v3.1.1

• Fixes support for OnBehalfOfID token autentication

v3.1.0

• Add POST method for login endpoint which accepts SAML assertion (enables to do ÚPVS SSO out-of slovensko-sk-api and send only SAML assertion to slovensko-sk-api), endpoint returns OBO token
• Small documentation, community version generator fixes

v3.0.3

• Make api/sktalk/token prepare_for_later_receive endpoint return OBO token with 120 minutes expiration with which SkTalk message can be send even after WebSSO session expiration
• Fix /api/iam/identities/search endpoint parameters permissions
• Fix documentation for /api/upvs/identity response data (edesk_remote_uri is nullable)
• Fix missing certificates_controller, administration_spec

v3.0.2

• Add certificates endpoints to api/administration path for authentication certificates management
• Add prepare_for_later_receive endpoint to api/sktalk path which prepares authentication token so that SkTalk message can be send even after WebSSO session expiration

v3.0.1

• Updated dependancies (Java to 17, gems, Spring)
• Fixes bug with url encoding in SLO flow

v3.0.0

This release removes login & logout callbacks in request parameters. This was buggy and is discouraged. This is also fixes IDP initiated logout flow by adding callback parameter on LOGOUT_CALLBACK_URL that needs to be redirected to when present.

v2.2.1

Fixes logout flow

v2.2.0

• Add OnBehalfOfID support
• Bump java & jruby versions

2.1.1

• Update API documentation.
• Update installation guide.

2.1.0

• Add OBO token based IAM identity endpoint to /api/upvs/identity path.
• Move OBO token based SAML assertion endpoint from /api/upvs/sso/assertion to /api/upvs/assertion path.
• Disallow API token with CTY header and OBO token authorization on IAM endpoints.
• Update API documentation.
• Update installation guide.
• Update dependencies.