Issues

Go to advanced search
Select view

Select search mode

New Feature
Support manipulating claims encoded inside authz code and tokens
Unassigned
Henri Mikkonen
Trivial
Unresolved
May 27, 2022
May 27, 2022
New Feature
Support Direct Encryption for JWE encryption / decryption
Unassigned
Philip Smart
Trivial
Unresolved
May 27, 2022
May 27, 2022
New Feature
Plugin idea and implications
Unassigned
Simone Avogadro
Trivial
Unresolved
May 24, 2022
May 24, 2022
New Feature
Documentation: functions to sign/encrypt/decrypt JWTs
Unassigned
Simone Avogadro
Trivial
Unresolved
May 24, 2022
May 24, 2022
Improvement
IDTokenLifetime property misspelled in metadata-backed wiring
Unassigned
Scott Cantor
Trivial
Fixed
May 20, 2022
May 20, 2022
Bug
SAML Metadata for OIDC does not support space delimiter in response_types
Unassigned
Sam Bennett
Trivial
Fixed
May 19, 2022
May 26, 2022
Task
Release 3.1.2
Unassigned
Henri Mikkonen
Trivial
Completed
May 17, 2022
May 17, 2022
Improvement
Support to manipulate claims within the ID_Token
Unassigned
Simone Avogadro
Trivial
Unresolved
May 10, 2022
May 20, 2022
Bug
Introspection and revocation endpoint authentication failing with private_key_jwt
Unassigned
Simone Avogadro
Trivial
Fixed
May 2, 2022
May 17, 2022
Improvement
TokenDeliveryClaimsClaimsSet class seems unneeded
Unassigned
Scott Cantor
Trivial
Unresolved
Apr 27, 2022
Apr 27, 2022
Improvement
Releasing IAT, EXP and NBF claims from the UserInfo endpoint
Unassigned
Simone Avogadro
Trivial
Won't Do
Apr 22, 2022
Apr 26, 2022
New Feature
Support OAuth 2.0 Authorization Server Issuer Identification as per RFC9207
Unassigned
Simone Avogadro
Trivial
Unresolved
Apr 22, 2022
May 20, 2022
Improvement
OIDC Access token using RFC 9068 "JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens" on Authorization Code Flow with PKCE
Unassigned
Simone Avogadro
Trivial
Duplicate
Apr 22, 2022
Apr 22, 2022
Improvement
support C_HASH in ID_Token also for Authorization Code Flow with PKCE
Unassigned
Simone Avogadro
Trivial
Unresolved
Apr 22, 2022
May 20, 2022
Bug
Still unable to request a claim to be placed in the ID_token
Unassigned
Simone Avogadro
Trivial
Fixed
Apr 22, 2022
May 17, 2022
Task
Release 3.1.1
Unassigned
Henri Mikkonen
Trivial
Completed
Apr 21, 2022
Apr 26, 2022
Bug
Missing oauth2-authn-config.xml breaks on Windows
Unassigned
Scott Cantor
Trivial
Fixed
Apr 20, 2022
May 16, 2022
Bug
Windows compatibility in spring inport
Unassigned
Simone Avogadro
Trivial
Duplicate
Apr 20, 2022
Apr 20, 2022
New Feature
Support for refresh token rotation
Unassigned
Simone Avogadro
Trivial
Unresolved
Apr 19, 2022
May 16, 2022
Bug
Public clients are not able to access the token endpoint
Unassigned
Ryan Larscheidt
Trivial
Fixed
Apr 18, 2022
May 16, 2022
Improvement
Revocation of individual tokens
Unassigned
Scott Cantor
Trivial
Unresolved
Apr 15, 2022
Apr 15, 2022
Bug
Inbound and outbound interceptor flows are not wired to the OIDC flows
Unassigned
Henri Mikkonen
Trivial
Fixed
Apr 11, 2022
Apr 15, 2022
Bug
Honoring semantics for forceAuthn flag in the same manner as SAML
Unassigned
Simone Avogadro
Trivial
Fixed
Apr 7, 2022
Apr 15, 2022
Improvement
Hashed IdP Session ID audit log token for OIDC
Unassigned
Ryan Larscheidt
Trivial
Fixed
Apr 2, 2022
Apr 15, 2022
New Feature
Facilitate login_hint sanitization
Unassigned
Henri Mikkonen
Trivial
Done
Mar 31, 2022
Apr 15, 2022
New Feature
Submission: LocalDynamicClientInformationResolver
Unassigned
Simone Avogadro
Trivial
Unresolved
Mar 25, 2022
Mar 25, 2022
Bug
OIDC SSO happens even with different ACR
Unassigned
Simone Avogadro
Trivial
Invalid
Mar 18, 2022
Mar 25, 2022
New Feature
Admin flow to read/delete client registrations
Unassigned
Scott Cantor
Trivial
Done
Mar 17, 2022
Apr 15, 2022
Bug
Dyn.reg. profile config setting secretExpirationPeriod is not honored
Unassigned
Henri Mikkonen
Trivial
Fixed
Mar 17, 2022
Apr 15, 2022
Bug
Profile config flag refreshTokensEnabled not honored by the token flow
Unassigned
Henri Mikkonen
Trivial
Fixed
Mar 17, 2022
Apr 15, 2022
Improvement
Extension of well-known configuration
Unassigned
Florian Ritterhoff
Trivial
Done
Mar 14, 2022
Apr 15, 2022
Bug
Claims-parameter in the authn request only affects attribute filtering
Unassigned
Henri Mikkonen
Trivial
Fixed
Mar 11, 2022
Apr 15, 2022
Bug
Wrong JSONObject type when decoding claims from Signed JAR Authentication request
Unassigned
Simone Avogadro
Trivial
Fixed
Mar 9, 2022
Apr 15, 2022
New Feature
Support resource owner password grant
Unassigned
Scott Cantor
Trivial
Unresolved
Feb 23, 2022
Mar 17, 2022
New Feature
Facilitate custom response header settings (e.g. CORS)
Unassigned
Henri Mikkonen
Trivial
Completed
Feb 18, 2022
Apr 15, 2022
Bug
Logging ID for flows is defined globally instead of per-flow.
Unassigned
Scott Cantor
Trivial
Fixed
Jan 31, 2022
Apr 15, 2022
Task
Release 3.0.4
Unassigned
Henri Mikkonen
Trivial
Done
Jan 31, 2022
Feb 1, 2022
Bug
Support for requests by reference is unconstrained
Unassigned
Scott Cantor
Major
Fixed
Jan 28, 2022
Jan 31, 2022
Improvement
Expand the set of supported claims in dynamic client registration
Unassigned
Henri Mikkonen
Trivial
Done
Jan 14, 2022
Apr 15, 2022
Bug
Lack of openid scope in metadata doesn't prevent id_token issuance
Unassigned
Scott Cantor
Trivial
Fixed
Jan 5, 2022
Apr 15, 2022
Improvement
Scope handling changes to accomodate client_credentials grant
Unassigned
Scott Cantor
Trivial
Done
Jan 4, 2022
Apr 15, 2022
Task
Release 3.0.3
Unassigned
Henri Mikkonen
Trivial
Done
Jan 3, 2022
Feb 1, 2022
Bug
Request object (JWT) validation is incomplete
Unassigned
Henri Mikkonen
Trivial
Fixed
Dec 30, 2021
Mar 17, 2022
Bug
Introspection and revocation flows don't support SAML metadata
Unassigned
Henri Mikkonen
Trivial
Fixed
Dec 22, 2021
Mar 17, 2022
New Feature
Mutual TLS client authentication
Unassigned
Scott Cantor
Trivial
Unresolved
Dec 20, 2021
Mar 17, 2022
Bug
JWT client authentication support is incomplete
Unassigned
Scott Cantor
Major
Fixed
Dec 20, 2021
Mar 17, 2022
New Feature
Refactor client authentication on OAuth2 endpoints into a login flow
Unassigned
Scott Cantor
Trivial
Done
Dec 14, 2021
Apr 15, 2022
Bug
Missing required PKCE code challenges should raise an error in the authorization endpoint
Unassigned
Henri Mikkonen
Trivial
Fixed
Dec 10, 2021
Apr 15, 2022
Bug
Profile config for bypassing attribute resolution not honored
Unassigned
Scott Cantor
Trivial
Done
Dec 9, 2021
Apr 15, 2022
New Feature
Support metadata policies in the dyn. reg. profile configuration
Unassigned
Henri Mikkonen
Trivial
Completed
Dec 3, 2021
Apr 15, 2022
1-50 of 110