Release Notes - PicketLink - Version PLINK_2.7.0.CR1 - HTML format

Feature Request

  • [PLINK-243] - RADIUS login module
  • [PLINK-263] - base64 encoding of the secret key configurable for ws-trust
  • [PLINK-496] - Extract SAML IDP/SP configuration into separate system
  • [PLINK-527] - JSON Web Key Support
  • [PLINK-528] - JSON Web Encryption Support
  • [PLINK-543] - For better compatibility PL IDP should combine multiple AttributeStatemnt's into a single AttributeStatement
  • [PLINK-547] - Allow setting Subject NameID to the value of a mapping-module attribute or other things
  • [PLINK-548] - Ability to send different sets of attributes to different SPs
  • [PLINK-550] - NameFormat should be mutable
  • [PLINK-605] - RequiresPermission is not considering resource class and identifier

Bug

  • [PLINK-70] - PL00078: Null Parameter:privateKey while trying to get SAML token from ADFS 2.0 using JBoss/PicketLink
  • [PLINK-218] - org.picketlink.Identity.login() returns AuthenticationResult.FAILED when the BaseAuthenticator is set to DEFERRED state
  • [PLINK-221] - LogOutPage attribute is ignored inside picketlink.xml when meta is loaded with SPPostMetadataConfigurationProvider
  • [PLINK-256] - PicketLink STS and PDP endpoints are always initialized when deploying the federation jar inside the deployment
  • [PLINK-412] - Content referenced from hosted page is not served properly (zero size)
  • [PLINK-419] - Assertion is not renewed
  • [PLINK-438] - Reload Configuration by Timer can create unstable state
  • [PLINK-445] - Picketlink should accept AuthnRequest's that don't contain AssertionConsumerServiceURL's
  • [PLINK-458] - PartitionStorageUtil has wrong month/day usage of GregorianCalendar ctr
  • [PLINK-459] - RelationshipStorageUtil has wrong month/day usage of GregorianCalendar ctr
  • [PLINK-524] - Independent self contained SSO Configuration
  • [PLINK-567] - SAML2AttributeHandler couldn't handle multiple attribute elements with the same attribute name
  • [PLINK-577] - Attempt to undeploy deployment when trying to remove IDP from federation.
  • [PLINK-578] - Handler Attribute add button should be disabled if no Handler is selected
  • [PLINK-581] - EntityManagerProvider is throwing NPE when EntityType.getJavaType() returns nulll
  • [PLINK-584] - SAMLParser is failing to parse <SubjectConfirmation> tag if there are multiple subelements defined in SubjectConfirmation tag
  • [PLINK-588] - LDAP and File-based identity store do not support permissions
  • [PLINK-589] - Permission API documentation improvement
  • [PLINK-590] - Identity Management - Providing custom configuration documentation improvement
  • [PLINK-592] - EntityManagerProducer is setting security context to null
  • [PLINK-597] - @Inject PermissionManager uses wrong partition
  • [PLINK-598] - Typo in simple schema - AttributeTypeEntity
  • [PLINK-600] - SAML2SignatureValidationHandler incorrectly identifying Redirect binding as POST

Task

  • [PLINK-292] - Document IDP Reverse Proxy Scenarios
  • [PLINK-358] - Review PicketLink Console for HAL 2.x
  • [PLINK-531] - Document configuration providers on SP Authenticator
  • [PLINK-563] - Update PicketLink Federation Subsystem to properly integrate with the Console
  • [PLINK-587] - GitHub Pull Request Validation using Cloudbees
  • [PLINK-606] - Review Quickstart for ACL Permissions

Enhancement

  • [PLINK-349] - SAML SP should be able to sign requests
  • [PLINK-582] - Better message when failing to create default partition during startup
  • [PLINK-585] - Send status code 204 when performing logout from AJAX client
  • [PLINK-593] - Keep order when configuring paths
  • [PLINK-604] - Provide a default entity mapping for permissions when using the JPA identity store
  • [PLINK-607] - Allow post processing logic after an SAML Assertion is created by the IdP

Edit/Copy Release Notes

The text area below allows the project release notes to be edited and copied to another document.