5.4.2
Fixes for
- https://jira.ncsa.illinois.edu/browse/CIL-1597 : (not done) Client Management still returns HTTP 200 on client create, not 201
- https://jira.ncsa.illinois.edu/browse/CIL-1732 : getcert scope removed from registration page
- https://jira.ncsa.illinois.edu/browse/CIL-1760 : Support for LDAP retry
- https://jira.ncsa.illinois.edu/browse/CIL-1762 : RFC7523 support for public key authorization
- https://jira.ncsa.illinois.edu/browse/CIL-1772 : QDL configuration ignores bad modules on load
- https://jira.ncsa.illinois.edu/browse/CIL-1815 : CLI object creation much improved
- https://jira.ncsa.illinois.edu/browse/CIL-1833 : Better release of SQL connections in case database itself is failing
- https://jira.ncsa.illinois.edu/browse/CIL-1843 : invalid/missing/expired tokens provide more detailed logging
- https://jira.ncsa.illinois.edu/browse/CIL-1852 : Do not send emails of certain Tomcat errors
- https://jira.ncsa.illinois.edu/browse/CIL-1873 : QDL support for simple emails
- https://jira.ncsa.illinois.edu/browse/CIL-1877 : Client management allows cross-site scripting attacks.
- https://jira.ncsa.illinois.edu/browse/CIL-1878 : Registration page allows cross-site scripting attacks.
- https://jira.ncsa.illinois.edu/browse/CIL-1880 : JSESSIONID cookies no longer issues.
Support for elliptic curve signing is included.