View Source

h3. Whydah 2.6 - Release Log

h3. Key focus/features

* (/) Whydah application to application sessions with adaptive end-to-end payload encryption)
* (/) OAUTH2 provider
* (/) SPA Proxy Service


*Release log*
||Version || Date || Main changes ||Comment(s)||
| | | | |
| 2.6.0 | Oct 2020 | Cumulative feature release and security patching of 3rd party dependencies |


-----

*Planned ideas and tasks*
||Version ||Main changes ||Comment(s)||
| 2.6.0 |Configurable application-to-application hard crypto via ApplicationModel |(idea)|
| 2.6.0 |support for more MFA solutions |(idea)|
| |Extend SSOLWA with adminpage and functionality for single-application logout |(idea)|
| |DEFCON actions in ApplicationModel ||
| |Encrypted user tokens |(idea)|
| 2.6.0 |CSRF pre-auth tokens |(idea)|
| |Complete config strategy for all modules (Constretto ~/config_override/application_override.properties | |
| |supported User Session SecurityLevels in application |ASAP - need to handle compatibility transition| |
| |DEFCON change alerts with suggested actions (probably mail/sms) - to observe and verify/match the suggested actions to real-life situations| |
|