6.3.2

Bugfix:

• Store entityId of issuer, not the value object #889

Features:

• Migrate existing JavaScript tests to Cypress #887

6.3.1

As of this release the old non conforming Schac Home Organization synonym: urn:oid:1.3.6.1.4.1.1466.115.121.1.15 is no longer released as an attribute. This was achieved by removing it from the attributes.json. If you need it, please place it back in ./application/configs/attributes.json. See UPGRADING.md for details.

This release also includes the introduction of the Cypress test framework for JavaScript testing. The test framework does not yet run correctly on the GitHub Actions CI integration. This is corrected in the next release.

Features:

• Remove non conforming SHO oid from config #877
• Send NoPassive status response back to issuing SP #885

Improvements:

• Upgrade SAML2 library to version v4.1.9 #881
• Show proxied SP and proxy in feedback info #875
• Move metadata organization business rules away from metadata assembler #878
• Add trusted proxy signing verification #879
• Migrated a JavaScript test to Cypress (POC) #884

Chores:

• Repair acceptance tests #880
• Upgrade dot-prop to version 5.2.0 #886
• Change Symfony cache path to reflect deploy path #857

6.3.0

This release is the finalization of the AuthnContextClassRef changes that where started in 6.2.1 (and rolled back in 6.2.2).

6.2.4

This release is the finalization of the AuthnContextClassRef changes that where started in 6.2.1 (and rolled back in 6.2.2).

Features

• Add AuthnContextClassRef config option for transparent RequestedAuthnContext #873

Other chores

• Final tweaks to Github Actions (termination of Travis) #867
• Enable skipped API tests #874

6.2.3

This change will add the possibility to configure authn contexts for IdP/SP combinations which will be verified when returning from the IdP

see: documentation

Features

• Add custom MFA error page #866
• Add MFA authncontext response validator #864
• Test unsolicited presence of authcontextclassref #863
• Add authncontextclassref to SP if configured in IdP #861
• Add authncontextclassref documentation #862
• Assemble authcontextclassref combinations #859
• Add dockerized actions testing #818

Improvements

• Pt translation fix #870 thanks @domgon!

6.2.2

This change will revert #848 to prevent breaking flows because of misconfigured SP's

• If the SP provided a RequestedAuthnContext in the AuthnRequest, replicate this to the IdP #848

6.2.1

Improvements

• Make support urls translatable #851
• Allow empty sfo/stepup key and use JIT validation instead #853
• If the SP provided a RequestedAuthnContext in the AuthnRequest, replicate this to the IdP #848

Bugfix

• Log AuthnContextClassRef and correct NameId on a successful login #854

6.2.0

This release replaces the legacy configuration with Symfony configuration. So effectively the application.ini is removed from EB and replaced in favour of a parameters.yml.
Also, EB now has Portuguese language support, and the allowed languages are configurable.

Features

• Remove legacy application.ini from EB #838
• Make the enabled languages configurable #842
• Add Portuguese language support #841
• Log original NameID and given LOA on successful login #845

Improvements

• Move footer translations to translations #844
• Remove unused error pages #849
• Cleanup unused response_processing_service_binding column from the database #782
• Implement lazy loading of WAYF logos. #843

Chores

• Stop generating bootstrap.php.cache #837
• Remove old (IE8 / IE9) browser support #846
• Defense in depth SAML Response validation #806
• Disassemble the EB debug feature #836
• Remove remaining eduGAIN code from EngineBlock #834
• Prevent recurring migration creation #833
• Change language cookie defaults #832

6.1.3

Changes done in order to confine to metadata spec to pass validation.

• According to the spec, EmailAddress needs to have a mailto: prefix #827
• Remove version number from attributes.json config file. #828
• Add explicit reference to metadata xml signature. #830

6.1.2

Adds a PR that was missing in 6.1.1 which will ensure a suitable displayname is displayed in the metadata EB produces.

• Metadata UI Info optimalisation #824