v0.4.0

What's Changed

• Minor improvements by @philipp-meier in #20
• CHG: Improve Cookie Handling by @sevensolutions in #22
  Note: This is a breaking change!
  The authorization cookie is now encrypted and split into multiple chunks because they may get too big.
  If you get an internal server error, please delete all Authorization cookies and try again.
• ADD: It is now possible to change whether you want to validate the access_token or id_token. When using EntraID, it automatically selects id_token which should now make EntraID working.
• ADD: Re-added support for token introspection. Please note that this still doesn't support Hashicorp Vault for some reasons.

New Contributors

• @philipp-meier made their first contribution in #20

Full Changelog: v0.3.2...v0.4.0