apache2-mod_auth_openidc-2.3.8-lp151.2.6.1<>,-h^pи/=„b{df\5k'og܃nV"H KDo'S䊏Vn|SB2ddLYJPX]p.ce oԼU*˯pҊ(GCfӻ4JTVom|v' Rm$[86x]*lƈZ;Φ"tز>0e3vz.,uX&+) Pu!ZA91e˦'AkZ`<>>P?@d! - n' @d     PXe(89:VFGHIXY$\H]P^lbc1defluvwxy z<Capache2-mod_auth_openidc2.3.8lp151.2.6.1Apache2.x module for an OpenID Connect enabled Identity ProviderThis module enables an Apache 2.x web server to operate as an OpenID Connect Relying Party and/or OAuth 2.0 Resource Server.^parmbuild17openSUSE Leap 15.1openSUSEApache-2.0http://bugs.opensuse.orgProductivity/Networking/Web/Servershttps://github.com/zmartzone/mod_auth_openidc/linuxarmv7hlA^p^p432ebad9bb820f79cb03c7f9cfb21dcb38dff54fa0e439bb6078298e559c9fb1rootrootrootrootapache2-mod_auth_openidc-2.3.8-lp151.2.6.1.src.rpmapache2-mod_auth_openidcapache2-mod_auth_openidc(armv7hl-32)@@@@@@@@@@@@@    apache_mmn_20120211ld-linux-armhf.so.3ld-linux-armhf.so.3(GLIBC_2.4)libc.so.6libc.so.6(GLIBC_2.4)libcjose.so.0libcrypto.so.1.1libcrypto.so.1.1(OPENSSL_1_1_0)libcurl.so.4libgcc_s.so.1libgcc_s.so.1(GCC_3.5)libhiredis.so.0.13libjansson.so.4libpcre.so.1rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)suse_maintenance_mmn_03.0.4-14.6.0-14.0-15.2-14.14.1^_@]{@[v[GZZ1@Kristyna Streitova Kristyna Streitova kstreitova@suse.comkstreitova@suse.comvcizek@suse.comchristof.hanke@mpcdf.mpg.de- add apache2-mod_auth_openidc-2.3.8-CVE-2019-20479.patch to fix open redirect issue that exists in URLs with a slash and backslash at the beginning [bsc#1164459], [CVE-2019-20479]- add apache2-mod_auth_openidc-2.3.8-CVE-2019-14857.patch to fix open redirect issue that exists in URLs with trailing slashes [bsc#1153666], [CVE-2019-14857]- submission to SLE15SP1 because of fate#324447 - build with hiredis only for openSUSE where hiredis is available - add a version for jansson BuildRequires- update to 2.3.8 - changes in 2.3.8 * fix return result FALSE when JWT payload parsing fails * add LGTM code quality badges * fix 3 LGTM alerts * improve auto-detection of XMLHttpRequests via Accept header * initialize test_proto_authorization_request properly * add sanity check on provider->auth_request_method * allow usage with LibreSSL * don't return content with 503 since it will turn the HTTP status code into a 200 * add option to set an upper limit to the number of concurrent state cookies via OIDCStateMaxNumberOfCookies * make the default maximum number of parallel state cookies 7 instead of unlimited * fix using access token as endpoint auth method in introspection calls * fix reading access_token form POST parameters when combined with `AuthType auth-openidc` - changes in 2.3.7 * abort when string length for remote user name substitution is larger than 255 characters * fix Redis concurrency issue when used with multiple vhosts * add support for authorization server metadata with OIDCOAuthServerMetadataURL as in RFC 8414 * refactor session object creation * clear session cookie and contents if cache corruption is detected * use apr_pstrdup when setting r->user * reserve 255 characters in remote username substition instead of 50 - changes in 2.3.6 * add check to detect session cache corruption for server-based caches and cached static metadata * avoid using pipelining for Redis * send Basic header in OAuth www-authenticate response if that's the only accepted method; thanks @puiterwijk * refactor Redis cache backend to solve issues on AUTH errors: a) memory leak and b) redisGetReply lagging behind * adjust copyright year/org * fix buffer overflow in shm cache key set strcpy * turn missing session_state from warning into a debug statement * fix missing "return" on error return from the OP * explicitly set encryption kid so we're compatible with cjose >= 0.6.0 - changes in 2.3.5 * fix encoding of preserved POST data * avoid buffer overflow in shm cache key construction * compile with with Libressl- update to 2.3.4 - requested in fate#323817- initial packagingarmbuild17 15844574242.3.8-lp151.2.6.12.3.8-lp151.2.6.1apache2mod_auth_openidc.so/usr/lib//usr/lib/apache2/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:12125/openSUSE_Leap_15.1_Update_ports/b47f787fdae79a7460ac948bf717ed52-apache2-mod_auth_openidc.openSUSE_Leap_15.1_Updatedrpmxz5armv7hl-suse-linuxdirectoryELF 32-bit LSB shared object, ARM, EABI5 version 1 (SYSV), dynamically linked, BuildID[sha1]=7f8358e10bbab2e1d72f55139a76710b495d898a, stripped RR RRRRR RR R R RRAy&gy:utf-895773ac9e69344197c36c8c6c0c8cc552de19a6590dfc174d2289ebdb836033a? 7zXZ !t/1]"k%"5okw@_/.PS8;oͩz.> ^ &C9e7=Y&w4pzR% Ԋ3wLW? Ml봽?Рa 4̡~O}hG,J5]9Wl=_C4\v9Ĝ8[">e+ 0!~T%i,p&sPc`hp"D/`E q`bԸ,nF_{K e?8xa pu2YE)埝eܞs"ý| ߩ h78Soߏ<בjGy2byC͇ Y)E|Gce0^ĉ?Csc%!s XfP2q.㏌f_ Z;uN pwWRL PF2&m2A}},8;{!w:Ä%d=CÊuP-x/ &ihfap0'Pe?\M+frUu uMAO2AC3Go ,N;?}"-1vqLb^o%t##<~j5B=2Lm}(!uyo  Xu{_VT9FŚՏUz6ĞKk\xnlp ap]D*W}]'k;3frK0|`Y4CZr!ٔie PV [0qtN$NςL3Zq3Tmp^%2EjI-wj g A>cjm~] Uv>D~p@L|^*MD1pzr6M0l{a'l=|M#Bx7НLG7eم3+Hfhf魁gR#*72id%<w0!$j>1IU)q.l=U>CTH;S[_H![V -tlz߃9 ĥ8@q5$i Z?$4.XjRب 40LjK %g l Z25~m3lo*a?Q+9H"#X$rt@ W:[ZZH_^/67ǢvKO] Wթns8=ud|Uwrg]`$Pv+1~$hb&pǮ8hWh(՘@9 [ =e+Ru6a 9O+]Lj#2}c~LÀ]__&Px'@V\9\[9,ê+-R 5F3|]_fs^ f /$p8:S:Dq('Dj-nV8^~T`Xyh \,rUfڀ3$ Baf|?B#1bmTiqD>z6t9y\PnS"H,e(.q33GA~w< }j]Y flg9(/WG`Dz?3$ 5fǡ@37ALRDu\%TSӘ[ɬ'ViZآ}M`~S ['v=Ir\ct;Ei1r}1Ñ(}Ȅ+!L8~?^kF拞~?+%XZog=%aK؝Kl{P˙m:S{ /+YbɖZyMGHv2H:(j;1[Zo}֌ϗcT/tCr>9@]P1eh_B>'VFĆfQ\ EVن^l49Ml Z_ R+ppVڡa K`1h>MGU6 &SE'qq܅=wna*z .FAp' V۵ޤ)Ȇ~CӸĺ_^"I/|ڞuxnQ gP)M mt6H}pUS bJe&-r6r3 .+rQZCJ6+Qӱ =[}K%Mz8jeΡ Z*5Z:AwԌ^^ɱBZ$rvpzGrTՍT&b1{Z,WguM5\҆5uf`$z1;MkxbS$~Ȍ<"hSnt 0OyFɦZA.Q)m0{|-ko-4 {o B4 DE1r^5 Yl ne8)P,Rf{Itnd6☯T]4"GY+ۘf# ̺5xpkt3:HcڃlH (̎%ɣw_qkՈߗ@>[240ieC[rP 8sawA:69pP2@ )aei?吣u[zf. pguјq>Sxj#Üsaq2rGr<w>_ "IfH:-;,geks?eź+O%u=X3ND6=SDgj6ѿG \u5jV R7<ˬn&=Ϊoڎ ղF]wQ2ѕAԍMBQ4.YTfU=m!Z5%%zNlN(3+Eg-4Pw6IxǷZ(bC)ɧ~B9/G 6?n!7ţil/t&׾Ve`!ɛhȚf-WKWM UX=yFv$/&܍ 'AԽ{Al9g657Ip~oA"c"|CĻSUWza2tuVQ!5 ^ቂm,6\bqwT`GeŽ$u7YCIje;"+Ӎx}dexLRg!l1Dc>Oo8K`N $}0NRWQIǍ [*oo7_k*<뫷x%[" fq#֏ՠNdiF潋fcO!\fm3J|`ua'1[~ ]6zjlG 5,t ֹe֊>0 k%pdZf9>!J3z+aM~Bk˯eBUJX f!J\<𬅧XTB\lOy[[PMOF^%чXR]<1 gpuB+_b^`A]eO*vŃ.kBzΣW F;,YhiblC]*P2Yq]mp+D\n׭~B1KY0tOflvEh`GI>`u^šKȨ'W*[ !%(QJzQ,-ZB\/!o|%anx0_ٲZ/z -`H2CV\")zTmϘL gx>wх{Ѥ$pVgzX6 5:4JSkJS *B>oUs/2b`H+#9%?I\RCtfr1,bO/ YZ