Skip to content

Commit c819b12

Browse files
OctomergerOctomerger
authored
Merge pull request github#17406 from github/repo-sync
repo sync
2 parents 05355fe + 505e131 commit c819b12

File tree

1 file changed

+1
-6
lines changed
  • data/release-notes/enterprise-server/3-4

1 file changed

+1
-6
lines changed

data/release-notes/enterprise-server/3-4/2.yml

Lines changed: 1 addition & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -13,17 +13,12 @@ sections:
1313
- When converting a user account to an organization, if the user account was an owner of the {% data variables.product.prodname_ghe_server %} enterprise account, the converted organization would incorrectly appear in the enterprise owner list.
1414
- The `/stafftools/users/ip_addresses/:address` page responded with a `500 Internal Server Error` when attempting to display the page for an IPv6 address.
1515
- Creating an impersonation OAuth token using the Enterprise Administration REST API resulted in an error when an integration matching the OAuth Application ID already existed.
16-
- |
17-
When using SAML encrypted assertions with {% data variables.product.prodname_ghe_server %} 3.4.0 and 3.4.1, a new XML attribute `WantAssertionsEncrypted` in the `SPSSODescriptor` contains an invalid attribute for SAML metadata. IdPs that consume this SAML metadata endpoint may encounter errors when validating the SAML metadata XML schema. A fix will be available in the next patch release. [Updated: 2022-04-11]
18-
19-
To work around this problem, you can take one of the two following actions.
20-
- Reconfigure the IdP by uploading a static copy of the SAML metadata without the `WantAssertionsEncrypted` attribute.
21-
- Copy the SAML metadata, remove `WantAssertionsEncrypted` attribute, host it on a web server, and reconfigure the IdP to point to that URL.
2216

2317
changes:
2418
- Added support for replica domain names that are more than 63 characters.
2519
- Configuration errors that halt a config apply run are now output to the terminal in addition to the configuration log.
2620
- If {% data variables.product.prodname_GH_advanced_security %} features are enabled on your instance, the performance of background jobs has improved when processing batches for repository contributions.
21+
2722
known_issues:
2823
- On a freshly set up {% data variables.product.prodname_ghe_server %} instance without any users, an attacker could create the first admin user.
2924
- Custom firewall rules are removed during the upgrade process.

0 commit comments

Comments
 (0)