2.8.5

• Make sure the expired tickets are not reused before being cleaned up
• Redirect after signout to any accessible applications is allowed

2.8.4

Always include groups and preferred locale in user claim.

2.8.3

Fix for #523

2.8.2

• Fix for #521
• Client Id added to logout URL

2.8.1

Parent pom providing dependency and plugin management for applications built with Maven

2.8.0

See Agate 2.8 release notes.

2.7.4

Fix for #495 :

• Follow Redirect response (if any) on Google's ReCaptcha validation
• Fix custom user attributes handling on signup

2.7.3

Fix context extraction from request when preparing notification email.

2.7.2

• Use OpenID Connect end_session_endpoint when available to terminate session of external OpenID providers.
• Better usage of the signout page: URL redirection is verified, confirming the signout is an option.
• Fixed error page.

2.7.1

The CSRF checks are more relaxed with connections from localhost.