Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.

Cloudron Forum

Apps - Status | Demo | Docs | Install

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

WordPress Managed - Package updates

Pinned WordPress (Managed)

84 Posts 4 Posters 41.3k Views 7 Watching

P Offline
P Offline
Package Updates

wrote on last edited by

#81
[3.15.0]
- openid-connect-generic plugin replaced with renamed daggerhart-openid-connect-generic plugin
1 Reply Last reply

0
P Offline
P Offline
Package Updates

wrote last edited by

#82
[3.15.1]
- Update WordPress to 6.9.1
- Full Changelog
1 Reply Last reply

0
P Offline
P Offline
Package Updates

wrote last edited by

#83
[3.15.2]
- Update openid-connect-generic to 3.10.3
1 Reply Last reply

0
P Offline
P Offline
Package Updates

wrote last edited by

#84
[3.16.0]
- Update openid-connect-generic to 3.11.3
- Add configurable issuer setting for JWT validation by @daggerhart in #639
- Fix JWT verification with Microsoft Entra ID JWKS by @daggerhart in #636
- 629: Fix to better match issuer in jwt validator by @daggerhart in #630
- Previous versions decoded JWT tokens without cryptographic verification
- Added proper JWT signature verification using JWKS (JSON Web Key Set)
- Implements firebase/php-jwt library for validation
- Validates all required claims: exp, aud, iss, iat, sub
- Added signature verification for aggregated claims from secondary JWTs
- Prevents injection of forged claims
- Replaced unsafe HTTP functions with SSRF-protected alternatives
1 Reply Last reply

0

Log in to reply

1
2
3
4
5