Bump oidc-provider from 6.31.1 to 8.4.3

[dependabot[bot]]

Bumps oidc-provider from 6.31.1 to 8.4.3.

Release notes

Sourced from oidc-provider's releases.

v8.4.3

No release notes provided.

v8.4.2

Fixes

• reject client JSON Web Key Set null value (#1237) (cce6d43)

v8.4.1

This release contains only code refactoring, dependency, or documentation updates.

v8.4.0

Features

• DPoP: remove experimental flag, DPoP is now RFC9449 (89d133e)

v8.3.2

Fixes

• assign extraTokenClaims return to the model (e296dc7)

v8.3.1

Fixes

• DPoP: compare htu scheme and hostname case independent (b72d668)

v8.3.0

Features

• allow specifying the user-agent header for outgoing requests (95f24ef)

v8.2.2

Fixes

• ignore non-existent resource scopes during refresh (#1222) (bdf23ba)

v8.2.1

Fixes

• ignore post_logout_redirect_uris when logout is disabled (#1221) (d7dd6cf)

v8.2.0

Features

• add correlation identifier to interactions (#1218) (c072352)

v8.1.2

This release contains only code refactoring, dependency, or documentation updates. The release process now also uses provenance statements.

v8.1.1

... (truncated)

Changelog

Sourced from oidc-provider's changelog.

8.4.3 (2023-12-14)

8.4.2 (2023-12-02)

Fixes

• reject client JSON Web Key Set null value (#1237) (cce6d43)

8.4.1 (2023-10-25)

8.4.0 (2023-09-08)

Features

• DPoP: remove experimental flag, DPoP is now RFC9449 (89d133e)

8.3.2 (2023-09-02)

Fixes

• assign extraTokenClaims return to the model (e296dc7)

8.3.1 (2023-08-30)

Fixes

• DPoP: compare htu scheme and hostname case independent (b72d668)

8.3.0 (2023-08-27)

Features

• allow specifying the user-agent header for outgoing requests (95f24ef)

8.2.2 (2023-05-30)

Fixes

• ignore non-existent resource scopes during refresh (#1222) (bdf23ba)

8.2.1 (2023-05-06)

Fixes

... (truncated)

Commits

• 55f4fb7 chore(release): 8.4.3
• 6904545 chore: bump deps
• 9023e23 build(deps): bump @​koa/cors from 4.0.0 to 5.0.0 (#1240)
• a450345 refactor: fix typo in resume action (#1239)
• deef8bd chore(release): 8.4.2
• 9267dce chore: bump deps
• cce6d43 fix: reject client JSON Web Key Set null value (#1237)
• a0af4c4 docs: point to a specific part of Discovery 1.0 RFC (#1236)
• 5020ab9 build(deps): bump dessant/lock-threads from 5.0.0 to 5.0.1 (#1235)
• 6ddb486 chore: set discussion-inactive-days in lock threads action
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #91.