Skip to content

Release v3.3.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 25 Feb 19:18
· 73 commits to main since this release
v3.3.0
fbd307f

see (MIGRATION.md)[./MIGRATION.md] for further Information

🌟 Features

  • Add BaseEssenciumUserDetails as common interface for EssenciumUserDetails and BaseUserDetails.
  • Added automatic type conversion for PATCH requests: String values are now automatically converted to the target field type (primitives, date/time types, UUID, URL, URI, enums)
  • API-Token: API tokens enable persistent, programmatic API access with defined rights.
    • ApiToken entity with status management, expiration tracking, and rights-based authorization
    • Token invalidation on user, role, or right modifications (API and session tokens)
    • Removed API_DEVELOPER from BasicApplicationRights
    • New rights in AdditionalApplicationRights (not assigned to any role by default):
      • API_DEVELOPER - Access to developer endpoints
      • API_TOKEN - Manage own API tokens
      • API_TOKEN_ADMIN - Manage all API tokens
      • SESSION_TOKEN_ADMIN - Manage all session tokens
    • REST endpoints at /v1/api-tokens for CRUD operations
    • Configurable token expiration (app.auth.jwt.default-api-token-expiration, default: 30 days)
  • Added UserUtil for basic Operations on EssenciumUserDetails
    • getting EssenciumUserDetails-Implementation from Auth-Context
    • Role-checks
    • Right-checks
  • For consistency reasons, the paths GET “/v1/users/me/token and DELETE ”/v1/users/me/token/{id} have been changed to GET “/v1/users/me/tokens and DELETE ”/v1/users/me/tokens/{id} (see AbstractUserController). No adjustment is required in the backend, but this change may result in a ⚠️ breaking change ⚠️ in the frontend.
  • Login via OAuth for disabled users is not permitted any more

🐞 Bug Fixes

🔨 Dependency Upgrades

  • upgraded org.springframework.boot:spring-boot-starter-parent from 3.5.8 to 3.5.11
  • upgraded io.sentry:sentry-spring-boot-starter-jakarta from 8.27.1 to 8.30.0
  • upgraded net.sf.okapi.lib:okapi-lib-xliff2 from 1.47.0 to 1.48.0
  • upgraded org.springdoc:springdoc-openapi-starter-webmvc-ui from 2.8.14 to 2.8.15
  • upgraded org.apache.maven.plugins:maven-surefire-plugin from 3.5.4 to 3.5.5
  • upgraded org.apache.maven.plugins:maven-failsafe-plugin from 3.5.4 to 3.5.5
  • upgraded org.apache.maven.plugins:maven-dependency-plugin from 3.9.0 to 3.10.0
  • upgraded org.apache.maven.plugins:maven-source-plugin from 3.3.1 to 3.4.0
  • upgraded org.sonatype.central:central-publishing-maven-plugin from 0.9.0 to 0.10.0
Assets 2
Loading