Child pages
  • v2.6 Release Notes
Skip to end of metadata
Go to start of metadata

See below on this page for v2.6 release notes (v2.6 build info)

 

v2.6 builds

These will be marked as stable once they are out for a while without issue and/or as people start using these in production.  This is a judgment call by the Grouper team.  If you are using a new release please inform us so we can provide better advice.

Date

Container tag (version)

Status

Upgrade instructions
and notes

Versions

Enhancements and bugs fixed in this version, known issues with this version

2022/12/21

i2incommon/grouper:2.6.19

sha256:9ac3b6d873ab3538
e25c514f36330dcb1adeaf84
26276a7c04ec8bb22b16613c

LATEST STABLENoneShib: 3.4.0
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352

23 Jiras
Box provisioner
Incremental group sync issue
Log if SCIM being used, SOAP being used
TechEx requests: hide side panel, WS request and correlation id, auto-index start at 1,000,000

2022/11/29

i2incommon/grouper:2.6.18.1

sha256:0ca5989cd63f1576b
26617c7c6c88b6232f96cf41
18a1abd645fe428a5f9b68c

STABLENoneShib: 3.4.0
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352
Upstream SP container pointed to new version
2022/11/17

i2incommon/grouper:2.6.18

sha256:50061942017bb28d
590f7fd2874b1640e967e018
379733dc177eaee0f54b8a9b

STABLE2 from v2.6.17Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352
37 Jiras
Upgrade jsoup and jackson for CVE
Allow institution specific external systems and provisioners
MidPoint metadata
Configuration screen multi-delete
2022/11/15

i2incommon/grouper:2.6.17.2

sha256:f7ec989f43a0e6649
9e8c7580fe2c054293bde74
ea670f6b859bdae951e52d76

STABLENoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352

1 Jira
Ldaptive upgrade now uses durations for timeLimit and timeout

2022/11/05

i2incommon/grouper:2.6.17.1

sha256:028315f0041149187
67177fffeeacdb0910758ec7
b7390a9aae54bd3328ebc5b

STABLE

GRP-4484

NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352

2 Jiras
Subject identifier shouldn't be cleared from member sync table until member isn't in target
Syncing sync memberships updates sync members

2022/11/01

i2incommon/grouper:2.6.17

sha256:e778807b1ac63440
fc71f690d64a14de1c4aa8a3
ad06ff7020eef6352c78b291

EXPIRED2 from v2.6.16Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_352
37 Jiras
SCIM v2 service rewrite
MidPoint provisioner
Azure throttling
Upgrade libraries with CVEs
Do not select all memberships from target if not needed
Point In Time improvements
By default only delete memberships in provisioning target that Grouper tracks


2022/09/30

i2incommon/grouper:2.6.16.2

sha256:4207cbc274502d2d0
87096080d3f696dfd1f6182f
6b0c9e4a30ec9cb55579f91

EXPIREDNoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
Fixes some container issues
2022/09/22

i2incommon/grouper:2.6.16.1

sha256:a92e4cc08ad4be93
3df3a23ff30a0bfcfdf665c68
80626ac181ae819072a6416

Fixes default log level from 2.6.16

EXPIRED3 from v2.6.14Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
56 Jiras
Run rule if condition with grouper session running with actAs subject
Add threads to provisioner actions
Make sure batch sizes in azure provisioner are the max they can be
Membership requirements enforce eligibility by folder
Fix container logging to pipe/file and ENV/USERDATA
Add id_index to the members table
Add oidc to grouper ui
Make findBadMemberships full daemon scale for missing composites
2022/08/15

i2incommon/grouper:2.6.15.1

if 2.6.15 has issues starting...

i2incommon/grouper:2.6.15

sha256:13adebfd7972556d66
9df0b63e8d536b15a154a027
d99bdec0c5be74b23936d9

EXPIRED

1 from v2.6.14Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
17 Jiras
Fix issues with Azure provisioner
Generic improvements on provisioning framework
Clickable provisioning error message to go to problem config
Provisioning UI improvements

2022/08/10

i2incommon/grouper:2.6.14

sha256:ecfeb825cc9333c505c
4148d5ab9e15b0c6e9618afd
374555da5dfc0a1a1aff7

EXPIRED

Provisioning issues...

3 from v2.6.13Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
49 Jiras
Add provisioning logs to daemon DB logs (can see in UI)
Add readSelf group privilege
Improve searching and sorting in provisioning
Various fixes to Azure provisioner
Various fixes to Google provisioner
Make sure dont need to be root to assign/read provisionable
Upgrade various third party libraries with security advisories
2022/07/26

i2incommon/grouper:2.6.13

sha256:45368d7f4b5ad33ed0
bd1a5bf6ada45e0274d0ce4b
054b984dfe3de0b74bd638

EXPIRED1 from v2.6.10Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342

39 Jiras
Upgrade third party jars to reduce security scan errors
Various Azure provisioning fixes
Various provisioning framework fixes
Change grouper client from xml to json
Fix counts on provisioning screen

2022/07/20i2incommon/grouper:2.6.10

NOT STABLE

Provisioning issues...

NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
54 Jiras
Remove unneeded cross joins from membership queries (performance improvement)
Trace memberships timeline should show states for additional groups found in events
DN override ldap use case (select all groups should select overridden groups)
Provisioning membership foreign key blank gives issues
Provisioner succeeds when there are errors, should be an error in daemon
Add sftp delimited file to SQL job
Search/match for groups/entities on multiple attributes and past values
Simplify azure provisioning group types
Daemon summary should have drop down for run, edit, etc
2022/06/07

i2incommon/grouper:2.6.9

current: sha256:fa47a3f569b33
5b7d85fc1
658303d9a9c23ac4c
ca623f47bcc27899da56bd70b

initial: sha256:1980818e0be7e482cb
7f1d50a20f9e07b901ec1919c
a34d11bd5c3de9d84af4e8

NONPROD RELEASE

GRP-4068

2 from v2.6.8Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_332
101 Jiras
Trace membership improvements
Start with / scaffolding
Refactor provisioning framework configuration
Import newlines in configuration
Assign enabled / disabled dates during membership add
2022/03/02i2incommon/grouper:2.6.8
sha256:1ca28adf3efed3ff52
59fe39f69d121b9e4ad657c
b6edf573b3fb3d6e36aa112

EXPIRED

3 from v2.6.7.1Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
39 Jiras
Fix performance issue
Fix template config key issue
Easily edit certain attributes on group edit screen
SQL provisioner refactor
Provisioning matching attribute is implicitly required
Allow custom appenders and loggers in log4j2.xml file
Allow dynamic logging config without restart
Fix provisioning counts
Loader for Duo users
Example for loading groups from WS
2022/02/25i2incommon/grouper:2.6.7.1
sha256:c832485253e206ea7
3b5a99c053be19db4d837ee
e3bc206c966e8bd34d5acef2

NOT STABLE

Performance issues

Template config key for stems changed

2 from v2.6.7Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
1 Jira
2022/02/18i2incommon/grouper:2.6.7
sha256:e663dea8c6b97d849
1415bab7f86b44aa4d86f17
4e522d2d9687a5f5bf6e09fb

NOT STABLE

Does not log

Performance issues

1 from v2.6.6Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
11 Jiras
Logging jar issue
Stem view priv doesnt work
Precompute stem view privileges for selected users
Upgrade MySQL driver
2022/02/16i2incommon/grouper:2.6.6
sha256:834a03d8baa2b5e2a
a09c137ca378a795fde9dc12
cc11d70fbdb641e76500331

NOT STABLE

Logging jar issue

Stem view priv doesnt work

4 from v2.6.5Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
64 Jiras
Postgres driver security issue
Log4j 1x replaced with secure Log4j 2x
Add STEM VIEW privilege and default to people seeing stems they should with high performance
Add google provisioner
Add Duo "admin role" provisioner
ABAC / JEXL scripted groups first pass
Add subject_identifer0, subject_identifier1, and subject_email0 to members table
Grouper failsafes on loader and provisioning
GSH templates are available on group action menu (previously only folders)
Action menus re-organized
"Copy folder" improvements
Subject API attributes can be secured by group
Opt-in / opt-out improvements
Add OSGI to Grouper


2021/12/20i2incommon/grouper:2.6.5.3
sha256:5a22fdf5223054a7ee
da0a5a51e2c28e39a7107b82
548131f0958e6696f34f69
EXPIREDNoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312

Log4j security problem fixed (again, again)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.3
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.17.0.jar  /opt/tomee/bin/log4j-core-2.17.0.jar  /opt/tomee/bin/log4j-jul-2.17.0.jar
2021/12/16i2incommon/grouper:2.6.5.2
sha256:7cfc81bc63361e018d
4df6f90bbdba646cb46ab3b
8ad1961907e2955b9c0657d
EXPIRED
Log4j security problem
(log4j v2.16.0)
NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312

Log4j security problem fixed (NOT)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.2
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.16.0.jar  /opt/tomee/bin/log4j-core-2.16.0.jar  /opt/tomee/bin/log4j-jul-2.16.0.jar
2021/12/10i2incommon/grouper:2.6.5.1
sha256:b682761bba2257cf5
0fb0f86dbf7f7e1e6e271ffeb
b312097e9017ef2ffd2190
EXPIRED
Log4j security problem
(log4j v2.15.0)
NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312

Log4j security problem fixed (NOT)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.1
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.15.0.jar  /opt/tomee/bin/log4j-core-2.15.0.jar  /opt/tomee/bin/log4j-jul-2.15.0.jar
2021/12/09

i2incommon/grouper:2.6.5
sha256:561fe324d848e79c6
ab4d5f82a70555d5fe995b98
3938088b82bfebd242eb1e8

EXPIRED
Log4j security problem
1 from v2.6.4Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
32 Jiras
SQL provisioning
Provisioning diagnostics improvements
"Replace members" improvements
Remove hsqldb from Grouper
GrouperSystem password can be an environment variable
Improved and standardized HTTP and SFTP proxy support
Provisioning logging is fixed
2021/10/20i2incommon/grouper:2.6.4
sha256:de464e131a0abde51
f91bca23a0200e6fd876dc4d
6586ff86b8b73636ae15308
EXPIRED
Log4j security problem

Provisioning logging is broken
3 from v2.6.0Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
21 Jiras
JWT self service web service authentication
Copy group validation error with invalid (dot) character fix
Object type UI fix
RabbitMQ configuration fix
Improved provisioning logging
Improved performance of main Grouper Report
Provisioning LDAP configuration improvements
Zoom user loader for deprovisioning
2021/09/17i2incommon/grouper:2.6.0
sha256:c4aa7a88ae9f2da40
3de30bf27b7e218aa64f9207
fb57dbb6e426be0413ac640
EXPIRED
Log4j security problem

1 from v2.5.57+

Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_302
17 Jiras
Provisioning framework fixes
Chrome 93 header fix
Trusted JWT WS authentication
OIDC WS authentication
Can import config with textarea

For more information about upcoming plans, see the Grouper Product Roadmap .


See Also

Grouper Downloads

  • No labels