2.1.2

Bug fixes

• Support JWKs with leading zeroes in their RSA modulus (n) and public exponent (e) values (#53)

2.1.1

• Update rand and base64 dependencies to their latest versions (#49)
• Address RUSTSEC-2020-0071 by disabling chrono's oldtime feature flag

2.1.0

New features

• Add add_scopes convenience methods to request objects (ramosbugs/oauth2-rs#138)
• Add set_redirect_uri method to CodeTokenRequest (ramosbugs/oauth2-rs#144)

Bug fixes

• Fix Client::disable_openid_scope method (#45)

Other changes

• Add Gitlab example (#44)

2.0.2

Bug Fixes

• Fix panic in AuthorizationRequest::url when using the implicit or hybrid flows

2.0.1

Minor doc fixes

2.0.0

Changes since 2.0.0-beta.1

• Upgrade oauth2 dependency to stable 4.0 release.

Summary of changes since 1.0.0

Breaking changes

• Raise minimum supported Rust version (MSRV) to 1.45.
• Upgrade reqwest to 0.11 and rename feature flag to reqwest. This upgrades tokio to 1.0 and removes support for both the reqwest-010 and reqwest-09 feature flags.
• Drop support for futures 0.1 and remove the futures-01 and futures-03 feature flags; only async/await and futures 0.3 are now supported (without requiring any feature flags).
• Eliminate Async* traits and move the request_async methods to the underlying *Request structs
• Rename set_redirect_url to set_redirect_uri (see #39 for context).
• Migrate public API from http 0.1 to 0.2.
• Return error types that implement std::error::Error instead of failure::Fail.
• Expose serde_path_to_error::Error<serde_json::Error>> in several error types to make JSON deserialization errors easier to diagnose.
• Add #[non_exhaustive] attribute to AuthType to support non-breaking additions in the future.
• Have Client::user_info fail fast with a new ConfigurationError enum when the relevant OAuth2 endpoint hasn't been configured from the OpenID Connect Discovery metadata. Previously, an error would not be returned until a call to request/request_async.

New features

• Add support for OAuth 2.0 Token Revocation (RFC 7009).
• Add support for OAuth 2.0 Token Introspection (RFC 7662).
• Add support for the OAuth2 Client Credentials Grant.
• Add support for ES256/ES384 JWT signatures.

Other changes

• Have reqwest client use rustls-tls by default instead of native TLS. This behavior can be overridden using the native-tls feature flag.
• Disable deprecated OpenID Connect conformance tests.

2.0.0-beta.1

Breaking Changes

• Add rustls-tls (default) and native-tls feature flags for use with reqwest. Previously, enabling the reqwest feature flag would always use rustls. The default behavior is unchanged, but users that disable the default features and wish to continue using rustls may wish to add the rustls-tls feature flag to their Cargo.toml.
• Expose serde_path_to_error::Error<serde_json::Error>> instead of a serde_json::Error to improve the diagnosability of JSON deserialization errors in the following enum variants:
  • DiscoveryError::Parse
  • RequestTokenError::Parse
  • UserInfoError::Parse
  • registration::ClientRegistrationError::Parse

2.0.0-alpha.3

Breaking Changes

• Raise minimum supported Rust version (MSRV) to 1.45
• Rename set_redirect_url to set_redirect_uri (see #39 for context).
• Upgrade reqwest to 0.11 and rename feature flag from reqwest-010 to reqwest. This upgrades tokio to 1.0.
• Add #[non_exhaustive] attribute to AuthType to support non-breaking additions in the future
• Have Client::user_info fail fast with a new ConfigurationError enum when the relevant OAuth2 endpoint hasn't been configured from the OpenID Connect Discovery metadata. Previously, an error would not be returned until a call to request/request_async.

New Features

• Add support for OAuth 2.0 Token Revocation (RFC 7009).

  Special thanks to @ximon18 for contributing this feature.

• Add support for OAuth 2.0 Token Introspection (RFC 7662).

  Special thanks to @jeroenvervaeke for contributing this feature to the oauth2 crate and to @ximon18 for porting it to this crate.

Other Changes

• Add extra_fields() getter to StandardTokenIntrospectionResponse

1.1.1

Bug fixes

• Fix Rust 1.41 build (the 1.1.0 release used the matches! macro that was not introduced until 1.42)

2.0.0-alpha.2

Breaking changes

• Bump minimum supported Rust version (MSRV) to 1.42

Features

• Add support for ES256/ES384 JWT signatures

Other changes

• Fix compatibility with ring >= 0.16.16