All work
- Add attributeRecipientGroupID to profile config(s)JOIDC-239Henri Mikkonen
- Possible race condition when processing login_hint or resource -parameters in authorization endpointJOIDC-234Resolved issue: JOIDC-234Henri Mikkonen
- Protocol trace log only display first parameter valueJOIDC-232Resolved issue: JOIDC-232Henri Mikkonen
- Multiple resource parameters cause MessageDecodingExceptionJOIDC-231Resolved issue: JOIDC-231Henri Mikkonen
- Add flag to block additional audiences from initial access tokenJOIDC-230Resolved issue: JOIDC-230Henri Mikkonen
- Provide method for strict scope validationJOIDC-229Resolved issue: JOIDC-229Henri Mikkonen
- Relocate and improve lookup functions for request message contentsJOIDC-225Resolved issue: JOIDC-225Henri Mikkonen
- Add ignoreScoping to OIDC.SSO propertiesJOIDC-219Resolved issue: JOIDC-219Scott Cantor
- Error handling for missing and invalid request objectsJOIDC-218Resolved issue: JOIDC-218Henri Mikkonen
- Support for OAuth2 JWT-Secured Authorization Request (JAR)JOIDC-217Resolved issue: JOIDC-217Henri Mikkonen
- Support for JWT Secured Authorization Response Mode for OAuth 2.0 (JARM)JOIDC-216Henri Mikkonen
- Prefix form_post response parameter keys in Velocity contextJOIDC-215Resolved issue: JOIDC-215Henri Mikkonen
- Response type parameter handling in authorization endpointJOIDC-214Resolved issue: JOIDC-214Henri Mikkonen
- Empty/missing scope in authorization request produces uncaught exceptionJOIDC-212Resolved issue: JOIDC-212Henri Mikkonen
- Provide method to customise response message contentsJOIDC-211Resolved issue: JOIDC-211Henri Mikkonen
- Refactor support for non-URI resource indicators for Nimbus v11JOIDC-210Resolved issue: JOIDC-210Henri Mikkonen
- Ignore scope in token endpoint with authorization code grantJOIDC-208Resolved issue: JOIDC-208Henri Mikkonen
- Provide method to avoid Nimbus message parsing restrictionsJOIDC-206Resolved issue: JOIDC-206Henri Mikkonen
- Support for OAuth 2.0 Demonstrating Proof of Possession (DPoP)JOIDC-201Resolved issue: JOIDC-201Henri Mikkonen
- Support for OAuth2 Pushed Authorization Requests (PAR)JOIDC-200Resolved issue: JOIDC-200Henri Mikkonen
- UserInfo JWT access token issued by the implicit authorize flow is not signedJOIDC-199Resolved issue: JOIDC-199Henri Mikkonen
- Allowed ResponseModes should be configurableJOIDC-197Resolved issue: JOIDC-197Henri Mikkonen
- Enhance metadata and unregistered client policy config optionsJOIDC-196Resolved issue: JOIDC-196Henri Mikkonen
- Authentification with an unregistered OIDC client failsJOIDC-189Resolved issue: JOIDC-189Henri Mikkonen
- Make offline_access consent handling configurableJOIDC-188Resolved issue: JOIDC-188Henri Mikkonen
- Add metadata-driven naming to attribute transcodersJOIDC-187Resolved issue: JOIDC-187Henri Mikkonen
- Allow redirection URI validation via custom functionJOIDC-178Resolved issue: JOIDC-178Henri Mikkonen
- SetRequestObjectToResponseContext HTTP resource leakJOIDC-167Henri Mikkonen
- Allow customization of request object claims validatorsJOIDC-166Resolved issue: JOIDC-166Henri Mikkonen
- The default audit extractor for %fauth causes ClassCastException to be thrownJOIDC-162Resolved issue: JOIDC-162Henri Mikkonen
- Support unregistered clients at authz endpointJOIDC-161Resolved issue: JOIDC-161Henri Mikkonen
- Improve Request Object handling and configurationJOIDC-142Resolved issue: JOIDC-142Henri Mikkonen
- Allow customization for mappedErrors of OP flowsJOIDC-133Resolved issue: JOIDC-133Henri Mikkonen
- Logging of missing relying party ID is confusingJOIDC-131Resolved issue: JOIDC-131Scott Cantor
- Support OAuth authorization requestsJOIDC-128Resolved issue: JOIDC-128Henri Mikkonen
- Include sid claim in id_tokenJOIDC-127Resolved issue: JOIDC-127Henri Mikkonen
- Stricter-then-standard parameter checkingJOIDC-113Resolved issue: JOIDC-113
- Support manipulating claims encoded inside authz code and tokensJOIDC-111Resolved issue: JOIDC-111Henri Mikkonen
- Support Direct Encryption for JWE encryption / decryptionJOIDC-110Henri Mikkonen
- IDTokenLifetime property misspelled in metadata-backed wiringJOIDC-107Resolved issue: JOIDC-107Scott Cantor
- SAML Metadata for OIDC does not support space delimiter in response_typesJOIDC-106Resolved issue: JOIDC-106Henri Mikkonen
- Support OAuth 2.0 Authorization Server Issuer Identification as per RFC9207JOIDC-99Resolved issue: JOIDC-99Henri Mikkonen
- support C_HASH in ID_Token also for Authorization Code Flow with PKCEJOIDC-97Resolved issue: JOIDC-97Henri Mikkonen
- Inbound and outbound interceptor flows are not wired to the OIDC flowsJOIDC-89Resolved issue: JOIDC-89Henri Mikkonen
- Honoring semantics for forceAuthn flag in the same manner as SAMLJOIDC-88Resolved issue: JOIDC-88Henri Mikkonen
- Facilitate login_hint sanitizationJOIDC-86Resolved issue: JOIDC-86Henri Mikkonen
- OIDC SSO happens even with different ACRJOIDC-84Resolved issue: JOIDC-84Henri Mikkonen
- Claims-parameter in the authn request only affects attribute filteringJOIDC-79Resolved issue: JOIDC-79Henri Mikkonen
- Wrong JSONObject type when decoding claims from Signed JAR Authentication requestJOIDC-78Resolved issue: JOIDC-78Henri Mikkonen
- Lack of openid scope in metadata doesn't prevent id_token issuanceJOIDC-71Resolved issue: JOIDC-71Henri Mikkonen
50 of 57
