- Reverted libxmljs due to breaking changes in patch version.
- Updated libxmljs to use patched version from security issue.
- Support multiple certificates by allowing an array to be passed to the SP. This means that we now have to pass an array and an extra attribute to tell us when the cert expires
-
Replace libxml-xsd by libxmljs as libxml-xsd is not maintained and does not support node >= 9. This was a problem as we want to keep at least on top of supported LTS versions
-
Having to bump to a minor version because of an npm issue.
- Allow for query params in idp login url. This means that we can work with login urls that have a query parameter.
xmldsig-core-schema.xsdX509SerialNumberis now a string. There is an issue with the c library we are relying on to check the xsd. That issue is due to the fact that the specs for xsd allow limiting the max integer size depending on the processor the checks are running on but at the same time allow for unlimited length integers.
This is documented here because it's an important change to the standard schema.
- Release script tagging strategy - this should not impact the end users
- Started the changelog
- forceAuthNByDefault boolean in service provider preferences.
It is the for the optional
forceAuthenticationboolean of thebuildLoginRequestRedirectURL()function. This should be used when you want to forceAuthentication by default without passing a boolean each time tobuildLoginRequestRedirectURL()but still be able to sometimes not force the authentication By default it isfalse- this preserves the backwards compatibility.
- Release script - this should not impact the end users
There was no changelog prior to this date. If requested we can go through it and add one.