This repository was archived by the owner on Nov 11, 2024. It is now read-only.

Iddawc Changelog

1.1.10

Minor bugfixes
Build with flag -Wpedantic

1.1.9

Improve cmake script
cmake: remove DownloadProject feature, now dependencies must be previously installed
Add properties I_OPT_RESPONSE_MAX_BODY_SIZE, I_OPT_RESPONSE_MAX_HEADER_COUNT to allow download limit when sending http requests
Fix examples
cmake: split package build options in 3 (tar.gz, deb and rpm), and set all packages build to off by default

1.1.8

Build with flag -Wconversion
Breaking: Remove support for nested JWT received from the server

1.1.7

Minor bugfixes

1.1.6

Update rhonabwy dependency version

1.1.5

Add new examples
Minor bugfixes

1.1.4

Fix pkg-config file with absolute path for CMAKE_INSTALL_{INCLUDE,LIB}DIR
Fix CMAKE_MODULE_PATH who was used as single value

1.1.3

Fix i_perform_resource_service_request with DPoP htu value
Allow encrypted request using a symmetric key in the client_jwks

1.1.2

Improve tests
Rename uint to unsigned int
Add i_delete_registration_client, i_set_server_configuration
Add properties I_OPT_REGISTRATION_CLIENT_URI, I_OPT_SERVER_JWKS_CACHE_EXPIRATION, I_OPT_SAVE_HTTP_REQUEST_RESPONSE, I_OPT_CIBA_ACR_VALUES, I_OPT_CIBA_ACR_VALUES_APPEND, I_OPT_DPOP_NONCE_AS, I_OPT_DPOP_NONCE_RS, I_OPT_HTTP_PROXY
Implement OAuth 2.0 Demonstrating Proof-of-Possession at the Application Layer (DPoP) Draft 07

1.1.1

Fix undefined variables

1.1.0

Add i_run_ciba_request and implement OpenID Connect Client-Initiated Backchannel Authentication Flow
Improve client registration
Implement JWT Secured Authorization Response Mode (JARM)
Implement ath property in DPoP token
End session and single-logout functionalities

1.0.1

Improve tokens parsing and verification
Add DPoP tests

1.0.0

Improve i_verify_jwt_access_token by adding parameter aud to check if required
Add i_set_server_jwks, i_get_client_jwks, i_set_client_jwks, i_verify_dpop_proof

0.9.9

Improve OAuth 2.0 Rich Authorization Requests
Add i_set_rich_authorization_request_json_t, i_remove_rich_authorization_request_json_t, i_manage_registration_client, i_verify_jwt_access_token
Rename i_set_rich_authorization_request to i_set_rich_authorization_request_str, i_remove_rich_authorization_request to i_remove_rich_authorization_request_str
Supports OAuth 2.0 Dynamic Client Registration Management Protocol
Supports encrypted code, refresh tokens and access tokens
Improve DPoP support for userinfo, introspection and revocation endpoints
Implement client TLS authentication
Supports claims in requests
Rename i_perform_api_request to i_perform_resource_service_request
Add idwcc, a program to test iddawc library and server capabilities

0.9.8

Supports OAuth 2.0 Rich Authorization Requests Draft 03
Supports OAuth 2.0 Device Authorization Grant (rfc #8628)
Supports OAuth 2.0 Pushed Authorization Requests Draft 05
Add i_set_rich_authorization_request, i_remove_rich_authorization_request, i_get_rich_authorization_request for rich authorization requests
Add i_run_device_auth_request for device authorization requests
Add i_run_par_request for pushed authorization requests
Remove Travis CI tests

0.9.7

Add i_global_init, i_global_close, i_free
Add i_generate_dpop_token

0.9.6

Allow encrypted JWT requests
Bugfixes

0.9.5

Use rhonabwy instead of libjwt for JWT management
Add JWT requests in /auth and /token endpoints
Add i_load_userinfo_custom
Add functions i_revoke_token, i_introspect_token, i_register_client

0.9.4

Bugfixes

0.9.3

Rename i_get_flag_parameter to i_get_int_parameter and i_get_parameter to i_get_str_parameter
Rename i_export_session to i_export_session_json_t, i_import_session to i_import_session_json_t and add i_export_session_str and i_import_session_str
Improve examples

0.9.2

First release
Implements OAuth2 and OpenID Connect clients
Parses server response and set properties values
Validates id_token
Add examples for mainstream OAuth2 providers: Google, Facebook, GitHub, GitLab, Microsoft provided
Imports and exports Iddawc sessions