-
Notifications
You must be signed in to change notification settings - Fork 31
Release notes
CAS in the cloud LELEU Jérôme edited this page Feb 7, 2022
·
21 revisions
See the pac4j release notes as well.
Version 6.0.1:
- Update to pac4j v5.3.1 because of pac4j v5.1 "none" token algorithm https://nvd.nist.gov/vuln/detail/CVE-2021-44878
- Fix Netty HTTP request smuggling https://nvd.nist.gov/vuln/detail/CVE-2021-43797
Version 6.0.0:
- Update to pac4j v5
- Upgrade to Vert.x v4.2
5.0.1
- Fix pac4j profiles saved in certain type of clustered sessions
5.0.0
- Upgrade to pac4j v4
- Upgrade to Vert.x v3.9
4.1.1
- Minor fix on cookies management
4.1.0
- Upgrade to Vert.x v3.6.2
- Update to pac4j v3.4.0
4.0.0
- Upgrade to Vert.x v3.5.3
- Update to pac4j v3.2
3.1.0
- The
renewSessioncapability is enabled
3.0.1
- Update to pac4j 2.1.x and vert.x 3.4.2. No incompatibilities found yet, and no actual code changes required.
3.0.0
- Upgrade to pac4j 2.0.x and vert.x 3.4. Implement CAS logout handling, and handle new pac4 2.x feature.
2.1.0:
- Upgrade to pac4j v1.9 and vert.x 3.3. Move core logic into pac4j core reducing inertia for the implementation
- Support multiprofile behaviour as per pac4j 1.9
2.0.0:
- Upgrade to pac4j v1.8: REST support (basic auth, header, request parameter, IP), new authentication mechanisms (LDAP, JWT, SQL, MongoDB, Stormpath), authorizations
- Application logout support
- A specific client can be dynamically selected for authentication
1.1.0:
- Based on pac4j v1.7
- OpenID Connect and Strava support
- REST (direct authenticated calls) support
- Role-based access
- Remove Google OpenID support
1.0.0:
- Based on pac4j v1.6: CAS, OAuth, OpenID, SAML, GAE & HTTP supports