chore(main): release 1.16.0

[mo-auto]

🤖 I have created a release beep boop

1.16.0 (2026-01-22)

Features

• charts: make Gateway ports configurable and support Gateway in janssen helm chart (#12995) (583b64c)
• charts: support gateway api in janssen-aio (#12907) (f5077ae)
• client certificate authentication casa plugin (#12927) (6d80354)
• cloud-native: add feature to update config-api scopes sync from template (#12909) (17d0462)
• cloud-native: support for additional schema files (#13011) (ac78d8b)
• config-api: feature wise admin scope for endpoints (#12736) (a02118e)
• core: fix deps2 (#12965) (19ad682)
• core: merge logging changes from gluu4 (#12871) (1fabadb)
• correct the jans_assets scopes names (#13025) (02409e4)
• introduce roundTripMaxTime config property (#13009) (e5ab6dc)
• jans-auth-server: Added configurable rate limiting for authentication endpoints to prevent brute-force attacks #12664 (#12868) (7a5f846)
• jans-auth-server: sanitized log in AuthenticationService #12958 (#12959) (ba21b2f)
• jans-auth: remove old jackson2 dependency (#12886) (31e31cf)
• jans-cli-tui: additional config-api parameters (#12914) (819a206)
• jans-cli-tui: remove Admin-UI plugin (#12893) (28a40a0)
• jans-config-api: change in process of accessing config-api endpoints in Admin UI (#12983) (7b984ee)
• jans-core: remove tika-core from jackrabbit-core deps (#12960) (75fa989)
• jans-core: removed FILE script type (48b8080)
• jans-core: removed FILE script type #12997 (#12998) (48b8080)
• jans-linux-setup: flex update requirements (#12985) (a9eb502)
• jans-linux-setup: introduce Mako templating engine (#13054) (1b904a9)
• jans-linux-setup: update the renamed scopes in role-to-scope mapping (#12899) (ec72a0f)
• jans-pycloudlib: add support for user session-level postgres schema selection (#12889) (b8cc3ab)
• jans-tarp: implement Cedar-Policy-Aware AI Agent Scaffolding in jans-tarp (#12806) (6e1646a)
• orm: add method to check data after entry update (#12873) (03a48e7)
• send 403 - Forbidden error code in response if Admin UI requests Config API with expired session. This will indicate to Admin UI to logout. (#13022) (a2701ae)
• update the renamed scopes in role-to-scope mapping (ec72a0f)

Bug Fixes

• admin-ui: failed logout on tarp (#12882) (6e4be8a)
• AdminUICookieFilter should not be called in Jans installation (#13041) (2f2675f)
• cloud-native: set restrictive file permissions on SQL property files containing credentials (#12901) (280b2f7)
• config-api: client secret getting encrypted (#12930) (7b73e80)
• docker-jans-cloudtools: add type validation for --limit parameter (#12946) (4fdd2dd)
• docs: add PostgreSQL-related commands to Docker install quick start (#13032) (ad0147d)
• docs: broken links in Authorization Endpoint (#12243) (#12745) (42225c6)
• docs: fix linting issues - trailing spaces and EOF newline (#12879) (734f644)
• docs: fix linting issues - trailing spaces and EOF newline (#12859) (05683c2)
• docs: Set CEDARLING_JWT_SIG_VALIDATION to "disabled" (#12917) (c4665b4)
• docs: update contribution guide, jans README, and Docker Compose… (#12990) (4887ac7)
• fix build error (#13040) (97d5cf0)
• fix error in signing firefox extension for self distribution (#13053) (22ec96f)
• jans-auth-server: fix build after dependencies upgrade (tika) #12971 (#12972) (43acf6a)
• jans-cedarling: fix benchmarks to actually work (#12923) (4518da7)
• jans-cedarling: Fix cedarling to handle domains in different cases (upper and lower) (3e61fb1)
• jans-cedarling: Fix cedarling to handle iss in different cases (#12982) (3e61fb1)
• jans-cedarling: fix entities mapping for not required entities (#13024) (f9caf73)
• jans-cedarling: remove nested field parsing in trusted_issuer parser (#13005) (bedac4d)
• jans-cli-tui: check if log exists before iteration (#13003) (293b13e)
• jans-cli-tui: display confirmation message after saving jans-lock server config (#12911) (3884dcd)
• jans-cli-tui: scim configuration param disableExternalLoggerConfiguration (#12918) (84ac4fa)
• jans-cli-tui: support only db location for custom scripts (#12987) (6d88aa1)
• jans-config-api: move AdminUICookieFilter to Admin UI plugin (#13050) (40f41f5)
• jans-config-api: the session check should be excluded for certai… (#13031) (c7f6cda)
• jans-keycloak-integration: bump libraries with cve vulns #12992 (#12993) (4317fdf)
• jans-linux-setup: typo (#13047) (03d4655)
• refactor DN parsing (#12935) (67adb65)
• terraform-jans-provider: missing grant types in terraform oidc client resource (#12999) (610ab26)
• update override_sql_ssl_property in sql.py to prevent SSL proper… (#12878) (ab84ff7)
• vulns and docs bullet points (#12940) (c807bdb)

---

This PR was generated with Release Please. See documentation.

Summary by CodeRabbit

Release Notes

• Documentation
  • Documented version 1.16.0 release with expanded changelog entries. Highlights include chart and configuration enhancements, security improvements, admin interface updates, and comprehensive bug fixes across system components for improved stability.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds a new changelog entry for version 1.16.0 documenting features and bug fixes across multiple modules including chart enhancements, security improvements, and admin UI updates. No functional code modifications are included.

Changes

Cohort / File(s)	Summary
Changelog Documentation CHANGELOG.md	Added v1.16.0 entry with Features section (chart/config enhancements, security, admin UI improvements) and Bug Fixes section spanning multiple modules (admin-ui, cloud-native, config-api, jans-core, jans-auth-server, jans-cli-tui, terraform-provider, etc.)

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Suggested labels

autorelease: tagged, area-documentation

Suggested reviewers

• moabu

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'chore(main): release 1.16.0' clearly indicates this is an automated release PR for version 1.16.0, which aligns with the changelog addition and PR objectives.
Description check	✅ Passed	The PR description contains an auto-generated changelog with comprehensive Features and Bug Fixes sections from Release Please, documenting all changes in v1.16.0 across multiple modules and issues.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

Warning

Review ran into problems

🔥 Problems

Git: Failed to clone repository. Please run the @coderabbitai full review command to re-trigger a full review. If the issue persists, set path_filters to include or exclude specific files.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[mo-auto]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In `@CHANGELOG.md`:
- Around line 25-26: The 1.16.0 Features section contains duplicate bullets for
the "jans-core: removed FILE script type" entry; remove the redundant line(s) so
each change appears only once. Locate the repeated bullets that reference the
commit 48b8080 and issue/PR numbers (`#12997`, `#12998`) and delete the duplicate
entry while keeping a single canonical bullet that includes the commit and
issue/PR references.

[mo-auto]

🤖 Created releases:

• v1.16.0

🌻