6.7.1

What's Changed

• Initially sort the displayed IdPs in WAYF correctly. by @thijskh in #1178
• Improve Trused Proxy Behat test coverage by @MKodde in #1179
• Show NameID for end-SP in consent by @thijskh in #1180
• Display correct information in error message for unknown proxied SP by @thijskh in #1181
• Introduce SSO Session Cookie by @Stephan-Kok in #1168
• Bump guzzlehttp/psr7 from 1.6.1 to 1.8.5 by @dependabot in #1182
• Bump minimist from 1.2.5 to 1.2.6 in /theme by @dependabot in #1183
• Bump moment from 2.29.1 to 2.29.2 in /theme by @dependabot in #1184

Full Changelog: 6.7.0...6.7.1

6.7.0

Feature

1. In 6.7.0 a new behaviour is introduced when dealing with trusted proxies. More information about these changes can
   be found in the updated trusted proxy documentation. You should be able to inform yourself
   what changes are required, when you are working with a trusted proxy.

   The following work was done to get to this feature:

   • Cover internal-CollabPersonId behaviour in test #1172
   • Apply trusted proxy related output filtering #1175
   • Trusted proxy documentation update #1174
   • Update attribute dictionary #1177

When using the OpenConext Stepup-Gateway and OpenID Connect components, they have to be at at least at versions 3.4.5 and 6.0.1 respectively.

2. A long awaited tag release GitHub Actions workflow was added to this release.

• Test release creation in CI/CD pipeline #888 (thanks for the groundwork @pablothedude!)

Maintenance

• Upgrade Twig to 2.x

6.6.6

What's Changed

• Check if there is a valid authentication in the AuthenticationState by @Stephan-Kok in #1145
• Add "consent disable" feature by @tbeekman in #1164
• Fix build script for custom themes, add watch script and fail build on error by @Stephan-Kok in #1169

New Contributors

• @Stephan-Kok made their first contribution in #1145

Full Changelog: 6.6.5...6.6.6

6.6.5

What's Changed

• Verify GHA Test intergration works as intended by @MKodde in #1161
• Upgrade OpenConext Monitor Bundle to 2.1.0 by @MKodde in #1163

Full Changelog: 6.6.4...6.6.5

6.6.4

Features

• allow control over the RequestedAttribute list added to the proxy SP metadata

Bugfix

• reset attributeValueTypes after an attribute manipulation

Security

• upgrade a dependency

6.6.3

Features

• add ARP feature
• the AuthnRequest is now available to Attribute Manipulations.
• add ability to process SSO Notifications
• unset the autogenerated id field so databases other than Mysql & MariaDB are supported as well.

Bugfixes

• a typo was fixed

6.6.2

Changes

• ARP is only applied once in the filter chain. This should only affect Attribute Manipulations (in being more permissive in what is possible).

Bugfixes

• fix the spinner page in the excel built-in browser
• minor change to privacy policy link on consent screen

Security

• upgrade several dependencies to fix security vulnerabilities #1146, #1149, #1151

6.6.1

Bugfixes

• Style the no-attributes edge case #1144
• Temporarily disable back to sp link to allow time for a full fix #1143
• Ensure textual fallbacks in the error pages function correctly #1135

Security

• Upgrade several dependencies to fix security vulnerabilities #1142, #1134, #1133, #1132

6.6.0

Features and bugfixes

• Add a global site notice #1128
• Allow AuthnRequest based stepup requests #1105
• Add a 'back to SP' button on the 'Stepup failed' error pages #1114
• Error messages have been improved #1112 #1130
• Include Twig linting in CI pipeline #1108
• Transparent SAML error Response for MFA entities #1131
• Remove double titles on skeune error pages #1110
• Update visual screenshots & tests for them #1109
• Ensure search results remain after ENTER #1106
• Replace the hamburger and search icon #1116
• Change the default mail configuration to SMTP instead of sendmail #1129

6.5.1

Bugfix

• Remove forgotten debug statement #1107