nightly

What's Changed

• ci: fix cedar wasm publish by @moabu in #12862
• chore: revert to nightly by @moabu in #12874
• fix(docs): fix linting issues - trailing spaces and EOF newline by @ossdhaval in #12859
• docs(jans-cedarling): update cedar policy store schema by @dagregi in #12833
• feat(jans-tarp): implement Cedar-Policy-Aware AI Agent Scaffolding in jans-tarp by @duttarnab in #12806
• feat(core): merge logging changes from gluu4 by @yurem in #12871
• feat(orm): add method to check data after entry update by @yurem in #12873
• feat(jans-auth): remove old jackson2 dependency by @yurem in #12886
• feat(jans-cli-tui): remove Admin-UI plugin by @devrimyatar in #12893
• fix(admin-ui): failed logout on tarp by @duttarnab in #12882
• fix: update override_sql_ssl_property in sql.py to prevent SSL proper… by @moabu in #12878
• feat(config-api): feature wise admin scope for endpoints by @pujavs in #12736
• feat(jans-pycloudlib): add support for user session-level postgres schema selection by @iromli in #12889
• feat(jans-linux-setup): update the renamed scopes in role-to-scope mapping by @duttarnab in #12899
• fix(cloud-native): set restrictive file permissions on SQL property files containing credentials by @iromli in #12901
• fix(jans-cli-tui): display confirmation message after saving jans-lock server config by @devrimyatar in #12911
• fix(docs): fix linting issues - trailing spaces and EOF newline by @ossdhaval in #12879
• feat(jans-cli-tui): additional config-api parameters by @devrimyatar in #12914
• feat(cloud-native): add feature to update config-api scopes sync from template by @iromli in #12909
• fix(jans-cli-tui): scim configuration param disableExternalLoggerConfiguration by @devrimyatar in #12918
• chore(jans-cedarling): refactor trusted_issuers HashMap to indexed structure in resolve_issuer_name by @dagregi in #12896
• refactor(jans-cedarling): Offload serialization to a background thread or adopt asynchronous serialization libraries in authz module. by @olehbozhok in #12906
• docs(jans-auth-server): added more explanation about global revocation and front channel end session #12919 by @yuriyz in #12920
• chore(cloud-native): sync templates to OCI images by @iromli in #12905
• ci: fix branch protection issue by @moabu in #12921
• ci: pin versions by @moabu in #12922
• docs: add Casa cert authn plugin documentation by @jgomer2001 in #12925
• feat: client certificate authentication casa plugin by @jgomer2001 in #12927
• fix(docs): broken links in Authorization Endpoint (#12243) by @Vinayak9769 in #12745
• fix(docs): Set CEDARLING_JWT_SIG_VALIDATION to "disabled" by @ossdhaval in #12917
• chore(jans-cedarling): Update cedar-policy version to 4.8.2 by @olehbozhok in #12926
• fix(config-api): client secret getting encrypted by @pujavs in #12930
• fix: refactor DN parsing by @jgomer2001 in #12935

New Contributors

• @dagregi made their first contribution in #12833
• @Vinayak9769 made their first contribution in #12745

Full Changelog: v1.15.0...nightly

v1.15.0

1.15.0 (2025-12-19)

Features

• cloud-native: add ability to run persistence to update entries (#12760) (4fab8b1)
• cloud-native: add support for enabling/disabling Casa admin console (#12771) (376237b)
• config-api: User search by mobile number not functioning and Swagger API schema changes (#12704) (63c9c98)
• demo: mcp server for Janssen config api (#12778) (dd1930b)
• jans-auth-server: allow to run update token scripts universally (even if it's not assigned to client) #12837 (#12844) (1946606)
• jans-auth-server: introduced interception script for tx_tokens #8376 (#12724) (a1d9d23)
• jans-auth-server: introducing interception script for tx_tokens (a1d9d23)
• jans-auth-server: make sessions time check configurable for high latency environments when defaultPromptLogin=true #12802 (#12821) (ebea173)
• jans-auth-server: upgraded status list implementation to latest draft 13 (from 02) #10097 (#12783) (f045fba)
• jans-cedarling: Multi-issuer authorization feature for Cedarling (#12503) (334a235)
• jans-config-api: configuration changes to handle clientSecret in response (#12847) (2738d91)
• jans-fido2: added the final fixes and calls to the metrics-func… (#12800) (aca7ea9)
• jans-fido2: added the metrics aggregations and analytics (#12405) (9d80cda)
• jans-pycloudlib: add support for connecting to cloudsql via cloud auth proxy (#12788) (192c071)
• orm: add mysql-socket dependecy (#12824) (30ece77)
• orm: add postgres-socket-factory (#12827) (f99adc1)
• terraform-provider: add agama and config data sources (#12855) (e9fea40)

Bug Fixes

• config-api: error message not indicating exact cause that SP name already exists (#12830) (2189ef4)
• config-api: user birthday not displayed when fetched #12799 (#12803) (a1e3b6d)
• docker-jans-persistence-loader: preserve the order of columns when creating the table (#12818) (a8790f4)
• docs: align Cedarling docs file naming and structure with navigation (#12710) (3e76bab)
• docs: fix linting issues - trailing spaces and EOF newline (#12731) (6f84f97)
• docs: fix linting issues - trailing spaces and EOF newline (#12849) (6f1837d)
• docs: fix linting issues - trailing spaces and EOF newline (#12758) (b7b0d02)
• docs: fix linting issues - trailing spaces and EOF newline (#12766) (89bc4dc)
• docs: fix linting issues - trailing spaces and EOF newline (#12835) (37c20f9)
• docs: fix linting issues - trailing spaces and EOF newline (#12840) (917e56f)
• docs: fix linting issues - trailing spaces and EOF newline (#12843) (2377415)
• docs: Set CEDARLING_JWT_SIG_VALIDATION to "disabled" (#12854) (7873d25)
• docs: update PostgreSQL installation command (#12709) (502d0db)
• docs: updated Cedarling Intro Diagram (#12738) (d6b9f40)
• failed authentication is not handled in jans-tarp (#12721) (4bdfb0e)
• git package is not installed during execution of startjanssenmonolithdemo script (#12725) (c29cbab)
• jans-auth-server: ExternalTokenExchangeService.externalValidate returns null instead of result (#12809) (470badd)
• jans-auth-server: ExternalTokenExchangeService.externalValidate() returns null instead of result #12804 (470badd)
• jans-auth-server: put in access_token and id_token jwt only explicitly requested and allowed claims (#12848) (a19d82d)
• jans-cedarling: Add LSP support for Cedarling python errors bindings (#12807) (033e792)
• jans-cedarling: Improve caching JWT tokens to make it more deterministic (#12797) (c9dc41a)
• jans-cedarling: Update cedarling initialization to run with no trusted issuer (#12455) (4cf1bf2)
• jans-cli-tui: hide passwords in log files (#12795) (a881a6f)
• jans-cli-tui: sort user claims (#12755) ([ac255bd](ac255bd3663...

v1.14.0

1.14.0 (2025-11-18)

Features

• changes in endpoints used in Admin UI for cedarling integration (#12652) (458abbb)
• cloud-native: add policy store file for admin-ui and cedarling integration (#12659) (621e303)
• core: allow to reuse cluster node services (#12506) (a1f56c9)
• core: update jython to v2.7.4 (#12394) (2776762)
• implement token cache (#12687) (88d8e89)
• jans-auth-server: adding interception script for PAR #10556 (#12334) (7027c1c)
• jans-config-api: rest endpoint specifications for Cedarling integration in Admin UI (#12388) (7d4f3f2)
• jans-linux-setup: Admin UI and Cedarling integration (#12572) (a3f75eb)
• jans-linux-setup: jans-lock-cedarling custom lib (#12590) (4ffb47a)
• jans-lock: audit server actions (#12588) (dcb2fbd)
• jans-lock: log audit status (#12600) (e726a9e)

Bug Fixes

• cloud-native: add missing jans-lock policy (#12402) (7c3f0b6)
• cloud-native: escape special characters used in database credentials (#12565) (1501723)
• cloud-native: unable to decode cedar policy schema base64 (#12631) (2fb4c26)
• config-api: agama deployment metadata type fix for deployment (#12374) (6dd0db3)
• docs: add contact email address for CLA contributions (#12684) (108356e)
• docs: autogenerate docs (#12656) (ada29b2)
• docs: broken link in the Run integration tests #12233 (#12274) (8076bf1)
• docs: correct broken link in prompt create page (#12399) (b485d89)
• docs: correct broken links in External Libraries documentation (#12540) (a812b53)
• docs: fix broken link in client-registration.md (#12545) (e67dcae)
• docs: fix broken link with revision and testing (#12539) (257597d)
• docs: fix link of cedarling in a javascript app (#12593) (d72c853)
• docs: fix link of Cedarling Rust Developer Guide (#12592) (2250afb)
• docs: fix link of Client Registration scripts link (#12591) (dae2ca5)
• docs: fix link of Token Endpoint (#12685) (cdd657a)
• docs: fix link to Cedarling TBAC quickstart in Python docs (#12558) (cad0a0e)
• docs: fix link to ConfigApiInterception script (#12528) (adb84ae)
• docs: Fix link to dynamic scope script in userinfo.md (#12519) (fd54f1e)
• docs: fix link to end session interception script (#12520) (79f2174)
• docs: fix link to Persistence Extension documentation (#12452) (7cab7b0)
• docs: fix typo in trusted issuers section of documentation (#12569) (1462da7)
• docs: update broken link in Access Evaluation Endpoint (#12527) (f789e0a)
• docs: update jans Ubuntu and Using CLI/TUI docs (#12466) (38983c3)
• jans-auth-server: swagger yaml has bad identation #12422 (#12423) (45815a0)
• jans-casa: resolve multiple device registration and passkey imag… (#12501) (e2782c2)
• jans-casa: resolve multiple device registration and passkey image styling issues (e2782c2)
• jans-cedarling: Add namesapce support for default entities and parse Cedar JSON format (#12462) (92a0034)
• jans-cedarling: disable hash checking in sidecar (#12481) (81b0ea0)
• jans-cedarling: FIx boostrap properties documentation (#12420) (00dddae)
• jans-cedarling: Fix retrieving resource entity from default entities (#12544) (b9379e0)
• jans-cedarling: Update rust toolchain because dependency lib was updated (#12457) (a8a6d3c)
• jans-cli-tui: role is admin not api-admin (#12688) (f5fa229)
• jans-config-api: inum of duplicate scopes (#12411) ([25b3b6a](https://github.com/JanssenProject/jans/commit/...

v1.13.0

What's Changed

• chore(main): release 1.11.0 by @mo-auto in #12137
• feat: expose API to manage user tokens by @jgomer2001 in #12144
• chore: revert to nightly by @moabu in #12148
• feat(jans-linux-setup): add add password grant type to scim client for testing by @devrimyatar in #12142
• chore: update ZK repo and version by @jgomer2001 in #12154
• fix(jans-cli-tui): Admin UI Roles by @devrimyatar in #12162
• build: jackrabbit version change by @pujavs in #12165
• fix(jans-cli-tui): error saving auth logging by @devrimyatar in #12172
• (jans-fido2): removed unused fields and fix the typo issue by @imran-ishaq in #12048
• fix(config-api): ssa delete endpoint and fix to admin-ui-permission delete endpoint by @pujavs in #12174
• feat(jans-pycloudlib): add low-level support for SSL persistence connection by @iromli in #12194
• feat(jans-linux-setup): PostgreSQL SSL support by @devrimyatar in #12195
• feat(config-api): scope update for ssa endpoint by @pujavs in #12191
• feat(cloud-native): add support for SSL connection to persistence by @iromli in #12198
• feat(jans-linux-setup) ssl settings for postgresql by @devrimyatar in #12200
• chore: release 1.12.0 by @moabu in #12205
• chore(main): release 1.12.0 by @mo-auto in #12212
• feat(jans-fido2): add comprehensive data model for the performance me… by @imran-ishaq in #12143
• fix: 1.12.0 hotfix by @moabu in #12217
• fix(jans-fido2): resolved schema issue by @imran-ishaq in #12238
• chore: revert from 1.12.0 to nightly by @moabu in #12265
• chore(deps): bump org.apache.maven.plugins:maven-deploy-plugin from 3.1.3 to 3.1.4 in /jans-scim by @dependabot[bot] in #12005
• fix(jans-linux-setup): always set user agent to Mozilla while downloading by @devrimyatar in #12261
• chore(deps): bump org.jacoco:jacoco-maven-plugin from 0.8.12 to 0.8.13 in /jans-scim by @dependabot[bot] in #12006
• feat(jans-auth-server): added jwt-bearer grant type #11979 by @yuriyz in #12098
• fix(cloud-native): fix sql-ssl secret volume permissions by @misba7 in #12275
• Cedarling diagram update by @nynymike in #12270
• fix(docs): broken link in the Rich Authorization Requests #12236 by @The-D-007 in #12239
• fix(jans-cli-tui): agama projects github response by @devrimyatar in #12305
• chore(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.4.0 to 4.9.6.0 in /jans-casa by @dependabot[bot] in #12188
• feat(jans-auth-server): Added DPoP Proof Replay mitigation(s) #2117 by @yuriyz in #12304
• fix(jans-fido2): fix persistence entity manager issue by @imran-ishaq in #12313
• chore(deps): bump bc.version from 1.80 to 1.82 in /jans-casa by @dependabot[bot] in #12310
• fix(docs): remove unwanted content from Using CLI/TUI document #12216 by @The-D-007 in #12220
• fix(docs): broken link in the cedarling getting started #12231 by @The-D-007 in #12272
• fix(docs): broken link in the Janssen's FIDO2 server #12235 by @The-D-007 in #12277
• chore: update jans source version by @moabu in #12323
• chore(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.9.4.0 to 4.9.6.0 in /jans-scim by @dependabot[bot] in #12189
• chore(deps): bump org.apache.maven.plugins:maven-javadoc-plugin from 3.11.3 to 3.12.0 in /jans-scim by @dependabot[bot] in #12293
• chore(deps): bump org.apache.maven.plugins:maven-dependency-plugin from 3.8.1 to 3.9.0 in /jans-scim by @dependabot[bot] in #12317
• feat(charts): update hpa apiVersion to autoscaling/v2 by @misba7 in #12319
• fix(jans-linux-setup): agama projects github response by @devrimyatar in #12326
• fix(jans-cedarling): Fix broken Cedarling build by @olehbozhok in #12328
• fix(jans-linux-setup): jans command linked to /usr/sbin by @devrimyatar in #12339
• fix: references of using the wrong whl in flask cedarling by @moabu in #12336
• fix(cloud-native): avoid saving keySelectionStrategy config multiple times by @iromli in #12342
• feat(core): disable logging service log level updates if by @yurem in #12348
• fix(docs): broken link in the Cedarling logs #12232 by @The-D-007 in #12273
• jans(lock): implement cedarling protection support by @yurem in #12352
• fix(lock): sync policy scope name by @yurem in #12359
• docs(jans-cedarling): update sidecar instructions by @SafinWasi in #12345
• feat: update terraform provider by @moabu in #12362
• chore: prepare release for 1.13.0 by @moabu in #12367

Full Changelog: v1.11.0...v1.13.0

v1.12.0

Known Issues

• Agama project uploads via TUI/CLI

What's Changed

• chore(main): release 1.11.0 by @mo-auto in #12137
• feat: expose API to manage user tokens by @jgomer2001 in #12144
• chore: revert to nightly by @moabu in #12148
• feat(jans-linux-setup): add add password grant type to scim client for testing by @devrimyatar in #12142
• chore: update ZK repo and version by @jgomer2001 in #12154
• fix(jans-cli-tui): Admin UI Roles by @devrimyatar in #12162
• build: jackrabbit version change by @pujavs in #12165
• fix(jans-cli-tui): error saving auth logging by @devrimyatar in #12172
• (jans-fido2): removed unused fields and fix the typo issue by @imran-ishaq in #12048
• fix(config-api): ssa delete endpoint and fix to admin-ui-permission delete endpoint by @pujavs in #12174
• feat(jans-pycloudlib): add low-level support for SSL persistence connection by @iromli in #12194
• feat(jans-linux-setup): PostgreSQL SSL support by @devrimyatar in #12195
• feat(config-api): scope update for ssa endpoint by @pujavs in #12191
• feat(cloud-native): add support for SSL connection to persistence by @iromli in #12198
• feat(jans-linux-setup) ssl settings for postgresql by @devrimyatar in #12200
• chore: release 1.12.0 by @moabu in #12205
• chore(main): release 1.12.0 by @mo-auto in #12212
• feat(jans-fido2): add comprehensive data model for the performance me… by @imran-ishaq in #12143
• fix: 1.12.0 hotfix by @moabu in #12217

Full Changelog: v1.11.0...v1.12.0

v1.11.0

1.11.0 (2025-09-11)

Features

• config-api: audit for config-api endpoint (#11895) (5088857)
• config-api: endpoint to return table info (#11866) (bd94675)
• config-api: lock and fido2 config and scim audit changes (#12107) (cb004f8)
• increase the validity period of tokens in tarp to one day (#11900) (8b0195e)
• jans-auth-server: added cookie interception script #366 (#11975) (aa47c7f)
• jans-auth-server: created interception script for Logout Status JWT #11250 (#11930) (19728e0)
• jans-auth-server: provided configuration for changing case-sensitivity of FAPI response #11394 (#12018) (e388493)
• jans-auth-server: updates to Audience Values for OAuth 2.0 Authorization Servers #11842 (#11851) (e71c35b)
• jans-auth: add type prefixes to each keys which application stores in cache #11565 (#11871) (0a4fe05)
• jans-auth: handle gzip compressed token responses (#12052) (cbde4d6)
• jans-cedarling: Support default_entities in policy_stores (#11936) (0ea7511)
• jans-cedarling: use hashes for ID in fields (#10853) (5c9423a)
• jans-cli-tui: audit log tab for Config Api (#11931) (992a9cc)
• jans-config-api: restore jans-config-api plugins jans-link-plugin (#11912) (2941a9f)
• jans-config-api: ssa revoke endpoint should be created in config-api (#12134) (e0cbefc)
• jans-core: update jetty to 12.0.25 (#12075) (9781cdb)
• jans-linux-setup: add scim user tokens scope (#12136) (e6c0dc9)
• jans-linux-setup: redirecting errors on stderr for the scheduler (#12013) (b00469b)
• offer a way to easily copy the tokens to clipboard (#11949) (053d95e)

Bug Fixes

• add no gorn mode (#12011) (46fc7c4)
• cloud-native: error running kc-jans-scheduler (#12053) (86c2fed)
• cloud-native: invalid pathType when nginx ingress controller uses strict-validate-path-type config (#11911) (ba6f74b)
• config-api: asset endpoint fix for uplaod and fetch (27f800a)
• config-api: asset endpoint fix for upload and fetch (#12039) (27f800a)
• css style for paragraph rendering (#12014) (e3fd6ee)
• docs: fix broken links issue (#11902) (7b94ab4)
• docs: fix formatting in Jans README (#11938) (4766343)
• docs: fix person authentication docs url issue (#12103) (600bbce)
• docs: fix person authentication url issue (600bbce)
• docs: Fix script link issue (7b94ab4)
• docs: include benchmark doc link (#11987) (2b3663a)
• docs: Lock Server Docs Update (#12032) (c666eb9)
• docs: merge the Cedarling quick start guides (#11872) (1686099)
• docs: remove doc readme (df7184e)
• docs: remove duplicate interception-scripts file (83ac957)
• docs: remove duplicate interception-scripts readme file (#11963) (83ac957)
• docs: remove unused README (#12104) (df7184e)
• docs: update `application-session (79e71b5)
• docs: update `readmeformat (4766343)
• docs: update doc SMTP configuration in TUI section (#12105) (0229a6d)
• docs: update endpoint file title (#11962) (34356f4)
• docs: update java Cedarling docs (#12102) (66c9d3e)
• docs: update java doc (66c9d3e)
• docs: update link to the script location (#11940) (79e71b5)
• docs: update TARP installation instructions (#11856) (41d08d9)
• ignore trailing slash of issuer (5fc0ed5)
• jans-auth-server: acr mappings (alias) does not work if acr comes from request object's "claims/id_token" ([#12060](htt...

v1.9.0

1.9.0 (2025-07-25)

Features

• add check to prevent unsigned user-info jwt in the role_based_scopes_update_token script (Admin UI) (#11724) (52c4682)
• add the mandatory permissions for default roles in Admin UI (#11711) (9a56669)
• added essentialPermissionInAdminUI attribute to AdminPermission object (#11714) (d945703)
• cloud-native: add the mandatory permissions for default roles in Admin UI (#11739) (7831887)
• config-api: audit for config-api endpoints (#11760) (be52530)
• config-api: logs to indicate password related activity (#11791) (838686b)
• jans-auth-server: deprecated /revoke_session endpoint (it duplicates Global Token Revocation functionality) #11470 (#11801) (d7178aa)
• jans-auth-server: improved SessionIdService - added option to load session without local copy #11366 (#11761) (4510bd2)
• jans-auth-server: small improvement of ssa doc #11736 (#11737) (7a6af91)
• jans-auth: exclude htmlunit-* dependencies from final artifacts (#11830) (1c17b6d)
• jans-auth: fix client_registration script imports (#11705) (8b75934)
• jans-cedarling: add maven javadocs plugin in java binding (#11745) (f68e936)
• jans-cedarling: add support for the optional SSA JWT (#11653) (902f9d0)
• jans-cedarling: implement JWT status list validation (#11520) (f2e7f29)
• jans-cedarling: output cedar annotations when there are any policy failures (#11588) (0714a17)
• jans-config-api: add cedarlingLogType attribute in Admin UI configuration (#11755) (d4da957)
• jans-config-api: add endpoint to reset license details in Admin UI configuration (#11786) (56df1e6)
• jans-config-api: update OpenApi specs for Admin UI plugin (#11729) (4dc0c9a)
• jans-fido2: Add unit tests for attestation controller for handling missing username, invalid origin, and challenge, with successful register and verify scenarios. (ca68fd0)
• jans-linux-setup: add Debian 13 MySQL support (#11759) (7fbcd10)
• jans-linux-setup: create clients takes all possible arguments (#11770) (eca4b0c)
• jans-linux-setup: debian 13 support for internal use (#11685) (7b6e25b)
• jans-orm: add method to return internal information about tables (#11695) (7039b74)
• update OpenApi specs for Admin UI plugin (4dc0c9a)

Bug Fixes

• add defeat the gorn (5ed2dcd)
• config-api: user name validation modification (#11776) (45386c1)
• doc: added default values for sessionId related properties to avoid confusion (#11781) (0894860)
• docs: add documentation for configuration and session management (#11091) (0184771)
• docs: add note on config refresh behavior in TUI (#11789) (b237d19)
• docs: add upgrade note about manual custom script updates (#11719) (8a6e3db)
• docs: docs fix cedarling propertie link issue (aaa4eb9)
• docs: docs fix Sample Scripts link issue (bf617a3)
• docs: docs fix sample scripts link issue (#11779) (bf617a3)
• docs: docs update jans readme (#11687) (bf42440)
• docs: fix Cedarling property link issue (#11780) (aaa4eb9)
• docs: fix incorrect link in Jans Casa docs (#11798) (ec9a3a9)
• docs: remove attribute page (00e0b2d)
• docs: remove config-api attribute page (#11722) (00e0b2d)
• docs: remove converting data (e729c89)
• docs: remove the link to the converting data document from left nav (#11720) (e729c89)
• docs: reorganise supported OS versions for VM installation (#11679) (329a113)
• docs: update supported OS versions (329a113)
• docs: update testing document with Poetry installation instructions (#11681) (e609156)
• jans-auth-server: set sub claim to client identifier for "client credentials grant" for AT as JWT #11413 (#11778) (60373a7...

v1.8.0

1.8.0 (2025-06-24)

Features

• charts: add nodeSelector spec (#11495) (90409f8)
• cloud-native: introduce Logout Status JWT (#11626) (6f5fe8f)
• cloud-native: introduce session_jwt=true at Authorization Endpoint and Session JWT Status List Endpoint (#11477) (5ae709f)
• config-api: scope search to include scopeType (#11607) (b77b72d)
• config-api: use orm method to provide persistence metadata (#11509) (dbdc1bd)
• config-api: use orm method to provide persistence metadata #11459 (#11473) (736d7f6)
• improve the display of cedarling result (#11552) (5ec5268)
• jans-auth-server: introduce session_jwt=true at Authorization Endpoint and Session JWT Status List Endpoint #11229 (#11251) (6b45f51)
• jans-auth-server: introduced Logout Status JWT #11468 (#11505) (92796fb)
• jans-auth: allow to override HttpService2 connection manager setting (54c547a)
• jans-auth: allow to override HttpService2 connection manager settings (#11586) (54c547a)
• jans-auth: update owasp (#11610) (bda24dc)
• jans-cedarling: implement sending logs to the lock server (#11161) (9330821)
• jans-cedarling: improve error message if json parsing of policy store failed (#11508) (4904d90)
• jans-cedarling: jans cedarling java binding (#11441) (da5423f)
• jans-cedarling: upgrade jna in cedarling-java binding (#11614) (aa45972)
• jans-cli-tui: display build date and build versions (#11539) (59415c8)
• jans-cli-tui: load agama community projects in 20 mins interval (#11627) (44873e0)
• jans-cli-tui: required property for attribute (#11593) (6b8c7a9)
• jans-config-api: update the license API url called from config-api (Admin UI Plugin) (#11559) (c8b7437)
• jans-core: added diagnostic to java compiler (#11562) (99bd129)
• jans-linux-setup: optional rdbm db schema (#11503) (f516bbc)
• jans-orm: add method to provide persistence metadata (#11450) (a066fcf)
• jans-orm: implement solution to import hashed passwords (7518dca)
• jans-orm: implement solution to import hashed passwords (#11601) (d8f5faa)
• jans-script: add sample Argon2 Persistence Ezxtension script (#11521) (3e2593f)
• jans-tui: added Jans-Client header (#11594) (13bd6c1)
• jans=-script: add sample Argon2 Persistence Ezxtension script (3e2593f)
• orm: fetch databaseName for PersistenceMetadata (#11485) (f9ffcac)
• orm: fix doc file (#11494) (0e71ad6)
• orm: fix doc file (#11497) (76d8f1d)
• orm: support password hashing using Argon2 (#11465) (5d48b27)
• orm: support password hashing using Argon2 (#11481) (47549af)
• update tf build docs (#11632) (c9f37dd)
• update the license API url called from config-api (Admin UI Plugin) (c8b7437)

Bug Fixes

• ConfigApi access to endpoint without scope verification (92eea4d) 🔒
• build_cedarling_uniffi job in github workflow is failing (355cb2a)
• charts: invalid template function calls when using AWS secrets manager (#11467) (6a114a6)
• config-api: Scope filter based on fieldValuePair (#11528) (560f7a3)
• config-api: Scope filter based on fieldValuePair #11524 (560f7a3)
• docs: Add Cedarling Technical Overview doc (d04336d)
• docs: add appropriate title to the document (#11579) (2907197)
• docs: add Cedarling technical overview doc (#11581) (d04336d)
• docs: correct jans api swagger reference (#11474) (7072a83)
• docs: remove overview title (2907197)
• docs: update release urls to point to latest Janssen release (#11557) ([d13b291](https://github.com/JanssenProject/jans/co...

v1.7.0

1.7.0 (2025-05-20)

Features

• jans-auth-server: added refresh token lifetime to Token Endpoint response #11400 (#11414) (00d7c88)
• jans-cedarling: update plugin to use binding (#11356) (c61ef53)
• jans-cli-tui: ssa templates (#11368) (ed18096)
• jans-core: add jakarta.mail for TLS support (#11428) (8cf6b68)
• jans-lock: try to reload /.well-known/openid-configuration on f… (#11392) (00e2257)
• jans-lock: try to reload /.well-known/openid-configuration on failure (00e2257)
• use cedarling uniffi kotlin binding in java project (#11336) (067b3c1)

Bug Fixes

• docs: add Config API OpenAPI Spec generation at build time (#11407) (70277c5)
• docs: add sections to place ADRs and design decisions (#11380) (4c0db93)
• docs: refactor development docs to add content from Wiki (#11409) (71d133f)
• docs: update curl instructions for jans config api (#11415) (39b6b82)
• jans-cedarling: fix logs in jwt module not getting displayed correctly (#11369) (e856545)
• jans-cli-tui: array type in auth properties (#11399) (6e4d7e4)
• jans-cli-tui: object type configuration properties (#11391) (7cf13a1)
• mail dependencies (#11426) (58c02b0)
• remove version_name attribute from manifest.json (#11387) (0febbd9)

Miscellaneous Chores

• prepare release 1.7.0 (#11432) (13e4c41)

v1.6.0

1.6.0 (2025-05-08)

Bug Fixes

• fix(jans-linux-setup): pass -n to setup.py when invoked by -yes by @devrimyatar in #11180
• fix(docs): fix image paths in SAML SSO document by @ossdhaval in #11183
• fix(docs): add missing script to index by @yurem in #11186
• fix(jans-auth-server): Access Token from and OIDC flow should not contain the code #11181 by @yuriyz in #11197
• docs(jans-cedarling): improve cedarling docs by @rmarinn in #11193
• docs(jans-cedarling): new quickstart using tarp by @SafinWasi in #11004
• chore: release nightly by @moabu in #11213
• feat(jans-auth-server): add none client authentication support to PAR endpoint #10573 by @yuriyz in #11201
• feat: add ability to use cedarling authz before and after authentication by @duttarnab in #11203
• fix(jans-cedarling)!: role entity not being created in the unsigned interface by @rmarinn in #11176
• fix(docs): proofread and update the Cedarling quick start guide by @ossdhaval in #11210
• fix(docs): proofread and update the TBAC Cedarling quick start guide by @ossdhaval in #11214
• fix(docs): update titles for the Cedarling quick start guides by @ossdhaval in #11220
• Update rhel.md for sha command update by @manojs1978 in #11189
• feat: refactor tarp to adjust with security changes in chrome browser by @duttarnab in #11232
• feat(jans-linux-setup): support for cleanUpInactiveClientAfterHoursOfInactivity for clients by @devrimyatar in #11231
• chore(deps): bump blazemeter/taurus from 1.16.38@sha256:5bb39436180f7c769e00140b781bb1054a1eb4592dd9b82f76dcde470811bf39 to sha256:aa22ab6b42d24ec87ea9f68e4d6db9118619eecf69db76c1c0711f3515897780 in /demos/benchmarking/docker-jans-loadtesting-jmeter by @dependabot in #11238
• fix(jans-cedarling): entity builder not finding the 'iss' entity by @rmarinn in #11235
• bug(jans-cedarling)!: Fix all tokens_metadata to token_metadata by @olehbozhok in #11215
• feat(jans-auth-server): add configurable way to put user claims to session attributes #9625 by @yuriyz in #11219
• fix: validate license configuration in the database when fetching license details from Agama Lab server upon expiry (Admin UI) by @duttarnab in #11245
• fix(jans-pycloudlib): resolve schema error caused by marshmallow upgrades by @iromli in #11247
• fix: remove ID from profile instead of nullify it by @jgomer2001 in #11253
• chore(cloud-native): sync jans-pycloudlib to handle marshmallow library API changes by @iromli in #11255
• feat: rename jans-tarp project to janssen-tarp by @duttarnab in #11249
• chore: updgrade nimbus so json-smart is bumped to 2.5.2 by @jgomer2001 in #11264
• chore(jans-cedarling): add post to cedar schema by @SafinWasi in #11227
• [Snyk] Security upgrade io.swagger.core.v3:swagger-core-jakarta from 2.2.7 to 2.2.11 by @mo-auto in #11166
• build(config-api): lib version to resolve vulnerabilities by @pujavs in #11262
• feat(core): update resteasy to new version by @yurem in #11269
• Update resteasy by @yurem in #11273
• fix(jans-cedarling): fix usage outdated field resource_type by @olehbozhok in #11266
• fix(bom): use right jakarta.ws.rs-api version by @yurem in #11278
• feat(jans-cedarling): Optimize Cedar libraries size by @olehbozhok in #11281
• fix(jans-cedarling): fix docs bootstrap properties, remove redundant property by @olehbozhok in #11275
• fix(bom): deprecate jackson-module-jaxb-annotations by @yurem in #11286
• fix(bom): deprecate jackson-module-jaxb-annotations by @yurem in #11287
• fix(core): fix ClassNotFoundException XmlElement exception by @yurem in #11293
• fix(cloud-native): demo scripts fail to deploy cluster due to python externally-managed-environment error by @iromli in #11290
• feat(jans-cedarling): add some logging msgs for jwt service startup by @rmarinn in #11178
• feat: add field reset button in cedarling authz form by @duttarnab in #11260
• fix: update terraform provider docs and API calls by @moabu in #11301
• feat(jans-cli-tui): splash screen by @devrimyatar in #11298
• feat: allow linking to occur in a popup by @jgomer2001 in #11305
• fix(config-api): custom script creation failing #11307 by @pujavs in #11308
• Jans linux setup jetty 12 11276 by @devrimyatar in #11295
• fix(jans-cli-tui): add pylib to path before importing promptoolkit by @devrimyatar in #11313
• feat(jans-cedarling): go binding for cedarling by @olehbozhok in #11239
• fix(jans-linux-setup): jetty.sh script waits service started by @devrimyatar in #11319
• feat(jans-auth): add missing erver side tests dependecy by @yurem in #11315
• Lock api by @yurem in #11317
• Auth deps by @yuremm in #11321
• feat(jans-config-api): disable jetty ee9-jsp module in jans-config-api by @yurem in #11324
• chore(deps): bump setuptools from 70.0.0 to 80.1.0 in /docs by @dependabot in #11327
• chore(deps): bump blazemeter/taurus from 1.16.40 to 1.16.41 in /demos/benchmarking/docker-jans-loadtesting-jmeter by @dependabot in #11302
• chore(deps): bump docker/setup-qemu-action from 5306bad0baa6b616b9934712d4eba8da2112606d to 737ba1e397ec2caff0d098f75e1136f9a926dc0a by @dependabot in #11283
• chore(deps): bump actions/setup-python from 5.0.0 to 5.6.0 by @dependabot in #11282
• chore(deps): bump sigstore/cosign-installer from 3.5.0 to 3.8.2 by @dependabot in #11270
• fix(jans-fido2): #11331 minor edits by @maduvena in #11332
• chore: misc casa image updates by @jgomer2001 in #11334
• docs: add cedarling rust docs by @moabu in #11311
• chore(deps): bump org.quartz-scheduler:quartz from 2.3.2 to 2.5.0 in /jans-casa by @dependabot in #10206
• chore(deps): bump commons-io:commons-io from 2.17.0 to 2.19.0 in /jans-casa by @dependabot in #11217
• fix: fix the android and iOS sample app based on changes in cedarling uniffi binding by @duttarnab in #11294
• chore(deps): bump org.apache.maven.plugins:maven-clean-plugin from 2.5 to 3.4.1 in /jans-casa by @dependabot in #10903
• chore(deps): bump org.apache.maven.plugins:maven-war-plugin from 2.3 to 3.4.0 in /jans-casa by @dependabot in #9985
• chore(deps): bump org.apache.maven.plugins:maven-resources-plugin from 2.6 to 3.3.1 in /jans-casa by @dependabot in #9996
• chore(deps): bump org.apache.maven.plugins:maven-site-plugin from 2.1.1 to 3.21.0 in /jans-casa by @dependabot in #10064
• chore(ci): SBOM enrichment and upload as a release asset by @ossdhaval in #11267
• feat(cloud-native): upgrade to Jetty 12 by @iromli in #11297
• fix(jans-cedarling): switch cedarling instance to pointer by @SafinWasi in #11338
• fix(core): fix unable to decorate com.sun.faces.config.ConfigureListener by @yurem in #11345
• feat(jans-link): turn off Weld dev mode in production by @yuremm in #11347
• fix(charts): missing feature of jans-keycloak-link by @iromli in #11257
• fix(jans-cli-tui): include jans-logo.txt in package by @devrimyatar...