|
|
0002-Backport-of-improve-validation-of-the-post-logout-UR.patch
|
|
|
0003-Backport-of-Fix-open-redirect-starting-with-a-slash.patch
|
|
|
0004-Backport-of-Fix-open-redirect-starting-with-a-slash-.patch
|
|
|
0005-Fix-the-previous-backports.patch
|
|
|
0006-add-OIDCStateMaxNumberOfCookies-to-limit-nr-of-state.patch
|
|
|
0007-set-boundaries-on-min-and-max-values-on-number-of-pa.patch
|
|
|
0008-make-the-default-max-number-of-state-cookies-7-inste.patch
|
|
|
0009-don-t-return-content-with-503-see-331.patch
|
|
|
0010-improve-auto-detection-of-XMLHttpRequests-via-Accept.patch
|
|
|
0011-oops-document-OIDCStateMaxNumberOfCookies-for-releas.patch
|
|
|
0012-optionally-delete-the-oldest-state-cookie-s-see-399.patch
|
|
|
0013-Allow-configuring-which-header-value-is-used-to-calc.patch
|
|
|
0014-add-value-of-OIDC_SET_COOKIE_APPEND-env-var-to-Set-C.patch
|
|
|
0015-pick-OIDC_SET_COOKIE_APPEND-over-ext-passed-in-to-oi.patch
|
|
|
0016-always-add-a-SameSite-value-to-the-Set-Cookie-header.patch
|
|
|
0017-fix-also-add-SameSite-None-to-by-value-session-cooki.patch
|
|
|
0018-add-note-on-usage-of-OIDC_SET_COOKIE_APPEND-in-the-s.patch
|
|
|
0019-add-SameSite-attribute-on-cookie-clearance-logout.patch
|
|
|
0020-prevent-open-redirect-on-refresh-token-requests-rele.patch
|
|
|
0021-prevent-XSS-and-open-redirect-on-OIDC-session-manage.patch
|
|
|
0022-replace-potentially-harmful-backslashes-with-forward.patch
|
|
|
0023-apply-OIDCRedirectURLsAllowed-setting-to-target_link.patch
|
|
|
0024-use-encrypted-JWTs-for-storing-encrypted-cache-conte.patch
|
|
|
0025-avoid-XSS-vulnerability-when-using-OIDCPreservePost-.patch
|
|
|
0026-Add-a-function-to-escape-Javascript-characters.patch
|
|
|
test-segfault.patch
|