chore(main): release 1.2.0

[mo-auto]

🤖 I have created a release beep boop

1.2.0 (2024-12-24)

Features

• add internationalization in selector page (#10405) (00facf6)
• add programatic access to labels in Agama (#10313) (1e91d9b)
• config-api: agama download endpoint (#10463) (5bec96c)
• config-api: implemenetd agama repo endpoint and fixed user pwd validation for patch (#10373) (03d3529)
• jans-agama: update htmlunit (#10464) (3cc7c5a)
• jans-auth-server: access token lifetime from UpdateToken interception script has highest priority #9748 (#10379) (c2ef55d)
• jans-auth-server: added exp,nbf, and iat to UserInfo JWT (#10390) (c99a71a)
• jans-auth-server: allow to use openidSubAttribute for localAccountId for pairwise identifier look up #9696 (#10269) (5d72a06)
• jans-auth-server: introduced /.well-known/authzen-configuration endpoint (#10321) (efb7ab6)
• jans-auth-server: updated first party native authn implementation ( in backwards compatibility way) #10380 (#10442) (bc431fb)
• jans-cedarling: add logging cedarling version on start application (#10288) (20ed173)
• jans-cedarling: add support for Cedar schema action introspection (#10358) (ed0edb9)
• jans-cedarling: add well-known authzen configuration endpoint (#10435) (cc6fc7b)
• jans-cedarling: automatically add entity references into the context (#10387) (ed44ec0)
• jans-cedarling: Bootstrap support for JSON and YAML properties (#10216) (e7ffb08)
• jans-cedarling: implement loading policy store from CEDARLING_POLICY_STORE_URI (#10336) (ffe9f49)
• jans-cedarling: implement loading role from many JWT tokens (#10422) (8da040e)
• jans-cedarling: implement new bootstrap configs for JWT validation (#10306) (6d810a5)
• jans-cedarling: initialize flask sidecar (#10270) (46f9a51)
• jans-cedarling: pass entities data into the context (#10275) (e2e4f89)
• jans-cli-tui: user fido devices (#10305) (811d953)
• jans-fido2: major FIDO2 / Passkeys upgrade ProjectPasskeys (#10080) (e823bf7)
• jans-link: add ingress resource for jans-link (#10494) (2779a7e)
• jans-linux-setup: jans-fido2-model auth lib (#10468) (f99d870)
• jans-linux-setup: location of service scripts, config-api plugins (#10341) (7299fea)
• jans-linux-setup: Retreive Agama Lab project scripts (#10335) (26713a8)
• migrate and fix e-mail otp plugin (#10294) (d3f83cb)
• misc UI updates (#10278) (c0a6639)
• terraform-provider-jans: update terraform provider with latest API changes (#10485) (075650c)

Bug Fixes

• actions: microk8s action passing correct arguments (#10363) (a1517a0)
• assign nightly version (2dd3484)
• bom: deprecate commons-lang due to conflict with commons-lang3 (#10267) (396551e)
• bug if version passed is a tag (82694ca)
• cloud-native: applications are failing to start when prometheus metrics are enabled (#10459) (b293ebe)
• config-api: application status endpoint specification changes (#10203) (c49a0af)
• config-api: user password being displayed as clear text (#10441) (4e7c13b)
• config-api: user password patch fix (#10396) (0345f11)
• docker-jans-config-api: resolve path to external healthcheck script (#10450) (bef11a6)
• docker-jans-monolith: update scripts location (#10481) (45fe7a5)
• docs: autogenerate docs (#10232) (50e5957)
• jans-auth-server: lower possibility to get data loss during status index pool update #10284 (#10285) (16371ee)
• jans-auth: fido - #10445 modified the script and properties file for fido (#10446) (99285e9)
• jans-auth: fix client side jans-auth tests failures #10212 (#10213) (c0bc881)
• jans-casa: #10470 Enrollment of a passkey implies the enrollment of all three types of authenticator - client-device, hybrid, security-key (b0a7da3)
• jans-casa: assign nightly version for email 2fa plugin (#10300) (2dd3484)
• jans-casa: enrollment of a passkey implies the enrollment… (#10473) (b0a7da3)
• jans-cedarling: add handling nonexistent authorization decisions (#10431) (29d9bc6)
• jans-cedarling: add missing fields on LogEntry struct (#10297) (b91279f)
• jans-cedarling: fix sidecar docker (#10361) (48e8eae)
• jans-cedarling: revert "pass entities data into the context" (#10290) (5e10625)
• jans-cedarling: update example authorize_without_jwt_validation (#10308) (ccb376c)
• jans-cli-tui: display error for session search (#10251) (87a6c39)
• jans-cli-tui: properties object with no keys (#10411) (e0f55a0)
• jans-cli-tui: update user password (#10456) (927befc)
• jans-config-api: unable to update Admin-ui feature in webhook (#10220) (1244488)
• jans-fido: Resolve dependecy issue (a71e866)
• jans-fido: Resolve dependecy issue #10080 (#10406) (b6b45e1)
• jans-keycloak-integration: kc startup issues #10348 (#10349) (ecd8e38)
• jans-linux-setup: auth server test configuration (#10365) (e68d275)
• jans-linux-setup: bug if version passed is a tag (#10274) (82694ca)
• jans-linux-setup: config-api plugin installation (#10389) (59ba1b0)
• jans-linux-setup: display CLI logs in jans script (#10262) (ef0f4fe)
• jans-linux-setup: download from tags (#10391) (c6d95a1)
• jans-orm: merge ORM changes from Gluu (#10293) (17e9443)
• monolithic: update scripts location (45fe7a5)

---

This PR was generated with Release Please. See documentation.

[dryrunsecurity]

DryRun Security Summary

The pull request updates the CHANGELOG.md file for version 1.2.0, introducing new features and bug fixes in the Janssen Project's components, including a new AuthZen protocol endpoint, while emphasizing the need for careful security review.

Expand for full summary

Summary:

This pull request contains several changes related to the CHANGELOG.md file, which primarily
focuses on adding a new section for version 1.2.0 with various feature and bug fix changes.
The changes do not appear to introduce any major security concerns, as they are mostly functional
enhancements and bug fixes. However, it's important to review the code changes carefully,
especially for areas that could impact security, such as authentication, authorization, and
input validation.

One notable change is the addition of the "/.well-known/authzen-configuration" endpoint in
the jans-auth-server and jans-cedarling components, which is used to provide configuration
information for the AuthZen protocol, a new authentication and authorization protocol
developed by the Janssen Project. The security of this protocol and its implementation
should be reviewed carefully to ensure that it does not introduce any vulnerabilities.

Overall, the changes in this pull request appear to be focused on improving the functionality
and stability of the Janssen Project's components, but as with any software changes, it's
important to thoroughly test and review the changes to ensure that they do not introduce
any unintended security vulnerabilities.

Files Changed:

• CHANGELOG.md: This file has been updated to include a new section for version 1.2.0
  with various feature and bug fix changes, as well as bug fixes and improvements for
  version 1.1.6. The changes include additions of internationalization in the selector
  page, programmatic access to labels in Agama, new endpoints in the config-api for Agama,
  and various improvements and bug fixes in the jans-auth-server, jans-cedarling, and
  other components. The addition of the "/.well-known/authzen-configuration" endpoint in
  the jans-auth-server and jans-cedarling components should be reviewed carefully for
  security implications.

Code Analysis

We ran 9 analyzers against 1 file and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

[mo-auto]

🤖 Created releases:

• v1.2.0
  🌻