for SP and improved pairwised sub by @peppelinux in #253

Full Changelog: v0.8.11...v0.8.12