Kantega SSO Enterprise 6.37.x release notes

Changes in 6.37.17

Mar 27, 2025

Release summary: SAML/OIDC related minor bug fixes

Bug fixes

• status:saml/oidc Allow whitespace to hide specific texts on login pages like

• status:misc Better handling of internal URLs for Force login

• status:saml/oidc Fix default redirect rules override for JSM

Changes in 6.37.15

Mar 13, 2025

Release summary: Fixed bug with websudo button showing up without websudo being enabled

Bug fixes

• status:saml/oidc Fixed issue where the “Reauthenticate with SSO” button for websudo was shown without Jira prompting the user for reauthentication.

Changes in 6.37.14

Mar 10, 2025

Release summary: Bug fixes

Bug fixes

• status:saml/oidc Newly introduced Bitbucket & Bamboo websudo (secure admin session) did not isolate to the given host product and gave failure on Jira.

• status:saml/oidc Config upgrade logic introduced in 6.33.0 incorrectly checks for breaking changes comparing incorrect versions when running on Kantega SSO major version 6

Changes in 6.37.13

Mar 7, 2025

Release summary: Google Workspace API connector bug fix

Improvements

• Added a utility page under dark-features for viewing and editing groups in specific user directories on the URI /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/showGroupsInDirectories

Bug fixes

• status:api connector Google Workspace API connector sync failed after incorrect JSON object key for isArchived and isSuspended on the fix in 6.37.10

Changes in 6.37.12

Mar 6, 2025

Release summary: Bug fixes

Bug fixes

• status:saml/oidc Managed groups evaluation used the incorrect configured group collection when evaluating managed groups.

Changes in 6.37.11

Mar 6, 2025

Release summary: Bug fix of config upgrade logic and dependency update

Improvements

• status:misc Update bouncy castle dependency from 1.78 to 1.80 to patch CVE-2024-29857, CVE-2024-30171, CVE-2024-30172.

Bug fixes

• status:kerberos Config upgrade logic introduced in 6.37.4 incorrectly checks for breaking changes comparing incorrect versions.

Changes in 6.37.10

Mar 5, 2025

Release summary: Improvements, bug fixes and dependency updates

Improvements

• status:saml/oidc Websudo SSO is now available for Bitbucket and Bamboo

• status:misc Update dependencies

Bug fixes

• status:Api connector Google Workspace API connector did not update archived users as “not active” during sync

• status:saml/oidc Make manual redirect more available on login page when users enter username

Changes in 6.37.9

Feb 28, 2025

Release summary: Bug fix for prevent traditional login

Bug fixes

• status:MISC Fixed a bug with prevent traditional login introduced with 6.37.8

Changes in 6.37.8

Feb 25, 2025

Release summary: Improvements and bug fixes for Jira and JSM only

Bug fixes

• status:misc Better handling prevent traditional login (with username / password) for unlicensed users

Changes in 6.37.7

Feb 14, 2025

Release summary: Improvements and bug fixes

Improvements

• status:Cloud user provisioning The cloud user provisioning overview now shows if a connected user directory is disabled

• status:SAML/OIDC Login widget on Jira dashboard now scales better height-wise with more content.

Bug fixes

• status:misc Fixed bug where some group selectors were unable to load groups

Changes in 6.37.6

Feb 13, 2025

Release summary: Bug fixes for API tokens

Bug fixes

• status:API Token Fixed bug where non-admin users could not create tokens if maximum token lifetime was set to forever

• status:API Token Fixed unnecessarily noisy logging in some scenarios

• status:Kerberos Fixed Kerberos logging in users trying to log out on Jira 10

Changes in 6.37.5

Jan 29, 2025

Release summary: Fixed SAML/OIDC bug with target after redirect containing the entire URL

Bug fixes

• status:SAML/OIDC Fixed SAML/OIDC bug with target after redirect containing the entire URL.

Changes in 6.37.4

Jan 28, 2025

Release summary: Bug fixes. Improved UX on disable Kerberos.

Improvements

• status:Kerberos Reworked “Disable Kerberos” to improve UX and make the feature easier to understand. This triggers a config upgrade.

Bug fixes

• status:SAML/OIDC Fixed issue with Single Logout in Jira.

• status:SAML/OIDC Fixed issue with IdP button not being clickable with certain configurations.

• status:SAML/OIDC Fixed bug where using SAML/OIDC would remove the title of Jira dashboards.

Changes in 6.37.3

Jan 27, 2025

Release summary: Bug fixes for prevent traditional login and initial SAML signing certificate

Bug fixes

• status:SAML/OIDC Bug fixes for prevent traditional login for some users

• status:SAML/OIDC Fixed problem when setup of first identity provider where SAML signing certificate was created

Changes in 6.37.2

Jan 22, 2025

Release summary: Added support for generating 4096 bit certificate for SAML Request Signing

Improvements

• status:SAML/OIDC Added option to generate certificate for SAML Request Signing with size of 4096 bits

Bug fixes

• status:SAML/OIDC Fixed problem with reactivating users who are both deactivated and missing license group

Changes in 6.37.1

Jan 17, 2025

Release summary: Various bug fixes and improvements

Improvements

• status:kerberos Improved error handling for LDAP test

• status:SCIM Updated UI for SCIM setup wizard

• status:SCIM Added lozenge for showing local groups in group list

• status:User management Added the option to copy groups and memberships to read-only directories

• status:User management Added an overview to make discovering duplicate groups easier at /showGroupsInDirectories

Bug fixes

• status:SAML/OIDC Fixed instant redirect trigger on JSM despite being disabled

• status:SAML/OIDC Fixed redirecting user to the page they attempted to visit before being sent to IdP for Bitbucket

• status:User management Fixed issue with viewing groups containing &

Changes in 6.37.0

Jan 3, 2025

Release summary: Added support for custom API token authorization header

Improvements

• status:API Token Added support for custom API token authorization header

Bug fixes

• status:API COnnector Entra ID API connector will no longer crash during synchronization when user or group filtering is enabled and a nested group matching the filter contains a group not matched by the filter.