CHANGELOG ๐Ÿ“‹๏ƒ

Unreleased๏ƒ

Releases๏ƒ

1.4.0๏ƒ

  • Adds support for Microsoft Entra โ€˜app tokensโ€™ for app2app flows without a user present.

  • Adds โ€˜AuthContext.token_claimsโ€™ to provide easy access to decoded claims from the access token.

  • Relaxes library dependencies so authlib wonโ€™t block consumers updating their FastAPI.

  • Supports both v1 and v2 MS Entra โ€˜issโ€™ claims.

1.3.0๏ƒ

  • Bugfix: enforce Role enum on Requires(roles={})

  • Adds verify_auth script to auto-generate policy summaries.

  • Relaxed validation rules to accept api:// prefix in token aud claims.

1.2.0๏ƒ

  • Added OPERATIONS_SCIENTIST role

1.1.0๏ƒ

  • Added OPS_PROPOSAL_ADMIN, OPS_REVIEWER_SCIENCE and OPS_REVIEWER_TECHNICAL Roles for the PHT

1.0๏ƒ

  • Initial release: utilities for enforcing authorisation rules in SKAO applications.