margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 1 | # version 0.61.0 |
margaretha | 1b32045 | 2018-08-02 16:56:25 +0200 | [diff] [blame] | 2 | |
margaretha | 0666ddb | 2018-08-02 16:54:04 +0200 | [diff] [blame] | 3 | 02/08/2018 |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 4 | - Added VC referencing tests (margaretha) |
| 5 | - Implemented loading and caching named VCs (margaretha) |
| 6 | 03/08/2018 |
| 7 | - Implemented OAuth2 revoke token (margaretha) |
| 8 | - Updated OAuth2 refresh token implementation (margaretha) |
| 9 | 14/08/2018 |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 10 | - Implemented revoke all OAuth2 access tokens and authorization codes of client |
| 11 | users when deregistering/deleting a client (margaretha) |
| 12 | - Fixed update OAuth2 access token (margaretha) |
| 13 | - Implemented reset client secret (margaretha) |
margaretha | 1ef36bd | 2018-08-14 18:17:05 +0200 | [diff] [blame] | 14 | - Fixed revoking latest access token when refreshing OAuth2 access token (margaretha) |
margaretha | 835178d | 2018-08-15 19:04:03 +0200 | [diff] [blame] | 15 | 15/08/2018 |
| 16 | - Implemented OAuth2 client info controller (margaretha) |
| 17 | - Implemented update OAuth2 client privilege controller for admins (margaretha) |
| 18 | - Implemented unlimited authorization scope for super clients with OAuth2 password grant (margaretha) |
| 19 | - Marked native clients implementation to deprecated in favour of super clients (margaretha) |
| 20 | - Enabled using Bearer tokens as user authentication tokens (Authorization header value) for many |
| 21 | controllers including OAuth2 controllers (margaretha) |
margaretha | f008512 | 2018-08-16 16:19:53 +0200 | [diff] [blame] | 22 | 16/08/2018 |
| 23 | - Implemented degrading super clients (margaretha) |
margaretha | 2e1781f | 2018-08-21 11:45:26 +0200 | [diff] [blame] | 24 | - Improved and added OAuth2 tests (margaretha) |
| 25 | 21/08/2018 |
| 26 | - Added VC name pattern check (margaretha) |
margaretha | 6ad08b4 | 2018-08-22 18:33:54 +0200 | [diff] [blame] | 27 | 22/08/2018 |
| 28 | - Implemented loading VC from gz files (margaretha) |
| 29 | - Updated OAuth2 authorization codes' & access tokens' expiry check (margaretha) |
margaretha | f370f54 | 2018-08-23 18:51:49 +0200 | [diff] [blame] | 30 | 23/08/2018 |
| 31 | - Updated RefreshToken implementations with separate DB tables (margaretha) |
| 32 | - Allows multiple access tokens per refresh token (margaretha) |
margaretha | c7196d2 | 2018-08-27 14:20:03 +0200 | [diff] [blame] | 33 | 27/08/2018 |
| 34 | - Added statistic with VC reference tests (margaretha) |
| 35 | - Fixed OAuth2 SQL files (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 36 | |
| 37 | # version 0.60.5 |
| 38 | |
| 39 | 09/07/2018 |
margaretha | 20f3123 | 2018-07-09 17:49:39 +0200 | [diff] [blame] | 40 | - Added service layer to the search controller (margaretha) |
| 41 | - Added OAuth2 scope checking in search and VC controllers (margaretha) |
| 42 | - Added handling OAuth2 bearer token for VC access and User group controllers (margaretha) |
| 43 | - Added default scope to password grant (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 44 | 10/07/2018 |
margaretha | 064eb6f | 2018-07-10 18:33:01 +0200 | [diff] [blame] | 45 | - Made createBasicAuthorizationHeaderValue static (margaretha) |
| 46 | - Added store access token in openID token service (margaretha) |
| 47 | - Fixed empty scope in openID authorization and token service (margaretha) |
| 48 | - Implemented storing authorization code in cache (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 49 | 11/07/2018 |
margaretha | 07a356a | 2018-07-11 19:12:21 +0200 | [diff] [blame] | 50 | - Fixed authentication time in authentication controller (margaretha) |
margaretha | 0a45be1 | 2018-07-12 15:06:30 +0200 | [diff] [blame] | 51 | - Added OAuth2 access token tests (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 52 | 12/07/2018 |
margaretha | 0a45be1 | 2018-07-12 15:06:30 +0200 | [diff] [blame] | 53 | - Updated maven surefire setting for faster test suite runtime (margaretha) |
margaretha | 03b8286 | 2018-07-12 20:09:26 +0200 | [diff] [blame] | 54 | - Implemented refreshing OAuth2 access token (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 55 | 26/07/2018 |
margaretha | 0666ddb | 2018-08-02 16:54:04 +0200 | [diff] [blame] | 56 | - Fixed issue #27 (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 57 | 02/08/2018 |
margaretha | 0666ddb | 2018-08-02 16:54:04 +0200 | [diff] [blame] | 58 | - Fixed clientId encoding in OAuth2ClientControllerTest (margaretha) |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 59 | |
margaretha | 20f3123 | 2018-07-09 17:49:39 +0200 | [diff] [blame] | 60 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 61 | # version 0.60.4 |
| 62 | |
Akron | d505816 | 2018-07-05 11:17:15 +0200 | [diff] [blame] | 63 | 05/07/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 64 | - implemented OAuth2 authorization code request with OpenID Authentication (margaretha) |
margaretha | da3c785 | 2018-06-14 20:35:11 +0200 | [diff] [blame] | 65 | - enabled OAuth2 authorization without OpenID authentication using Nimbus library (margaretha) |
| 66 | - implemented response handler for OpenID authentication errors in authorization requests (margaretha) |
| 67 | - added tests regarding OpenID authentication in authorization requests (margaretha) |
margaretha | 56fd558 | 2018-06-18 22:14:51 +0200 | [diff] [blame] | 68 | - implemented OAuth2 authorization error response via redirect URI instead of JSON (margaretha) |
margaretha | b36b1a3 | 2018-06-20 20:13:07 +0200 | [diff] [blame] | 69 | - added state to OAuth2 authorization error response (margaretha) |
| 70 | - implemented OpenID token service for authorization code flow (margaretha) |
margaretha | 5225ed0 | 2018-06-25 18:38:40 +0200 | [diff] [blame] | 71 | - implemented signed OpenID token with default algorithm RSA256 (margaretha) |
margaretha | a2ce63d | 2018-06-28 10:11:43 +0200 | [diff] [blame] | 72 | - implemented JSON Web Key (JWK) set web-controller listing kustvakt public keys (margaretha) |
margaretha | 9c78e1a | 2018-06-27 14:12:35 +0200 | [diff] [blame] | 73 | - implemented OpenId configuration (margaretha) |
margaretha | a2ce63d | 2018-06-28 10:11:43 +0200 | [diff] [blame] | 74 | - added authentication time and support for auth_time in id_token (margaretha) |
| 75 | - implemented support for nonce and max_age parameters in OpenID authentication (margaretha) |
margaretha | 249a0aa | 2018-06-28 22:25:14 +0200 | [diff] [blame] | 76 | - implemented OAuth2 token request with password grant using Nimbus library (margaretha) |
margaretha | d7cab21 | 2018-07-02 19:01:43 +0200 | [diff] [blame] | 77 | - updated redirect URI validator (margaretha) |
| 78 | - updated client registration requirement to allow desktop applications (margaretha) |
| 79 | - fixed RSA key configuration (margaretha) |
margaretha | 80ea0dd | 2018-07-03 14:22:59 +0200 | [diff] [blame] | 80 | - merged OAuth2 client deregistration controllers (margaretha) |
margaretha | b1081b1 | 2018-07-03 23:35:01 +0200 | [diff] [blame] | 81 | - fixed OAuth2 client unique URL-hashcode (margaretha) |
margaretha | 49cb688 | 2018-07-04 04:19:54 +0200 | [diff] [blame] | 82 | - migrated logging to log4j 2 and adapted java.util.logging to log4j(margaretha) |
Akron | 6091cf3 | 2018-07-03 20:45:49 +0200 | [diff] [blame] | 83 | - Added support for unrestricted corpus statistics (ndiewald) |
margaretha | 226ec1e | 2018-07-04 15:45:59 +0200 | [diff] [blame] | 84 | - updated paths of user-group deletion-controllers (margaretha) |
Akron | d505816 | 2018-07-05 11:17:15 +0200 | [diff] [blame] | 85 | - Do not pass broken queries to Krill (diewald) |
margaretha | 00c28c0 | 2018-07-05 18:09:09 +0200 | [diff] [blame] | 86 | - added OAuth2 token request with client authentication via Authorization header (margaretha) |
| 87 | - added port checking in test suite (margaretha) |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 88 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 89 | # version 0.60.3 |
| 90 | |
margaretha | 235a680 | 2018-06-06 19:21:53 +0200 | [diff] [blame] | 91 | 06/06/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 92 | - improved user authentication by using authentication filter for authorization code request (margaretha) |
| 93 | - limited client authentication to client id checking in authorization code request (margaretha) |
| 94 | - added user_id in the oauth2_access_token database table (margaretha) |
| 95 | - implemented OAuth2Authentication provider for token context management (margaretha) |
| 96 | - added parameter checking for authorization DAO (margaretha) |
| 97 | - added controller tests using OAuth2 access token (margaretha) |
| 98 | - added database tables for MySQL (margaretha) |
| 99 | - updated JWT library and related codes (margaretha) |
| 100 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 101 | # version 0.60.2 |
| 102 | |
margaretha | be4c5c9 | 2018-05-03 18:55:49 +0200 | [diff] [blame] | 103 | 03/05/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 104 | - implemented OAuth2 client registration (margaretha) |
| 105 | - implemented OAuth2 client authentication (margaretha) |
| 106 | - changed virtual corpus search to retrieval (margaretha) |
| 107 | - implemented public client deregistration task (margaretha) |
| 108 | - added client registration and deregistration tests (margaretha) |
| 109 | - implemented confidential client deregistration task (margaretha) |
| 110 | - fixed storing client secret (margaretha) |
| 111 | - implemented OAuth2 response handler (margaretha) |
| 112 | - implemented OAuth2 request access token with client credentials grant (margaretha) |
| 113 | - implemented OAuth2 request access token with resource owner password grant (margaretha) |
| 114 | - implemented OAuth2 authorization code request (margaretha) |
| 115 | - added OAuth2 error codes (margaretha) |
| 116 | - added OAuth2 authorization, scope and access token tables for SQLite (margaretha) |
| 117 | - implemented OAuth2 authorization, scope and access token DAO (margaretha) |
| 118 | - implemented OAuth2 request access token with authorization code grant (margaretha) |
| 119 | - added setting default scopes in the config file (margaretha) |
| 120 | - fixed loading spring config multiple times in the test suite (margaretha) |
| 121 | - added SQLite created_date trigger for access token (margaretha) |
| 122 | - added a join table for access token scopes (margaretha) |
| 123 | - added access scopes handling (margaretha) |
| 124 | - added tests about request token with authorization code (margaretha) |
| 125 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 126 | # version 0.60.1 |
| 127 | |
margaretha | 18533fd | 2018-03-28 16:01:06 +0200 | [diff] [blame] | 128 | 28/03/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 129 | - added admin-related SQL codes (margaretha) |
| 130 | - updated AdminDao (margaretha) |
| 131 | - added optional username query parameter to group list controller (margaretha) |
| 132 | - fixed non hierarchical URI of kustvakt conf files (margaretha) |
| 133 | - added delete group member triggers (margaretha) |
| 134 | - added list user-group by username and status for system admin (margaretha) |
| 135 | - added user-group status in user-group DTO (margaretha) |
| 136 | - added check for hidden groups in user-group tests (margaretha) |
| 137 | - added database trigger test on deleting members when deleting group (margaretha) |
| 138 | - renamed VC type PREDEFINED to SYSTEM (margaretha) |
| 139 | - added VC list controller for system admin (margaretha) |
| 140 | - added VC controller tests with for system admin (margaretha) |
| 141 | - added hidden access removal when deleting published VC (margaretha) |
| 142 | - added check for hidden groups in VC controller tests (margaretha) |
| 143 | - added search user-group controller (margaretha) |
| 144 | - removed createdBy from VirtualCorpusJson (margaretha) |
| 145 | - moved member role setting from the invitation phase to the after-subscription phase (margaretha) |
| 146 | - added member role removal after deleting members (margaretha) |
| 147 | - added add and delete member role controllers (margaretha) |
| 148 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 149 | # version 0.60 |
| 150 | |
margaretha | 97bb3bd | 2018-03-14 18:41:14 +0100 | [diff] [blame] | 151 | 14/03/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 152 | - set up mail settings using localhost port 25 (margaretha) |
| 153 | - added mail template in kustvakt configuration (margaretha) |
| 154 | - added mail settings to readme (margaretha) |
| 155 | - disabled email notification for auto group (margaretha) |
| 156 | - added metadata retrieval (diewald) |
| 157 | - enabled custom implementation for email address retrieval (margaretha) |
| 158 | - removed old policy and deprecated code (margaretha) |
| 159 | - moved authentication related code to /full (margaretha) |
| 160 | - added userRoles attribute to UserGroupDto. (margaretha) |
| 161 | - fixed sqlite trigger (margaretha) |
| 162 | - fixed member exist error message (margaretha) |
| 163 | - fixed member invitation to join deleted group (margaretha) |
| 164 | - added checking deleted group (margaretha) |
margaretha | a86b141 | 2018-02-21 20:40:35 +0100 | [diff] [blame] | 165 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 166 | # version 0.59.10 |
| 167 | |
margaretha | aecee1b | 2018-02-20 14:44:21 +0100 | [diff] [blame] | 168 | 20/02/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 169 | - added sort VC by id (margaretha) |
| 170 | - added test cases regarding VC sharing (margaretha) |
| 171 | - implemented withdraw VC from publication (margaretha) |
| 172 | - added Changes file (margaretha) |
| 173 | - implemented add/invite users to group (margaretha) |
| 174 | - implemented delete user-group and member tasks (margaretha) |
| 175 | - added userMemberStatus in group lists (margaretha) |
| 176 | - updated and added SQL test data (margaretha) |
| 177 | - added user group related tests (margaretha) |
| 178 | - implemented custom configuration for deleting user groups and members (margaretha) |
| 179 | - updated library versions and java environment (margaretha) |
| 180 | - added expiration time check for member invitation (margaretha) |
| 181 | - moved .properties files (margaretha) |
| 182 | - merged changelog file to Changes (margaretha) |
| 183 | - updated status codes and error messages to be more detailed (margaretha) |
| 184 | - testing mail implementation using embedded jetty jndi (margaretha) |
| 185 | - fixed collection rewrite regarding OR operation with other fields (margaretha) |
| 186 | - implemented sending mail using spring injection and removed jetty jndi (margaretha) |
| 187 | - fixed unrecognized application/json (margaretha) |
| 188 | - fixed and updated velocity template (margaretha) |
| 189 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 190 | # version 0.59.9 |
| 191 | |
margaretha | c9f1dfa | 2018-02-07 17:50:33 +0100 | [diff] [blame] | 192 | 19/01/2018 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 193 | - restructured basic authentication (margaretha) |
| 194 | - fixed AuthenticationException to include authentication scheme (margaretha) |
| 195 | - fixed rewrite redundancy in collection rewrite (margaretha) |
| 196 | - fixed foundry rewrite for constituents (margaretha) |
| 197 | - introduced authentication methods, schemes and tokens (margaretha) |
| 198 | - implemented collection rewrite with multiple licenses (margaretha) |
| 199 | - fixed foundry rewrite for korap span without wrap node (margaretha) |
| 200 | - implemented list user group (margaretha) |
| 201 | - implemented delete VC task (margaretha) |
| 202 | - implemented create user-group, subscribe to user-groups, unsubscribe to user-groups tasks(margaretha) |
| 203 | - fixed handling JSON mapping exception for missing enums (margaretha) |
margaretha | b874ef5 | 2018-01-23 20:26:31 +0100 | [diff] [blame] | 204 | - implemented list VC task (margaretha) |
margaretha | 4566792 | 2018-01-25 21:23:03 +0100 | [diff] [blame] | 205 | - added KoralQuery in VC lists (margaretha) |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 206 | - implemented edit VC task (margaretha) |
| 207 | - implemented publish VC task (margaretha) |
margaretha | b874ef5 | 2018-01-23 20:26:31 +0100 | [diff] [blame] | 208 | - implemented share VC task (margaretha) |
| 209 | - implemented list only owned VC task (margaretha) |
| 210 | - implemented list VC access task (margaretha) |
| 211 | - implemented search VC by id task (margaretha) |
| 212 | - implemented delete VC access (margaretha) |
| 213 | - implemented search for project VC (margaretha) |
| 214 | - added search VC related tests (margaretha) |
| 215 | - removed PredefinedUserGroup.ALL and related codes (margaretha) |
| 216 | - implemented search for published VC (margaretha) |
| 217 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 218 | # version 0.59.8 |
| 219 | |
margaretha | c9f1dfa | 2018-02-07 17:50:33 +0100 | [diff] [blame] | 220 | 21/09/2017 |
margaretha | ec247dd | 2018-06-12 21:55:46 +0200 | [diff] [blame] | 221 | - restructured statistics service (margaretha) |
| 222 | - removed deprecated loader codes and tests (margaretha) |
| 223 | - removed old Spring java configurations (margaretha) |
| 224 | - implemented entity classes for the new database (margaretha) |
| 225 | - added MySQL codes regarding VC and for testing (margaretha) |
| 226 | - added dao methods regarding VC (margaretha) |
| 227 | - added similar SQL codes (to MySQL) for sqlite (margaretha) |
| 228 | - added dao methods regarding user groups (margaretha) |
| 229 | - restructured web-service codes into controller and logic/business-service(margaretha) |
| 230 | - implemented user role and privilege, and added tests (margaretha) |
| 231 | - prepared test suite using new database (margaretha) |
| 232 | - implemented UserGroupDao and tests (margaretha) |
| 233 | - fixed missing exceptions in JsonUtils (margaretha) |
| 234 | - restructured web filters and authentication codes (margaretha) |
| 235 | - implemented create/store VC (margaretha) |
| 236 | - fixed collection rewrite bug regarding availability with operation or (margaretha) |
margaretha | c9f1dfa | 2018-02-07 17:50:33 +0100 | [diff] [blame] | 237 | |
margaretha | 7f5071f | 2018-08-14 15:58:51 +0200 | [diff] [blame] | 238 | # version 0.59.7 |
| 239 | |
margaretha | c9f1dfa | 2018-02-07 17:50:33 +0100 | [diff] [blame] | 240 | 13/10/2016 |
| 241 | - MOD: updated search to use new siglen (diewald) |
| 242 | - MOD: fixed matchinfo retrieval in light service (diewald) |
| 243 | |
| 244 | 05/05/2015 |
| 245 | - ADD: rest test suite for user service (hanl) |
| 246 | - MOD: setup parameter modification (hanl) |
| 247 | - ADD: oauth2 client unique constraint (hanl) |