Skip to content

78.13.0

Choose a tag to compare

View all tags
@cf-identity cf-identity released this 23 Apr 21:39
v78.13.0
f394798
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

🚨 Breaking Change

  • SAML authentication now requires signed responses or assertions; unsigned responses with only encrypted assertions will be rejected.

New Feature

  • Add an optional consent modal before login by @duanemay in #3792
  • feat: token exchange for UAA-issued opaque access tokens by @mikeroda in #3845

Fixes

  • Fix YAML validator by preventing Spring expression evaluation by @gdgenchev in #3843
  • Respect skipSslVerification flag in TLS hostname verification logic by @duanemay in #3850
  • fix: allow removing group names with quotes by @duanemay in #3851
  • feat: omit explicit DB Statement for health check by @tack-sap in #3731
  • Add full /oauth/token support for SAML2 bearer grant by @strehle in #3846
  • saml improvements by @fhanik in #3859
  • Ensure EC keys work as expected by @duanemay in #3861
  • Remove the decline button when there is no declineLink by @duanemay in #3862

Misc

  • Use WebDriverWait on some flaky tests by @duanemay in #3798
  • docs(oauth): refresh token API docs, Slate, and client-auth notes by @fhanik in #3842
  • Add documentation for SAML Bearer Grant (two endpoints) by @fhanik in #3844
  • Backfill tests for #3845 by @fhanik in #3853
  • Integration test for the yaml validation fix by @strehle in #3847
  • Migrate from AntPathRequestMatcher to PathPatternRequestMatcher by @gdgenchev in #3854
  • Migrate from NestedServletException to ServletException by @gdgenchev in #3855
  • Replace UriComponentsBuilder.fromHttpUrl with fromUriString by @gdgenchev in #3858
  • Explicitly require safe ActiveSupport version by @duanemay in #3863

Dependency Bumps

  • build(deps): bump versions.guavaVersion from 33.5.0-jre to 33.6.0-jre by @dependabot[bot] in #3841
  • build(deps): bump org.bouncycastle:bcpkix-fips from 2.1.10 to 2.1.11 by @dependabot[bot] in #3848
  • build(deps): bump org.bouncycastle:bctls-fips from 2.1.22 to 2.1.23 by @dependabot[bot] in #3849
  • build(deps): bump commons-io:commons-io from 2.21.0 to 2.22.0 by @dependabot[bot] in #3865
  • build(deps): bump versions.springBootVersion from 3.5.13 to 3.5.14 by @dependabot[bot] in #3866

Full Changelog: v78.12.0...v78.13.0

Contributors

mikeroda, fhanik, and 5 other contributors
Assets 2
Loading