Skip to content

Releases: Yubico/java-webauthn-server

Pre-release 1.11.0-RC1

16 Sep 19:12
@emlun emlun
1.11.0-RC1
This tag was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
fe7a557
This commit was signed with the committer’s verified signature.
emlun Emil Lundberg
GPG key ID: 0F47E61493A9B8E5
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 1.11.0-RC1 Pre-release
Pre-release

Deprecated features:

  • AuthenticatorSelectionCriteria methods builder().requireResidentKey(boolean) and isRequireResidentKey() deprecated in favor of a new option, see below.
  • The icon field in RelyingPartyIdentity and UserIdentity, and its associated methods, are now deprecated. The corresponding property was removed in WebAuthn Level 2.

Deprecated features will be removed in the next major version release.

Changes:

  • RelyingParty.appId setting now also activates the appidExclude extension in addition to the appid extension.
  • RelyingParty.startRegistration() now enables the credProps extension by default. The extension output, if any, is available as RegistrationResult.isDiscoverable() and RegistrationResult.getClientExtensionOutputs().getCredProps().

New features:

  • RegistrationResult.keyId() now includes transports if any were included in the AuthenticatorAttestatationResponse. To get transports passed through, call PublicKeyCredential.response.getTransports() on the client side after successful registration, and add the result as the property response.transports in the JSON passed into PublicKeyCredential.parseRegistrationResponseJson. See the project README for an example.
  • Added support for the appidExclude, credProps, largeBlob and uvm extensions.
  • Added support for the new authenticatorSelectionCriteria.residentKey option:
    • Added method AuthenticatorSelectionCriteria.builder().residentKey(ResidentKeyRequirement).
    • Added method AuthenticatorSelectionCriteria.getResidentKey().
    • Methods builder().requireResidentKey(boolean) and isRequireResidentKey() deprecated in favor of the above two new methods.
    • The builder methods requireResidentKey(boolean) and residentKey(ResidentKeyRequirement) both control one shared setting, which sets both the requireResidentKey and residentKey options simultaneously and in agreement with each other for backwards compatibility with older browsers.
  • Added methods PublicKeyCredentialCreationOptions.toCredentialsCreateJson(), PublicKeyCredentialRequestOptions.toCredentialsGetJson() and AssertionRequest.toCredentialsGetJson() for serializing to JSON without having to use Jackson directly.

Fixes:

  • Added missing JavaDoc for id and name methods of initial RelyingPartyIdentityBuilder stages.

Artifacts built with openjdk 11.0.12 2021-07-20.

Assets 5
Loading

Version 1.10.1

02 Aug 13:15
@emlun emlun
1.10.1
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
eb6e64f
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.10.1

webauthn-server-attestation:

  • Fixed name of YubiKey Bio - FIDO edition in attestation metadata.

Artifacts built with openjdk 11.0.12 2021-07-20.

Assets 5
Loading

Version 1.10.0

12 Jul 16:10
@emlun emlun
1.10.0
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
2481a44
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.10.0

webauthn-server-attestation:

  • Added attestation metadata for YubiKey Bio.

Artifacts built with openjdk 11.0.11 2021-04-20.

Assets 5
Loading

Version 1.9.1

24 May 19:39
@emlun emlun
1.9.1
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
0f92fce
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.9.1
  • Added missing <dependencyManagement> declaration to webauthn-server-attestation and webauthn-server-core POMs.

webauthn-server-attestation:

  • Added attestation metadata for YubiKey 5 FIPS series.

Artifacts built with openjdk 11.0.11 2021-04-20.

Assets 5
Loading

Pre-release 1.9.1-RC2

10 May 17:45
@emlun emlun
1.9.1-RC2
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
f611662
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 1.9.1-RC2 Pre-release
Pre-release

webauthn-server-attestation:

  • Added missing <dependencyManagement> declaration to webauthn-server-attestation POM.

Artifacts built with openjdk 11.0.11 2021-04-20.

Assets 5
Loading

Pre-release 1.9.1-RC1

10 May 16:08
@emlun emlun
1.9.1-RC1
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
1cdbe8d
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 1.9.1-RC1 Pre-release
Pre-release

webauthn-server-core:

  • Added missing <dependencyManagement> declaration to webauthn-server-core POM.

Artifacts built with openjdk 11.0.11 2021-04-20.

Assets 5
Loading

Version 1.9.0

03 May 11:26
@emlun emlun
1.9.0
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
d0bcdc7
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.9.0

webauthn-server-attestation:

  • Fixed that SimpleAttestationResolver would return empty transports when transports are unknown.

webauthn-server-core:

  • Added support for the "apple" attestation statement format.

Other:

  • Dependency versions moved to new meta-module webauthn-server-parent. Users should never need to depend on webauthn-server-parent directly.

Artifacts built with openjdk 11.0.11 2021-04-20.

Assets 5
Loading

Pre-release 1.9.0-RC2

20 Apr 23:40
@emlun emlun
1.9.0-RC2
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
d329b8e
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 1.9.0-RC2 Pre-release
Pre-release
  • Dependency versions moved to new meta-module webauthn-server-parent. Users should never need to depend on webauthn-server-parent directly.

Artifacts built with openjdk 11.0.10 2021-01-19.

Assets 5
Loading

Pre-release 1.9.0-RC1

19 Apr 17:09
@emlun emlun
1.9.0-RC1
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
a13daee
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Pre-release 1.9.0-RC1 Pre-release
Pre-release

webauthn-server-attestation:

  • Fixed that SimpleAttestationResolver would return empty transports when transports are unknown.

webauthn-server-core:

  • Added support for the "apple" attestation statement format.

Artifacts built with openjdk 11.0.10 2021-01-19.

Assets 5
Loading

Version 1.8.0

15 Mar 17:46
@emlun emlun
1.8.0
This tag was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
9023482
This commit was signed with the committer’s verified signature. The key has expired.
emlun Emil Lundberg
GPG key ID: B9C3C1205DB091E2
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.8.0

Changes:

  • BouncyCastle dependency is now optional.

    In order to opt out, depend on webauthn-server-core-minimal instead of webauthn-server-core. This is not recommended unless you know your JVM includes JCA providers for all signature algorithms.

    Note that webauthn-server-attestation still depends on BouncyCastle.

  • Jackson deserializer for PublicKeyCredential now allows a rawId property to be present if id is not present, or if rawId equals id.

Artifacts built with openjdk 11.0.10 2021-01-19.

Assets 5
Loading