Release Notes
Notice#
This document, also known as the Gluu Gateway Release Note, relates to the Gluu Gateway Release versioned 4.0.x. The work is licensed under the “The Apache 2.0 License” allowing the use, copy, modify, merge, publish, distribute, sub-license and sale without limitation and liability, provided the end-user person or organization using this software has an active support subscription for this software with either Gluu or one of Gluu's OEM partners after using the software for more than 30 days. This document extends only to the aforementioned release version in the heading.
UNLESS IT HAS BEEN EXPRESSLY AGREED UPON BY ANY WRITTEN AGREEMENT BEFOREHAND, THE WORK/RELEASE IS PROVIDED “AS IS”, WITHOUT ANY WARRANTY OR GUARANTEE OF ANY KIND EXPRESS OR IMPLIED. UNDER NO CIRCUMSTANCE, THE AUTHOR, OR GLUU SHALL BE LIABLE FOR ANY CLAIMS OR DAMAGES CAUSED DIRECTLY OR INDIRECTLY TO ANY PROPERTY OR LIFE WHILE INSTALLING OR USING THE RELEASE.
Purpose#
The document is released with Version 4.0.x of the Gluu Gateway Software. The purpose of this document is list changes made and new features included in this release. The list is not exhaustive and there might be some omission of negligible issues, but the noteworthy features, enhancements and fixes are covered.
Background#
Gluu Gateway is an API Gateway which leverages the Gluu Server for central client management and access control using OAuth and UMA scopes.
Documentation#
Please visit the Gluu Gateway docs for more complete documentation.
Gluu Gateway 4.0#
There are major changes in GG 4.0. Plugins have been de-coupled and separated in to two categories: authentication and authorization. In addition, two new plugins have been added: gluu-openid-connect and gluu-opa-pep.
A description of our plugins follows:
| Plugin | Description |
|---|---|
| gluu-oauth-auth | Authenticate client by OAuth Token |
| gluu-uma-auth | Authenticate client by RPT |
| gluu-openid-connect | Authenticate client by OIDC code flow |
| gluu-oauth-pep | Authorization by OAuth token scopes |
| gluu-opa-pep | Authorization plugin for Open Policy Agent |
| gluu-uma-pep | Authorization by UMA Scope security |
| gluu-metics | Metrics about client authentication, authorization and others |
New Features#
- #360 : Convert plugins to Kong 1.3
- #363 : Make a new GG 4.0 package with latest Kong 1.3
- #359 : Update Admin UI with Kong 1.3
- #283: New
gluu-openid-connectplugin with UMA claim gathering support - #320 : Make new Open Policy Agent plugin
gluu-opa-pep - #317 : Support Phantom Token Flow
- #324 : GG UI - Add OPA plugin configuration in GG Admin Console
- #322 : GG UI - Update UI for phantom token configuration
- #296 : GG UI - OpenID Connect plugin configuration
- #345 : URL based Stepped up authentication in OIDC plugin
- #349 : Design GG UI for URL based Stepped up authentication feature in OIDC plugin
Changes#
- #297: Decouple existing gluu-uma-pep. Now there are two separate plugins 1. gluu-uma-auth 2. gluu-uma-pep.
- #298: Decouple existing gluu-oauth-pep. Now there are two separate plugins 1. gluu-oauth-auth 2. gluu-oauth-pep.
- #328 : Collect more metrics about all plugins
- #336 : GG UI: Remove extra API for plugin config
- #325 : Usage and metrics tracking