6.6.2

Changes

• ARP is only applied once in the filter chain. This should only affect Attribute Manipulations (in being more permissive in what is possible).

Bugfixes

• fix the spinner page in the excel built-in browser
• minor change to privacy policy link on consent screen

Security

• upgrade several dependencies to fix security vulnerabilities #1146, #1149, #1151

6.6.1

Bugfixes

• Style the no-attributes edge case #1144
• Temporarily disable back to sp link to allow time for a full fix #1143
• Ensure textual fallbacks in the error pages function correctly #1135

Security

• Upgrade several dependencies to fix security vulnerabilities #1142, #1134, #1133, #1132

6.6.0

Features and bugfixes

• Add a global site notice #1128
• Allow AuthnRequest based stepup requests #1105
• Add a 'back to SP' button on the 'Stepup failed' error pages #1114
• Error messages have been improved #1112 #1130
• Include Twig linting in CI pipeline #1108
• Transparent SAML error Response for MFA entities #1131
• Remove double titles on skeune error pages #1110
• Update visual screenshots & tests for them #1109
• Ensure search results remain after ENTER #1106
• Replace the hamburger and search icon #1116
• Change the default mail configuration to SMTP instead of sendmail #1129

6.5.1

Bugfix

• Remove forgotten debug statement #1107

6.5.0

A bit of everything release. Most notable changes are:

Features and bugfixes

• The logout page was styled #1097
• The IdP SSO endpoint URI used for EngineBlock authentications is now logged #1095
• Translation log-spam issues where resolved #1096
• Translation override issues where addressed #1098
• Accessability improvements have been applied to the WAYF #1099

6.4.7

Features and fixes

• Replaced the SURFnet favicon by the openconext one
• Keep the WAYF operable when syncing cookies.
• Add logging to ValidateMfaAuthnContextClassRef command.
• Tweak NL language.
• Correct display of tooltip for group attributes.
• Avoid double encoding logo url for attribute source.
• Ensure images after search are ok in IE11.
• Prevent logo flicker in FF whenever possible.
• Ensure Idps after sync are deletable.
• Prevent Idp-row logo from overlapping with text.

Security

• Replaced the composer dependency for the security checker (no longer working) with a local one.

6.4.6

Features and fixes

• Fixed disabled button being shown in the remaining section for non-disabled accounts on IE11
• Added a check to see if there is a focused element before the check to see if the focus is on an arrow item.
• Cleaned up forgotton debug code.

6.4.5

Features and fixes

• Repaired search in IE
• Fixed a visual regression with the previously selected section where the edit button was on it's own line.

6.4.4

Features and fixes

• Fixed overflow issue in IE11 for disclaimerlist.
• Updated the text for the PEP page.

6.4.3

Security update

• Bumped socket.io version.

Features and fixes

• Ensured hitting the reset button on the WAYF shows the default IDP
• Ensured that if you click the default idp, it prefills it in the search field, hides all other idps and focuses it.
• Remove weird transition in safari.
• Ensured search works in IE11.
• Amended faulty arrow behaviour.
• Ensured selected idp cookie behaviour works as expected.
• Redesigned the spinner page (form page).
• Added a hover style for disabled accounts.
• Added arrow behaviour on hover as in the old WAYF.
• Coupled cypress tests to the same selectors as the JS.
• Adjusted styling & wording of the PEP page.