2019-11-21 16:22:24 +00:00
|
|
|
= Highlights
|
|
|
|
|
|
|
|
== Drools Policy Removed
|
|
|
|
|
2019-12-05 07:17:06 +00:00
|
|
|
The Drools Policy was finally removed after the deprecation period. If you need more complex policies you can still use JavaScript-based policies.
|
|
|
|
|
|
|
|
== Pagination support for clients
|
|
|
|
|
2019-12-04 18:55:36 +00:00
|
|
|
Pagination support was added to clients in the Admin Console and REST API. Thanks to https://github.com/saibot94[saibot94].
|
|
|
|
|
|
|
|
== New Elytron Credential Store Vault Provider
|
|
|
|
|
|
|
|
A new built-in vault provider that reads secrets from a keystore-backed Elytron credential store has been added as a WildFly
|
|
|
|
extension. The creation and management of the credential store is handled by Elytron using either the `elytron` subsystem or the
|
2020-01-07 14:47:26 +00:00
|
|
|
`elytron-tool.sh` script.
|
|
|
|
|
2020-02-05 20:32:54 +00:00
|
|
|
== More updates to W3C WebAuthn and Authentication flows
|
|
|
|
|
2020-02-06 08:10:27 +00:00
|
|
|
In this release, we did some usability improvements to the authentication flows. It should be easier for the end user to choose between
|
|
|
|
available authentication mechanisms for two-factor authentication. It should be more intuitive to log in with OTP or WebAuthn
|
2020-02-05 20:32:54 +00:00
|
|
|
considering the fact that user can have more OTP or WebAuthn credentials. There is also better support for passwordless WebAuthn authentication.
|
2020-02-06 08:10:27 +00:00
|
|
|
Finally, we did some work on defects related to the authentication flows.
|
2020-02-05 20:32:54 +00:00
|
|
|
|
2020-02-10 10:38:45 +00:00
|
|
|
== Improved handling of user locale
|
|
|
|
|
|
|
|
A number of improvements have been made to how the locale for the login page is selected, as well as when the locale
|
|
|
|
is updated for a user.
|
|
|
|
|
|
|
|
See the link:{adminguide_link}#_user_locale_selection[{adminguide_name}] for more details.
|
|
|
|
|
2020-01-07 14:47:26 +00:00
|
|
|
== Other improvements
|
|
|
|
|
|
|
|
* Authorization Header token is only considered now when type is Bearer on Gatekeeper. Thanks to https://github.com/HansK-p[HansK-p]
|
2020-02-05 20:32:54 +00:00
|
|
|
|
|
|
|
* More algorithms are supported for the client authentication with signed client secret JWT. Namely HS384 and HS512 algorithms were added.
|
|
|
|
Thanks to https://github.com/tnorimat[tnorimat]
|