- SAML Single Sign-On 6.7.1 comes with the User Sync 2.10.1 release, see 2.10.x release notes. This update resolves high CPU and memory usage during synchronization.
Version history
6.7.1Bamboo 8.0.0 - 9.3.32023-08-08Bugfix release Version 6.7.1 • Released 2023-08-08 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial6.7.1Bamboo Server 6.10.2 - 9.3.32023-08-08Bugfix release Version 6.7.1 • Released 2023-08-08 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.7.1 comes with the User Sync 2.10.1 release, see 2.10.x release notes. This update resolves high CPU and memory usage during synchronization.
6.7.0Bamboo 8.0.0 - 9.3.32023-08-02New User Sync release Version 6.7.0 • Released 2023-08-02 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.7.0 comes with the User Sync 2.10.0 release, see 2.10.x release notes.
6.7.0Bamboo Server 6.10.2 - 9.3.32023-08-02New User Sync release Version 6.7.0 • Released 2023-08-02 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.7.0 comes with the User Sync 2.10.0 release, see 2.10.x release notes.
6.6.0Bamboo 8.0.0 - 9.3.32023-06-19WebSudo for OIDC Version 6.6.0 • Released 2023-06-19 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.6.0 comes with the User Sync 2.9.0 release, see 2.9.x release notes.
- Added WebSudo support for OIDC.
- WebSudo: forceAuthentication can now be deactivated.
- Fixed: the Linchpin endpoints are no longer accessed from the frontend when not running on Confluence.
6.6.0Bamboo Server 6.10.2 - 9.3.32023-06-19WebSudo for OIDC Version 6.6.0 • Released 2023-06-19 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.6.0 comes with the User Sync 2.9.0 release, see 2.9.x release notes.
- Added WebSudo support for OIDC.
- WebSudo: forceAuthentication can now be deactivated.
- Fixed: the Linchpin endpoints are no longer accessed from the frontend when not running on Confluence.
6.5.1Bamboo 8.0.0 - 9.3.32023-05-22Bugfix release Version 6.5.1 • Released 2023-05-22 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- This version includes a bugfix in User Sync 2.8.1, see 2.8.x release notes.
6.5.1Bamboo Server 6.10.2 - 9.3.32023-05-22Bugfix release Version 6.5.1 • Released 2023-05-22 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- This version includes a bugfix in User Sync 2.8.1, see 2.8.x release notes.
6.5.0Bamboo 8.0.0 - 9.2.52023-03-28Relying Party Initiated Single Logout for OIDC, IdP selection buttons, and more Version 6.5.0 • Released 2023-03-28 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.5.0 comes with the User Sync 2.8.0 release, see 2.8.x release notes.
- Added Relying Party Initiated Single Logout for OIDC: Logout from your identity provider and other connected services when logging out from your Atlassian product.
- Added optional IdP selection buttons on login page: Click a button to login via SSO as an alternative to using the redirection.
- Added "auth_fallback" as an additional nosso parameter.
- Added option to sign Single Logout responses.
6.5.0Bamboo Server 6.10.2 - 9.2.52023-03-28Relying Party Initiated Single Logout for OIDC, IdP selection buttons, and more Version 6.5.0 • Released 2023-03-28 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.5.0 comes with the User Sync 2.8.0 release, see 2.8.x release notes.
- Added Relying Party Initiated Single Logout for OIDC: Logout from your identity provider and other connected services when logging out from your Atlassian product.
- Added optional IdP selection buttons on login page: Click a button to login via SSO as an alternative to using the redirection.
- Added "auth_fallback" as an additional nosso parameter.
- Added option to sign Single Logout responses.
6.4.0Bamboo Server 6.10.2 - 9.2.52023-02-06Several minor improvements and bug fixes Version 6.4.0 • Released 2023-02-06 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.4.0 comes with the User Sync 2.7.1 release, see 2.7.x release notes.
- Added preset for OIDC with Ping One.
- Fixed logout issues when using OIDC.
- Fixed flickering authentication tracker UI for OIDC logins.
- Allow sending SAML authentication requests to a different URLs.
- Added metadata file import to the IdP page.
6.4.0Bamboo 8.0.0 - 9.2.52023-02-06Several minor improvements and bug fixes Version 6.4.0 • Released 2023-02-06 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- SAML Single Sign-On 6.4.0 comes with the User Sync 2.7.1 release, see 2.7.x release notes.
- Added preset for OIDC with Ping One.
- Fixed logout issues when using OIDC.
- Fixed flickering authentication tracker UI for OIDC logins.
- Allow sending SAML authentication requests to a different URLs.
- Added metadata file import to the IdP page.
6.3.0Bamboo Server 6.10.2 - 9.1.32023-01-12OAuth2 authentication, IdP specific metadata, security fix Version 6.3.0 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- Allow OAuth2 authentication with Atlassian, LinkedIn, GitHub, Twitter or Facebook
- Specific SP metadata can be provided per IdP
- Fix a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed .
- Please check our release notes for more details.
6.3.0Bamboo 8.0.0 - 9.1.32023-01-12OAuth2 authentication, IdP specific metadata, security fix Version 6.3.0 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • Commercial- Allow OAuth2 authentication with Atlassian, LinkedIn, GitHub, Twitter or Facebook
- Specific SP metadata can be provided per IdP
- Fix a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed .
- Please check our release notes for more details.
6.2.5Bamboo Server 6.10.2 - 9.1.32023-01-12Security update Version 6.2.5 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • CommercialFixed a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed.
6.2.5Bamboo 8.0.0 - 9.1.32023-01-12Security update Version 6.2.5 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • CommercialFixed a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed.
4.0.15Bamboo Server 6.8.0 - 7.2.102023-01-12Security update Version 4.0.15 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • CommercialFixed a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed.
2.5.11Bamboo Server 5.12.0.2 - 6.10.62023-01-12Security update Version 2.5.11 • Released 2023-01-12 • Supported By resolution Reichert Network Solutions GmbH • Paid via Atlassian • CommercialFixed a medium level security vulnerability potentially allowing replay attacks, see https://wiki.resolution.de/doc/saml-sso/latest/jira/security-advisories/2023-01-12-response-can-be-replayed-with-modified-id-when-only-the-assertion-is-signed.