Add 3.1.0 changelog

1 files changed, 28 insertions, 0 deletions

diff --git a/CHANGELOG.rst b/CHANGELOG.rst
index c5346eb..e07ec3c 100644
--- a/CHANGELOG.rst
+++ b/CHANGELOG.rst
@@ -1,6 +1,34 @@
 Changelog
 =========
 
+3.1.0 (TBD)
+------------------
+
+OAuth2.0 Provider - Features
+* #660: OIDC add support of nonce, c_hash, at_hash fields
+  - New RequestValidator.fill_id_token method
+  - Deprecated RequestValidator.get_id_token method
+* #677: OIDC add UserInfo endpoint
+  - New RequestValidator.get_userinfo_claims method
+
+OAuth2.0 Provider - Security
+* #665: Enhance data leak to logs
+  - New default to not expose request content in logs
+  - New function `oauthlib.set_debug(True)`
+* #666: Disabling query parameters for POST requests
+
+OAuth2.0 Provider - Bugfixes
+* #670: Fix validate_authorization_request to return the new PKCE fields
+* #674: Fix token_type to be case-insensitive (bearer and Bearer)
+
+OAuth2.0 Client - Bugfixes
+* #290: Fix Authorization Code's errors processing
+* #603: BackendApplication.Client.prepare_request_body use the "scope" argument as intended.
+* #672: Fix edge case when expires_in=Null
+
+OAuth1.0 Client
+* #669: Add case-insensitive headers to oauth1 BaseEndpoint
+
 3.0.2 (2019-07-04)
 ------------------
 * #650: Fixed space encoding in base string URI used in the signature base string.