Releases: sis-berkeley-edu/omniauth-cas
Releases · sis-berkeley-edu/omniauth-cas
v2.0.1
What's Changed
Updates
- Pulls in changes from dlindahl/omniauth-cas@4ab8a1c9c3333 and dlindahl#68
- Updates Ruby version and gem dependencies
- Updates OmniAuth::Strategies::CAS::SamlTicketValidator to match new contract for v2.0.0 validators, applied spec/testing
Commits
- SISRP-46732 - Updates OmniAuth gem dependency by @redconfetti in #1
- Update nokogiri by @redconfetti in #2
- SISRP-49809 - Updates gems by @redconfetti in #3
- SISRP-49809 - Tag v1.1.1 by @redconfetti in #4
- SISRP-36520 - Updates gem dependencies for Rails 6.1.4.7 upgrade by @redconfetti in #5
- SISRP-60590 - Rolls back OmniAuth to v1.9.1 to resolve error with /auth/cas redirect by @redconfetti in #6
- v1.1.4 by @redconfetti in #7
- v2.0.1 by @redconfetti in #9
New Contributors
- @redconfetti made their first contribution in #1
Full Changelog: v1.1.4...v2.0.1
Contributors
redconfetti
Assets 2
v1.1.4
Updates OmniAuth gem to v2.1.0 to resolve CVE-2015-9284.
Also updates other gem dependencies (Nokogiri, Addressable) to address other security advisories.
Requires that OmniAuth be configured to allow HTTP GET requests for the /auth/cas redirect.
# config/initializers/omniauth.rb
# Add get request as allowed for OmniAuth redirect, disables warning
OmniAuth.config.allowed_request_methods.push(:get)
OmniAuth.config.silence_get_warning = true