- Bugfix for x509 CacheException
Version history
4.10.4Jira Server 8.22.0 - 9.15.22024-05-10Bugfix for x509 CacheException Version 4.10.4 • Released 2024-05-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial4.10.4Jira Data Center 8.22.0 - 9.15.22024-05-10Bugfix for x509 CacheException Version 4.10.4 • Released 2024-05-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Bugfix for x509 CacheException
4.10.3Jira Server 8.22.0 - 9.15.22024-05-05Customizable SAML fail page text Version 4.10.3 • Released 2024-05-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- New Feature: Customizable SAML fail page text
4.10.3Jira Data Center 8.22.0 - 9.15.22024-05-05Customizable SAML fail page text Version 4.10.3 • Released 2024-05-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- New Feature: Customizable SAML fail page text
4.10.0Jira Server 8.22.0 - 9.15.22024-04-16SAML Encrypted assertions and Test mode Version 4.10.0 • Released 2024-04-16 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- New Feature: SAML encrypted assertions
- New Feature: SAML test mode for easier troubleshooting configuration
- New Feature: Download button for Service Provider certificate
- Bugfix: Prevent NPE when Service Provider certificate required. When selecting Signed or Encrypt Assertions, SAML will now automatically generate a certificate if one does not exist
4.10.0Jira Data Center 8.22.0 - 9.15.22024-04-16SAML Encrypted assertions and Test mode Version 4.10.0 • Released 2024-04-16 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- New Feature: SAML encrypted assertions
- New Feature: SAML test mode for easier troubleshooting configuration
- New Feature: Download button for Service Provider certificate
- Bugfix: Prevent NPE when Service Provider certificate required. When selecting Signed or Encrypt Assertions, SAML will now automatically generate a certificate if one does not exist
4.9.21Jira Server 8.22.0 - 9.15.22024-04-01Security fix for EasySSO configuration screens Version 4.9.21 • Released 2024-04-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Make EasySSO configuration read only for Administrators without the System Administrator global permission
4.9.21Jira Data Center 8.22.0 - 9.15.22024-04-01Security fix for EasySSO configuration screens Version 4.9.21 • Released 2024-04-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Make EasySSO configuration read only for Administrators without the System Administrator global permission
4.9.20Jira Server 8.22.0 - 9.14.12024-03-17Bug fix for reflected XSS attack Version 4.9.20 • Released 2024-03-17 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Bug fix for reflected XSS attack
4.9.20Jira Data Center 8.22.0 - 9.14.12024-03-17Bug fix for reflected XSS attack Version 4.9.20 • Released 2024-03-17 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Bug fix for reflected XSS attack
4.9.15.2Jira Server 8.22.0 - 9.14.12024-01-23Bugfix for secure introspection in velocity templates Version 4.9.15.2 • Released 2024-01-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Bugfix for secure introspection in velocity templates
4.9.15.2Jira Data Center 8.22.0 - 9.14.12024-01-23Bugfix for secure introspection in velocity templates Version 4.9.15.2 • Released 2024-01-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Bugfix for secure introspection in velocity templates
4.9.15.1Jira Server 8.22.0 - 9.12.82023-11-30Changes to handling kerberos updates, Remove SAML admin Test SSO button Version 4.9.15.1 • Released 2023-11-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialRelease notes
- Add warning for NTLM when using incorrect Java 11, Java 17 runtime configuration
- Reload kerberos config after properties have changed
- Update dependencies
- Remove Test SSO button from SAML admin page
4.9.15.1Jira Data Center 8.22.0 - 9.12.82023-11-30Changes to handling kerberos updates, Remove SAML admin Test SSO button Version 4.9.15.1 • Released 2023-11-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialRelease notes
- Add warning for NTLM when using incorrect Java 11, Java 17 runtime configuration
- Reload kerberos config after properties have changed
- Update dependencies
- Remove Test SSO button from SAML admin page
4.9.11Jira Server 8.22.0 - 9.11.32023-09-12Add warning for incorrect Java 11, Java 17 runtime configuration Version 4.9.11 • Released 2023-09-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add warning for Kerberos when using incorrect Java 11, Java 17 runtime configuration
4.9.11Jira Data Center 8.22.0 - 9.11.32023-09-12Add warning for incorrect Java 11, Java 17 runtime configuration Version 4.9.11 • Released 2023-09-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add warning for Kerberos when using incorrect Java 11, Java 17 runtime configuration
4.9.10Jira Server 8.22.0 - 9.11.32023-08-29Signed Requests for SAML Redirect binding and support for SessionNotOnOrAfter Version 4.9.10 • Released 2023-08-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add SAML support for SessionNotOnOrAfter attribute
- Add SAML request signing on login for redirect binding
- Add SAML request signing on logout for redirect binding
- Add SAML support for redirect binding Single Log Out (SLO)
4.9.10Jira Data Center 8.22.0 - 9.11.32023-08-29Signed Requests for SAML Redirect binding and support for SessionNotOnOrAfter Version 4.9.10 • Released 2023-08-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add SAML support for SessionNotOnOrAfter attribute
- Add SAML request signing on login for redirect binding
- Add SAML request signing on logout for redirect binding
- Add SAML support for redirect binding Single Log Out (SLO)
4.9.5Jira Server 8.22.0 - 9.10.22023-07-10Signed Requests for SAML POST - Single Log Out Version 4.9.5 • Released 2023-07-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add logging for session info not sent on logout
- Fix metadata for SLO based on admin binding type
- Fix mismatched SPNameQualifier on login and logout
- Fix jespa upload problem with debug enabled
4.9.5Jira Data Center 8.22.0 - 9.10.22023-07-10Signed Requests for SAML POST - Single Log Out Version 4.9.5 • Released 2023-07-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Add logging for session info not sent on logout
- Fix metadata for SLO based on admin binding type
- Fix mismatched SPNameQualifier on login and logout
- Fix jespa upload problem with debug enabled
4.9.1Jira Server 8.22.0 - 9.9.22023-06-12Signed Requests for SAML POST Version 4.9.1 • Released 2023-06-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIn this release
- Signed Requests for SAML Login POST bindings
- Signed Requests for SAML Logout POST bindings
- Update security dependencies
- Bug fixes
4.9.1Jira Data Center 8.22.0 - 9.9.22023-06-12Signed Requests for SAML POST Version 4.9.1 • Released 2023-06-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIn this release
- Signed Requests for SAML Login POST bindings
- Signed Requests for SAML Logout POST bindings
- Update security dependencies
- Bug fixes
4.8.13Jira Server 8.22.0 - 9.9.22023-03-13Fix redirect of JSM external users, outdated dependencies and SAML errors Version 4.8.13 • Released 2023-03-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix an issue where JSM external users, authenticating via SAML were redirected from the
- Update outdated dependencies
- Improve error messages for SAML Signature validation
4.8.13Jira Data Center 8.22.0 - 9.9.22023-03-13Fix for JSM external users, update dependencies and improve error messages Version 4.8.13 • Released 2023-03-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix an issue where JSM external users, authenticating via SAML were redirected from the
- Update outdated dependencies
- Improve error messages for SAML Signature validation
4.8.9Jira Server 8.22.0 - 9.6.02023-03-07Jespa IOPLEX v2 compatibility improvements and bug fixes Version 4.8.9 • Released 2023-03-07 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improved error handling
- Improved Jespa IOPLEX v2 compatibility
4.8.9Jira Data Center 8.22.0 - 9.6.02023-03-07Jespa IOPLEX v2 compatibility improvements and bug fixes Version 4.8.9 • Released 2023-03-07 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improved error handling
- Improved Jespa IOPLEX v2 compatibility
4.8.2Jira Data Center 8.22.0 - 9.6.02022-12-29Small improvements Version 4.8.2 • Released 2022-12-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- UI changes for "blocklist" and "allowlist"
- IOPLEX Jespa library version displayed in EasySSO/NTLM/About dialog (if re-uploaded)
- Jira-specific event introduced required from Jira 8.22+
4.8.2Jira Server 8.22.0 - 9.6.02022-12-29Small improvements Version 4.8.2 • Released 2022-12-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- UI changes for "blocklist" and "allowlist"
- IOPLEX Jespa library version displayed in EasySSO/NTLM/About dialog (if re-uploaded)
- Jira-specific event introduced required from Jira 8.22+
4.7.5Jira Server 8.20.8 - 8.20.302023-03-14Fix redirect of JSM external users, outdated dependencies and SAML errors Version 4.7.5 • Released 2023-03-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix an issue where JSM external users, authenticating via SAML were redirected to the portal page
- Update outdated dependencies
- Improve error messages for SAML Signature validation
4.7.5Jira Data Center 8.20.8 - 8.20.302023-03-14Fix redirect of JSM external users, outdated dependencies and SAML errors Version 4.7.5 • Released 2023-03-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix an issue where JSM external users, authenticating via SAML were redirected from the portal page
- Update outdated dependencies
- Improve error messages for SAML Signature validation
4.7.4Jira Data Center 8.20.8 - 8.20.302023-01-01Backward compatible 4.8.2 release for Jira LTS 8.20.8+ Version 4.7.4 • Released 2023-01-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- UI changes for "blocklist" and "allowlist"
- IOPLEX Jespa library version displayed in EasySSO/NTLM/About dialog (if re-uploaded)
- Jira-specific event introduced required on Jira LTS 8.20.x from Jira 8.20.8 onwards
4.7.4Jira Server 8.20.8 - 8.20.302023-01-01Backward compatible 4.8.2 release for Jira LTS 8.20.8+ Version 4.7.4 • Released 2023-01-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- UI changes for "blocklist" and "allowlist"
- IOPLEX Jespa library version displayed in EasySSO/NTLM/About dialog (if re-uploaded)
- Jira-specific event introduced required on Jira LTS 8.20.x from Jira 8.20.8 onwards
4.7.3Jira Server 8.15.0 - 9.5.12022-11-21Improve error messages for NTLM configuration Version 4.7.3 • Released 2022-11-21 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improve error messages for NTLM configuration
- Update dependencies
4.7.3Jira Data Center 8.15.0 - 9.5.12022-11-21Improve error messages for NTLM configuration Version 4.7.3 • Released 2022-11-21 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improve error messages for NTLM configuration
- Update dependencies
4.6.7Jira Server 8.15.0 - 9.4.212022-06-30Update dependencies Version 4.6.7 • Released 2022-06-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Update dependencies
4.6.7Jira Data Center 8.15.0 - 9.4.212022-06-30Update dependencies Version 4.6.7 • Released 2022-06-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Update dependencies
4.6.5Jira Server 8.15.0 - 9.0.02022-05-29Update dependencies Version 4.6.5 • Released 2022-05-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Update dependencies
4.6.5Jira Data Center 8.15.0 - 9.0.02022-05-29Update dependencies Version 4.6.5 • Released 2022-05-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Update dependencies
4.5.17Jira Server 7.3.7 - 8.22.02023-07-13Compatibility with Jespa 2.0.0+ Version 4.5.17 • Released 2023-07-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 2.0.0 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.17Jira Data Center 7.3.7 - 8.22.02023-07-13Compatibility with Jespa 2.0.0+ Version 4.5.17 • Released 2023-07-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 2.0.0 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.15Jira Server 7.0.0 - 8.22.02023-03-14Fix JSM external users being redirected to portal Version 4.5.15 • Released 2023-03-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixes an issue where JSM external users are redirected to the portal page after successful authentication
4.5.15Jira Data Center 7.0.0 - 8.22.02023-03-14Fix JSM external users being redirected to portal Version 4.5.15 • Released 2023-03-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixes an issue where JSM external users are redirected to the portal page after successful authentication
4.5.14Jira Server 7.0.0 - 8.22.12022-05-12Compatibility with Jespa 1.2.11 Version 4.5.14 • Released 2022-05-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 1.2.11 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.14Jira Data Center 7.0.0 - 8.22.12022-05-12Compatibility with Jespa 1.2.11 Version 4.5.14 • Released 2022-05-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 1.2.11 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.14.1Jira Server 8.22.2 - 8.22.62022-05-12Compatibility with Jespa 1.2.11 Version 4.5.14.1 • Released 2022-05-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 1.2.11 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.14.1Jira Data Center 8.22.2 - 8.22.62022-05-12Compatibility with Jespa 1.2.11 Version 4.5.14.1 • Released 2022-05-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 1.2.11 introduced some incompatible changes. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa.
4.5.11.3Jira Server 8.22.2 - 8.22.62022-04-22Bugfix to address Jira v8.22.2 removing previously included package Version 4.5.11.3 • Released 2022-04-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialBugfix:
- Add fix for Jira v8.22.2 removing previously included package - related to incident https://status.techtime.co.nz/incidents/09n9g0k2xmf3
4.5.11.3Jira Data Center 8.22.2 - 8.22.62022-04-22Bugfix to address Jira v8.22.2 removing previously included package Version 4.5.11.3 • Released 2022-04-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialBugfix:
- Add fix for Jira v8.22.2 removing previously included package - related to incident https://status.techtime.co.nz/incidents/09n9g0k2xmf3
4.5.11Jira Server 7.0.0 - 8.22.12021-12-29SAML Single Log Out (SLO) fixes, metadata and other small bug fixes Version 4.5.11 • Released 2021-12-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added support for NameID formats(transient, persistent … ) when performing SAML Single Log Out (SLO)
- Fixed a bug in how logout binding types and URLs were identified from the UI settings (Redirect vs. POST)
- Removed session check from metadata URL
- Added a message in UI to indicate that the SAML metadata is only available to IP addresses not filtered out by the IP filtering
- Updated the license warning message
4.5.11Jira Data Center 7.0.0 - 8.22.12021-12-29SAML Single Log Out (SLO) fixes, metadata and other small bug fixes Version 4.5.11 • Released 2021-12-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added support for NameID formats(transient, persistent … ) when performing SAML Single Log Out (SLO)
- Fixed a bug in how logout binding types and URLs were identified from the UI settings (Redirect vs. POST)
- Removed session check from metadata URL
- Added a message in UI to indicate that the SAML metadata is only available to IP addresses not filtered out by the IP filtering
- Updated the license warning message
4.5.9Jira Server 7.0.0 - 8.21.12021-08-05Bugfix Release Version 4.5.9 • Released 2021-08-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix a bug where incorrect SAML binding type is selected on Logout
- Fix a bug in Jira, where EasySSO would redirect to quick search page, after login on logout page
4.5.9Jira Data Center 7.0.0 - 8.21.12021-08-05Bugfix Release Version 4.5.9 • Released 2021-08-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix a bug where incorrect SAML binding type is selected on Logout
- Fix a bug in Jira, where EasySSO would redirect to quick search page, after login on logout page
4.5.5Jira Server 7.0.0 - 8.18.22021-04-28Accessibility Improvements Version 4.5.5 • Released 2021-04-28 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improved screen reader support on NTLM/Kerberos, SAML, X509 & Headers configuration pages
- Success and error messages are now announced to screen reader when displayed
- All configuration links now accessible by keyboard navigation
- Improved description and help messages
Bugfixes:
- Added a log warning when a non-admin user attempts to update groups for system-admin groups.
4.5.5Jira Data Center 7.0.0 - 8.18.22021-04-28Accessibility Improvements Version 4.5.5 • Released 2021-04-28 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Improved screen reader support on NTLM/Kerberos, SAML, X509 & Headers configuration pages
- Success and error messages are now announced to screen reader when displayed
- All configuration links now accessible by keyboard navigation
- Improved description and help messages
Bugfixes:
- Added a log warning when a non-admin user attempts to update groups for system-admin groups.
4.4.14Jira Server 7.0.0 - 8.16.12021-03-22Bugfix: SAML SLO and Kerberos Computer Account name Version 4.4.14 • Released 2021-03-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for bug where SAML SLO will not complete with certain configurations
- Fix for bug where incorrectly cased computer account name used for Kerberos - causing Message Stream Modified errors
4.4.14Jira Data Center 7.0.0 - 8.16.12021-03-22Bugfix: SAML SLO and Kerberos Computer Account name Version 4.4.14 • Released 2021-03-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for bug where SAML SLO will not complete with certain configurations
- Fix for bug where incorrectly cased computer account name used for Kerberos - causing Message Stream Modified errors
4.4.10Jira Server 7.0.0 - 8.15.12021-02-09Fix for Kerberos computer account name bug Version 4.4.10 • Released 2021-02-09 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for an issue where the computer account name is entered in the format username$@domain.com results in "message stream modified" exception.
4.4.10Jira Data Center 7.0.0 - 8.15.12021-02-09Fix for Kerberos computer account name bug Version 4.4.10 • Released 2021-02-09 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for an issue where the computer account name is entered in the format username$@domain.com results in "message stream modified" exception.
4.4.9Jira Server 7.0.0 - 8.15.12021-02-04Bugfix Release Version 4.4.9 • Released 2021-02-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for SAML button misalignment
4.4.9Jira Data Center 7.0.0 - 8.15.12021-02-04Bugfix Release Version 4.4.9 • Released 2021-02-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for SAML button misalignment
4.4.6Jira Server 7.0.0 - 8.15.12020-12-23Bug fix for JIT user provisioning in SAML with default groups Version 4.4.6 • Released 2020-12-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial4.4.6Jira Data Center 7.0.0 - 8.15.12020-12-23Bug fix for JIT user provisioning in SAML with default groups Version 4.4.6 • Released 2020-12-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial4.4.5Jira Server 7.0.0 - 8.14.12020-12-06JIT User Provisioning for SAML, Kerberos Strong Encryption Version 4.4.5 • Released 2020-12-06 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNew Features:
- Support Kerberos with Strong Encryption Types
- JIT User Provisioning and syncing from SAML IdP
- Full support for read-only mode (Jira, Confluence, Bitbucket)
Bugfixes:
- Fix for popup when leaving admin form
- Fix for SAML failure page rendering variable name
- Fix for Computer account screen text-overflow
- Fix for SAML failing on internal forwards
- Fix for session invalidation error when response committed early
4.4.5Jira Data Center 7.0.0 - 8.14.12020-12-06JIT User Provisioning for SAML, Kerberos Strong Encryption Version 4.4.5 • Released 2020-12-06 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNew Features:
- Support Kerberos with Strong Encryption Types
- JIT User Provisioning and syncing from SAML IdP
- Full support for read-only mode (Jira, Confluence, Bitbucket)
Bugfixes:
- Fix for popup when leaving admin form
- Fix for SAML failure page rendering variable name
- Fix for Computer account screen text-overflow
- Fix for SAML failing on internal forwards
- Fix for session invalidation error when response committed early
4.3.12Jira Server 7.0.0 - 8.14.12020-11-08Bugfix Release Version 4.3.12 • Released 2020-11-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for advanced settings not displayed due to caching bug
- Fix for app not correctly transitioning to fully enabled state
4.3.12Jira Data Center 7.0.0 - 8.14.12020-11-08Bugfix Release Version 4.3.12 • Released 2020-11-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for advanced settings not displayed due to caching bug
- Fix for app not correctly transitioning to fully enabled state
4.3.10Jira Server 7.0.0 - 8.13.62020-10-28Bugfix Release Version 4.3.10 • Released 2020-10-28 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for a bug where raw Kerberos tokens not parsed correctly
- Fix for a bug in SAML where email is not parsed correctly on subsequent logins.
- Fix for a bug where the SAML login button is not displayed in some scenarios in JSD
4.3.10Jira Data Center 7.0.0 - 8.13.62020-10-28Bugfix Release Version 4.3.10 • Released 2020-10-28 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for a bug where raw Kerberos tokens not parsed correctly
- Fix for a bug in SAML where email is not parsed correctly on subsequent logins.
- Fix for a bug where the SAML login button is not displayed in some scenarios in JSD
4.3.7Jira Server 7.0.0 - 8.13.62020-06-07Footer, SAML Groups, improvements and bugfixes Version 4.3.7 • Released 2020-06-07 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- We added a consistent footer across all screens with links to How to Get Logs article, FAQ and a button to email our 24x7 support
- Map group names send by the SAML IdP to the pre-existing application groups, to add the user provisioned on successful login added to these automatically
- Where available use whitelist to control the ability for the SAML IdP to redirect to URLs other than the baseURL
- EasySSO for Bitbucket adds a configuration option in EasySSO/NTLM/Advanced Configuration screen to display the HTTP(S) clone URLs before SSH ones in the default "clone" dialog
- Updates to EasySSO SAML with Azure AD documentation
- Listed in Azure AD Enterprise Applications gallery: EasySSO for Jira, EasySSO for Confluence, EasySSO for Bitbucket, EasySSO for Bamboo
- Improved Jira Mobile app compatibility
- HTTP Headers authenticator can be applied to all URLs now
- Extended logging for the SAML Management endpoint
- Fixes for the SAML IdP metadata import from a URL
- Small usability fixes
- Bugfixes
4.3.7Jira Data Center 7.0.0 - 8.13.62020-06-07Footer, SAML Groups, improvements and bugfixes Version 4.3.7 • Released 2020-06-07 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- We added a consistent footer across all screens with links to How to Get Logs article, FAQ and a button to email our 24x7 support
- Map group names send by the SAML IdP to the pre-existing application groups, to add the user provisioned on successful login added to these automatically
- Where available use whitelist to control the ability for the SAML IdP to redirect to URLs other than the baseURL
- EasySSO for Bitbucket adds a configuration option in EasySSO/NTLM/Advanced Configuration screen to display the HTTP(S) clone URLs before SSH ones in the default "clone" dialog
- Updates to EasySSO SAML with Azure AD documentation
- Listed in Azure AD Enterprise Applications gallery: EasySSO for Jira, EasySSO for Confluence, EasySSO for Bitbucket, EasySSO for Bamboo
- Improved Jira Mobile app compatibility
- HTTP Headers authenticator can be applied to all URLs now
- Extended logging for the SAML Management endpoint
- Fixes for the SAML IdP metadata import from a URL
- Small usability fixes
- Bugfixes
4.2.16Jira Server 7.0.0 - 8.9.12020-04-24Regex username parsing. Documentation update. Bug fixes. Version 4.2.16 • Released 2020-04-24 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added regex parse and replace capability to X.509 authenticator to handle complex conversions. See updated EASYSSO WITH X.509 - CONFIGURATION page for details.
- Restored regex parse and replace capability in SAML. See PARSING USERNAMES FUNCTIONALITY WHEN USING SAML page for details.
- Updated HOW TO CONFIGURE EASYSSO WITH NTLM/KERERBOS instructions
- Updated I HAVE NTLM WORKING, HOW DO I ENABLE KERBEROS SUPPORT? page
4.2.16Jira Data Center 7.0.0 - 8.9.12020-04-24Regex username parsing. Documentation update. Bug fixes. Version 4.2.16 • Released 2020-04-24 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added regex parse and replace capability to X.509 authenticator to handle complex conversions. See updated EASYSSO WITH X.509 - CONFIGURATION page for details.
- Restored regex parse and replace capability in SAML. See PARSING USERNAMES FUNCTIONALITY WHEN USING SAML page for details.
- Updated HOW TO CONFIGURE EASYSSO WITH NTLM/KERERBOS instructions
- Updated I HAVE NTLM WORKING, HOW DO I ENABLE KERBEROS SUPPORT? page
4.2.15.1Jira Server 7.0.0 - 8.8.12020-04-14Re-cut 4.2.15: Security fix. Java 11 compatibility. Bug fixes. Improvements. Version 4.2.15.1 • Released 2020-04-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed XSRF vulnerability in admin screens of EasySSO
- Fixed After upgrade to Confluence 7.3 and/or Java 11, EasySSO stops working. It's no longer necessary to do ADDITIONAL CONFIGURATION FOR JAVA 11
- Fixed intermittent failures on upgrade of EasySSO due to incorrect implementation of cluster locking
- Added forgotten password and captcha URLs to the default excludes for SAML
- Included REST URLs previously ignored by NTLM/Kerberos/X.509/HTTP Headers authenticators that a human likely to trigger (e.g. search) to perform SSO if a session previously established has expired.
4.2.15.1Jira Data Center 7.0.0 - 8.8.12020-04-14Re-cut 4.2.15: Security fix. Java 11 compatibility. Bug fixes. Improvements. Version 4.2.15.1 • Released 2020-04-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed XSRF vulnerability in admin screens of EasySSO
- Fixed After upgrade to Confluence 7.3 and/or Java 11, EasySSO stops working. It's no longer necessary to do ADDITIONAL CONFIGURATION FOR JAVA 11
- Fixed intermittent failures on upgrade of EasySSO due to incorrect implementation of cluster locking
- Added forgotten password and captcha URLs to the default excludes for SAML
- Included REST URLs previously ignored by NTLM/Kerberos/X.509/HTTP Headers authenticators that a human likely to trigger (e.g. search) to perform SSO if a session previously established has expired.
4.2.15Jira Server 7.0.0 - 8.8.12020-04-13Security fix. Java 11 compatibility. Bug fixes. Improvements. Version 4.2.15 • Released 2020-04-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed XSRF vulnerability in admin screens of EasySSO
- Fixed After upgrade to Confluence 7.3 and/or Java 11, EasySSO stops working. It's no longer necessary to do ADDITIONAL CONFIGURATION FOR JAVA 11
- Fixed intermittent failures on upgrade of EasySSO due to incorrect implementation of cluster locking
- Added forgotten password and captcha URLs to the default excludes for SAML
- Included REST URLs previously ignored by NTLM/Kerberos/X.509/HTTP Headers authenticators that a human likely to trigger (e.g. search) to perform SSO if a session previously established has expired.
4.2.15Jira Data Center 7.0.0 - 8.8.12020-04-13Security fix. Java 11 compatibility. Bug fixes. Improvements. Version 4.2.15 • Released 2020-04-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed XSRF vulnerability in admin screens of EasySSO
- Fixed After upgrade to Confluence 7.3 and/or Java 11, EasySSO stops working. It's no longer necessary to do ADDITIONAL CONFIGURATION FOR JAVA 11
- Fixed intermittent failures on upgrade of EasySSO due to incorrect implementation of cluster locking
- Added forgotten password and captcha URLs to the default excludes for SAML
- Included REST URLs previously ignored by NTLM/Kerberos/X.509/HTTP Headers authenticators that a human likely to trigger (e.g. search) to perform SSO if a session previously established has expired.
4.2.14Jira Server 7.0.0 - 8.8.12020-01-27Bug fixes Version 4.2.14 • Released 2020-01-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialFOR Jira 8.5+ installations with Java 11 please read: Additional Configuration for Java 11
4.2.14Jira Data Center 7.0.0 - 8.8.12020-01-27Bug fixes Version 4.2.14 • Released 2020-01-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialFOR Jira 8.5+ installations with Java 11 please read: Additional Configuration for Java 11
4.2.13Jira Server 7.0.0 - 8.6.12019-11-23Bug fixes Version 4.2.13 • Released 2019-11-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed IPv6 parsing issue in IP Filter component ("an IPv6 address should contain 8 shorts")
- Fixed logout behaviour with forced SAML - now all applications arrive to the "default page" e.g. "dashboard"
- Fixed logout behaviour with SAML Single Logout (SLO) going to the fail page - now all applications go to the login page after successful SLO logout.
4.2.13Jira Data Center 7.0.0 - 8.6.12019-11-23Bug fixes Version 4.2.13 • Released 2019-11-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed IPv6 parsing issue in IP Filter component ("an IPv6 address should contain 8 shorts")
- Fixed logout behaviour with forced SAML - now all applications arrive to the "default page" e.g. "dashboard"
- Fixed logout behaviour with SAML Single Logout (SLO) going to the fail page - now all applications go to the login page after successful SLO logout.
4.2.11Jira Server 7.0.0 - 8.5.142019-10-25Bug fixes Version 4.2.11 • Released 2019-10-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- second part of the "fail page" fix - if we do arrive to the fail page while already logged in (e.g. from the default login page) we will immediately redirect to the the application root/dashboard.
- tiny cosmetic update to NTLM/Kerberos authenticator UI for Jira 8.5.x
4.2.11Jira Data Center 7.0.0 - 8.5.142019-10-25Bug fixes Version 4.2.11 • Released 2019-10-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- second part of the "fail page" fix - if we do arrive to the fail page while already logged in (e.g. from the default login page) we will immediately redirect to the the application root/dashboard.
- tiny cosmetic update to NTLM/Kerberos authenticator UI for Jira 8.5.x
4.2.10Jira Server 7.0.0 - 8.5.142019-10-23Bug fixes Version 4.2.10 • Released 2019-10-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed issue with the "failed to log you in" page ("fail page") being displayed again when the user after landing on the page initially is subsequently successful with authentication either via SAML SSO or via direct login
- Fixed SAML configuration UI issues with Redirect binding URL being displayed as the default option after upgrade from 4.1.x or earlier and overwriting the previously configured and functional POST binding URL on save
4.2.10Jira Data Center 7.0.0 - 8.5.142019-10-23Bug fixes Version 4.2.10 • Released 2019-10-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed issue with the "failed to log you in" page ("fail page") being displayed again when the user after landing on the page initially is subsequently successful with authentication either via SAML SSO or via direct login
- Fixed SAML configuration UI issues with Redirect binding URL being displayed as the default option after upgrade from 4.1.x or earlier and overwriting the previously configured and functional POST binding URL on save
4.2.9Jira Server 7.0.0 - 8.5.142019-10-14Bug fixes Version 4.2.9 • Released 2019-10-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- improved security in HTTP Headers authenticator.
- increased maximum waiting time for a response to a SAML request
- fix for possible infinite loop on logout with SAML authenticator
- changes to some internal UI elements
4.2.9Jira Data Center 7.0.0 - 8.5.142019-10-14Bug fixes. Version 4.2.9 • Released 2019-10-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- improved security in HTTP Headers authenticator.
- increased maximum waiting time for a response to a SAML request
- fix for possible infinite loop on logout with SAML authenticator
- changes to some internal UI elements
4.2.8Jira Data Center 7.0.0 - 8.5.142019-08-30Bug fixes for SAML authenticator Version 4.2.8 • Released 2019-08-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- fixed issues with some IdPs not sending Destination for unsigned responses
- fixed logic with SAML vs application username checks for mixed-case usernames
4.2.8Jira Server 7.0.0 - 8.5.142019-08-30Bug fixes for SAML authenticator Version 4.2.8 • Released 2019-08-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- fixed issues with some IdPs not sending Destination for unsigned responses
- fixed logic with SAML vs application username checks for mixed-case usernames
4.2.7Jira Data Center 7.0.0 - 8.5.142019-08-23Bugfix release Version 4.2.7 • Released 2019-08-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIssues with Jira 7.13 when uploading IOPLEX Jespa license before IOPLEX Jespa library .zip
4.2.7Jira Server 7.0.0 - 8.5.142019-08-23Bugfix release Version 4.2.7 • Released 2019-08-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIssues with Jira 7.13 when uploading IOPLEX Jespa license before IOPLEX Jespa library .zip
4.2.6Jira Data Center 7.0.0 - 8.5.142019-08-15Bug fixes Version 4.2.6 • Released 2019-08-15 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where after logging in via SAML users would not be redirecting the previous page they were trying to access.
- Changed the default SAML configuration slightly.
4.2.6Jira Server 7.0.0 - 8.5.142019-08-15Bug fixes Version 4.2.6 • Released 2019-08-15 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where after logging in via SAML users would not be redirecting the previous page they were trying to access.
- Changed the default SAML configuration slightly.
4.2.5.1Jira Data Center 7.0.0 - 8.3.52019-08-12Datacenter initial release. SAML Single Logout Version 4.2.5.1 • Released 2019-08-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.4.1.17.5Jira Server 7.0.0 - 8.3.52019-08-05Support for Keycloak metadata, Time Skew default, URLs with anchors. Bugfixes. Version 4.1.17.5 • Released 2019-08-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fix for redirects to URLs with anchors/fragments/hashtags after successful SAML login.
- Fix for sending password back to client in NTLM/Kerberos computer account dialog
- Fix for IOPLEX Jespa license corruption - CR/LF insertion on some Windows systems
- Support for Keycloak metadata containing multiple entities
- Time Skew parameter value in SAML configuration now defaults to 5 seconds
4.1.16Jira Server 7.0.0 - 8.3.52019-07-08Fix for WebSudo mode when SAML Login Button is enabled Version 4.1.16 • Released 2019-07-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- previous release enabled SAML Login Button in WebSudo (Secure Administrator Session) mode - we removed it again for now
4.1.15.1Jira Server 7.0.0 - 8.2.62019-06-26Bugfixes. 2FA support for Bitbucket. Application Links OAuth excludes. Version 4.1.15.1 • Released 2019-06-26 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- 2FA support with SecureLogin 2FA for Bitbucket
- OAuth-related excludes for SAML when building Application Links
- Troubleshooting screen "Delete EasySSO folder" dialog bug fixes
- Re-applied additional default excludes for SAML from 4.1.12.4
- Re-applied NPE fixes in SAML from 4.1.12.4
- Re-applied fix from 4.1.12.4 for forced SAML endless loop in Bitbucket when "SAML on login/logout" was unchecked
4.1.14Jira Server 7.0.0 - 8.2.62019-05-27Bug fixes Version 4.1.14 • Released 2019-05-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Allow clients authenticating via OAuth to not be blocked by SAML.
- Fixed bug with SAML RelayState parameter.
4.1.12Jira Server 7.0.0 - 8.2.62019-02-26Fixed bugs in the configuration screen Version 4.1.12 • Released 2019-02-26 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed UTF-8 encoding bug with the SAML configuration
- Fixed javascript initialization errors
4.1.9Jira Server 7.0.0 - 8.0.32019-02-14Jira 8.0 compatiblity Version 4.1.9 • Released 2019-02-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Compatibility with Jira 8.0
- Fixed bugs with IOPLEX Jespa logging and configuration
4.1.7.2Jira Server 7.0.0 - 7.13.182018-12-30Bot Killer fix and fix for SAML RelayState redirects Version 4.1.7.2 • Released 2018-12-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- bot-killer fix: for products that have Atlassian Bot Killer plugin this will prevent session established via EasySSO from being invalidated every hour
- correct redirect after SAML re-authentication when session expires e.g. overnight
- correct redirect to the original URL after several SAML re-authentications e.g. unsuccessful ones followed by a successful one
4.1.5.4Jira Server 7.0.0 - 7.13.182018-12-12SAML, X.509, headers-based authenticators in EasySSO for Bitbucket. Bug fixes. Version 4.1.5.4 • Released 2018-12-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- a common release to bring numbering in line with version that introduces SAML, X.509 and headers-based authenticators to EasySSO for Bitbucket
- fixed an issue in the EasySSO common library: after un-install and re-install the app wouldn't enable until restart of the application node
- fixed an issue with logging introduced in 4.1.5
4.1.5Jira Server 7.0.0 - 7.13.182018-11-29Username manipulations/parsing in SAML. Bugfixes. Version 4.1.5 • Released 2018-11-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Username manipulations/parsing for SAML - ability to parse a username acceptable to the application from the attribute/claim value passed by the IdP using regular expressions e.g. extract the local-name from the full local-name@domain email address.
- Added explicit excludes URIs for SAML to allow Application Links building when in forced SAML mode
- XSRF tokens fix in SAML Config screen in Confluence
4.1.4Jira Server 7.0.0 - 7.12.32018-10-31Fixed a bug with storing a SAML configuration when on Data Center Version 4.1.4 • Released 2018-10-31 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed an issue affecting Data Center instances where the SAML configuration was serialising objects in a non cluster-safe fashion.
4.1.3Jira Server 7.0.0 - 7.12.32018-10-18Fixed a bug where SAML redirect would remove query parameters from URL Version 4.1.3 • Released 2018-10-18 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where after redirecting to a SAML identity provider the query parameters in the URL to the Jira page would be lost, potentially resulting in landing on unexpected or broken pages in Jira.
4.1.2Jira Server 7.0.0 - 7.12.32018-09-14SAML enhancements and bug-fixes Version 4.1.2 • Released 2018-09-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- SAML Attributes tab: configurable attribute/claim names - you can configure mapping completely on EasySSO side
- SAML Admin tab: Ability to disable stopsso/runsso request parameters
- SAML Admin tab: REST endpoint to disable/enable SAML, protected by a dedicated IP Filter
- SAML Look and Feel tab: ability protect login and logout pages with SAML SSO, optionally excluding JSD login page
- fix for SAML Login Button display conditions
- saving SAML config in encoded form in the database to accomodate runtime localization of SAML Login button and redirect screens and non-UTF8 database collations
4.0.2Jira Server 7.0.0 - 7.12.32018-08-30Simplified installation experience Version 4.0.2 • Released 2018-08-30 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIt is now possible to configure different authentication protocols (NTLM vs SAML, etc) completely independently of one another. You are no longer required to complete parts of the NTLM configuration just to get to SAML. This goes for all supported authentication types: NTLM/Kerberos, SAML, Headers and X.509 certificates.
3.4.2Jira Server 7.0.0 - 7.11.22018-08-13Bug fixes Version 3.4.2 • Released 2018-08-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- fixed redirect in SAML for absolute URLs, as was happening with expired sessions on Jira Software boards
3.4.1Jira Server 7.0.0 - 7.11.22018-07-10SAML bug fix Version 3.4.1 • Released 2018-07-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed logical error in SAML clock skew
3.4.0.3Jira Server 7.0.0 - 7.10.22018-06-25Troubleshooting screen and SAML improvements. Bug fixes. Version 3.4.0.3 • Released 2018-06-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Troubleshooting screen improvements: log file sizes, delete and truncate file ability
- SAML clock skew setting has been added
- SAML redirect text localizations settings has been enhanced - you can configure different messages in multiple languages
- SAML configuration dialog bug fixes for "provision user on successful login"
- SAML exclude URIs setting added
- Bug fixed for /download/* URIs default exclusion - attachments started triggering NTLM/Kerberos authentication since version 3.2.2
3.3.0Jira Server 7.0.0 - 7.10.22018-05-24Improvements in SAML and troubleshooting. AWS ELB proxies support. Bug fixes. Version 3.3.0 • Released 2018-05-24 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialSAML
- Login button L&F and redirect screen text are configurable
- Login button available on Jira Service Desk login screen
- metadata link exposed in the GUI for easier copy/paste
- New configuration interface - a dedicated button is now available from the main EasySSO screen.
- Support for multiple signing certificates
- Proper handling of the original URL with SAML, go to specific page after authentication
- Use RelayState with IdP initiated SAML SSO (page relative to the application context)
- Specify none or multiple groups for the auto-provisioned users
- Correct choosing of an active admin user when auto-provisioning of users from SAML
Troubleshooting
- Jespa.log rotation from GUI
- Ability to invalidate the current session by clicking /plugins/servlet/easysso/invalidate
General
- Support for proxies that set x-forwarded-port & x-forwarded-for (e.g. AWS ELB) to calculate jespa-connection-id automatic.
- Removed a bug that identified invalid/expired sessions in JIRA erroneously
3.2.4.1Jira Server 7.0.0 - 7.9.22018-04-18Updated logo images Version 3.2.4.1 • Released 2018-04-18 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.3.2.4Jira Server 7.0.0 - 7.9.22018-03-18Added support for PingID in EasySSO SAML authenticator Version 3.2.4 • Released 2018-03-18 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added support for PingID in EasySSO SAML authenticator
3.2.3Jira Server 7.0.0 - 7.8.42018-03-09Fix for SAML vulnerability. SAML Login button. Version 3.2.3 • Released 2018-03-09 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- A critical vulnerability was internally identified in SAML response processing. The issue has been fixed and verified by an independent Information Security testing party.
- Kerberos, NTLM, X.509, custom-headers authenticators were not affected.
- SAML Login button (i.e. optional SAML login)
- SAML RelayState fixes for ADFS support
- fixes in how redirect to form login is performed at various SAML processing points
- support for Azure-AD
- support for IdP selected authentication method (e.g. IWA in ADFS if available)
- Internationalisation fixes
- Improved logging
3.1.6Jira Server 7.0.0 - 7.8.42017-07-26Update to Crowd SSO cross-compatibility Version 3.1.6 • Released 2017-07-26 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- EasySSO now more transparently supports running in parallel with Atlassian Crowd SSO, without the need for special configuration.
3.1.5Jira Server 7.0.0 - 7.4.62017-06-29Changed user agent filtering default settings Version 3.1.5 • Released 2017-06-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- We have changed the default user agent filtering to make it easier to set up application links without having to do any special configuration in EasySSO.
3.1.4Jira Server 7.0.0 - 7.3.92017-05-23User session will no longer time out after a long period of inactivity Version 3.1.4 • Released 2017-05-23 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.3.1.3Jira Server 7.0.0 - 7.3.92017-05-01Fixed a bug with URL exclusion Version 3.1.3 • Released 2017-05-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where some URL paths which should be excluded from SSO were not being ignored as intended.
3.1.2Jira Server 7.0.0 - 7.3.92017-04-20Fixed a bug with Jepsa license state Version 3.1.2 • Released 2017-04-20 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where uploading a new Jespa trial license on top of an existing expired could be result in EasySSO still reporting that the license was expired.
3.1.1Jira Server 7.0.0 - 7.3.92017-04-10Minor bug fixes Version 3.1.1 • Released 2017-04-10 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed a bug where IP filtering would not properly work when a specific port of an IP address was specified in the request header.
3.1.0Jira Server 7.0.0 - 7.3.92017-04-01Compatibility with Jespa 1.2.x Version 3.1.0 • Released 2017-04-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialIOPLEX Jespa library 1.2.x introduced some incompatible changes to code and encryption of licenses. This fix addresses this incompatibility and makes EasySSO support both old and new versions of Jespa
3.0.3Jira Server 7.0.0 - 7.3.92016-12-18Internal changes Version 3.0.3 • Released 2016-12-18 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialThis release contains no new features, but it includes some core changes to request filtering.
REST endpoints are not filtered more selectively. Specifically Jira Issue Collectors are not "protected" by SSO.
3.0.2Jira Server 7.0.0 - 7.2.152016-12-07Fixed some bugs Version 3.0.2 • Released 2016-12-07 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- We've fixed a problem that could cause the add-on to fail to enable if the jespa.log location was set incorrectly.
- Made some changes to the IP address filter to properly support several fringe use-cases.
3.0.1Jira Server 7.0.0 - 7.2.152016-11-01Fix for 'XSRF security token missing' issue with Internet Explorer Version 3.0.1 • Released 2016-11-01 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.3.0.0.2Jira Server 7.0.0 - 7.2.152016-10-19Multiple SSO integrations Version 3.0.0.2 • Released 2016-10-19 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Multi-factor authentication via "2-Factor Auth Secure Login" by Syracom Consulting AG (see their blogpost from AtlasCamp 2016)
- OpenID (Twitter, Facebook, Google Apps) as fallback to Kerberos/NTLM via OpenID authentication by Pawel Niewiadomski
- Native support for X.509 client certificate authentication
- Support for external authentication (e.g. in front-facing reverse proxies) via header-based integration
- Support for custom authenticator add-ons via attribute-based integration
- Bug in computer account name validation fixed
2.6.0.3Jira Server 7.0.0 - 7.2.152016-10-20Major UI update - making SSO truly easy Version 2.6.0.3 • Released 2016-10-20 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- EasySSO Configuration UI has been completely redesigned to be less busy: the main screen now contains the minimum required fields, a progress tracker has been introduced, any values that could have reasonable defaults have them now
- Parameter values validation has been added - less chances to make mistakes
- Additional configuration parameters, IP Filtering, User-Agent Filtering and Advanced Filtering have been moved under "Advanced" button
- "Test Connection" button has been added to enable testing the connection to the domain controller
- SetComputerPassword.vbs script is now available for download directly from the UI
- “Troubleshooting” button allows you to download the logs and inspect them to check if anything has gone wrong
- “About” button opens a dialog that allows you to review the status of your licenses, including the IOPLEX Jespa one, as well as the mode in which EasySSO is operating
- Offline installation instructions have been added - for installing without no internet connection
2.5.0Jira Server 6.4.6 - 7.2.152016-09-24Cookie opt-out enhancements, chained reverse proxies. Version 2.5.0 • Released 2016-09-24 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- User-Agent Filtering: config screen now supports parsing arbitrary UA strings on demand
- UserAgentUtils library has been updated to version 1.20
- Cookie Opt-Out: Admins can enable SSO opt-out via cookie in Advanced Filtering tab, users can opt-out in their User Profile settings, anonymous users can opt-out if enabled (to support regular non-domain users)
- new IP Filtering tab in EasySSO config
- ability to specify client IP addresses whitelist and blacklist as single IP, IP ranges, in CIDR, and host-based notation
- ability to specify regex-based whitelist and blacklist for client IP addresses
- the old "Included IP Addresses" regex client IP address filter configuration will be migrated to the new "IP Regex Whitelist" automatically
- Support for reverse proxies, local, remote, and multiple chained reverse proxies
- Reduced log chattiness when EasySSO trial license or evaluation license has expired
- Fix for uploading fresh ioplex.zip over already expired trial one
- bug fixes and improvement
2.4.2.2Jira Server 7.0.0 - 7.2.152016-07-14Bugfix release. User Agent test parsing. Opt-out from SSO. Version 2.4.2.2 • Released 2016-07-14 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- User-Agent Filtering screen now supports parsing arbitrary UA strings - to simplify writing filtering rules
- Admins can enable SSO opt-out in Advanced Filtering tab
- Users can opt-out from SSO in their User Profile settings
- Fix for uploading fresh ioplex .zip over already expired trial one
- On initial upload of IOPLEX Jespa library the message displayed in the GUI and the internal state was incorrect after changes in 2.4.2.1
2.4.2.1Jira Server 7.0.0 - 7.1.102016-06-27User Agent test parsing. Opt-out from SSO. Bugfixes Version 2.4.2.1 • Released 2016-06-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- User-Agent Filtering screen now supports parsing arbitrary UA strings - to simplify writing filtering rules
- Admins can enable SSO opt-out in Advanced Filtering tab
- Users can opt-out from SSO in their User Profile settings
- Fix for uploading fresh ioplex .zip over already expired trial one
2.3.4Jira Server 7.0.0 - 7.1.102016-04-05Bugfix release Version 2.3.4 • Released 2016-04-05 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fresh installations failing - resolved
2.3.3Jira Server 7.0.0 - 7.1.102016-03-31Support for local reverse proxies in IP filtering Version 2.3.3 • Released 2016-03-31 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.2.3.2Jira Server 7.0.0 - 7.1.102016-03-29Bugfixes in shared IP Filtering code. Version 2.3.2 • Released 2016-03-29 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.2.3.1Jira Server 7.0.0 - 7.1.102016-03-28Backward compatibility for "Included IP Addresses" Version 2.3.1 • Released 2016-03-28 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial"Included IP Addresses" field, a client IP address filter based on Regular Expression has been migrated to the new "IP Filtering" tab as "IP Regex Whitelist" and enhanced to support a list of expressions, one per line.
This fix makes it backward compatible with the old field and will make the old pre-existing value to appear in the new field and continue to work after upgrade.
2.3.0Jira Server 7.0.0 - 7.1.102016-03-25Data Center compatibility. IP Filtering improvements Version 2.3.0 • Released 2016-03-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- compatibility with Data Center
- new IP Filtering tab
- added ability to specify client IP addresses whitelist and blocklist, supports single IP, ranges, CIDR and host-based notation
- added ability to specify client IP addresses Regex-based whitelist and blocklist
2.2.2Jira Server 7.0.0 - 7.1.102016-02-20Bugfix and Stability Improvements Version 2.2.2 • Released 2016-02-20 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- debug logging for Kerberos
- NPE on Kerberos server credentials expiry
- fixes in KDC DNS discovery
- additional escaping for values in the config screen
- TechTime Plugins section in Add-Ons admin screen
2.2.1.1Jira Server 7.0.0 - 7.0.112015-12-27Jira ServiceDesk End-User support reinstated Version 2.2.1.1 • Released 2015-12-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Jira ServiceDesk End-User support reinstated
- better SocketException/ClientAbortException squashing
2.2.0Jira Server 7.0.0 - 7.0.112015-11-15Improvements and bugfixes Version 2.2.0 • Released 2015-11-15 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- fixed issue with excessive Jespa library re-initialisation on startup when big number of other add-ons is present
- fixed issue with Kerberos pre-auth and timing out of credentials
2.1.0Jira Server 7.0.0 - 7.0.112015-11-04Kerberos authentication support. Version 2.1.0 • Released 2015-11-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Support for Kerberos authentication has been added
- now works on Mac OS X and Linux (if joined to a domain)
- as always works on Windows - but better than ever!
1.1.5Jira Server 7.0.0 - 7.0.112015-11-04Blacklisting based on user-agent rules Version 1.1.5 • Released 2015-11-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- optimisations
- blacklisting is now available based on user-agent rules
1.1.4Jira Server 7.0.0 - 7.0.112015-11-04Jira 7 compatibility. User-Agent filtering. Localizations Version 1.1.4 • Released 2015-11-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Jira 7 compatible
- Ability to whitelist and blacklist User-Agents based on parsed rules and regular expressions
- German, French, Basilian Portuguese and Russian localizations
1.0.37Jira Server 6.1.3 - 6.4.142016-02-20Bugfix and Stability Improvements for 6.1.x - 6.4.x Version 1.0.37 • Released 2016-02-20 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- debug logging for Kerberos
- NPE on Kerberos server credentials expiry
- fixes in KDC DNS discovery
- additional escaping for values in the config screen
- TechTime Plugins section in Add-Ons admin screen
1.0.36.3Jira Server 6.1.3 - 6.4.142015-12-27Jira ServiceDesk End-User support reinstated Version 1.0.36.3 • Released 2015-12-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.1.0.36.2Jira Server 6.1.3 - 6.4.142015-12-06Kerberos functionality backport for Jira 6.x; Prepare for upgrade to 7.x Version 1.0.36.2 • Released 2015-12-06 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- re-upload of incorrectly uploaded 1.0.36
- Fixes for incompatibility issues on upgrade to Jira 7.x - if you are planning to upgrade to Jira 7.x, please upgrade to this version first.
- Support for Kerberos authentication has been added as a backport from our Jira 7.x branch
- now works on Mac OS X and Linux (if joined to a domain)
- as always works on Windows - but better than ever!
- German, French, Basilian Portuguese and Russian localizations
- Ability to whitelist and blacklist User-Agents based on parsed rules and regular expressions
1.0.34.3Jira Server 6.1.3 - 6.4.142015-12-25Minor logging improvements Version 1.0.34.3 • Released 2015-12-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- ClientAbortException/SocketExceptions is now no logged at ERROR level
1.0.34.2Jira Server 6.1.3 - 6.4.142015-11-13Bugfix release Version 1.0.34.2 • Released 2015-11-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialAddressed an issue that may occur during startup if a big number of other add-ons (including system ones) is present.
This used to result in excessive re-initialization of IOPLEX Jespa library on startup and has been identified as the root cause for "jcifs.smb.SmbException: All pipe instances are busy" exception observed in the logs later during operation.
1.0.34Jira Server 6.1.3 - 6.4.142015-08-22Log4j logging and other small improvements Version 1.0.34 • Released 2015-08-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Added ability to direct IOPLEX Jespa log into the regular Confluence log via Log4J, using category "jespa" and level "DEBUG"
- "Get Started" now leads to "How to Install?" documentation page on the website
- Added anti-caching parameters in add-on config screens
- Added fade-outs for messages in config screens
1.0.30Jira Server 6.1.3 - 6.4.142015-06-27Bugfixes and improvements. Version 1.0.30 • Released 2015-06-27 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialFix for state transition on expired EasySSO licenseAdditional excludes supported via "excludes" in additional parameters
1.0.29Jira Server 6.1.3 - 6.4.142015-06-04Improved hardware loadbalancers support Version 1.0.29 • Released 2015-06-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialAs reported by users some hardware loadbalancers react badly to NTLM challenges on certain type of requests (HTTP HEAD). This version lets such requests pass through without doing NTLM challenge to be handled by the core application.
1.0.28Jira Server 6.1.3 - 6.4.142015-04-25Japanese translation. Changes for better NLS support Version 1.0.28 • Released 2015-04-25 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.1.0.27Jira Server 6.1.3 - 6.3.152015-03-13Fix to make compatible with Microsoft patch MS15-027/KB3002657 Version 1.0.27 • Released 2015-03-13 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialMicrosoft patch MS15-027/KB3002657 breaks "localhost.netbios.name" feature of IOPlex Jespa. In EasySSO this was set via instance identifier parameter in UI, which now has been removed.
With this functionality it was previously possible to use the same computer account in different web applications - this is no longer supported, please create distinct computer accounts for your applications.
Please also review the note on the IOPlex website.
1.0.26Jira Server 6.1.3 - 6.3.152015-02-16Bugfixes. Logging cleanup. Version 1.0.26 • Released 2015-02-16 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.1.0.24Jira Server 6.1.3 - 6.3.152015-02-08Bugfixes and enhancements - AD site and additional parameters, extra config step Version 1.0.24 • Released 2015-02-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed an issue affecting configurations with delegated authentication directories but no Copy on Login enabled - all user information would get overwritten with only a username
- Added "AD site" parameter to be able to restrict Domain Controllers based on the information in DNS
- Added additional parameters to pass extra config options to Jespa library (as per Jespa Operators Manual)
- Introduced an extra step before Fully Configured - users have encountered that authentication would be attempted before all Jespa-related parameters have been set by the admin
1.0.23Jira Server 6.1.3 - 6.3.152014-12-12Handle Jira Service Desk internal forwards better Version 1.0.23 • Released 2014-12-12 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialWhen used with Jira Service Desk version 2, previous versions of EasySSO despite working would log a long stacktrace when an internal forward for End-User Portal occurred from deep inside the web-stack. The new version correctly identifies such forwards and handles them gracefully.
1.0.22Jira Server 6.1.3 - 6.3.152014-11-04More bugfixes for GUI under Windows Version 1.0.22 • Released 2014-11-04 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.1.0.21Jira Server 6.1.3 - 6.3.152014-10-22Bug fixes for Windows-based server-side environments Version 1.0.21 • Released 2014-10-22 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialThis version fixes issues with the dynamically loaded Jespa library jar being locked under Windows, which prevents updating IOPlex zip distribution and uploading license files.
1.0.19Jira Server 6.1.3 - 6.3.152014-10-02Bugfix for Windows-based deployments Version 1.0.19 • Released 2014-10-02 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Some older versions of Internet Explorer submit upload file names differently than newer versions and other browsers - this prevented upload of IOPlex Jespa .zip distribution from working correctly
- When Jira is deployed on Windows OS server-side, with some versions of Windows unpacking of trial license from IOPlex Jespa .zip distribution didn't work correctly - resulted in "Jespa License has expired" messages
- A small bugfix for production Jespa licenses upload
1.0.18Jira Server 6.1.3 - 6.3.152014-09-17Bugfix Release Version 1.0.18 • Released 2014-09-17 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial- Fixed issue on Windows systems when uploading jespa ZIP
- Fixed issue with windows paths in setting log location.
1.0.17Jira Server 6.1.3 - 6.3.152014-09-08Bugfix release Version 1.0.17 • Released 2014-09-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • CommercialNo release notes.1.0.15Jira Server 6.1.3 - 6.3.152014-09-08Initial Marketplace Release Version 1.0.15 • Released 2014-09-08 • Supported By TechTime Initiative Group Limited • Paid via Atlassian • Commercial - no chargeNo release notes.