Releases: TremoloSecurity/OpenUnison
Releases · TremoloSecurity/OpenUnison
1.0.22-20211601
1.0.21-2021031601
enhancements:
- Upgrade to OpenSAML 4 #523
- Update to Java 11 #524
- k8s target - more configurable token management #491
- MyVD - list new attribute types #520
- Better Okta MyVD support #519
- k8s - task to clean labels #482
- oidc idp - pre-process JWT before signing #488
- k8s - support writing to git #481
- create dynamic reports #487
- k8s dynamic queues #478
- support mattermost provisioning #502
- support SameSite parameter in cookies #483
- kubernetes target - support direct certificate configuration #480
- k8s dynamic jobs #477
- k8s dynamic provisioning target #475
- move from openshift 3 to 4 apis #508
- k8s dynamic workflows #476
- Provision to remote k8s clusters #489
- support cdata in filter parameters #496
- dynamically call workflows #479
- create k8s watch framework #473
Tasks:
bugs:
- Streaming logs through reverse proxy stops after about 30 seconds #517
- AzureAD - premature closed connection causing exception #516
- oauth2 jwt verifier not verifying audiences #500
- ScaleJS Main - When using an external session (k8s) session check doesn't work #501
- gitlab provider - searching for username returns all users that start with user #495
- oidc idp - json errors not returned when expected #498
- if
#[]is the first character of a string, it's ignored #497
1.0.20-2020082001
Tasks:
- 1.0.20 build #458
enhancements:
- create workflow export utility #461
- dynamic organizations #471
- Portal URL - dynamicly load portal URLs #464
- Oidc Idp - Dynamic Trusts #462
- gitlab provisioning target #469
- ArgoCD Support #470
- custom task - support content in the tag #465
- Oidc Idp - support multiple redirectURI values #463
- create decode lastmile filter #460
bugs:
- azuread provisioning provider - single quote not escaped properly #472
- OpenShift Target - pull host/port on every call #466
- K8s saml2 metadata check - namespace tags not supported #468
- Oidc Auth - Redirect not honoring X-Forwarded-Proto #467
- SAML2 IdP Fails to load completeFed #48
1.0.19-2020062101
Tasks:
- 1.0.19 build #449
bugs:
- OpenID Connect - Better error validation #455
- WebSockets - subProtocol not sent from the downstream system #454
- ScaleJS Register - dynamic list validation always fails #451
- AzureAD provisioning target does not renew credentials #450
enhancements:
1.0.19-2020062101
1.0.18-2020042003
1.0.18-2020042003
Tasks:
- GittHub login - remove use of
access_tokenin api calls #440 - 1.0.18 build #383
- Remove undertow subproject #448
- Remove JBoss 7.x support #447
enhancements:
- CreateK8sObject - support put #432
- Create better mapping authentication mechanism #441
- azuread provisioning support #446
- Create JMS keepalive for queue management #411
- K8s token - if no cert don't set in kubectl #443
- Better widows support for kubectl #442
- SAML2 Auth - Support multiple certificates #417
- kubernetes - update to oidc should extend session in browser #420
- Better support for suitecrm #430
- ScaleJS Register - Add dynamic lookup for LDAP #405
- k8s impersonation support #360
- add support for okta apis #393
- better metrics support #400
- support patching k8s objects #406
- LDAP listeners for OpenUnison #399
- openshift/k8s target - trust ca certificate from pod #412
- dyanmic workflows - add user data #408
- ScaleJS Operators - Add way to add filter to search request #407
- Integrate DUO auth code #384
- AD Provisioning Target - Add create group support #404
- OAuth2 JWT auth - Support discovery url #403
- Validate k8s service accounts #387
- Add support for PATCH #386
- Add method to dynamiclly exclude configuration items #385
- Oauth2 JWT authentication support #382
bugs:
- Oidc: Compare hd to hd attribute from id_token #444
- Better logging and error reporting on failed logins #437
- k8s impersonation needs to inject system:authenticated into groups #431
- ScaleJS Operator - search user with missing attributes fails #418
- Better error checking in k8s crd user provisioning #368
- DB provisioning - can't log updates #409
- Add group to target doesn't respect parameters #402
- callworkflow task doesn't work when its a subtask #273
1.0.17-2019062401
1.0.17-2019062401
Tasks:
enhancements:
- integrate scalejs-operators #375
- scalejs register - create searchable list control #358
- oidc idp - flag to sign userinfo response #374
- Add IBM mq factory to main source code base #372
- Az Authmech #371
- GitHub authentication #363
- Add default options to config parameter replacement #370
- create drupal 8 provisioning module #342
- openshift - move off of deprecated apis #361
- k8s impersonation support #360
- metadata url for saml2 #359
- add flags to organizations to determine in what situations they're visible #357
- Create a dynamic workflow for looking up groups in a db via a provisioning target #356
- Add launcher for MyVD #354
bugs:
1.0.16-2019031701
Tasks:
enhancements:
- genoidctokens needs host override #352
- k8s myvd - add flag for always mapping uid #349
- k8s new project validator #345
- AWS Services, integrate s3 proxy #51
- Remove support for alfresco #344
- better userAccountControl support #341
- skip sync groups for AD #340
- OpenShift insert for MyVD #339
- make oidc idp backend plugable, support CRDs #327
- MyVD - Support Kubernetes CRD #325
- CRD provisioning target #326
- openshift target - pull k8s host from environment variables #329
- integrate k8s openunison classes #334
- create way to delete k8s objects on a timer #335
- Support UPGRADE and websockets #332
- scalejs k8s token viewer - make kubectl command that includes certs #331
- make no oidc idp a warning, not an exception #330
bugs:
1.0.15-2018070601
Tasks:
enhancements:
- Support multiple requests with the same password reset email #322
- reuse myvd db pools in db target #311
- add support for undertow welcome files #317
- ScaleJS Main - support textarea and lists for profile updates #321
- Allow parameters for custom authorizations #310
- add support for catching error pages #315
- Check if k8s/openshift objects exist before creation #320
- create task to copy environment variables into workflow request #319
- FreeIPA Target - add support for id override #318
- support case-insensitive routing #314
- Support trusts with freeipa for provisioning #301
- provide mechanism for ou to NOT set domain,secure,etc on cookies #308
- clear all groups provisioning task #307
- enable http2 support in undertow #304
- enable unencoded urls in undertow #305
- Create key cache #302
bugs:
1.0.14-2017050402
Tasks:
enhancements:
- add configuration for db connection timeouts #299
- Add secret key generation to OpenUnison utils #296
- Add flag for cert data to allow cert to be for CA #300
- Move from JCEKS to PKCS12 #294
- Support OpenShift 3.9 #298
- Support html for email notifications #284
- saml2 idp eliminate jsp #286
- "Dev" mode for openid connect to not validate redirect_uri #285
bugs:
- ScaleJS Main - user service does not return attributes in the order they're defined #288