changelog.md

CAS-Addons Changelog

###Changes in version 1.18 (2015-08-06)

• updated CAS dependency to 3.6.0

###Changes in version 1.17 (2015-07-30)

• updated Hazelcast dependency to version 3.5.1

###Changes in version 1.16 (2015-03-25)

• refactored metadata-populators parsing code into AbstractDefaultAuthenticationManagerBeanDefinitionParser
• added metadata-populators attribute to authentication-manager-with-bind-ldap-handler custom XML schema element
• added metadata-populators attribute to authentication-manager-with-accept-users-handler custom XML schema element
• added attribute-repository-for-principal-resolver attribute to default-test-authentication-manager custom XML schema element
• added id attribute to hazelcast-ticket-registry custom XML schema element

###Changes in version 1.15 (2015-03-19)

• added TGT id to exposed CAS SSO events (via AbstractCasSsoEvent)
• updated Hazelcast dependency to version 3.4.1

###Changes in version 1.14 (2015-02-02)

• updated Hazelcast dependency to version 3.4
• updated CAS dependency to 3.5.3
• updated Shiro dependency to 1.2.3
• updated Junit dependency to 4.12
• updated Spring dependency to 3.2.13.RELEASE
• updated Groovy dependency to 2.4.0
• updated Slf4j dependency to 1.7.10
• updated joda-time dependency to 2.7
• updated jedis dependency to 2.6.2
• updated spring-data-redis dependency to 1.4.2.RELEASE
• updated spring-data-mongodb dependency to 1.6.2.RELEASE

###Changes in version 1.13 (2014-08-20)

• updated Hazelcast dependency to version 3.2.5

###Changes in version 1.12 (2014-07-21)

• updated Hazelcast dependency to version 3.2.4

###Changes in version 1.11.1 (2014-04-03)

• updated CAS dependency to 3.5.2.1

###Changes in version 1.11 (2014-02-28)

• updated Hazelcast dependency to version 3.1.6

###Changes in version 1.10 (2014-01-17)

• exposed LdapContextSource bean in Spring application context via new expose-context-source-bean-as attribute in authentication-manager-with-bind-ldap-handler and bind-ldap-authentication-handler custom schema elements
• added explicit attribute-repository-for-principal-resolver along with parser implementation to authentication-manager-with-bind-ldap-handler and authentication-manager-with-accept-users-handler

###Changes in version 1.9.1 (2013-11-26)

• fixed issue with MongoServiceRegistryDao to recognize registered services with id of -1

###Changes in version 1.9 (2013-11-01)

• added RedisStatsRecorderForSsoSessionEstablishedEvents
• added RedisStatsRecorderForServiceTicketValidatedEvents
• added custom XML schema element (events-redis-recorder) BeanDefinitionParser implementation for RedisStatsRecorderForSsoSessionEstablishedEvents and RedisStatsRecorderForServiceTicketValidatedEvents
• added CasLoginViewSelector
• added RequestPararameterCasLoginViewSelector
• added CompositeTicketGrantingTicketExpirationPolicy
• added TicketExpirationPolicyEvaluator
• added IpAddressBasedExpirationPolicyEvaluator
• added HazelcastTicketRegistry
• added custom XML schema element (hazelcast-ticket-registry) BeanDefinitionParser implementation for HazelcastTicketRegistry
• added URL-based resources support for JSON services registry
• added ServiceRedirectionAdvisor
• added ServiceRedirectionAction
• added InMemoryServiceRedirectionByClientIpAddressAdvisor
• added custom XML schema element (service-redirection-action) BeanDefinitionParser implementation for ServiceRedirectionAction
• added custom XML schema element (request-param-login-view-selector) BeanDefinitionParser implementation for RequestPararameterCasLoginViewSelector

###Changes in version 1.8 (2013-09-09)

• moved net.unicon.cas.addons.web.support.view.saml components over to net.unicon.cas.addons.response.view.saml
• fixed issue with ReadWriteJsonServiceRegistryDao where service definitions were assigned a -1 identifier automatically.
• fixed issue with ReadWriteJsonServiceRegistryDao where updates to an existing service resulted into duplicate service definitions
• modified ReadWriteJsonServiceRegistryDao to not persist service attributes with empty values.
• removed ReloadableServicesManagerSuppressionAspect
• added RegisteredServicesReloadDisablingBeanFactoryPostProcessor
• refactored bean definition parser impl for disable-default-registered-services-reloading element to use RegisteredServicesReloadDisablingBeanFactoryPostProcessor instead of ReloadableServicesManagerSuppressionAspect
• bumped up dependencies versions
• added TimingAspectRemovingBeanFactoryPostProcessor
• added custom XML schema element (disable-perf4j-timing-aspect) BeanDefinitionParser implementation for TimingAspectRemovingBeanFactoryPostProcessor

###Changes in version 1.7 (2013-08-06)

• added HostNameBasedUniqueTicketIdGenerator
• added NamedStubPersonAttributeDao
• refactored CasNamespaceHandler#DefaultTestAuthenticationManagerBeanDefinitionParser to extend reusable abstract class for creation of default AuthenticationManagerImpl and its default components
• added CasNamespaceHandler#AuthenticationManagerWithAcceptUsersHandlerBeanDefinitionParser
• added CasNamespaceHandler#AuthenticationManagerWithBindLdapHandlerBeanDefinitionParser
• refactored CasNamespaceHandler#AuthenticationManagerWithStormpathHandlerBeanDefinitionParser to extend AbstractDefaultAuthenticationManagerBeanDefinitionParser for reuse
• refactored default value for config-file attribute of json-services-registry element to ${service.registry.config.location:file:/etc/cas/servicesRegistry.conf}
• refactored default value for config-file attribute of json-attribute-repository element to ${attribute.repository.config.location:file:/etc/cas/person-attributes.conf}
• added Saml10SuccessResponseView
• removed verification of Ant patterns from the JsonServiceRegistryDao
• fixed ServiceAuthorizationAction crash when the service registry is configured against an empty service registry

###Changes in version 1.6 (2013-07-23)

• added custom XML schema element BeanDefinitionParser implementation for YubiKeyAuthenticationHandler
• added metadata-populators attribute to cas:default-test-authentication-manager element and refactored the corresponding BeanDefinitionParser implementation
• added custom XML schema element BeanDefinitionParser implementation for AcceptUsersAuthenticationHandler
• added custom XML schema element BeanDefinitionParser implementation for BindLdapAuthenticationHandler
• added ReadWriteJsonServiceRegistryDao
• added read-write boolean attribute to json-services-registry element to indicate the type of registry being created

###Changes in version 1.5.4 (2013-06-24)

• added logic to ServiceAuthorizationAction to allow services without RBAC rules to use CAS
• renamed default Yubikey account registry to reflect its accept-any behavior
• added more explicit JavaDoc about how completely not okay it is to accept the default Yubikey account registry in production
• added warning log message on YubiKeyAuthenticationHandler instantiation with unsafe default config of Yubikey account registry

###Changes in version 1.5.3 (2013-06-17)

• added flag to ReloadableServicesManagerSuppressionAspect to make decisions whether to suppress target calls or not at runtime (suppression is off by default)
• added the ability to turn on ReloadableServicesManagerSuppressionAspect's reloading suppression by means of custom <cas:disable-default-registered-services-reloading/> Spring bean element

###Changes in version 1.5.2 (2013-05-23)

• fixed bug resolving default servicesManager bean in the implementation of net.unicon.cas.addons.config.CasNamespaceHandler#ServiceAuthorizationActionBeanDefinitionParser
• updated CAS dependency to 3.5.2 General Availability

###Changes in version 1.5.1 (2013-05-21)

• refactored StormpathPrincipal not to store a reference to Stormpath SDK Account instances as they are not Serialiazble thus preventing it to be stored in EhCacheTicketRegistry

###Changes in version 1.5 (2013-05-17)

• updated Jackson dependency to 2.2.0
• updated Jersey dependency to 1.17
• added RegisteredServiceAuthorizer
• added DefaultRegisteredServiceAuthorizer
• added RoleBasedServiceAuthorizationException
• added ServiceAuthorizationAction
• added ServiceValidateFailureJsonView
• added YubiKeyAuthenticationHandler

###Changes in version 1.4 (2013-04-17)

• upgraded Stormpath Java SDK dependency to 0.7.0
• added StormpathPrincipal
• added StormpathPrincipalResolver
• added Stormpath related custom XML schema types and parsers
• renamed cas-addons-1.3.xsd to cas-addons.xsd

###Changes in version 1.3 (2013-04-07)

• added Custom namespace XML schema
• added Custom namespace XML schema parsers

###Changes in version 1.2 (2013-02-18)

• added RegisteredServicesPolicies
• added DefaultRegisteredServicesPolicies
• added ServiceInitiatingWebSsoAwareCookieGenerator
• added SsoDestroyingServiceValidateController

###Changes in version 1.1 (2013-01-02)

• removed CAS client related classes and moved them to a sister cas-java-clients-addons project
• added gmaven plugin to the pom in order for Spock tests to run during the maven build
• updated pom dependecies to the latest versions (where available)

###Changes in version 1.1-RC1 (2012-12-07)

• added Assertions
• added ClearpassRetrievingCasAuthenticationProvider
• added CentralAuthenticationServiceEventsPublishingAspect

###Changes in version 1.0.5 (2012-11-16)

• refactored unauthorized service view attribute unauthorizedUrl -> disabledServiceUrl

###Changes in version 1.0.4 (2012-11-12)

• removed tgt_id from Single SignOn Sessions Report

###Changes in version 1.0.3 (2012-11-11)

• added TicketSupport
• added SingleSignOnSessionsReport
• added SingleSignOnSessionsReportResource
• updated Jackson library dependency to 2.1.0

###Changes in version 1.0.2 (2012-11-05)

• added ShiroHashServicePasswordEncoder
• added ServiceAuthorizationCheckWithCustomView

###Changes in version 1.0.1 (2012-10-26)

• added MongoServiceRegistryDao
• added the info package

###Changes in version 1.0 (2012-10-07)

• updated CAS dependency to 3.5.1 General Availability

###Changes in version 1.0-RC1 (2012-09-22)

• updated CAS dependency to 3.5.1-RC1

###Changes in version 1.0-M2 (2012-09-17)

• fixed bug preventing real-time reloading of JSON-based configured registered services

###Changes in version 1.0-M1 (2012-09-16)

• updated JASIG's Person Directory Service to 1.5.1
• refactored StormpathBasicAuthenticationHandler -> StormpathAuthenticationHandler to use Stormpath's Java SDK instead of a low level REST API

###Changes in version 0.9.5 (2012-08-29)

• added ReloadableServicesManagerSuppressionAspect
• refactored JsonServiceRegistryDao to support real time reloading using resource change notify/listen framework
• added ThreadSafe
• added NotThreadSafe
• added GuardedBy
• added Immutable

###Changes in version 0.9 (2012-08-11)

• added GrouperPersonAttributeDao

###Changes in version 0.8 (2012-07-27)

• added StormpathBasicAuthenticationHandler
• refactored JsonServiceRegistryDao as a 'raw' Java class instead of a Groovy one

###Changes in version 0.7 (2012-07-20)

• added JsonBackedComplexStubPersonAttributeDao
• added ResourceChangeDetectingEventNotifier

###Changes in version 0.6 (2012-07-14)

• added EmailAddressToPrincipalNameTransformer
• added EmailAddressPasswordCredentialsToPrincipalResolver
• added ServiceValidateSuccessJsonView
• added Cas20ServiceTicketJsonValidationFilter
• added Cas20ServiceTicketJsonValidator
• upgraded Groovy dependency to 2.0.0
• upgraded Jackson dependency to 2.0.4
• upgraded CAS server dependency to 3.5.0

###Changes in version 0.5 (2012-06-25)

• added RegexRegisteredServiceWithAttributes
• added support for RegexRegisteredServiceWithAttributes in JsonServiceRegistryDao
• added AdditionalAuthenticationFactorPolicy
• added TotpOathDetailsSource
• added TOTP
• added TOTPUtils
• added TotpAuthenticationHandler
• added PasswordExpirationStatusPolicySupport
• upgraded CAS dependency to 3.5.0-RC2

###Changes in version 0.3 (2012-06-18)

• added groovy-eclipse-compiler to maven-compiler-plugin so that JsonServiceRegistryDao.groovy is compiled into native Java class during build time an so could be used as a regular Spring bean without requireing dynamic Groovy class loading at runtime