Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

cloudfoundry / uaa Public

Notifications You must be signed in to change notification settings
Fork 827
Star 1.6k

Code
Issues 33
Pull requests 3
Discussions
Actions
Projects 1
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security
Insights

Releases: cloudfoundry/uaa

Releases Tags

Releases · cloudfoundry/uaa

UAA 3.7.3 - Security Release (CVE-2016-6651)

26 Sep 21:52

sreetummidi

3.7.3

4a77055

Compare

Choose a tag to compare

View all tags

UAA 3.7.3 - Security Release (CVE-2016-6651)

This is a security release which addresses

CVE-2016-6651 Privilege Escalation in UAA

Assets 2

All reactions

UAA 2.7.4.9 - Security Release (CVE-2016-6651)

26 Sep 21:49

sreetummidi

2.7.4.9

fbec829

Compare

Choose a tag to compare

View all tags

UAA 2.7.4.9 - Security Release (CVE-2016-6651)

This is a security release which addresses

CVE-2016-6651 Privilege Escalation in UAA

Assets 2

All reactions

UAA 3.4.5 - Security Release (CVE-2016-6651)

26 Sep 21:53

sreetummidi

3.4.5

0f8f893

Compare

Choose a tag to compare

View all tags

UAA 3.4.5 - Security Release (CVE-2016-6651)

This is a security release which addresses

CVE-2016-6651 Privilege Escalation in UAA

Assets 2

All reactions

UAA 3.3.0.6 - Security Release (CVE-2016-6651)

26 Sep 21:53

sreetummidi

3.3.0.6

7f8dff9

Compare

Choose a tag to compare

View all tags

UAA 3.3.0.6 - Security Release (CVE-2016-6651)

This is a security release which addresses CVE-2016-6651 Privilege Escalation in UAA

Assets 2

All reactions

UAA 3.7.0 Release Notes

13 Sep 22:00

sreetummidi

3.7.0

5cbf9c1

Compare

Choose a tag to compare

View all tags

UAA 3.7.0 Release Notes

New Features

Support token_format=opaque for refresh token
Log the Audit Events in a separate log
Add support for unlocking users
User should be redirected to UAA to authenticate when accessing client app which does not support their origin IdP
New Metrics for UAA - Auth Stats
Allow overriding branding properties for each zone

Bug Fixes

Token Signing Keys are improperly encoded
UAA locations should always pass the logout redirect whitelist
Going to UAA login page when already authenticated in UAA returns the 'UAA' home page regardless if the identity zone homeRedirect is configured
LDAP Invitations failure on accept
Zone Specific Reset Password and Create Account Links are not reflected in the Login UI

Assets 2