/
Kantega SSO Enterprise 7.38.x release notes

Kantega SSO Enterprise 7.38.x release notes

Owned by Steinar Line
Last updated: May 13, 2025 by Elias Brattli Sørensen
3 min read

We are pleased to announce Kantega SSO Enterprise 7.38.0.

Compatible applications

In general, the latest version of Kantega SSO Enterprise is compatible with the oldest version that has not reached end of life. For this release however, there is a gap in Atlassian’s major architecture rewrite in what they call Platform 7. Its lower compatibility is with versions that have implemented platform 7. This means the following major versions and later are compatible:

Note that 7.38.x is a functional copy of 6.38.x and should only contain minor differences caused by platform 7.

Changelog

Changes in 7.38.6

May 9, 2025

Release summary: Bug fixes

Bug fixes

  • saml/oidc Web sudo SSO broke in newer Bitbucket

  • websudo Prevent traditional login block not blocking local users in Bitbucket websudo

Other changes

  • Dark feature Introduced a dark feature for Content-security policy customization and and set-cookie property SameSite=None to offer the capability to still render the host in an iframe when it’s needed. Hidden in a dark feature, navigate directly to the setting through /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/samesiteContentSecurityPolicyHeaders


Changes in 7.38.5

May 7, 2025

Release summary: Bug fixes and improvements

Improvements

  • kerberos The kerberos test page now shows group based permission checks more clearly

  • saml/oidc Add more DEBUG level log lines to JIT group memberships provisioning for better troubleshooting

Bug fixes

  • saml/oidc The user properties feature was missing a couple velocity allowlist entries

  • saml/oidc The user properties feature had a nullpointer bug if the user was not found

  • kerberos Fix broken link to the “disable kerberos for specific users” page

  • bamboo Add null handling for when servlet request can be null on “should login manually” check in SSO logic for customizable login page. Currently only a known problem on Bamboo.

Changes in 7.38.4

Apr 25, 2025

Release summary: Jira feature to set properties on login and other improvements

Features

Improvements

  • Force login Better UI for presenting default Force paths

  • just-in-time provisioning Better feedback when a non-writable directory has been selected for creating users

Changes in 7.38.3

Apr 16, 2025

Bug fixes

  • Fixed a bug that would cause the restore backup function to fail if one of the IDP configurations (or subfolders of jira-home/kerberos) had been deleted between creating of the backup and restore attempt.
    The issue shows a 500 error page upon backup restore:
    /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/restore-backup
    And an entry in the logs:
    java.nio.file.NoSuchFileException
    If that happens you should still have the configuration before the restore attempt in the Atlassian Data Center app home folder (jira-home or on with cluster jira-shared)
    jira-home/kerberos_oldhome
    First you can disable Kantega SSO plugin
    Move
    jira-home/kerberos to jira-home/kerberos-failed-restore
    and then move
    jira-home/kerberos_oldhome to jira-home/kerberos
    Then enable Kantega SSO plugin

Changes in 7.38.2

Apr 7, 2025

Bug fixes

  • Fixed a bug introduced in 7.38.1 that caused instances with “Prevent traditional login” on to have problems with REST endpoints resulting in exceptions.

  • Fixed an issue that could cause User Cleanup page to not display at all when license was not present

Changes in 7.38.1

Apr 4, 2025

Release summary: Bug fixes and dark feature user administration

Bug fixes

  • JIRA Fix combinations all of prevent traditional login for JSM and Jira

  • JIRA Allow SSO websudo for all admin URLs

  • confluence Fix landing flow after Single Logout

  • Bitbucket: Allow really large git requests to pass successfully through SSO filters

Improvements

  • Dark feature Directory admin: Allow to create, rename and delete internal directories on URL:
    /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/manageInternalDirectories

  • Dark feature User admin: Allow search for and to move specified users from one directory to another on URL:
    /plugins/servlet/no.kantega.kerberosauth.kerberosauth-plugin/manageUsersInDirectories

Changes in 7.38.0

Apr 2, 2025

Release summary: Major internal rewrite SAML/OIDC to make login behavior the same

Improvements

  • saml/oidc Internal rewrites to standardise login behavior and to prepare for new features in Just-in-time and anonymous browsing coming soon

Bug fixes

  • oidc Resume login will now verify that IdP config is enabled

  • SAML/oidc Managed groups fails to provision group memberships

 

 

 

 

 

 

Related content