Trivore ID 4 changelog
Version 4 is the latest production ready release of Trivore ID.
Upgrade instructions
Review Important Upgrade Notes for version specific upgrade instructions.
Release 4.42.0
Released 2024-11-25.
New features
- ONEP-2421 The web dashboard now features enhanced warning notifications for critical configuration issues, addressing previous gaps in awareness. Admin users can view alerts alongside actionable recommendations. This improvement streamlines the monitoring of system health and paves the way for future developments in health management functionalities.
- ONEP-3563 Added the manage "nicknamesAllowed" and "allowUserInvite" fields in the Namespace API.
- ONEP-3576 Added support for SMS Eagle messaging gateways, enabling text messages to be routed through the SMS Eagle device. This integration facilitates the use of the SMS Eagle API as a messaging gateway, enhancing messaging capabilities without relying on cloud services.
Bug fixes
- ONEP-3054 Webhook editor's user group selection field now better supports large numbers of groups. Users can now successfully select user accounts from an extensive list of groups without encountering errors.
- ONEP-3325 Improved stability of user search when searching by consent information.
- ONEP-3527 Fixed an issue with password expiration handling for users logging in via an external directory. Previously, users were prompted to change their password immediately after login, even if they did not know their initial password, leading to login failures.
- ONEP-3543 Resolved an issue where editing the New namespace default settings resulted in an error.
- ONEP-3583 Removed a detected security issue where it was possible for an user to view a list of all other users in their namespace, even without the required permission.
- ONEP-3603 Fixed an issue where saving a DVV connection profile's log keys would inadvertently erase all log keys associated with that profile.
- ONEP-3607 Fixed an issue that prevented logging of object creator in certain cases.
Improvements
- ONEP-2884 Added the ability to enable and disable OIDC clients, allowing for similar functionality to the management APIs. Users can now easily manage the availability of OIDC clients within the system.
- ONEP-3521 Added validation to ensure that the SAML request ID matches the InResponseTo parameter of the original request. This enhancement helps prevent replay attacks, providing an additional layer of security for SAML transactions.
- ONEP-3564 Implemented a optional feature to the MFA authentication process, allowing users to receive email or SMS codes automatically without needing to click a confirmation button when only one MFA method is available.
- ONEP-3573 The /dvv/lookup/identity REST API has been updated to include the person's home address in the response.
- ONEP-3584 Update OpenSAML libraries to latest available version
- ONEP-3587 Implemented a REST API for performing mass updates of DVV basic information across all users in a namespace, or for members of a specific DVV group.
Customer specific
- ONEP-3411 Customer specific user-interface feature for blocking subscriptions
- ONEP-3463 Customer specific REST endpoint for creating new users
Release 4.41.0
Released 2024-11-04.
New features
- ONEP-3063 Added the ability to manually verify phone numbers and email addresses for testing purposes.
- ONEP-3442 Added a new UI validation view for the Kafka connection status within the System Preferences / Maintenance section.
Bug fixes
- ONEP-3526 The issue regarding role namespace access in the ID UI has been resolved. Previously, if a namespace that a role had access to was deleted, it caused the namespace access management feature in the UI to break.
- ONEP-3556 Addressed the omission of the apartment letter in the streetAddressDisplay field in certain cases.
Improvements
- ONEP-3535 Added the capability to create custom OIDC Claims based on User's Custom Fields.
- ONEP-3555 Contact addresses are now shown even when Protection Order is active.
Customer specific
- ONEP-3508 Added metrics for OPH Koski lookups, handling error reporting differently
Release 4.40.0
Released 2024-10-25.
New features
- ONEP-2887 ID service setup / initialisation has customisation options + dialog
- ONEP-3294 Metrics collected on webhook activities
- ONEP-3460 Add support for LinkMobility SMS gateway
- ONEP-3533 ID service bootstrap based on bootstrap config file
Bug fixes
- ONEP-3481 Roles view list shows deprecated permissions for roles
- ONEP-3511 Access tokens failed to deactivate under certain conditions during Logout
- ONEP-3540 Scheduled tasks "Delete inactive users" doesn't delete all inactive users
Improvements
- ONEP-3454 Properly handle duplicate key exception when creating new user directory link via REST API
- ONEP-3488 User creation (POST) and update (PUT) APIs return a list of validation errors if multiple validation issues arise during operation
- ONEP-3534 Improve user searchText filtering for multipart firstname or lastname
- ONEP-3568 Update Jersey dependencies
Customer specific
Release 4.39.0
Released 2024-09-27.
New features
- ONEP-3324 Add a tool to find if Custom Role is assigned directly to Users
- ONEP-3509 Implement OP-tunnistuspalvelu test environment
- ONEP-3510 Add Users API support for filtering by 'locked' status
- ONEP-3517 Implement endpoint for signed JWKS keys
- ONEP-3518 Implement Entity Statement for OP tunnistuspalvelu
- ONEP-3519 Implement automatic rotation for OpenID signing and encryption keys
Bug fixes
- ONEP-3258 Handle error logging for certain network issues better
- ONEP-3437 Password change API interface does not work as expected when using access token and returns excess information without requiring the current password for the call
- ONEP-3438 Improve password change API interface responses when current password is missing or invalid
- ONEP-3468 Fixed cache load exception in maintenance settings view
- ONEP-3469 Fixed issue which happens after login in some cases
- ONEP-3483 Management API client view list status needs new filtering and statuses
- ONEP-3486 Include 'minor' field when migrating user between namespaces
- ONEP-3499 User search with pagination returns duplicates on different pages when sorting by a field with common values
- ONEP-3542 Fixed metadata fetching for Azure AD user directories
Improvements
- ONEP-3421 Webhook from "failed" strong identification
- ONEP-3443 Support DVV information types KotimainenYhteysosoite and UlkomainenYhteysosoite
- ONEP-3461 Sentry maintenance UI: Improve Sample rate value readability
- ONEP-3471 DVV Connection Profile Editor: Remove HTTP Header compatibility requirement from Username and Password fields
- ONEP-3480 Use more secure LoginToken 'token' value
- ONEP-3482 New Management API client does not have access-to-namespace field filled automatically
- ONEP-3491 UI: Add a confirmation dialog to Locking and Unlocking account actions
- ONEP-3494 Auto-filled registration form fields read-only is configurable
- ONEP-3497 Disable cache for SAML SP metadata download
- ONEP-3500 Adjust resolution of internal uptime determination to reduce overhead
- ONEP-3501 Document userId field in user directory link REST endpoint
- ONEP-3506 Add filtering by Account Type to the Accounts view
- ONEP-3520 Update dependencies for 4.39.0
Customer specific
- ONEP-3479 New fields to customer account identifier objects
Release 4.38.0
Released 2024-09-06.
New features
- ONEP-3329 Import/Export feature to System local translations
- ONEP-3446 Support for dynamically linking accounts with user directory
- ONEP-3462 Support for manually linking single account with user directory from UI
Bug fixes
- ONEP-3449 UserDirectoryResource encrypts link ID when required
- ONEP-3484 Fixed user filtering by mobile number via REST
- ONEP-3487 SMS routes use route specified sender address instead of cached one
- ONEP-3489 External login does not update username if it already matches policy
Improvements
- ONEP-3330 Log user logout action
- ONEP-3451 Strong identification on external login registration
- ONEP-3453 Search user directory links by encrypted authId
- ONEP-3502 Handle password reset for users imported from external user directory
Release 4.37.0
Released 2024-08-19.
New features
- ONEP-3413 Option to schedule activation and deactivation for Management API clients
Bug fixes
- ONEP-3315 DVV Connections profile "event history" EventAux shows password in plain text
- ONEP-3409 Duplicate SSN check not done when using REST for adding SSN to account
- ONEP-3416 Fix typo in "welcome new user" email: "passwordUri"
- ONEP-3440 SMS sender ID not correctly visible in user interface
- ONEP-3441 User EnterpriseInfo: Fails to produce diff when editing user, breaks webhook changed property listing
- ONEP-3444 Removing OIDC client's token fails if it is never-ending
- ONEP-3447 Fixed external login registration form auto-fill
- ONEP-3452 Fix UserDirectory swagger @Schema for namespace field
- ONEP-3455 Fix Kafka record deserialization problem
- ONEP-3465 Fixed scheduled tasks for ignite-clustered installations
- ONEP-3478 Running some Unit Tests locally fails at ClusterScheduledTaskManager
Improvements
- ONEP-3317 Namespace REST-rajapintaan lisäyksiä
- ONEP-3319 Password/secret-field editing in UI to require extra step
- ONEP-3420 Improve logging of "failed" strong authentication (Personal ID already in use)
- ONEP-3439 Add possibility not to collect birthdates when asking adult-or-minor status
- ONEP-3457 SAML signature and encryption requirements are configurable
- ONEP-3470 Update Vaadin libraries
- ONEP-3422 Improve User search text filtering
Release 4.36.2
Released 2024-06-17.
Bug fixes
- ONEP-3465 Fixed scheduled tasks for ignite-clustered installations
Release 4.36.1
Released 2024-06-06.
Bug fixes
- ONEP-3440 SMS sender ID not correctly visible in user interface
- ONEP-3441 User EnterpriseInfo: Fails to produce diff when editing user, breaks webhook changed property listing
- ONEP-3455 Fix Kafka record deserialization problem
Release 4.36.0
Released 2024-05-20.
New features
- ONEP-3280 Restrictions on the time interval for changing contact information
- ONEP-3429 Active external permissions claim provides permission IDs as easy-to-parse arrays
Bug fixes
- ONEP-3432 Scheduled tasks run multiple times
- ONEP-3434 Update kafka-clients library to latest version and fix scheduled task kafka bug
Improvements
- ONEP-3430 Stored normalised User fields in database for improved search functionality
Release 4.35.0
Released 2024-04-15.
New features
- ONEP-3415 Added REST endpoint for revoking all access tokens for user
Bug fixes
- ONEP-3287 OIDC client allowed scopes don't restrict scopes as expected
Improvements
- ONEP-3312 Update dependencies - Including JJWT
- ONEP-3321 Update to jetty 9.4.54.v20240208
- ONEP-3414 Added REST API for locking and unlocking user
Customer specific
Release 4.34.0
Released 2024-03-15.
Improvements
- ONEP-3320 Allow more flexibility with Event Log retaining policy time limits
- ONEP-3323 Support new SSN separators in REST and UI search
Release 4.33.0
Released 2024-02-23.
New features
- ONEP-3289 Show MongoDB version, other useful info in Maintenance view
Bug fixes
- ONEP-3306 Fixed maintenance view system logs for docker installations
Improvements
- ONEP-3316 Add "Copy User ID to Clipboard" button to Accounts view
Customer specific
- ONEP-3298 Change to sale cancellation
Release 4.32.0
Released 2024-01-26.
New features
- ONEP-3214 Collect address parts separately for DVV sourced addresses
- ONEP-3230 Ability to restrict signing in through OIDC client only to external directories
- ONEP-3270 Added REST API endpoint for sending password change request email
- ONEP-3276 Show ASN/country info where IP addresses are listed (such as SMS log) + add ip address to sms export
Bug fixes
- ONEP-3275 Used filters remain visible in accounts view on top bar after clearing filters
- ONEP-3278 Manual personal id entry window does not detect new Finnish id codes correctly
- ONEP-3281 Copying SMS routing plan does not work
Improvements
Customer specific
- ONEP-3283 salePlace REST API: field to erase call
Release 4.31.0
Released 2023-12-29.
New features
- ONEP-3221 OIDC Clients: Add option to always include claims in ID Token
Bug fixes
- ONEP-3153 Add performance monitoring to background operations
- ONEP-3241 Domicile visible in UI when protection order active.
Improvements
- ONEP-3188 REST API: Searching with 'co', 'sw', 'ew' filters is now case insensitive
- ONEP-3236 Improve performance of JWT signing process
- ONEP-3237 Move all API docs under /apidoc path, remove ReDoc
- ONEP-3250 DVV/MUTP: Remove "Product code" field from connection profiles
Customer specific
- ONEP-3232 Change to sale endpoint
Release 4.30.0
Released 2023-12-01.
Bug fixes
ONEP-3169 DuplicateKeyException sent to Sentry when using custom unique-email User-index on server
ONEP-3170 MongoDbBrowserWindow: Improve handling of MongoCommandException
ONEP-3210 GRANT_ANY_PERMISSION didn't work any more in Role editor
ONEP-3229 Failed to generate ID token if it included Domicile data with dates
Improvements
ONEP-2863 Improve internal performance
ONEP-3164 DVV Basic Info Update should replace existing active addresses with new address
ONEP-3195 User notes can be 1000 characters long
ONEP-3203 Improve performance and monitoring of REST API filters
ONEP-3204 Improve performance of REST calls by removing unnecessary authentication-time lookups
ONEP-3209 Resolve minor issues detected by SonarQube
ONEP-3223 Update address to DVV sandbox
Release 4.29.1
Released 2023-11-24.
Bug fixes
ONEP-3210 GRANT_ANY_PERMISSION didn't work any more in Role editor
ONEP-3229 Failed to generate ID token if it included Domicile data with dates
Improvements
ONEP-3195 User notes can be 1000 characters long
Release 4.29.0
Released 2023-11-10.
New features
ONEP-3131 Namespace access can be provided through granted Roles
Improvements
ONEP-3154 Mgmt API: Self-info API reports authentication status and Management API Client's primary namespace
ONEP-3162 Accounts view: Improvements to Email address and Mobile number columns, including a new filtering component
ONEP-3163 Implement asynchronous bucket4j proxy manager
ONEP-3165 Added two missing region flag emojis: 🌍 & 🛰️
ONEP-3172 Include details of used DVV connection profiles in User EventLog after updates
ONEP-3192 SMS sending: Allow number types UAN and PERSONAL_NUMBER
ONEP-3197 Report version number to Sentry in correct format
Bug fixes
ONEP-3178 User API: Legal info endpoint now returns domicile class when protection order is active
ONEP-3179 REST API: Requests are now reported to Sentry
Release 4.28.0
Released 2023-10-06.
A significant new feature is in how DVV connections are configured. A migration step must be initiated through the update task tool after upgrading to this version.
Bug fixes
ONEP-3143 DVV integration: Improved detection of modified address when it is received from DVV
Improvements
ONEP-3129 Management UI: Using country flag emojis instead of image files in certain UI elements
ONEP-3149 Management UI: You can use wildcard search patterns in the Accounts view to search more accurately by partial username, email, phone number
ONEP-3166 User API: Improved POST-based user search filtering
ONEP-3171 Updated dependencies flagged by vulnerability checker
New features
ONEP-3068 Added Temporary Domicile field for user, support for receiving data from DVV, improved editing and viewing of Domicile information
ONEP-3113 DVV integration: Supports multiple DVV connection profiles, which are now managed in a separate Management UI view. Profiles are selectable by user group, by namespace, or a default profile may be used. New configuration options in Namespace and Group editors.
ONEP-3138 Management UI: Added region based SMS rate limiting feature
Release 4.27.1
Released 2023-10-13.
This patch version fixes a detected issue in the User API’s Legal Info endpoint.
Bug fixes
ONEP-3178 User API: Legal info endpoint should return domicile class when protection order is active
Release 4.27.0
Released 2023-09-14.
Bug fixes
ONEP-3115 Improved logging during user logout event
ONEP-3119 Reduce no logging config found to debug level
ONEP-3122 Fixed time unit conversion bug in DurationField
ONEP-3135 When making a request with inactive client, the error message is in JSON format
Improvements
ONEP-3056 Improved event logging when viewing user personal data
ONEP-3072 Group API: Added sort support
ONEP-3111 When Mgmt API Client owner is changed, try to keep namespace access configuration as-is
ONEP-3125 Update to latest Trivore Jetty
ONEP-3126 Users API: Added notes field
ONEP-3130 Improve API documentation for User's Address.countryNumeric field
ONEP-3133 UserDirectory login requirements: Added OR operator
ONEP-3136 User LegalInfo API should return up-to-date domicile classes when possible
ONEP-3140 Added UserDirectory support for filtering imported groups when user signs in
ONEP-3142 Added Group eventlogging and Webhooks when updates happen via User Directory login
ONEP-3145 Improvements to Group index and queries
ONEP-3147 Improved Unit testing of Webhook processing
New features
ONEP-3071 Added Sentry performance monitoring and tracing support
ONEP-3139 Added dynamic group membership rules: custom field value, external permission
Release 4.26.0
Released 2023-08-28.
Bug fixes
ONEP-3086 User IP address is passed to Sentry when using Web pages
ONEP-3108 Improved namespace access checks in user creation API
ONEP-3128
/api/rest/v1/emailtemplate
REST API filtering now works
Improvements
ONEP-2584 Event log generation adjusted to reduce excessive log history
ONEP-2944 Vaadin Vaadin dependencies updated
ONEP-3051 Changes to how country code is made available with foreign addresses
ONEP-3064 Soft deleted Users are purged based on current Namespace-configured delay
ONEP-3073 Password encoding key can be changed
ONEP-3080 Dependency updates
ONEP-3089 Include client name in Metrics (and update default Grafana dashboard)
ONEP-3091 Avoid collecting excessive metrics on certain invalid paths
ONEP-3095 Improvements to how User Strong Identification APIs can be used with OIDC access tokens
ONEP-3096 Email/mobile verification can be initiated via API by another user
ONEP-3121 Improve logging during email/mobile verification
New features
ONEP-3093 New API: Update existing User's legal info using DVV (basic info retrieval)
ONEP-3094 New API: Look up person's info from DVV, without User account
Customer specific
ONEP-3087 Improve StudentStateIntegration error logging & performance
ONEP-3117 Changes to how default consent values are handled during namespace migration
Release 4.25.1
Released 2023-06-13.
Improvements
ONEP-3091 Avoid collecting too much metrics on invalid /openid/** paths
Customer specific
ONEP-3087 Improve StudentStateIntegration error logging & performance
Release 4.25.0
Released 2023-06-02.
Bug fixes
ONEP-3067 Event log and Metrics indicate correct Event Source also when not using Ignite
New features
ONEP-3000 Added option to reject duplicate personal identity codes
ONEP-3009 Sentry error monitoring service support
ONEP-3046 Added API for PATCHing User CustomFields
ONEP-3065 Make webhook delay configurable
ONEP-3066 Add TrivoreCA_t005 certificates as trusted by default (Kafka, LDAP)
ONEP-3069 Added new APIs for managing Group custom fields
Release 4.24.0
Released 2023-05-11.
Bug fixes
ONEP-3012 User with reference to a deleted Group may break Accounts view when opening user editor
ONEP-3022 OIDC Sign-in logo wasn't copied from template namespace to new namespace
ONEP-3023 Content-Security-Policy violation report endpoint no longer fails if received report is empty
ONEP-3035 Resolve suspected dependency vulnerability issues
ONEP-3036 Fix exception in DiffUtils thrown during unit tests
ONEP-3037 Unit tests in LoginLayoutTests keep failing occasionally
ONEP-3042 InfluxDB Continuous Query configuration during server startup fails when using field name "duration"
ONEP-3047 User import from csv to ID not working in every ID-instance
ONEP-3048 When importing users through UI, importer creates usernames based on selected policy
ONEP-3049 Reading user's custom fields fails when a root-level field has a null value
Improvements
ONEP-2946 Added scheduled task to refresh MPASSid authentication sources
ONEP-3039 Add sender address support to Email Template message sending API
ONEP-3043 Event log lists: Indicate if actor has been deleted
ONEP-3050 Prefer 3-character language codes with language fields
ONEP-3057 List of changed User propertiers in USER_EDIT webhook contains all dot-notation parent property names
ONEP-3058 Include namespace code as a field in outgoing webhooks
New features
ONEP-2996 Added APIs for managing OIDC clients
ONEP-3019 Disable HSTS header set by Spring
ONEP-3025 Collect history of legal personal identity code changes
ONEP-3032 Added more APIs for managing Management API Clients
ONEP-3033 Add task which purges expired Personal Data Requests
ONEP-3060 Added Competency property to User's Conservatorship information
Customer specific
ONEP-3045 Add card number to sale end point
ONEP-3061 Include secondaryId and tag with sale
Release 4.23
Released 2023-03-17.
Bug fixes
ONEP-3004 Namespace search API doesn't work, gives 403 error even when should have access
ONEP-3016 Resolve detected log injection issues
ONEP-3018 StrongIdentification API documentation contains two 'userId' variables
Improvements
ONEP-2940 Update Swagger dependency, use new annotation options
ONEP-2954 Update logging libraries (slf4j, logback)
ONEP-2968 DVV: Support foreign addresses
ONEP-2969 DVV: Support receiving conservatorship information
ONEP-2989 Reduce amount of event log entries during Student Status Updates
ONEP-2994 Resolve detected dependency issues
New features
ONEP-2933 Collect metrics on Scheduled Task performance
ONEP-2943 Support sending push/alive notification to Uptime Kuma service with scheduled task
ONEP-2988 User Edit Webhook message includes a list of changed User fields
Release 4.22.1
Released 2023-03-06.
Bug fixes
- ONEP-3018 StrongIdentification API contains two 'userId' variables
Release 4.22
Released 2023-03-03.
Bug fixes
ONEP-3002 Custom field browser's JSON viewer fails to open when entry value is null + enable creation of null-values fields
Improvements
ONEP-2941 Use Basic Authentication with DVV MUTP APIs
ONEP-2956 Personal Data Request Management views moved to Core modules
ONEP-2987 Configurability of webhook transmission times
ONEP-2993 Solve detected potential bugs
ONEP-3001 Requesting userinfo with client credentials returns some claims, not 404 response
New features
ONEP-2991 Groups View lists groups in a hierarchical tree table
Stories
ONEP-2971 Fix Azure group fetch when displayName is null
ONEP-2973 Add group support for Microsoft user directory
ONEP-2980 Validate OpenID post logout redirect URL values
Release 4.21.2
Released 2023-03-06.
Bug fixes
ONEP-3018 StrongIdentification API contains two 'userId' variables
Release 4.21.1
Released 2022-02-22.
Bug fixes
ONEP-3002 Custom field browser's JSON viewer fails to open when entry value is null. Enable creation of null-values fields. Editor of number value no longer allows entering an empty value.
Release 4.21
Released 2023-02-17.
Bug fixes
ONEP-2967 Management API Client namespace restriction does not work if left empty with some APIs
ONEP-2974 OIDC Client Credentials access token should not give any userinfo result
ONEP-2976 OpenID: allow external login only from selected directories does not work for AD FS user directories
ONEP-2986 Verify access token user identity when initiating strong identification
Improvements
ONEP-2920 Add Microsoft login with tenant filtering
ONEP-2921 Add remember me selection for external directory on OpenID login
ONEP-2957 Restrict Group deleting when other Groups are dependents of it
ONEP-2959 Improve readability of Custom Fields content
ONEP-2961 Improve SMS whitelisting (make it non-region based)
ONEP-2963 Collect metrics on blocked SMS messages
ONEP-2964 Support configuration of /openid/token CORS filter
New features
ONEP-2915 Feature Flag system for enabling experimental features on-the-fly
ONEP-2960 Multiple logout redirect URLs
ONEP-2977 Add option for custom fields for wallet transactions
Customer specific
ONEP-2982 Added summary view for subscriptions
Release 4.20
Released 2023-01-30.
Bug fixes
ONEP-2929 Scheduled task operation may fail if first executed manually from user interface
ONEP-2931 New sign in: Fix bug in multi user selection
ONEP-2938 Pricing Plan View's Copy function causes changes to original Pricing Plan
ONEP-2948 Email validation doesn't accept newer domains like .games
ONEP-2953 Improve result message format of the DVV admin tool "Update base info of everyone"
Improvements
ONEP-2965 Improve BaseEntity Metrics Collector's counting performance
New features
ONEP-2909 OIDC Client: Authentication flow (response_type) default value can be set, and selection can be enforced to prevent other flows.
ONEP-2947 Refactor ignoreOptionalOriginatorAddress property: move to routing plan
Release 4.19
Release
Released 2022-12-16.
Bug fixes
-
ONEP-2848 Group editor doesn't list other groups when they don't have disallowGroups value
-
ONEP-2897 Migrate user namespace REST API doesn't work as described
-
ONEP-2926 Password reset name verification UI should not be shown if user has no name to check
Improvements
-
ONEP-2843 Removed leftover UI elements in HSL Customer Care configuration view
-
ONEP-2856 Disable ability to create empty Access Controls
-
ONEP-2895 Simplify cluster NodeId and configure via environment variable
New features
-
ONEP-2442 Added dynamic group membership rule based on user domicile
-
ONEP-2788 Add user license report
-
ONEP-2846 New Sign-In API alpha version
-
ONEP-2874 Custom Fields Configurability
-
ONEP-2902 Added Group Webhooks
Customer specific
-
ONEP-2928 Modify defaults for anon consents
-
ONEP-2923 More options to limit searching supplier events
Release 4.18.1
Released 2022-12-13.
Bug fixes
- ONEP-2926 Password reset name verification UI should not be shown if user has no name to check
Customer specific
- ONEP-2928 Modify consent defaults for new users in customer namespace
Release 4.18
Released 2022-11-18.
Improvements
ONEP-2750 Add API key authentication support for Infobip gateways
ONEP-2797 Add "API client last activity"-field to Trivore ID Management API client management UI
ONEP-2830 Remove old MyData entries
ONEP-2857 "Select all in page" or similar feature for Access Controls in View
ONEP-2871 Add created date, last-modified date columns to Namespaces view's table
ONEP-2875 Group name requirement validation moved to GroupService.save method
ONEP-2876 Group editor's "member of" selection is usable even with a large number of other groups
ONEP-2880 Upgrade pipeline to use mongodb 6.x
ONEP-2881 Remove user agent parser dependency, related functionality in SMS reports
ONEP-2886 Add support for environment variable configuration to docker image
ONEP-2890 Dynamic group membership's Age condition can be configured to use specific age information
ONEP-2896 Add support for external SMS number blocklist
ONEP-2898 Change docker USER (do not use root)
ONEP-2906 Ask for name(s) when resetting password
ONEP-2912 Preparations for NodeId changes
New features
ONEP-2582 Add view which lists event log types and their parameters, to help finding misconfigurations
ONEP-2782 Ability to override sender ID per SMS route
ONEP-2894 Add export function to Webhook call log window
ONEP-2899 Groups have a displayname field (non-unique alternative to 'name')
Bug fixes
ONEP-2809 Remove diagnostics.jsp feature, Improve error handling in various HTTP endpoints
ONEP-2831 Hide sensitive details in User Directory logs
ONEP-2868 Deleting namespace causes UI to freeze
ONEP-2873 Deleting groups shows incorrect information in dialog
ONEP-2908 NPE bug in KafkaClusterManager
Customer specific
ONEP-2904 Improve ticket cancel end point
Release 4.17
Released 2022-10-21.
Bug fixes
ONEP-2865 Security hotspot: Remove regex use from HttpCallMaker's authorization header censoring
ONEP-2864 Security hotspot: ImportWindow creates a temp file using potentially insecure filename
ONEP-2847 Management API incorrectly returns 500 status code instead of 404 not found
ONEP-2816 Translatable text fields in OIDC Client editor and elsewhere can break if multiple empty values are visible
ONEP-2792 SMS metrics: Source information is not provided in some situations
ONEP-2717 Namespace editor’s inactivity time limit field no longer breaks with negative values
Improvements
ONEP-2883 Commerce/Wallet transactions: Include vatAmount in REVERT modifications
ONEP-2879 Commerce/Product validity fields: Improve validNow status to accept start and end times on both sides of midnight
ONEP-2878 Commerce/Products UI: Validity editor’s time selection fields now allow entering exact time
ONEP-2849 Group Management API allows changing group hierarchy relations
ONEP-2845 Update support libraries
ONEP-2823 Include node identifier to metrics about API calls
ONEP-2814 Make MUTP test password configurable
ONEP-2784 Update country list data on server restart
ONEP-2753 Account filtering UI: Replace deprecated consent filtering with namespace/freeform consent filtering
ONEP-2749 Prevent personal ID's from strong identification and legal info updates from being shown in event logs
ONEP-2722 Add validation to DurationField bindings
New features
ONEP-2790 Implement LDAP docker image building
ONEP-2789 Add support for Kafka-based clustering
ONEP-2674 Integration with public IPinfo APIs
Customer specific
ONEP-2801 Remove deprecated features
Release 4.16
Released 2022-09-23.
Bug fixes
- ONEP-2826 Automatic DVV MUTP update after Suomi.fi identification doesn't correctly save data
- ONEP-2825 User editor's Personal ID Code field says there's no ID unless user also has Strong Identifications
- ONEP-2819 Email and Phone number change API supports verifying existing unverified emails and phone numbers
- ONEP-2803 Some defined scopes were not fully configured and were unusable
- ONEP-2774 Fixed detected security issues
Improvements
- ONEP-2824 Test user generator tool supports generating Personal Id Codes
- ONEP-2821 Update Vaadin framework to latest version
- ONEP-2808 Generate dependencies-report and downloadable zip in Gitlab pipeline
- ONEP-2771 Reduce error logging when encountering invalid API credentials
- ONEP-2739 Personal identification UI features moved to common Management UI
New features
- ONEP-2818 Collect metrics about User Consent changes
- ONEP-2785 Custom field support for External Permissions
Customer specific
- ONEP-2815 Changes to customer specific Wallet transactions. Additionally Wallet transaction type names can be customised.
Release 4.15.2
Released 2022-10-24.
Improvements
ONEP-2890 Dynamic group membership's Age condition can be configured to use specific age information
Release 4.15.1
Initial release
Released 2022-09-09.
Bug fixes
ONEP-2826 Automatic DVV MUTP update after Suomi.fi identification doesn't correctly save data
Release 4.15
Initial release
Released 2022-08-26.
Bug fixes
- ONEP-2794 Fixed: possible to select empty value in Multi Factor Authentication method selector
- ONEP-2781 Fixed: DVV immigration source country information incorrectly stored as destination country
- ONEP-2776 Fixed: OIDC custom sign-in caption didn’t replace placeholders correctly
- ONEP-2775 Fixed: Opening AccessTokenRevokeWindow fails with NPE
Improvements
- ONEP-2800 Country code for Finland is now added after DVV MUTP changes related to domestic addresses
- ONEP-2798 Changes to user identifier history window and label in user editor
- ONEP-2796 Changes to Management API usage metrics collection
- ONEP-2791, ONEP-2779 Dependency library updates
- ONEP-2783 Add custom field support to user directory attribute mapping
- ONEP-2780 Support upcoming Finnish personal ID century sign characters
- ONEP-2768 Improve docker packaging
- ONEP-2755 Accounts View: Changes to selection options
- ONEP-2746 Connect generated Access Tokens to used browser/useragent
- ONEP-2744 Changes to UI views showing personal identification code
New Features
- ONEP-2793 Collection of metrics about DVV MUTP actions
- ONEP-2787 Add OIDC Claim for reading User custom fields
- ONEP-2786 Custom field support for User Groups
- ONEP-2778 Perform DVV data lookup after suomi.fi identification
- ONEP-2777 Get allowed MFA methods from MFA API endpoint
- ONEP-2758 OIDC Client customisation for Post-Signin and Post-Signout redirect pages
Customer specific
- ONEP-2770 New client specific end point to search travel accounts
Release 4.14
Initial release
Released 2022-07-01.
Bug fixes
ONEP-2767 Soft-deleting an User no longer causes a User-Edit webhook
ONEP-2759 Email verification during OpenID user registration uses the email configuration from the target namespace correctly
Improvements
ONEP-2766 Improvements to coverage reports
ONEP-2765 Improvements to project build
ONEP-2747 Conflicting personal identity codes are now resolved by prioritizing LegalInfo based code, previously last identification was used.
New Features
ONEP-2763 New API: List and invalidate User's access tokens
ONEP-2762 New API: User MFA settings
4.14.1
Released 2022-07-01.
Bug fixes
ONEP-2775 Opening AccessTokenRevokeWindow fails with NPE
Release 4.13
Initial release
Released 2022-06-20.
Bug fixes
ONEP-2745 Fixed user Strong identification proper persistence when authenticating strongly via an external authorization provider
ONEP-2733 Change grid “Select all” -option to select all on current page
Improvements
ONEP-2743 Refactored Login management class
ONEP-2740 Upgrade dependency libraries
ONEP-2735 Show namespace name in Default Group Policy Editor
ONEP-2734 Accessibility improvements for ID sign in / register form
ONEP-2720 Event logging for strong authentication requests
Customer specific
ONEP-2737 Limiting ticket validation searches from the REST interface
Release 4.12
Initial release
Released 2021-06-03.
Bug fixes
ONEP-2731 Sign in failures due to dependency configuration issues
ONEP-2718 Dashboard Clusters-panel time format change, prevent IllegalArgumentException
Improvements
ONEP-2730 Update Libphonenumber dependency to support new phone numbers
ONEP-2727 Refactor Suomi.fi Authorisation code
ONEP-2724 User Directory Links API has create, delete endpoints
ONEP-2696 Persist StrongIdentification entry to User when authenticating via suomi.fi
ONEP-2585 Add OIDC information page to API-doc site
ONEP-2450 Update Apache Ignite
New Features
ONEP-2726 Added webhook events for Data Storage creation, modification, data modification, and deletion
Customer specific
ONEP-2723 Customer specific: Added new parameter to EDU API
4.12.1
Released 2021-06-20.
Bug fixes
ONEP-2745 Fix an issue with User StrongIdentification is not properly persisting when authenticating strongly via an external auth provider
Release 4.11
Initial release
Released 2022-05-20.
Bug fixes
ONEP-2716 MFA with email/sms code stops working after 10 uses per day
ONEP-2715 Authorisation filtering by "active" status not reliable if valid-to value is not set
ONEP-2695 DVV Address data not saved with Perustietohaku correctly
ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)
ONEP-2679 SMS metrics shows messages with empty/missing source and client_id, fix missing values
ONEP-2521 Namespace editor fields under "User deletion" accept negative values and do not show as read-only when view is set to read-only
ONEP-2504 Fix stable release pipeline
Improvements
ONEP-2709 HPA/YPA dashboard panel: No longer require source and type configuration to activate
ONEP-2708 Authorisations view & API: Indicate authorisation is inactive
ONEP-2702 Customize OIDC Sign-in view texts in OIDC client registration settings
ONEP-2699 Changes to allowed email domains field limits
ONEP-2697 Customize Reset Password view texts in OIDC client registration settings
ONEP-2694 Reset Password view uses OIDC client's theme when visited through OIDC sign-in
ONEP-2688 Changes to MFA related texts
ONEP-2683 Improve log messages, reduce excessive info-logging
ONEP-2677 Domicile class export and import as JSON file
ONEP-2676 Improved tool showing user’s effective permissions
ONEP-2643 User activity update no longer causes user-was-edited-webhook, instead causes new webhook call type
ONEP-2606 Personal IDs of related persons are stored encrypted
ONEP-2480 Editor title uniformity
New Features
ONEP-2700 Default email sender can be customised per Namespace
ONEP-2691 New API for changing password while confirming previous password
ONEP-2514 New API endpoint for querying about self (permissions, scope etc)
ONEP-2335 SMS sender address per region
ONEP-2332 Add default scope to OpenID Connect client configuration
ONEP-2329 Add root URL field to OpenID Client config
Customer specific
ONEP-2698 Removed customer specific translations
4.11.1
Released 2022-06-01
Bug fixes
ONEP-2731 Sign in failures due to dependency configuration issues
Improvements
ONEP-2730 Update Libphonenumber dependency to support new phone numbers
4.11.2
Released 2022-06-03
New Features
ONEP-2726 Added webhook events for Data Storage creation, modification, data modification, and deletion
Release 4.10
Release
Released 2021-04-27.
Bug fixes
ONEP-2670 REST API docs showed incorrect Authorisation schema
ONEP-2666 Temporary address from Suomi.fi authentication was not saved correctly to user data
ONEP-2652 Some FileStorage APIs cannot be used with access token due to scope misconfiguration
ONEP-2647 Webhook editor UI could become unusable if an user group did not have a name
ONEP-2161 In Accounts view, changing filters now resets page selection to first page
Improvements
ONEP-2682 Suomi.fi-authorisations have validFrom-value of creation time
ONEP-2669 Remove Authorisation.author and Authorisation.createdAt fields
ONEP-2668 Authorisation editor refreshed to match recent changes
ONEP-2667 Changes to Authorisation update API
ONEP-2651 Simplify Authorisation's Source and Type references
ONEP-2650 Replace AuthorisationGrantRight system with simpler permission based system
ONEP-2649 Remove unused trivore-id-sdk dependencies from project
ONEP-2645 Update dependency libraries
ONEP-2635 Censor 'principalId' value when creating Suomi.fi based authorisations
ONEP-2632 Don't create unnecessary User account for Authorisation Principal during suomifi-authorisation process
ONEP-2631 Prevent modifications to authorisations, except to validTo/validFrom fields
ONEP-2629 Refactored authorisation management code
ONEP-2593 Authorisation terminology update
ONEP-2573 Add two new fields for authorisations (role and authSpecifiers) for extended use cases
ONEP-2544 Cache Group information to improve user information loading speeds
ONEP-2416 Purge inactive authorisations from database after a certain amount of time has passed
ONEP-2352 Make "Show effective permissions" window easier to browse
ONEP-1487 Revoke user related authorisations on user deletion
New Features
ONEP-2673 Updating user's consent information launches Webhook event USER_CONSENT_UPDATED
ONEP-2644 Domicile classes can be exported+imported in Namespace Editor
ONEP-2641 Collect Authorisation revoke reasoning / metadata
ONEP-2577 Add endpoint to return list of authorisations for userId (OpenID client use case)
ONEP-2575 Add default validity time for added authorisation
ONEP-2130 Add copy group option
Customer specific
4.10.1
Released 2021-04-27.
Bug fixes
ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)
Release 4.9
Initial release
Released 2022-03-28.
Bug fixes
ONEP-2610 Fixed issue when deleting objects with identical IDs
ONEP-2595 Added support for address type POSTAL
ONEP-2561 Fixes to User account purge delay fields
Improvements
ONEP-2615 Use MUTP ‘kotikunta’ field to update User’s domicile classes when a protection order is active
ONEP-2613 Update Vaadin version
ONEP-2607 Copy municipality name from DVV MUTP addresses to User’s LegalInfo addresses
ONEP-2592 Improvements to DVV MUTP system
ONEP-2572 Use authorisation type value as is from suomi.fi-valtuudet
ONEP-2570 Add option to lock inactive user accounts instead of deleting them
New Feature
ONEP-2633 Show user's domicile classes in User Editor
ONEP-2603 Collect metrics about number of Users per Namespace
4.9.1
Released 2022-04-01.
Improvements
ONEP-2645 Update Spring libraries
4.9.2
Released 2022-04-20
New Features
ONEP-2673 Updating user's consent information launches Webhook event USER_CONSENT_UPDATED
4.9.3
Released 2022-04-27
Bug fixes
ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)
4.9.4
Bug fixes
ONEP-2695 DVV Address data not saved with Perustietohaku correctly
Release 4.8
Initial release
Released 2021-03-11.
Bug fixes
ONEP-2568 Switching UI views is slow when user has access to large number of namespaces.
ONEP-2531 Soft deleted accounts were not being fully deleted.
ONEP-2461 Date fields in Management UI didn’t use currently selected locale.
Improvements
ONEP-2559 User Search API has default sort order (ID in ascending order), uses more indexes
ONEP-2539 User Search API supports sortBy parameter
ONEP-2537 Improve User Search API performance when using nsCode filter
ONEP-2503 Added freeFormOrganisation field to User API responses
New Features
ONEP-2567 Added dependants field to User API
ONEP-2365 Collect metrics about sent Email messages
Customer specific
ONEP-2555 Change in customer specific module
Release 4.7
Initial release
Released 2022-01-31.
Bug fixes
ONEP-2550 Fixed an issue with updating new addresses from DVV
New Features
ONEP-2532 Add new legal attributes available from DVV (Finland)
4.7.1
Released 2022-02-03.
Improvements
ONEP-2539 User search API supports sortBy parameter
ONEP-2537 Improve User search REST API performance when using nsCode filter
4.7.2
Released 2022-02-04.
Improvements
ONEP-2559 Improve User Search API reliability with default sort order, more indexes
Release 4.6
Initial release
Released 2022-01-17.
Bug fixes
ONEP-2516 Increase security of Email Template processing: prevent class loading
ONEP-2507 User soft deletion must be checked when refreshing access tokens, updating subscriptions
Improvements
ONEP-2533 IP address based throttling of OIDC Authentication endpoint usage
ONEP-2524 Add error message schemas to apidoc for Wallet actions
ONEP-2523 Add groups column to the list of exported user accounts
ONEP-2522 Improve event logging for User search API
ONEP-2517 Better test coverage and fix code quality issues
ONEP-2515 Make CustomEmailMessages view use a grid component like other views
ONEP-1949 Add field Notes for email gateways
ONEP-2491 Move custom email message configuration from Namespace editor to separately managed items
ONEP-2520 Changes to User Agreement editor
New Features
ONEP-2505 Editing group memberships now requires permission GROUP_MODIFY_MEMBERSHIP (previous permission still works)
ONEP-2490 Email message can be sent when User account is deleted
ONEP-2489 Send warning email to user before automated account removal
ONEP-2482 User delete prevented if user is API client owner or otherwise needed
ONEP-2449 Limit OIDC Client authentication to users who are in specific groups
ONEP-2448 Add new users to selected user groups when registering via specific OIDC client
ONEP-2350 Remember visible panels in Dashboard view
Customer specific
ONEP-2510 Add a new boolean attribute to a customer specific module
Release 4.5
Initial release
Released 2021-12-17.
Important changes
Changes to web theme layouts
Previous “Privacy policy” and “Terms and conditions” functionality has been removed and replaced with “User agreements”. This may cause the need to update Web Themes which have custom New user registration Details form layouts. If the layout has not been customized, no changes are necessary.
To update a customized layout, you need to remove references to the previous functionality and add a component for the new functionality.
Add as last component before “extraLabel”:
<!-- Show User Agreement documents which the new user must or may accept. -->
<uic-user-agreement-acceptance-component _id="userAgreementComponent" id="user-agreement-acceptance" width-full />
<vaadin-label _id="userAgreementErrorLabel" style-name="failure" width-full visible="false" />
Remove lines like these referencing previous privacy and terms components:
<!-- If built-in privacy+terms system is disabled, these fields are hidden automatically. -->
<vaadin-check-box _id="acceptTermsField" />
<vaadin-button _id="privacyButton" style-name="link zero-padding" />
<vaadin-button _id="termsButton" style-name="link zero-padding" />
<vaadin-label _id="acceptTermsErrorLabel" style-name="failure" width-full visible="false" />
Initialize user activity fields
After installing the update and signing in to Management portal, you will see an upgrade dialog. It will show a new upgrade step: initializing the last-activity field for each User. Run this step and mark the step as performed.
Bug fixes
ONEP-2475 Migrating a User between namespaces no longer creates duplicate deletion log entries
Improvements
ONEP-2502 Wallet transaction type no longer converted to uppercase
ONEP-2499 No longer logs Mercurial keys during startup
ONEP-2496 Added automatic logging for more object types
ONEP-2493 Description field for namespaces
ONEP-2484 Event logs can be accessed in more views
ONEP-2483 Event log UI is more uniform between views
ONEP-2481 Improved Role editor
ONEP-2479 Refactored Webhook processing to enable better unit testing
ONEP-2474 Improved namespace and role editors
ONEP-2467 Fix openapi.json generation errors
ONEP-2439 Version information API returns data also in HTML format
ONEP-2415 Added missing properties to authorisations view and editor
ONEP-2437 Improved performance of sorting users by creation time
New Features
ONEP-2488 Inactive users can be deleted automatically
ONEP-2487 Track user’s last activity time
ONEP-2427 Added user agreement (privacy policy etc) customisation
Customer module changes
ONEP-2492 Added validityLengthSeconds to customer specific end points
Release 4.4
Release
Released 2021-11-26.
Bug fixes
ONEP-2459 Email template editor, default timezone field shows error
ONEP-2409 MFA code verifying window doesn't show address where code was sent to correctly
ONEP-2405 Event log viewer's date range filter may use wrong start-of-week day for selected locale
ONEP-2348 Permission ACCOUNT_MODIFY_LINKS incorrectly also grants permission ACCOUNT_MODIFY
Improvements
ONEP-2471 Hide target filter field in user and namespace log window
ONEP-2470 Show git-based build information with Version
ONEP-2460 Password Reset layouts editable in Web Theme
ONEP-2447 User selector component: Combine display name and selector button for compactness
ONEP-2438 Sort users based on created date in accounts view
ONEP-2346 Hide more unused permissions
New Features
ONEP-2465 Add language and religion fields to User
ONEP-2464 Add custodian fields to User
ONEP-2422 Add event logging for authorisation view events
ONEP-2366 Show metrics about sent SMS messages
ONEP-2358 Add event log browsing to namespace list view
Customer Specific
ONEP-2456 Improving documentation about product price handling
Release 4.3
Release
Released 2021-10-29.
Minor release focusing on code quality, bugfixes and small improvements.
Bug fixes
ONEP-2430 DVV PETP Import tool fails with NPE during data conversion
ONEP-2412 Fix user directory login actions class cast exception
ONEP-2360 Fix namespace modify permission handling
Improvements
ONEP-2431 Vaadin library update
ONEP-2413 Improve logging of access/refresh token creation/usage/refresh events
ONEP-2399 Email address field no longer required in User Editor
ONEP-2276 Per namespace configurability for Finnish national service DVV VTJ MUTP
ONEP-2440 Code quality: Fix dedicated errors
ONEP-2436 Code quality: Fix magic numbers
ONEP-2406 Password can be reset with SMS message
New Features
ONEP-2414 Add UI tool to browse User's access tokens
ONEP-2407 APIs for changing and verifying user mobile number
ONEP-2354 Browse log entries where actor is selected Management API Client
Customer Specific
ONEP-2445 Add separate field for Travel Account update channel ID
ONEP-2441 Add walletAuthority attribute to wallet transactions
4.3.1
Released 2021-11-04.
This patch version adds missing translations for Password Reset user interfaces.
4.3.2
Released 2021-11-16.
Bug fixes
ONEP-2459 Email template editor, default timezone field shows error
Improvements
ONEP-2460 Password Reset layouts editable in Web Theme
4.3.3
Released 2022-01-04
Bug fixes
ONEP-2516 Fix issue with email messaging system
4.3.4
Released 2022-01-14
Improvements
ONEP-2533 IP address based throttling of OIDC Authentication UI
Release 4.2
Release
Released 2021-10-04.
Bug fixes
ONEP-2382 MyData package creation fails because using misconfigured JSON converter
ONEP-2381 User and LogEntry related issue
ONEP-2379 Event log viewers claim that all new log entries have invalid signatures
ONEP-2374 Fix mobile number verification possible in user-interface
ONEP-2267 Fix namespace filtering in AccountEditor/Groups/Add tool
Improvements
ONEP-2397 Add authCodeEncoded index to access token collection
ONEP-2359 Don't log person's name or username to oneportal.log along with user id info
ONEP-2356 Update "User consents" window functionality in Accounts/Actions and elsewhere
ONEP-2284 CSV export for cluster uptime report
ONEP-2181 Text Messages: Filters are not able to search substrings
ONEP-2141 Send monthly cluster uptime report to predefined email addresses
ONEP-1643 Limit the number of tags per user and individual tag length.
ONEP-1515 Possibility to test OPH Koski integration with specific HETU
ONEP-2338 Main Menu text change on reporting
New Features
ONEP-2364 Collect metrics about sent SMS messages
ONEP-2362 New wallet transaction API
Customer Specific
ONEP-2363 Customer specific OpenID Connect UserInfo enrichment optimization
ONEP-2361 Customer specific REST API endpoint path changes
Notable changes
SMS search functionality has been improved. SMS search now uses case-insensitive prefix matching instead of exact matching (as it was previously). SMS database indexing has major changes and indexes need to rebuilt (done automatically but search may be slow until the rebuild is complete).
Patch 4.2.1
Released 2021-10-12.
Bug fixes
ONEP-2430 DVV PETP Import tool fails with NPE during data conversion
Improvements
ONEP-2418 Customer specific fields added to to sale API request in customer module.
Patch 4.2.2
Released 2022-01-04
Bug fixes
ONEP-2516 Fix issue with email messaging system
Release 4.1
Release
Released 2021-09-03.
Bug fixes
ONEP-2344 Labels in wrong place in Initial-Namespace-User form
ONEP-2343 Error when saving initial user of new namespace
ONEP-2337 MyData download attempt fails due to missing JSR310 datatype handler
ONEP-2325 Fix slow account view
ONEP-2320 User registration causes ConcurrentModificationException error messages
ONEP-2228 The "locale" claim may return values which are not BCP47 language tags
Improvements
ONEP-2347 API documentation at path /apidoc Permissions page's table shows which permissions grant each permission
ONEP-2345 Show permission code-name in Mgmt API Client editor's permission selector field
ONEP-2295 OIDC client: Can specify multiple namespaces from which users can sign in, while allowing registration of new users into a single namespace
ONEP-2202 Update to latest spring-data-mongodb
New Features
ONEP-2336 Using already used password reset leads to an informative page with special configurable link
ONEP-2333 Add "Evaluate" tool to OpenID Connect client editor
ONEP-2160 New policy option: Force user to use or setup some 2FA method during sign-in
Customer specific
ONEP-2339 New endpoint to query tickets
Release 4.0
Released 2021-08-13.
This is a major release. Major change is upgrade from Java 8 to Java 11.
Downgrade from version 4.0 to earlier version is supported to provide rollback capability in case of major issues arise. Downgrades are executed with technical support assistance, not by customers themselves.
Notable changes
Temporary directory has been changed from /var/lib/oneportal/tmp
to
/tmp
with systemd PrivateTmp=
enabled. If /var/lib/oneportal/tmp
exists after upgrade, it should be removed.
Remove JAVA_TMPDIR
and JAVA_HOME
variables from
/etc/sysconfig/oneportal
if they exists after upgrade.
Improvements
ONEP-2299 Configuration options for after-changePassword behaviour
ONEP-2324 Drop deprecated authorisation indexes
ONEP-2322 Remove log-server and perf-test modules
ONEP-2318 Add automatic restart on failure using systemd unit file
ONEP-2316 Move JSVC_WAIT variable to service file
ONEP-2315 Move security limits to systemd service file
ONEP-2314 Use systemd PrivateTmp variable
ONEP-2285 Add customisation and new features to the changePassword form
ONEP-2194 Upgrade to Java 11
Customer specific
ONEP-2321 Add ticket validity related option to sale-API