1.15      Oct 16 2012

1.15      Oct 16 2012

    * Use HTTP::Response to decode content (closes #78218)

1.14      Nov 09 2011

1.13      Nov 06 2011

    * Use/cache Last-modified: as a number, not a raw header string (closes #47349)

    * Pay attention to charset on application/xrds+xml content-type (closes #41310)

1.12      Oct 25 2011

    * API change:  IndirectMessage->new(CODEREF)

      CODEREF now needs to be able to also take 0 arguments and then
      return a list of all URI parameter names in the request
      (core protocol as of OpenID 2.0 needs this functionality)

      Added IndirectMessage->all_parameters

    * Use HTML::Parser for parsing HTML
      Added OpenID::util::html_extract_linkmetas

    * Fix YADIS discovery so that
      (1) HTML parsing is not done on YADIS documents and
      (2) meta/http-equiv tags are checked when there's
          no YADIS document or x-xrds-location header

1.11      Oct 22 2011

    * Allow Plack::Request parameter objects for IndirectMessage

1.030099_004 Oct 20 2011

    * Improved HTML head extraction to skip CDATA and comments

    * Fixed warning behavior of timing_indep_eq

    * new comaintainer (Roger Crew)

1.030099_003 Jan 01 2011

    * Replace URL escaper with calls to URI::Escape (Robert Norris)

    * Removed JSON encoder in favour of using JSON::encode_json directly in
      N::O::Server and N::O::Consumer (Robert Norris)

1.030099_002 Dec 07 2010

    * Documentation tweaks (Robert Norris)

    * Remove use of $& (Jess Robinson RT#63684)

1.030099_001 Nov 06 2010

    * Support for Apache2::Request (mod_perl 2) (Yitzchak Scott-Thoennes)

    * Fix potential timing attack when checking signatures (Adam Sjøgren)
      (see http://lists.openid.net/pipermail/openid-security/2010-July/001156.html)

    * In Net::OpenID::Yadis, use the single-constant form of
      "use constant" so we work under Perl 5.6 where the multi constant form
      was not available.

    * Initial version with stuff moved out of Net::OpenID::Consumer.