Release Notes - JOSSO - Version JOSSO 1.8.2 - HTML format

Sub-task

• [JOSSO-145] - Migrate Gateway services to DOC-LIT
• [JOSSO-146] - Migrate Java Agents to DOC-LIT
• [JOSSO-147] - Migrate Apache Agent to DOC-LIT
• [JOSSO-148] - Migrate ISAPI Agent to DOC-LIT
• [JOSSO-149] - Migrate PHP Agent to DOC-LIT
• [JOSSO-164] - Add support for deploying JSR196 agents from the console
• [JOSSO-165] - Write JSR196 deployment how-to
• [JOSSO-196] - Implement change in non-java agents
• [JOSSO-197] - Implement change in Java native agents and JBoss portal agents
• [JOSSO-205] - Enhance default josso agent config for Java Agents
• [JOSSO-222] - Support script-based mapping rules
• [JOSSO-223] - Support expression-based mapping rules

Bug

• [JOSSO-144] - NTLM authentication does not work ==> blank screen in IE8
• [JOSSO-151] - 'Remember Me' function not working in PHP Agent
• [JOSSO-152] - LoginSelectorAction doesn't heed properties
• [JOSSO-154] - X509CertificateAuthScheme does not properly heed escape char
• [JOSSO-156] - JOSSO 1.8.1 packaging includes Spring-2.0.6.jar
• [JOSSO-160] - maven build fails with "XPP3 pull parser library not present. Specify another driver. For example: new XStream(new DomDriver())"
• [JOSSO-162] - fresh build fails
• [JOSSO-168] - Protocol handler descriptor is not installed
• [JOSSO-169] - Tomcat shutdown inhibited by AssertionMonitor thread
• [JOSSO-171] - Credentials are dumped upon failed console authentication attempt
• [JOSSO-172] - Ntlm authentication fails after first attempt
• [JOSSO-173] - JCIFS properties values set programmatically not accessible by JCIFS
• [JOSSO-175] - Ntlm descriptors are not installed
• [JOSSO-177] - SSOSession returned by the WebserviceSSOSessionManager always returns isValid() == false
• [JOSSO-179] - NTLM authentication fails with the Apache 2.2 agent
• [JOSSO-180] - Remember Me
• [JOSSO-183] - ISAPI agent doesn't properly handle invalid session ids
• [JOSSO-185] - Extra question mark added to URLs after using /josso_user_login/
• [JOSSO-188] - WASCE Agent build fails
• [JOSSO-189] - XPP3 pull parser library not present. Specify another driver. For example: new XStream(new DomDriver()) error
• [JOSSO-192] - Trying to connect to a JOSSO protected Apache webserver with multiple GET argument fails -> loop
• [JOSSO-198] - Isapi agent is case sensitive with base-uri
• [JOSSO-199] - Password reset fails when autocommit is set
• [JOSSO-200] - Missing archetype dependency
• [JOSSO-201] - Agent - Apache - installation error
• [JOSSO-202] - josso-session-manager creating a invalid URL upon timeout
• [JOSSO-208] - Error initializing agent java.lang.IllegalArgumentException: Config locations must not be null
• [JOSSO-209] - Selfservice LostPasswordAction fails in clustered environments, "setAttribute: Non-serializable attribute"
• [JOSSO-213] - update documentation: Jossify your Application for Tomcat - Quick Start
• [JOSSO-215] - Josso session is not getting timed out
• [JOSSO-217] - JDBC-DBI-Store throws Transaction-related error when using DB2
• [JOSSO-221] - BaseRoleImpl objects increase in memory
• [JOSSO-224] - josso-default-assertionmgr can prevent JEE server from shutting down.
• [JOSSO-232] - Josso 1.8.2 instance setup in Jboss 5.1.X
• [JOSSO-233] - Static Logger Initialization of class org.josso.tc55.agent.jaas.CatalinaSSOUser

Improvement

• [JOSSO-119] - Avoid cross-site redirection (XSR) vulnerability
• [JOSSO-139] - Use DOC/LIT SOAP dialetct in JOSSO Backchannel protocol
• [JOSSO-143] - JOSSO Webservice clients should be able to consume services deployed in any arbitary path
• [JOSSO-153] - LDAPIdentityStore doesn't support different cn/uid
• [JOSSO-157] - Retrofit the NTLM stack
• [JOSSO-159] - Support enabling NTLM logging
• [JOSSO-166] - Support OCSP-based X.509 certificate validation
• [JOSSO-167] - Support CRL-based X.509 certificate validation
• [JOSSO-170] - Support Non-JAAS Agents
• [JOSSO-187] - Improve Cluster support in Java Agents
• [JOSSO-194] - Identify partner application in back channel requests
• [JOSSO-235] - Support running roles and user properties DIT lookups using the bind credentials

New Feature

• [JOSSO-158] - Support WINS resolution for Ntlm based authentication
• [JOSSO-161] - Support JASPI (JSR 196)
• [JOSSO-191] - Agents should be able to selectively trigger automatic login process based on configured policies
• [JOSSO-193] - Partner applications should be able to send additional information to gateway when requesting login/logout operations
• [JOSSO-203] - Agent installer should be able to support host-name and idbus-idp options
• [JOSSO-219] - Support building an authorative source for user information from multiple sources
• [JOSSO-220] - Support CDSSO with Liferay Portal 5.2
• [JOSSO-225] - Support CDSSO with Alfresco 3.3
• [JOSSO-227] - Add STARTTLS support for Ldap connections
• [JOSSO-228] - Add support for phpBB bulletin board system

Task

• [JOSSO-155] - Update PHP Agent documentation to reflect DOC/LIT changes
• [JOSSO-195] - TooManyOpenSessions Exception
• [JOSSO-229] - Certify JOSSO compatibility with JBoss 5.0.1 and 5.1.0

The text area below allows the project release notes to be edited and copied to another document.