apache2-mod_auth_openidc - Apache2.x module for an OpenID Connect enabled Identity Provider

Property Value
Distribution openSUSE Tumbleweed
Repository openSUSE Oss all
Package filename apache2-mod_auth_openidc-2.3.11-1.1.i586.rpm
Package name apache2-mod_auth_openidc
Package version 2.3.11
Package release 1.1
Package architecture i586
Package type rpm
Category Productivity/Networking/Web/Servers
Homepage https://github.com/zmartzone/mod_auth_openidc/
License Apache-2.0
Maintainer -
Download size 146.47 KB
Installed size 436.19 KB
This module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server.


Package Version Architecture Repository
apache2-mod_auth_openidc-2.3.11-1.1.x86_64.rpm 2.3.11 x86_64 openSUSE Oss
apache2-mod_auth_openidc-2.3.4-1.2.x86_64.rpm 2.3.4 x86_64 Apache Modules
apache2-mod_auth_openidc - - -


Name Value
apache_mmn_20120211 -
libc.so.6(GLIBC_2.7) -
libcjose.so.0 -
libcrypto.so.1.1 -
libcrypto.so.1.1(OPENSSL_1_1_0) -
libcurl.so.4 -
libhiredis.so.0.13 -
libjansson.so.4 -
libpcre.so.1 -
suse_maintenance_mmn_0 -


Name Value
apache2-mod_auth_openidc = 2.3.11-1.1
apache2-mod_auth_openidc(x86-32) = 2.3.11-1.1


Type URL
Mirror widehat.opensuse.org
Binary Package apache2-mod_auth_openidc-2.3.11-1.1.i586.rpm
Source Package apache2-mod_auth_openidc-2.3.11-1.1.src.rpm

Install Howto

Install apache2-mod_auth_openidc rpm package:

# zypper install apache2-mod_auth_openidc




2019-03-13 - Martin Hauke <mardnh@gmx.de>
- Update to version 2.3.11
* dynamically pass query params to the authorization request
+ using OIDCAuthRequestParams foo=# and/or OIDCPathAuthRequestParams foo=#
* add session expiry info to session info hook response
+ session inactivity key is timeout now (was exp)
+ session expiry key is exp
* allow compilation without memcache support on older platforms
not providing apr_memcache.h
2019-02-20 - Martin Hauke <mardnh@gmx.de>
- Update to version
* fix XSS vulnerability CSNC-2019-001 wrt. poll parameter in
OIDC Session Management RP iframe
* fix bug in current URL detection where query parameters would
be duplicated
* fix warning printout in oidc_delete_oldest_state_cookies
* fix encryption buffer tag length mismatch
* retain the unparsed URL path in current/original URL determination,
and thereby preserve and support URL-encoded characters in paths
when redirecting back to the original URL
* add state to code exchange token requests only in multi-provider
* optionally delete the oldest state cookie(s)
* add support for refreshing an access token associated with an
OIDC session using OIDCRefreshAccessTokenBeforeExpiry
* fix parsing of cookie name in OIDCOAuthAcceptTokenAs when the cookie
option is not listed last
* fix OAuth 2.0 RS config check when OIDCOAuthServerMetadataURL is set
* add support for draft https://www.ietf.org/id/draft-ietf-oauth-mtls-12.txt
OAuth 2.0 Mutual TLS Client Certificate Bound Access Tokens when
running as an OAuth 2.0 RS, validating cnf["x5t#S256"] claims.
* ignore/trim spaces in X-Forwarded-* headers
* deal with forwarding proxy setups
* improve OIDC backchannel logout based on config/Discover
* add OIDCProviderBackChannelLogoutSupported config primitive
* parse/interpret `backchannel_logout_supported` in Discovery document
* add `id_token_token_binding_cnf`: `tbh` to dynamic client registration
* support backchannel logout according to:
* add test-cmd command to generate hashes base64urlencoded inputs
(cnf/tbh claims)
* support Token Binding for Access Tokens according to:
* support nested arrays in Require claim authorization evaluation
2018-11-09 - kstreitova@suse.com
- submission to SLE15SP1 because of fate#324447
- build with hiredis only for openSUSE where hiredis is available
- add a version for jansson BuildRequires

See Also

Package Description
apache2-mod_authn_otp-1.1.8-1.6.i586.rpm Apache module for one-time password authentication
apache2-mod_authn_otp-1.1.8-1.6.x86_64.rpm Apache module for one-time password authentication
apache2-mod_dnssd-0.6-28.5.i586.rpm Apache2 module for Zeroconf support via DNS-SD
apache2-mod_dnssd-0.6-28.5.x86_64.rpm Apache2 module for Zeroconf support via DNS-SD
apache2-mod_encoding-0.0.20021209-1.8.i586.rpm Non-ASCII filename interoperability module for the Apache web server
apache2-mod_encoding-0.0.20021209-1.8.x86_64.rpm Non-ASCII filename interoperability module for the Apache web server
apache2-mod_evasive-1.10.1-14.13.i586.rpm Denial of Service evasion module for Apache
apache2-mod_evasive-1.10.1-14.13.x86_64.rpm Denial of Service evasion module for Apache
apache2-mod_fcgid-2.3.9-9.8.i586.rpm Alternative FastCGI module for Apache2
apache2-mod_fcgid-2.3.9-9.8.x86_64.rpm Alternative FastCGI module for Apache2
apache2-mod_jk-1.2.46-1.2.i586.rpm Connectors between Apache and Tomcat Servlet Container
apache2-mod_jk-1.2.46-1.2.x86_64.rpm Connectors between Apache and Tomcat Servlet Container
apache2-mod_maxminddb-1.1.0-1.6.i586.rpm MaxMind DB Apache Module
apache2-mod_maxminddb-1.1.0-1.6.x86_64.rpm MaxMind DB Apache Module
apache2-mod_mono-3.12-1.13.i586.rpm Run ASP.NET Pages on Unix with Apache and Mono