[
https://issues.apache.org/jira/browse/NIFI-11554?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17723047#comment-17723047
]
ASF subversion and git services commented on NIFI-11554:
--------------------------------------------------------
Commit 8ebecdc3abf8a42fe08c6d4fca0d6abe5ad83808 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=8ebecdc3ab ]
NIFI-11554 Upgraded OpenSAML from 3.4.6 to 4.3.0
- Added Shibboleth repository for OpenSAML
- Replaced deprecated OpenSAML 3 Spring Security components with OpenSAML 4
Signed-off-by: Pierre Villard <[email protected]>
This closes #7251.
> Upgrade to OpenSAML 4.3.0
> -------------------------
>
> Key: NIFI-11554
> URL: https://issues.apache.org/jira/browse/NIFI-11554
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
> Fix For: 2.0.0
>
>
> [OpenSAML 3|https://shibboleth.atlassian.net/wiki/spaces/OSAML/overview] has
> reached end of life and Spring Security 5 deprecated support for OpenSAML 3
> in recent releases.
> OpenSAML 4 requires Java 11 and provides the current supported version,
> integrated with Spring Security 5. [Spring Security SAML2
> Migrations|https://docs.spring.io/spring-security/reference/5.8/migration/servlet/saml2.html]
> highlights the dependency management settings necessary to use OpenSAML 4,
> along with the related component changes required.
> OpenSAML does not publish to Maven Central according to project document on
> [use of Maven
> Central|https://shibboleth.atlassian.net/wiki/spaces/DEV/pages/1123844333/Use+of+Maven+Central].
> The Shibboleth repository must be added to resolve the latest OpenSAML
> versions.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
