> ## Documentation Index
> Fetch the complete documentation index at: https://docs.strata.io/llms.txt
> Use this file to discover all available pages before exploring further.

# 2024

<Update label="December 20 2024" description="v0.69.1">
  * **TLS:** Use Go's native implementation of 'x509.SystemCertPool' on Windows
</Update>

<Update label="December 19 2024" description="v0.69.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 19 2024" description="v0.68.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 19 2024" description="v0.67.1">
  * **Dependencies:** Resolved CVE-2024-45338
</Update>

<Update label="December 18 2024" description="v0.67.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 18 2024" description="v0.66.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 18 2024" description="v0.65.1">
  * **ldapProvider:** Correctly surface 'getHashedCredentialsSE' error
</Update>

<Update label="December 17 2024" description="v0.65.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 17 2024" description="v0.64.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 17 2024" description="v0.63.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 17 2024" description="v0.62.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 16 2024" description="v0.61.0">
  * **Secret provider:** Make CA not required for cert auth in HashiVault
</Update>

<Update label="December 13 2024" description="v0.60.1">
  * **Dependencies:** Resolved CVE-2024-45337
</Update>

<Update label="December 13 2024" description="v0.60.0">
  * Fix Missing Folder for Artifactory Cleanup Workflow
</Update>

<Update label="December 12 2024" description="v0.59.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 12 2024" description="v0.58.0">
  * **Connectors:** Allow multiple OIDC callback URLs to be defined
</Update>

<Update label="December 10 2024" description="v0.57.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="December 9 2024" description="v0.56.1">
  * **Dependencies:** Resolved CVE-2024-53259
</Update>

<Update label="November 29 2024" description="v0.56.0">
  * **Service Extensions:** Implement HTTP interface of Orchestrator API.
</Update>

<Update label="November 29 2024" description="v0.55.0">
  * **OIDC Connector:** Dynamically generate oauth logout callback URLs
</Update>

<Update label="November 28 2024" description="v0.54.1">
  * **SAML Provider:** Fix issue where authentication requests required an ACS URL
</Update>

<Update label="November 27 2024" description="v0.54.0">
  * **OIDC Provider:** Add support for 'ES256' key algorithm for client authentication
</Update>

<Update label="November 27 2024" description="v0.53.0">
  * **HTTP:** Add global endpoint timeout.
</Update>

<Update label="November 26 2024" description="v0.52.0">
  * **HTTP:** Add configurable HTTP server timeouts with sane defaults.
</Update>

<Update label="November 26 2024" description="v0.51.2">
  * Respect env variables and CLI flags when reloading logger
</Update>

<Update label="November 22 2024" description="v0.51.1">
  * **Proxy Apps:** Improve logging when required attributes are missing and not loadable
</Update>

<Update label="November 21 2024" description="v0.51.0">
  * **OIDC Connector:** Dynamically generate oauth callback URLs
</Update>

<Update label="November 21 2024" description="v0.50.2">
  * **OIDC Provider:** Improve logging during JWT bearer client authentication
</Update>

<Update label="November 21 2024" description="v0.50.1">
  Internal improvements and maintenance updates.
</Update>

<Update label="November 20 2024" description="v0.50.0">
  * Enable use of JWT for client authentication with client\_credentials grant
</Update>

<Update label="November 20 2024" description="v0.49.1">
  * **Container:** Resolved CVE-2024-9143
</Update>

<Update label="November 19 2024" description="v0.49.0">
  * **SAML APP:** Support multiple ConsumerServiceURLs per SAML app
</Update>

<Update label="November 19 2024" description="v0.48.2">
  Internal improvements and maintenance updates.
</Update>

<Update label="November 15 2024" description="v0.48.1">
  * **SAML Connectors:** Use POST binding if available during SAML login
</Update>

<Update label="November 15 2024" description="v0.48.0">
  * **Secret providers:** Support Hashicorp Vault cert auth on Windows
</Update>

<Update label="November 13 2024" description="v0.47.0">
  * **Config Reload:** Make logger reloadable
</Update>

<Update label="November 13 2024" description="v0.46.0">
  * **TLS:** Add support for ECDH algorithms on Windows
</Update>

<Update label="November 8 2024" description="v0.45.0">
  * Add CRL revocation support to tls config
</Update>

<Update label="November 8 2024" description="v0.44.5">
  * **SAML Provider:** Support compressed AuthnReq via POST binding
</Update>

<Update label="November 5 2024" description="v0.44.4">
  Internal improvements and maintenance updates.
</Update>

<Update label="November 4 2024" description="v0.44.3">
  Internal improvements and maintenance updates.
</Update>

<Update label="November 4 2024" description="v0.44.2">
  * **SAML & OIDC Providers:** Enable service extensions to be used in conjunction with attribute providers
</Update>

<Update label="October 31 2024" description="v0.44.1">
  Internal improvements and maintenance updates.
</Update>

<Update label="October 30 2024" description="v0.44.0">
  * Add OCSP revocation check
</Update>

<Update label="October 29 2024" description="v0.43.0">
  * **Logger:** Add error logger to HTTP server
</Update>

<Update label="October 25 2024" description="v0.42.0">
  * **OIDC Provider:** Require openid scope to access userinfo endpoint
</Update>

<Update label="October 25 2024" description="v0.41.0">
  * Support Hashicorp Vault cert auth on Linux
</Update>

<Update label="October 22 2024" description="v0.40.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="October 22 2024" description="v0.39.0">
  * **Health service:** Make health service reloadable
</Update>

<Update label="October 18 2024" description="v0.38.0">
  * Update PR template to hide instructions
</Update>

<Update label="October 17 2024" description="v0.37.0">
  * **Connectors:** Generic SAML health check add cookies jar
</Update>

<Update label="October 17 2024" description="v0.36.0">
  * **QKSLVR-1987:** Upload additional artifacts JFrog
</Update>

<Update label="October 17 2024" description="v0.35.0">
  * **OIDC Provider:** Allow "sub" and "client\_id" claims to be overwritten via service extension
</Update>

<Update label="October 15 2024" description="v0.34.0">
  * Add Single Logout JSON Schema
</Update>

<Update label="October 15 2024" description="v0.33.0">
  Internal improvements and maintenance updates.
</Update>

<Update label="October 10 2024" description="v0.32.0">
  * Add deb build target in Makefile
  * **OIDC Provider:** Dynamically build userinfo response
</Update>

<Update label="October 9 2024" description="v0.31.0">
  * **OIDC Provider:** Add association from token cache to userinfo cache
</Update>

<Update label="October 7 2024" description="v0.30.0">
  * **OIDC Provider:** Store userinfo data only once
</Update>

<Update label="October 2 2024" description="v0.29.1">
  * **Connectors:** Infer correct protocol binding from SAML metadata
</Update>

<Update label="October 1 2024" description="v0.29.0">
  * Expose 'jose.ContentType' in service extensions
</Update>

<Update label="October 1 2024" description="v0.28.0">
  * **Connectors:** Add support for login hint via subject in PingFed SAML
</Update>

<Update label="September 27 2024" description="v0.27.124">
  Internal improvements and maintenance updates.
</Update>

<Update label="September 26 2024" description="v0.27.123">
  * Update github PR template
  * **Connectors:** Implement login\_hint in query for Azure SAML
</Update>

<Update label="September 23 2024" description="v0.27.122">
  * **SE:** Add 'postLogoutSEV2' service extension
</Update>

<Update label="September 19 2024" description="v0.27.121">
  * Ensure mTLS can not be bypassed by spoofing the Host header.
</Update>

<Update label="September 19 2024" description="v0.27.120">
  * **Connectors:** Restore SAML login in PingFed
</Update>

<Update label="September 19 2024" description="v0.27.119">
  * **Connectors:** Add login hint to OIDC connectors
</Update>

<Update label="September 17 2024" description="v0.27.118">
  * **Proxy apps:** Allow secrets loading in policy locations
</Update>

<Update label="September 17 2024" description="v0.27.117">
  * **SE:** Introduce v2 service extension signature for 'evalIdleTimeoutSE'
</Update>

<Update label="September 17 2024" description="v0.27.116">
  * Support retrieving AWS secrets via ARN
</Update>

<Update label="September 17 2024" description="v0.27.115">
  Internal improvements and maintenance updates.
</Update>

<Update label="September 16 2024" description="v0.27.114">
  * **TLS:** Add support for SNI via 'http.hosts'
</Update>

<Update label="September 16 2024" description="v0.27.113">
  * **SE:** Introduce v2 session evalMaxLifetime
</Update>

<Update label="September 13 2024" description="v0.27.112">
  * **Service Extensions:** Fix route registration issue
</Update>

<Update label="September 12 2024" description="v0.27.111">
  * Add newline delimiter option in CCP as workaround for multi-line secrets.
</Update>

<Update label="September 9 2024" description="v0.27.110">
  * Format the Hypr HTML to make it more readable
</Update>

<Update label="September 9 2024" description="v0.27.109">
  * **DSO-1348:** Add Uploading Artifacts for Services Team
  * SAML App inherits signing cert from SAMLProvider
</Update>

<Update label="September 6 2024" description="v0.27.108">
  * **HTTP:** Rework HTTP initialization logic to support SNI
</Update>

<Update label="September 5 2024" description="v0.27.107">
  Internal improvements and maintenance updates.
</Update>

<Update label="September 3 2024" description="v0.27.106">
  * SAMLProvider fix panic when claims mapping attribute does not use connector notation
</Update>

<Update label="September 3 2024" description="v0.27.105">
  * Fix OIDCProvider panic when claims mapping attribute does not use connector notation
</Update>

<Update label="August 29 2024" description="v0.27.104">
  * **Bundle Validation:** Improve error handling when loading public key
</Update>

<Update label="August 28 2024" description="v0.27.103">
  * **TLS:** Rename 'clientCAs' to 'clientCAFiles' in TLS config
</Update>

<Update label="August 28 2024" description="v0.27.102">
  * **Continuity:** Improve reload behavior
</Update>

<Update label="August 27 2024" description="v0.27.101">
  * **Continuity:** Check for duplicated status codes
</Update>

<Update label="August 27 2024" description="v0.27.100">
  * **Continuity:** Add health check to ADFS
</Update>

<Update label="August 27 2024" description="v0.27.99">
  * **Connectors:** Make cert and keys paths optional for ADFS
</Update>

<Update label="August 26 2024" description="v0.27.98">
  Internal improvements and maintenance updates.
</Update>

<Update label="August 22 2024" description="v0.27.97">
  Internal improvements and maintenance updates.
</Update>

<Update label="August 22 2024" description="v0.27.96">
  * Support LoadAttributesSE for OIDC Apps
</Update>

<Update label="August 22 2024" description="v0.27.95">
  * Enable service extensions for oidc provider authorization
</Update>

<Update label="August 21 2024" description="v0.27.94">
  * Support multiple secrets for OIDC client authentication
</Update>

<Update label="August 20 2024" description="v0.27.93">
  * Add load attributes service extension to SAML apps
</Update>

<Update label="August 19 2024" description="v0.27.92">
  * Ensure OIDC clients are unique by client ID
</Update>

<Update label="August 17 2024" description="v0.27.91">
  * Expose make commands in make help
  * **SAML Apps:** Support app level 'disableSignedAssertion' and 'disableSignedResponse'
</Update>

<Update label="August 15 2024" description="v0.27.90">
  * Add authorization rules to OIDC apps
</Update>

<Update label="August 14 2024" description="v0.27.89">
  Internal improvements and maintenance updates.
</Update>

<Update label="August 13 2024" description="v0.27.88">
  * **SAML Apps:** Support app-specific signing certs
</Update>

<Update label="August 13 2024" description="v0.27.87">
  * Support client defined grant types for OIDC apps
</Update>

<Update label="August 13 2024" description="v0.27.86">
  * **Continuity:** Remove body matching response logging
</Update>

<Update label="August 12 2024" description="v0.27.85">
  * Update mitchellh/mapstructure to go-viper/mapstructure/v2
</Update>

<Update label="August 12 2024" description="v0.27.84">
  * **Apps:** Validate 'name' uniqueness
</Update>

<Update label="August 9 2024" description="v0.27.83">
  * Support ROPC flow for OIDC apps via backchannel authenticate SE
</Update>

<Update label="August 8 2024" description="v0.27.82">
  * **Continuity:** Increase state parameter length in generic OIDC health check
</Update>

<Update label="August 6 2024" description="v0.27.81">
  * **Continuity:** Add TLS to custom health check
</Update>

<Update label="August 6 2024" description="v0.27.80">
  Internal improvements and maintenance updates.
</Update>

<Update label="July 31 2024" description="v0.27.79">
  * Support IsAuthorizedSE in SAML apps
</Update>

<Update label="July 31 2024" description="v0.27.78">
  * Add permissions for id-token for Jfrog Artifactory GitHub Workflow
  * **Continuity:** Add custom health check response body matching
</Update>

<Update label="July 29 2024" description="v0.27.77">
  * Use the correct HTTP client for SAML health check
</Update>

<Update label="July 29 2024" description="v0.27.76">
  * **Continuity:** Add headers to custom health check endpoint
</Update>

<Update label="July 26 2024" description="v0.27.75">
  * Add QR authentication mode for Hypr connector
</Update>

<Update label="July 25 2024" description="v0.27.74">
  * Add GitHub workflow for uploading artifacts to JFrog Artifactory
  * Update Artifactory GitHub Workflow to reference branch
  * **Continuity:** Add ability to define custom health check
</Update>

<Update label="July 19 2024" description="v0.27.73">
  * **Continuity:** Change the default health check interval
</Update>

<Update label="July 19 2024" description="v0.27.72">
  * **Continuity:** Add un/healthy threshold
</Update>

<Update label="July 18 2024" description="v0.27.71">
  * Enforce authorization rules in SAML Apps
</Update>

<Update label="July 18 2024" description="v0.27.70">
  * **Continuity:** Support health checks in PingFederate connector
</Update>

<Update label="July 17 2024" description="v0.27.69">
  * Reimplement Cyberark Conjur Secret Provider
</Update>

<Update label="July 12 2024" description="v0.27.68">
  Internal improvements and maintenance updates.
</Update>

<Update label="July 11 2024" description="v0.27.67">
  * Add state to continuity enabled connectors
</Update>

<Update label="July 11 2024" description="v0.27.66">
  * Remove legacy LDAP 'attrproviders' implementation
</Update>

<Update label="July 11 2024" description="v0.27.65">
  * **Continuity:** Update IdP healthcheck metric prefix to include namespace
</Update>

<Update label="July 10 2024" description="v0.27.64">
  * **SAML APP:** Query for nameID attributeMapping attribute if not on session
</Update>

<Update label="July 9 2024" description="v0.27.63">
  * Update log level to error when referenced secret is not found
</Update>

<Update label="July 5 2024" description="v0.27.62">
  * **Continuity:** Add IDP health check to Auth0
</Update>

<Update label="July 3 2024" description="v0.27.61">
  * **Continuity:** Add IdP health metrics
</Update>

<Update label="July 2 2024" description="v0.27.60">
  * Expose ldap.Control
</Update>

<Update label="June 28 2024" description="v0.27.59">
  * Implement SAML health check in Okta
</Update>

<Update label="June 28 2024" description="v0.27.58">
  * Implement SAML health check in Azure
</Update>

<Update label="June 27 2024" description="v0.27.57">
  * Add AWS Secrets manager secret provider support
</Update>

<Update label="June 25 2024" description="v0.27.56">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 25 2024" description="v0.27.55">
  * **Continuity:** Add generic SAML health check
</Update>

<Update label="June 24 2024" description="v0.27.54">
  * **Telemetry:** Update local Docker Compose telemetry environment for development
</Update>

<Update label="June 24 2024" description="v0.27.53">
  * Support reload for single logout config
</Update>

<Update label="June 21 2024" description="v0.27.52">
  * **Continuity:** Leverage generic OIDC health check in Okta and Azure
</Update>

<Update label="June 21 2024" description="v0.27.51">
  * **Continuity:** Add meter and tracer to health check service
</Update>

<Update label="June 21 2024" description="v0.27.50">
  * **Continuity:** Parse health check values as duration
</Update>

<Update label="June 20 2024" description="v0.27.49">
  * Protect session store with mutex and add session service to config reloader
</Update>

<Update label="June 19 2024" description="v0.27.48">
  * Implement session config reload
</Update>

<Update label="June 18 2024" description="v0.27.47">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 18 2024" description="v0.27.46">
  * **Service Extensions:** Expose symbols for JWT encryption
</Update>

<Update label="June 18 2024" description="v0.27.45">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 17 2024" description="v0.27.44">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 14 2024" description="v0.27.43">
  * **MSI:** Fix file contention issue
</Update>

<Update label="June 14 2024" description="v0.27.42">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 13 2024" description="v0.27.41">
  * **Continuity:** Add health check to OIDC connector
</Update>

<Update label="June 13 2024" description="v0.27.40">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 12 2024" description="v0.27.39">
  * **OIDC & SAML Apps:** Remove legacy resilience implementation
</Update>

<Update label="June 11 2024" description="v0.27.38">
  * **Proxy apps:** Remove legacy resilience implementation
</Update>

<Update label="June 11 2024" description="v0.27.37">
  Internal improvements and maintenance updates.
</Update>

<Update label="June 6 2024" description="v0.27.36">
  * Redirect SAML SSO error responses correctly
</Update>

<Update label="June 5 2024" description="v0.27.35">
  * **Continuity:** Add health check to AD
</Update>

<Update label="June 5 2024" description="v0.27.34">
  * **Continuity:** Add health check to LDAP
</Update>

<Update label="May 31 2024" description="v0.27.33">
  * SAMLProvider support LogoutRequest via POST binding
</Update>

<Update label="May 30 2024" description="v0.27.32">
  Internal improvements and maintenance updates.
</Update>

<Update label="May 29 2024" description="v0.27.31">
  * **Connectors:** Gracefully handle failure to retrieve OIDC well-known metadata
</Update>

<Update label="May 16 2024" description="v0.27.30">
  * Verify Signed SAML Logout requests via Redirect binding
</Update>

<Update label="May 16 2024" description="v0.27.29">
  Internal improvements and maintenance updates.
</Update>

<Update label="May 14 2024" description="v0.27.28">
  * **SAML Apps:** Store logout request in cache
</Update>

<Update label="May 14 2024" description="v0.27.27">
  * Fix SAMLProvider cacheState storage when using multiple IDPs
</Update>

<Update label="May 13 2024" description="v0.27.26">
  * Add support for namespace in HashiVault
</Update>

<Update label="May 13 2024" description="v0.27.25">
  * **Resilience connector:** Add support for logout
</Update>

<Update label="May 10 2024" description="v0.27.24">
  * Unregister SAMLProvider SLO endpoint during stop
</Update>

<Update label="May 10 2024" description="v0.27.23">
  * **Connectors:** Better handle logout errors
</Update>

<Update label="May 10 2024" description="v0.27.22">
  * **Resilience connector:** Implement Query
</Update>

<Update label="May 9 2024" description="v0.27.21">
  Internal improvements and maintenance updates.
</Update>

<Update label="May 9 2024" description="v0.27.20">
  * Append query parameters to authn request during IDP Initiated SAML
</Update>

<Update label="May 8 2024" description="v0.27.19">
  * Validate bundle file in MSI installer
</Update>

<Update label="May 7 2024" description="v0.27.18">
  * **SAMLProvider:** Add SingleLogoutService  to metadata when sloEndpoint is defined
</Update>

<Update label="May 7 2024" description="v0.27.17">
  * **SAMLProvider:** Implement SP initiated SLO
</Update>

<Update label="May 7 2024" description="v0.27.16">
  * **MSI:** Fix service restart when change and add default remote configs.
</Update>

<Update label="May 6 2024" description="v0.27.15">
  * **Service Extensions:** Expose symbols to enable JWT generation
</Update>

<Update label="May 6 2024" description="v0.27.14">
  Internal improvements and maintenance updates.
</Update>

<Update label="May 6 2024" description="v0.27.13">
  * **Connectors:** Set transport properties on health check HTTP client
</Update>

<Update label="May 3 2024" description="v0.27.12">
  * **SAML Connectors:** Fix panic observed when generating unsigned logout requests
</Update>

<Update label="May 2 2024" description="v0.27.11">
  * **Resilience Connector:** Add meter and tracer
</Update>

<Update label="May 2 2024" description="v0.27.10">
  * **Resilience Connector:** Add attributes mapping
</Update>

<Update label="April 30 2024" description="v0.27.9">
  * **Resilience Connector:** Add 'enabled' property and remove dependency on feature flag
</Update>

<Update label="April 26 2024" description="v0.27.8">
  * Add instructions on setting up the dev environment for the MSI Installer
  * **Resilience connector:** Implement failover strategy
</Update>

<Update label="April 25 2024" description="v0.27.7">
  * Improve specificity of pull request instructions
  * **Resilience Connector:** Add base config and validation
</Update>

<Update label="April 24 2024" description="v0.27.6">
  * **Resilience Connector:** Implement base lifecycle
</Update>

<Update label="April 23 2024" description="v0.27.5">
  * **SAML Apps:** Call BuildRelayState extension post-authentication
</Update>

<Update label="April 22 2024" description="v0.27.4">
  * **Resilient Connector:** Scaffold connector implementation
</Update>

<Update label="April 19 2024" description="v0.27.3">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 18 2024" description="v0.27.2">
  * **SAML Apps:** Expose NameID configuration
</Update>

<Update label="April 18 2024" description="v0.27.1">
  * Include allowedProtectedPackages option for Service Extensions
</Update>

<Update label="April 16 2024" description="v0.27.0">
  * Introduce cache to SAMLProvider
</Update>

<Update label="April 16 2024" description="v0.26.108">
  * **SAML Apps:** Expose BuildRelayState service extension for IDP-initiated login flow
</Update>

<Update label="April 15 2024" description="v0.26.107">
  * MSI - Separate HTTP address field into IP and Port.
</Update>

<Update label="April 12 2024" description="v0.26.106">
  * **SAML Apps:** Allow IDP-initiated 'relayStateURL' field to be optionally defined
</Update>

<Update label="April 12 2024" description="v0.26.105">
  * MSI - Add documentation hyperlink to complex properties.
</Update>

<Update label="April 12 2024" description="v0.26.104">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 11 2024" description="v0.26.103">
  * MSI - Auto set MAVERICS\_RELOAD\_CONFIG=true
</Update>

<Update label="April 11 2024" description="v0.26.102">
  * Fix log key to have correct attrProvider name
  * MSI - Fix double configuration source error.
</Update>

<Update label="April 11 2024" description="v0.26.101">
  * MSI - Migrate system environment variables.
</Update>

<Update label="April 10 2024" description="v0.26.100">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 10 2024" description="v0.26.99">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 10 2024" description="v0.26.98">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 10 2024" description="v0.26.97">
  * **SAML & OIDC Apps:** Organize authprovider pkg and improve logging
</Update>

<Update label="April 10 2024" description="v0.26.96">
  * Manually validate timestamp assertions in SAML
</Update>

<Update label="April 10 2024" description="v0.26.95">
  Internal improvements and maintenance updates.
</Update>

<Update label="April 10 2024" description="v0.26.94">
  * Implement generic SAML in 1Kosmos and add cache
</Update>

<Update label="April 9 2024" description="v0.26.93">
  * Improve MSI UX flow for Bundle Key File selection.
</Update>

<Update label="April 9 2024" description="v0.26.92">
  * MSI - Find certificate should have empty selection.
</Update>

<Update label="April 9 2024" description="v0.26.91">
  * **SAML Apps:** Validate SP audience is unique before creation
</Update>

<Update label="April 4 2024" description="v0.26.90">
  * **Proxy Apps:** Add support for HTTP request methods in policy
</Update>

<Update label="April 3 2024" description="v0.26.89">
  * **OIDC Apps:** Add 'Authorization' to list of 'Access-Control-Allow-Headers' to fix CORS issue
</Update>

<Update label="April 3 2024" description="v0.26.88">
  * Resolved CVE-2024-22189
</Update>

<Update label="April 3 2024" description="v0.26.87">
  * Make Ping Fed use generic SAML package and introduce cache
</Update>

<Update label="April 2 2024" description="v0.26.86">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 28 2024" description="v0.26.84">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 27 2024" description="v0.26.83">
  * Fix remote config box gets cleared after selecting bundle public key file.
</Update>

<Update label="March 27 2024" description="v0.26.82">
  * **SAML Connectors:** Only sign SAML AuthnRequest if signing certs are provided
</Update>

<Update label="March 27 2024" description="v0.26.81">
  * OIDC ClaimsMapping -> LogicNodes
</Update>

<Update label="March 26 2024" description="v0.26.80">
  * Implements new MSI UI flow
</Update>

<Update label="March 26 2024" description="v0.26.79">
  * Minor changes to improve azure and connector behaviors
</Update>

<Update label="March 26 2024" description="v0.26.78">
  * Rename LogicNode IDP to Value
</Update>

<Update label="March 25 2024" description="v0.26.77">
  * Enhance SAML metadata parsing to support formatted certificates
</Update>

<Update label="March 25 2024" description="v0.26.76">
  * Support api.App in IsAuthenticatedSE, AuthenticateSE and v2/BuildClaimsSE for saml apps
</Update>

<Update label="March 25 2024" description="v0.26.75">
  * Support api.App in IsAuthenticatedSE, AuthenticatedSE, BuildAccessTokenClaimsSE, BuildIDTokenClaimsSE for oidc apps
</Update>

<Update label="March 22 2024" description="v0.26.74">
  * Add support RP-initiated logout in OIDC provider
</Update>

<Update label="March 22 2024" description="v0.26.73">
  * **NG-LDAP Provider:** Correctly handle a bind after the SASL security layer is active (Conformance)
</Update>

<Update label="March 21 2024" description="v0.26.72">
  * **NG-LDAP Provider:** Various improvements to logging and user config.
</Update>

<Update label="March 20 2024" description="v0.26.71">
  * Allow loading certs from Windows store in CyberArk CCP
</Update>

<Update label="March 20 2024" description="v0.26.70">
  * Support api.App in loginSE and isLoggedInSE for proxy apps
</Update>

<Update label="March 20 2024" description="v0.26.69">
  * Support api.App in createHeaderSE for proxy apps
</Update>

<Update label="March 20 2024" description="v0.26.68">
  * Support api.App in loadAttrsSE for proxy apps
</Update>

<Update label="March 20 2024" description="v0.26.67">
  * **NG-LDAP Provider:** Update Stability to Beta
</Update>

<Update label="March 20 2024" description="v0.26.66">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 20 2024" description="v0.26.65">
  * **NG-LDAP Provider:** Fix context within SEs
</Update>

<Update label="March 19 2024" description="v0.26.64">
  * **Service Extensions:** Add missing Cache WithTTL option to SE symbols
</Update>

<Update label="March 18 2024" description="v0.26.63">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 18 2024" description="v0.26.62">
  * **NG-LDAP Provider:** Improve logging
</Update>

<Update label="March 18 2024" description="v0.26.61">
  * **NG-LDAP Provider:** Handle Unbind
</Update>

<Update label="March 16 2024" description="v0.26.60">
  * **NG-LDAP Provider:** Add SASL/GSS-SPNEGO/NTLM handling into the connection handler
</Update>

<Update label="March 15 2024" description="v0.26.59">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 15 2024" description="v0.26.58">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 15 2024" description="v0.26.57">
  * Update error returned when end\_session\_endpoint isn't configured
</Update>

<Update label="March 15 2024" description="v0.26.56">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 14 2024" description="v0.26.55">
  * Okta OIDC connector resilience
</Update>

<Update label="March 14 2024" description="v0.26.54">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 14 2024" description="v0.26.53">
  * Implement CyberArkCCP
</Update>

<Update label="March 13 2024" description="v0.26.52">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 13 2024" description="v0.26.51">
  * **NG-LDAP Provider:** Map user config to runtime parameters
</Update>

<Update label="March 13 2024" description="v0.26.50">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 12 2024" description="v0.26.49">
  * Ensure appropriate errors are returned instead of http.ServeMux panic
</Update>

<Update label="March 12 2024" description="v0.26.48">
  * **NG-LDAP Provider:** Attach secure connection handler to server
</Update>

<Update label="March 12 2024" description="v0.26.47">
  * **NG-LDAP Provider:** Add NTLM Handler (Part 2)
</Update>

<Update label="March 12 2024" description="v0.26.46">
  * Azure connector resilience
</Update>

<Update label="March 12 2024" description="v0.26.45">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 11 2024" description="v0.26.44">
  * **NG-LDAP Provider:** Add NTLM Handler (Part 1)
</Update>

<Update label="March 11 2024" description="v0.26.43">
  * **NG-LDAP Provider:** Handle Extended StartTLS
</Update>

<Update label="March 11 2024" description="v0.26.42">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 11 2024" description="v0.26.41">
  * **Security:** Resolved CWE-409
</Update>

<Update label="March 11 2024" description="v0.26.40">
  * **NG-LDAP Provider:** Handle Search
</Update>

<Update label="March 8 2024" description="v0.26.39">
  * **NG-LDAP Provider:** Handle Simple Bind
</Update>

<Update label="March 8 2024" description="v0.26.38">
  * Expose service extension utility to enable WebLogic integration
</Update>

<Update label="March 8 2024" description="v0.26.37">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 8 2024" description="v0.26.36">
  * **NG-LDAP Provider:** Add Simple Bind skeleton
</Update>

<Update label="March 7 2024" description="v0.26.35">
  * Pass query params from logoutURL to postLogoutRedirectURL
</Update>

<Update label="March 7 2024" description="v0.26.34">
  * **NG-LDAP Provider:** Add first packet processing layer
</Update>

<Update label="March 7 2024" description="v0.26.33">
  * **NG-LDAP Provider:** Fix panic on Orchestrator shutdown
</Update>

<Update label="March 7 2024" description="v0.26.32">
  * **NG-LDAP Provider:** Add initial connection skeleton
</Update>

<Update label="March 7 2024" description="v0.26.31">
  * Add capability to choose idp for authn with LogicNode
</Update>

<Update label="March 7 2024" description="v0.26.30">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 7 2024" description="v0.26.29">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 7 2024" description="v0.26.28">
  Internal improvements and maintenance updates.
</Update>

<Update label="March 7 2024" description="v0.26.27">
  * **NG-LDAP Provider:** Add initial server connection logic
</Update>

<Update label="March 6 2024" description="v0.26.26">
  * Add LogicNode as path to enhancing IDP logic
</Update>

<Update label="March 4 2024" description="v0.26.25">
  * **NG-LDAP Provider:** Add SASL Security Layer (Security Sensitive)
</Update>

<Update label="March 2 2024" description="v0.26.24">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 29 2024" description="v0.26.23">
  * **NG-LDAP Provider:** Add initial OIDs and message structure
</Update>

<Update label="February 29 2024" description="v0.26.22">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 29 2024" description="v0.26.21">
  * **NG-LDAP Provider:** Add runtime params
</Update>

<Update label="February 29 2024" description="v0.26.20">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 27 2024" description="v0.26.19">
  * **NG-LDAP Provider:** Add end-user config
</Update>

<Update label="February 27 2024" description="v0.26.18">
  * Add Service Extension symbols to enable AVP use case
</Update>

<Update label="February 26 2024" description="v0.26.17">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 26 2024" description="v0.26.16">
  * **NG-LDAP Provider:** Add initial Service Extension signatures and parsing logic
</Update>

<Update label="February 23 2024" description="v0.26.15">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 23 2024" description="v0.26.14">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 22 2024" description="v0.26.13">
  * Parse Auth request properly to generate proper state param
</Update>

<Update label="February 21 2024" description="v0.26.12">
  * Move nested policy so that it can be reused across constructs
</Update>

<Update label="February 21 2024" description="v0.26.11">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 21 2024" description="v0.26.10">
  * **NG-LDAP Provider:** Implement minimal lifecycle
</Update>

<Update label="February 21 2024" description="v0.26.9">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 20 2024" description="v0.26.8">
  * Add LDAP provider to root of the config
</Update>

<Update label="February 16 2024" description="v0.26.7">
  * Create an initial structure for the next generation of the LDAP Provider
</Update>

<Update label="February 14 2024" description="v0.26.6">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 10 2024" description="v0.26.5">
  Internal improvements and maintenance updates.
</Update>

<Update label="February 8 2024" description="v0.26.4">
  * Add configuration options to MSI installer and fix upgrade behavior
</Update>

<Update label="February 8 2024" description="v0.26.3">
  * Support loading service extension assets as a file system
</Update>

<Update label="February 6 2024" description="v0.26.2">
  * Add offline\_access to scopes\_supported in OIDC well-known endpoint
</Update>

<Update label="February 2 2024" description="v0.26.1">
  * Implement Context interface for service extensions
</Update>

<Update label="January 31 2024" description="v0.26.0">
  * Support retrieving App name from some v2 Service Extensions
</Update>

<Update label="January 30 2024" description="v0.25.39">
  * Expose orchestrator cache to service extensions
</Update>

<Update label="January 19 2024" description="v0.25.38">
  * Add client\_id to claims in access token
</Update>

<Update label="January 18 2024" description="v0.25.37">
  * Support login options in service extensions
</Update>

<Update label="January 18 2024" description="v0.25.36">
  * Resolved CVE-2023-49295
</Update>

<Update label="January 9 2024" description="v0.25.35">
  * Fixes refresh token length configuration
</Update>

<Update label="January 4 2024" description="v0.25.34">
  * Closes HTTP response body in connectors
</Update>

<Update label="January 4 2024" description="v0.25.33">
  * Omit the attempt to substitute env var if the line starts with '#'
</Update>

<Update label="January 3 2024" description="v0.25.32">
  * Close response body when making token request
</Update>

<Update label="January 2 2024" description="v0.25.31">
  * Resolved CVE-2023-48795
</Update>
