jans-auth-server: v1.0.3

1.0.3 (2022-11-01)

Features

• agama: add utility classes for inbound identity (#2280) (ca6fdc9)
• disable TLS in CB client by default (#2167) (8ec5dd3)
• jans-auth-server: add access_token_singing_alg_values_supported to discovery #2372 (#2403) (3784c83)
• jans-auth-server: added allowSpontaneousScopes AS json config #2074 (#2111) (3083a3f)
• jans-auth-server: added convenient idTokenLifetime client property #2656 (#2668) (f97bfce)
• jans-auth-server: added creator info to scope (time/id/type) #1934 (#2023) (ca65b24)
• jans-auth-server: allow authentication for max_age=0 #2361 (#2362) (aed6ee3)
• jans-auth-server: allow end session with expired id_token_hint (by checking signature and sid) #2430 (#2431) (1b46b44)
• jans-auth-server: Draft support of OpenID Connect Native SSO (#2711) (595d1aa)
• jans-auth-server: extended client schema - added jansClientGroup #1824 (#2299) (29cfd4e)
• jans-auth-server: renamed "enabledComponents" conf property -> "featureFlags" #2290 (#2319) (56a33c4)
• jans-auth-server: updating arquillian tests 1247 (#2017) (ee200a7)
• jans-linux-setup: added token exchange grant type (#2768) (b3abcfe)
• ssa creation endpoint (#2495) (61c83e3)
• update Coucbase ORM to conform SDK 3.x (config updates) #1851 (#2118) (fceec83)
• upgrade org.jetbrains:annotations from 18.0.0 to 23.0.0 (#637) (e5fca5a)

Bug Fixes

• config-api: client default value handling (#2585) (fbcbbad)
• fixed multiple encoding issue during authz (#2152) (fb0b6d7)
• include idtoken with dynamic scopes for ciba (#2108) (d9b5341)
• jans auth server: well known uppercase grant_types response_mode (#2706) (39f613d)
• jans-auth-server: "login:prompt" property passed in request object JWT breaks authentication #2493 (#2537) (9d4d84a)
• jans-auth-server/pom.xml to reduce vulnerabilities (#2466) (86e62f9)
• jans-auth-server/pom.xml to reduce vulnerabilities (#2520) (f927692)
• jans-auth-server: added schema for ssa, corrected persistence, added ttl #2543 (#2544) (ce2bc3f)
• jans-auth-server: client tests expects "scope to claim" mapping which are disabled by default #1873 (958cc92)
• jans-auth-server: fixing client tests effected by "scope to claim" mapping which is disabled by default #1873 (#1910) (6d81792)
• jans-auth-server: generate description during built-in key rotation #1790 (#2068) (cd1a77d)
• jans-auth-server: increased period of session authn time check (#1918) (a41905a)
• jans-auth-server: native sso - return device secret if device_sso scope is present #2790 (#2791) (9fa213f)
• jans-auth-server: npe - regression in token endpoint (#2763) (fe659d7)
• jans-auth-server: npe in discovery if SSA endpoint is absent #2497 (#2498) (c3b00b4)
• jans-auth-server: perform redirect_uri validation if FAPI flag is true #2500 (#2502) (aad0460)
• jans-auth-server: PKCE parameters from first SSO request retains in further calls (#2620) (de98b41)
• jans-auth-server: ssa get endpoint (#2719) (35ffbf0)
• jans-auth-server: structure, instance customAttributes, initial data for ssa (#2577) (f11f789)
• jans-config-api/plugins/sample/helloworld/pom.xml to reduce vulnerabilities (#972) (e2ae05e)
• jans-eleven/pom.xml to reduce vulnerabilities (#2676) (d27a7f9)
• select first sig key if none requested (#2494) (31fb464)
• upgrade com.google.http-client:google-http-client-jackson2 from 1.26.0 to 1.40.1 (#644) (31bc823)

Miscellaneous Chores

• release 1.0.2 (43dead6)

Documentation

• no docs (529745d)
• no docs (ce2bc3f)
• no docs (9d4d84a)
• no docs (abfd466)
• no docs (aad0460)
• no docs (c3b00b4)
• no docs (f1f0b8d)
• no docs (3784c83)
• no docs (2e02d5e)
• no docs (5c752d1)
• no docs (3083a3f)
• no docs (e488d10)
• no docs (685be30)
• no docs (cd1a77d)
• no docs (ca65b24)
• no docs (9b54357)
• no docs (config-api swagger updated) (56a33c4)
• no docs (swagger is updated) (1b46b44)
• no docs (swagger updated) (aed6ee3)
• no docs (swagger updated) (29cfd4e)
• no docs required (a41905a)
• no docs required (958cc92)
• updated (739b939)