We follow the CalVer (https://calver.org/) versioning scheme: YY.MINOR.MICRO.
- Fix SSO error handling for inactive users
- Institution support email for selective SSO
- Institution Rework Project - CAS Part
- Add retries for OSF API requests during institution SSO
- Add an extra check for username and its shib attribute during SSO
- Trim config for instn cas clients
- Sync with public charts
- Added the institution SSO integration guide
- Synchronized the repo copy of institutions-auth.xsl against helm charts
- Updated local configs for fakeCAS IdP with institution osftype0
- Migrated okstate SSO from CAS to SAML
- Updated readme accordingly
Update help/support links
Add branded login logo image for CoP Preprints
Support shared SSO between FSU and MagLab
Support institution affiliation via ORCiD SSO
Update CAS PAT to never expire
Enable CAS health endpoint for K8s liveness probing
Institution selective SSO - CAS Part
CAS accessibility fixes
Update copyright year automatically
A third logger upgrade fro CAS 6.2.x
Another logger upgrade for CAS 6.2.x
Upgrade logger for CAS 6.2.x
Support OSF institution deactivation/reactivation
Customize pac4j stop web flow view
Fix dependencies to support CAS client using SAML validation
Fix login URLs for cas-pac4j institution SSO
Fix OAuth callback authorize redirect URL and consent approval callback URL
Fix root controller relative redirection
newCAS Production Server Release
Fix invalid access type for OAuth /authorize
Fix personal access token revokation
Test server institution SSO update
OAuth callback authorize service update
Front-end fixes improvements
OSF CAS feature-complete release
- OSF CAS as an OAuth 2.0 server
- OSF personal access token, developer apps and oauth scopes
- Authentication failure throttling
- Customized institution logout
- Institution department
- Overlay template and core library upgrade
OSF CAS third release with web flow updates, institution SSO, and FE rework
- Login and logout web flow fixes and improvements
- Fully functional institution SSO, BE and FE
- FE rework and UI / UX improvements
Extra features
- Institution SSO migration
- TOS consent check
- SonarQube integraiton
OSF CAS second release with FE re-design, BE improvements and DevOps updates
-
FE
- Refactored styles to be consistent with both OSF and oldCAS
- Rewrote how authentication delegation info is retrieved and used
- Improved the behavior of inline error messages in login forms
- Added new / Rewrote existing authentication exception pages
- Improved UI / UX in responsive mode and on various screen dimensions
-
BE
- Implemented a dedicated OSF CAS login context and a couple of pre-login check actions to support ORCiD login and institution SSO
- Implemented ORCiD sign-up auto-redirect for OSF
-
DevOps
- Updated tomcat server to work with its enclosing Shibboleth server
- Separated staging / production and local configurations
- Rewrote cas.properties into a helm charts template
- Improved build / run / reload for local development
-
Other
- Replaced Apereo branding with COS / OSF in multiple places
OSF CAS first release with basic authentication features for OSF
- Username and password login
- Username and verification key login
- Two-factor authenticaion
- Long-term authentication
- ORCiD login
Technical details
- JSON service registry
- JPA ticket regisrtry with PostgreSQL
- JPA PostgreSQL authentication backend
- Customized login web flow and authentication including:
- OSF credential and metadata populator
- OSF non-interactive authentication action
- OSF PostgreSQL authentication handler
- Pac4j authentication delegation
- Two-factor authentication using time-based one-time password
- Customized authentication exception handling
- Customized user interface