Skip to content

Releases: SURFnet/sp-dashboard

2.6.2

29 Jun 08:25
@pablothedude pablothedude
2.6.2
9b23d65
This commit was signed with the committer’s verified signature.
pablothedude Bas Strooband
GPG key ID: B6D1D7052B4B9D4B
Learn about vigilant mode.
Compare
Choose a tag to compare
2.6.2

Bugfix

  • Prevent use of inline-style as this causes a CSP warning #374
Assets 2
Loading

2.6.1

23 Jun 14:31
@MKodde MKodde
2.6.1
5326679
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.6.1

Features

  • Finish Service changes started in #362 #372
  • Increase CSP strictness #369

Bugfix

  • Add entity.edit.information.redirectUrls to translations #370
Assets 2
Loading

2.6.0

16 Jun 06:32
@MKodde MKodde
2.6.0
7e92e4e
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.6.0

Features

  • Make OIDC entities read-only #354
  • Add institution fields to Service #362
  • Display more detailed resource servers in client detail view #365
  • Allow reverse redirect URLs #366

Visual changes

  • Make form labels normal casing #357
  • Match SPD header styling match that of IdPD #358

Bugfix

  • Enable content security policy #339
  • Set missing information balloons #347
  • Only preserve the exclude-from-push flag on client secret reset #342
  • Parse OIDCng clientID correctly on secret modal #351
  • Only push when not excluded from push for client reset #361

Other changes and chores

  • Prevent Jira ticket on prod client secret reset #364
  • Postpone Jira publication request ticket creation #363
  • Remove assignee and reporter from Jira config #345
  • Adjust translations #344
  • Allow loopback addresses for redirect uris #337
  • Make secret generator url encode safe #346
  • Improve URL validation disallow use of IP address #350
  • Stop showing EPTI on detail views #353
  • Validate the privacyPolicyUrl field #352
  • Add composer to Ansible for installation #359
  • Security updates #360
Assets 2
Loading

2.5.4

27 May 14:15
@MKodde MKodde
2.5.4
e0c45c2
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.4

Feature

  • Do not overwrite the source & value from an attribute if set in Manage #356
  • Push metadata to production after secret reset #355
Assets 2
Loading

2.5.2

20 May 13:35
@MKodde MKodde
2.5.2
2820e37
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.2

Bugfix

  • Interpret missing exclude from push correctly #348
Assets 2
Loading

2.5.1

19 May 14:31
@MKodde MKodde
2.5.1
4eb6693
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.1

Bugfix

  • Only preserve the exclude-from-push flag on client secret reset #342
  • Reuse scope attribute, preventing overwriting them #341
  • Prevent overwriting of ARP motivations #340
Assets 2
Loading

2.5.0

12 May 14:09
@MKodde MKodde
2.5.0
8090a4c
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.0

Bugfix

  • Check ClientID existence without protocol #336
  • Prevent overriding the 'exclude_from_push' attribute #335
  • Prevent overwriting of attributes when (re) publishing entities #334
  • Add missing entity.edit.information translations #333
Assets 2
Loading

2.4.0

16 Jan 13:36
@MKodde MKodde
2.4.0
61f9981
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.4.0

Feature

  • Make SP Dashboard PHP 7.2 compatible

Bugfix

  • Upgrade Stepup-saml-bundle to version 4.1.8 #309
  • Resolve certificate publication issue #324

Security updates

  • Symfony to 3.4.36
  • Handlebars to 4.5.3
  • Mixin-deep to 1.3.2
Assets 2
Loading

2.3.3

07 Nov 15:54
@pablothedude pablothedude
2.3.3
485c86d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.3.3

This is a security release that will harden the application against CVE 2019-3465

  • Upgrade xmlseclibs to version 3.0.4 #318
Assets 2
Loading

2.3.2

08 Oct 09:13
@MKodde MKodde
2.3.2
797e590
This commit was signed with the committer’s verified signature.
MKodde Michiel Kodde
GPG key ID: A05D7AE92B58D7F5
Learn about vigilant mode.
Compare
Choose a tag to compare
2.3.2

Feature

  • Add 'show oidc create options' feature toggle #314

Bugfix

  • Ensure all OIDCng entities are shown in the entity listings #316
Assets 2
Loading