3.1.2

Bugfixes

• Add 4 missing attributes when viewing (not editing) an entity:
  • schacHomeOrganization
  • schacHomeOrganizationType
  • shacpersonalUniqueCode
  • eduPersonTargetedID (not shown for oidc entities)
• ensure ACL is not copied when using a test entity as a template for a production entity
• ensured motivations for attributes need to be given on test, as was already the case on production
• fix two small issues which kept popping up in the logs

Infra

• add cache headers for the production Apache docker image
• use the latest openconext docker image

Security

• bump version of SSRI dependency to resolve security issue

3.1.1

Bugfixes

• Resolved client secret reset issues #443
  • Send the Organization names to Manage when performing a secret reset
  • Allow client reset for 'requested production publication' production entities
  • Prevent loss of connected Resource Servers during secret reset

3.1.0

Bugfixes

• only trigger privacy warning when enabled
• show privacy links button for regular users
• ensure exclude from push coin value is honoured
• repair faulty status implementation
• ensure production entities can be published once a test entity is published
• fix Jira status handling
• ensure APR attributes is an object when empty

Cleanup

• remove some obsolete config parameters
• fix some typos

Infra

• add opcache to FPM docker image
• use the latest php-fpm and apache images in the docker dev file
• fix xdebug settings for xdebug 3

3.0.0

An updated theme, further deprovisioning of the ORM layer and some nifty changes to the entity actions.

Features

• Adjust create new entity modal #408
• The entity details screen was replaced by a detailed service overview page #392
• A Docker dev env was introduced, replacing Vagrant and Ansible with Docker #407
• Use oauth20_rs Manage entity scheme for resource servers #409
• The OIDCng restriction is no longer configurable. OIDCng for all! #396
• Organization name is now manageable for Services #397
• Drop attribute constraint, an entity without ARP is allowed #399
• Allow setting multiple grants #412

Bugfixes

• Remove trailing slashes from ClientID #402
• Refrain from overwriting Manage tracked attributes #421

Improvements
Infra:

• Apache: Set the Referrer policy header #393
• Register required PHP extensions in composer.json #368

Jira:

• Stop matching the Jira status to the entity status #394
• Consider closed and resolved status from Jira #419

Other:

• Remove default scope from OIDCng RP entities #404
• Remove remaining OIDCng crud #405
• Remove all leftover Entity entity references #406
• Support attributes with multiple values #413
• Allow Resource Servers from outside of RP's team #418
• Add info fields to create entity titles #415

2.7.2

Bugfix
Set correct publication state for prod entities PART II #394

2.7.1

Bugfix
Set correct publication state for prod entities #390

2.7.0

Feature
Removing the Draft entity state was the main goal of this release. The following work was done to reach that point

• Move the ManageEntity to the domain layer #375
• Remove save button from entity forms #381
• Deprovision the oidcng playground uris #383
• Ensure client secret set on copy to production #384
• Inject Jira ticket types in EntityService #387

Improvements

• Build Docker images on Github Actions #377
• Docker php fpm: Clear cache after installation #386
• Docker: Add content security policy to the docker httpd config #385
• Github actions: Move to the new GitHub container registry, which allo… #388
• Docker: Migrate to one multistage Docker file #389

Security updates

• Bump elliptic from 6.5.2 to 6.5.3 #380
• Bump http-proxy from 1.18.0 to 1.18.1 #382

2.6.5

When testing 2.6.4 another bug was encountered. This bug pushed the memberOf attribute to manage which was empoty and resulted
therefore in the removal of the attribute in Manage which shouldn't occur.

Bugfix

• Remove memberOf as managed attribute #379

2.6.4

There was a bug introduced in 2.5 which did always overwrite the attributes from manage. This prevented the removal of
attributes when one was removed.

Bugfix

• Merge manage attributes only #378

2.6.3

In a previous release the Parsley form validation became broken. Resulting in allowing certain redirect URL restrictions to pass validation.

Bugfix

• Enable and fix Url validation #373