Releases: cloudfoundry/uaa
Releases · cloudfoundry/uaa
77.23.0
What's Changed
Fixes
- build(deps): bump versions.tomcatCargoVersion from 9.0.97 to 9.0.98 by @dependabot in #3183
- workload identity by @strehle in #3197
- tests: fix missing BCFIPS provider in DefaultRelyingPartyRegistrationRepositoryTest by @Kehrlann in #3201
Misc
Dependency Bumps
- build(deps): bump github.com/onsi/gomega from 1.36.0 to 1.36.1 in /k8s by @dependabot in #3185
- build(deps): bump k8s.io/client-go from 0.31.3 to 0.31.4 in /k8s by @dependabot in #3188
- build(deps): bump k8s.io/client-go from 0.31.4 to 0.32.0 in /k8s by @dependabot in #3192
- deps: remove code dependencies on hsqldb by @Kehrlann in #3194
- build(deps): bump org.apache.commons:commons-text from 1.12.0 to 1.13.0 by @dependabot in #3196
- build(deps): bump versions.guavaVersion from 33.3.1-jre to 33.4.0-jre by @dependabot in #3199
Full Changelog: v77.22.0...v77.23.0
Contributors
duanemay, Kehrlann, and 2 other contributors
Assets 2
77.22.0
What's Changed
Feature - major opensaml library upgrade
Fixes
- Fix new SAML. Re-establish SAML setup for legacy by @strehle in #3164
- fix velocity dependency by @strehle in #3169
- Fix flaky StaleUrlCacheTests by @duanemay in #3179
- Fix retrieval of login.saml.providers by @strehle in #3178
- Fix issue #3104 by @strehle in #3182
Misc
- Support SAML keypair without a passphrase by @strehle in #3172
- Add logs in case of SAML issues by @strehle in #3173
- Refactor password grant by @strehle in #3165
Dependency Bumps
- build(deps): bump versions.jacksonVersion from 2.18.1 to 2.18.2 by @dependabot in #3166
- build(deps): bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 6.0.0.5145 to 6.0.1.5171 by @dependabot in #3167
- build(deps): bump jasmine from 5.4.0 to 5.5.0 in /uaa by @dependabot in #3176
- build(deps): bump jasmine-core from 5.4.0 to 5.5.0 in /uaa by @dependabot in #3175
- build(deps): bump org.eclipse.jgit:org.eclipse.jgit from 7.0.0.202409031743-r to 7.1.0.202411261347-r by @dependabot in #3177
Deprecation information
The setup of UAA with YAML setting
login.serviceProviderKey
login.serviceProviderCertificate
was set to deprecation a while ago, but the support is still in there. Please prepare your UAA configuration to change either towards
login.saml.serviceProviderKey
login.saml.serviceProviderCertificate
or if you want support key-rotation with SAML make use of the map in
login.saml.keys
similar to JWT signing keys
Full Changelog: v77.20.0...v77.22.0
Contributors
duanemay, Tallicia, and 2 other contributors
Assets 2
77.21.0
77.20.0
What's Changed
Fix
Misc
- Improve Performance of LoginInfoEndpoint by @adrianhoelzl-sap in #3141
Dependency Bumps
- build(deps): bump commons-io:commons-io from 2.17.0 to 2.18.0 by @dependabot in #3146
- feature: ingtegration test coverage by @hsinn0 in #3147
- Bump Gradle to 8.11.1 by @duanemay in #3148
- build(deps): bump k8s.io/client-go from 0.31.2 to 0.31.3 in /k8s by @dependabot in #3149
- build(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /uaa by @dependabot in #3152
- build(deps): bump org.owasp.esapi:esapi from 2.5.5.0 to 2.6.0.0 by @dependabot in #3159
- build(deps): bump versions.seleniumVersion from 4.26.0 to 4.27.0 by @dependabot in #3158
- build(deps): bump github.com/onsi/gomega from 1.35.1 to 1.36.0 in /k8s by @dependabot in #3160
Full Changelog: v77.19.0...v77.20.0
Contributors
fhanik, duanemay, and 3 other contributors
Assets 2
77.19.0
What's Changed
Fix
- pr/upgrade docs slate gems take 2 by @fhanik in #3091
- fix(k8s): fix
JAVA_HOMEby @achrinza in #3093 - Refactor and fix duplicate by @strehle in #3112
Misc
- Unjava-doc-ify the copyright notices by @duanemay in #3108
- Only show failed tests by @duanemay in #3115
- Migrate to Caffeine Caching by @duanemay in #3114
Dependency Bumps
- build(deps): bump k8s.io/client-go from 0.31.1 to 0.31.2 in /k8s by @dependabot in #3096
- build(deps): bump rexml from 3.3.8 to 3.3.9 in /uaa/slate by @dependabot in #3100
- build(deps): bump versions.jacksonVersion from 2.18.0 to 2.18.1 by @dependabot in #3101
- build(deps): bump versions.seleniumVersion from 4.25.0 to 4.26.0 by @dependabot in #3103
- build(deps): bump github.com/onsi/gomega from 1.34.2 to 1.35.0 in /k8s by @dependabot in #3102
- build(deps): bump github.com/onsi/gomega from 1.35.0 to 1.35.1 in /k8s by @dependabot in #3105
- renovate: update dependency org.hsqldb:hsqldb to v2.7.4 by @strehle in #3106
- build(deps): bump org.apache.santuario:xmlsec from 4.0.2 to 4.0.3 by @dependabot in #3110
- renovate: : update dependency webrick to v1.9.0 by @strehle in #3111
- build(deps): bump versions.tomcatCargoVersion from 9.0.96 to 9.0.97 by @dependabot in #3120
- Bump Gradle to 8.11 by @strehle in #3124
- build(deps): bump com.nimbusds:nimbus-jose-jwt from 9.41.2 to 9.46 by @dependabot in #3098
- build(deps): bump com.nimbusds:nimbus-jose-jwt from 9.46 to 9.47 by @dependabot in #3134
- build(deps): bump versions.springSecurityVersion from 5.8.15 to 5.8.16 by @dependabot in #3142
- build(deps): bump org.sonarsource.scanner.gradle:sonarqube-gradle-plugin from 5.1.0.4882 to 6.0.0.5145 by @dependabot in #3143
New Contributors
Full Changelog: v77.18.0...v77.19.0
Contributors
fhanik, duanemay, and 3 other contributors
Assets 2
77.18.0
What's Changed
Fix
- Fix issue 3083: check user_name claim type by @strehle in #3084
- Allow Dynamic Value Lookup in Custom Zone for Private Key JWT when IdP has Alias by @adrianhoelzl-sap in #3078
- CVE-2024-38821, build(deps): bump versions.springSecurityVersion from 5.8.14 to 5.8.15 by @dependabot in #3089
Misc
Dependency Bumps
- build(deps): bump versions.tomcatCargoVersion from 9.0.95 to 9.0.96 by @dependabot in #3080
- build(deps): bump jasmine-core from 5.3.0 to 5.4.0 in /uaa by @dependabot in #3085
- build(deps): bump jasmine from 5.3.1 to 5.4.0 in /uaa by @dependabot in #3086
- build(deps): bump org.passay:passay from 1.6.5 to 1.6.6 by @dependabot in #3087
- build(deps): bump org.apache.velocity:velocity-engine-core from 2.4 to 2.4.1 by @dependabot in #3090
Full Changelog: v77.17.0...v77.18.0
Contributors
strehle, dependabot, and 2 other contributors
Assets 2
77.17.0
What's Changed
Fix
- fix: support id_token_hint parameter on oidc logout by @mikeroda in #3049
- fix: replace regex usage with simple search by @strehle in #2866
- fix: refer to JavaPluginConvention for g9 compat by @alexanderankin in #3073
- Test-Fix of chromdriver129 issue by @strehle in #3062
- fix: add external saml groups with empty whitelist by @mikeroda in #3061
Misc
- Misc LDAP docs and examples fixes by @peterhaochen47 in #3047
- dependabot: no longer operates on 74.5.x branch by @peterhaochen47 in #3065
- doc: add UAA.yml example for UAA login page inputs help texts by @peterhaochen47 in #3071
- use java 17 for codeql by @strehle in #3075
Dependency Bumps
- build(deps): bump org.apache.velocity:velocity-engine-core from 2.3 to 2.4 by @dependabot in #3060
- build(deps): bump commons-io:commons-io from 2.16.1 to 2.17.0 by @dependabot in #3054
- build(deps): bump versions.guavaVersion from 33.3.0-jre to 33.3.1-jre by @dependabot in #3063
- build(deps): bump webrick from 1.8.1 to 1.8.2 in /uaa/slate by @dependabot in #3066
- build(deps): bump org.seleniumhq.selenium:selenium-java from 4.18.1 to 4.25.0 by @dependabot in #3059
- build(deps): bump versions.jacksonVersion from 2.17.2 to 2.18.0 by @dependabot in #3068
- build(deps): bump com.nimbusds:nimbus-jose-jwt from 9.41.1 to 9.41.2 by @dependabot in #3070
- build(deps): bump jasmine from 5.3.0 to 5.3.1 in /uaa by @dependabot in #3074
- renovate: update dependency gradle to v8.10.2 by @strehle in #3067
- build(deps): bump org.owasp.esapi:esapi from 2.5.4.0 to 2.5.5.0 by @dependabot in #3079
New Contributors
- @alexanderankin made their first contribution in #3073
Full Changelog: v77.16.0...v77.17.0
Contributors
mikeroda, alexanderankin, and 3 other contributors
Assets 2
77.16.0
What's Changed
Fix
- fix Update of Users with Alias during Login by @adrianhoelzl-sap in #3014
- Sonar fix by @strehle in #3028
- fix: use up-to-date jwt sigining key config fields in local UAA.yml by @peterhaochen47 in #3006
- fix error in integration tests by @strehle in #3020
- fix: external group memberships should have correct origin by @mikeroda in #3033
- Add exception handler for SCIM by @strehle in #3027
Misc
- doc: explain UI logo configs format by @peterhaochen47 in #3013
- Add Response Status Code Checks to IntegrationTestUtils by @adrianhoelzl-sap in #3025
- Refactor ScimUserProvisioning Dependency Injection by @adrianhoelzl-sap in #3026
- fix: reduce DB calls in password grant flow by @strehle in #3017
- doc: uaa.yml config
oauth.user.authoritiesby @peterhaochen47 in #3036
Dependency Bumps
- build(deps): bump versions.guavaVersion from 33.2.1-jre to 33.3.0-jre by @dependabot in #3008
- build(deps): bump versions.springSecurityVersion from 5.8.13 to 5.8.14 by @dependabot in #3009
- chore(deps): update dependency nokogiri to v1.16.7 by @strehle in #3010
- renovate: update dependency gradle to v8.10 by @strehle in #3012
- build(deps): bump rexml from 3.3.3 to 3.3.6 in /uaa/slate by @dependabot in #3011
- build(deps): bump org.postgresql:postgresql from 42.7.3 to 42.7.4 by @dependabot in #3015
- build(deps): bump org.passay:passay from 1.6.4 to 1.6.5 by @dependabot in #3018
- build(deps): bump github.com/onsi/gomega from 1.34.1 to 1.34.2 in /k8s by @dependabot in #3023
- Update snakeyaml to 2.3 by @strehle in #3024
- build(deps): bump jasmine-core from 5.2.0 to 5.3.0 in /uaa by @dependabot in #3032
- build(deps): bump jasmine from 5.2.0 to 5.3.0 in /uaa by @dependabot in #3031
- Gradle Update 8.10.1 by @strehle in #3035
- build(deps): bump com.nimbusds:nimbus-jose-jwt from 9.40 to 9.41 by @dependabot in #3034
- build(deps): bump versions.tomcatCargoVersion from 9.0.91 to 9.0.94 by @dependabot in #3039
- build(deps): bump org.eclipse.jgit:org.eclipse.jgit from 6.10.0.202406032230-r to 7.0.0.202409031743-r by @dependabot in #3038
- build(deps): bump com.nimbusds:nimbus-jose-jwt from 9.41 to 9.41.1 by @dependabot in #3042
- build(deps): bump org.gradle:test-retry-gradle-plugin from 1.5.10 to 1.6.0 by @dependabot in #3043
- build(deps): bump k8s.io/client-go from 0.31.0 to 0.31.1 in /k8s by @dependabot in #3045
- build(deps): bump joda-time:joda-time from 2.12.7 to 2.13.0 by @dependabot in #3048
- build(deps): bump versions.tomcatCargoVersion from 9.0.94 to 9.0.95 by @dependabot in #3051
- Update send 0.19.0 by @strehle in #3052
Full Changelog: v77.15.0...v77.16.0
Contributors
mikeroda, strehle, and 3 other contributors
Assets 2
77.15.0
What's Changed
Fix
- Fix Alias Validation when no Identity Zone ID is set in the Request Body by @adrianhoelzl-sap in #2967
- fix: ErrorRoutingIT test by @peterhaochen47 in #2977
- Sonar fix by @strehle in #2954
Misc
- New: Return a sorted IdP list by @strehle in #2980
- clean-up: IdentityZone samlConfig properties for UAA-as-SAML-IdP feature by @hsinn0 in #2983
- Adjust Section about IdZ Deletion in Alias Documentation by @adrianhoelzl-sap in #2969
- Update UAA image reference in k8s deployment template to 77.14.0 by @coolgang123 in #2996
- Optional BC-FIPS upgrade to 2.0.0 by @strehle in #2987
Dependency Bumps
- build(deps): bump k8s.io/client-go from 0.30.2 to 0.30.3 in /k8s by @dependabot in #2964
- Dependabot fix for rexml by @strehle in #2968
- build(deps): bump jasmine-core from 5.1.2 to 5.2.0 in /uaa by @dependabot in #2975
- build(deps): bump jasmine from 5.1.0 to 5.2.0 in /uaa by @dependabot in #2974
- build(deps): bump github.com/onsi/gomega from 1.33.1 to 1.34.0 in /k8s by @dependabot in #2979
- build(deps): bump github.com/onsi/gomega from 1.34.0 to 1.34.1 in /k8s by @dependabot in #2984
- build(deps): bump versions.tomcatCargoVersion from 9.0.91 to 9.0.93 by @dependabot in #2992
- Revert "build(deps): bump versions.tomcatCargoVersion from 9.0.91 to 9.0.93" by @hsinn0 in #2997
- build(deps): bump org.hamcrest:hamcrest from 2.2 to 3.0 by @dependabot in #2990
- build(deps): bump rexml from 3.3.2 to 3.3.3 in /uaa/slate by @dependabot in #2991
- build(deps): bump org.apache.directory.api:api-ldap-model from 2.1.6 to 2.1.7 by @dependabot in #2995
- build(deps): bump k8s.io/client-go from 0.30.3 to 0.31.0 in /k8s by @dependabot in #3004
- build(deps): bump versions.springFrameworkVersion from 5.3.37 to 5.3.39 by @dependabot in #3005 , solve https://spring.io/security/cve-2024-38809
New Contributors
- @coolgang123 made their first contribution in #2996
Full Changelog: v77.14.0...v77.15.0
Contributors
strehle, peterhaochen47, and 4 other contributors
Assets 2
77.14.0
What's Changed
Fix
Regression in Release before, see #2963 , PR: Fix regression in identity-provider endpoint by @strehle in #2962
Misc
- Show error in IT by @strehle in #2960
- build(deps): bump org.gradle:test-retry-gradle-plugin from 1.5.9 to 1.5.10 by @dependabot in #2961
Full Changelog: v77.13.0...v77.14.0
Contributors
strehle and dependabot