cas

• eec791b Add HttpOnly flag for JSESSIONID and force cookie mode for session tracking (@cslzchen)
• 5ca77b Resolve proper Inspektr principal at serviceValidate joinpoint (@dima767)

• 8a34df4 Fix typo in casServiceValidationSuccess.html (#1832) (@zawn)
• 156fca3 Ensure SAML subject confirmation is skewable (@charlesheidemann)
• dc47514 SAML Response is invalid message #1827 (#1828) (@charlesheidemann)
• 4fd2ed0 Update Shiro version; Fixe build/jar compilation issue (#1826) (@mmoayyed)
• 54aaa2a Only update jar manifest if jar was compiled/changed (#1823) (@mmoayyed)
• 6ce55e4 Fix googleAnalyticsTrackingId (#1809) (@zawn)
• dd7be22 Get rid of custom groovy console; use Spring Boot remote shell instead (#1815) (@dima767)
• aa17ba7 Resolve proper Inspektr principal at serviceValidate joinpoint (#1801) (@dima767)
• f53e00e Automate the configuration of LDAP access to the management webapp (#1791) (@mmoayyed)
• 02fb867 Fix Oauth CallbackService register error (#1795) (@zawn)
• #1798 Fix typo in SpengoWebflowConfigurer (@rkorn86)
• 27fe5a1 Support OIDC extended claims (#1785) (@mmoayyed)
• 876cc8a Rename webapp modules into support modules (#1789) (@mmoayyed)
• 1b6cc11 Remove node-plugin from the build; Check-in CSS files manually. (#1790) (@mmoayyed)
• 51e8233 Added pathing jar to fix issue with file names being too long on the classpath (@mmoayyed)

• 76598e7 Ignore bad regex patterns for services when executing service match ops (#1782) (@mmoayyed)
• a1b21f4 Implement service registry auto-initialization (#1771) (@dima767)
• c9e8408 CSS generation via Node/SASS cleanup (#1778) (@mmoayyed)
• b7bedcf Add HttpOnly to CookieRetrievingCookieGenerator. (#1775) (@cslzchen)
• 51234fe fixed issue with locales (@mmoayyed)
• 8f29248 Provide support for OIDC (#1733) (@mmoayyed)
• 9b9b336 Don't trigger a rollback on a InvalidTicketException (@frett)
• 45b289a Remove old ticket delegator advice (@frett)
• 4df2f48 utilize TicketRegistry.updateTicket() when trying to update a ticket (@frett)
• 1ffc22d Fixed view crash when svc registry is empty (@mmoayyed)
• f754eaa Upgrades a number of CAS dependencies. (#1770) (@mmoayyed)
• 994619c Added mongodb session management (#1767) (@mmoayyed)
• b4abb80 CAS security filter, Spring Webflow Client Repo, PersonDirectory and Inspektr Apereo upgrades (#1765) (@mmoayyed)
• 262b000 Fix webflow for password expiration (#1762) (@tduehr)
• aa9ee53 Use static loggers for principal attribute repository config (@mmoayyed)
• 4684175 Update Spring Boot to 1.3.5 (#1760) (@dima767)
• bd1b4d9 Use static loggers for the principal repositories (#1757) (@mmoayyed)
• 595c79b Fixes to the application context, proxy beans and init module (#1758) (@mmoayyed)
• a89ffe6 Clean up gradle/node configuration used to generate CSS (#1751) (@mmoayyed)
• 3fa079c Fix issue with top level package move to org.apereo (#1753) (@zawn)
• 865fca8 Spring boot 1.3.4 (#1749) (@dima767)
• 3c4a237 Fix character encoding issue of template rendering (#1747) (@yisiqi)
• f727cce Rename subprojects to follow conventional module naming (#1748) (@dima767)
• 7c8983a Refactor top level package to org.apereo (#1745) (@dima767)
• b454c02 Clean up Thymeleaf views and layouts (#1732) (@mmoayyed)
• dd362ab Allow the service username attribute to be retrieved as a principal attribute. (#1739) (@mmoayyed)
• d91a665 Removed Supplemental Authentications (#1728) (@mmoayyed)
• d1b180f OAuth endpoints need @Controller annotations. (#1731) (@zawn)
• fc747bd Bootify CAS application context (#1649) (@mmoayyed)
• #1698 OAuth support should take into account CAS services definition (@leleuj)
• 6ba1378 Remove the ticket delegator components. (#1706) (@dima767)
• d522901 JPA fixes (#1710) (@frett)
• 5a131ec Fixes to Spnego module (#1704) (@rkorn86)
• 2436dba Changed loggers to be static (#1703) (@mmoayyed)
• 29d9229 Allow QueryAndEncodeDatabaseAuthenticationHandler to be optional (@mmoayyed)
• ce9c40a Allow async processing of status endpoint (@mmoayyed)
• aa1a629 Allow Hazelcast to get ticket stats (@mmoayyed)
• 6773042 Log ldap authentication error as ERROR when uid attribute is not found (@mmoayyed)
• #1683 Flexible custom authentication exceptions configuration (@dima767)
• #1684 When using OAuth support, the pac4j logout hides the CAS logout (@leleuj)
• #1676 Externalize cas components mappings (@dima767)
• #1678 Add note about ticketreg.database.ddl.auto options to doco (@jerrykan)
• #1675 Upgrade Hazelcast to 3.6.2 (@dima767)
• #1604 Support ACS Index in the SAML authN Request (@mmoayyed)

• 474807 Fixed property name typo that controls the metrics interval @mmoayyed
• ea4c89 Relax the syntax for JSON service definitions @mmoayyed
• ea4c89 Ignore bad regex patterns for service definitions @mmoayyed
• 7ec402 Add HttpOnly to class CookieRetrievingCookieGenerator @cslzchen
• e4b2ae Handle password policy signals in the webflow @mmoayyed
• 9e94fd use static loggers for principal attribute repository config @wallon-ines
• 44c1ba Allow the service username attribute to be retrieved as a principal attribute @mmoayyed
• 64aec5 Handle missing spnego annotations @mmoayyed
• d23cfd Let RegisteredServiceThemeBasedViewResolver be default @mmoayyed
• eb7f7f Slovak translations @dodok1
• 3c94d8 Add LDAP support for Acceptable Usage Policy (AUP) functionality @mmoayyed
• 76464b Allow the ticket cleaning process to operate on the same registry instance @mmoayyed
• db4ded Fixed serialiation issue with the service ticket lock when granting PGTs @mmoayyed
• 14cafb Update ClearPass documentation @miklosbarabas
• 87a29a Use static loggers for JPA service registry @mmoayyed
• 1be0c0 Allow QueryAndEncodeDatabaseAuthenticationHandler to be optional @mmoayyed
• 3eb444 Let hazelcast handle session and service ticket counts @mmoayyed
• 0a4bd0 Log under ERROR when principal id attribute is not found during LDAP AuthN @mmoayyed
• 4dc776 Allow host.name to be auto-detected if left undefined @mmoayyed
• c23123 Update PersonDirectory to v1.7.1 @mmoayyed

• 76598e7 Ignore bad regex patterns for services when executing service match ops (#1782) (@mmoayyed)
• b7bedcf Add HttpOnly to CookieRetrievingCookieGenerator. (#1775) (@cslzchen)
• c72be69 Fixed property name typo that controls the metrics interval (@mmoayyed)
• dd362ab Allow the service username attribute to be retrieved as a principal attribute. (#1739) (@mmoayyed)
• #1722 Provide Slovak translation bundle @dodok1

• #1668 Update top.jsp meta tag for correct closing tag (@gougej88)
• #1660 get the VirtualFile object from the vfs URL (@frett)
• #1657 Handle vfs resource when checking for CAS date/time (@mmoayyed)
• 467f0e6 Identifier too long for Oracle (@ikogan)
• #1665 Auto-generate keys for webflow/TGC

• #1668 Update top.jsp meta tag for correct closing tag (@gougej88)
• #1664 Auto-generate keys for webflow/TGC

For a complete list of changes, please refer to the change log for each preceding release candidate, and/or refer to the CAS documentation at http://jasig.github.io/cas/4.2.x

• #1635 Correctly access unauthorizedRedirectUrl in the webflow (@jtgasper3)
• #1623 Ensure proxy authN is taken into account when using ssoEnabled=false (@mmoayyed)
• #1615 Allow ssoEnabled=false to activate only if TGT is used once (@mmoayyed)

• 99653d5 Remove "All Rights Reserved "from UI (@mmoayyed)
• 6bd0cfc TokenAuthenticationHandler should retrieve the right token encryption setting from properties. (@mmoayyed)
• #1547 OAuth: Use the provided service for the access token, no the callback one (@leleuj)
• 2702610 Expose AbstractTicketExceptions to webflow (@frett)
• 29bb759 Always use the root TGT for checking the AuthenticationPolicy (@frett)
• 9c4630b Drop connections early for ldap service registry (@mmoayyed)
• 78dd0fd Mark putTicketGrantingTicketIntoMap() public (@mmoayyed)
• #1524 disallow double authN when ST is generated (@mmoayyed)
• 7cdb5d2 Add an extra space before header text (@mmoayyed)
• 714f0e7 JPA: Mark getTicket() calls not readonly (@frett)
• 0f3191a Enhance hazelcast configuration; allow support for loading settings from an external file (@dima767)
• 1e44152 Allow alternative logger selection (@mmoayyed)

• #1548 Expose TicketExceptions to webflow (@frett)
• 4f08ea7 always use the root TGT for checking the AuthenticationPolicy (@frett)
• #1537 Updating Javadocsc (@PetrGasparik)
• 82ad309 Mark putTicketGrantingTicketIntoMap() public (@mmoayyed)
• #1530 Drop search connection early for ldap service registry during updates (@mmoayyed)
• #1523 Disallow double authN when generating STs (@mmoayyed)
• 302c542 Update docs for Google Apps (@mmoayyed)
• 029cc3c Disable readonly for the getTicket method of JPA service registry (@frett)

• 0500e5a 23664fa Allow better control over WS-FED principal resolver; Fix infinite redirect loops (@mmoayyed)
• #1480 Log4j2 reconfiguration of shut downs (@frett)
• 0789bc5 34e9b0e SAML1 ResponseTo field as valid cname (@mmoayyed)
• 9900352 Represent assignedId as a String for Services Management (@frett)
• 3481b4c Change name of the property to be more consistent with the rest of CAS (@dima767)
• cc436cd Added oauth-core module (@mmoayyed)
• fd3cf3a Refactor executor thread pool for httpclient (@mmoayyed)
• 0179a4f Remove HTML escaping from the URL (@mmoayyed)
• #1462 Quartz shutdown on 4.2 (@frett)

• #1459 Wait for Quartz threads to shutdown (@frett)
• 66defc3 Allow CAS cookie paths to be overridden (@mmoayyed)
• #1454 Fix url for ba-debug JS dependency (@nicolasmoreira)
• ef08efe Disable SAML external entities, includes, and entity reference expansion (@mmoayyed)
• #1437 Fixing typo in RegisteredServiceThemeBasedViewResolver bean def (@jtgasper3)
• 2730fd0 Update the OAuth error view name (@mmoayyed)
• #1435 Update X.509 Authentication Guide (@jbjonesjr)
• #1430 Management webapp docs; time-based access strategy UI changes (@mmoayyed)
• #1427 Ensure SAML UI extensions are not null (@mmoayyed)
• f6eaa29 Allow attribute values for access strategy to support regex (@mmoayyed)
• 7bb4e77 Allow the pac4j credential to ignore the typedid if configured (@mmoayyed)
• #1412 Fixed typo in PAC4J documentation (@jtgasper3)
• #1410 Login throttling using JdbcAuditTrailManager won't work (@mateofacu)
• #1409 Registered Service properties (@mmoayyed)
• #1407 Allow the logout manager to use CAS local truststore (@mmoayyed)
• #1407 Update Kryo serializers (@smicyk)

• #1343 Decouple authentication from CASImpl (@dima767)
• #1385 private methods that don't access instance data should be "static" (@kirill-vlasov)
• #1383 Update to gradle 2.10 (@mmoayyed)
• 60085d7 fixed checkstyle issues (@mmoayyed)
• #1381 Dead stores should be removed (@DevFactory)
• #1380 Ensure CAS attributes are encoded (@mmoayyed)
• #1382 Unused private fields should be removed (@DevFactory)
• ea7a2c2 Fixing squid:S1068 - Unused private fields should be removed (@kirill-vlasov)
• 4c3b646 Remove protocol constants from webflow action (@mmoayyed)
• 0fe35cf Allow SLO messages to reach into the CAS truststore (@mmoayyed)
• #1372 Allow the warning cookie to be set conditionally in non-interactive actions (@mmoayyed)
• #1366 Allow oauth services to be verified against services manager (@mmoayyed)
• #1368 Ticket registry based on Infinispan cache (@mmoayyed)
• #1369 Doc correction - header level (@PetrGasparik)
• #1354 JWT/Token authentication support (@mmoayyed)

• #1363 Serialize/Deserialize the registered service for memcached (@mmoayyed)
• 2e6ea05 Allowed the use of Inspektr's ClientInfo when running JDBC throttling queries (@mmoayyed)
• 7c854e3 Allowed JPA registry to detect PGTs (@frett)
• #1349 Added @JsonIgnore annotation when configuring salt for username attribute providers (@frett)
• #1341 Added authZ strategy by date/time (@mmoayyed)
• c25d7df Fixed issue with missing JPA transactional entity manager (@mmoayyed)
• #1330 Fixed issue with Google Apps SAML2 timezones (@agaikwad)
• 8d5f45b Use static loggers for expiration policy (@frett)
• d42f436 Extended JPA field length for lobs (@mmoayyed)
• 6fabe3d Fixed skew allowance for google apps (@agaikwad)
• 265a7ad Allowed management app to reload services (@mmoayyed)
• #1320 Added missing namespace declaration into doc for JPA (@robertoschwald)
• 0237fe0 Allowed rest credentials to be extracted via a pluggable strategy (@dima767)
• #1303 Create a new Array for modified CAS logging arguments (@frett)

• 62d6612 Reset the status endpoint's access security rule (@mmoayyed)
• 588dd1e Service username shall pass through attribute release policy (@mmoayyed)
• 4617f12 updated spring lib version (@mmoayyed)
• #1277 Ensure the logger is declared as transient (@mmoayyed)
• 71bfaef fix redirect loop on password expiration warning (@tduehr)
• 1a31315 remove service deletion during edit process (@tduehr)
• #1267 HttpOnly / Secure not set when "removing" CAS cookies (@mmoayyed)
• #1268 Provide a skewAllowance for SAML2 google apps (@mmoayyed)
• f2e33ed #1239 Wrong state type for logoutView in logout-webflow (@RaphC)
• 369e962 Fix bug in form validation for proxy service regex. (@fjollberg)

• #1283 Updated spring lib version (@mmoayyed)
• 492e76c Fix redirect loop on password expiration warning (@tduehr)
• a6be1c8 HttpOnly / Secure not set when "removing" CAS cookies (@mmoayyed)
• #1251 #1239 Wrong state type for logoutView in logout-webflow (@RaphC)
• 5808a7b Fixed memcached serialization issue with no-arg constructors (@mmoayyed)

• dc58696 ac526a3 fixed memcached serialization issue with no-arg constructors (@mmoayyed)
• 766b305 fixed issue with attribute repository serialization. (@mmoayyed)
• #1210 Removed NotNull annotation from PrincipalAttributeRepository (@mmoayyed)
• df36c69 fixed issue with inflation of saml authN request for google apps (@mmoayyed)
• #1189 Clean out all STs immediately when TGT is destroyed (@mduszyk)
• #1196 Upgrade ldaptive to 1.0.7 (@mmoayyed)
• 6f614c2 migrate vt-crypt dependency to cryptacular (@mmoayyed)
• 7d270eb removed service ticket registry from central auth service (@mduszyk)
• 4eff107 Enable returning of null principal per config, when no attributes are found (@mmoayyed)
• a75af8e removed transactional (@mmoayyed)

• 17d6194 upgrade ldaptive to 1.0.7 (@mmoayyed)
• 0fb3b1f Enable returning of null principal per config, when no attributes are found (@mmoayyed)
• 85f9d4a moved radius off of coova and over to jitpack (@mmoayyed)

• #1153 Upgrade Java CAS Client to v3.4.1 (@battags)
• #1102 Documentation: Update Package Name for SAML. (@loren138)
• #1093 Support openid.identity=http://specs.openid.net/auth/2.0/identifier_select (@leleuj)
• #1095 Determine management app context path dynamically (@mmoayyed)
• #1083 Management webapp redesign (@mmoayyed, @doodelicious, @rkorn86)
• #1071 Mongo support module (@mmoayyed)
• #1069 BugFix: registered services equality mismatch (@mmoayyed)
• #1072 Removed extra linebreak to allow openid4java parsing (@mmoayyed)
• #1073 Update the OpenID documentation for v2 support (@leleuj)
• #1068 fixed kryo issue with unmodifiable cols. backport from master (@mmoayyed)
• #1055 #1049 - Fix serialization bug with EhcacheTicketRegistry (@AmmarBelakhel)
• #1064 Json file naming convention (@mmoayyed)
• #1054 Hazelcast Ticket Registry implementation. (@dima767)
• #1045 Move creation of HandlerResult up the chain (@mmoayyed)
• #992 CRL checking to optionally try all URLs (@mmoayyed)
• #993 Allow CAS to parse/display SAML MDUI (@mmoayyed)
• #1041 Missing French translations (@leleuj)
• #1039 Issues-1038 added the close method on abstract pool to free the resource on undeploy (@NicolasMarcotte)
• #1032 Fix OpenSAML initialization error (@mmoayyed)
• #1001 Moved CAS core APIs into separate API module (@mmoayyed)
• #1031 Upgrade to Apereo parent v40. (@mmoayyed)
• #1005 Allow JsonSvcReg to auto-detect changes (@mmoayyed)
• #1010 Moved encoding filter to the top (@mmoayyed)
• #1023 Move request security filter to filters.xml (@mmoayyed)
• #1021 Clean up how null errors/warnings are handled by LPPE (@mmoayyed)
• #1020 Login flow Transcoding config (@mmoayyed)
• #1029 Update pac4j to version 1.7.1 (@leleuj)
• #1000 Added Jetty plugin config (@mmoayyed)
• #1011 Updated maven plugins to latest patch releases (@mmoayyed)
• #1024 CAS-1227: Ukranian language bundle (@mmoayyed)
• #1019 cas-server-integration-memcached pulls on two version of kryo (@NicolasMarcotte)
• #1015 Updated metrics, time and reflections libs. (@mmoayyed)
• #1013 Updated AspectJ version (@mmoayyed)
• #1014 Updated hibernate version (@mmoayyed)
• #1017 Log4j update (@mmoayyed)
• #1012 Updated spring security version (@mmoayyed)
• #1009 Check for gateway mode on invalid TGT (@frett)
• #999 Updated Polish translations for version 4.1.x; issue #994 (@gerbil14)
• #834 Issue-825: Always add the TGT in request AND flow scope (@leleuj)
• #833 Updated copyright year to 2015 (@mmoayyed)
• #822 Context listener to report on CAS environment info. (@mmoayyed)
• #829 Drop cas-server-protocol module (@mmoayyed)
• #818 SSO-disabled service can never be granted ST (@mmoayyed)
• #821 Issue-820: 'ticketId cannot be null' for a Facebook authentication (@leleuj)
• #824 Added Implementation-Date to JAR Manifests (@mmoayyed)
• #436 CAS-1179: TGT Expiration Policy Evaluators (@mmoayyed)
• #811 Issue-758: Revise and update Kryo serialization mechanism (@leleuj)
• #814 JSON Service Registry now made default (@mmoayyed)
• #676 Issue 468: Support for dynamic/caching principal attributes (@mmoayyed)
• #788 Issue-782: Update the security filter to version 2.0.0 (@leleuj)
• #772 Issue-740: Limit the queue size in the default ThreadPool in the SimpleHttpClient (@leleuj)
• #741 JSON serialization of RegisteredService into LDAP (@mmoayyed)
• #743 GoogleService: SAML response refactoring (@mmoayyed)
• #777 Allow TGT expiration policy control via CAS properties (@mmoayyed)
• #747 Support for displaying RegisteredService information on login form (@mmoayyed)
• #773 Update OpenID4Java; Removes dependency on missing guice:2.0 (@mmoayyed)
• #750 Add warning to InMemory Service Registry (@mmoayyed)
• #730 Allow CAS to return ticket objects rather than mere identifers (@mmoayyed)
• #345 CAS-1367: Move spring webflow conversaional state onto the client (@mmoayyed)
• #727 Attributes in SAML View Filtered by Attribute Policy (@mmoayyed)
• #729 Upgrading Ehcache to 2.9 (@mmoayyed)
• #721 Update OAuth20ProfileController: bearer tokens in the authorization header (@mikeroda)
• #674 Access principal in success view (@mmoayyed)
• #694 Configuration of host.name in multi-node deployments (@mmoayyed)
• #707 Issue 609: CAS OAuth Support 3.5.2 - 'service' query parameter is not being restored correctly (@leleuj)
• #711 OpenIdArgumentExtractor parent should be AbstractArgumentExtractor (@mmoayyed)
• #703 Use default theme, if no theme is found for the service (@mmoayyed)
• #696 do not focus username field, if another field is already selected (@sdorra)
• #700 OAuth approval prompt via a new configurable property (@mmoayyed, @steve-gregory, @edwins, @dennisroberts71)
• #701 Improved configuration of cas.properties location (@manamana88)
• #692 Issue #552 Avoid usage count in SSO opt-out check. (@serac)
• #697 Deprecated JBoss cache and uber-webapp modules (@mmoayyed)
• #665 JDBC QueryAndEncodeDatabaseAuthenticationHandler (@mmoayyed)
• #682 FileTrustStoreSslSocketFactory must support JVM truststore (@mmoayyed)
• #688 cas-687: SEC_1: remove default non-secure support in the services registry (@leleuj)
• #683 Issue 610: Non-configurable 'CasProfile#' username prefix in serviceResponse (@leleuj)
• #1 added attribute support to the CAS 2 authentication success response (@dennisroberts71)
• #446 CAS-1475: Refactoring of GoogleApps altUsername config (@mmoayyed)
• #444 CAS-1425: aligned view names to match the jsp filename (@mmoayyed, @jtgasper3)
• #647 Issue #460: TGT id to not be disclosed in logs (@mmoayyed)
• #671 Issue #670: Client authentication from pac4j should always return typed identifier (@leleuj)
• #677 Upgrade to JDK7 (@mmoayyed)
• #673 Issue #658: SAML validation now forcing service match (@mmoayyed)
• #640 SAML principal attribute release must pass through the policy (@mmoayyed)
• #650 Turn on/off slo per service, by having a new logout type for ... (@mmoayyed)
• #664 cas-663: Both log4j-over-slf4j.jar and slf4j-log4j12.jar in the management webapp (@leleuj)
• #662 return logout request to be application/x-www-form-urlencoded (@skibaa)
• #659 Ability to include multiple config files for the DispatcherServlet child application context (@dima767)
• #601 CAS-1466: Local truststore for proxy authentication (@mmoayyed)
• #642 Allow for time skewing of the issue instant when validating saml requests (@mmoayyed)
• #624 #620: logout requests should contain logoutRequest Parameter (@mmoayyed)
• #641 #465: terminate web session prop externalized (@mmoayyed)
• #644 Issue#477: delete redundant Safe* components from web.init package (@dima767)
• #646 Issue 645: Adding in Must Change Password functionality (@jtgasper3)
• #622 #612: Attributes other than String and element iterable in foreach are not supported (@leleuj)
• #626 #502: saml authn attributes dont appear in validation response (@mmoayyed)
• #616 Moving JDBC components from core and over to jdbc module (@mmoayyed)
• #452 CAS-1439: PGT and PT ids should begin with their assigned prefix (@mmoayyed)
• #623 uid/psw should be required fields (@mmoayyed)
• #615 Correct and update Catalan translation (@alexhenrie)
• #461 CAS-1480: Moving proxy authz over to httpBasedHandler (@mmoayyed)
• #454 CAS-1474: Deprecated unneeded "requireSecure" settings (@mmoayyed)
• #453 CAS-1479: Allow relevant expiration policies to support a time unit (@mmoayyed)
• #455 CAS-1465: added support/logs for audit WHO param as arrays (@mmoayyed)
• #456 CAS-1399: Updated inspektr to 1.1 GA (@mmoayyed)
• #458 CAS-1360: Implementation of the REST API with Spring @RestController (@dima767)
• #445 CAS-1467: Upgrade to Quartz 2.x (@mmoayyed)
• #443 CAS-1468: X509SubjectAlternativeNameUPNPrincipalResolver (@dima767)
• #447 CAS-1477: Plugin versions reformatted. Support for Coveralls (@mmoayyed)
• #448 Updated the labels in messages_zh_CN.properties. (@shijh)
• #439 CAS-1457: Authorization of pgtUrls for proxy AuthN (@mmoayyed)
• #435 CAS-1430: New switch-case transformer component (@mmoayyed)
• #412 CAS-1413: other CAS-protocol attributes in the validation response (@mmoayyed)
• #363 CAS-1388: Refactored login flows to be picked up by pattern. (@mmoayyed)
• #343 CAS-1111: Check if CAPS LOCK is enabled on CAS Login (@mmoayyed)
• #419 CAS-1438: URL matching support for validation (@mmoayyed)
• #421 CAS-1441: Radius module improvements (@mmoayyed)
• #341 CAS-1276: Allow to configure synchronous messages sent to endpoints. (@mmoayyed)
• #417 CAS-1414: Expired TGT on ST generation does not invoke logout (@mmoayyed)
• #424 CAS-1443: JAAS handler should pick Kerberos realm settings (@mmoayyed)
• #390 CAS-1416: Expose /status and /statistics access rules in cas.properties (@mmoayyed)
• #422 CAS-1442: Add support for CHANGE_AFTER_RESET flag (@mmoayyed)
• #348 CAS-1373: Update X509's Ehcache dependency version to match parent. (@mmoayyed)
• #391 CAS-1419: Connecting slo.callbacks.disabled property (from LogoutManager) to the D... (@jtgasper3)
• #357 CAS-1319: Added the ability to auto-mark the CAS cookie as http-only. (@mmoayyed)
• #364 CAS-1254: Update web schema locations to point to v.2.5 (@mmoayyed)
• #410 CAS-1009: New CAS default theme (@mmoayyed)
• #423 CAS-1444: Qualifying authn handlers should encode the psw (@mmoayyed)