• added a check if any keys can be found when verifying key store file settings
• some text corrections

• added a check if any keys can be found when verifying key store file settings
• some text corrections

This release adds support for an additional external LDAP server to retrieve S/MIME certificates from.

Other Improvements:

• sorted order in which keys from different sources are used
• clarified error messages and warnings in key server verification
• log compile timestamp for better problem analysis

Fixes

• corrected incomplete error message from PGP server

This release adds support for an additional external LDAP server to retrieve S/MIME certificates from.

Other Improvements:

• sorted order in which keys from different sources are used
• clarified error messages and warnings in key server verification
• log compile timestamp for better problem analysis

Fixes

• corrected incomplete error message from PGP server

Fixed

• Tweak values now display correctly with special characters
• Tweaks now properly reset to their default if deleted

Improved

• Decode mail contents before applying skipEncryptionRegex tweak
• PCKS#12 keystores without aliases now work
• Check missing outgoing mail server
• New tweak to optionally create opaque signatures

Fixed

• Tweak values now display correctly with special characters
• Tweaks now properly reset to their default if deleted

Improved

• Decode mail contents before applying skipEncryptionRegex tweak
• PCKS#12 keystores without aliases now work
• Check missing outgoing mail server
• New tweak to optionally create opaque signatures

New

• Data Center approved hosting available

Improvements

• Improved validation of key servers and key stores

==== DATA CENTER CUSTOMERS =====

Starting with this release, a DC compatible version of this app becomes available.

If you run this app on a Confluence Data Center instance, you will need to convert your license over to a DC App license when upgrading.

Please see https://savignano.atlassian.net/l/c/PG1TU5iV for details.

New

• Data Center approved hosting available

Improvements

• Improved validation of key servers and key stores

==== DATA CENTER CUSTOMERS =====

Starting with this release, a DC compatible version of this app becomes available.

If you run this app on a Confluence Data Center instance, you will need to convert your license over to a DC App license when upgrading.

Please see https://savignano.atlassian.net/l/c/PG1TU5iV for details.

This feature release adds LDAP support for PGP servers

Additional improvements and fixes:

• Accept PGP cipher preferences independent from key trust level
• PGP default cipher is AES128 instead of DES3

==== DATA CENTER USERS =====

We are currently undergoing Data Center approval and plan to provide a DC compatible version with the next release.

If you run this app on a Confluence Data Center instance, you will need to convert your license over to a DC App license when upgrading.

Please see https://savignano.atlassian.net/l/c/PG1TU5iV for details.

Fixes

• Do not sign emails when certificate or key expired

New features

• Mail subject encryption: keep ID in subject to allow for threaded email grouping by mail clients
• Warn if other users use the same email address
• S/MIME: set capabilities in sent emails
• LDAP: full support of authentication, filters, SSL connections

Improvements

• Improved space identification
• Improved handling of multiple users having the same email address
• Skip inactive users when searching for address matches
• Improved solutions hints for installation problems
• Protected headers: skipped for unencrypted emails
• Protected headers: compatibility work-around for Outlook 2016

==== DATA CENTER USERS =====

We are currently undergoing Data Center approval and plan to provide a DC compatible version with the next release.

If you run this app on a Confluence Data Center instance, you will need to convert your license over to a DC App license when upgrading.

Please see https://savignano.atlassian.net/wiki/x/N4CsUg for details.

Fixed in 3.2.1

• Fixed an issue with space encryption settings being lost when upgrading the app

New features from 3.2.0

• Support for elliptic curve PGP keys
• Optional encryption of the email subject

Improvements

• PGP encryption now selects symmetric cipher from key preferences
• Improved error checks for key server URLs
• Updated underlying BouncyCastle crypto libraries
• Protection against certain XSS attacks

Fixed in 3.2.0

• Advanced settings had missing translation key displayed

==== DATA CENTER USERS =====

We plan to undergo a Data Center approval and intend on releasing a DC compatible version in the future.

What this means for you:

Any customer running this application on a DC Instance will need to convert their license over to a DC App license if they intend on upgrading to this version in the future.

Please see https://savignano.atlassian.net/wiki/x/N4CsUg for details.

New features

• Intelligent ambiguity check for multiple space references
• Separate configuration option for non space related emails (other)
• Outgoing emails can be additionally encrypted for server address
• Optional exemption whitelist to exclude recipients from encryption
• S/MIME: include intermediate certificates if available
• S/MIME: support of PKCS#7 format server key bundle
• Plus many more improvements and fixes

For details, please refer to https://savignano.atlassian.net/l/c/rWU8Kexk

DATA CENTER USERS:

We consider undergoing a Data Center approval. Please check out the above link to learn what this would mean to you.

New features

• Email signatures: outgoing emails can now be signed
• Per-space encryption: optional separate encryption settings for each space
• Email anyone: encrypt email for non-users
• German localisation: adapts when Confluence is set to German

Improvements

• Support of PGP keyrings as keystores
• Self-checking to verify that S/Notify has not been modified for increased security
• Self-checking to verify that the mailer library version matches the Marketplace plugin
• Improved check and selection of PGP key and S/MIME certificate
• Improved PGP key and S/MIME certificate management in the user profile
• Improved global administration user interface
• Improved information in Get Started and added self-checking to warn of problems
• Some more internal improvements and smaller fixes

• Confluence 7 aware (see below for details)
• Improved PGP keyserver compatibility

This release supports Confluence 7, but make sure to check this page first: https://savignano.atlassian.net/wiki/x/AYAHCg

A few small improvements:

• Verify settings also checks LDAP, if configured
• Display a warning when encryption has been disabled
• Use AES128 algorithm in PGP encryption, as recommend by GnuPG

• Fixes a problem that would prevent the app from being correctly enabled
• Includes fixes for improved email address match for PGP keys

Now supports LDAP server

• Allows for automatic retrieval of S/MIME certificates from LDAP
• Automatically uses the LDAP server configured in Jira as user directory
• Extremely simple to configure

This release displays the correct PGP expiry date, if applicable.

Note that the expiry date has always been calculated properly. The bug affected only how it was displayed in the user profile.

This release fixes an issue with S/MIME certificates that have no email field (using only the rfc822name field) not being accepted when uploaded to the user profile.

This release fixes an issue with PGP encryption causing HTML emails not to display properly in the email client.

New

• PGP keyserver urls support hkp and hkps protocols
• Detailed verification tool for global key management settings
• Encryption failure reason now in email report
• Prevent data loss when Confluence requires re-login during data entry

Fixes

• Documentation links updated

• Always re-attempt key retrieval after keyserver access failures
• Preserve original Jira email message IDs
• Some improvements in the user interface

• Fixes an issue with certain PGP keys where the expiration date wasn't calculated properly.
• Improved the selection of encryption keys, with the most current getting used now.

• Fixes an issue with PGP keys having no subpackage

• PGP support added
• Simplified installation through library component
• Added Secure SMTP support
• Major dialog overhaul for better user experience
• Many more enhancements

• Data center readiness has now been verified
• Fixed configuration URL

Initial release with best possible S/MIME encryption