Skip to content

v1.0.0
Compare
Choose a tag to compare
@propertone propertone released this 29 Dec 00:51
· 13 commits to master since this release
v1.0.0
1104e69
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
  • hostname no longer needs to be specified in KerberosAuthMiddleware constructor - any hostname in the keytab will be accepted
  • Set REMOTE_USER when valid auth is provided, even if not required
  • Limit the number of bytes read in request bodies on auth failure to mitigate a possible DoS attack. New parameter read_max_on_auth_fail can be set to customize or remove the limit
  • Support clients which don't request mutual authentication
  • Log Kerberos errors
  • Validate first word in Authorization header
  • Python 3 compatibility fixes
  • Various bug fixes
  • Update license from BSD-2-Clause to BSD-3-Clause
  • Project was moved to the D. E. Shaw Org
Assets 2
Loading