Releases: Erudika/para
v1.50.0
Migrated project to Spring Boot 3.x -
- JDK 17+ required,
javax.*>jakarta.*namespace changed- Updated Dockerfiles to use JDK 21
- added native build profile
d758faa updated plugin versions
687db4d removed unused configuration property para.security.csrf_cookie
3393b4b removed old CSRF token repostiory in favor of new Spring Sec 6+ protection mechanism
0c67d4f added tag description property
8e3b9e0 fixed native build
645e628 minor fix for failing requests containing large batches of IDs to delete
3b5c76f updated pom.xml files
dc89049 updated dependencies
b2aaedb Bump org.springframework.security:spring-security-core in /para-server
9474740 migrated Para to Spring Boot 3.x, JDK 17+
f91f2ef added support for uppercase ENV variables, closes Erudika/scoold#452
6e3322f switched to JDK 21
📦 Download JAR
📦 Download WAR
v1.49.5
09bf831 removed unused import in LDAPAuthenticator
c6a66e3 Merge pull request #266 from mljohns89/ldap-authenticated-read-access
979446a use afterPropertiesSet to initialize authenticationSource
📦 Download JAR
📦 Download WAR
v1.49.4
46e87da updated dependencies
0eef624 Merge pull request #259 from mljohns89/ldap-authenticated-read-access
1b13294 support for ldap servers requiring authentication for read access
📦 Download JAR
📦 Download WAR
v1.49.3
31d8aed [maven-release-plugin] prepare for next development iteration
cf1e59d [maven-release-plugin] prepare release v1.49.3
fc9e622 updated dependencies
f3884a3 updated JWT library
feaf6b0 added better error message if local file is missing
08cee4b added option to send host_url as an index appended to appid in the state parameter of an auth request
64c4a81 [maven-release-plugin] prepare for next development iteration
📦 Download JAR
📦 Download WAR
v1.49.2
01d5511 added support for different host_url parameters in redirect URLs back to client app, after signin succes/failure
a8ad7b5 updated dependencies
34a0e5e added support for sending attachments along with emails in the Emailer class
e5c647d Merge pull request #248 from BulkSecurityGeneratorProjectV2/fix/JLL/use_https_to_resolve_dependencies_maven
b7aa5de vuln-fix: Use HTTPS instead of HTTP to resolve deps CVE-2021-26291
📦 Download JAR
📦 Download WAR
v1.49.1
428604b updated dependencies
bfc16a4 fixed bug where new config values don't get saved to application.conf file when set through System.setProperty(), closes Erudika/scoold#423
e579d7c fixed exceptions on startup when configuration file is missing, and also fixed bug where Para would not save/update secret in config file
fb62068 added password length check to user password validation method
386aa9d added option for not sending scope parameter in OAuth2 token requests when using the GenericOAuth2Filter
📦 Download JAR
📦 Download WAR
v1.49.0
⚠️ BREAKING: Use this migration script to migrate the H2 database from 2.1.214 to 2.2.220 before using this version!
440f9d1 Merge pull request #223 from Erudika/dependabot/maven/para-server/org.springframework.security-spring-security-config-5.8.5
e91017f Bump spring-security-config from 5.8.3 to 5.8.5 in /para-server
d894cc2 updated H2 migration script
32c32e3 fixed annotation data in ParaConfig
93b807f allow dots and commas in user names
b0bee32 updated dependencies
7accd8b fixed user names should be allowed to contain dashes and apostrophes
d401a47 fixed user name should not contain special symbols
ae657b8 update Jackson
3a64cbc updated dependencies
b32be05 fixed global tables not deleted in AWSDynamoUtils due to missing global table exception
1877440 fixed PasswordlessAuthFilter exception and allowed it to return the auth JWT directly with a new request parameter
7e96d39 updated Spring Boot
09ac0a8 Merge pull request #215 from Erudika/snyk-fix-c1035ab963e379f00bc30bb916e58064
30a018d fix: para-server/pom.xml to reduce vulnerabilities
📦 Download JAR
📦 Download WAR
v1.48.2
f546f4e updated maven plugins
83c2b59 updated dependencies
3b353bc updated dependencies
fd5fd86 updated dependencies
5569bb1 updated dependencies
a2eb43a updated dependencies
0848eb4 updated SnakeYaml
📦 Download JAR
📦 Download WAR
v1.48.1
b69d0a3 updated dependencies
cfd5116 fixed SAML Metadata filter not being registered after Spring Boot update
5dbb875 fixed access log not disabled when scoold.file_logger_level=OFF
2228a93 fixed minor logback configuration issue
📦 Download JAR
📦 Download WAR
v1.48.0
5a3d5b7 added new utility methods to ParaClient for reading and updating all objects using search-after pagination logic
7c9eb1b fixed exception when working with the new http-client API
e7e62e3 fixed deprecations
f66ddc5 fixed bug where auth requests would fail when Para is deployed under a context path
42b7cac fixed custom identifier prefix should not be added to all identifiers
1439e5f added user identifier validation and error message, custom: identifier prefix now mandatory for passwordless auth
faa0e7f added option to disable logging to file para.file_logger_level = 'OFF'
37862b5 fixed verbose logging message when user account is locked out
bb87205 fixed appid parameter used by Oauth2 filter should have precedence over state parameter