77.2.0

What's Changed

Fixes

• Fix audience type by @strehle in #2757
• avoid NPE by @klaus-sap in #2747
• Sonar fixes by @strehle in #2760
• Solve sonar bug by @strehle in #2768
• more methods for sanitized logging by @klaus-sap in #2764

Misc

• refactor: Remove a use of a constant from opensaml library by @hsinn0 in #2743
• Move IdP Alias Handling to separate Class by @adrianhoelzl-sap in #2737
• remove more IdP tests by @swalchemist in #2742
• doc: clarify token revocation by @peterhaochen47 in #2749

Dependency Bumps

• build(deps): bump org.apache.santuario:xmlsec from 4.0.1 to 4.0.2 by @dependabot in #2746
• build(deps): bump versions.braveVersion from 6.0.1 to 6.0.2 by @dependabot in #2748
• update dependency org.seleniumhq.selenium:selenium-java to v4.18.1 by @strehle in #2744
• build(deps): bump org.json:json from 20240205 to 20240303 by @dependabot in #2761

Known Issues

• During the upgrade to this version from UAA v76 or below with canary deployment (where briefly both new and old UAA servers could be running), UAA delete user endpoint might respond with an error even though the user deletion is successful. Mitigation: Delete users after the canary deployment finishes. But if you do run into this issue, you can ignore the error and check whether the user has been successfully deleted after the canary deployment finishes.

Full Changelog: v77.1.0...v77.2.0