UAA Release Notes 4.19.0

Stories included in release

Features

• Restrict MFA to the uaa and ldap identity providers configured for the identity zone
• Configure OIDC Provider with Password Grant
• Refactor relying_party_grant_types to allowPasswordGrant boolean
• Configure prompts for OIDC Provider
• Return prompts for OIDC Provider from info endpoints

Documentation

• Document login_hint on authorize and token endpoints
• Add the login_hint to Implicit grant flow

Bug Fixes

• Unknown Identity Zone properties should be ignored during version upgrades
• IdP discovery and account chooser are not skipped when passing in login_hint for uaa and ldap origins
• Updated dependencies
  • spring to 4.3.17
  • spring security to 4.2.6
  • spring security oauth to 2.0.15
  • guava to 24.1.1-jre
  • thymeleaf to 2.3.0 for groovy