We are pumped to announce the release of: keystonemiddleware 11.0.0 This release is part of the gazpacho release series. The source is available from: https://opendev.org/openstack/keystonemiddleware Download the package from: https://pypi.org/project/keystonemiddleware Please report issues through: https://bugs.launchpad.net/keystonemiddleware/+bugs For more details, please see below. 11.0.0 ^^^^^^ Upgrade Notes * The s3token middleware now requires the "www_authenticate_uri" option and no longer loads the following deprecated options. * "auth_uri" * "auth_host" * "auth_port" * "auth_protocol" Changes in keystonemiddleware 10.12.0..11.0.0 --------------------------------------------- e15e33f Fix privilege escalation via spoofed identity headers 9f16c76 Add cryptography package as an optional dependency b14f816 Revert "Wipe context before returning request response" 6549c93 s3token: Stop loading deprecated options 3b6bb64 reno: Update master for unmaintained/2024.1 014664c Wipe context before returning request response 1e70089 Drop flake8-docstrings 256e4c3 Remove unused bandit target b384999 Update master for stable/2025.2 2da613f Replace CRLF by LF Diffstat (except docs and test files) ------------------------------------- keystonemiddleware/external_oauth2_token.py | 7 +- keystonemiddleware/s3_token.py | 22 +------ .../unit/test_external_oauth2_token_middleware.py | 76 ++++++++++++++++++++++ ...e-oauth2-interoperability-dd998d4e0eafed3c.yaml | 16 ++--- ...en-remove-deprecated-opts-a58a7715b275a89c.yaml | 10 +++ releasenotes/source/2024.1.rst | 2 +- releasenotes/source/2025.2.rst | 6 ++ releasenotes/source/index.rst | 1 + setup.cfg | 2 + test-requirements.txt | 1 - tox.ini | 5 -- 13 files changed, 115 insertions(+), 80 deletions(-) Requirements updates -------------------- diff --git a/test-requirements.txt b/test-requirements.txt index 0bfe13a..3ad9ad1 100644 --- a/test-requirements.txt +++ b/test-requirements.txt @@ -2 +1,0 @@ hacking~=6.1.0 # Apache-2.0 -flake8-docstrings~=1.7.0 # MIT