Merge fixes from 7.2.x forward to 7.3.x#2121
Merged
josephdecock merged 31 commits intoreleases/is/7.3.xfrom Jul 22, 2025
Merged
Merge fixes from 7.2.x forward to 7.3.x#2121josephdecock merged 31 commits intoreleases/is/7.3.xfrom
josephdecock merged 31 commits intoreleases/is/7.3.xfrom
Conversation
We've removed this config file from later branches, and backporting that change makes local dev simpler.
The mock logger was introduced in 7.1 and allows us to write tests that make assertions about what was logged. We need this in 7.0 to test the sensitive values filter.
PAR requests sometimes are handled by the same code path as authorize requests, so both endpoint's default sensitive values filter should be the same.
Harden default logging filters for PAR and Authorize endpoints (7.0)
…te-7.1 Harden default logging filters for PAR and Authorize endpoints (7.1)
…te-7.2 Harden default logging filters for PAR and Authorize endpoints (7.2)
Backport CI and Release build workflows to 7.0.x branch
Respect port number in mTLS configuration
- Autoincrement patch instead of minor. Major and minor version numbers are explicitly controlled by our release process. - Add missing is- tag prefix config
Update minver config
7.1 minver fix
7.2 minver fix
Introduce tests for ProtectedResourceErrorResult to ensure WWW-Authenticate header formatting is correct. Refactor header construction values into a single string.
This is only adding the dependency, not updating all the tests. This gives us an easy way to write tests that will merge cleanly into main.
Ensure WWW-Authenticate uses a single HTTP header
Ensure that the client object is not null before attempting to determine its session coordination behavior.
…ation Ensure `DefaultSessionCoordinationService` does not attempt logout for missing or null clients by introducing a dedicated test.
Add null-check for client before coordinating session lifecycle
bhazen
approved these changes
Jul 22, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Merge the these 7.2.x fixes forward:
Add null-check for client before coordinating session lifecycle #2038
Ensure WWW-Authenticate uses a single HTTP header #1998
Harden default logging filters for PAR and Authorize endpoints (7.2) #1978
Respect port number in mTLS configuration #1990