What's new

Updated to OpenSAML 3.3.0. The Plugin has been refactored into two plugins delivered as a OBR-package. The separated SAMLWrapper-plugin encapsulates dependencies into a separate OSGI-bundle.


Upgrade consideration

If you are using JIRA 6.x with the JIRA Service Desk Plugin, the Customer Portal User authentication is limited. See Limitations with JIRA 6 Service Desk for more details.

We recommend not to update from 0.14.7 in this case

Changelog

0.15.7

Released on 16 October 2017 for Bamboo

Changes specific to Bamboo

  • Fixed wrong configuration page error message for Bamboo 6.2.1
  • Fixed bug that prevented accessing of the General Permissions page

0.15.6

Released on 31 August 2017 for JIRA

Changes specific to JIRA

  • Fixed wrong configuration page error message for JIRA 7.4.3

0.15.5

Released on 14 August 2017 for JIRA, Confluence, Bitbucket and Bamboo

  • IdP-signature was not recognized when using REDIRECT-binding
  • Messages intended for TRACE-level were shown with DEBUG-logging enabled
  • Improved error messages when IdP-metadata is invalid
  • ProtocolBinding-tag can be omitted in authentication request
  • Fixed intermittent authentication-dialogs in mobile view

Changes specific to Bamboo

  • This is the first release of SAML SingleSignOn for Bamboo

Changes specific to Bitbucket

  • None

Changes specific to JIRA

  • None

Changes specific to Confluence

  • None

0.15.4

Released on 19 July 2017 for JIRA, Confluence

  • Added possibility to redirect to the login page if a Request Header is present

  • Encryption/Signing-Certificates can be included in the SP metadata by adding the parameter signing or encryption to the Metadata URL (e.g. https://jira.example.com/plugins/servlet/samlsso/metadata?signing&encryption)

  • Fixed issues when clicking links in MS Office documents

  • Fixed an issue that users from LDAP directories were not assigned to groups from directory "Default group membership" during first login

  • Fixed an issue that the Base URL check failed with a message like "abc.com does not start with abc.com/"

  • Hided SAML Single Sign On Administration Link for non-system-administrators

  • Added appropriate error message when accessing the configuration page without System Administrator-privileges

Changes specific to JIRA

  • Override logout URL now also works for the mobile view in JIRA 7

Changes specific to Confluence

  • None

0.15.3

Released on 23 June 2017 for JIRA, Confluence and Bitbucket

  • Support for signing SAML-requests
  • Support for encrypted SAML-responses
  • IdP can now be selected by request header values
  • Support for SAML Redirect-Binding
  • Option to include NameID Format in SAML Request

  • Changing the Base URL is reflected in the Plugin's URLs immediately
  • Configuration is stored per version- downgrading the Plugin reactivates the old configuration

  • Enhanced RelayState-validation to avoid open redirects

  • The REST-endpoint for loading IdP metadata now requires administrator privileges

  • Minor configuration page improvements

Changes specific to JIRA

  • Service Desk Customer authentication no longer requires installing a custom Authenticator class
  • Fixed 404-errors when redirecting to /secure/Dashboard.jspa

Changes specific to Confluence

  • None

Changes specific to Bitbucket

  • This is the first release of SAML SingleSignOn for Bitbucket