Release v3.15.1

Release 3.15.1

- Fixed tags replacement in password
  reset notifications.
- Fixed openAPI specification for
  appId parameter.

Release v3.14.2

Release 3.14.2

- Fixed tags replacement in password
  reset notifications.
- Fixed openAPI specification for
  appId parameter.

Release v3.15.0

Release 3.15.0

- This version contains DB changes!
- This version contains LDAP schema changes!

Changes
-------
- Support pushing MFA related attributes to the LDAP.
- Support sponsoring membership for existing user
  or not yet sponsored member.
- Support sponsored member creation from CSV.
- Support date ranges when getting exising applications
  for VO/Group.
- Extended validity of account activation links
  to default 72 hours.
- Exclude group applications when rejecting "too old"
  unverified or not approved applications by the VO rules.
- Redefined workflow in Metacentrum registrations
  regarded to isCesnetEligibleLastSeen attribute.
- Do not request password reset on Metacentrum
  membership extension.
- Various fixes for parsing of displayName in registrar.
- Support VO atributes in new getHashedData() structures.
- Added getAllSponsoredMembers() to API.
- Added getAllSponsoredMembersAndTheirSponsors() to API.
- Added checks for password reset templates content.
- Allow calling getPerunStatus() on read-only instances.
- Updated version of OpenAPI generator.
- Added methods of MembersManager to OpenAPI.
- Updated Spring Boot to 2.4.1 and Spring to 5.3.2.
- Fixed parent of BanNotExistsException.

Release v3.14.1

Release 3.14.1

- This version contains LDAP schema update!

- Support UUID and MFA attributes in LDAP.
- Allow to call getPerunStatus() on read-only perun instances.
- Reworked Metacentrum registration workflow
  to properly support isCesnetEligibleLastSeen attribute.

Release v3.14.0

Release 3.14.0

- This version contains DB changes!
- This version requires JDK 15 to build and run.

Changes
-------
- Added new auditlogger component, which reads auditer log
  and writes it into syslog for Kibana to read it from there.
- New API for sending "account activation" message with
  link to (re)set new password.
- Support creating sponsored members from CSV.
- Prevent group name collisions on group updates.
- Sponsor can search vo members and send password reset mails.
- Group manager can search users to be added into his group
  and VO from perun if they have identity (UserExtSource)
  originating from ExtSources assigned on group.
- Support updating submitted registration forms (until
  approved or rejected).
- Added modules for GEANT login-namespace.
- Fix API for updateSponsorshipValidity().
- Fix (de)serialization of LocalDate in auditer messages.
- Added API to get entities by list of IDs.
- Added API to get entities by roles.
- Define main entity in RolesManagementRules.
- Added CLI for listing, setting and updating sponsored members.
- Fixed CLI for setting roles without complementary object.
- Support large attributes in getUsersByAttribute().

Release v3.13.3

Release 3.13.3

- Fixed deserialization of audit messages with LocalDate.
  We now use string instead.

Release v3.13.2

Release 3.13.2

- Added modules for geant login-namespace.

Release v3.13.1

Release 3.13.1

- Fixed reading of parameters in roles
  management methods to prevent usage
  of fake IDs and their relations.

Release v3.13.0

Release 3.13.0

- This version contains LDAP schema update.
- This version contains DB schema update.

- Support automatic application rejection after
  specified period of the time.
- Use shared mail configuration for registrar notifications.
- Ignore old "suspendedTo" Member property in API.
- Support filtering of results in getSponsoredMembers().
- Removed unused module login-namespace:kypo.
- Push new facility attributes to the LDAP.
- Fixed old DB changelog for 3.1.68.
- Added utility methods to convert existing sponsored
  users to sponsored members as we will remove sponsored
  users in the future.
- Fixed check on uniqe combination of sponsorship for
  sponsor and sponsored member. We throw exception when
  member is already sponsored.
- Added new serializer for reading data from Perun API
  named /jsonlite/. It ommits auditing properties like
  createdAt/By, modifieAt/By and some others.
- Methods getAdminGroups and getRichAdmins in AuthzResolver
  were reworked so it is possible to configure the acces rights.
- Fixed connection closed in pool of connections in LDAPc.
- Warn admin, that user has no mail filled for selected attribute,
  when sending password reset request to him.
- Updated Spring and Spring Boot.
- Validate members, when they become sponsored in the VO.
- Added methods to get role management rules for the new GUI.

Release v3.12.2

Release 3.12.2

- Ignore old "suspendedTo" property on API input.
- Fixed SQL for DB version 3.1.68.
- Test connection on borrow in connection pooling
  for LDAPc (when connecting to LDAP).