This topic describes the changes in this minor release of Single Sign‑On for VMware Tanzu Application Service.

For product versions and upgrade paths, see Upgrade Planner.

Long-term Support for Single Sign‑On for VMware Tanzu Application Service v1.16

Single Sign‑On v1.16 is a long-term supported (LTS) version. Single Sign‑On v1.16 is supported through April 2026.

Over the life cycle of Single Sign‑On v1.16, VMware releases security patches that occasionally include feature enhancements and maintenance updates.

For more information about Single Sign‑On v1.16 LTS, please contact your Account Team.

v1.16.5 (Stemcell: Ubuntu Jammy)

Release date: August 13, 2024

Upgrade to use cf-cli version 8.

As of v1.64.0 cf-cli v6 has been removed. This upgrade includes cf-cli v1.65.0

Spring Boot 3.3.2 Dependency Upgrade

  • bcprov-jdk18on-1.78.jar
  • byte-buddy-1.14.18.jar
  • classmate-1.7.0.jar
  • commons-logging-1.3.2.jar
  • commons-validator-1.9.0.jar
  • guava-33.2.1-jre.jar
  • httpclient5-5.3.1.jar
  • httpcore5-5.2.5.jar
  • httpcore5-h2-5.2.5.jar
  • kotlin-reflect-1.9.24.jar
  • kotlin-reflect-2.0.0.jar
  • kotlin-stdlib-1.9.24.jar
  • kotlin-stdlib-2.0.0.jar
  • kotlin-stdlib-jdk7-1.9.24.jar
  • kotlin-stdlib-jdk7-2.0.0.jar
  • kotlin-stdlib-jdk8-1.9.24.jar
  • kotlin-stdlib-jdk8-2.0.0.jar
  • log4j-api-2.23.1.jar
  • log4j-to-slf4j-2.23.1.jar
  • logback-classic-1.5.6.jar
  • logback-core-1.5.6.jar
  • lombok-1.18.34.jar
  • micrometer-commons-1.13.2.jar
  • micrometer-core-1.13.2.jar
  • micrometer-jakarta9-1.13.2.jar
  • micrometer-observation-1.13.2.jar
  • nimbus-jose-jwt-9.37.3.jar
  • oauth2-oidc-sdk-9.43.4.jar
  • prettytime-5.0.9.Final.jar
  • spring-aop-6.1.11.jar
  • spring-beans-6.1.11.jar
  • spring-boot-3.3.2.jar
  • spring-boot-actuator-3.3.2.jar
  • spring-boot-actuator-autoconfigure-3.3.2.jar
  • spring-boot-autoconfigure-3.3.2.jar
  • spring-boot-jarmode-tools-3.3.2.jar
  • spring-context-6.1.11.jar
  • spring-core-6.1.11.jar
  • spring-expression-6.1.11.jar
  • spring-jcl-6.1.11.jar
  • spring-security-config-6.3.1.jar
  • spring-security-core-6.3.1.jar
  • spring-security-crypto-6.3.1.jar
  • spring-security-oauth2-client-6.3.1.jar
  • spring-security-oauth2-core-6.3.1.jar
  • spring-security-oauth2-jose-6.3.1.jar
  • spring-security-oauth2-resource-server-6.3.1.jar
  • spring-security-rsa-1.1.3.jar
  • spring-security-web-6.3.1.jar
  • spring-web-6.1.11.jar
  • spring-webmvc-6.1.11.jar
  • tomcat-embed-core-10.1.26.jar
  • tomcat-embed-el-10.1.26.jar
  • tomcat-embed-websocket-10.1.26.jar

v1.16.2 (Stemcell: Ubuntu Jammy)

Release date: April 25, 2024

Spring Boot 3.2.5 Dependency Upgrade

  • accessors-smart-2.5.1.jar
  • asm-9.6.jar
  • bcprov-jdk18on-1.77.jar
  • byte-buddy-1.14.13.jar
  • checker-qual-3.42.0.jar
  • commons-io-2.16.1.jar
  • error_prone_annotations-2.26.1.jar
  • failureaccess-1.0.2.jar
  • guava-33.1.0-jre.jar
  • j2objc-annotations-3.0.0.jar
  • json-smart-2.5.1.jar
  • jul-to-slf4j-2.0.13.jar
  • lombok-1.18.32.jar
  • micrometer-commons-1.12.5.jar
  • micrometer-core-1.12.5.jar
  • micrometer-jakarta9-1.12.5.jar
  • micrometer-observation-1.12.5.jar
  • slf4j-api-2.0.13.jar
  • spring-aop-6.1.6.jar
  • spring-beans-6.1.6.jar
  • spring-boot-3.2.5.jar
  • spring-boot-actuator-3.2.5.jar
  • spring-boot-actuator-autoconfigure-3.2.5.jar
  • spring-boot-autoconfigure-3.2.5.jar
  • spring-boot-jarmode-layertools-3.2.5.jar
  • spring-context-6.1.6.jar
  • spring-core-6.1.6.jar
  • spring-expression-6.1.6.jar
  • spring-jcl-6.1.6.jar
  • spring-security-config-6.2.4.jar
  • spring-security-core-6.2.4.jar
  • spring-security-crypto-6.2.4.jar
  • spring-security-oauth2-client-6.2.4.jar
  • spring-security-oauth2-core-6.2.4.jar
  • spring-security-oauth2-jose-6.2.4.jar
  • spring-security-oauth2-resource-server-6.2.4.jar
  • spring-security-rsa-1.1.2.jar
  • spring-security-web-6.2.4.jar
  • spring-web-6.1.6.jar
  • spring-webmvc-6.1.6.jar
  • tomcat-embed-core-10.1.20.jar
  • tomcat-embed-el-10.1.20.jar
  • tomcat-embed-websocket-10.1.20.jar
  • uaa-gateway-1.16.jar
  • unbescape-1.1.6.RELEASE.jar
  • utilities-1.16.jar
  • woodstox-core-6.6.1.jar

v1.16.1 (Stemcell: Ubuntu Jammy)

Release date: March 28, 2024

The 1.16.x release train is a modernization of the 1.14.x and 1.15.x branches. The tile requires the Ubuntu Jammy stemcell and Java 21 as a minimum runtime environment.

The 1.16.1 version has been tested on TAS 6.0, 5.0, 4.0, 3.0, 2.13 and 2.11.

Required Components and Notable Changes

The default buildpack, java_buildpack_offline, has Java 21 in newer versions, including newer patch versions, of the Tanzu Application Service that include the v4.65+ of the Java Buildpack.

For installations that do not have an updated java_buildpack_offline, the installer can set the value https://github.com/cloudfoundry/java-buildpack under Property Configurations in Tanzu Operations Manager for the latest Java Buildpack to be used.

Installation Notes

The SSO Tile runs as 4 separate microservices in the system org and the identity-service-space space:

  • Cloud Foundry Service Broker, identity-service-broker
  • Cloud Controller API service, sso-api
  • Operator Dashboard, sso-operator-dashboard
  • Developer Dashboard, sso-developer-dashboard
cf target -o system -s identity-service-space
cf apps

name                           requested state   processes   routes
identity-service-broker        started           web:2/2     p-identity-broker.sys.demo.cf-app.com
sso-api                        started           web:2/2     sso-api.sys.demo.cf-app.com
sso-developer-dashboard        started           web:2/2     p-identity.sys.demo.cf-app.com/developer
sso-operator-dashboard         started           web:2/2     p-identity.sys.demo.cf-app.com

During the installation, a green-blue deploy strategy is used (example for sso-operator-dashboard):

  1. A new microservice is installed with a green prefix, in this example green-sso-operator-dashboard.
  2. It is initially routable using a green prefix, for example: green-sso-operator-dashboard.sys.demo.cf-app.com.
  3. Once the microservice is up and running, add the official route to it, for example: p-identity.sys.demo.cf-app.com.
  4. The official route is removed from the previous microservice.
  5. The previous microservice is renamed, adding cold as a suffix: sso-operator-dashboard -> sso-operator-dashboard-cold.
  6. The newly installed microservice is renamed, removing green: green-sso-operator-dashboard -> sso-operator-dashboard.

At the end of the installation, you will have the 8 total microservices, 4 of them running and the other 4 from the previous version paused with no running processes.

cf target -o system -s identity-service-space
cf apps

name                           requested state   processes   routes
identity-service-broker        started           web:2/2     green-identity-service-broker.sys.demo.cf-app.com, p-identity-broker.sys.demo.cf-app.com
identity-service-broker-cold   stopped           web:0/2     green-identity-service-broker.sys.demo.cf-app.com
sso-api                        started           web:2/2     sso-api.sys.demo.cf-app.com
sso-api-cold                   stopped           web:0/2
sso-developer-dashboard        started           web:2/2     green-sso-developer-dashboard.sys.demo.cf-app.com, p-identity.sys.demo.cf-app.com/developer
sso-developer-dashboard-cold   stopped           web:0/2     green-sso-developer-dashboard.sys.demo.cf-app.com
sso-operator-dashboard         started           web:2/2     green-sso-operator-dashboard.sys.demo.cf-app.com, p-identity.sys.demo.cf-app.com
sso-operator-dashboard-cold    stopped           web:0/2     green-sso-operator-dashboard.sys.demo.cf-app.com

Maintenance Changes

Support changes:

  • None

Dependency upgrades in this release:

  • Spring Boot 3.2.x
  • Spring Security 6.1.x
  • Apache Tomcat 10.1.x
  • Apache HTTP Client 5
check-circle-line exclamation-circle-line close-line
Scroll to top icon