SAML Single Sign On (Jira SSO) Jira SAML SSO

Version history

Watch

CollapsedExpanded6.0.10Jira Server 8.3.0 - 9.0.02022-06-14Bugfix release
Download
Version 6.0.10 • Released 2022-06-14 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.10 comes with the User Sync 2.4.5 release, see 2.4.x release notes.
- Added option to make XML Schema validation optional for SAML responses.
- Added missing cache directive for POST binding form.
- Updated libraries.
CollapsedExpanded6.0.10Jira Data Center 8.3.0 - 9.0.02022-06-14Bugfix release
Download•
•
Version 6.0.10 • Released 2022-06-14 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.10 comes with the User Sync 2.4.5 release, see 2.4.x release notes.
- Added option to make XML Schema validation optional for SAML responses.
- Added missing cache directive for POST binding form.
- Updated libraries.
CollapsedExpanded6.0.9Jira Server 8.3.0 - 8.22.42022-05-19Bugfix release
Download
Version 6.0.9 • Released 2022-05-19 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.9 comes with the User Sync 2.4.4 release, see 2.4.x release notes.
- Fixed issue with Single Logout where the logout URL was not used when using redirect binding.
CollapsedExpanded6.0.9Jira Data Center 8.3.0 - 8.22.42022-05-19Bugfix release
Download•
•
Version 6.0.9 • Released 2022-05-19 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.9 comes with the User Sync 2.4.4 release, see 2.4.x release notes.
- Fixed issue with Single Logout where the logout URL was not used when using redirect binding.
CollapsedExpanded6.0.6Jira Server 8.3.0 - 8.22.42022-04-13Bugfix release
Download
Version 6.0.6 • Released 2022-04-13 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.6 comes with the User Sync 2.4.2 release, see 2.4.x release notes.
- Fixed possible XSS vulnerability on old browsers by injecting Javascript code in the redirectTo parameter.
- Fixed: exported support information could have contained sensitive information from the configured JVM arguments. The JVM arguments are no longer included in the support information.
- Fixed: enabling the option "Use Base URL from Request" caused wrong SAML request.
CollapsedExpanded6.0.6Jira Data Center 8.3.0 - 8.22.42022-04-13Bugfix release
Download•
•
Version 6.0.6 • Released 2022-04-13 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 6.0.6 comes with the User Sync 2.4.2 release, see 2.4.x release notes.
- Fixed possible XSS vulnerability on old browsers by injecting Javascript code in the redirectTo parameter.
- Fixed: exported support information could have contained sensitive information from the configured JVM arguments. The JVM arguments are no longer included in the support information.
- Fixed: enabling the option "Use Base URL from Request" caused wrong SAML request.
CollapsedExpanded6.0.4Jira Server 8.3.0 - 8.22.42022-03-24Support for OpenID Connect (beta), improved SAML implementation
Download
Version 6.0.4 • Released 2022-03-24 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.4:
- Fixed: Use SHA-256 instead of SHA-1 as digest algorithm.
- Fixed: NameIDPolicy was missing in AuthnRequest.
- Fixed email preset in attribute mapping for Google Cloud Identity (G Suite).
New in 6.0.3:
- SAML Single Sign-On 6.0.3 comes with the User Sync 2.4.1 release, which fixes an issue with the Azure full sync, see 2.4.x release notes.
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Several improvements and bugfixes, see our release notes.
CollapsedExpanded6.0.4Jira Data Center 8.3.0 - 8.22.42022-03-24Support for OpenID Connect (beta), improved SAML implementation
Download•
•
Version 6.0.4 • Released 2022-03-24 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.4:
- Fixed: Use SHA-256 instead of SHA-1 as digest algorithm.
- Fixed: NameIDPolicy was missing in AuthnRequest.
- Fixed email preset in attribute mapping for Google Cloud Identity (G Suite).
New in 6.0.3:
- SAML Single Sign-On 6.0.3 comes with the User Sync 2.4.1 release, which fixes an issue with the Azure full sync, see 2.4.x release notes.
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Several improvements and bugfixes, see our release notes.
CollapsedExpanded6.0.3Jira Server 8.3.0 - 8.22.42022-02-25Support for OpenID Connect (beta), improved SAML implementation
Download
Version 6.0.3 • Released 2022-02-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.3:
- SAML Single Sign-On 6.0.3 comes with the User Sync 2.4.1 release, which fixes an issue with the Azure full sync, see 2.4.x release notes.
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Serveral improvements and bugfixes, see our release notes.
CollapsedExpanded6.0.3Jira Data Center 8.3.0 - 8.22.42022-02-25Support for OpenID Connect (beta), improved SAML implementation
Download•
•
Version 6.0.3 • Released 2022-02-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.3:
- SAML Single Sign-On 6.0.3 comes with the User Sync 2.4.1 release, which fixes an issue with the Azure full sync, see 2.4.x release notes.
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Serveral improvements and bugfixes, see our release notes.
CollapsedExpanded6.0.2Jira Server 8.3.0 - 8.22.42022-02-21Support for OpenID Connect (beta), improved SAML implementation
Download
Version 6.0.2 • Released 2022-02-21 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Serveral improvements and bugfixes, see our release notes.
CollapsedExpanded6.0.2Jira Data Center 8.3.0 - 8.22.42022-02-21Support for OpenID Connect (beta), improved SAML implementation
Download•
•
Version 6.0.2 • Released 2022-02-21 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
New in 6.0.2:
- Compatibility update for Jira 8.22.x.
- Fixed generating metadata for Service Provider (organizations section).
New in 6.0.1:
- Fixed login issue when IdP sends multiple attributes with the same key.
- Added new preset "Use UPN and convert guest users" for the email attribute in the Azure connector.
New in 6.0.0:
- SAML Single Sign-On 6.0.0 comes with the User Sync 2.4.0 release, see 2.4.x release notes.
- Support for OpenID Connect (beta)
- Replaced OpenSAML with OneLogin SAML/Java
- Removed separate SAMLWrapper-plugin
- Serveral improvements and bugfixes, see our release notes.
CollapsedExpanded5.2.1Jira Server 8.5.0 - 8.20.72021-10-25Bugfix release
Download
Version 5.2.1 • Released 2021-10-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
SAML Single Sign-On 5.2.1 comes with the User Sync 2.2.1 release, see 2.2.x release notes.
CollapsedExpanded5.2.1Jira Data Center 8.5.0 - 8.20.72021-10-25Bugfix release
Download•
•
Version 5.2.1 • Released 2021-10-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
SAML Single Sign-On 5.2.1 comes with the User Sync 2.2.1 release, see 2.2.x release notes.
CollapsedExpanded5.2.0Jira Server 8.5.0 - 8.20.72021-10-13Support for Communardo User Profiles for Jira
Download
Version 5.2.0 • Released 2021-10-13 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- Support for Communardo User Profiles for Jira: When Communardo User Profiles is installed, attributes configured in Communardo User Profiles can be mapped in User Sync connectors and SAML Just-in-Time Provisioning.
- SAML Single Sign-On 5.2.0 comes with the User Sync 2.2.0 release, see 2.2.x release notes.
- Some minor bugfixes.
CollapsedExpanded5.2.0Jira Data Center 8.5.0 - 8.20.72021-10-13Support for Communardo User Profiles for Jira
Download•
•
Version 5.2.0 • Released 2021-10-13 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- Support for Communardo User Profiles for Jira: When Communardo User Profiles is installed, attributes configured in Communardo User Profiles can be mapped in User Sync connectors and SAML Just-in-Time Provisioning.
- SAML Single Sign-On 5.2.0 comes with the User Sync 2.2.0 release, see 2.2.x release notes.
- Some minor bugfixes.
CollapsedExpanded5.1.2Jira Server 8.5.0 - 8.20.72021-09-14Improved Groovy transformations and better Crowd support
Download
Version 5.1.2 • Released 2021-09-14 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- Improved Groovy attribute transformations. If you're using custom Groovy based attribute transformations, please check that user attributes are assigned properly after upgrading. There may be edge cases where adjusting the Groovy code is beneficial or required. If unsure, please open a support ticket and attach your configuration before upgrading so we can validate it.
- When using Crowd directories backed by LDAP, triggering the LDAP update in Crowd uses a builtin REST endpoint, so our Crowd plugin is no longer required.
- SAML Single Sign-On 5.1.2 comes with the User Sync 2.1.1 bugfix release, see 2.1.x release notes.
CollapsedExpanded5.1.2Jira Data Center 8.5.0 - 8.20.72021-09-14Improved Groovy transformations and better Crowd support
Download•
•
Version 5.1.2 • Released 2021-09-14 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- Improved Groovy attribute transformations. If you're using custom Groovy based attribute transformations, please check that user attributes are assigned properly after upgrading. There may be edge cases where adjusting the Groovy code is beneficial or required. If unsure, please open a support ticket and attach your configuration before upgrading so we can validate it.
- When using Crowd directories backed by LDAP, triggering the LDAP update in Crowd uses a builtin REST endpoint, so our Crowd plugin is no longer required.
- SAML Single Sign-On 5.1.2 comes with the User Sync 2.1.1 bugfix release, see 2.1.x release notes.
CollapsedExpanded5.0.7Jira Server 8.3.0 - 8.20.72021-09-06Bugfix release
Download
Version 5.0.7 • Released 2021-09-06 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 5.0.7 comes with the User Sync 2.0.5 bugfix release, see 2.0.x release notes.
CollapsedExpanded5.0.7Jira Data Center 8.3.0 - 8.20.72021-09-06Bugfix release
Download•
•
Version 5.0.7 • Released 2021-09-06 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
- SAML Single Sign-On 5.0.7 comes with the User Sync 2.0.5 bugfix release, see 2.0.x release notes.
CollapsedExpanded5.0.6Jira Server 8.3.0 - 8.20.72021-08-12Improved Security Update
Download
Version 5.0.6 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded5.0.6Jira Data Center 8.3.0 - 8.20.72021-08-12Improved Security Update
Download•
•
Version 5.0.6 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded4.0.14Jira Server 7.13.0 - 8.17.02021-10-25Bugfix release
Download
Version 4.0.14 • Released 2021-10-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
This update includes the bugfix release of User Sync 1.9.7, which fixed the synchronization with OneLogin.
CollapsedExpanded4.0.14Jira Data Center 7.13.0 - 8.17.02021-10-25Bugfix release
Download•
•
Version 4.0.14 • Released 2021-10-25 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
This update includes the bugfix release of User Sync 1.9.7, which fixed the synchronization with OneLogin.
CollapsedExpanded4.0.13Jira Server 7.13.0 - 8.17.02021-08-12Improved Security Update
Download
Version 4.0.13 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded4.0.13Jira Data Center 7.13.0 - 8.17.02021-08-12Improved Security Update
Download•
•
Version 4.0.13 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded3.6.7Jira Server 7.3.0 - 8.14.12021-08-12Improved Security Update
Download
Version 3.6.7 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded3.6.7Jira Data Center 7.3.0 - 8.14.12021-08-12Improved Security Update
Download•
•
Version 3.6.7 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On
CollapsedExpanded2.0.14Jira Server 7.0.4 - 7.9.22021-08-12Improved Security Update
Download
Version 2.0.14 • Released 2021-08-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial
Sorry! - We have to ask you to update (again!)

On July 29th, we released a "fix version" for a critical security vulnerability, however, due to researcher feedback & additional follow-up, we realized another attack vector.

This version (released August 12th) addresses this additional scenario. We expected this to be the final & complete fix.

To allow upgrades to a fix version without major upgrades in the Atlassian application, all public versions in the marketplace include the fix to the security vulnerability.

Please reference the version history for the most relevant version for your instance. SAML Single Sign On (Jira SSO) Jira SAML SSO - Version history

Please refer to this wiki page for the latest status: 2021-07-29 Authentication Bypass: Network Attacker Can Login to Users’ Accounts when Usernames are Known - SAML Single Sign On