Table of Contents
Moved documentation to docbook
Fixed OpenSSL CA so that it issues V3 certificates instead of V1 (Bug (5254)
Added test in the form of 'make test' and 'make test-post-install'
Integrate GridShib SAML Tools to bind simple attribute assertion to EEC
Handle creating DN from mix of atttributes (Bug 4889)
Use "DC" components for relative DN (Bug 4887).
Added 'redirectURL' option to configure file so that JWS application can send browser to URL after successful credential download.
Added 'useBundledCAs' option to gridshib-ca.conf to allow turning off use of bundled CAs (using Java-provided default CAs instead).
Fallback to prompting user if CA that issued portal https certificate is unrecognized. (Bug 4875).
configure.ac: --with-gridshib-ca-conf-dir uses ${prefix} instead of static '/usr/local/'
Fixed bug 4973 causing bad CA filenames.
Fixed bug 4877 typos in configure.
Added support for delegation of X509 credential to portal (disabled by default).
Run-time configuration of trusted Idps and portals added.
Cleaned up protocol between CredentialRetriever and GridShib-CA. Use HTTP status code instead of own internal status header.
CredentialRetriever now generating key pair on client side and sending PKCS#10 certificate request to generateCred.pl.
Now builds and installs own openssl-based ca (openssl-ca) that allows setting of DN by GridShib CA
Includes GridShibCA::MyProxyCA.pm, a pure perl MyProxy client to allow outsourcing of CA functionality to MyProxy.
Now uses a set of PERL modules to accomplish basic tasks, which can be configured using gridshib-ca.conf file.
Starting to use RFC 2253 format DNs internally.
CredentialRetreiver.java: Circumvent JWS installing its own SSLSocketFactory so that default SSLSocketFactory is used and our list of trusted CAs is honored.
Added debug support with debug and clientDebug parameters in configuration file.
Added support for requested lifetimes from user.
Added support for updating user's trusted certificates directory