oauth2 v2.0.14 has been released with:
- π Added OAuth 2.1 draft specification as inline documentation throughout in PR #662
- PKCE required for auth code,
- exact redirect URI match,
- implicit/password grants omitted,
- avoid bearer tokens in query,
- refresh token guidance for public clients,
- simplified client definitions
- π Added OIDC documentation, example, and spec references in OIDC.md in PR #663
- π Add Example for JHipster UAA Server (Spring Cloud) Password Grant Integration in PR #664
- π Document Mutual TLS (mTLS) usage with example in README in PR #665
- β Documentation with Example for Flat Params Usage, with specs in PR #666
- Purely a documentation release!
Yes, this is the second release in two days. There are no code changes in this release.
This project is used by over 100k other projects. It is downloaded millions of times per week. It currently has zero backers, and zero sponsors. Please consider supporting it.
Release Notes: https://github.com/ruby-oauth/oauth2/releases/tag/v2.0.14
Open Collective: https://opencollective.com/ruby-oauth
Photo by Pawel Czerwinski on Unsplash
Top comments (0)