NEWS 3.78 KB
Newer Older
Xavier Guimard's avatar
Xavier Guimard committed
1 2 3 4 5 6 7
lemonldap-ng (2.0.0-1) UNRELEASED; urgency=medium

  2.0 is a major release, many things have been changed. You must read
  https://lemonldap-ng.org/documentation/2.0/upgrade before upgrade.

 -- Xavier Guimard <x.guimard@free.fr>  Mon, 11 Dec 2017 22:48:25 +0100

Xavier Guimard's avatar
Xavier Guimard committed
8 9 10 11 12 13 14 15
lemonldap-ng (1.9.3-1) unstable; urgency=medium

  liblemonldap-ng-handler-perl package has been split into:
  - lemonldap-ng-handler that provides web server configuration
  - liblemonldap-ng-handler-perl that provides Perl libraries only

 -- Xavier Guimard <x.guimard@free.fr>  Sat, 17 May 2016 22:25:43 +0200

16
lemonldap-ng (1.9.0-1) unstable; urgency=low
17

Xavier Guimard's avatar
Xavier Guimard committed
18 19
  1) Configuration and sessions storage

20
  From now, Lemonldap::NG uses JSON serialization to store configuration and
Xavier Guimard's avatar
Typo  
Xavier Guimard committed
21
  sessions instead of Storable::nfreeze Perl function. This permits one to have
22 23 24 25 26 27 28 29
  heterogenous servers connected to the same LLNG organization (32/64 bits or
  different Perl versions). Old format still works but:
   * configuration backends: new format is applied at first configuration
     save,
   * sessions storages: new format is applied for each new session or when
     updating an existing session. You can force LemonLDAP::NG to keep the old
     serialization method by setting useStorable to 1 in sessions backend
     options if you have some custom hooks.
Xavier Guimard's avatar
Xavier Guimard committed
30 31
     Note that this behaviour only affects modules Apache::Session::File, SQL
     database and Apache::Session::LDAP
32 33 34

  If you have more than one server and don't want to stop the SSO service, start
  upgrading in the following order:
Xavier Guimard's avatar
Xavier Guimard committed
35 36
   * servers that have only handlers;
   * portal servers (all together if your load balancer doesn't keep state by
37
     user or client IP and if users use the menu);
Xavier Guimard's avatar
Xavier Guimard committed
38
   * manager server
39

Xavier Guimard's avatar
Xavier Guimard committed
40 41
  2) Manage Ajax requests when sessions expires

42
  To request for authentication, handlers sent a 302 HTTP code even if request
43 44
  was an Ajax one. From now, after redirection, portal will send a 401 code
  with a WWW-Authenticate header containing "SSO portal-URL". This is a little
Xavier Guimard's avatar
Typo  
Xavier Guimard committed
45
  HTTP protocol hook created because browsers follow redirection transparently.
46 47
  If you want to keep old behaviour, set noAjaxHook to 1 (in General Parameters
  -> Advanced -> Handler redirections -> Keep redirections for Ajax).
Xavier Guimard's avatar
Xavier Guimard committed
48

Xavier Guimard's avatar
Xavier Guimard committed
49 50
  3) New "Multi" authentication scheme

Xavier Guimard's avatar
Xavier Guimard committed
51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66
  The Multi backend configuration has changed. Now the stacks are defined in
  separate attributes:
   * multiAuthStack
   * multiUserDBStack

  So an old configuration like this:

    authentication = Multi LDAP;DBI
    userDB         = Multi LDAP;DBI

  Must be replaced by:

    authentication   = Multi
    userDB           = Multi
    multiAuthStack   = LDAP;DBI
    multiUserDBStack = LDAP;DBI
Xavier Guimard's avatar
Xavier Guimard committed
67 68 69 70 71

  4) Form replay

  Management of form replay has been rewritten. If you uses this experimental
  feature, you must edit your configuration and rewrite it.
72 73 74

 -- Xavier Guimard <x.guimard@free.fr>  Thu, 21 Jan 2016 17:13:07 +0100

75 76 77 78 79 80 81 82 83 84
lemonldap-ng (1.4.6-1) unstable; urgency=medium

  Handler files "My::Package" are no longer installed by default as a module
  "Lemonldap::NG::Handler" generic is now available. It is therefore
  necessary either to modify Apache configuration files to use
  "Lemonldap::NG::Handler" or create your own Perl modules using the provided
  examples files.

 -- Xavier Guimard <x.guimard@free.fr>  Mon, 29 Dec 2014 17:10:00 +0100

Xavier Guimard's avatar
Xavier Guimard committed
85
lemonldap-ng (1.2.2-1) unstable; urgency=low
86 87 88 89

  Examples files (Apache configuration and default handler files) are now not
  installed in /var/lib/lemonldap-ng/handler but available as examples files

90 91 92 93 94 95
  Since 1.2.2, LemonLDAP::NG uses 'Demo' authentication backend by default
  and the manager is protected by default by LemonLDAP::NG. So for an
  unconfigured installation, you have to use dwho account to access to the
  manager (password dwho)

 -- Xavier Guimard <x.guimard@free.fr>  Thu, 29 Nov 2012 06:22:45 +0100