saml-identity-provider
Release Notes
Version 2.3.13
Date: 2025-12-19
-
Access to the private key for
KeyStoreCredentialobjects were synchronized, which led to long waits when many threads tried to access the same key. This has been changed and no synchronization is needed anymore. See https://github.com/swedenconnect/credentials-support/issues/102. -
When may threads attempted to perform encryption at the same time, for the same SP, threading issues could occur. A more stable solution is now in place.
Version 2.3.12
Date: 2025-12-09
- If the Redisson starter (
org.redisson:redisson-spring-boot-starter) was missing from the classpath, the application would not start correctly. This has been fixed.
Version 2.3.11
Date: 2025-12-03
-
Fixed bug in
Saml2AuthnRequestAuthenticationConverterwhere the decoder was not thread safe. See https://github.com/swedenconnect/saml-identity-provider/issues/127. - Fixed bad error message when AuthnRequest does not contain an Issuer.
-
See https://github.com/swedenconnect/saml-identity-provider/issues/125.
-
Added support for configuring the
mdorgext:OrganizationNumbermetadata extension. See https://docs.swedenconnect.se/schemas/authn/1.0/OrganizationNumber-1.0.xsd. - Dependency updates.
Version 2.3.10
Date: 2025-11-18
- Dependency updates only.
Version 2.3.9
Date: 2025-05-08
- Dependency updates only.
Version 2.3.8
Date: 2025-03-16
- Dependency updates only.
Version 2.3.7
Date: 2025-03-18
- An error concerning the usage of the “old” way of configuring credentials was fixed.
Version 2.3.6
Date: 2025-02-27
-
Error messages used for non-recoverable errors was not HTML-encoded when the locale is Swedish. This has been fixed.
-
Dependency updates
Version 2.3.5
Date: 2025-02-04
- A bug where Redis was not initialized if the
spring.data.redis.clusterwas used was fixed.
Version 2.3.4
Date: 2025-02-03
-
Support for populating several
AuthnContext/AuthenticatingAuthoritiesin an assertion was added. -
Resolved logback issue for unit tests.
Version 2.3.3
Date: 2025-01-28
-
The dependency opensaml-security-ext contained a bug concerning RSA-OAEP och PKCS#11. This has been fixed.
-
The custom IdP error messages are now available in Swedish as well as English.
Version 2.3.2
Date: 2025-01-10
- If the
org.redisson:redisson-spring-boot-starteris used by the application, but the application has not configured the application for Redis, the application would not start. This has been fixed.
Version 2.3.1
Date: 2024-12-13
-
A new audit logger repository was introduced. It is now possible to configure audit logging to be sent to the underlying logsystem. Using this feature, an appender for, for example, Syslog can be used.
-
When using more than one audit logger, multiple log entries were produced from the same base class. This has been fixed.
Version 2.3.0
Date: 2024-12-08
-
The latest version of the credentials-support is now used by the library. Using this library, the Credentials Bundles concept can by used for a better was of configuring credentials.
-
New audit entries for credential monitoring are published, if credential monitoring is being used.
Version 2.2.1
Date: 2024-11-21
-
Support for the eIDAS (optional) attributes Nationality, CountryOfResidence, CountryOfBirth and TownOfBirth was added to attribute conversion logic. This fix only applies to IdP:s that proxy assertions from eIDAS.
-
When configuring an HTTPS Metadata Provider it is now possible to configure it with a
https-trust-bundleto specify which root certificates that are accepted during TLS server certificate validation. See Metadata Provider Configuration.
Version 2.2.0
Date: 2024-10-04
-
The Saml2ServiceProviderFilter interface was introduced. By declaring a bean of this type, an implementation may add additional restrictions on which Service Provider that are allowed to send requests.
- (embarrassing) We started publishing release notes …
Copyright © 2022-2025, Myndigheten för digital förvaltning - Swedish Agency for Digital Government (DIGG). Licensed under version 2.0 of the Apache License.