Skip to content

Update from upstream repo jumbojett/OpenID-Connect-PHP@master #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 333 commits into
base: master
Choose a base branch
from
Open

Update from upstream repo jumbojett/OpenID-Connect-PHP@master #2

wants to merge 333 commits into from

Conversation

backstroke-bot
Copy link

Hello!

The upstream repository jumbojett/OpenID-Connect-PHP@master has some new changes that aren't in this fork. So, here they are, ready to be merged! 🎉

If this pull request can be merged without conflict, you can publish your software with these new changes. Otherwise, fix any merge conflicts by clicking the Resolve Conflicts button.

If you like Backstroke, consider donating to help us pay for infrastructure here. Backstroke is a completely open source project that's free to use, but we survive on sponsorships and donations. Thanks for your support! Help out Backstroke.

Created by Backstroke (I'm a bot!)

jumbojett and others added 30 commits April 15, 2019 05:35
@jumbojett
Update CHANGELOG.md
190482b
@jumbojett
Merge pull request #158 from DeepDiver1975/bugfix/enc_type
9c3a20a 
Fix $this->$enc-type to $this->enc-type
@jumbojett
Update CHANGELOG.md
6f23fbb
@DeepDiver1975
Add OAuth 2.0 Token Revocation - rfc7009
2277717
@jumbojett
Merge pull request #160 from DeepDiver1975/feature/rfc7009
54368a5 
Add OAuth 2.0 Token Revocation - rfc7009
added issuer validator
62d557c
@jumbojett
Merge pull request #166 from findus/custom-issuer-validator
bd272a4 
added issuer validator
Added strict type comparisons
b5a0666
@jumbojett
Merge pull request #167 from Hackmanit/master
46d19ad 
[Security Fix] Added strict type comparisons
@jumbojett
Update CHANGELOG.md
8af5437
@mcouillard
getRedirectURL avoid PHP 7.1+ warning on reset()
e03638e 
reset() desires a variable
@DeepDiver1975
Adding signing algorithm PS256
27039ea
@jumbojett
Merge pull request #180 from DeepDiver1975/feature/add-PS256
bac312c 
Adding signing algorithm PS256
@phil-davis
move phpunit to require-dev
6dd8d00
@jumbojett
Merge pull request #181 from phil-davis/phpunit-is-dev-dependency
4a93a98 
move phpunit to require-dev
added getters for parameters that already have public setters
06cf1b2
made some members and methods protected instead of private
db00da4
added getter for issuer validator
dc355ad
added getter for leeway
063ef22
@brunopenso
Update OpenIDConnectClient.php
4beca0c 
Check status code of requestUserInfo
@jumbojett
Merge pull request #186 from brunopenso/master
b1de8e2 
Check http staus of request user info
@jumbojett
Update CHANGELOG.md
3d868b7
@stijnster
php 7.4 deprecates array_key_exists on objects, use property_exists i…
1549834 
…nstead
@stijnster
add changelog entry
cb07ebf
@bobvandevijver
URL encode basic auth user and password
5806cf3 
URL encode basic auth user and password according to https://tools.ietf.org/html/rfc6749#section-2.3.1
@bobvandevijver
Updated changelog about url encoded client id/secret
3950e13
@bobvandevijver
Fixed other basic auth authentication client id/secret encoding
a50eb93
@jumbojett
Merge pull request #192 from bobvandevijver/patch-1
62573f5 
URL encode basic auth user and password
@jumbojett
Happy new year 🎉
970d8a3
@jumbojett
Cleaning up documentation
540c88c
ricklambrechts and others added 30 commits July 26, 2023 13:58
@ricklambrechts
fix: Update well known config value function response types (#376)
c146b71 
* Fix: Update well known config value function response types

* Update CHANGELOG

* Update wellknown typing array to be string[]

* Update wellknown typing null can be default but would never be returned
@mig5
Set the User-Agent regardless of GET or POST (#382)
5d69bcf
@DeepDiver1975
release: 1.0.0 (#402)
7be38be
@ricklambrechts
chore: Update ci to support php 8.3 and add dependabot (#407)
4e32595 
* Add php 8.3 to test matrix in github actions and updated actions

* Updated readme PHP requirement to PHP 7.0+

* Added dependabot for GitHub Actions
@jasongill
docs: Update README.md to correct addScope parameter type in 1.0.0 (#405
73af840 
)

* Update README.md

Correct the calls to addScope which now requires an array, not a string

* Replaced usage of array() with []

* remove redundant addScope call from documentation
@dependabot
chore(deps): bump actions/checkout from 2 to 4 (#416)
6ac3ed4 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v2...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump actions/cache from 3 to 4 (#417)
f5fadf1 
Bumps [actions/cache](https://github.com/actions/cache) from 3 to 4.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@v3...v4)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@timsmid
fix: Cast SERVER_PORT to integer (#404)
e31ec33
@ricklambrechts
fix: Check if subject is equal to subject of id token when verifying …
0c8f54d 
…JWT claims (#406)

* Check if subject is equal to subject of id token when verifying JWT claims

* Add fake sub in test claims
@ricklambrechts
fix: Removed duplicate check on jwks_uri and only check if jwks_uri e…
1a468a4 
…xists when needed (#373)

* Removed duplicate check on jwks_uri

* Update CHANGELOG

* Only check jwks_uri when needed

* Update changelog
@DeepDiver1975
fix: method signatures after 1.0 release (#427)
1e85443
@DeepDiver1975
fix: handle JWT decode of non JWT tokens (#428)
0509be8
@DeepDiver1975
chore: enable dependabot for composer (#429)
0fbf8f2
@DeepDiver1975
ci: run GitHub workflows on pull requests and pushes to master (#431)
036530b
@artemboyko43
chore(deps): update phpseclib/phpseclib requirement from ~3.0 to ^3.0.7
e316397 
* Update phpseclib/phpseclib to minimum 2.0.31 or 3.0.7

* Update composer.json
@dependabot @DeepDiver1975
chore(deps-dev): update yoast/phpunit-polyfills requirement from ^1.0…
2256030 
… to ^2.0 (#430)

* chore(deps-dev): update yoast/phpunit-polyfills requirement

Updates the requirements on [yoast/phpunit-polyfills](https://github.com/Yoast/PHPUnit-Polyfills) to permit the latest version.
- [Release notes](https://github.com/Yoast/PHPUnit-Polyfills/releases)
- [Changelog](https://github.com/Yoast/PHPUnit-Polyfills/blob/2.x/CHANGELOG.md)
- [Commits](Yoast/PHPUnit-Polyfills@1.0.0...2.0.1)

---
updated-dependencies:
- dependency-name: yoast/phpunit-polyfills
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix: remove --verbose from phpunit

* fix: force usage of phpunit < 10

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Thomas Müller <[email protected]>
@DeepDiver1975
fix: protected $responseCode to allow proper overloading of fetchURL() (
765ddbd 
#433)
@DeepDiver1975
release: v1.0.1 (#432)
7569311
@DeepDiver1975
fix: bring back #404 (#437)
db1ed8b
@DeepDiver1975
test: add unit test for SERVER_PORT type cast (#438)
a5994e7
@DeepDiver1975
release: v1.0.2 (#439)
9af21bd
@osnard
Fix TypeError in verifyJWTClaims (#442)
60919af 
... when ClientID does not match

Co-authored-by: Robert Vogel <[email protected]>
@DeepDiver1975
test: unit tests for verifyJWTClaims and different aud claims (#443)
97adbce
@ricklambrechts
fix: protected responseContentType to allow overloading of fetchUrl f…
f7c91b9 
…unction (#446)
@reedy
Create .gitattributes (#459)
dc0ef65
@gkreitz
Stop adding ?schema=openid to userinfo endpoint URL. (#449)
808027b
@marksgerasimovs
fix: php 8.4 deprecation warning about nullable parameters (#462)
6496752 
* Fix PHP 8.4 deprecation: Implicitly marking parameter as nullable is deprecated

* fix php version in build.yml and README.md
@SamuelWei
feat: verify existence of subject when verifying JWT (#474)
7f27bab 
* Add check to verify sub is set

* Update CHANGELOG.md

* Add tests
@SamuelWei
feat: add setLeeway (#483)
0ee87cc 
* Add setLeeway

* Update changelog
@SamuelWei
fix: verfify exp claim on backchannel logout token (#482)
bc719cc 
* Fix missing exp validation on backchannel logout

* Update changelog
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.