Permalink
901aa0d Oct 25, 2018
1 contributor

Users who have contributed to this file

445 lines (228 sloc) 15.7 KB

Change Log

2.0.5 (2018-10-25)

Bug fixes

Oauth2

  • Unable to create extension grants with identity provider #405

2.0.4 (2018-07-27)

Bug fixes

Oidc

  • UserInfo endpoint for social provider does not seem to work #285

  • Userinfo Endpoint path #286

Improvements

Identity

  • [ldap] No enough log #287

  • [ldap] set connection and response timeout #291

2.0.3 (2018-07-25)

Bug fixes

Gateway

  • Fix NPE for UriBuilder #279

  • Handle proxy request for login callback #281

Management

  • Cookies clearing not working during logout process #283

2.0.2 (2018-07-24)

Bug fixes

Gateway

  • No content-type for HTML pages #274

Oauth2

  • Handle proxy context-path for redirect_uri query param #273

  • Unable enhance scopes option #277

2.0.1 (2018-07-23)

Bug fixes

OIDC

  • Unable CORS for UserInfo Endpoint #264

  • UserInfo endpoint 400 Bad Request for the implicit flow #263

Oauth2

  • Add additional parameters to the redirect_uri implicit response #268

  • Handle proxy requests for social redirect callback #267

Improvements

Gateway

  • Rename session cookie name to avoid potential security leaks #271

2.0.0 (2018-07-13)

Features

Gateway

  • Moving to Vert.x reactive version #261

Management-api

  • Externalize rest api #204

1.6.4 (2018-06-25)

Bug fixes

Dashboard

  • Do not fetch all access and refresh token information for "count" analytics #249

1.6.3 (2018-06-18)

Bug fixes

Idp

  • [Ldap][user-mappers] cast exception for array attributes #245

Oauth2

  • Chain providers during user authentication #240

  • Change redirect strategy for error login redirect callback #242

Features

General

  • Add the "client_credentials" grant type to the default admin client #244 (Thanks to pletessier)

Global

  • Enable SSL/HTTPS at gateway level #247

1.6.2 (2018-02-16)

Bug fixes

Oauth2

  • Enhance scopes are missing #229

1.6.1 (2018-02-14)

Bug fixes

Oauth2

  • Fix assets paths for login and oauth confirmation/error pages #225

Features

Oauth2

  • Update InitializeUpgrader to be consistent with the new scopes management system #227

1.6.0 (2018-02-14)

Bug fixes

Oauth2

  • Error redirect after login process #212

  • Internal server error when doing authorization_code #183

  • Scope not take in account while asking for an access_token #189

Openid

  • Fix ID token custom claims user mapping #208

Features

Identity-provider

  • Handle external oauth2/social provider #198

  • MongoDB support #193

  • OAuth 2.0 generic server support #216

Oauth2

  • Default user approval page #106

  • Remove jwt format for access and refresh tokens #222

Improvements

Management-ui

  • The settings menu is difficult to understand #201

  • The way to activate a domain is totally hidden #202

Portal

  • Add stepper for providers/certificates/extension grants creation components #220

1.5.3 (2018-01-12)

Bug fixes

Oauth2

  • Encoded redirect uri mistmatch #186

Improvements

Oauth2

  • Extension grants allow to save user in database #184

1.5.2 (2017-12-20)

Improvements

Docker

  • Allow to configure nginx port #179

1.5.1 (2017-11-14)

Bug fixes

General

  • LDAP userSearchBase field must not be null #177

Oauth2

  • Fix token generation since extension grants feature #175

1.5.0 (2017-11-13)

Features

Oauth2

  • Add possibility to generate access token per request #169

1.4.2 (2017-10-09)

Bug fixes

Oauth2

  • Set default user for refresh token grant type #167

1.4.0 (2017-09-05)

Bug fixes

Management-api

  • delete all data related to a security domain #148

Webui

  • Not able to create a new certificate #151

Features

Global

  • Create AM docker images #124

  • Create PID file for Gravitee.AM Gateway process #121

Oauth2

  • Better handle Refresh token grant flow #120

Improvements

Management-api

  • do not display top clients without access tokens #159

Management-ui

  • Re-order administration pages #156

  • Update angular2-json-schema-form #146

Portal

  • Upgrade dependencies #126

1.3.1 (2017-08-17)

Bug fixes

Oauth2

  • Access/Refresh token created/updated date not set #128

Openid-connect

  • Set a default ID token expiry time #134

Portal

  • Fail to update identity provider definition #130

Features

Global

  • Role mapper for in-line identity provider #140

Improvements

Management-ui

  • New design for administration screens #141

1.3.0 (2017-07-12)

Features

Global

  • Role management #116

1.2.1 (2017-06-22)

Bug fixes

Admin

  • No logo top-left corner if behind a reverse-proxy #108

Oauth2

  • Approval page behind a reverse-proxy #114

  • Default scopes for the admin client #105

  • Do not fetch remote icon fonts for default login page #112

  • Refresh token is null at second call #107

1.2.0 (2017-06-19)

Bug fixes

Management-ui

  • Sandbox login preview page #95

Oauth2

  • Ensure backward compatibility #90

  • Login form action is relative #101

Features

Identity-provider

  • override default identity provider user attributes #75

Management-ui

  • map user attributes from identity provider #74

  • Self hosting material design icons #82

Oauth2

  • Signing JWTs with Domain cryptographic algorithms #94

Improvements

Management-ui

  • Create breadcrumb #84

Openid

  • Remove default openid scope registered with the client #92

1.1.0 (2017-05-29)

Bug fixes

Management-api

  • Update domain when modify identity provider #72

Features

Global

  • add mongodb repository configuration #73

1.0.0 (2017-05-15)

Bug fixes

Management-api

  • Browser error when a client has no grant types #14

Management-ui

  • Fix splash screen image flickering #44

Oauth2

  • Access token collision #8

  • CORS header not settled for /oauth/token #9

  • Display authenticated user during token validation #32

  • Error when generating an access token using application/xml #25

  • HTTP Error 500 when client_id does not exist #36

  • Not able to authenticate user using inline identity provider #29

  • Refresh token does not work as expected #7

Features

General

  • JWT support #3

Management-api

  • Delete a client #38

  • Delete identity provider #46

  • Initial implementation of rest-api #2

  • Secure the management rest-api #18

Management-ui

  • initial implementation of the web-ui #10

  • Custom login page per domain #20

  • Handle oauth2 client logout #50

  • Secure the management UI #22

Oauth2

  • Token revocationaccess_token and refresh_token #27

Improvements

Global

  • Initialize the repository to be able to connect to AM after first start. #51

Oauth2

  • Custom global login form #34

  • Default content-type to JSON #23