Dear CAS Community, We're pleased to announce the CAS Server 3.4.5 release. This release includes a new X.509 Regex CredentialsToPrincipalResolver as well as major security enhancement to CAS. Gateway requests are now included as part of the Services Management Tool. A gatewayed service MUST be approved by the Service Management Tool in order for the redirect to happen if there is no valid user. Its recommended that all deployers upgrade.
Thanks to Rich Renomeron and George Hedfors for identifying this security improvement. Its recommended that all deployers upgrade to this new version to provide an extra layer of security. The binary release can be found here: http://www.jasig.org/cas_server_3_4_5 The artifacts should be in the Maven Repository shortly and thus available for those using the Maven2 WAR Overlay process. Thanks Scott -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
