DEV-1956

Update the tutorial to accept JWT authentication response. Update the demo to only use username or email at initial registration; update basic demo design.

Tutorial:

• Updated the authentication response check to handle the return of a JWT from SKFS
• Added the useragent to strongkeymetadata during authentication request to SKFS

Demo:

• Changed the name from basic server to basic demo
• Changed the registration process to only ask for username or email
• Changed the layout to display longer usernames when logged in
• Added a notification when clicking on ‘register’ to tell the user if their device/ browser combination supports platform keys or if they need a security key

DEV-1957

Update install and upgrade scripts for 4.4.1.

• Added changeusername configuration ( REST )
• Added Java downgrade until a fix is found for the latest java-1.8.0-openjdk and OpenDJ-3.0.0
• Added StrongKey FIDO Server (SKFS) version to distribution for install/upgrade
• Tested the upgrade from all previous SKFS releases to 4.4.1

DEV-1959

Update username web service.

To accommodate UPN/AD domain switching, a web service has been added that changes a user's username associated with registered FIDO keys. A server property now enables the web service.

For more details, check out the Application Development section.

DEV-1960

Update the usersession flush property.

There is a small discrepancy in the name of the property that determines the age of the user session object in memory. KA and SKFS use different names for the same property; this needs to be changed so that they are consistent with each other.

The property name has been updated in the code. If this property was previously overridden by the /usr/local/strongkey/skce/etc/skce-configuration.properties file then the name of the property should be changed.

• Old name: skce.cfg.property.usersession.flush.cutofftime.seconds
• New name: skfe.cfg.property.usersession.flush.cutofftime.seconds