Crowd (software)
| Developer(s) | Atlassian |
|---|---|
| Initial release | April 5, 2007 |
| Stable release | Crowd (software) version
|
| Written in | Java (programming language) |
| Operating system | |
| Type | Collaborative software |
| License | Proprietary software |
| Website | www |
Crowd is a web-based identity access management and SSO service developed by Australian software company Atlassian.[1] Atlassian wrote Crowd in the Java (programming language) and first published it in 2007[2]. Crowd Standalone comes with a built-in Tomcat web server and support for multiple Database platforms including PostgreSQL, MySQL, and Microsoft SQL Server.[3]
The company markets Crowd as enterprise software, licensed as either on-premises software or software as a service running on Amazon Web Services.[4] Crowd has captured a small amount of market share, but is in use by notable organizations such as the United Kingdom via their UK Government G-Cloud program[5], and NASA.[6]
History
Atlassian released Crowd 1.0 on March 5, 2007, saying its purpose was to "enable[s] IT administrators and application developers to quickly integrate and deploy single sign-on using popular directories such as Microsoft Active Directory and Apple Open Directory. As well as giving IT administrators a single consolidated point of user management"[2]
In recent versions, Crowd has evolved to provide tighter integration with the Atlassian software suite– with additional features including license usage reporting[7], and limited automatic group management.[8] Despite this, customer reception has been lukewarm– With some customers stating that the product lacks the feature set of other solutions.[9]
In 2017, Atlassian released Crowd 3.0 Data Center to add high availability with load balancing across nodes in a clustered setup.[10]
Security
On May 22, 2019, Atlassian released a public security advisory affecting Crowd server and data center[11][12]– CVE-2019-11580. This vulnerability allowed a malicious actor to install an arbitrary plugin to affected versions via an unauthenticated request, effectively allowing unauthenticated remote code execution (Remote code execution).[13]
References
- ↑ "Crowd Product Page". Atlassian. Atlassian. Retrieved 2022-08-23.
- ↑ 2.0 2.1 "Crowd Connects Web Apps, LDAP". atlassian.com. 5 March 2007. Retrieved 2022-08-23.
- ↑ "Supported Platforms". Crowd Support. Atlassian. Retrieved 2022-08-23.
- ↑ "Atlassian Standard Infrastructure on AWS". Amazon Web Services, Inc.
- ↑ "UK Digital Marketplace". digitalmarketplace.service.gov.uk.
- ↑ "Mini Orange". miniorange.com.
- ↑ "Monitoring license usage". atlassian.com. Retrieved 2022-08-23.
- ↑ "Automatically Assigning Users to Groups". atlassian.com. Retrieved 2022-08-23.
- ↑ "Why We Need to Talk About Crowd from Atlassian". isostech.com. Retrieved 2022-08-23.
- ↑ "Crowd 3.0 Release Notes". atlassian.com. Retrieved 2022-08-23.
- ↑ "CVE-2019-11580". cvedetails.com. Retrieved 2022-08-23.
- ↑ "Crowd CVE-2019-11580 bug tracking ticket CWD-5388". atlassian.com. Retrieved 2022-08-23.
- ↑ "CVE-2019-11580 proof-of-concept attack". Corben Leo. 14 July 2019. Retrieved 2022-08-23.
External links
This article "Crowd (software)" is from Wikipedia. The list of its authors can be seen in its historical. Articles taken from Draft Namespace on Wikipedia could be accessed on Wikipedia's Draft Namespace.