Connect2id server 11.6.4

This is a maintenance update of Connect2id server 11.x, addressing two minor issues and updating dependencies under the hood. Similar updates will appear in the upcoming 12.2 in August.

Check the release notes for further information.


Standard Connect2id server edition

Apache Tomcat package with Connect2id server 11.6.4:

SHA-256: 2b9c72f4059e5296aea952cd6ca62256856d314e612317ff306901a1198bf4fd

Connect2id server 11.6.4 WAR package: c2id.war

SHA-256: 201cb2836dd8651f4cf7b958adcff7864a3ff5344ddb45238b7ca8d0d02d176c

Multi-tenant edition

Apache Tomcat package with Connect2id server 11.6.4:

SHA-256: 17501539eb7074bdfc5fb3f806be17dbc4dd2b190dba8eef7d6fd148f258009a

Connect2id server 11.6.4 WAR package: c2id-multi-tenant.war

SHA-256: d0f5b8bdf29213b1ad90c98fc54a4895e54dde41c02b06f00fc8f651dda2bb30


Contact Connect2id support.

Release notes

11.6.4 (2021-07-31)

Resolved issues

  • Fixes a bug in AuthorizationRequest.Builder(AuthorizationRequest) that prevented copy of OpenID authentication request parameters, which can affect modification of requests in AuthorizationRequestValidator and PARValidator SPI implementations (issue oidc-sdk/367).

  • Refactors and extends handling of corrupted JSON in long_lived_authorizations items in a AWS DynamoDB table for get, put-if-absent, replace and remove operations to prevent an internal server error (HTTP 500) and clean up the detected corrupted items where feasible (issues authz-store/186, 187).

Dependency changes

  • Updates to com.nimbusds:oauth2-oidc-sdk:9.10.1

  • Updates to com.nimbusds:nimbus-jose-jwt:9.11.1

  • Updates to com.nimbusds:nimbus-jwkset-loader:5.1

  • Updates to com.nimbusds:oauth2-authz-store:16.7.4

  • Updates to com.nimbusds:oidc-session-store:14.4.5

  • Updates to com.nimbusds:common:2.45.4

  • Updates to com.unboundid:unboundid-ldapsdk:6.0.0

  • Updates to net.minidev:json-smart:2.4.7

  • Updates to com.thetransactioncompany:pretty-json:1.4.3

  • Updates to org.apache.commons:commons-lang3:3.12.0

  • Updates to

  • Updates to Infinispan 9.4.23.Final.

  • Updates to org.mariadb.jdbc:mariadb-java-client:2.7.3

  • Updates to org.postgresql:postgresql:42.2.23

  • Updates to io.prometheus:simpleclient:0.11.0

  • Updates to io.prometheus:simpleclient_servlet:0.11.0

  • Updates to io.prometheus:simpleclient_dropwizard:0.11.0

  • Updates to Log4j 2.14.1.

  • Adds