Release Notes

Note: Pivotal has renamed Single Sign‑On for Pivotal Cloud Foundry to Pivotal Single Sign‑On.

Note: Pivotal has renamed Pivotal Cloud Foundry to Pivotal Platform.

These are release notes for the Pivotal Single Sign‑On.

For product versions and upgrade paths, see Upgrade Planner.

v1.10.3

Release Date: April 24, 2020

Resolved Issues

This release has the following fix:

  • Space Developers can now view and select permissions from any space in the SSO Developer Dashboard on the Register App page.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.
  • Users are unexpectedly logged out from SSO Operator Dashboard.

v1.10.2

Release Date: April 13, 2020

Resolved Issues

This release has the following fix:

  • Space Developers can now select the profile scope in the SSO Developer Dashboard on the Register App page.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.
  • Users are unexpectedly logged out from SSO Operator Dashboard.
  • Space Developers cannot view and select permissions from other spaces in the SSO Developer Dashboard on the Register App page.

v1.10.1

Release Date: November 20, 2019

Resolved Issues

This release has the following fixes:

  • Display All Resources: The SSO Developer Dashboard did not display more than 500 resources when registering or editing an app.
  • False error displayed for whitelist URI: The SSO Developer Dashboard displayed an error message when updating an invalid whitelist URI to a valid one.

Known Issues

This release has the following issue:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.
  • Users are unexpectedly logged out from SSO Operator Dashboard.
  • Space Developers cannot select the profile scope in the SSO Developer Dashboard on the Register App page.
  • Space Developers cannot view and select permissions from other spaces in the SSO Developer Dashboard on the Register App page.

v1.10.0

Release Date: September 5, 2019

Features

New features and changes in this release:

  • Authorization Code and Client Credentials Multi-Grant Type: Single Sign‑On v1.10.0 adds support for multiple grant types. This feature enables app developers to build Web + Service-to-Service apps that can use both user and app resources. For more information about app types, see Determine Your Single Sign‑On App Type.
  • Accessibility Design Improvements: The SSO Developer Dashboard has more visual cues to help navigate through the UI and improve accessibility.
  • UX Enhancement: The SSO Developer Dashboard has the following usability enhancements:
    • Error messages are clearer.
    • User authorization scopes, app authorization scopes, and admin permissions scopes are more distinct.
    • Tooltips and page navigation have been improved.
  • Stemcell Update: The major stemcell line is now the 315 series for Ubuntu Xenial.

Resolved Issues

This release has the following fixes:

  • Maximum Branding Size: If logos and favicons are larger than 64 KB, then the installation of the Single Sign‑On tile fails.

  • SSO Developer Dashboard Login: If an operator configures more than 60 plans, developers are prevented from logging into the SSO Developer Dashboard.

Known Issues

This release has the following issues:

  • Authorization for Okta OpenID Connect (OIDC): When using an Okta OIDC provider, the roles claim in the ID token does not get populated with external identity provider (IdP) groups. This impacts the mapping of external IdP groups to scopes. Despite this limitation, you can still use Okta OIDC provider for authentication.
  • Users are unexpectedly logged out from SSO Operator Dashboard.
  • Space Developers cannot select the profile scope in the SSO Developer Dashboard on the Register App page.
  • Space Developers cannot view and select permissions from other spaces in the SSO Developer Dashboard on the Register App page.
  • The SSO Developer Dashboard does not display more than 500 resources when registering or editing an app.

  • The SSO Developer Dashboard displays an error message when updating an invalid whitelist URI to a valid one.

Viewing Release Notes for Another Version

To view the release notes for another product version, select the version from the dropdown at the top of this page.