Feature Request
- [PLINK-243] - RADIUS login module
- [PLINK-263] - base64 encoding of the secret key configurable for ws-trust
- [PLINK-496] - Extract SAML IDP/SP configuration into separate system
- [PLINK-527] - JSON Web Key Support
- [PLINK-528] - JSON Web Encryption Support
- [PLINK-543] - For better compatibility PL IDP should combine multiple AttributeStatemnt's into a single AttributeStatement
- [PLINK-547] - Allow setting Subject NameID to the value of a mapping-module attribute or other things
- [PLINK-548] - Ability to send different sets of attributes to different SPs
- [PLINK-550] - NameFormat should be mutable
- [PLINK-605] - RequiresPermission is not considering resource class and identifier
Bug
- [PLINK-70] - PL00078: Null Parameter:privateKey while trying to get SAML token from ADFS 2.0 using JBoss/PicketLink
- [PLINK-218] - org.picketlink.Identity.login() returns AuthenticationResult.FAILED when the BaseAuthenticator is set to DEFERRED state
- [PLINK-221] - LogOutPage attribute is ignored inside picketlink.xml when meta is loaded with SPPostMetadataConfigurationProvider
- [PLINK-256] - PicketLink STS and PDP endpoints are always initialized when deploying the federation jar inside the deployment
- [PLINK-412] - Content referenced from hosted page is not served properly (zero size)
- [PLINK-419] - Assertion is not renewed
- [PLINK-438] - Reload Configuration by Timer can create unstable state
- [PLINK-445] - Picketlink should accept AuthnRequest's that don't contain AssertionConsumerServiceURL's
- [PLINK-458] - PartitionStorageUtil has wrong month/day usage of GregorianCalendar ctr
- [PLINK-459] - RelationshipStorageUtil has wrong month/day usage of GregorianCalendar ctr
- [PLINK-524] - Independent self contained SSO Configuration
- [PLINK-567] - SAML2AttributeHandler couldn't handle multiple attribute elements with the same attribute name
- [PLINK-577] - Attempt to undeploy deployment when trying to remove IDP from federation.
- [PLINK-578] - Handler Attribute add button should be disabled if no Handler is selected
- [PLINK-581] - EntityManagerProvider is throwing NPE when EntityType.getJavaType() returns nulll
- [PLINK-584] - SAMLParser is failing to parse <SubjectConfirmation> tag if there are multiple subelements defined in SubjectConfirmation tag
- [PLINK-588] - LDAP and File-based identity store do not support permissions
- [PLINK-589] - Permission API documentation improvement
- [PLINK-590] - Identity Management - Providing custom configuration documentation improvement
- [PLINK-592] - EntityManagerProducer is setting security context to null
- [PLINK-597] - @Inject PermissionManager uses wrong partition
- [PLINK-598] - Typo in simple schema - AttributeTypeEntity
- [PLINK-600] - SAML2SignatureValidationHandler incorrectly identifying Redirect binding as POST
Task
- [PLINK-292] - Document IDP Reverse Proxy Scenarios
- [PLINK-358] - Review PicketLink Console for HAL 2.x
- [PLINK-531] - Document configuration providers on SP Authenticator
- [PLINK-563] - Update PicketLink Federation Subsystem to properly integrate with the Console
- [PLINK-587] - GitHub Pull Request Validation using Cloudbees
- [PLINK-606] - Review Quickstart for ACL Permissions
Enhancement
- [PLINK-349] - SAML SP should be able to sign requests
- [PLINK-582] - Better message when failing to create default partition during startup
- [PLINK-585] - Send status code 204 when performing logout from AJAX client
- [PLINK-593] - Keep order when configuring paths
- [PLINK-604] - Provide a default entity mapping for permissions when using the JPA identity store
- [PLINK-607] - Allow post processing logic after an SAML Assertion is created by the IdP
Edit/Copy Release Notes
The text area below allows the project release notes to be edited and copied to another document.