Skip to content

oxAuth Version 3.0.1
Compare
Choose a tag to compare
@zamilskhan zamilskhan released this 06 Feb 22:54
· 3860 commits to master since this release
v3.0.1
98fa56c

Notice

This document, also known as the Gluu Release Note, relates to the Gluu Release versioned 3.0.1 The work is licensed under “The MIT License” allowing the use, copy, modify, merge, publish, distribute, sub-license and sale without limitation and liability. This document extends only to the aforementioned release version in the heading.

UNLESS IT HAS BEEN EXPRESSLY AGREED UPON BY ANY WRITTEN AGREEMENT BEFOREHAND, THE WORK/RELEASE IS PROVIDED “AS IS”, WITHOUT ANY WARRANTY OR GUARANTEE OF ANY KIND EXPRESS OR IMPLIED. UNDER NO CIRCUMSTANCE, THE AUTHOR, OR GLUU SHALL BE LIABLE FOR ANY CLAIMS OR DAMAGES CAUSED DIRECTLY OR INDIRECTLY TO ANY PROPERTY OR LIFE WHILE INSTALLING OR USING THE RELEASE.

What's new in version 3.0.1

There are some major changes in Gluu Server Community Edition 3.0.1 from replacing tomcat with jetty to dropping opendj for openldap. The changes are available in the documentation hosted at https://gluu.org/docs/operation/intro.

  1. Added: Escape parameter values to prevent XSS attack #459
  2. Added: EndSession endpoint accepts id_token or session_state to end session #439
  3. Added: Support JSON Property for HTTPOnly #412
  4. Added: JSON property to control writing last update time to LDAP #410
  5. Updated: log4j: 2.x from log4j 1.x
  6. Updated: Login page #414
  7. Updated: Jquery library updated to 1.12.4
  8. Fixed: NPE in 3.0.0
  9. Fixed: UMA AM validation for oxauth behind proxy #472
  10. Fixed: oxLastLoginTime fail : print also exception
  11. Fixed: High load performance fixed #461 #463 #438 #408 #400 #399 #384
  12. Fixed: Failed to register client with custom attribute "oxAuthTrustedClient" #476
  13. Fixed: U2F Authentication #455
  14. Fixed: hostname required to match in request to token_endpoint #451
  15. Fixed: Login page footer message #449
  16. Fixed: metricService doesn't persist statistics to LDAP #448
  17. Fixed: DUO script fail #444
  18. Fixed: Persist authorizations throws NPE #442
  19. Fixed: Setting Pre-Auth true should not allow anything writter under ou=clientAuthorizations #441
  20. Fixed: Persist Authorization not functioning #440
  21. Fixed: Any primaryKey except UID does not function #436
  22. Fixed: Token Introspection fixes #433 #432
  23. Fixed: Pairwise identifier shows inum in id_token and Userinfo #430
  24. Fixed: Replaced activemq-all jar with required libraries #425
  25. Fixed: SCIM-Client fails to authenticate with UMA #402
  26. Fixed: Attribute values stored as UTF-8 string #387
  27. Fixed: default_acr_value is not used in authentication process #383
  28. Fixed: Authenticator should not add default message if count of messages >0 #379
  29. Fixed: Show error page with timestamp on oxauth error #377
  30. Fixed: SCIM with certain values causes Server Error 500 #372
  31. Fixed: auth_level_mapping discovery has double array #366
Assets 2
Loading