search

Apicurio / apicurio-registry

An API/Schema registry - stores APIs and Schemas.
https://www.apicur.io/registry/
Apache License 2.0
558 stars 250 forks source link

Bump the backport-dependencies group across 1 directory with 49 updates #4786

Closed dependabot[bot] closed 2 weeks ago

dependabot[bot] commented 2 weeks ago

Bumps the backport-dependencies group with 49 updates in the / directory:

Package From To
io.apicurio:apicurio-common-rest-client-vertx 0.1.14.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-jdk 0.1.18.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-common 0.1.18.Final 0.1.18.Final
io.quarkus:quarkus-bom 3.2.12.Final 3.11.2
io.quarkus:quarkus-test-common 3.2.12.Final 3.11.2
io.quarkus:quarkus-maven-plugin 2.7.5.Final 3.11.2
org.apache.kafka:connect-api 3.6.1 7.6.1-ce
org.apache.kafka:connect-json 2.4.0 7.6.1-ce
org.apache.kafka:kafka-clients 2.8.1 7.6.1-ce
io.vertx:vertx-json-schema 4.5.7 4.5.8
com.google.protobuf:protobuf-java 3.19.4 4.27.1
com.google.protobuf:protobuf-java-util 3.19.4 4.27.1
com.google.api.grpc:proto-google-common-protos 2.7.4 2.40.0
commons-codec:commons-codec 1.16.1 1.17.0
com.graphql-java:graphql-java 22.0 22.1
com.fasterxml.jackson.datatype:jackson-datatype-json-org 2.15.2 2.17.1
com.fasterxml.jackson.dataformat:jackson-dataformat-yaml 2.15.2 2.17.1
io.strimzi:kafka-oauth-client 0.8.1 0.15.0
com.google.guava:guava 33.1.0-jre 33.2.1-jre
io.confluent:kafka-avro-serializer 5.5.1 7.6.1
io.confluent:kafka-protobuf-serializer 7.6.1 7.6.1
io.confluent:kafka-json-schema-serializer 7.6.1 7.6.1
io.confluent:kafka-connect-avro-converter 7.6.1 7.6.1
org.scala-lang:scala-library 2.13.13 2.13.14
org.testcontainers:redpanda 1.19.7 1.19.8
com.puppycrawl.tools:checkstyle 10.15.0 10.17.0
org.codehaus.mojo:properties-maven-plugin 1.0.0 1.2.1
org.apache.maven.plugins:maven-compiler-plugin 3.8.1 3.13.0
org.apache.maven.plugins:maven-source-plugin 3.2.1 3.3.1
org.apache.maven.plugins:maven-javadoc-plugin 3.2.0 3.7.0
org.apache.maven.plugins:maven-failsafe-plugin 2.22.2 3.3.0
org.apache.maven.plugins:maven-surefire-plugin 2.22.2 3.3.0
org.apache.maven.plugins:maven-deploy-plugin 2.8.2 3.1.2
org.apache.maven.plugins:maven-jar-plugin 3.2.0 3.4.1
org.apache.maven.plugins:maven-checkstyle-plugin 3.3.1 3.4.0
org.apache.maven.plugins:maven-dependency-plugin 3.1.2 3.7.0
org.apache.maven.plugins:maven-assembly-plugin 3.3.0 3.7.1
org.apache.maven.plugins:maven-resources-plugin 3.2.0 3.3.1
org.apache.maven.plugins:maven-clean-plugin 3.1.0 3.3.2
net.alchim31.maven:scala-maven-plugin 4.9.0 4.9.1
kr.motd.maven:os-maven-plugin 1.6.2 1.7.1
org.slf4j:slf4j-api 1.7.25 2.0.13
org.slf4j:slf4j-simple 1.7.25 2.0.13
org.slf4j:slf4j-jdk14 1.7.25 2.0.13
org.apache.maven.plugins:maven-plugin-plugin 3.12.0 3.13.1
io.quarkus:quarkus-universe-bom 2.7.5.Final 3.11.2
io.apicurio:apicurio-registry-schema-validation-jsonschema 0.0.4.Final 0.0.7
io.apicurio:apicurio-registry-schema-validation-protobuf 0.0.4.Final 0.0.7
org.everit.json:org.everit.json.schema 1.3.0 1.5.1

Updates io.apicurio:apicurio-common-rest-client-vertx from 0.1.14.Final to 0.1.18.Final

Commits
  • d0eacd5 Automated version update: 0.1.18.Final
  • 7ea5987 Merge pull request #154 from Apicurio/add-scope
  • e492479 Add scope to client credentials grant
  • d5ad147 Automated version update: 0.1.18-SNAPSHOT
  • 28a41cd Automated version update: 0.1.17.Final
  • d87b066 Merge pull request #147 from Apicurio/do-not-share-headers
  • d2153e1 Do not share headers between client instances
  • 59a99c9 Automated version update: 0.1.17-SNAPSHOT
  • 299eaeb Automated version update: 0.1.16.Final
  • 576eab5 Merge pull request #146 from Apicurio/fix-vertx-client-date-handling
  • Additional commits viewable in compare view


Updates io.apicurio:apicurio-common-rest-client-jdk from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.apicurio:apicurio-common-rest-client-common from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.quarkus:quarkus-bom from 3.2.12.Final to 3.11.2

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.11.2

Complete changelog

  • #40164 - Gradle quarkusDev fails with usage analytics enabled
  • #40502 - Remote development mode: access denied on /deployments files
  • #40536 - WebSockets Next: close the connection if the security identity has expired
  • #40648 - WebSockets Next: provide strategies to process unhandled failures
  • #40655 - WebSockets Next: provide strategies to process unhandled failures
  • #40657 - Prevent abort because of a throwable
  • #40848 - devmode breaks when updating pom.xml
  • #40852 - @CacheResult with method returning Uni makes cache exceed its maximum size
  • #40857 - WebSocket NEXT: automatically close connection when OIDC extension provides SecurityIdentity and token expires
  • #40914 - Clarify kafka commit strategy "latest" in documentation
  • #40916 - Improve OIDC warning when a session encryption key is generated
  • #40929 - open classes/files listed in devui in IDE
  • #40978 - Kafka commit strategy: clarify risk of message loss on latest
  • #40981 - Params need double URL-safe-encoding for use with WebSocketConnector
  • #40984 - Replace 'bare mortal' with a more idiomatic English expression
  • #40987 - NamedQuery inside repository
  • #40989 - Config doc - Don't enforce the height
  • #40991 - Misspelled url for an webjar resource thows exception instead of 404
  • #40992 - WebSockets Next client: encode path param values automatically
  • #41007 - Make sure quarkusXXXCompileOnlyConfiguration extends from platform configuration
  • #41008 - Add docs note about writing extension with Java and Maven
  • #41014 - Fix open-in-ide
  • #41018 - Fix invalid webjar to show 404
  • #41021 - Docs: Added missing annotation parameter name
  • #41023 - [3.11] Revert "Improve loading of classes in RunnerClassLoader"
  • #41025 - WebSocket Next Server-Side Streaming cancelation
  • #41029 - Remote Development Mode docker permissions
  • #41036 - Fix log warning when application port is already used
  • #41043 - Make sure we transmit the actual debug port to next dev mode run
  • #41044 - WebSockets Next: cancel returned Multi if the connection is closed
  • #41046 - Fix Asciidoc callouts in "Deploying to Kubernetes" documentation
  • #41049 - Qute: fix regression for optimized generated value resolvers
  • #41053 - Docs: clarify named queries for Panache
  • #41054 - Fix RESTEasy Classic GZIP max input in native mode
  • #41060 - Invalid encoding of '?' in query parameter values by Encode.encodeQueryParam
  • #41062 - Fix encoding of '?' in query parameter values by Encode.encodeQueryParam(..)
  • #41064 - Use latest SmallRye Context Propagation
  • #41083 - Bump up quarkus-build-caching-extension to 1.2
  • #41090 - Update Agroal exception message in docs
  • #41097 - Changing Accept Header in PreMatching filter isn't considered by MessageBodyWriter
  • #41106 - Delegate to the correct method in TransactionScopedStatelessSession#fetch
  • #41111 - Take MediaType set in pre-match filter into when returning Response
  • #41113 - Initialization Tasks failing
  • #41117 - Fix NPE when QUARKUS_INIT_AND_EXIT is used

3.11.1

... (truncated)

Commits
  • 9e64ec2 [RELEASE] - Bump version to 3.11.2
  • 912ee1a Merge pull request #41133 from gsmet/3.11.2-backports-2
  • bf5418d Remote Development Mode docker permissions
  • ed3b56e Fix NPE when QUARKUS_INIT_AND_EXIT is used
  • 561a153 Update vertx mutiny test due to latest SR/CP changes
  • b37b2c6 Use latest SR/CP
  • 84e2402 Take MediaType set in pre-match filter into when returning Response
  • 44c6029 Delegate to the correct method in TransactionScopedStatelessSession#fetch
  • 8169a80 WebSockets Next: cancel returned Multi if the connection is closed
  • 8ea5fff Merge pull request #41093 from gsmet/3.11.2-backports-1
  • Additional commits viewable in compare view


Updates io.quarkus:quarkus-test-common from 3.2.12.Final to 3.11.2

Updates io.quarkus:quarkus-maven-plugin from 2.7.5.Final to 3.11.2

Updates org.apache.kafka:connect-api from 3.6.1 to 7.6.1-ce

Updates org.apache.kafka:connect-json from 2.4.0 to 7.6.1-ce

Updates org.apache.kafka:kafka-clients from 2.8.1 to 7.6.1-ce

Updates io.vertx:vertx-json-schema from 4.5.7 to 4.5.8

Updates com.google.protobuf:protobuf-java from 3.19.4 to 4.27.1

Release notes

Sourced from com.google.protobuf:protobuf-java's releases.

Protocol Buffers v3.20.3

Java

  • Refactoring java full runtime to reuse sub-message builders and prepare to migrate parsing logic from parse constructor to builder.
  • Move proto wireformat parsing functionality from the private "parsing constructor" to the Builder class.
  • Change the Lite runtime to prefer merging from the wireformat into mutable messages rather than building up a new immutable object before merging. This way results in fewer allocations and copy operations.
  • Make message-type extensions merge from wire-format instead of building up instances and merging afterwards. This has much better performance.
  • Fix TextFormat parser to build up recurring (but supposedly not repeated) sub-messages directly from text rather than building a new sub-message and merging the fully formed message into the existing field.
  • This release addresses a Security Advisory for Java users

Protocol Buffers v3.20.2

C++

Protocol Buffers v3.20.1

PHP

  • Fix building packaged PHP extension (#9727)
  • Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)

Ruby

  • Disable the aarch64 build on macOS until it can be fixed. (#9816)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.1-rc1

PHP

  • Fix building packaged PHP extension (#9727)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.0

2022-03-25 version 3.20.0 (C++/Java/Python/PHP/Objective-C/C#/Ruby/JavaScript)

Ruby

  • Dropped Ruby 2.3 and 2.4 support for CI and releases. (#9311)
  • Added Ruby 3.1 support for CI and releases (#9566).
  • Message.decode/encode: Add recursion_limit option (#9218/#9486)
  • Allocate with xrealloc()/xfree() so message allocation is visible to the Ruby GC. In certain tests this leads to much lower memory usage due to more frequent GC runs (#9586).
  • Fix conversion of singleton classes in Ruby (#9342)

... (truncated)

Commits


Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.api.grpc:proto-google-common-protos from 2.7.4 to 2.40.0

Release notes

Sourced from com.google.api.grpc:proto-google-common-protos's releases.

v2.40.0

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

v2.39.0

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Changelog

Sourced from com.google.api.grpc:proto-google-common-protos's changelog.

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Commits


Updates commons-codec:commons-codec from 1.16.1 to 1.17.0

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.0 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

New features

  •         Add override org.apache.commons.codec.language.bm.Rule.PhonemeExpr.size(). Thanks to Gary Gregory.

  •         Add support for Base64 custom alphabets [#266](https://github.com/apache/commons-codec/issues/266). Thanks to Chris Kocel, Gary Gregory.

  •         Add Base64.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base32.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base64 support for a custom padding byte (like Base32). Thanks to Gary Gregory.

Fixed Bugs

  • CODEC-320: Wrong output of DoubleMetaphone in 1.16.1. Thanks to Martin Frydl, Gary Gregory.
  •         Optimize memory allocation in PhoneticEngine. Thanks to Gary Gregory.

  •         BCodec and QCodec encode() methods throw UnsupportedCharsetException instead of EncoderException. Thanks to Gary Gregory.

  •         Set Javadoc link to latest Java API LTS version. Thanks to Gary Gregory.

  •         Base32 constructor fails-fast with a NullPointerException if the custom alphabet array is null. Thanks to Gary Gregory.

  •         Base32 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of a custom alphabet array. Thanks to Gary Gregory.

Changes

  •         Bump org.apache.commons:commons-parent from 66 to 69 [#250](https://github.com/apache/commons-codec/issues/250), [#261](https://github.com/apache/commons-codec/issues/261). Thanks to Dependabot, Gary Gregory.

  •         Bump commons-io:commons-io from 2.15.1 to 2.16.1 [#258](https://github.com/apache/commons-codec/issues/258), [#265](https://github.com/apache/commons-codec/issues/265). Thanks to Dependabot, Gary Gregory.

For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits
  • 5d809fe Prepare for the next release candidate
  • 9a59c1c Prepare for the next release candidate
  • 5f0cfd4 Longer lines
  • 8714b5f Remove dead comment
  • c56b956 Bullet-proof internals
  • d2215d5 Base32 constructor fails-fast with a NullPointerException if the custom
  • fcc70e6 Base32 constructor makes a defensive copy of the line separator
  • ebe805a Base64 constructor makes a defensive copy of a custom alphabet array
  • 5504333 Better exception message
  • c6c5f11 Base64 constructor makes a better defensive copy of the line separator
  • Additional commits viewable in compare view


Updates com.graphql-java:graphql-java from 22.0 to 22.1

Release notes

Sourced from com.graphql-java:graphql-java's releases.

22.1

This is a bugfix release. There are no breaking changes in this release, however if you use Kotlin, please note some nullability changes were made with this release.

Key changes include:

Thanks to everyone who contributed to this release!

What's Changed

New Contributors

Full Changelog: https://github.com/graphql-java/graphql-java/compare/v22.0...v22.1

Commits
  • f93fdac Merge pull request #3471 from graphql-java/schema-extension-not-printed
  • 53f22c5 Merge pull request #3579 from graphql-java/dont-overwrite-default-data-fetche...
  • f3253b4 Merge pull request #3582 from Salzian/add-nullability-annotations-in-data-fet...
  • 58f82d2 Merge pull request #3601 from graphql-java/dependabot/gradle/com.google.code....
  • d50ed88 Bump com.google.code.gson:gson from 2.10.1 to 2.11.0
  • 647e098 Merge pull request #3602 from graphql-java/dependabot/gradle/org.eclipse.jett...
  • 6ba529f Merge pull request #3603 from graphql-java/dependabot/github_actions/google-g...
  • ff71316 Bump google-github-actions/auth from 2.1.2 to 2.1.3
  • bbb1898 Bump org.eclipse.jetty:jetty-server from 11.0.20 to 11.0.21
  • a9e47b1 Merge pull request #3600 from graphql-java/release-prep
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.datatype:jackson-datatype-json-org from 2.15.2 to 2.17.1

Commits
  • e3d1511 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.1
  • f5931cb Prepare for 2.17.1 release
  • c284c4f Back to snapshot dep
  • 4a82536 [maven-release-plugin] prepare for next development iteration
  • 1db4146 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.0
  • 2e215a4 Prepare for 2.17.0 release
  • 86423f4 Merge branch '2.16' into 2.17
  • 89976aa Back to snapshot dep
  • a7d9b85 [maven-release-plugin] prepare for next development iteration
  • fe24bf9 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.16.2
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates io.strimzi:kafka-oauth-client from 0.8.1 to 0.15.0

Release notes

Sourced from io.strimzi:kafka-oauth-client's releases.

0.15.0

Main Changes since 0.14.x

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by rfc7523 and rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

Fixed NullPointerException that occurred when OAuthKafkaPrincipalBuilder was used with Kerberos authentication

Fixed a user id extraction bug where oauth.fallback.username.prefix was ignored, and added oauth.username.prefix

A bug was introduced in 0.13.0 that resulted in oauth.fallback.username.prefix being ignored. That should now be fixed.

A new configuration option was added: oauth.username.prefix.

This allows for the consistent mapping of user ids into the same name space and may be needed to prevent name collisions.

Added support for SASL extension parameters

Added support for passing SASL extensions via OAuth configuration options, by using a prefix: oauth.sasl.extension.

If Kafka Broker uses some other custom OAUTHBEARER implementation, it may require SASL extensions options to be sent by the Kafka client.

... (truncated)

Changelog

Sourced from io.strimzi:kafka-oauth-client's changelog.

0.15.0

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by https://www.rfc-editor.org/rfc/rfc7523 and https://www.rfc-editor.org/rfc/rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

See PR 211

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

See PR 211

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

See PR 217

Fixed NullPointerException that occurred when OAuthKafkaPrincipalBuilder was used with Kerberos authentication

See PR 207

Fixed a user id extraction bug where oauth.fallb... _Description has been truncated_

apicurio-bot[bot] commented 2 weeks ago

Thank you for creating a pull request!

Pinging @jsenko to respond or triage.

dependabot[bot] commented 2 weeks ago

Superseded by #4802.