[lemonldap-ng] 01/01: Add NEWS entry

Mon Mar 7 06:14:30 UTC 2016

This is an automated email from the git hooks/post-receive script.

xguimard-guest pushed a commit to branch master
in repository lemonldap-ng.

commit 556d131d56b3f833ef1e61f252afcf77ae3af2ff
Author: Xavier Guimard <x.guimard at free.fr>
Date:   Mon Mar 7 07:14:11 2016 +0100

    Add NEWS entry
---
 debian/NEWS      | 59 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 debian/changelog |  6 ++++++
 2 files changed, 65 insertions(+)

diff --git a/debian/NEWS b/debian/NEWS
index 0332673..1b54143 100644
--- a/debian/NEWS
+++ b/debian/NEWS
@@ -1,3 +1,62 @@
+lemonldap-ng (1.9.0-2) UNRELEASED; urgency=medium
+
+  1) Configuration and sessions storage
+
+  From now, Lemonldap::NG uses JSON serialization to store configuration and
+  sessions instead of Storable::nfreeze Perl function. This permits one to have
+  heterogenous servers connected to the same LLNG organization (32/64 bits or
+  different Perl versions). Old format still works but:
+   * configuration backends: new format is applied at first configuration
+     save,
+   * sessions storages: new format is applied for each new session or when
+     updating an existing session. You can force LemonLDAP::NG to keep the old
+     serialization method by setting useStorable to 1 in sessions backend
+     options if you have some custom hooks.
+     Note that this behaviour only affects modules Apache::Session::File, SQL
+     database and Apache::Session::LDAP
+
+  If you have more than one server and don't want to stop the SSO service, start
+  upgrading in the following order:
+   * servers that have only handlers;
+   * portal servers (all together if your load balancer doesn't keep state by
+     user or client IP and if users use the menu);
+   * manager server
+
+  2) Manage Ajax requests when sessions expires
+
+  To request for authentication, handlers sent a 302 HTTP code even if request
+  was an Ajax one. From now, after redirection, portal will send a 401 code
+  with a WWW-Authenticate header containing "SSO portal-URL". This is a little
+  HTTP protocol hook created because browsers follow redirection transparently.
+  If you want to keep old behaviour, set noAjaxHook to 1 (in General Parameters
+  -> Advanced -> Handler redirections -> Keep redirections for Ajax).
+
+  3) New "Multi" authentication scheme
+
+  The Multi backend configuration has changed. Now the stacks are defined in
+  separate attributes:
+   * multiAuthStack
+   * multiUserDBStack
+
+  So an old configuration like this:
+
+    authentication = Multi LDAP;DBI
+    userDB         = Multi LDAP;DBI
+
+  Must be replaced by:
+
+    authentication   = Multi
+    userDB           = Multi
+    multiAuthStack   = LDAP;DBI
+    multiUserDBStack = LDAP;DBI
+
+  4) Form replay
+
+  Management of form replay has been rewritten. If you uses this experimental
+  feature, you must edit your configuration and rewrite it.
+
+ -- Xavier Guimard <x.guimard at free.fr>  Mon, 07 Mar 2016 07:12:08 +0100
+
 lemonldap-ng (1.4.6-1) unstable; urgency=medium
 
   Handler files "My::Package" are no longer installed by default as a module
diff --git a/debian/changelog b/debian/changelog
index 79adb0c..5bcc310 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+lemonldap-ng (1.9.0-2) UNRELEASED; urgency=medium
+
+  * Add NEWS entry
+
+ -- Xavier Guimard <x.guimard at free.fr>  Mon, 07 Mar 2016 07:11:32 +0100
+
 lemonldap-ng (1.9.0-1) unstable; urgency=medium
 
   [ Xavier Guimard ]

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-perl/packages/lemonldap-ng.git

