Releases: wultra/powerauth-restful-integration
Releases · wultra/powerauth-restful-integration
Release 1.7.0
Release 1.6.0
This release contains the following improvements:
- Dependency updates.
Release 1.5.0
This release contains the following improvements:
- Migration of library to Java 17 and Spring Boot 3.
- Detection and prevention of replay attacks in standard ECIES encryption and token digests.
- Time synchronization between mobile application and backend.
- Standardized user information endpoint.
- Versioning for PowerAuth token verification depending on the protocol version.
- Support for PowerAuth protocol versions 2.0 and 2.1 is discontinued.
- Dependency updates.
Release 1.4.1
This release contains the following improvements:
- A new user info endpoint that will provide additional information about the user for the mobile application.
Release 1.4.0
This release contains following improvements and bugfixes:
- Activation status is returned when token is invalid, the change is related to https://github.com/wultra/powerauth-server/blob/develop/docs/PowerAuth-Server-1.4.0.md#change-in-powerauth-token-verification
- Updated dependencies.
Release 1.3.0
This release contains following improvements and bugfixes:
- Application name used as identifier instead of numeric identifier.
- Support for logging HTTP correlation headers.
- Activation provider allows overriding recovery code generation.
- Improved logging and debugging.
- Updated dependencies.
Release 1.2.5
This release contains following improvements and bugfixes:
- Improved validation of PowerAuth token HTTP header.
- Improved error handling and logging.
- Spring Boot stack upgraded to version 2.6.6 due to recent high severity CVE's.
- Updated dependencies.
Release 1.2.0
This release contains following improvements and bugfixes:
- Project
powerauth-restful-security-base
removed due to deprecation of Java EE support. - Project
powerauth-restful-server-spring
removed because it is replaced byenrollment-server
. - Return custom object in activation status endpoint.
- Extract information about activation for failed signature verification attempts.
- ECIES encryption with generic request/response object types.
- Log4J library excluded from dependencies to avoid false alarms in scans due to recent vulnerabilities.
- Upgrade to Spring boot 2.6, updated dependencies.
- Minor bugfixes and documentation updates.
Release 1.1.0
This release contains following improvements and bugfixes:
- Dynamic resource ID resolution in PowerAuth annotations.
- Proper initialization of custom attribute map.
- Dependency updates.