Recommended update for python-oauth2client

SUSE Recommended Update: Recommended update for python-oauth2client
Announcement ID: SUSE-RU-2017:1758-1
Rating: low
References: #1002895
Affected Products:
  • SUSE OpenStack Cloud 7
  • SUSE Linux Enterprise Module for Public Cloud 12

  • An update that has one recommended fix can now be installed.

    Description:


    This update provides python-oauth2client version 3.0.0, which brings many
    fixes and enhancements:

    - Move GCE metadata interface to a separate module.
    - Populate scopes and token_expiry for GCE credentials.
    - Fix Python 3.5 compatibility.
    - Add oauth2client.contrib.sqlalchemy, a SQLAlchemy-based credential store.
    - Improve error when an invalid client secret is provided.
    - Add oauth2client.contrib.multiprocess_storage.
    - Pull httplib2 usage into a separate transport module.
    - Fix application default credentials resolution order.
    - Add configurable timeout for GCE metadata server check.
    - Add warnings when using deprecated approval_prompt='force'.
    - Add deprecation warning to oauth2client.contrib.multistore_file.
    - Add support to override token_uri and revoke_uri in
    oauth2client.service_account.ServiceAccountCredentials.
    - Add basic support for JWT access credentials.
    - Fix oauth2client.client.DeviceFlowInfo to use UTC instead of the system
    timezone when calculating code expiration.
    - Fix issue where flask_util.UserOAuth2.required would accept expired
    credentials.
    - Fix issue where flask_util would fill the session with Flow objects.
    - Remove 'oauth2client.util.dict_to_tuple_key()' from public interface.
    - Implement 'ServiceAccountCredentials.from_p12_keyfile_buffer()' to allow
    passing a file-like
    object in addition to the factory constructor that uses a filename
    directly.
    - Implement 'ServiceAccountCredentials.create_delegated()' to allow
    upgrading a credential to
    one that acts on behalf of a given subject.
    - Avoid OAuth2Credentials 'id_token' going out of sync after a token
    refresh.
    - Added 'to_json' and 'from_json' methods to all 'Credentials' classes.
    - Fall back to read-only credentials on EACCES errors.
    - Add access token refresh error class that includes HTTP status.
    - Fix incremental auth in flask_util.

    Patch Instructions:

    To install this SUSE Recommended Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE OpenStack Cloud 7:
      zypper in -t patch SUSE-OpenStack-Cloud-7-2017-1090=1
    • SUSE Linux Enterprise Module for Public Cloud 12:
      zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2017-1090=1

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE OpenStack Cloud 7 (noarch):
      • python-oauth2client-3.0.0-9.1
    • SUSE Linux Enterprise Module for Public Cloud 12 (noarch):
      • python-oauth2client-3.0.0-9.1
      • python-oauth2client-gce-3.0.0-9.1

    References: