All- Apologies for missing today's community call -- I had it on my calendar for 14:00. Quick update on mod_auth_cas: after much hemming and hawing, consideration to the impact for package maintainers and source deployers, and with much thought to overall maintainability and stability of code, we have decided to rip out the internal HTTP ans SSL handling and replace this with use of libcurl. Phil has been doing this work in the curl branch of the mod_auth_cas repo, which will move to trunk shortly. Some final polish in the form of autotools is still necessary, plus some more aggressive testing, but a 1.0.9 release isn't too far away.
In addition, below is the list of changes listed in the README file. Please let us know if you have any questions, -Matt ==================================================================== NEW FEATURES AND FUNCTIONS IN THIS RELEASE ==================================================================== * mod_auth_cas 1.0.9 is now licensed under the Apache 2 License. All future versions will be released under this license until further notice. * mod_auth_cas 1.0.8 and prior should be considered as available under the Apache 2 License or the GPLv3 license. * Support for SAML validation has been provided by David Hawes of Virginia Tech. ==================================================================== BUG FIXES ==================================================================== * Included a patch by Chris Adams of Yale University to prevent segfaults when parsing a corrupted XML cache file. * Included a patch by Chris Adams to improve Win32 compiler compatibility * Included a patch by Jason Long to properly handle usernames containing "unsafe" XML characters * Assorted stability/REST compatibility fixes for issues identified by David Ohsie * Included a patch by Ben Noordhuis to gracefully handle broken file system permissions in CASCookiePath * Included a patch by Ben Noordhuis to improve performance by re-using a cached username on subrequests * Fixed issue where cas_merge_dir_config was allocating more memory than necessary (reported by Ray Davison) * Fixed possible NULL pointer dereference in rare circumstances where ap_is_initial_req() returns FALSE, but the value of request_rec->main is NULL (reported by David Gelbart) Matthew J. Smith Manager of Server Support University of Connecticut UITS matt.sm...@uconn.edu -- You are currently subscribed to cas-dev@lists.jasig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
