Versions Compared

Old Version 72

changes.mady.by.user Chris Hyzer (upenn.edu)

Saved on

compared with

New Version 73

changes.mady.by.user Chris Hyzer (upenn.edu)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Date

Container tag (version)

Status

Enhancements and bugs fixed in this version, known issues with this version

Upgrade instructions
and notes

Versions
2022/08/10i2incommon/grouper:2.6.14RELEASED49 Jiras
Add provisioning logs to daemon DB logs (can see in UI)
Add readSelf group privilege
Improve searching and sorting in provisioning
Various fixes to Azure provisioner
Various fixes to Google provisioner
Make sure dont need to be root to assign/read provisionable
Upgrade various third party libraries with security advisories		2 from v2.6.13Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
2022/07/26

i2incommon/grouper:2.6.13

sha256:45368d7f4b5ad33ed0
bd1a5bf6ada45e0274d0ce4b
054b984dfe3de0b74bd638

LATEST STABLE

39 Jiras
Upgrade third party jars to reduce security scan errors
Various Azure provisioning fixes
Various provisioning framework fixes
Change grouper client from xml to json
Fix counts on provisioning screen

1 from v2.6.10Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
2022/07/20i2incommon/grouper:2.6.10

NOT STABLE

Provisioning issues...

54 Jiras
Remove unneeded cross joins from membership queries (performance improvement)
Trace memberships timeline should show states for additional groups found in events
DN override ldap use case (select all groups should select overridden groups)
Provisioning membership foreign key blank gives issues
Provisioner succeeds when there are errors, should be an error in daemon
Add sftp delimited file to SQL job
Search/match for groups/entities on multiple attributes and past values
Simplify azure provisioning group types
Daemon summary should have drop down for run, edit, etc		NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_342
2022/06/07

i2incommon/grouper:2.6.9

current: sha256:fa47a3f569b33
5b7d85fc1658303d9a9c23ac4c
ca623f47bcc27899da56bd70b

initial: sha256:1980818e0be7e482cb
7f1d50a20f9e07b901ec1919c
a34d11bd5c3de9d84af4e8

NONPROD RELEASE

GRP-4068

101 Jiras
Trace membership improvements
Start with / scaffolding
Refactor provisioning framework configuration
Import newlines in configuration
Assign enabled / disabled dates during membership add		2 from v2.6.8Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_332
2022/03/02i2incommon/grouper:2.6.8
sha256:1ca28adf3efed3ff52
59fe39f69d121b9e4ad657c
b6edf573b3fb3d6e36aa112

STABLE

39 Jiras
Fix performance issue
Fix template config key issue
Easily edit certain attributes on group edit screen
SQL provisioner refactor
Provisioning matching attribute is implicitly required
Allow custom appenders and loggers in log4j2.xml file
Allow dynamic logging config without restart
Fix provisioning counts
Loader for Duo users
Example for loading groups from WS		3 from v2.6.7.1Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
2022/02/25i2incommon/grouper:2.6.7.1
sha256:c832485253e206ea7
3b5a99c053be19db4d837ee
e3bc206c966e8bd34d5acef2

NOT STABLE

Performance issues

Template config key for stems changed

1 Jira2 from v2.6.7Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
2022/02/18i2incommon/grouper:2.6.7
sha256:e663dea8c6b97d849
1415bab7f86b44aa4d86f17
4e522d2d9687a5f5bf6e09fb

NOT STABLE

Does not log

Performance issues

11 Jiras
Logging jar issue
Stem view priv doesnt work
Precompute stem view privileges for selected users
Upgrade MySQL driver		1 from v2.6.6Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
2022/02/16i2incommon/grouper:2.6.6
sha256:834a03d8baa2b5e2a
a09c137ca378a795fde9dc12
cc11d70fbdb641e76500331

NOT STABLE

Logging jar issue

Stem view priv doesnt work

64 Jiras
Postgres driver security issue
Log4j 1x replaced with secure Log4j 2x
Add STEM VIEW privilege and default to people seeing stems they should with high performance
Add google provisioner
Add Duo "admin role" provisioner
ABAC / JEXL scripted groups first pass
Add subject_identifer0, subject_identifier1, and subject_email0 to members table
Grouper failsafes on loader and provisioning
GSH templates are available on group action menu (previously only folders)
Action menus re-organized
"Copy folder" improvements
Subject API attributes can be secured by group
Opt-in / opt-out improvements
Add OSGI to Grouper


4 from v2.6.5Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_322
2021/12/20i2incommon/grouper:2.6.5.3
sha256:5a22fdf5223054a7ee
da0a5a51e2c28e39a7107b82
548131f0958e6696f34f69		STABLE

Log4j security problem fixed (again, again)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

Code Block
[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.3
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.17.0.jar  /opt/tomee/bin/log4j-core-2.17.0.jar  /opt/tomee/bin/log4j-jul-2.17.0.jar


NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
2021/12/16i2incommon/grouper:2.6.5.2
sha256:7cfc81bc63361e018d
4df6f90bbdba646cb46ab3b
8ad1961907e2955b9c0657d		STABLE
Log4j security problem
(log4j v2.16.0)

Log4j security problem fixed (NOT)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

Code Block
[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.2
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.16.0.jar  /opt/tomee/bin/log4j-core-2.16.0.jar  /opt/tomee/bin/log4j-jul-2.16.0.jar


NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
2021/12/10i2incommon/grouper:2.6.5.1
sha256:b682761bba2257cf5
0fb0f86dbf7f7e1e6e271ffeb
b312097e9017ef2ffd2190		STABLE
Log4j security problem
(log4j v2.15.0)

Log4j security problem fixed (NOT)!
Note: the Grouper java version is 2.6.5, the version reported in the UI is 2.6.5.
To verify you have the right version you can see the env var or log4j libs

Code Block
[root@0c8d8738e95a bin]# echo $GROUPER_CONTAINER_VERSION
2.6.5.1
[root@0c8d8738e95a bin]# ls /opt/tomee/bin/log4j*
/opt/tomee/bin/log4j-api-2.15.0.jar  /opt/tomee/bin/log4j-core-2.15.0.jar  /opt/tomee/bin/log4j-jul-2.15.0.jar


NoneShib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
2021/12/09

i2incommon/grouper:2.6.5
sha256:561fe324d848e79c6
ab4d5f82a70555d5fe995b98
3938088b82bfebd242eb1e8

STABLE
Log4j security problem		32 Jiras
SQL provisioning
Provisioning diagnostics improvements
"Replace members" improvements
Remove hsqldb from Grouper
GrouperSystem password can be an environment variable
Improved and standardized HTTP and SFTP proxy support
Provisioning logging is fixed		1 from v2.6.4Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
2021/10/20i2incommon/grouper:2.6.4
sha256:de464e131a0abde51
f91bca23a0200e6fd876dc4d
6586ff86b8b73636ae15308		STABLE
Log4j security problem

Provisioning logging is broken		21 Jiras
JWT self service web service authentication
Copy group validation error with invalid (dot) character fix
Object type UI fix
RabbitMQ configuration fix
Improved provisioning logging
Improved performance of main Grouper Report
Provisioning LDAP configuration improvements
Zoom user loader for deprovisioning		3 from v2.6.0Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_312
2021/09/17i2incommon/grouper:2.6.0
sha256:c4aa7a88ae9f2da40
3de30bf27b7e218aa64f9207
fb57dbb6e426be0413ac640		STABLE
Log4j security problem		17 Jiras
Provisioning framework fixes
Chrome 93 header fix
Trusted JWT WS authentication
OIDC WS authentication
Can import config with textarea

1 from v2.5.57+

Shib: 3.2.3
Apache: 2.4.6
Tomee: 7.0.9 (8.5.57)
Openjdk: 1.8.0_302

...