Skip to content

Releases: Yubico/java-webauthn-server

Pre-release 2.5.2-RC1

15 Apr 13:36
@emlun emlun
2.5.2-RC1
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
821e211
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 2.5.2-RC1 Pre-release
Pre-release

Fixes:

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Experimental release 2.6.0-alpha5

11 Mar 11:16
@emlun emlun
2.6.0-alpha5
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
1359dd9
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
Compare
Choose a tag to compare
Experimental release 2.6.0-alpha5 Pre-release
Pre-release

Changes:

  • Ported changes from release 2.5.1:
    • Dropped dependency on COSE-Java.
    • Fixed incompatibility with Jackson version 2.17.0-rc1.

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Version 2.5.1

08 Mar 14:57
@emlun emlun
2.5.1
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
a3698be
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 2.5.1

Changes:

  • Dropped dependency on COSE-Java.
  • Fixed incompatibility with Jackson version 2.17.0-rc1.

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Pre-release 2.5.1-RC3

05 Mar 08:22
@emlun emlun
2.5.1-RC3
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
cdf9513
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 2.5.1-RC3 Pre-release
Pre-release

Changes:

  • Reverted exclusion of Jackson version 2.17.0-rc1 from dependency resolution.
  • Fixed incompatibility with Jackson version 2.17.0-rc1.

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Pre-release 2.5.1-RC2

04 Mar 16:57
@emlun emlun
2.5.1-RC2
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
eb37b61
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 2.5.1-RC2 Pre-release
Pre-release

Changes:

  • Excluded Jackson version 2.17.0-rc1 from dependency resolution due to an incompatible regression.

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Pre-release 2.5.1-RC1

21 Feb 11:45
@emlun emlun
2.5.1-RC1
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
fefbfd3
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 2.5.1-RC1 Pre-release
Pre-release

Changes:

  • Dropped dependency on COSE-Java.

Artifacts built with openjdk version "17.0.10" 2024-01-16.

Assets 4
Loading

Experimental release 2.6.0-alpha4

09 Nov 19:43
@emlun emlun
2.6.0-alpha4
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
e0233d7
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Experimental release 2.6.0-alpha4 Pre-release
Pre-release

Re-release with no code changes to fix the reproducible binary workflow on GitHub Actions.

Artifacts built with openjdk version "17.0.9" 2023-10-17.

Assets 4
Loading

Experimental release 2.6.0-alpha3

09 Nov 19:05
@emlun emlun
2.6.0-alpha3
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
ec528be
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Experimental release 2.6.0-alpha3 Pre-release
Pre-release

New features:

  • Added enum parsing functions:
    • AuthenticatorAttachment.fromValue(String): Optional<AuthenticatorAttachment>
    • PublicKeyCredentialType.fromId(String): Optional<PublicKeyCredentialType>
    • ResidentKeyRequirement.fromValue(String): Optional<ResidentKeyRequirement>
    • TokenBindingStatus.fromValue(String): Optional<TokenBindingStatus>
    • UserVerificationRequirement.fromValue(String): Optional<UserVerificationRequirement>

Artifacts built with openjdk version "17.0.9" 2023-10-17.

Assets 4
Loading

Experimental release 2.6.0-alpha2

09 Nov 19:04
@emlun emlun
2.6.0-alpha2
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
85de45b
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Experimental release 2.6.0-alpha2 Pre-release
Pre-release

New features:

  • Added public builder to CredentialPropertiesOutput.
  • Added public factory function LargeBlobRegistrationOutput.supported(boolean).
  • Added public factory functions to LargeBlobAuthenticationOutput.
  • (Experimental) Added a new suite of interfaces, starting with CredentialRepositoryV2. RelyingParty can now be configured with a CredentialRepositoryV2 instance instead of a CredentialRepository instance. This changes the result of the RelyingParty builder to RelyingPartyV2. CredentialRepositoryV2 and RelyingPartyV2 enable a suite of new features:
    • CredentialRepositoryV2 does not assume that the application has usernames, instead username support is modular. In addition to the CredentialRepositoryV2, RelyingPartyV2 can be optionally configured with a UsernameRepository as well. If a UsernameRepository is not set, then RelyingPartyV2.startAssertion(StartAssertionOptions) will fail at runtime if StartAssertionOptions.username is set.
    • CredentialRepositoryV2 uses a new interface CredentialRecord to represent registered credentials, instead of the concrete RegisteredCredential class (although RegisteredCredential also implements CredentialRecord). This provides implementations greater flexibility while also automating the type conversion to PublicKeyCredentialDescriptor needed in startRegistration() and startAssertion().
    • RelyingPartyV2.finishAssertion() returns a new type AssertionResultV2 with a new method getCredential(), which returns the CredentialRecord that was verified. The return type of getCredential() is generic and preserves the concrete type of CredentialRecord returned by the CredentialRepositoryV2 implementation.
    • NOTE: Experimental features may receive breaking changes without a major version increase.
  • (Experimental) Added property RegisteredCredential.transports.
    • NOTE: Experimental features may receive breaking changes without a major version increase.

Artifacts built with openjdk version "17.0.9" 2023-10-17.

Assets 4
Loading

Experimental release 2.6.0-alpha1

07 Jul 16:57
@emlun emlun
2.6.0-alpha1
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
b62ee43
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: DE6C235E14566398
Learn about vigilant mode.
Compare
Choose a tag to compare
Experimental release 2.6.0-alpha1 Pre-release
Pre-release

New features:

  • Added method getParsedPublicKey(): java.security.PublicKey to RegistrationResult and RegisteredCredential.
    • Thanks to Jakob Heher (A-SIT) for the contribution, see #299
  • (Experimental) Added option isSecurePaymentConfirmation(boolean) to FinishAssertionOptions. When set, RelyingParty.finishAssertion() will adapt the validation logic for a Secure Payment Confirmation (SPC) response instead of an ordinary WebAuthn response. See the JavaDoc for details.

Artifacts built with openjdk version "17.0.7" 2023-04-18.

Assets 4
Loading