Skip to content

Constrain Nimbus dependencies to compatible majors #9400

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jzheaux opened this issue Feb 2, 2021 · 0 comments
Closed

Constrain Nimbus dependencies to compatible majors #9400

jzheaux opened this issue Feb 2, 2021 · 0 comments
Assignees
@jzheaux
Labels
in: build An issue in the build type: enhancement A general enhancement
Milestone
5.5.0-M2

Comments

@jzheaux
Copy link
Contributor

jzheaux commented Feb 2, 2021

Currently, Spring Security selects the latest oauth2-oidc-sdk and nimbus-jose-jwt dependencies. This can create issues when those dependencies are out of sync, though, and recently created a larger issue due to a 6-month gap between the nimbus-jose-jwt major and the oauth2-oidc-sdk major.

Changing the dependency constraints to selecting the compatible majors for these two dependencies will ensure that there are no major incompatibilities between the two.
@jzheaux jzheaux added in: build An issue in the build type: enhancement A general enhancement labels Feb 2, 2021
@jzheaux jzheaux added this to the 5.5.0-M2 milestone Feb 2, 2021
@jzheaux jzheaux self-assigned this Feb 2, 2021
@jzheaux jzheaux closed this as completed in 9b42495 Feb 3, 2021
@jgrandja jgrandja mentioned this issue Apr 13, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jzheaux jzheaux

Labels
in: build An issue in the build type: enhancement A general enhancement
Projects
None yet
Milestone
5.5.0-M2
Development

No branches or pull requests
1 participant
@jzheaux