Current Series Release Notes

Current Series Release Notes¶

5.11.1-9¶

Upgrade Notes¶

Support for Python 3.9 has been dropped. The minimum version of Python now supported in 3.10.

Bug Fixes¶

OIDC Device Authorization Flow: allow acquiring either an OIDC id_token or an OAuth access_token as some IDPs provide both (RFC8628 does not specify if ID tokens may be acquired).

[bug 2105891] This change prevents client_id from appearing more than once per request, fixing a previous 401 error with Okta. Credentials should either be in the auth header, POST body, or a client_assertation in the POST body. If the client_secret is set, it will be with client_id in the auth headers. If it is not, client_id will be added to the payload.

this page last updated: 2025-08-18 11:04:37

Creative Commons Attribution 3.0 License

Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.