Recommended update for python-oauth2client

Announcement ID: SUSE-RU-2017:1758-1
Rating: low
References:
Affected Products:
  • Public Cloud Module 12
  • SUSE Linux Enterprise High Performance Computing 12 SP2
  • SUSE Linux Enterprise High Performance Computing 12 SP3
  • SUSE Linux Enterprise High Performance Computing 12 SP4
  • SUSE Linux Enterprise High Performance Computing 12 SP5
  • SUSE Linux Enterprise Server 12
  • SUSE Linux Enterprise Server 12 SP1
  • SUSE Linux Enterprise Server 12 SP2
  • SUSE Linux Enterprise Server 12 SP3
  • SUSE Linux Enterprise Server 12 SP4
  • SUSE Linux Enterprise Server 12 SP5
  • SUSE Linux Enterprise Server for SAP Applications 12
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5
  • SUSE OpenStack Cloud 7

An update that has one fix can now be installed.

Description:

This update provides python-oauth2client version 3.0.0, which brings many fixes and enhancements:

  • Move GCE metadata interface to a separate module.
  • Populate scopes and token_expiry for GCE credentials.
  • Fix Python 3.5 compatibility.
  • Add oauth2client.contrib.sqlalchemy, a SQLAlchemy-based credential store.
  • Improve error when an invalid client secret is provided.
  • Add oauth2client.contrib.multiprocess_storage.
  • Pull httplib2 usage into a separate transport module.
  • Fix application default credentials resolution order.
  • Add configurable timeout for GCE metadata server check.
  • Add warnings when using deprecated approval_prompt='force'.
  • Add deprecation warning to oauth2client.contrib.multistore_file.
  • Add support to override token_uri and revoke_uri in oauth2client.service_account.ServiceAccountCredentials.
  • Add basic support for JWT access credentials.
  • Fix oauth2client.client.DeviceFlowInfo to use UTC instead of the system timezone when calculating code expiration.
  • Fix issue where flask_util.UserOAuth2.required would accept expired credentials.
  • Fix issue where flask_util would fill the session with Flow objects.
  • Remove 'oauth2client.util.dict_to_tuple_key()' from public interface.
  • Implement 'ServiceAccountCredentials.from_p12_keyfile_buffer()' to allow passing a file-like object in addition to the factory constructor that uses a filename directly.
  • Implement 'ServiceAccountCredentials.create_delegated()' to allow upgrading a credential to one that acts on behalf of a given subject.
  • Avoid OAuth2Credentials 'id_token' going out of sync after a token refresh.
  • Added 'to_json' and 'from_json' methods to all 'Credentials' classes.
  • Fall back to read-only credentials on EACCES errors.
  • Add access token refresh error class that includes HTTP status.
  • Fix incremental auth in flask_util.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE OpenStack Cloud 7
    zypper in -t patch SUSE-OpenStack-Cloud-7-2017-1090=1
  • Public Cloud Module 12
    zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2017-1090=1

Package List:

  • SUSE OpenStack Cloud 7 (noarch)
    • python-oauth2client-3.0.0-9.1
  • Public Cloud Module 12 (noarch)
    • python-oauth2client-3.0.0-9.1
    • python-oauth2client-gce-3.0.0-9.1

References: