Bot releases are visible (Hide)
Published by cf-identity over 6 years ago
Published by cf-identity over 6 years ago
Published by cf-identity over 6 years ago
release pipeline testing in progress
Published by cf-identity over 6 years ago
Stories included in release
Agree to
box on registration and invitation accept screensAgree to
box on registration and invitation accept screens - Part 2Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by cf-identity over 6 years ago
Please use 4.13.4
Stories included in release
Encryption key pass-phrases can be set via the BOSH manifest. Multiple keys can be specified, and can be any value greater than or equal to 8 characters. One specified key must be set as the active key.
An example property would look like below:
encryption:
active_key_label: key-1
encryption_keys:
- label: key-1
passphrase: CHANGE-ME-DO-NOT-USE-1
- label: key-2
passphrase: CHANGE-ME-DO-NOT-USE-2
- label: key-3
passphrase: CHANGE-ME-DO-NOT-USE-3
Monit health check and route registrar break if uaa.port
is set to -1 to disable HTTP traffic.
Published by tnwang over 6 years ago
Published by cf-identity over 6 years ago
This release introduces an issue when used in conjunction with UAA Singular that causes a large number of authorization requests to be issued, which is resolved in 4.12.1
Stories included in release
uaa
)Published by cf-identity over 6 years ago
Stories included in release
Published by cf-identity over 6 years ago
Stories included in release
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by cf-identity over 6 years ago
Stories included in release
UAA now allows operators to manage identity providers via APIs for the default system identity zone, which changes how UAA manifest values for identity providers behave. Previously UAA would disable any API made changes made by an operator on restart even though operators were able to make create and update identity providers using UAA’s API.
As a result, identity providers removed from the manifest must now also be explicitly deleted via manifest configuration (delete.identityProviders
) or disabled/deleted via the UAA APIs.
delete.identityProviders
has been added to allow deletion of these identity providers from the manifest using the origin key.In addition, SAML, OIDC, and LDAP providers now have an override
flag that defaults to true
which specifics the manifest properties should overwrite any changes made via API. This value can be set to false
to allow API updates of your existing manifest identity providers.
force password change
to be an authorization stepPublished by tnwang over 6 years ago
This is a security release addressing the following issues:
Published by sreetummidi almost 7 years ago
Published by tnwang almost 7 years ago
Backport of a performance related fix: