Releases: scc-digitalhub/AAC
Releases · scc-digitalhub/AAC
5.2.1
What's Changed
Features
- idps custom logo as data/image or external URL e64155
- add status map to idp providers to expose current config ec586f
Bug Fixes
- #642
- fix [#647] app oauth2 additional fields config,](66c3a86)
- fix: correct translation keys for oauth2 exceptions 530b74
Full Changelog: 5.2...5.2.1
Contributors
matteo-s
Assets 2
5.2
What's Changed
- chore: typo in error message by @thomaschiozzi-tndigit in #597
- feat: add support for configurations with separate pools for different databases (#581) by @gianpaolo-tndigit in #598
- Dev console by @matteo-s in #608
- Admin console by @matteo-s in #609
- Oauth2 refactor by @matteo-s in #610
- 5.2-beta by @matteo-s in #611
- chore: update build pipeline by @matteo-s in #618
- feat: add templates support to dev console, close #636 by @matteo-s in #644
Features
- add id to configurableProviders (fd67785)
- add import from yaml to dev console, close #638 (64547bb)
- add support for configurations with separate pools for different databases (#581) (a3fe0e0)
- add templates support to dev console, close #636 (0a8af36)
- add user and client info to persisted refresh tokens (7af53e0)
- added template override for saml, oidc (23d1777)
- admin console new (7bdc18e)
- admin console serving (e73e097)
- admin controller + add metrics endpoint (3173eb9)
- config openidfed metadata extension (316db15)
- database connection pool configurable via props (88f3925)
- dev console (6d241e1)
- dev console edit and test hooks for idps, fix #632 (7f73e50)
- dev console reset credentials on demand, fix #635 (7c291c3)
- dev console user import from email, fix #627 (fe82c49)
- expose console cors config ENV var (3951323)
- expose token expiration in db + extend store (d2ce613)
- extend realm stats collected (fe4b9df)
- indexes on attributes table for mysql #558 (e866296)
- indexes on attributes table for postgresql #558 (0f91f9a)
- new dev console dedicated controller (045df90)
- scheduled cleanup for expired tokens (b6cc09b)
- serve new dev console (3324e2c)
- spid idp (#587) (499c5ef)
- store authorization request pre-login and expose to idp (4350680)
- update api service model to include id (cdb1c30)
- update attributes system: expose id + updates to API (9917c79)
- update audit API to expose proper model + fixes (e8083d2)
- update clientApp model + extend API (717316a)
- update groups models to include roles + extend API (5867b51)
- update idp API (7e1cdfe)
- update old console for realm roles pagination (0f39d39)
- update realm configuration and merge configs via maps into entity + update APIs (d878051)
- update roles models + extend API (f7f4b0e)
- update scopes definition to expose scope as id + updates (92d83b1)
- update subject to expose id + fix search impl (286b64b)
- update users model + API (3f48d0b)
- use select for update to row lock refresh tokens usage (85a915a)
Bug Fixes
- #582 add primary key to audit table (f70d1a1)
- #585 add possibility to import Service by string pasting (21afa93)
- #541: cleanup orphan accounts when deleting a user (6b619fe), closes #541
- #562: correct sql query for audit store pagination (70fe67e), closes #562
- add index to oauth2 sql tables to enable per-row locking (050afa1)
- add missing i18n key (da542c8)
- add translation for oauth2 unauthorized error (e176d75)
- admin console realm update should not change config maps (5fc1ea8)
- changed userinfo behaviour 544 (8e1c84f)
- class enforce default script option when missing (5b68345)
- delete orphan user accounts when deleting a realm (ef2d1a7)
- fix additionalInfo type in access token (d750da6)
- fix client auth with refresh token wrongly prioritizing token rotation over basic auth (38f4dab)
- fix issue with removal of access tokens on store (4b7946d)
- fix services bootstrap (60634fc)
- fix tos tests (cfc96fe)
- information disclosure #535 (78880ee)
- loginController skip problematic providers (30e4b2e)
- new config to support #547 (334a4c0)
- overload console in local js engine to avoid writing to system.out, close [#278](https://github.com/scc-digi...
Contributors
matteo-s, gianpaolo-tndigit, and thomaschiozzi-tndigit
Assets 2
5.1
What's Changed
- feat: store authorization request pre-login and expose to idp by @matteo-s in #568
- Update AACBootstrap.java by @nawaz2013 in #573
- fix #585 add possibility to import Service by string pasting by @gianpaolo-tndigit in #586
- fix #582 add primary key to audit table by @gianpaolo-tndigit in #584
- 5.x spid by @thomaschiozzi-tndigit in #587
- 5.1 by @matteo-s in #589
Full Changelog: 5.0.3...5.1
Contributors
nawaz2013, matteo-s, and 2 other contributors
Assets 2
5.0.3
(2024-03-27)
Features
- database connection pool configurable via props (88f3925)
- indexes on attributes table for mysql #558 (e866296)
- indexes on attributes table for postgresql #558 (0f91f9a)
Bug Fixes
- #541: cleanup orphan accounts when deleting a user (6b619fe), closes #541
- #562: correct sql query for audit store pagination (70fe67e), closes #562
- changed userinfo behaviour 544 (8e1c84f)
- class enforce default script option when missing (5b68345)
- delete orphan user accounts when deleting a realm (ef2d1a7)
- new config to support #547 (334a4c0)
- pagination for audit events (b2ffaea)
- updated config file for params injection via annotation (03d990e)
What's Changed
- fix #542: fix reset query page by @elisanp in #543
- fix: changed userinfo behaviour #544 by @thomaschiozzi-tndigit in #545
- fix: new config to support #547 by @thomaschiozzi-tndigit in #548
- fix #549: pagination and filter for identity and attribute providers by @elisanp in #550
- added timestamp as version to custom idp from app.yml by @thomaschiozzi-tndigit in #553
- fix #554: pagination for audit events by @elisanp in #555
- fix 556: skipped invalid providers in fed when creating login by @thomaschiozzi-tndigit in #557
- feat: indexes on attributes table for postgresql #558 by @thomaschiozzi-tndigit in #559
- fix #538: add button to delete title and description map in idp by @elisanp in #561
- 5.0.3 by @matteo-s in #566
Contributors
matteo-s, elisanp, and thomaschiozzi-tndigit
Assets 2
5.0.2
First major release for AAC 5.
✨ What's new
- user console
- support for OpenId Federation
- configurable Terms of service
- support German language
- new supported databases: PostgreSQL, MariaDB, MySQL8
- new audit trail with optional signing
- external repositories for horizontal scaling
- localizable custom templates for views
📚 Notes
- no upgrade path from 4.x: start with an empty database or manually upgrade the schema
🚨 Breaking Changes
- database layout changed
- audit table content is incompatible with 4.x
What's Changed
- ConfigMap by @matteo-s in #234
- Identity services refactor by @matteo-s in #247
- Templates 18n by @matteo-s in #259
- Bootstrap refactor by @matteo-s in #267
- update bootstrapconfig load + add oauth2 client bootstrap by @matteo-s in #274
- introspect application type by @matteo-s in #275
- User console by @matteo-s in #139
- external repositories by @matteo-s in #287
- User console updates by @matteo-s in #307
- add possibility to log on SMTP server without username and password by @gianpaolo-tndigit in #305
- update oidc authority: make sub configurable to support facebook by @matteo-s in #308
- Password reset flow by @matteo-s in #309
- update login controller to avoid bypass if one registration provider … by @matteo-s in #310
- add second level path to security filter for actuator health probes subgroups by @gianpaolo-tndigit in #329
- enhancement: aggiunta traduzione in tedesco by @elisanp in #333
- fix #330: SuperAdmin can now assign roles/authorities to client applications by @elisanp in #338
- fix #335: update client secret basic auth converter to not throw exception when attempting conversion by @elisanp in #337
- Test suite by @matteo-s in #355
- fix #209: audit timestamp visualization has been restored by @elisanp in #354
- #360 enable POST endession URL and rename endsession confirm by @gianpaolo-tndigit in #378
- Checkstyle by @matteo-s in #395
- Update realm.templates.html to fix dev console templates view by @nawaz2013 in #399
- fix #405 username is correctly put in field username by @gianpaolo-tndigit in #407
- fix endsession URL, the previous was not reachable by @gianpaolo-tndigit in #406
- fix #359: fixed language handler interceptor to keep track of query params by @elisanp in #401
- fix #334: added missing UI configuration fields for Webhook OAuth Flow Extensions by @elisanp in #402
- Terms of service by @nawaz2013 in #397
- 4.3 by @matteo-s in #410
- Resources refactor by @matteo-s in #419
- fix #409: add validation for missing redirect uri with openid scope by @elisanp in #426
- fix #427 console now can load and save hookfunctions by @gianpaolo-tndigit in #428
- fix #432: persist Login Service Location value from the dev console by @elisanp in #433
- templates: update email regex to include valid chars by @matteo-s in #439
- fix #436: register time module to object mapper for serialization by @elisanp in #441
- 5.x update to opensaml4 by @thomaschiozzi-tndigit in #445
- test saml identity provider metadata by @elisanp in #434
- Test for Saml IdP Configuration by @thomaschiozzi-tndigit in #430
- 5.x.OIDC fix post endsession and authorize by @gianpaolo-tndigit in #425
- 5.x bufgix tos redirect by @thomaschiozzi-tndigit in #450
- fix #451 console can save and load attribute providers settings by @gianpaolo-tndigit in #452
- fix #455 custom attribute set are now displayed by @gianpaolo-tndigit in #456
- OAuth2 OIDC metadata generators by @matteo-s in #457
- Bugfix SAML new accounts by @thomaschiozzi-tndigit in #453
- Languagefix by @nawaz2013 in #459
- Openid federation by @matteo-s in #465
- 5.x fix saml ctx by @thomaschiozzi-tndigit in #476
- New audit trail by @matteo-s in #477
- Fixes for reserved words mysql8 by @nawaz2013 in #485
- fix #486: register time module to object mapper for serialization by @elisanp in #491
- claims family_name is overwritten only if surname exists by @thomaschiozzi-tndigit in #494
- add email to realm and update mail templates by @matteo-s in #503
- User credentials fixes by @matteo-s in #508
- add index to postgresql schema by @thomaschiozzi-tndigit in #509
- added safestring annotation by @thomaschiozzi-tndigit in #512
- bugfix double code return by @thomaschiozzi-tndigit in #510
- fix reference to refactored schema by @thomaschiozzi-tndigit in #514
- fix #515 by @thomaschiozzi-tndigit in #516
- simplified customization by @thomaschiozzi-tndigit in #518
- added saml acr assertion into auth context by @thomaschiozzi-tndigit in #504
- Proposal for enchancement #505 by @thomaschiozzi-tndigit in #519
- added log to critical prov.s when doAuthenticate fails by @thomaschiozzi-tndigit in #479
- fix: information disclosure #530 by @thomaschiozzi-tndigit in #536
- feat: proposal for #531 by @thomaschiozzi-tndigit in #532
- 5.0.2 by @matteo-s in #537
New Contributors
- @gianpaolo-tndigit made their first contribution in #305
- @thomaschiozzi-tndigit made their first contribution in #445
Full Changelog: 4.1.1...5.0.2
Contributors
nawaz2013, matteo-s, and 3 other contributors