Package "python-django-openstack-auth"

  horizon (3:13.0.3-0ubuntu2) bionic-security; urgency=medium

  [ Chris MacNaughton ]
  * d/control: Update VCS paths for move to lp:~ubuntu-openstack-dev.

  [ Corey Bryant ]
  * SECURITY UPDATE: ensure next parameter is validated to prevent malicious
    URL injection
    - d/p/CVE-2020-29565.patch: Make sure the next URL is in the same origin
      as Horizon before redirecting to it.
    - CVE-2020-29565

 -- Corey Bryant <email address hidden> Tue, 08 Dec 2020 16:00:52 -0500

  horizon (3:13.0.3-0ubuntu1) bionic; urgency=medium

  * d/watch: Update to point at opendev.
  * New stable point release for OpenStack Queens (LP: #1893234).
  * d/p/lp1840465.patch: Removed: Fixed in new upstream point release.

 -- Chris MacNaughton <email address hidden> Fri, 28 Aug 2020 12:02:38 +0000

  horizon (3:13.0.2-0ubuntu3) bionic; urgency=medium

  * d/p/Avoid_forced_logout_when_403_error_encountered.patch:
    Cherry-picked from upstream stable/queens to prevent forced logout when
    403 forbidden encountered, such as when access not allowed by policy
    (LP: #1840844).

 -- Nicolas Bock <email address hidden> Mon, 27 Apr 2020 17:29:24 +0000

  horizon (3:13.0.2-0ubuntu2) bionic; urgency=medium

  * d/p/lp1840465.patch: Fix failing to list security groups
    with no rules (LP: #1840465).

 -- Rodrigo Barbieri <email address hidden> Fri, 18 Oct 2019 20:27:28 +0000

  horizon (3:13.0.2-0ubuntu1) bionic; urgency=medium

  * New stable point release for OpenStack Queens (LP: #1830341).
  * d/p/add-enabled-check-in-backups-panel.patch: Dropped. Fixed in
    upstream release.
  * d/p/drop-devicename-creating-server-with-image-boot-to-volume.patch:
    Dropped. Fixed in upstream release.

 -- Sahid Orentino Ferdjaoui <email address hidden> Fri, 24 May 2019 11:10:35 +0200