Important Update Effective February 1, 2024!
Due to recent changes in Jira and Confluence, we've made the tough decision to discontinue the OpenID Connect (OIDC)/OAuth app and no longer provide new versions for the newest Jira/Confluence releases as of January 31, 2024.
This is due to some necessary components no longer shipping with Jira/Confluence, which would require some extensive rewrites of the OIDC App.
0.15.x release notes
What's new
Updated to OpenSAML 3.3.0. The Plugin has been refactored into two plugins delivered as a OBR-package. The separated SAMLWrapper-plugin encapsulates dependencies into a separate OSGI-bundle.
Upgrade consideration
If you are using JIRA 6.x with the JIRA Service Desk Plugin, the Customer Portal User authentication is limited. See Limitations with JIRA 6 Service Desk for more details.
We recommend not to update from 0.14.7 in this case
Changelog
0.15.7
Released on 16 October 2017 for Bamboo
Changes specific to Bamboo
- Fixed wrong configuration page error message for Bamboo 6.2.1
- Fixed bug that prevented accessing of the General Permissions page
0.15.6
Released on 31 August 2017 for JIRA
Changes specific to JIRA
- Fixed wrong configuration page error message for JIRA 7.4.3
0.15.5
Released on 14 August 2017 for JIRA, Confluence, Bitbucket and Bamboo
- IdP-signature was not recognized when using REDIRECT-binding
- Messages intended for TRACE-level were shown with DEBUG-logging enabled
- Improved error messages when IdP-metadata is invalid
- ProtocolBinding-tag can be omitted in authentication request
- Fixed intermittent authentication-dialogs in mobile view
Changes specific to Bamboo
- This is the first release of SAML SingleSignOn for Bamboo
Changes specific to Bitbucket
- None
Changes specific to JIRA
- None
Changes specific to Confluence
- None
0.15.4
Released on 19 July 2017 for JIRA, Confluence
Added possibility to redirect to the login page if a Request Header is present
Encryption/Signing-Certificates can be included in the SP metadata by adding the parameter signing or encryption to the Metadata URL (e.g. https://jira.example.com/plugins/servlet/samlsso/metadata?signing&encryption)
Fixed issues when clicking links in MS Office documents
Fixed an issue that users from LDAP directories were not assigned to groups from directory "Default group membership" during first login
Fixed an issue that the Base URL check failed with a message like "abc.com does not start with abc.com/"
Hided SAML Single Sign On Administration Link for non-system-administrators
- Added appropriate error message when accessing the configuration page without System Administrator-privileges
Changes specific to JIRA
- Override logout URL now also works for the mobile view in JIRA 7
Changes specific to Confluence
- None
0.15.3
Released on 23 June 2017 for JIRA, Confluence and Bitbucket
- Support for signing SAML-requests
- Support for encrypted SAML-responses
- IdP can now be selected by request header values
- Support for SAML Redirect-Binding
Option to include NameID Format in SAML Request
- Changing the Base URL is reflected in the Plugin's URLs immediately
Configuration is stored per version- downgrading the Plugin reactivates the old configuration
Enhanced RelayState-validation to avoid open redirects
The REST-endpoint for loading IdP metadata now requires administrator privileges
Minor configuration page improvements
Changes specific to JIRA
- Service Desk Customer authentication no longer requires installing a custom Authenticator class
- Fixed 404-errors when redirecting to /secure/Dashboard.jspa
Changes specific to Confluence
- None
Changes specific to Bitbucket
- This is the first release of SAML SingleSignOn for Bitbucket