Release 1.3.0

Change-Id: Ie5ada4be21b0e229e97ce854fe59e7ac4072984b
This commit is contained in:
Ondřej Nový 2017-12-09 17:15:53 +01:00
parent c844fb742a
commit c6584fa923
2 changed files with 12 additions and 0 deletions

View File

@ -15,6 +15,7 @@ Will Reese
Contributors
------------
Abdul Nizamuddin
Andreas Jaeger
Andrew Clay Shafer
Anne Gentle
@ -40,6 +41,7 @@ Marcelo Martins
Monty Taylor
Pablo Llopis
Paul Jimenez
Pawnesh Kumar
Pete Zaitcev
Prashanth Pai
Rodney Beede
@ -50,4 +52,5 @@ SoftDed
Soren Hansen
Stephen Milton
Thiago da Silva
Tim Burke
Zhang Guoqing

View File

@ -1,3 +1,12 @@
swauth (1.3.0)
[SECURITY] Stop using client headers for cross-middleware communication
WARNING: You need to upgrade Swift3 to at least 1.12
[SECURITY] Hash token before storing it in Swift (CVE-2017-16613)
WARNING: In deployments without memcached this patch logs out all users
because tokens became invalid.
swauth (1.2.0)
Allow to set password by hash