Skip to content

Releases: gematik/app-Authenticator

4.13.1

18 Oct 10:00
@serdarde serdarde
4.13.1
ee46f3c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
4.13.1 Latest
Latest

Version 4.13.1 (2024-10-18)

Fixed

  • Read and copy certificates correctly in the UI

Checksum:

588e3dfa47b1f6d2b0e4c340a6d15840552f98d2f7233d465fa2917bc0327c29

Checksum Mock-Mode:

36a4cd895adf706ec58c672258edcf05eaf4b4cdd892378e9d815ea9c807cfd5

Checksum macOS (DMG):

f6ab02e6944806940914220fcb273d7459ad2f8de95883c74beb105cf9680059

Checksum Mock-Mode macOS (DMG)

6a88591079d32a6909a18b41cddc1163311e0f2d605f7c6a8b6ebbe85af2f02e

Assets 9
Loading

4.13.0

09 Oct 07:48
@MiN0DE MiN0DE
4.13.0
cd81e93
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
4.13.0

Version 4.13.0 (2024-10-09)

Fixed

  • Added CLIENTNAME to the exposed environment variables
  • Change certificate retrieval logic
  • Remove Konnektorfarm-Code from the production version
  • Pending card insert dialog is now closed when more than one smartcard is found

Security

  • Add patch file in dot-object because of security vulnerability

Checksum:

24d6939a514bf8a0153bcdaa0d69e827a6b05f60a35f651e303060b4f241d0f2

Checksum Mock-Mode:

be7ab70b891d1090442ccee4c3b7ff9530131ed2457704d1780b3972e0141f6b

Checksum macOS (DMG):

3db3c956160ac7b32805ca24bf7af58eb28bf798ac80fbf53920a4a5d27e388a

Checksum Mock-Mode macOS (DMG)

8229c2926176068af4e671f5493a146a7375e4ffa37a58857af9d656b3fc1a09

Assets 15
Loading

4.12.0

19 Aug 13:51
@serdarde serdarde
4.12.0
2d0f879
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
4.12.0 Pre-release
Pre-release

Version 4.12.0 (2024-08-19)

Added

  • ECC support for HBA and SMC-B (starting from G2.1), ECC signing in Mock-Mode, No support for ECC TLS to the connector
  • Improved logging messages for SMC-B card login
  • SMC-B PIN verification without requesting it in the authenticator
  • Use Windows and Mac OS certificate stores for certificate validation
  • Display invalid certificates in function tests
  • Enhanced user experience by indicating unsaved changes in the settings form
  • Automatic copying of test-cases.json and certificates to appropriate locations on macOS

Fixed

  • Implemented hard-coded log steps to avoid duplication
  • Timeout parameter now accepts only positive values
  • Authentication flow now cancels pending second flow if the first flow encounters an error
  • Default timeout parameter set to 30 seconds (30000ms)
  • Reduced auto-update log entries
  • Relevant error messages now displayed when connector connection fails
  • Fixed bug related to directory creation during save actions

Security

  • Replaced dependency is-fqdn with is-valid-domain to prevent security vulnerabilities
  • Limited exposure of environment variables to only the necessary ones
  • Updated dependencies for enhanced security

Checksum:

SHA256: 8944b35fc623540fe50b19c0ebbe15ca03f82ca7f01949c9c2aa0792e9fae808

Checksum Mock-Mode:

SHA256: 093ae235040cd73814620e9034934d767a2de2dd883c34c95d864ce4ba6b8535

Checksum macOS (DMG):

2a3e0b5c1a70303e7ef331f992623ba2e94e88dd84f00c4b5a7a5d669bcdcc37

Checksum Mock-Mode macOS (DMG):

19d431bbb8f27cc827901f79b6ef5cc90a889f593c9365b576e458cd7c72f867

Assets 12
Loading

4.11.0

02 May 07:51
@serdarde serdarde
4.11.0
2e64d99
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
4.11.0

Version 4.11.0 (2024-05-02)

added

  • Action-Buttons on the Settings-Screen now stay in the view while scrolling in order to enhance our UX
  • Set default connector port to 443
  • Default-configuration feature

fixed

  • Prioritize the read environment variable logic to read the correct config.json file on startup
  • Clean application files properly after uninstalling

security

  • Prevent starting Authenticator with remote-debugging parameters

Checksum:

SHA256: 73a95e68f11c12bf5848f95d6fa9ec06b326b6e9b347a3e82b61c428a16e2ac2

Assets 8
Loading

4.10.0

06 Mar 15:35
@serdarde serdarde
4.10.0
78e22d1
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
4.10.0

Version 4.10.0 (2024-03-07)

added

  • Hover-Effect to the navigation bar and renaming "Anmeldung" to "Home" for an improved UX
  • New certificate for connectors
  • Functionality test for HBA usage
  • Option to disable IdP TLS verification in Mock Mode

fixed

  • The "ClientView-Machine-Name"-variable is now being read properly
  • Error handling improved for incorrectly formatted config files
  • Save target directory for certificates has been fixed for central configuration
  • Disable Devtool for production
  • Prevent multiple entries in the Credential Manager

Checksum:

SHA256: a4531d7faf963ffc5dee17bd049b9a02787f906a786f3cef32ba155a3c2e89a4

Assets 9
Loading

4.9.0

13 Feb 16:07
@serdarde serdarde
4.9.0
29d3f98
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
4.9.0

Version 4.9.0 (2024-02-13)

added:

  • Migration for credentials from config.json to windows Credential Manager (only Standalone Installation)
  • UserConsent dialog
  • Input validation for proxy settings and allow-list
  • FQDN support for proxy settings
  • Authenticator checksum hash value for prod and mock versions
  • SBOM (Software Bills of Material)
  • Prod and Mock Version now both are signed
  • Customisable timeout option for HTTP requests

fixed:

  • Using axios as the HTTP client instead of fetch
  • Config.json is now more readable
  • Log-File is now more readable

security

  • change Nodejs to Version 20
  • Prod version no longer contains mock codes
  • New signing certificate for Windows

Checksum:

SHA256: 2771cdf25b59073492935d0ead0c1ee140e394311e89c0ebf51cc2c45c4dc835

Assets 7
Loading

4.8.1

13 Dec 14:46
@serdarde serdarde
4.8.1
3b8159a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
4.8.1

Version 4.8.1 (2023-12-13)

bugfix

  • Fixed Proxy Validation
  • Fixed Logging issue
Assets 6
Loading

4.8.0

06 Dec 07:45
@MiN0DE MiN0DE
4.8.0
3b8159a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
4.8.0

Version 4.8.0 (2023-12-05)

added

  • Deactivation of OS proxy settings now requires mandatory Proxy Address and Port fields entries
  • IP Validation added for Proxy Ignore List in Settings Page
  • Sensitive data is now stored using the Credential Manager
  • New Help page with informative links for better understanding

bugfix

  • SMC-B flow crash after successful HBA flow issue fixed
  • Improved URL parsing mechanism for accurate identification of host and path in IDP service
  • Config.json storage path adjusted for specified ENV parameters
  • Empty environment variable changes are now ignored
  • Function tests now include only PU IDP endpoints
  • Enhanced logic for IDP domain name definition
Assets 6
Loading

4.7.0

01 Nov 13:28
@serdarde serdarde
4.7.0
44c23ba
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
4.7.0

Version 4.7.0 (2023-11-01)

added

  • Introduced XenDesktop support
  • Added asterisks support for the Proxy setting "kein Proxy für"
  • Introduced manual proxy settings
  • Integrated VueJs 3 across the entire project
  • Introduced a Save button after functional tests
  • Opted out of creating a desktop icon during installation
  • Made the app MacOS compatible (for development only)
  • Prevented auto-updates on mock-versions

bugfix

  • Streamlined "environment variables check" for more efficient handling
  • Enhanced logic for retrieving the config path
  • Refined deeplink validation mechanism
  • Ensured case sensitivity handling for card types
  • Correctly parsed string boolean values to actual booleans
  • Removed redundant vue.config.js file from the project

security

  • Each HBA now has a unique UserID
Assets 6
Loading

4.6.0

06 Sep 12:56
@MiN0DE MiN0DE
4.6.0
dc1fd94
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
4.6.0

Version 4.6.0 (2023-09-06)

added:

  • Implemented a new card type "MULTI" to login via HBA & SMC-B with one click
  • The Authenticator now handles multiple authentication requests properly
  • User-friendly error messages with hints to solve the problem

bugfix:

  • The deinstallation process now works in all known cases

security:

  • Include a security.md file
  • Updated the packages
Assets 6
Loading