|
| 1 | + |
| 2 | +* API Changes |
| 3 | + * PAPE (Provider Authentication Policy Extension) module |
| 4 | + * Updated extension for specification draft 2 |
| 5 | + * PAPE::Request::from_success_response returns nil if PAPE |
| 6 | + response arguments were not signed |
| 7 | + * Added functions to generate request/response HTML forms with |
| 8 | + auto-submission javascript |
| 9 | + * Consumer (relying party) API: |
| 10 | + Auth_OpenID_AuthRequest::htmlMarkup |
| 11 | + * Server API: Auth_OpenID_OpenIDResponse::toHTML |
| 12 | + * Removed Rails login generator |
| 13 | + * SReg::Response::from_success_response returns nil when no signed |
| 14 | + arguments were found |
| 15 | + |
| 16 | +* New Features |
| 17 | + * Fetchers now only read/request first megabyte of response |
| 18 | + |
| 19 | +* Bug fixes |
| 20 | + * NOT NULL constraints to tables created by ActiveRecordStore |
| 21 | + * check_authentication requests: copy entire response, not just |
| 22 | + signed fields. Fixes missing namespace in check_authentication |
| 23 | + requests |
| 24 | + * OpenID 1 association requests no longer explicitly set |
| 25 | + no-encryption session type |
| 26 | + * Improved HTML parsing |
| 27 | + * AssociationRequest::answer: include session_type in |
| 28 | + no-encryption assoc responses |
| 29 | + * normalize return_to URL before performing return_to verification |
| 30 | + * OpenID::Consumer::IdResHandler.verify_discovery_results_openid1: |
| 31 | + fall back to OpenID 1.0 type if 1.1 endpoint cannot be found |
| 32 | + * StandardFetcher now includes a timeout setting |
| 33 | + * Handle blank content types in |
| 34 | + OpenID::Yadis::DiscoveryResult.where_is_yadis? |
| 35 | + * Properly convert timestamps to ints before storing in DB, and vise |
| 36 | + versa |
0 commit comments