View Source

We are pleased to announce Kantega SSO Enterprise 5.7.

note

We recommend as always to take a backup before performing the update.
Read the update notes for important information about the updating to version 5 (and you are upgrading from 4.x), and see the full changelog below.

See the latest changes in version 5.7.2

Compatible applications

Application	Compatible from version
Bamboo	7.0.1
Bitbucket	7.0.0
Confluence	7.4.0
Jira	8.8.0

Changelog

New API tokens REST API, SCIM in Backup & restore and IDP Wizard improvements. Rename Snapshot of Config to Backup & restore.

Changes in 5.7.0

Update issue We have received reports that API Tokens get corrupted in a Database migration when updating to version 5.7.0 or 5.7.1 (which have been withdrawn from Marketplace. Now we have released 5.7.2, which should resolve it. If you are still experiencing issues, please revert to the previous version you were on following this guide: Reverting Kantega SSO Enterprise to a stable version, or as a workaround, simly try to refresh the tokens using the refresh API, or create new ones to replace them if you haven’t got many.

20 Apr 2022 11:00 CET

We have discovered that the GET endpoints in API tokens REST service have a small bug, returning the tokenName field with the wrong key description. This will be fixed soon in 5.7.1. The correct data is returned upon token creation (POST) and refresh (PUT).

Features

Backup & restore API tokens across environments
Version 2 of API tokens REST service with attribute changes due to cross-environment backup & restore. See the documentation for the latest version of the REST API here: https://kantega-sso.atlassian.net/wiki/spaces/KSI/pages/974356481/Kantega+SSO+REST+API+latest#3.-API-Tokens. (We have discovered that the GET endpoints in API tokens REST service have a bug returning the tokenName field with the wrong key. This will be fixed soon in 5.7.1)
Include SCIM in Backup & Restore
Added session attributes ksso.saml.session.user and ksso.saml.idp.id present on all sessions which have been logged in with SAML. This already exists for OIDC.

Improvements

Test page gives warning when REALM is written with lowercase letters, since REALM is case sensitive in the Kerberos specification
Remove possibility to set up a SCIM configuration in Bamboo, which is not supported
Unnecessary “Draft not found” message printed in browser console in setup wizard
The flag ?noredirectsso renamed to ?noredirect

Bug fixes

Setup wizard shows error on empty client_secret on summary page even though client_secret is optional

Changes in 5.7.1

20 Apr 2022 15:30 CET

Bug fixes

GET endpoints in API tokens REST service had a small bug, returning the tokenName field with the wrong key description. Now tokenName and description are two separate free-text fields present also on the GET endpoints. Incremented API Tokens REST API service to version 3. Documentation for version 3 of API token REST service can be found in the latest API token documentation: https://kantega-sso.atlassian.net/wiki/spaces/KSI/pages/975241224/Kantega+SSO+Enterprise+5.7.1+REST+API+latest#3.-API-Tokens

Changes in 5.7.2

02 May 2022 10:00 CET

Bug fixes

Database migration in 5.7.0-5.7.1 led to corrupted data that had to be replaced by new tokens

Security patches

Update jackson-databind to 2.13.2.2 for new micro patch related to CVE-2020-36518