Mutable

Mutable release -- this is just a convenient place to put various things for testing and deploy to servers. None of it is release ready and it should only be used by developers.

Version 5.4

There are no new updates to CILogon per se, but several to OA4MP which include support for elliptic curve cryptography.

5.3.5

v5.3.5

5.3.5 checkin

5.3.4

Issues addressed:

• https://jira.ncsa.illinois.edu/browse/CIL-1612 - unused client cleanup
• https://jira.ncsa.illinois.edu/browse/CIL-1701 - QDL installer missing build information
• https://jira.ncsa.illinois.edu/browse/CIL-1722 - better error and success logging on the server
• https://jira.ncsa.illinois.edu/browse/CIL-1732 - remove getcert claim from registration page. (See documentation at https://oa4mp.org/common/configuration/scopes.html)
• https://jira.ncsa.illinois.edu/browse/CIL-1762 - support for RFC 7523
• https://jira.ncsa.illinois.edu/browse/CIL-1772 - ignore bad QDL modules on deserialization

5.3.3

Issues addressed:

• https://jira.ncsa.illinois.edu/browse/CIL-1612 - unused client cleanup
• https://jira.ncsa.illinois.edu/browse/CIL-1701 - QDL installer missing build information
• https://jira.ncsa.illinois.edu/browse/CIL-1722 - better error and success logging on the server
• https://jira.ncsa.illinois.edu/browse/CIL-1732 - remove getcert claim from registration page. (See documentation at https://oa4mp.org/common/configuration/scopes.html)
• https://jira.ncsa.illinois.edu/browse/CIL-1762 - support for RFC 7523
• https://jira.ncsa.illinois.edu/browse/CIL-1772 - ignore bad QDL modules on deserialization

V 5.3.1

Issues addressed:

• https://jira.ncsa.illinois.edu/browse/CIL-1612 - unused client cleanup
• https://jira.ncsa.illinois.edu/browse/CIL-1701 - QDL installer missing build information
• https://jira.ncsa.illinois.edu/browse/CIL-1722 - better error and success logging on the server
• https://jira.ncsa.illinois.edu/browse/CIL-1732 - remove getcert claim from registration page. (See documentation at https://oa4mp.org/common/configuration/scopes.html)

Full Changelog: v5.2.8...v5.3.1

5.3.0

Issues addressed in this release:

• CIL-1069: Emails are sent on their own thread now.
• CIL-1638: Missing header in user info endpoint response.
• CIL-1655: added refresh_token_lifetime and refresh_token_iat to refresh endpoint respsonse. These are not standard, but sufficiently many places do it now (and it's a really good idea) so we will too. If there is ever a standard for this, we will support it.
• CIL-1667: The openid scope now will have the acr (authentication class reference) returned if present.
• CIL-1668: QDL acl_add function will not throw an exception if the added identifier is invalid, it will merely log it. Optionally, it may be requested to fail hard and fast with a flag.
• CIL-1671: Admin clients, if approved to do so, may either mint identifiers in their own namespace or request specific identifiers.
• CIL-1677: Monitor last accessed times for various objects. This includes clients, admin clients, virtual organizations and (in CILogon) users. This permits tracking across time. As the system ages and scales up, being able to track which objects are in use is becoming critical.

5.2.9.0

v5.2.9.0

5.2.9.0 checkin

v5.2.8.3

5.2.8.3 Checkin

5.2.8.2

v5.2.8.2

CIL-1538, CIL-1541