![]() ![]() The changes would only impact deployers in these cases:Īnybody copying one of the impacted login flows for private use, either directly or via adaptation into a substantially similar flow. While these changes are visible, they do not impact the documented/intended "public" interface to the External login mechanism used by deployers building external logic. This is allowed in a patch when necessary to address critical bugs. ![]() This is a patch update containing some memory-related bug fixes, and addresses a security advisory involving the use of the External, RemoteUser, X509, and SPNEGO login flows.įixing the security issue required an internal redesign of the External login flow (the other three essentially reuse the External flow to function) and the fix required changes to some Java classes that are part of the public API. ![]() It is unneeded by anyone maintaining their own Java container, which continues to be strongly recommended. This is a service release of the Windows installation package in order to address a security issue in Jetty, which has been updated to version 9.4.30. Those likely to be operating this branch beyond the end-of-life date approaching should consider using this version to be as current as possible. This is the final patch release of the V3 branch of the IdP in order to "finalize" the set of library dependencies included to the most current set practical as a final roll up for this branch. See ReleaseNotes for information on the new major branch of releases. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |