mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2025-12-31 01:10:20 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
b7990875c124d7f8914162f7aaa3003dc05ef095
opencloud/services
History
Ralf Haferkamp b7990875c1 oidc: Remove "aud" claim validation of logout tokens (#6156) 
The "aud" claim of the logout token is supposed to contain the client-id
of the client for which the token was issued. Our current implementation of
validating that claim is somewhat broken. We only allow to configure a single
value for the allowed client id. But we have different client-ids
accessing oCIS.

This completely removes the current validation of the `aud` claim until
we come up with a working solution. As we currently require a session id
to be present in the logout token the risk not validating the `aud`
claim is pretty low.

Related: #6149
2023-04-27 10:34:09 +02:00
..
antivirus
[docs-only] Fix texts and typos in README.md files
2023-04-23 10:02:27 +02:00
app-provider
Update services/app-provider/pkg/config/config.go
2023-03-21 12:23:13 +01:00
app-registry
add missing comments
2023-03-06 19:01:16 +01:00
audit
Fix typo in audit service readme
2023-04-14 09:30:24 +02:00
auth-basic
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
auth-bearer
fix readme service names
2023-04-12 18:40:41 +02:00
auth-machine
add missing comments
2023-03-06 19:01:16 +01:00
eventhistory
Merge pull request #6119 from owncloud/update_readme_caching
2023-04-24 15:13:49 +02:00
frontend
[full-ci] More cache cleanup (#6134)
2023-04-25 15:46:59 +02:00
gateway
[full-ci] More cache cleanup (#6134)
2023-04-25 15:46:59 +02:00
graph
Merge pull request #6119 from owncloud/update_readme_caching
2023-04-24 15:13:49 +02:00
groups
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
idm
remove obsolete start function
2023-04-26 20:13:54 +02:00
idp
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
invitations
Make getUserByParams private.
2023-04-19 10:46:50 +02:00
nats
add missing struct description
2023-04-26 08:54:41 +02:00
notifications
add debug server to notifications (#6155)
2023-04-27 09:56:09 +02:00
ocdav
add missing cors config
2023-04-03 17:29:49 +02:00
ocs
[full-ci] More cache cleanup (#6134)
2023-04-25 15:46:59 +02:00
policies
markdown fix
2023-04-23 10:14:42 +02:00
postprocessing
[docs-only] Fix texts and typos in README.md files
2023-04-23 10:02:27 +02:00
proxy
oidc: Remove "aud" claim validation of logout tokens (#6156)
2023-04-27 10:34:09 +02:00
search
Fix detecting resources that haven't changed when reindexing spaces
2023-04-19 17:44:16 +02:00
settings
Determine the users preferred language to translate emails via Transifex. #6087
2023-04-21 16:30:48 +02:00
sharing
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
storage-publiclink
add missing comments
2023-03-06 19:01:16 +01:00
storage-shares
add missing comments
2023-03-06 19:01:16 +01:00
storage-system
[full-ci] More cache cleanup (#6134)
2023-04-25 15:46:59 +02:00
storage-users
Merge pull request #6119 from owncloud/update_readme_caching
2023-04-24 15:13:49 +02:00
store
- fixed typos
2023-03-27 08:54:51 +02:00
thumbnails
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
userlog
[docs-only] fix envvar separation in userlog
2023-04-26 09:37:54 +02:00
users
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
web
chore: bump web to v7.0.0-rc.32
2023-04-24 11:24:04 +02:00
webdav
[docs-only] Correct the removal version according semver to 4.0.0
2023-04-19 10:16:06 +02:00
webfinger
Fix nil pointer exception in webfinger
2023-04-21 16:16:26 +02:00