search

Apicurio / apicurio-registry

An API/Schema registry - stores APIs and Schemas.
https://www.apicur.io/registry/
Apache License 2.0
558 stars 250 forks source link

Bump the backport-dependencies group across 1 directory with 49 updates #4749

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 4 weeks ago

Bumps the backport-dependencies group with 49 updates in the / directory:

Package From To
io.apicurio:apicurio-common-rest-client-vertx 0.1.14.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-jdk 0.1.18.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-common 0.1.18.Final 0.1.18.Final
io.quarkus:quarkus-bom 3.2.12.Final 3.11.1
io.quarkus:quarkus-test-common 3.2.12.Final 3.11.1
io.quarkus:quarkus-maven-plugin 2.7.5.Final 3.11.1
org.apache.kafka:connect-api 3.6.1 7.6.1-ce
org.apache.kafka:connect-json 2.4.0 7.6.1-ce
org.apache.kafka:kafka-clients 2.8.1 7.6.1-ce
io.vertx:vertx-json-schema 4.5.7 4.5.8
com.google.protobuf:protobuf-java 3.19.4 4.27.1
com.google.protobuf:protobuf-java-util 3.19.4 4.27.1
com.google.api.grpc:proto-google-common-protos 2.7.4 2.40.0
commons-codec:commons-codec 1.16.1 1.17.0
com.graphql-java:graphql-java 22.0 22.1
com.fasterxml.jackson.datatype:jackson-datatype-json-org 2.15.2 2.17.1
com.fasterxml.jackson.dataformat:jackson-dataformat-yaml 2.15.2 2.17.1
io.strimzi:kafka-oauth-client 0.8.1 0.15.0
com.google.guava:guava 33.1.0-jre 33.2.1-jre
io.confluent:kafka-avro-serializer 5.5.1 7.6.1
io.confluent:kafka-protobuf-serializer 7.6.1 7.6.1
io.confluent:kafka-json-schema-serializer 7.6.1 7.6.1
io.confluent:kafka-connect-avro-converter 7.6.1 7.6.1
org.scala-lang:scala-library 2.13.13 2.13.14
org.testcontainers:redpanda 1.19.7 1.19.8
com.puppycrawl.tools:checkstyle 10.15.0 10.17.0
org.codehaus.mojo:properties-maven-plugin 1.0.0 1.2.1
org.apache.maven.plugins:maven-compiler-plugin 3.8.1 3.13.0
org.apache.maven.plugins:maven-source-plugin 3.2.1 3.3.1
org.apache.maven.plugins:maven-javadoc-plugin 3.2.0 3.7.0
org.apache.maven.plugins:maven-failsafe-plugin 2.22.2 3.2.5
org.apache.maven.plugins:maven-surefire-plugin 2.22.2 3.2.5
org.apache.maven.plugins:maven-deploy-plugin 2.8.2 3.1.2
org.apache.maven.plugins:maven-jar-plugin 3.2.0 3.4.1
org.apache.maven.plugins:maven-checkstyle-plugin 3.3.1 3.4.0
org.apache.maven.plugins:maven-dependency-plugin 3.1.2 3.6.1
org.apache.maven.plugins:maven-assembly-plugin 3.3.0 3.7.1
org.apache.maven.plugins:maven-resources-plugin 3.2.0 3.3.1
org.apache.maven.plugins:maven-clean-plugin 3.1.0 3.3.2
net.alchim31.maven:scala-maven-plugin 4.9.0 4.9.1
kr.motd.maven:os-maven-plugin 1.6.2 1.7.1
org.slf4j:slf4j-api 1.7.25 2.0.13
org.slf4j:slf4j-simple 1.7.25 2.0.13
org.slf4j:slf4j-jdk14 1.7.25 2.0.13
org.apache.maven.plugins:maven-plugin-plugin 3.12.0 3.13.1
io.quarkus:quarkus-universe-bom 2.7.5.Final 3.11.1
io.apicurio:apicurio-registry-schema-validation-jsonschema 0.0.4.Final 0.0.7
io.apicurio:apicurio-registry-schema-validation-protobuf 0.0.4.Final 0.0.7
org.everit.json:org.everit.json.schema 1.3.0 1.5.1

Updates io.apicurio:apicurio-common-rest-client-vertx from 0.1.14.Final to 0.1.18.Final

Commits
  • d0eacd5 Automated version update: 0.1.18.Final
  • 7ea5987 Merge pull request #154 from Apicurio/add-scope
  • e492479 Add scope to client credentials grant
  • d5ad147 Automated version update: 0.1.18-SNAPSHOT
  • 28a41cd Automated version update: 0.1.17.Final
  • d87b066 Merge pull request #147 from Apicurio/do-not-share-headers
  • d2153e1 Do not share headers between client instances
  • 59a99c9 Automated version update: 0.1.17-SNAPSHOT
  • 299eaeb Automated version update: 0.1.16.Final
  • 576eab5 Merge pull request #146 from Apicurio/fix-vertx-client-date-handling
  • Additional commits viewable in compare view


Updates io.apicurio:apicurio-common-rest-client-jdk from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.apicurio:apicurio-common-rest-client-common from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.quarkus:quarkus-bom from 3.2.12.Final to 3.11.1

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.11.1

Complete changelog

  • #40431 - Better exception when accessing two non-XA datasources in a transaction
  • #40536 - WebSockets Next: close the connection if the security identity has expired
  • #40753 - Podman on linux doc: prefix the remote socket path with unix://
  • #40759 - Bump resteasy.version from 6.2.8.Final to 6.2.9.Final
  • #40768 - Podman guide for Linux is incorrect
  • #40771 - Fix collapsing when there are several keys
  • #40779 - Bump Agroal from 2.3 to 2.4
  • #40793 - Fix javadoc for TransactionManagerBuildTimeConfig
  • #40797 - Revert "Bump jakarta.authorization:jakarta.authorization-api from 2.1.0 to 3.0.0"
  • #40800 - Trivial: Update matcher in component test test to catch single test case
  • #40802 - Control data used in path expression when running remote-dev
  • #40808 - Move allowUnsafeMultipleLastResources call to runtime init
  • #40822 - Improve @SecureField detection lookup exclusions
  • #40842 - getting-started: grammar: append->appended
  • #40855 - Bump Hibernate Reactive to 2.3.1.Final
  • #40864 - Move hibernate-orm/deployment devmode tests to a separate surefire execution
  • #40874 - quarkus.package.decompiler warning in quarkus 3.10+
  • #40876 - Fix error in fix for decompiler config
  • #40886 - Regression: Unexpected DisabledOidcClientException
  • #40888 - Use right decompiler prop name in docs
  • #40894 - Fix a disabled OidcClient REST client issue
  • #40898 - Fix onError for Dev UI streaming
  • #40902 - Correct broken markup in the security-customization.adoc
  • #40910 - Bump com.nimbusds:nimbus-jose-jwt from 9.39.1 to 9.39.3
  • #40936 - Polish Infinispan Dev Service logging
  • #40956 - Fix properties still using Hibernate ORM 6.4 / Hibernate Search 7.0 in POMs
  • #40967 - Fix Typo In Open Telemetry Documentation

3.11.0

Major changes

  • #40534 - WebSockets Next: initial version of security integration
  • #40600 - Introduce OidcRedirectFilter

Complete changelog

  • #40312 - WebSockets Next: security integration
  • #40534 - WebSockets Next: initial version of security integration
  • #40562 - Support OIDC Redirect filters
  • #40600 - Introduce OidcRedirectFilter
  • #40656 - Dev UI: update build metrics data after live reload
  • #40661 - QuarkusUnitTest: clear test method invokers to avoid QuarkusCL leaks
  • #40669 - Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0
  • #40682 - Allow to asynchronously notify extensions of no-restart changes
  • #40690 - Correct JavaDoc example
  • #40706 - Improve documentation about @RegisterForReflection

... (truncated)

Commits
  • db39c2c [RELEASE] - Bump version to 3.11.1
  • 921d709 Merge pull request #40973 from gsmet/3.11.1-backports-1
  • c912b0c Update opentelemetry.adoc
  • 9987885 Fix version of Hibernate ORM/Search in documentation
  • 2a92c82 Use Hibernate ORM Jpamodelgen 6.5 for Panache static metamodel
  • ed83732 Support annotationProcessorPathsUseDepMgmt in quarkus:dev
  • e7c7ba0 Remove useless logging in InfinispanDevServiceProcessor
  • 9bee30d Move Infinispan DevService logging
  • d0a4e49 Bump com.nimbusds:nimbus-jose-jwt from 9.39.1 to 9.39.3
  • 898f93a Fix a disabled OidcClient REST client issue
  • Additional commits viewable in compare view


Updates io.quarkus:quarkus-test-common from 3.2.12.Final to 3.11.1

Updates io.quarkus:quarkus-maven-plugin from 2.7.5.Final to 3.11.1

Updates org.apache.kafka:connect-api from 3.6.1 to 7.6.1-ce

Updates org.apache.kafka:connect-json from 2.4.0 to 7.6.1-ce

Updates org.apache.kafka:kafka-clients from 2.8.1 to 7.6.1-ce

Updates io.vertx:vertx-json-schema from 4.5.7 to 4.5.8

Updates com.google.protobuf:protobuf-java from 3.19.4 to 4.27.1

Release notes

Sourced from com.google.protobuf:protobuf-java's releases.

Protocol Buffers v3.20.3

Java

  • Refactoring java full runtime to reuse sub-message builders and prepare to migrate parsing logic from parse constructor to builder.
  • Move proto wireformat parsing functionality from the private "parsing constructor" to the Builder class.
  • Change the Lite runtime to prefer merging from the wireformat into mutable messages rather than building up a new immutable object before merging. This way results in fewer allocations and copy operations.
  • Make message-type extensions merge from wire-format instead of building up instances and merging afterwards. This has much better performance.
  • Fix TextFormat parser to build up recurring (but supposedly not repeated) sub-messages directly from text rather than building a new sub-message and merging the fully formed message into the existing field.
  • This release addresses a Security Advisory for Java users

Protocol Buffers v3.20.2

C++

Protocol Buffers v3.20.1

PHP

  • Fix building packaged PHP extension (#9727)
  • Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)

Ruby

  • Disable the aarch64 build on macOS until it can be fixed. (#9816)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.1-rc1

PHP

  • Fix building packaged PHP extension (#9727)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.0

2022-03-25 version 3.20.0 (C++/Java/Python/PHP/Objective-C/C#/Ruby/JavaScript)

Ruby

  • Dropped Ruby 2.3 and 2.4 support for CI and releases. (#9311)
  • Added Ruby 3.1 support for CI and releases (#9566).
  • Message.decode/encode: Add recursion_limit option (#9218/#9486)
  • Allocate with xrealloc()/xfree() so message allocation is visible to the Ruby GC. In certain tests this leads to much lower memory usage due to more frequent GC runs (#9586).
  • Fix conversion of singleton classes in Ruby (#9342)

... (truncated)

Commits


Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.api.grpc:proto-google-common-protos from 2.7.4 to 2.40.0

Release notes

Sourced from com.google.api.grpc:proto-google-common-protos's releases.

v2.40.0

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

v2.39.0

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Changelog

Sourced from com.google.api.grpc:proto-google-common-protos's changelog.

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Commits


Updates commons-codec:commons-codec from 1.16.1 to 1.17.0

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.0 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

New features

  •         Add override org.apache.commons.codec.language.bm.Rule.PhonemeExpr.size(). Thanks to Gary Gregory.

  •         Add support for Base64 custom alphabets [#266](https://github.com/apache/commons-codec/issues/266). Thanks to Chris Kocel, Gary Gregory.

  •         Add Base64.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base32.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base64 support for a custom padding byte (like Base32). Thanks to Gary Gregory.

Fixed Bugs

  • CODEC-320: Wrong output of DoubleMetaphone in 1.16.1. Thanks to Martin Frydl, Gary Gregory.
  •         Optimize memory allocation in PhoneticEngine. Thanks to Gary Gregory.

  •         BCodec and QCodec encode() methods throw UnsupportedCharsetException instead of EncoderException. Thanks to Gary Gregory.

  •         Set Javadoc link to latest Java API LTS version. Thanks to Gary Gregory.

  •         Base32 constructor fails-fast with a NullPointerException if the custom alphabet array is null. Thanks to Gary Gregory.

  •         Base32 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of a custom alphabet array. Thanks to Gary Gregory.

Changes

  •         Bump org.apache.commons:commons-parent from 66 to 69 [#250](https://github.com/apache/commons-codec/issues/250), [#261](https://github.com/apache/commons-codec/issues/261). Thanks to Dependabot, Gary Gregory.

  •         Bump commons-io:commons-io from 2.15.1 to 2.16.1 [#258](https://github.com/apache/commons-codec/issues/258), [#265](https://github.com/apache/commons-codec/issues/265). Thanks to Dependabot, Gary Gregory.

For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits
  • 5d809fe Prepare for the next release candidate
  • 9a59c1c Prepare for the next release candidate
  • 5f0cfd4 Longer lines
  • 8714b5f Remove dead comment
  • c56b956 Bullet-proof internals
  • d2215d5 Base32 constructor fails-fast with a NullPointerException if the custom
  • fcc70e6 Base32 constructor makes a defensive copy of the line separator
  • ebe805a Base64 constructor makes a defensive copy of a custom alphabet array
  • 5504333 Better exception message
  • c6c5f11 Base64 constructor makes a better defensive copy of the line separator
  • Additional commits viewable in compare view


Updates com.graphql-java:graphql-java from 22.0 to 22.1

Release notes

Sourced from com.graphql-java:graphql-java's releases.

22.1

This is a bugfix release. There are no breaking changes in this release.

Key changes include:

  • Fix to add field fetching method #3571
  • Add validation rule for @deprecated on required arguments and input object fields #3591

Thanks to everyone who contributed to this release!

What's Changed

New Contributors

Full Changelog: https://github.com/graphql-java/graphql-java/compare/v22.0...v22.1

Commits
  • f93fdac Merge pull request #3471 from graphql-java/schema-extension-not-printed
  • 53f22c5 Merge pull request #3579 from graphql-java/dont-overwrite-default-data-fetche...
  • f3253b4 Merge pull request #3582 from Salzian/add-nullability-annotations-in-data-fet...
  • 58f82d2 Merge pull request #3601 from graphql-java/dependabot/gradle/com.google.code....
  • d50ed88 Bump com.google.code.gson:gson from 2.10.1 to 2.11.0
  • 647e098 Merge pull request #3602 from graphql-java/dependabot/gradle/org.eclipse.jett...
  • 6ba529f Merge pull request #3603 from graphql-java/dependabot/github_actions/google-g...
  • ff71316 Bump google-github-actions/auth from 2.1.2 to 2.1.3
  • bbb1898 Bump org.eclipse.jetty:jetty-server from 11.0.20 to 11.0.21
  • a9e47b1 Merge pull request #3600 from graphql-java/release-prep
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.datatype:jackson-datatype-json-org from 2.15.2 to 2.17.1

Commits
  • e3d1511 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.1
  • f5931cb Prepare for 2.17.1 release
  • c284c4f Back to snapshot dep
  • 4a82536 [maven-release-plugin] prepare for next development iteration
  • 1db4146 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.0
  • 2e215a4 Prepare for 2.17.0 release
  • 86423f4 Merge branch '2.16' into 2.17
  • 89976aa Back to snapshot dep
  • a7d9b85 [maven-release-plugin] prepare for next development iteration
  • fe24bf9 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.16.2
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates io.strimzi:kafka-oauth-client from 0.8.1 to 0.15.0

Release notes

Sourced from io.strimzi:kafka-oauth-client's releases.

0.15.0

Main Changes since 0.14.x

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by rfc7523 and rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

Fixed NullPointerException that occurred when OAuthKafkaPrincipalBuilder was used with Kerberos authentication

Fixed a user id extraction bug where oauth.fallback.username.prefix was ignored, and added oauth.username.prefix

A bug was introduced in 0.13.0 that resulted in oauth.fallback.username.prefix being ignored. That should now be fixed.

A new configuration option was added: oauth.username.prefix.

This allows for the consistent mapping of user ids into the same name space and may be needed to prevent name collisions.

Added support for SASL extension parameters

Added support for passing SASL extensions via OAuth configuration options, by using a prefix: oauth.sasl.extension.

If Kafka Broker uses some other custom OAUTHBEARER implementation, it may require SASL extensions options to be sent by the Kafka client.

... (truncated)

Changelog

Sourced from io.strimzi:kafka-oauth-client's changelog.

0.15.0

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by https://www.rfc-editor.org/rfc/rfc7523 and https://www.rfc-editor.org/rfc/rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

See PR 211

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

See PR 211

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

See PR 217

Fixed NullPointerException that occurred when OAuthKafkaPrincipalBuilder was used with Kerberos authentication

See PR 207

Fixed a user id extraction bug where oauth.fallback.username.prefix was ignored, and added oauth.username.prefix

A bug was introduced in 0.13.0 that resulted in oauth.fallback.username.prefix being ignored. This PR fixes that.

A new configuration option is introduced: oauth.username.prefix.

... (truncated)

Commits
  • 58525f6 Prepare for 0.15.0 release
  • 49d6c29 Update RELEASE_NOTES.md
  • 229daee Add client support for SASL extensions (#231)
  • 10d3c0e Username extraction bug fixes and additions (#230)
  • 023d03f Update Spring Authorization Server example with latest lib... _Description has been truncated_
apicurio-bot[bot] commented 4 weeks ago

Thank you for creating a pull request!

Pinging @jsenko, @carlesarnal to respond or triage.

dependabot[bot] commented 3 weeks ago

Superseded by #4765.