1.12.0

API Changes

• The Context request-object will now be passed to the request validation as additional-parameter. This allows to check also for authentication details during resource validation in case that a client should have only limited rights to modify a resource.

Bug Fixes

• Several Bugs were fixed related to patch operations.
  • Issue: #200
  • Issue: #201
  • While fixing these issues a I was able to discover several other problems related to these issues that were also be fixed
  • Please take a look at the wiki (https://github.com/Captain-P-Goldfish/SCIM-SDK/wiki/Patching-resources) to check how the behaviour has changed with this version

1.11.1

Bug Fixes

• Fixed a bug that caused unwanted attributes to be returned after patch-operations. @see #188

1.11.0

Features

• A workaround was added to fix broken patch-remove requests that are constructed by microsoft azure. see #167 for more details
• the ForkJoinPool for parallel execution during auto-sorting and auto-filtering is now configurable in the ServiceProviderinstance
• The new context-object in the ResourceHandler-methods provides 2 new methods that can be used to provide resource-urls to the current resource or other resources. This feature relates to #176

API Changes

• Changed the method signatures of the ResourceHandler-implementation that will now accept a Context object that also holds the previously received Authorizationobject.

Bug Fixes

• fixed a bug that caused NullPointerExceptions on auto-filtering if the filter-expression referenced attributes on the meta-attribute

1.10.0

Features

• A new feature was added. See https://github.com/Captain-P-Goldfish/SCIM-SDK/wiki/Validation-of-resources
• a new submodule was added that helps to create Java POJOs from schema files: https://github.com/Captain-P-Goldfish/SCIM-SDK/tree/master/scim-sdk-schema-pojo-creator

API Changes

• The schema validation was completely reworked due to its monolithic structure as single class it was hard to maintain and errors were hard to be found. This change also results in changed error messages.
• If an endpoint requires authentication and the developer missed to add the Authorization interface implementation to the ResourceEndpoint a log-warning will be written on each request to the specific resource-type-endpoint.
• Changed the log level of several messages
• Add small performance boost for create and update requests
• The schemas-attribute is now optional in requests:
  • In order to simplify the usage with e.g. javascript frameworks like React I removed the necessity in requests to add the schemas-attribute. It is now determined automatically by the API based on the endpoint that is accessed. Also resource-extensions are determined automatically
• Added a new reference Type URL
  • RFC7643 defines 3 referenceTypes [URI, EXTERNAL, RESOURCE]. I allowed myself to add a fourth referenceType [URL] that checks that the provided reference is a URL
• Authentication-failure is no longer logged as an error. The log message will now be printed on debug level. An administrator does not need to be informed about any failed authentication but should be able to trace it.

Bug fixes

• During rebuilding of the schema validation implementation some minor uncritical bugs were detected and fixed
• the startIndex will only be handled by the API if the auto-filtering feature is enabled. It clashes otherwise with the intention of the developer who already handled the startIndex
• A bug was fixed that caused the ScimRequestBuilder on client side in some cases to ignore the preconfigured basic-authentication details.
• If the client sends illegal values for startIndex or count in the request an appropriate error message with status 400 (BAD_REQUEST) will be returned

Build

• the build sources are now delomboked during release to prevent a byte and source code mismatch during debugging in the IDE

1.9.2

Bug Fixes

• Query Parameter parsing is now less restrictive @see #126

API Changes

• log message level of "no authorization information for the current client on resource endpoint" was changed to trace to reduce unnecessary high log output on debug

SCIM-for-keycloak

• This version will be the base for https://github.com/Captain-P-Goldfish/scim-for-keycloak kc-12-b2

1.9.1

Bug Fixes

• Patch operations are now handled case insensitive

1.9.0

Bug Fixes

• Fixed schema validation for patch requests that are using other simple value types than string
• json-null values will no longer cause DocumentValidationExceptions
• patch-remove does now also work on complex types
• Fixed an error that caused elements to be not removed from multivalued types on patch operations
• Fixed Filtering for extensions. Before filtering did not work on the EnterpriseUser extension or any other extension
• Fixed removing complex types for patch operations when using the fully qualified attribute name e.g. urn:ietf:params:scim:schemas:extension:enterprise:2.0:User:manager
• Fixed the response value for WWW-Authenticate header in case of failed authentication. Before the AuthenticationScheme.authenticationType was returned but the correct value to return is AuthenticationScheme.name

API Changes

• the username attribute from the User schema is defined to be none empty by SCIM. The api-validation extension has been used to enforce the username to be not blank
• the setAttribute(String attributeName, String attributeValue)-method of ScimObjectNode does not remove string values from the json structure anymore if the string consists of whitespaces only or is simply a string with length 0. Only the value null will cause the attribute to be removed.
• The internal server error message has changed from sorry but an internal error has occurred. to An internal error has occurred.
• Changed method signature of ResourceHandler#getResource. ExcludedAttributesand Attributes parameter are now added as method parameters. This can be used to avoid unnecessary joins

1.8.3

Maintenance:

• Update of third party dependencies

Fixes:

• Loosen up schema validation for compatability with Microsoft Azure AD (Azure AD sends illegal values in the schemas-attribute of resources with extensions. The schema validation is now removing such values during validation)

Remove SCIM-for-keycloak:

• moved SCIM-for-keycloak to its own repository: https://github.com/Captain-P-Goldfish/scim-for-keycloak

SCIM-for-keycloak -1.8.2

API

Maintenance

• Updates of third party dependencies

SCIM-for-keycloak

Bug Fixes

• fix #90 (username attribute validation that restricted usernames to match the following pattern was removed '[a-z-_]+')

SCIM-for-keycloak -1.8.1

API

Bug Fixes

• Patch requests with single valued "value"-attributes will not be rejected anymore

SCIM-for-keycloak

Bug Fixes

• Group members are now removable
• Added missing externalId attribute to attribute-tables of the provided resources
• Remove "scim-group" attribute from the GroupHandler implementation that might have caused problems with groups that e.g. have been created in the web admin console
• Fixed a bug that prevented creating groups with names that were prefixes of another groupname