What’s new
- Upgraded Django to 5.2
- Upgraded Python to 3.14
- Upgraded Vue to 3.5
- Added support for custom Single Sign-On (SSO) authentication
- Added support for configuring how the real client IP address is obtained
- Added support for UKey authentication (JumpServer EE)
- Added support for custom favorite asset node trees
- Added support for preventing the export of sensitive information by setting "SECURITY_DISABLE_VIEW_SECRET=true"
Improvements
- Optimized Ansible task execution by running each task in an isolated container, with up to 10 concurrent tasks
- Integrated session recording playback and transcoding into the client
- Added rate limiting for file uploads and downloads, with a default limit of 50 requests per hour
- Encrypted user email addresses at rest
- Added support for configuring a separate password expiration policy for administrators
- Optimized the retrieval of attribute filter rule instances in ACL rule details to avoid excessively long request parameters
- Optimized historical command cleanup by deleting data in daily batches
- Added popup notifications for in-site messages
- Added support for customizing the available display languages
- Added support for querying assets by excluding specific asset types and categories
- Optimized the user login ACL matching logic by excluding ACL rules where the current user is assigned as an approval reviewer
- Optimized the API documentation by hiding view class comments
- Added support for uploading certificates for LDAP authentication services
- Added support for enabling RDP signing when connecting to RDP sessions through the client by setting "RDP_SIGN_ENABLED=1" (JumpServer EE)
Bug fixes
- Fixed an issue where multiple login logs were generated for a single user login
- Fixed an issue where default parameter values were not applied when executing user jobs
- Fixed an issue where integration application secrets were regenerated on every update
- Fixed an issue where Playbook permissions were not validated when cloning a Playbook
- Fixed security issues in domain-related automation tasks
- Fixed a security issue in the DBeaver remote application connection method
- Fixed security issues in account-related automation tasks
- Fixed an issue where certain Ansible Lookup plugins, such as "file", "pipe", and "env", were not properly disabled
- Fixed an issue where the “Remember Password” option was displayed incorrectly on the Luna page