WordPress.org
Get WordPress

Plugin Directory

Changeset 3459991


Ignore:
Timestamp:
02/12/2026 01:48:35 PM (6 weeks ago)
Author:
daggerhart
Message:

Update to version 3.11.1 from GitHub

Location:
daggerhart-openid-connect-generic
Files:
10 edited
1 copied

Legend:

Unmodified
Added
Removed

  • daggerhart-openid-connect-generic/tags/3.11.1/includes/openid-connect-generic-client.php

    r3459957 r3459991  
    621621        }
    622622
    623         // Add trailing slash (common for issuers).
    624         $issuer .= '/';
    625 
    626623        return $issuer;
    627624    }
     
    684681            $expected_issuer = $this->get_issuer_from_endpoint( $this->endpoint_login );
    685682
    686             if ( $id_token_claim['iss'] !== $expected_issuer ) {
     683            if ( rtrim( $id_token_claim['iss'], '/' ) !== rtrim( $expected_issuer, '/' ) ) {
    687684                return new WP_Error(
    688685                    'invalid-iss',

  • daggerhart-openid-connect-generic/tags/3.11.1/includes/openid-connect-generic-jwt-validator.php

    r3459957 r3459991  
    228228            }
    229229
    230             if ( $decoded_jwt->iss !== $this->issuer ) {
     230            if ( rtrim( $decoded_jwt->iss, '/' ) !== rtrim( $this->issuer, '/' ) ) {
    231231                return new WP_Error(
    232232                    'invalid-iss',

  • daggerhart-openid-connect-generic/tags/3.11.1/openid-connect-generic.php

    r3459957 r3459991  
    1717 * Plugin URI:        https://github.com/oidc-wp/openid-connect-generic
    1818 * Description:       Connect to an OpenID Connect identity provider using Authorization Code Flow.
    19  * Version:           3.11.0
     19 * Version:           3.11.1
    2020 * Requires at least: 5.0
    2121 * Requires PHP:      7.4
     
    9494     * @var string
    9595     */
    96     const VERSION = '3.11.0';
     96    const VERSION = '3.11.1';
    9797
    9898    /**

  • daggerhart-openid-connect-generic/tags/3.11.1/readme.txt

    r3459957 r3459991  
    44Requires at least: 5.0
    55Tested up to: 6.9.0
    6 Stable tag: 3.11.0
     6Stable tag: 3.11.1
    77Requires PHP: 7.4
    88License: GPLv2 or later
     
    5050== Upgrade Notice ==
    5151
    52 = 3.11.0 =
     52= 3.11.1 =
    5353
    54 SECURITY UPDATE: Fixes critical authentication vulnerabilities including JWT signature bypass. Update immediately.
     54CRITICAL SECURITY UPDATE: Fixes authentication vulnerabilities including JWT signature bypass and SSRF protection. Update immediately and configure JWKS endpoint in settings.
    5555
    5656== Changelog ==
     57
     58= 3.11.1 =
     59
     60* Fix bug created in 3.11.0 release when comparing issuer to derived expected value.
    5761
    5862= 3.11.0 =

  • daggerhart-openid-connect-generic/tags/3.11.1/vendor/composer/installed.php

    r3459957 r3459991  
    22    'root' => array(
    33        'name' => 'daggerhart/openid-connect-generic',
    4         'pretty_version' => '3.11.0',
    5         'version' => '3.11.0.0',
    6         'reference' => 'a45435f08547bba5c58c6cd71921ff485fe096da',
     4        'pretty_version' => '3.11.1',
     5        'version' => '3.11.1.0',
     6        'reference' => 'aa45afd5a204f15245217bc1a55e25f9dd52dfe4',
    77        'type' => 'wordpress-plugin',
    88        'install_path' => __DIR__ . '/../../',
     
    2121        ),
    2222        'daggerhart/openid-connect-generic' => array(
    23             'pretty_version' => '3.11.0',
    24             'version' => '3.11.0.0',
    25             'reference' => 'a45435f08547bba5c58c6cd71921ff485fe096da',
     23            'pretty_version' => '3.11.1',
     24            'version' => '3.11.1.0',
     25            'reference' => 'aa45afd5a204f15245217bc1a55e25f9dd52dfe4',
    2626            'type' => 'wordpress-plugin',
    2727            'install_path' => __DIR__ . '/../../',

  • daggerhart-openid-connect-generic/trunk/includes/openid-connect-generic-client.php

    r3459957 r3459991  
    621621        }
    622622
    623         // Add trailing slash (common for issuers).
    624         $issuer .= '/';
    625 
    626623        return $issuer;
    627624    }
     
    684681            $expected_issuer = $this->get_issuer_from_endpoint( $this->endpoint_login );
    685682
    686             if ( $id_token_claim['iss'] !== $expected_issuer ) {
     683            if ( rtrim( $id_token_claim['iss'], '/' ) !== rtrim( $expected_issuer, '/' ) ) {
    687684                return new WP_Error(
    688685                    'invalid-iss',

  • daggerhart-openid-connect-generic/trunk/includes/openid-connect-generic-jwt-validator.php

    r3459957 r3459991  
    228228            }
    229229
    230             if ( $decoded_jwt->iss !== $this->issuer ) {
     230            if ( rtrim( $decoded_jwt->iss, '/' ) !== rtrim( $this->issuer, '/' ) ) {
    231231                return new WP_Error(
    232232                    'invalid-iss',

  • daggerhart-openid-connect-generic/trunk/openid-connect-generic.php

    r3459957 r3459991  
    1717 * Plugin URI:        https://github.com/oidc-wp/openid-connect-generic
    1818 * Description:       Connect to an OpenID Connect identity provider using Authorization Code Flow.
    19  * Version:           3.11.0
     19 * Version:           3.11.1
    2020 * Requires at least: 5.0
    2121 * Requires PHP:      7.4
     
    9494     * @var string
    9595     */
    96     const VERSION = '3.11.0';
     96    const VERSION = '3.11.1';
    9797
    9898    /**

  • daggerhart-openid-connect-generic/trunk/readme.txt

    r3459957 r3459991  
    44Requires at least: 5.0
    55Tested up to: 6.9.0
    6 Stable tag: 3.11.0
     6Stable tag: 3.11.1
    77Requires PHP: 7.4
    88License: GPLv2 or later
     
    5050== Upgrade Notice ==
    5151
    52 = 3.11.0 =
     52= 3.11.1 =
    5353
    54 SECURITY UPDATE: Fixes critical authentication vulnerabilities including JWT signature bypass. Update immediately.
     54CRITICAL SECURITY UPDATE: Fixes authentication vulnerabilities including JWT signature bypass and SSRF protection. Update immediately and configure JWKS endpoint in settings.
    5555
    5656== Changelog ==
     57
     58= 3.11.1 =
     59
     60* Fix bug created in 3.11.0 release when comparing issuer to derived expected value.
    5761
    5862= 3.11.0 =

  • daggerhart-openid-connect-generic/trunk/vendor/composer/installed.php

    r3459957 r3459991  
    22    'root' => array(
    33        'name' => 'daggerhart/openid-connect-generic',
    4         'pretty_version' => '3.11.0',
    5         'version' => '3.11.0.0',
    6         'reference' => 'a45435f08547bba5c58c6cd71921ff485fe096da',
     4        'pretty_version' => '3.11.1',
     5        'version' => '3.11.1.0',
     6        'reference' => 'aa45afd5a204f15245217bc1a55e25f9dd52dfe4',
    77        'type' => 'wordpress-plugin',
    88        'install_path' => __DIR__ . '/../../',
     
    2121        ),
    2222        'daggerhart/openid-connect-generic' => array(
    23             'pretty_version' => '3.11.0',
    24             'version' => '3.11.0.0',
    25             'reference' => 'a45435f08547bba5c58c6cd71921ff485fe096da',
     23            'pretty_version' => '3.11.1',
     24            'version' => '3.11.1.0',
     25            'reference' => 'aa45afd5a204f15245217bc1a55e25f9dd52dfe4',
    2626            'type' => 'wordpress-plugin',
    2727            'install_path' => __DIR__ . '/../../',
Note: See TracChangeset for help on using the changeset viewer.