Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

cloudfoundry / uaa Public

Notifications You must be signed in to change notification settings
Fork 829
Star 1.6k

Code
Issues 37
Pull requests 11
Discussions
Actions
Projects 1
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Releases
4.11.0

UAA Release Notes 4.11.0

Compare

Choose a tag to compare

Loading

cf-identity released this 13 Mar 02:14

· 3074 commits to master since this release

36e3fdf

Stories included in release

Features

Upgrade to Spring Security SAML 1.0.4.RELEASE
Propagate response type error message in query parameters for missing response_type parameter
Authorization request missing the response_type parameter returns error
cloudfoundry/uaa #772: UaaTokenStore: Don't fall over when failing to expire oauth codes
Add email_verified mapping documentation for IDPs
Expose email_verified as a claim in the id_token and /userinfo endpoint
Support MFA through CLIs as part of password grant type
Enable passcode prompt for MFA login through SSO
Allow mapping for email_verified claim - LDAP
Allow mapping for email_verified claim - SAML
Allow mapping for email_verified claim - OIDC
Adapt implementation of MfaAuthenticationSuccess/FailureEvent
Allow UAA user attributes to be sent in SAML Assertion
Information for CF Security for Export Compliance
cloudfoundry/uaa #767: Extend interface UaaTokenEnhancer with a generic enhance
Updated Java JDK to 8u162

Bug Fixes

/Users?attributes never return groups or approvals
Password Grant with MFA is not marked as not yet ready for production use
MFA registration back button (which just uses logout.do) no longer works
Unable to change user's password because current password is not being accepted when username exists for multiple origins
cloudfoundry/uaa #749: omit not needed libs
IdentityProviderAuthenticationSuccess events show unknown authentication type
UAA CSRF token under /login context path prevents users from logging in
Changing username while MFA is enabled breaks login if you are already authenticated
mfaprovider issuer field cannot contain colons

Assets 2

Loading

All reactions

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.