Skip to content

Releases: AbsaOSS/login-service

v2.4.1

Choose a tag to compare

@github-actions github-actions released this 02 Jun 08:34
a5141b9

Bugfixes 🛠

  • #171 Remove hardcoded ticketValidator.setDebug(true) in KerberosSPNEGOAuthenticationProvider.scala in #173
    • Kerberos SPNEGO Validator debug config follows ldap.enable-kerberos.debug

Full Changelog

v2.4.0...v2.4.1

v2.4.0

Choose a tag to compare

@github-actions github-actions released this 18 May 12:47
309bc14

New Features 🎉

  • Tomcat base image + CI tests updated to JDK17.

Full Changelog

v2.3.0...v2.4.0

v2.3.0

Choose a tag to compare

@github-actions github-actions released this 15 May 08:30
5e7c61b

New Features 🎉

  • #167 Allow groups slipstream in token/generate (e.g. for MSEntra) in #168
    • config now must contain loginsvc.rest.jwt.{aws-secrets-manager|generate-in-memory}.allow-providers-to-refresh-groups-on-generate = false|true. If enabled, this bring the ability to fill empty groups for users (obtained by MS Entra).
    • Note that Entra-provider.order < LDAP-provder.order is necessary for correct function ⬆️
    • The example UI Login form is extended to optionally pass group-prefixes

Full Changelog

v2.2.1...v2.3.0

v2.2.1

Choose a tag to compare

@github-actions github-actions released this 24 Apr 08:15
a8b9225

New Features 🎉

  • #159 Add browser-based login form example using Entra ID and MSAL.js in #160
    • Include an example login form to demonstrate Login Service integration with entra

Bugfixes 🛠

  • #161 MS Entra plugin times out sometimes in #162
    • Entra timeouts are now 10s/10s by default, configurable by loginsvc.rest.auth.provider.entra.{jwks-connect-timeout-ms, jwks-read-timeout-ms}

Full Changelog

v2.2.0...v2.2.1

v2.2.0

Choose a tag to compare

@github-actions github-actions released this 21 Apr 12:31
767e41f

New Features 🎉

  • #127 MS Entra integraton in #158

    • Add MS Entra login mechanism
  • PR: #155 (#154) Set Groups and Case Sensitivity to optional Parameters in clientLibrary

    • Removed overloaded methods and introduced AuthMethod trait to indicate authentication method. This removes ambiguity with the default parameters and avoids compilation errors.

Full Changelog

v2.1.0...v2.2.0

v2.1.0

Choose a tag to compare

@github-actions github-actions released this 05 Feb 11:53
1d808e0

New Features 🎉

  • #151 token/generate case sensitivity for clientLibrary in #153
    • Added Case Sensitivity option for client library
  • PR: #155 (#154) Set Groups and Case Sensitivity to optional Parameters
    • Removed overloaded methods and introduced AuthMethod trait to indicate authentication method. This removes ambiguity with the default parameters and avoids compilation errors. Original API kept, but marked as obsolete.

Bugfixes 🛠

  • #156 Bug: POST token/generate returns empty on 401 while Swagger defines JSON in #157
    • Bugfix: 401 Responses were missing body with error description despite the API doc stating so.

Full Changelog

v2.0.0...v2.1.0

v2.0.0

Choose a tag to compare

@github-actions github-actions released this 23 Oct 07:36
fc8ac45

New Features 🎉

  • #146 [LS] Introduces /token/generate?group-prefixes case-sensitivity control in #149
    • Previously existing /token/generate?group-prefixes=prefixHere is no longer case-sensitive by default. One may add &case-sensitive=true to bring back previous behavior.

Migration notes from v1.6 and older

  • Login service v1.6.0 and older's /token/generate?group-prefixes=prefixesHere equivalent will now be /token/generate?group-prefixes=prefixesHere&case-sensitive=true
    • if you want to keep using case-sensitive group filtering, you need to add &case-sensitive=true to your token-generating request URL
    • if this change is welcome (i.e. you benefit from case-insensitive filtering - you had to put in multiple cases of the same prefix to match), you need to do nothing (or even simplify the groups prefixes that are the same except for casing)

Full Changelog

v1.6.1...v2.0.0

v1.6.1

Choose a tag to compare

@github-actions github-actions released this 22 Oct 14:40
277b052

Infrastructure ⚙️

  • #145 Release is broken in #150
    • "adopt@1.11.0-11" added to workflow file for release

Documentation 📜

  • #147 Add "Tech debt" issue template in #148

Full Changelog

v1.6.0...v1.6.1

v1.6.0

Choose a tag to compare

@dk1844 dk1844 released this 09 Oct 08:20
5653a9d

New Features 🎉

  • PR: #143 (#129) LS password rotation support
    • Added Option for AWS SSM Parameter Store as alternative to AWS Secrets manager for storing credentials
    • Updated Tests to support the new addition
    • Updated ReadMe to indicate how to implement.

Infrastructure ⚙️

  • #141 LS: Add Business Value chapter to issue templates in #142

Full Changelog

v1.5.0...v1.6.0

Login Service v1.5.0

Choose a tag to compare

@github-actions github-actions released this 15 Sep 08:34
fa54b70

New Features 🎉

  • #138 Make Login Service releasable under new Maven central repository in #140
    • Updated sbt.version to 1.11.5 for release.
    • Updated Developers
    • Updated sbt-ci-release to 1.11.2
    • Updated scala213 = "2.13.13"
  • #33 Removed futures from controller in #139
    • Removed Futures from all return types of the token controller
    • Amended Tests and classes required for this

Silent-live 🤫

  • #129 Experimental: An attempt to do browser negotiation on a get enpoint in #130
    • experimental GET endpoint at /token/experimental/get-generate added (must be allowed in config via loginsvc.rest.experimental.enabled=true)

Documentation 📜

  • #35 JWT public signing verification documentation (direct howto on /token/generate and token/public-key)
  • PR: #136 Remove jacoco forks
    • Used new GH Action for Jacoco reports.
    • Used Jacoco agent solution instead of sbt-jacoco plugin for measuring code coverage.
    • Used new library for method filtration for jacoco reports.
  • PR: #137 Used latest release of jmf.
    • Update to use latest version of jmf.

Spikes ⚠️

  • #74 Possibility to login using email address

Full Changelog

v1.4.0...v1.5.0