Kantega SSO Enterprise 6.42.x release notes
- Steinar Line
- Elias Brattli Sørensen
We are pleased to announce a new version of Kantega SSO Enterprise.
Compatible applications
In general, the latest version of Kantega SSO Enterprise is compatible with the oldest version that has not reached end of life. See Atlassian’s End-of-life (EOL) policy to get an overview of versions and EOL dates.
Changelog
Changes in 6.42.2
Jun 17, 2025
Release summary: Security patches and remove license expiry warning banner
Security fixes
Beanutils Upgrade apache commons beanutils from version 1.9.4 to 1.11.0 to patch CVE-2025-48734 and CVE-2020-15250 from the dependency.
Improvements
plugin license banner When the plugin license closed to expiry, we used to issue a warning to administrators, warning them to update the SSO license. This warning caused some annoyance, particularly because the “dismiss” button did not behave consistently. To avoid this annoyance, the banner was removed.
Changes in 6.42.1
Release only relevant to version 7.42.1.
Changes in 6.42.0
May 30, 2025
Release summary: Better performance API connector calls, fixes for user redirect and lookup
Improvements
API connector Introduce cache to avoid background sync calls from Atlassian products creating a full sync over API. Now only ordinary syncs will do full sync.
SAML/OIDC Support for redirect by group and directory also when user gives built-in username when configuration is using other lookup attribute, e.g. email or userPrincipalName as username
SAML/OIDC Ignore disabled user accounts when user lookup via e-mail is configured so the one active account is allowed to be used
Bug fixes
JIRA Fix websudo login to work Jira has contextPath (for example runs on server.com/jira)
Confluence Fix setting userProperties when other lookup attributes like email or userPrincipalName has been used for SAML/OIDC logins.
SAML/OIDC fix so updateUser can be used in combination with other username lookup attribute