2025.2 Series Release Notes

2025.2 Series Release Notes¶

5.12.0¶

Upgrade Notes¶

Support for Python 3.9 has been dropped. The minimum version of Python now supported in 3.10.

Bug Fixes¶

OIDC Device Authorization Flow: allow acquiring either an OIDC id_token or an OAuth access_token as some IDPs provide both (RFC8628 does not specify if ID tokens may be acquired).

[bug 2105891] This change prevents client_id from appearing more than once per request, fixing a previous 401 error with Okta. Credentials should either be in the auth header, POST body, or a client_assertation in the POST body. If the client_secret is set, it will be with client_id in the auth headers. If it is not, client_id will be added to the payload.

this page last updated: 2025-12-10 16:47:13

Creative Commons Attribution 3.0 License

Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.