WebAuth 4.0.1

This is the first bug-fix release for the major 4.0.0 release, and is the version that we expect to go into production with at Stanford, although we have not yet done that.

The primary changes are bug fixes, closing some memory leaks and errors in incorrect inititialization that affected login cancel tokens. This release also fixes the logging level from mod_webauth when obtaining additional credentials and logs the return URL of authentications to the WebKDC.

The new feature in this release is that suspicious login information returned by the user information service is now displayed by WebLogin on the confirmation page (and the confirmation page is forced). This will require updates to any site-local confirm page templates.

You can get the latest version from either the official WebAuth pages or from my WebAuth distribution page.

Posted: 2011-09-23 15:29 — Why no comments?

Last spun 2013-07-01 from thread modified 2013-01-04