AARC: First draft of the Blueprint Architecture for Authentication and Authorisation Infrastructures

AARC (Authentication and Authorisation for Research Communities) is a two-year EC-funded project to develop and pilot an integrated cross-discipline authentication and authorisation framework, building on existing authentication and authorisation infrastructures (AAIs) and production federated infrastructure. AARC also champions federated access and offers tailored training to complement the actions needed to test AARC results and to promote AARC outcomes. This article describes a high-level blueprint architectures for interoperable AAIs

CESNET/perun-services v3.18.0

<p>Release 3.18.0</p> <ul> <li>Added missing send script for crocs_user_export.</li> <li>Removed unused service gridmap.</li> <li>Fixed executable flag in service feudal.</li> <li>Fixed fail in o365_mail_forward_export when member has not o365 mails.</li> <li>Sort output of following services<ul> <li>sshkeys_root</li> <li>pbs_publication_fairshare</li> <li>passwd_scp</li> <li>passwd_nfs4*</li> </ul> </li> <li>Rewrite gen script to use hashed data<ul> <li>crm_ceitec</li> <li>ceitec_proteomics</li> <li>crocs_user_export</li> <li>gitlab_egi</li> <li>google_groups</li> </ul> </li> </ul&gt

CESNET/perun: Release v3.11.3

Identity and Access Management Syste

CESNET/perun: v21.0.2

<a href="https://github.com/CESNET/perun/compare/v21.0.1...v21.0.2">21.0.2</a> (2023-01-16) Bug Fixes <ul> <li>remove apostrophe from ldif (<a href="https://github.com/CESNET/perun/commit/509ecd49101c758b05987d564665dd1eb3b629a2">509ecd4</a>)</li> </ul&gt

CESNET/perun-services: Release 3.2.1

<p>Bugfix release.</p> Changelog <ul> <li>send: Removed all calls of exit in ADConnector.pm since its a library</li> <li>fs_project: Fix typo in project service</li> <li>fs_project: Fix ACL set for owner on directory</li> </ul&gt

CESNET/perun-services: Release 3.3.0

<ul> <li>Use new group-resource attributes in voms service for "vomsRoles" and "vomsGroupName".</li> <li>Added alternativeLoginNames param in crm_ceitec service.</li> <li>Fixed k5login_root when there are no groups or no valid members in a group.</li> <li>Fixed vsup_vema service to update only own entries with 'vmauth' value in TYPPROP column.</li> <li>Extended vsup_k4 service with OSB_ID from IFIS system.</li> <li>Fixed false deleting of persons in vsup_k4.</li> <li>Extended logging and better debug for generic send script.</li> <li>Fixed parsing of input file in afs service.</li> </ul&gt

CESNET/perun-services: Release 3.3.1

<ul> <li>Fixed error code comparison in generic_send script. Now we correctly decide, if service provisioning failed due to an error or just timed out (and is probably running on slave side).</li> </ul&gt

CESNET/perun-services: Release 3.2.0

Changelog <ul> <li>Added service to manager root access using yubikeys.</li> <li>Fixed logging in group and group_nfs4 services.</li> <li>Changed homedir in SafeQ service.</li> <li>Updated locking in ad_mu service.</li> <li>Fixed AD related services and library.</li> <li>Added service for K4 at VŠUP.</li> <li>Added new CoS types to VŠUP Zimbra service.</li> <li>Sort groups in Tinia services.</li> <li>Updated o365 service at MU.</li> </ul&gt

CESNET/perun-services: Release 3.4.0

<p>Changed architecture of all packages to "all", because the packages can be used on all architectures. Updated version numbers of all packages.</p&gt

CESNET/perun: v19.0.0

<a href="https://github.com/CESNET/perun/compare/v18.0.1...v19.0.0">19.0.0</a> (2022-11-04) Bug Fixes <ul> <li><strong>cli:</strong> default OIDC config message fix (<a href="https://github.com/CESNET/perun/commit/21ac217c97a74114ccf6d8a147e979eb70a0da31">21ac217</a>)</li> <li><strong>cli:</strong> fixed printing help for reloadAppsConfig tool (<a href="https://github.com/CESNET/perun/commit/6e18883737cefce9076cdd5dd8dea2f422e54632">6e18883</a>)</li> <li><strong>core:</strong> fix createGroupUnion sql exception (<a href="https://github.com/CESNET/perun/commit/bdf41f58faba65ce466fdfa4c161b7e4ec905f52">bdf41f5</a>)</li> <li><strong>core:</strong> fix getMessagesByIdAndCount (<a href="https://github.com/CESNET/perun/commit/aa281f846a813475e6e868c2c8a9ab33f0f902aa">aa281f8</a>)</li> <li><strong>core:</strong> fixed ssh keys validation for keys with prefix (<a href="https://github.com/CESNET/perun/commit/64b5e7192886c8d05ce3ad614fc785d639a8f3da">64b5e71</a>)</li> <li><strong>core:</strong> support mu password manager on test instance (<a href="https://github.com/CESNET/perun/commit/05311cbc70f189ac3bd66d266f4b34a9248f2e77">05311cb</a>)</li> <li><strong>registrar:</strong> check form items on update (<a href="https://github.com/CESNET/perun/commit/2bab3ee582fcdc0cf8ec68318c246c7a1c36b513">2bab3ee</a>)</li> <li><strong>registrar:</strong> fix duplicate notifications (<a href="https://github.com/CESNET/perun/commit/2023cb60c57d3d4bbc83dfd61e03bca468edaf3c">2023cb6</a>)</li> </ul> Features <ul> <li>Add method to get OIDC config for Perun instance + CLi script to call this method (<a href="https://github.com/CESNET/perun/commit/3b54deccfe971b91c44aaac4b552c29397137511">3b54dec</a>)</li> <li>added support for securityText attribute (<a href="https://github.com/CESNET/perun/commit/eb7ff3ab581fa48d93723460da57b85a1dd45df8">eb7ff3a</a>)</li> <li><strong>cabinet:</strong> rights changed for getAuthorsByPublicationId method (<a href="https://github.com/CESNET/perun/commit/7da850b860ccb9fde48c42a3ea1ff5e5db0391a4">7da850b</a>)</li> <li><strong>cli:</strong> revokeOidc fallback (<a href="https://github.com/CESNET/perun/commit/06d05617a3406c941dda59efe89176863257cf5f">06d0561</a>)</li> <li><strong>core:</strong> add ConsentStatus to UsersPageQuery (<a href="https://github.com/CESNET/perun/commit/2c861a56fc99520f679ce2fdadc4289644dca9c4">2c861a5</a>)</li> <li><strong>core:</strong> allow self to call get all entities (<a href="https://github.com/CESNET/perun/commit/b0d38a71e4663667d85c6203d7910e187efd01e7">b0d38a7</a>)</li> <li><strong>core:</strong> Default minimum password length set to 8 characters (<a href="https://github.com/CESNET/perun/commit/c6835da36ec982c1870ec59cebacaf9ed7d5aadb">c6835da</a>)</li> <li><strong>core:</strong> exact match user attribute list/map values (<a href="https://github.com/CESNET/perun/commit/d710e8b93cde778281e2c6263bd5cb74202ab29b">d710e8b</a>)</li> <li><strong>core:</strong> getAllResources method (<a href="https://github.com/CESNET/perun/commit/6888a17062b4885044b4ac128b32da36c94f72ec">6888a17</a>)</li> <li><strong>core:</strong> Role display name (<a href="https://github.com/CESNET/perun/commit/4cf8b84683ac8e6400754a7fe075c1ea6c41d8cb">4cf8b84</a>)</li> <li><strong>core:</strong> status indirect urn (<a href="https://github.com/CESNET/perun/commit/806073bbfc3bdd93bd6e947db794ba8e78df2ade">806073b</a>)</li> <li><strong>core:</strong> support branding between new and old GUI (<a href="https://github.com/CESNET/perun/commit/f947e7a0a1b4c2c4954c289720fbb0a551a5613b">f947e7a</a>)</li> <li>make find_group_inconsistencies script use user IDS to work better with hierarchical Vos (<a href="https://github.com/CESNET/perun/commit/f282594c94f32f63f9bc09c751df6a76a41a8cd1">f282594</a>)</li> <li><strong>mvn:</strong> upgrade to Spring Boot 2.7.5 (<a href="https://github.com/CESNET/perun/commit/457024f4a7cdfb0fac0d7d69cad1435dfb2c95e7">457024f</a>)</li> <li><strong>openapi:</strong> (Un)set role for user or group (<a href="https://github.com/CESNET/perun/commit/f4326ffbcc6c8c2edb9bf70d31d07c096d2b7707">f4326ff</a>)</li> <li><strong>registrar:</strong> added ApplicationNotNewException (<a href="https://github.com/CESNET/perun/commit/f96c1c991289f7f2bedaa48e1574af34577654c5">f96c1c9</a>)</li> </ul> BREAKING CHANGES <ul> <li><strong>core:</strong> New brand properties in perun-apps-config.yml, deprecated newAdminGuiAlert in perun-web-gui.properties moved to perun-apps-config and can be branded</li> <li><strong>registrar:</strong> update DB</li> </ul&gt