Bump com.github.kbase:auth2 from 0.7.1 to 0.8.1

[dependabot]

Bumps com.github.kbase:auth2 from 0.7.1 to 0.8.1.

Release notes

Sourced from com.github.kbase:auth2's releases.

0.8.1

What's Changed

• Agent, Developer, and Service tokens will now inherit the MFA status of the Login token used to create them.
• Replaced the deprecated Globus identities_set directive with identity_set. See https://docs.globus.org/api/auth/reference/#token-introspect

Full Changelog: kbase/auth2@0.8.0...0.8.1

0.8.0

What's Changed

• BACKWARDS INCOMPATIBILITY: In flight login sessions when the server is upgraded will fail. For a completely safe transition, stop the server, remove any temporary session data, and bring the new server up.
• BACKWARDS INCOMPATIBILITY: Repeated or trailing underscores are no longer allowed in usernames. Existing usernames are unaffected.
• The MultiFactor Authentication status is now available for tokens fetched from the service. Currently only OrcID supports MFA statuses other than Unknown. Other statuses are Used and Not Used.
• Fixed a bug where usernames with underscores would not be matched in username searches if an underscore was an interior character of a search prefix.
• Fixed a bug where a MongoDB error would be thrown if a user search prefix resulted in no search terms if it had no valid characters for the requested search, whether user name or display name. Now a service error is thrown.
• The /tokens endpoint can now accept Service or service to specify that a service token should be created.

New Contributors

• @​dauglyon made their first contribution in kbase/auth2#493

Full Changelog: kbase/auth2@0.7.1...0.8.0

Changelog

Sourced from com.github.kbase:auth2's changelog.

0.8.1

• Agent, Developer, and Service tokens will now inherit the MFA status of the Login token used to create them.
• Replaced the deprecated Globus identities_set directive with identity_set. See https://docs.globus.org/api/auth/reference/#token-introspect

0.8.0

• BACKWARDS INCOMPATIBILITY: In flight login sessions when the server is upgraded will fail. For a completely safe transition, stop the server, remove any temporary session data, and bring the new server up.
• BACKWARDS INCOMPATIBILITY: Repeated or trailing underscores are no longer allowed in usernames. Existing usernames are unaffected.
• The MultiFactor Authentication status is now available for tokens fetched from the service. Currently only OrcID supports MFA statuses other than Unknown. Other statuses are Used and Not Used.
• Fixed a bug where usernames with underscores would not be matched in username searches if an underscore was an interior character of a search prefix.
• Fixed a bug where a MongoDB error would be thrown if a user search prefix resulted in no search terms if it had no valid characters for the requested search, whether user name or display name. Now a service error is thrown.
• The /tokens endpoint can now accept Service or service to specify that a service token should be created.

Commits

• 320cb54 Merge pull request #512 from kbase/develop
• 0f04ba5 Merge pull request #511 from kbase/dev-mfa
• 87a3b1e Allow non-Login tokens to inherit MFA status
• 9c6cc2a Merge pull request #508 from kbase/develop
• 77a783a Merge pull request #507 from kbase/dev-mfa
• 830793b Improve test mode create token test
• 99516be Merge pull request #506 from kbase/dev-mfa
• e3e0b4b Bump version + release notes
• 0487515 Merge pull request #505 from kbase/dev-mfa
• 9c678b8 Clarify comment
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)