search

Apicurio / apicurio-registry

An API/Schema registry - stores APIs and Schemas.
https://www.apicur.io/registry/
Apache License 2.0
554 stars 250 forks source link

Bump the backport-dependencies group across 1 directory with 49 updates #4804

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 week ago

Bumps the backport-dependencies group with 49 updates in the / directory:

Package From To
io.apicurio:apicurio-common-rest-client-vertx 0.1.14.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-jdk 0.1.18.Final 0.1.18.Final
io.apicurio:apicurio-common-rest-client-common 0.1.18.Final 0.1.18.Final
io.quarkus:quarkus-bom 3.2.12.Final 3.12.0
io.quarkus:quarkus-test-common 3.2.12.Final 3.12.0
io.quarkus:quarkus-maven-plugin 2.7.5.Final 3.12.0
org.apache.kafka:connect-api 3.6.1 7.6.1-ce
org.apache.kafka:connect-json 2.4.0 7.6.1-ce
org.apache.kafka:kafka-clients 2.8.1 7.6.1-ce
io.vertx:vertx-json-schema 4.5.7 4.5.8
com.google.protobuf:protobuf-java 3.19.4 4.27.1
com.google.protobuf:protobuf-java-util 3.19.4 4.27.1
com.google.api.grpc:proto-google-common-protos 2.7.4 2.40.0
commons-codec:commons-codec 1.16.1 1.17.0
com.graphql-java:graphql-java 22.0 22.1
com.fasterxml.jackson.datatype:jackson-datatype-json-org 2.15.2 2.17.1
com.fasterxml.jackson.dataformat:jackson-dataformat-yaml 2.15.2 2.17.1
io.strimzi:kafka-oauth-client 0.8.1 0.15.0
com.google.guava:guava 33.1.0-jre 33.2.1-jre
io.confluent:kafka-avro-serializer 5.5.1 7.6.1
io.confluent:kafka-protobuf-serializer 7.6.1 7.6.1
io.confluent:kafka-json-schema-serializer 7.6.1 7.6.1
io.confluent:kafka-connect-avro-converter 7.6.1 7.6.1
org.scala-lang:scala-library 2.13.13 2.13.14
org.testcontainers:redpanda 1.19.7 1.19.8
com.puppycrawl.tools:checkstyle 10.15.0 10.17.0
org.codehaus.mojo:properties-maven-plugin 1.0.0 1.2.1
org.apache.maven.plugins:maven-compiler-plugin 3.8.1 3.13.0
org.apache.maven.plugins:maven-source-plugin 3.2.1 3.3.1
org.apache.maven.plugins:maven-javadoc-plugin 3.2.0 3.7.0
org.apache.maven.plugins:maven-failsafe-plugin 2.22.2 3.3.0
org.apache.maven.plugins:maven-surefire-plugin 2.22.2 3.3.0
org.apache.maven.plugins:maven-deploy-plugin 2.8.2 3.1.2
org.apache.maven.plugins:maven-jar-plugin 3.2.0 3.4.2
org.apache.maven.plugins:maven-checkstyle-plugin 3.3.1 3.4.0
org.apache.maven.plugins:maven-dependency-plugin 3.1.2 3.7.0
org.apache.maven.plugins:maven-assembly-plugin 3.3.0 3.7.1
org.apache.maven.plugins:maven-resources-plugin 3.2.0 3.3.1
org.apache.maven.plugins:maven-clean-plugin 3.1.0 3.4.0
net.alchim31.maven:scala-maven-plugin 4.9.0 4.9.1
kr.motd.maven:os-maven-plugin 1.6.2 1.7.1
org.slf4j:slf4j-api 1.7.25 2.0.13
org.slf4j:slf4j-simple 1.7.25 2.0.13
org.slf4j:slf4j-jdk14 1.7.25 2.0.13
org.apache.maven.plugins:maven-plugin-plugin 3.12.0 3.13.1
io.quarkus:quarkus-universe-bom 2.7.5.Final 3.11.3
io.apicurio:apicurio-registry-schema-validation-jsonschema 0.0.4.Final 0.0.7
io.apicurio:apicurio-registry-schema-validation-protobuf 0.0.4.Final 0.0.7
org.everit.json:org.everit.json.schema 1.3.0 1.5.1

Updates io.apicurio:apicurio-common-rest-client-vertx from 0.1.14.Final to 0.1.18.Final

Commits
  • d0eacd5 Automated version update: 0.1.18.Final
  • 7ea5987 Merge pull request #154 from Apicurio/add-scope
  • e492479 Add scope to client credentials grant
  • d5ad147 Automated version update: 0.1.18-SNAPSHOT
  • 28a41cd Automated version update: 0.1.17.Final
  • d87b066 Merge pull request #147 from Apicurio/do-not-share-headers
  • d2153e1 Do not share headers between client instances
  • 59a99c9 Automated version update: 0.1.17-SNAPSHOT
  • 299eaeb Automated version update: 0.1.16.Final
  • 576eab5 Merge pull request #146 from Apicurio/fix-vertx-client-date-handling
  • Additional commits viewable in compare view


Updates io.apicurio:apicurio-common-rest-client-jdk from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.apicurio:apicurio-common-rest-client-common from 0.1.18.Final to 0.1.18.Final

Commits


Updates io.quarkus:quarkus-bom from 3.2.12.Final to 3.12.0

Release notes

Sourced from io.quarkus:quarkus-bom's releases.

3.12.0.CR1

Major changes

  • #36826 - Initial native image agent with JVM mode tests integration
  • #37900 - JDK Flight Recorder Extention
  • #39825 - Implementation of the internal TLS registry
  • #40142 - Load shedding
  • #40344 - Update Spring APIs to Spring Boot 3
  • #40714 - Enhance MongoDb otel integration
  • #40729 - Introduce container-image-podman extension
  • #40745 - Bump org.jetbrains.kotlin:kotlin-bom from 1.9.23 to 2.0.0
  • #40990 - Add support for the TLS registry to the mailer extension

Complete changelog

  • #15892 - A @QuarkusTest with a ParameterResolver that return a java record, throws an exception
  • #17038 - Simplifying ssl/tls configuration (server)
  • #18564 - Property quarkus.hibernate-orm.multitenant-schema-datasource is apparently pointless
  • #20594 - Allow trusted certificates to be specified at runtime by keystore and multiple PEM files
  • #23586 - LRA extension endpoints are populated to Swagger UI automatically
  • #26728 - Support Kotlin suspend functions when using @ConsumeEvent
  • #31117 - Exception in panache, when using newline before from
  • #33622 - Resteasy reactive kotlin serialization not completely configured after generating app from code.quarkus.io
  • #34889 - Change how actual DB version is checked
  • #35433 - Introduce @RegisterForProxy to register interfaces of dynamic proxies for native image
  • #36201 - Fix codestart for kotlin serialization (Gradle, Gradle Kotlin and Maven)
  • #36320 - Fix some typos on code and javadoc on maven devtool project
  • #36826 - Initial native image agent with JVM mode tests integration
  • #37575 - Warning during build: [org.hib.orm.deprecation] HHH90000025: PostgreSQLDialect does not need to be specified explicitly using 'hibernate.dialect'
  • #37900 - JDK Flight Recorder Extention
  • #37963 - Make explicit that gradle build ignores quarkus.application.name
  • #38096 - Introduce @CheckReturnValue into common Arc build items
  • #38718 - Use new builder factory methods
  • #38856 - Arc - improve injection point transformation API
  • #38931 - Delegate projections with a select clause to ORM
  • #38939 - Collect classes dirs from all the modules in RuntimeUpdatesProcessor
  • #39180 - Deployment of new version of application with OpenShift extension fails with LabelSelectorRequirement(nil)}: field is immutable
  • #39228 - Error when conflicting Deployment due to label selector version
  • #39364 - Make the name of the client certificate attribute which is mapped to roles configurable
  • #39563 - OpenTelemetry Extension not reliably adding user id and roles to span attributes
  • #39712 - Replace Vert.x Buffer.toJson() method with Buffer.toJsonValue()
  • #39735 - Using AdditionalStaticResourceBuildItem is not always working propertly in dev-mode
  • #39784 - Upload native build statistics
  • #39787 - Add shared support for MongoDB Dev Services container
  • #39825 - Implementation of the internal TLS registry
  • #39891 - Add GeneratedStaticResourceProcessor
  • #39914 - Dynamically resolve Amazon Lambda arch
  • #39954 - Conditionalize content in upstream Quarkus repository for the 3.8.next product release
  • #39999 - Conditionalize content in upstream Quarkus repository for the 3.8.next product release
  • #40122 - Tweak auth content

... (truncated)

Commits
  • 767e11d [RELEASE] - Bump version to 3.12.0
  • f383612 Merge pull request #41297 from gsmet/3.12.0-backports-2
  • ec0e72b Upgrade SmallRye BeanBag to 1.5.2
  • 99780a6 Add kafka-version.properties as native image resource
  • 1d40fda Improve unsupported properties in SpringDataJPAProcessor
  • bed47fc Add note about setting token-state-manager.encryption-secret if no oidc secre...
  • ec8bab3 Document DateTimeAttribute's %{time, form
  • 60b7380 Fix index.html for compat before 3.9 and dynamic index
  • f8a7112 WebSockets Next: document ping/pong messages
  • 7c09a87 Include several fixes related to #40344
  • Additional commits viewable in compare view


Updates io.quarkus:quarkus-test-common from 3.2.12.Final to 3.12.0

Updates io.quarkus:quarkus-maven-plugin from 2.7.5.Final to 3.12.0

Updates org.apache.kafka:connect-api from 3.6.1 to 7.6.1-ce

Updates org.apache.kafka:connect-json from 2.4.0 to 7.6.1-ce

Updates org.apache.kafka:kafka-clients from 2.8.1 to 7.6.1-ce

Updates io.vertx:vertx-json-schema from 4.5.7 to 4.5.8

Updates com.google.protobuf:protobuf-java from 3.19.4 to 4.27.1

Release notes

Sourced from com.google.protobuf:protobuf-java's releases.

Protocol Buffers v3.20.3

Java

  • Refactoring java full runtime to reuse sub-message builders and prepare to migrate parsing logic from parse constructor to builder.
  • Move proto wireformat parsing functionality from the private "parsing constructor" to the Builder class.
  • Change the Lite runtime to prefer merging from the wireformat into mutable messages rather than building up a new immutable object before merging. This way results in fewer allocations and copy operations.
  • Make message-type extensions merge from wire-format instead of building up instances and merging afterwards. This has much better performance.
  • Fix TextFormat parser to build up recurring (but supposedly not repeated) sub-messages directly from text rather than building a new sub-message and merging the fully formed message into the existing field.
  • This release addresses a Security Advisory for Java users

Protocol Buffers v3.20.2

C++

Protocol Buffers v3.20.1

PHP

  • Fix building packaged PHP extension (#9727)
  • Fixed composer.json to only advertise compatibility with PHP 7.0+. (#9819)

Ruby

  • Disable the aarch64 build on macOS until it can be fixed. (#9816)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.1-rc1

PHP

  • Fix building packaged PHP extension (#9727)

Other

  • Fix versioning issues in 3.20.0

Protocol Buffers v3.20.0

2022-03-25 version 3.20.0 (C++/Java/Python/PHP/Objective-C/C#/Ruby/JavaScript)

Ruby

  • Dropped Ruby 2.3 and 2.4 support for CI and releases. (#9311)
  • Added Ruby 3.1 support for CI and releases (#9566).
  • Message.decode/encode: Add recursion_limit option (#9218/#9486)
  • Allocate with xrealloc()/xfree() so message allocation is visible to the Ruby GC. In certain tests this leads to much lower memory usage due to more frequent GC runs (#9586).
  • Fix conversion of singleton classes in Ruby (#9342)

... (truncated)

Commits


Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.protobuf:protobuf-java-util from 3.19.4 to 4.27.1

Updates com.google.api.grpc:proto-google-common-protos from 2.7.4 to 2.40.0

Release notes

Sourced from com.google.api.grpc:proto-google-common-protos's releases.

v2.40.0

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

v2.39.0

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Changelog

Sourced from com.google.api.grpc:proto-google-common-protos's changelog.

2.40.0 (2024-05-02)

Features

  • [common-protos] add Weight to common types for Shopping APIs to be used for accounts bundle (#2699) (5bb9770)
  • add a CLI tool to validate generation configuration (#2691) (f2ce524)
  • Parser to consume the api-versioning value from proto (#2630) (40711fd)
  • Update Gapic generator and Gax to emit api-versioning via header (#2671) (e63d1b4)

Bug Fixes

  • change folder prefix for adding headers (#2688) (4e92be8)
  • Log HttpJson's async thread pool core size (#2697) (34b4bc3)
  • replace cfg = "host" with cfg = "exec" (#2637) (6d673f3)
  • Return resolved endpoint from StubSettings' Builder (#2715) (32c9995)

Dependencies

Documentation

  • Add contributing guidelines to PR and issue templates (#2682) (42526dc)

2.39.0 (2024-04-18)

Features

  • add libraries_bom_version to generation configuration (#2639) (56c7ca5)
  • Add ChannelPoolSettings Getter for gRPC's ChannelProvider (#2612) (d0c5191)
  • add config change (#2604) (8312706)
  • add entry point (#2616) (b19fa33)
  • add generation config comparator (#2587) (a94c2f0)
  • Add JavadocJar Task to build.gradle for self service libraries (#2593) (993f5ac)
  • Client/StubSettings' getEndpoint() returns the resolved endpoint (#2440) (4942bc1)
  • generate selected libraries (#2598) (739ddbb)
  • Validate the Universe Domain inside Java-Core (#2592) (35d789f)

... (truncated)

Commits


Updates commons-codec:commons-codec from 1.16.1 to 1.17.0

Changelog

Sourced from commons-codec:commons-codec's changelog.

Apache Commons Codec 1.17.0 RELEASE NOTES

The Apache Commons Codec component contains encoders and decoders for various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these widely used encoders and decoders, the codec package also maintains a collection of phonetic encoding utilities.

Feature and fix release. Requires a minimum of Java 8.

New features

  •         Add override org.apache.commons.codec.language.bm.Rule.PhonemeExpr.size(). Thanks to Gary Gregory.

  •         Add support for Base64 custom alphabets [#266](https://github.com/apache/commons-codec/issues/266). Thanks to Chris Kocel, Gary Gregory.

  •         Add Base64.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base32.Builder (allows custom alphabets). Thanks to Gary Gregory.

  •         Add Base64 support for a custom padding byte (like Base32). Thanks to Gary Gregory.

Fixed Bugs

  • CODEC-320: Wrong output of DoubleMetaphone in 1.16.1. Thanks to Martin Frydl, Gary Gregory.
  •         Optimize memory allocation in PhoneticEngine. Thanks to Gary Gregory.

  •         BCodec and QCodec encode() methods throw UnsupportedCharsetException instead of EncoderException. Thanks to Gary Gregory.

  •         Set Javadoc link to latest Java API LTS version. Thanks to Gary Gregory.

  •         Base32 constructor fails-fast with a NullPointerException if the custom alphabet array is null. Thanks to Gary Gregory.

  •         Base32 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of the line separator array. Thanks to Gary Gregory.

  •         Base64 constructor makes a defensive copy of a custom alphabet array. Thanks to Gary Gregory.

Changes

  •         Bump org.apache.commons:commons-parent from 66 to 69 [#250](https://github.com/apache/commons-codec/issues/250), [#261](https://github.com/apache/commons-codec/issues/261). Thanks to Dependabot, Gary Gregory.

  •         Bump commons-io:commons-io from 2.15.1 to 2.16.1 [#258](https://github.com/apache/commons-codec/issues/258), [#265](https://github.com/apache/commons-codec/issues/265). Thanks to Dependabot, Gary Gregory.

For complete information on Apache Commons Codec, including instructions on how to submit bug reports, patches, or suggestions for improvement, see the Apache Commons Codec website:

https://commons.apache.org/proper/commons-codec/

Download page: https://commons.apache.org/proper/commons-codec/download_codec.cgi

Commits
  • 5d809fe Prepare for the next release candidate
  • 9a59c1c Prepare for the next release candidate
  • 5f0cfd4 Longer lines
  • 8714b5f Remove dead comment
  • c56b956 Bullet-proof internals
  • d2215d5 Base32 constructor fails-fast with a NullPointerException if the custom
  • fcc70e6 Base32 constructor makes a defensive copy of the line separator
  • ebe805a Base64 constructor makes a defensive copy of a custom alphabet array
  • 5504333 Better exception message
  • c6c5f11 Base64 constructor makes a better defensive copy of the line separator
  • Additional commits viewable in compare view


Updates com.graphql-java:graphql-java from 22.0 to 22.1

Release notes

Sourced from com.graphql-java:graphql-java's releases.

22.1

This is a bugfix release. There are no breaking changes in this release, however if you use Kotlin, please note some nullability changes were made with this release.

Key changes include:

Thanks to everyone who contributed to this release!

What's Changed

New Contributors

Full Changelog: https://github.com/graphql-java/graphql-java/compare/v22.0...v22.1

Commits
  • f93fdac Merge pull request #3471 from graphql-java/schema-extension-not-printed
  • 53f22c5 Merge pull request #3579 from graphql-java/dont-overwrite-default-data-fetche...
  • f3253b4 Merge pull request #3582 from Salzian/add-nullability-annotations-in-data-fet...
  • 58f82d2 Merge pull request #3601 from graphql-java/dependabot/gradle/com.google.code....
  • d50ed88 Bump com.google.code.gson:gson from 2.10.1 to 2.11.0
  • 647e098 Merge pull request #3602 from graphql-java/dependabot/gradle/org.eclipse.jett...
  • 6ba529f Merge pull request #3603 from graphql-java/dependabot/github_actions/google-g...
  • ff71316 Bump google-github-actions/auth from 2.1.2 to 2.1.3
  • bbb1898 Bump org.eclipse.jetty:jetty-server from 11.0.20 to 11.0.21
  • a9e47b1 Merge pull request #3600 from graphql-java/release-prep
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.datatype:jackson-datatype-json-org from 2.15.2 to 2.17.1

Commits
  • e3d1511 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.1
  • f5931cb Prepare for 2.17.1 release
  • c284c4f Back to snapshot dep
  • 4a82536 [maven-release-plugin] prepare for next development iteration
  • 1db4146 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.17.0
  • 2e215a4 Prepare for 2.17.0 release
  • 86423f4 Merge branch '2.16' into 2.17
  • 89976aa Back to snapshot dep
  • a7d9b85 [maven-release-plugin] prepare for next development iteration
  • fe24bf9 [maven-release-plugin] prepare release jackson-datatypes-misc-parent-2.16.2
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.15.2 to 2.17.1

Commits
  • d7b7bf1 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.1
  • 8de9ac8 Prepare for 2.17.1 release
  • 163849b Fix #469: Add a way to distinguish between null and empty (#471)
  • 029030b Fix one flag in #472
  • 9039e78 Merge part of #471 ahead of it (to reduce diff) (#472)
  • b41a64e ...
  • 5e2fa72 Back to snapshot dep
  • 0d7a4d6 [maven-release-plugin] prepare for next development iteration
  • 5947a45 [maven-release-plugin] prepare release jackson-dataformats-text-2.17.0
  • 66e39ff Prepare for 2.17.0 release
  • Additional commits viewable in compare view


Updates io.strimzi:kafka-oauth-client from 0.8.1 to 0.15.0

Release notes

Sourced from io.strimzi:kafka-oauth-client's releases.

0.15.0

Main Changes since 0.14.x

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by rfc7523 and rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

Fixed NullPointerException that occurred when OAuthKafkaPrincipalBuilder was used with Kerberos authentication

Fixed a user id extraction bug where oauth.fallback.username.prefix was ignored, and added oauth.username.prefix

A bug was introduced in 0.13.0 that resulted in oauth.fallback.username.prefix being ignored. That should now be fixed.

A new configuration option was added: oauth.username.prefix.

This allows for the consistent mapping of user ids into the same name space and may be needed to prevent name collisions.

Added support for SASL extension parameters

Added support for passing SASL extensions via OAuth configuration options, by using a prefix: oauth.sasl.extension.

If Kafka Broker uses some other custom OAUTHBEARER implementation, it may require SASL extensions options to be sent by the Kafka client.

... (truncated)

Changelog

Sourced from io.strimzi:kafka-oauth-client's changelog.

0.15.0

Added OAuth Client Assertion support

Allows clients to authenticate to authorization server by using client assertion as specified by https://www.rfc-editor.org/rfc/rfc7523 and https://www.rfc-editor.org/rfc/rfc7521. The assertion can be provided by an external mechanism and available as a file on the file system or it can be explicitly set through OAuth configuration before running the Kafka client.

Introduced the following new configuration options:

  • oauth.client.assertion
  • oauth.client.assertion.location
  • oauth.client.assertion.type

See PR 211

Added support for clients to read access token and refresh token from a file when authenticating

Introduced the following new configuration options:

  • oauth.refresh.token.location
  • oauth.access.token.location

See PR 211

Added support for bearer token authentication when connecting to protected authorization server endpoints

This is used by broker when connecting to JWKS and Introspection endpoints. Added to support talking to the Kubernetes API server's JWKS endpoint.

Introduced the following new configuration options:

  • oauth.server.bearer.token
  • oauth.server.bearer.token.location

The authentication configuration rules for configuring the introspection endpoint have been relaxed. Introspection endpoint can now be unprotected (no authentication configured on the listener) or it can be protected with oauth.client.id and oauth.client.secret to send Basic Authorization header or with the oauth.server.bearer.token or oauth.server.bearer.token.location when sending Bearer Authorization header.

JWKS endpoint can now also be protected in the same way.

See PR 217

Fixed NullPointerException that occurred wh... _Description has been truncated_

dependabot[bot] commented 1 week ago

Looks like these dependencies are updatable in another way, so this is no longer needed.