Kantega SSO Enterprise 6.38.x release notes

Changes in 6.38.6

May 9, 2025

Release summary: Bug fixes

Bug fixes

• Bug fixes for newer compatibility versions: see release 7.38.6.

Other changes

• Dark feature Introduced a dark feature for Content-security policy customization and and set-cookie property SameSite=None to offer the capability to still render the host in an iframe when it’s needed. Hidden in a dark feature, navigate directly to the setting through `/plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/samesiteContentSecurityPolicyHeaders

Changes in 6.38.5

May 7, 2025

Release summary: Bug fixes and improvements

Improvements

• kerberos The kerberos test page now shows group based permission checks more clearly

• saml/oidc Add more DEBUG level log lines to JIT group memberships provisioning for better troubleshooting

Bug fixes

• saml/oidc The user properties feature had a nullpointer bug if the user was not found

• kerberos Fix broken link to the “disable kerberos for specific users” page

Changes in 6.38.4

Apr 25, 2025

Release summary: Jira feature to set properties on login and other improvements

Features

• JIRA Allow to enable setting incoming SAML/OIDC user data in User Properties during login. See: Test results | Store attributes to user’s profile

Improvements

• Force login Better UI for presenting default Force paths

• just-in-time provisioning Better feedback when a non-writable directory has been selected for creating users

Changes in 6.38.3

Apr 16, 2025

Bug fixes

• Fixed a bug that would cause the restore backup function to fail if one of the IDP configurations (or subfolders of jira-home/kerberos) had been deleted between creating of the backup and restore attempt.
  The issue shows a 500 error page upon backup restore:
  /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/restore-backup
  And an entry in the logs:
  java.nio.file.NoSuchFileException
  If that happens you should still have the configuration before the restore attempt in the Atlassian Data Center app home folder (jira-home or on with cluster jira-shared)
  jira-home/kerberos_oldhome
  First you can disable Kantega SSO plugin
  Move
  jira-home/kerberos to jira-home/kerberos-failed-restore
  and then move
  jira-home/kerberos_oldhome to jira-home/kerberos
  Then enable Kantega SSO plugin

Changes in 6.38.2

Apr 7, 2025

Bug fixes

• Fixed a bug introduced in 6.38.1 that caused instances with “Prevent traditional login” on to have problems with REST endpoints resulting in exceptions.

• Fixed an issue that could cause User Cleanup page to not display at all when license was not present

Changes in 6.38.1

Apr 4, 2025

Release summary: Bug fixes and dark feature user administration

Bug fixes

• JIRA Fix combinations all of prevent traditional login for JSM and Jira

• JIRA Allow SSO websudo for all admin URLs

• Bitbucket: Allow really large git requests to pass successfully through SSO filters

Improvements

• Dark feature Directory admin: Allow to create, rename and delete internal directories on URL:
  /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/manageInternalDirectories

• Dark feature User admin: Allow search for and to move specified users from one directory to another on URL:
  /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/manageUsersInDirectories

Improvements

• saml/oidc Internal rewrites to standardise login behavior and to prepare for new features in Just-in-time and anonymous browsing coming soon

Bug fixes

• oidc resume login will now verify that IdP config is enabled

Changes in 6.38.0

Apr 2, 2025

Release summary: Major internal rewrite SAML/OIDC to make login behavior the same

Improvements

• saml/oidc Internal rewrites to standardise login behavior and to prepare for new features in Just-in-time and anonymous browsing coming soon

Bug fixes

• oidc resume login will now verify that IdP config is enabled

• SAML/oidc Managed groups fails to provision group memberships