Changes
-------------

---+ voms-admin-server v. 2.6.1

What's new:

Bug fixes:

https://savannah.cern.ch/bugs/index.php?80308

New features:

*) Support for the creation of VOMS administrators with no email address attached. 
This is useful for host certificates administrators that typically contain email addresses that should not 
receive VOMS Admin emails.

The "ignore-cert-email" option has been added to the voms-db-deploy.py command, so that is now possible
to issue a command like

voms-db-deploy.py add-admin --vo test.vo --cert /etc/grid-security/hostcert.pem --ignore-cert-email

which will grant full privileges to the host certificate for the machine where VOMS Admin is installed without
including the email address contained in the certificate in the list of recipients of VOMS admin email notifications.

*) The voms.aup.require_signature_for_created_users gives VO administrators control on whether AUP signing should be
requested from users created by administrators via the voms-admin cli or the web interface. The default value for the option
is "false", meaning that users created from the command line will NOT be requested to sign AUPs.
 

---+ voms-admin-server v. 2.6.0

First EMI release. 

* Packaging changes to (partly) be compliant with EPEL guidelines.
* EMI SAML profile implementation.

Bug fixes:

https://savannah.cern.ch/bugs/?78350
https://savannah.cern.ch/bugs/?78349


---+ voms-admin-server v. 2.5.5

Fixes for the following bugs:

https://savannah.cern.ch/bugs/?45425: VOMS Admin gives terrifying error message when database is not reachable  
https://savannah.cern.ch/bugs/?45567:  VOMS Admin background tasks are not resilient to transient database failures
https://savannah.cern.ch/bugs/?55988:  VOMS Admin should provide a way to see and manage unconfirmed request
https://savannah.cern.ch/bugs/?60323:  [VOMS-ADMIN-2.5] Unhandled exception on adding ACL for a non-VO member
https://savannah.cern.ch/bugs/?62266:  VOMS-Admin shows error to VO applicant if there is an SMTP error delivering a notification to a VO-admin 
https://savannah.cern.ch/bugs/?68966:  membership expiration date format problem  
https://savannah.cern.ch/bugs/?76587:  [VOMS-Admin] There are possible vulnerabilities in VOMS-Admin  
https://savannah.cern.ch/bugs/?76610:  [VOMS] yaim voms ships confusing template configuration files  
https://savannah.cern.ch/bugs/?76628:  [VOMS Admin] User request forms do not work as expected  
https://savannah.cern.ch/bugs/?76837:  [VOMS Admin] Registration should be turned off when the service is started in read only mode  
https://savannah.cern.ch/bugs/?76838:  [VOMS Admin] VOMS admin CA updater not started when registration is disabled  
https://savannah.cern.ch/bugs/?76839:  [VOMS Admin] No notification sent to users when a membership removal request is approved/rejected by administrators  
https://savannah.cern.ch/bugs/?76840:  [VOMS Admin] No notification is sent to administrators when a membership removal request is submitted by users 
https://savannah.cern.ch/bugs/?76841:  [VOMS Admin] Submitting a request for the same certificate twice causes a stack trace to be printed  
https://savannah.cern.ch/bugs/?76842:  [VOMS Admin] The notification delivery fails when all the admins have empty email addresses

New features:

* Configurable anti-CSRF filter on the web service interfaces

Now also the VOMS admin web service interfaces are protected against Cross Site Request Forgery attacks. 
As this feature breaks compatibility with existing clients it is turned off by default.
The feature can be activated by setting the property:

voms.csrf.log_only = false

in the voms.service.properties file for the VO being configured.
 

* Check connectivity method in voms-db-deploy.py 

The voms-db-deploy.py script now provides a check-connectivity method that can be used to verify the credentials
used to access the database.


---+ voms-admin-server v. 2.5.4

Fixes for the following bugs:

https://savannah.cern.ch/bugs/?66734: VOMS Admin attribute search broken
https://savannah.cern.ch/bugs/?66727: VOMS Admin attribute search pagination broken

---+ voms-admin-server v. 2.5.3

Fixes the following bugs:

https://savannah.cern.ch/bugs/?51657: [VOMS-ADMIN] delete-user does not treat Email= and emailAddress= as equivalent

That wasn't really fixed in 2.5.2.

---+ voms-admin-server v. 2.5.2

New features:

* support for certificate requests
* migration to slfj-logback for logging.

Fixes the following bugs:

https://savannah.cern.ch/bugs/?38150:  vom(r)s convergence: Extend member status in voms-admin
https://savannah.cern.ch/bugs/?38151:  vom(r)s convergence: Implement member institutional expiration in voms-admin
https://savannah.cern.ch/bugs/?43127:  vom(r)s convergence: implement in voms-admin VO membership expiration bound to AUP version
https://savannah.cern.ch/bugs/?43129:  vom(r)s convergence: implement in voms-admin an authorisation-aware web UI
https://savannah.cern.ch/bugs/?43130:  vom(r)s convergence: multiple certificate support
https://savannah.cern.ch/bugs/?43189:  vom(r)s convergence: allow user to request his/her inclusion in a Group/Role in voms-admin
https://savannah.cern.ch/bugs/?43264:  vom(r)s convergence: voms-admin to keep user Registration Data in the VOMS database
https://savannah.cern.ch/bugs/?54613:  [VOMS Admin] voms-admin-configure ignores --dbhost option when configuring mysql VO
https://savannah.cern.ch/bugs/?54614:  [VOMS Admin] voms-admin-configure should not try to create an administrator if the --skip-database option is set
https://savannah.cern.ch/bugs/?56065:  voms-admin email notification behaviour should be configurable
https://savannah.cern.ch/bugs/?58656:  [VOMS-ADMIN-2.5] Unique GAs handling exception
https://savannah.cern.ch/bugs/?59918:  [VOMS-ADMIN-2.5] NullPointerException during group creation with slash in the name
https://savannah.cern.ch/bugs/?59919:  [VOMS-ADMIN-2.5] No warning when creating a group in a read-only context
https://savannah.cern.ch/bugs/?59933:  [VOMS-ADMIN-2.5] Problem removing config backup
https://savannah.cern.ch/bugs/?60256:  [VOMS-ADMIN-2.5] Unhandled UserAlreadyExists Exception
https://savannah.cern.ch/bugs/?60264:  [VOMS-ADMIN-2.5] Uncought IllegalArgumentException on request confirm
https://savannah.cern.ch/bugs/?60265:  [VOMS-ADMIN-2.5] Other VOs list not complete
https://savannah.cern.ch/bugs/?60296:  [VOMS-ADMIN-2.5] Database session problems when wrong request confirmation parameters are submitted
https://savannah.cern.ch/bugs/?60308:  [VOMS-ADMIN-2.5] It is not possible to remove an AUP which has acceptance records
https://savannah.cern.ch/bugs/?60313:  [VOMS-ADMIN-2.5] Trigger reacceptance work only for the predefined AUP
https://savannah.cern.ch/bugs/?60314:  [VOMS-ADMIN-2.5] Links in user AUP acceptance history displaying same AUP
https://savannah.cern.ch/bugs/?60337:  [VOMS-ADMIN-2.5] Locks held on access denied when processing membership requests
https://savannah.cern.ch/bugs/?60483:  [VOMS-ADMIN 2.5] Unhandled exception when deleting groups containing subgroups & locks held
https://savannah.cern.ch/bugs/?60517:  [VOMS-ADMIN-2.5] Unhandled exception when adding ACL entry
https://savannah.cern.ch/bugs/?60600:  [VOMS-ADMIN-2.5] Problems with groups and roles having special characters in the name
https://savannah.cern.ch/bugs/?60604:  [VOMS-ADMIN-2.5] Error adding a default ACL for a group



---+ voms-admin-server v. 2.5.1

First VOMS Admin 2.5 release.
This release provides many new features, like:

* support for multiple certificate per user
* support for versioned Acceptable Usage Policies management 
* membership suspension/expiration/renewal
* support for user requests for group membership, role assignment, membership removal
* support for one click operations (delete, suspend, restore)

VOMS Admin client now implements certificate management commands.
 
Check the updated user guide on https://twiki.cern.ch/twiki/bin/view/EGEE/VomsAdminUserGuide.

   

 