Releases: oxctl/spring-security-lti13
Releases · oxctl/spring-security-lti13
Allow custom message converters on token retriever.
What's Changed
- Extend TokenRetriever to add additional HTTP message converters by @lti-user-prog in #52
New Contributors
- @lti-user-prog made their first contribution in #52
Full Changelog: 0.3.1...0.3.2
Contributors
lti-user-prog
Assets 2
0.3.1 Make LtiOAuth2User Serializable
Contributors
maurercw
Assets 2
0.3.0 Anonymous LTI launch
This release supports LTI launches from platforms when there isn't a currently logged in user (anonymous launches). In this situation there isn't a subject claim (sub) in the issued token. It's up to consuming applications to decide how to handle these launches.
What's Changed
Full Changelog: 0.2.0...0.3.0
Contributors
buckett
Assets 2
0.2.0 Spring 6.x / Spring Boot 3.x Release
What's Changed
This release switches to supporting Spring 6.x and Spring Boot 3.x. This release won't work with the older releases and you should continue using the 0.1.x releases for that.
Other notable changes:
- Requires that
ClientRegistrationare configured with theirauthorization_typeset toimplicit. - Rejects initiation if the client ID doesn't match. This means we generate an error, rather than the tool consumer producing an error on the next step.
Full Changelog: 0.1.11...0.2.0
Contributors
buckett
Assets 2
0.1.10 Better errors on initiation request
When an initiation request isn't valid better errors are generated instead of just a 500.
0.1.8 Validate the issuer
Contributors
buckett
Assets 2
0.1.6 Update for postMessage
What's Changed
- Bump jackson-databind from 2.13.4.1 to 2.13.4.2 by @dependabot in #36
- Switch from org.imsglobal.lti prefix to lti by @buckett in #38
Full Changelog: 0.1.5...0.1.6
Contributors
buckett and dependabot
Assets 2
0.1.4 Handle errors from LMS
What's Changed
- Spring Upgrade / Remove deprecated methods. by @buckett in #33
- Handle errors on step 3 by @buckett in #34
Full Changelog: 0.1.3...0.1.4
Contributors
buckett