Changelog

1.4.0 (2022-01-19)

Features

  • setting the audience to always point to google token endpoint (#833) (33bfe7a)

Bug Fixes

  • (WIF) remove erroneous check for the subject token field name for text credential source (#822) (6d35c68)
  • java: add -ntp flag to native image testing command (#1299) (#807) (aa6654a)
  • java: run Maven in plain console-friendly mode (#1301) (#818) (4df45d0)

1.3.0 (2021-11-10)

Features

  • next release from main branch is 1.3.0 (#780) (1149581)

Bug Fixes

  • java: java 17 dependency arguments (#1266) (#779) (9160a53)
  • service account impersonation with workforce credentials (#770) (6449ef0)

1.2.2 (2021-10-20)

Bug Fixes

  • environment variable is "AWS_SESSION_TOKEN" and not "Token" (#772) (c8c3073)

1.2.1 (2021-10-11)

Bug Fixes

  • disabling self-signed jwt for domain wide delegation (#754) (ac70a27)

1.2.0 (2021-09-30)

Features

Bug Fixes

1.1.0 (2021-08-17)

Features

  • downscoping with credential access boundaries (#702) (aa7ede1)

Bug Fixes

  • add validation for the token URL and service account impersonation URL for Workload Identity Federation (#717) (23cb8ef)

Documentation

  • updates README for downscoping with CAB (#716) (68bceba)

1.0.0 (2021-07-28)

⚠ BREAKING CHANGES

  • updating google-auth-library-java min Java version to 1.8

Features

  • GA release of google-auth-library-java (ver 1.0.0) (#704) (3d9874f)
  • updating google-auth-library-java min Java version to 1.8 (3d9874f)

Bug Fixes

  • Add shopt -s nullglob to dependencies script (#693) (c5aa708)
  • Update dependencies.sh to not break on mac (c5aa708)

0.27.0 (2021-07-14)

Features

  • add Id token support for UserCredentials (#650) (5a8f467)
  • add impersonation credentials to ADC (#613) (b9823f7)
  • Adding functional tests for Service Account (#685) (dfe118c)
  • allow scopes for self signed jwt (#689) (f4980c7)

0.26.0 (2021-05-20)

Features

  • add gcf-owl-bot[bot] to ignoreAuthors (#674) (359b20f)
  • added getter for credentials object in HttpCredentialsAdapter (#658) (5a946ea)
  • enable pre-emptive async oauth token refreshes (#646) (e3f4c7e)
  • Returning an issuer claim on request errors (#656) (95d70ae)

Bug Fixes

  • use orginal url as audience for self signed jwt if scheme or host is null (#642) (b4e6f1a)

0.25.5 (2021-04-22)

Dependencies

0.25.4 (2021-04-15)

Bug Fixes

0.25.3 (2021-04-12)

Dependencies

0.25.2 (2021-03-18)

Bug Fixes

  • follow up fix service account credentials createScopedRequired (#605) (7ddac43)
  • support AWS_DEFAULT_REGION env var (#599) (3d066ee)

0.25.1 (2021-03-18)

Bug Fixes

  • fix service account credentials createScopedRequired (#601) (0614482)

0.25.0 (2021-03-16)

Features

0.24.1 (2021-02-25)

Dependencies

  • update dependency com.google.http-client:google-http-client-bom to v1.39.0 (#580) (88718b0)

0.24.0 (2021-02-19)

Features

  • add workload identity federation support (#547) (b8dde1e)

Bug Fixes

Documentation

  • add instructions for using workload identity federation (#564) (2142db3)

0.23.0 (2021-01-26)

⚠ BREAKING CHANGES

  • privatize deprecated constructor (#473)

Features

  • allow custom lifespan for impersonated creds (#515) (0707ed4)
  • allow custom scopes for compute engine creds (#514) (edc8d6e)
  • allow set lifetime for service account creds (#516) (427f2d5)
  • promote IdToken and JWT features (#538) (b514fe0)

Bug Fixes

Dependencies

  • update dependency com.google.appengine:appengine-api-1.0-sdk to v1.9.84 (#422) (b262c45)
  • update dependency com.google.guava:guava to v30.1-android (#522) (4090d1c)

Documentation

  • fix wording in jwtWithClaims Javadoc (#536) (af21727)

0.22.2 (2020-12-11)

Bug Fixes

  • quotaProjectId should be applied for cached getRequestMetadata(URI, Executor, RequestMetadataCallback) (#509) (0a8412f)

0.22.1 (2020-11-05)

Bug Fixes

  • remove 1 hour limit for impersonated token (#490) (927e3d5)

Dependencies

  • update dependency com.google.guava:guava to v30 (#497) (0551649)
  • update dependency com.google.http-client:google-http-client-bom to v1.38.0 (#503) (46f20bc)

0.22.0 (2020-10-13)

Features

  • add logging at FINE level for each step of ADC (#435) (7d145b2)

Documentation

Dependencies

  • update dependency com.google.http-client:google-http-client-bom to v1.37.0 (#486) (3027fbf)

0.21.1 (2020-07-07)

Dependencies

0.21.0 (2020-06-24)

Features

  • add TokenVerifier class that can verify RS256/ES256 tokens (#420) (5014ac7)

Dependencies

  • update autovalue packages to v1.7.2 (#429) (5758364)
  • update dependency com.google.http-client:google-http-client-bom to v1.35.0 (#427) (5494ec0)
  • update Guava to 29.0-android (#426) (0cd3c2e)

0.20.0 (2020-01-15)

Features

  • updated JwtClaims.Builder methods to public (#396) (9e5de14)

Dependencies

0.19.0 (2019-12-13)

Features

  • support reading in quotaProjectId for billing (#383) (f38c3c8)

Dependencies

  • update appengine-sdk to 1.9.76 (#366) (590883d)
  • update autovalue packages to v1.7 (#365) (42a1694)
  • update dependency com.google.appengine:appengine to v1.9.77 (#377) (c3c950e)
  • update dependency com.google.http-client:google-http-client-bom to v1.33.0 (#374) (af0af50)

Documentation

0.18.0 (2019-10-09)

Bug Fixes

  • make JwtClaims.newBuilder() public (#350) (6ab8758)
  • move autovalue into annotation processor path instead of classpath (#358) (a82d348)

Dependencies

Documentation

  • fix include instructions in google-auth-library-bom README (#352) (f649735)

0.17.4 (2019-10-08)

Bug Fixes

  • make JwtClaims.newBuilder() public (#350) (6ab8758)
  • move autovalue into annotation processor path instead of classpath (#358) (a82d348)

Dependencies

Documentation

  • fix include instructions in google-auth-library-bom README (#352) (f649735)

0.17.2 (2019-09-24)

Bug Fixes

0.17.1 (2019-08-22)

Bug Fixes

  • allow unset/null privateKeyId for JwtCredentials (#336) (d28a6ed)

0.17.0 (2019-08-16)

Bug Fixes

  • cleanup unused code and deprecation warnings (#315) (7fd94c0)
  • Fix declared dependencies from merge issue (#291) (35abf13)
  • throw SigningException as documented (#316) (a1ab97c)
  • typo in ComputeEngineCredentials exception message (#313) (1a16f38)

Features

  • add Automatic-Module-Name to manifest (#326) (29f58b4), closes #324 #324
  • add IDTokenCredential support (#303) (a87e3fd)
  • add JwtCredentials with custom claims (#290) (3f37172)
  • allow arbitrary additional claims for JwtClaims (#331) (888c61c)
  • Implement ServiceAccountSigner for ImpersonatedCredentials (#279) (70767e3)

Reverts

0.16.2 (2019-06-26)

Bug Fixes

  • Add metadata-flavor header to metadata server ping for compute engine (#283)

Dependencies

  • Import http client bom for dependency management (#268)

Documentation

  • README section for interop with google-http-client (#275)

0.16.1 (2019-06-06)

Dependencies

  • Update dependency com.google.http-client:google-http-client to v1.30.1 (#265)

0.16.0 (2019-06-04)

Features

  • Add google-auth-library-bom artifact (#256)

Dependencies

  • Update dependency com.google.http-client:google-http-client to v1.30.0 (#261)
  • Update dependency com.google.http-client:google-http-client to v1.29.2 (#259)
  • Update dependency org.sonatype.plugins:nexus-staging-maven-plugin to v1.6.8 (#257)
  • Update to latest app engine SDK version (#258)
  • Update dependency org.apache.maven.plugins:maven-source-plugin to v3.1.0 (#254)
  • Update dependency org.jacoco:jacoco-maven-plugin to v0.8.4 (#255)
  • Update dependency org.apache.maven.plugins:maven-jar-plugin to v3.1.2 (#252)
  • Update dependency org.apache.maven.plugins:maven-source-plugin to v2.4 (#253)

Documentation

  • Javadoc publish kokoro job uses docpublisher (#243)

0.15.0 (2019-03-27)

Bug Fixes

  • createScoped: make overload call implementation (#229)

Reverts

  • Add back in deprecated methods in ServiceAccountJwtAccessCredentials (#238)

0.14.0 (2019-03-26)

Bug Fixes

  • update default metadata url (#230)
  • Remove deprecated methods (#190)
  • Update Sign Blob API (#232)

Dependencies

  • Upgrade http client to 1.29.0. (#235)
  • update deps (#234)

0.13.0 (2019-01-17)

Bug Fixes

  • Use OutputStream directly instead of PrintWriter (#220)
  • Improve log output when detecting GCE (#214)

Features

  • Overload GoogleCredentials.createScoped with variadic arguments (#218)

Dependencies

  • Update google-http-client version, guava, and maven surefire plugin (#221)

0.12.0 (2018-12-19)

Bug Fixes

  • Show error message in case of problems with getting access token (#206)
  • Add note about NO_GCE_CHECK to metadata 404 error message (#205)

Features

  • Add ImpersonatedCredentials (#211)
  • Add option to suppress end user credentials warning. (#207)

Dependencies

  • Update google-http-java-client dependency to 1.27.0 (#208)

Documentation

  • README grammar fix (#192)
  • Add unstable badge to README (#184)
  • Update README with instructions on installing the App Engine SDK and running the tests (#209)

0.11.0 (2018-08-23)

Bug Fixes

  • Update auth token urls (#174)

Dependencies

  • Update dependencies (guava) (#170)
  • Bumping google-http-client version to 1.24.1 (#171)

Documentation

  • Documentation for ComputeEngineCredential signing. (#176)
  • Fix README link (#169)

0.10.0 (2018-06-12)

Bug Fixes

  • Read token_uri from service account JSON (#160)
  • Log warning if default credentials uses a user token from gcloud sdk (#166)

Features

  • Add OAuth2Credentials#refreshIfExpired() (#163)
  • ComputeEngineCredentials implements ServiceAccountSigner (#141)

Documentation

  • Versionless Javadocs (#164)
  • Fix documentation for getAccessToken() returning cached value (#162)

0.9.1 (2018-04-09)

Features

  • Add caching for JWT tokens (#151)

0.9.0 (2017-11-02)

Bug Fixes

  • Fix NPE deserializing ServiceAccountCredentials (#132)

Features

  • Surface cleanup (#136)
  • Providing a method to remove CredentialsChangedListeners (#130)
  • Implemented in-memory TokenStore and added opportunity to save user credentials into file (#129)

Documentation

  • Fixes comment typos. (#131)

0.8.0 (2017-09-08)

Bug Fixes

  • Extracting the project_id field from service account JSON files (#118)
  • Fixing an Integer Overflow Issue (#121)
  • use metadata server to get credentials for GAE 8 standard environment (#122)

Features

  • Switch OAuth2 HTTP surface to use builder pattern (#123)
  • Add builder pattern to AppEngine credentials (#125)

Documentation

  • Fix API Documentation link rendering (#112)

0.7.1 (2017-07-14)

Bug Fixes

  • Mitigate occasional failures in looking up Application Default Credentials on a Google Compute Engine (GCE) Virtual Machine (#110)

0.7.0 (2017-06-06)

Bug Fixes

  • Retry HTTP errors in ServiceAccountCredentials.refreshAccessToken() to avoid propagating failures (#100 addresses #91)

Features

  • Add GoogleCredentials.createDelegated() method to allow using domain-wide delegation with service accounts (#102)
  • Allow bypassing App Engine credential check using environment variable, to allow Application Default Credentials to detect GCE when running on GAE Flex (#103)