Skip to main content

Trivore ID 4 changelog

Version 4 is the latest production ready release of Trivore ID.

Upgrade instructions

Review Important Upgrade Notes for version specific upgrade instructions.

Release 4.42.0

Released 2024-11-25.

New features

  • ONEP-2421 The web dashboard now features enhanced warning notifications for critical configuration issues, addressing previous gaps in awareness. Admin users can view alerts alongside actionable recommendations. This improvement streamlines the monitoring of system health and paves the way for future developments in health management functionalities.
  • ONEP-3563 Added the manage "nicknamesAllowed" and "allowUserInvite" fields in the Namespace API.
  • ONEP-3576 Added support for SMS Eagle messaging gateways, enabling text messages to be routed through the SMS Eagle device. This integration facilitates the use of the SMS Eagle API as a messaging gateway, enhancing messaging capabilities without relying on cloud services.

Bug fixes

  • ONEP-3054 Webhook editor's user group selection field now better supports large numbers of groups. Users can now successfully select user accounts from an extensive list of groups without encountering errors.
  • ONEP-3325 Improved stability of user search when searching by consent information.
  • ONEP-3527 Fixed an issue with password expiration handling for users logging in via an external directory. Previously, users were prompted to change their password immediately after login, even if they did not know their initial password, leading to login failures.
  • ONEP-3543 Resolved an issue where editing the New namespace default settings resulted in an error.
  • ONEP-3583 Removed a detected security issue where it was possible for an user to view a list of all other users in their namespace, even without the required permission.
  • ONEP-3603 Fixed an issue where saving a DVV connection profile's log keys would inadvertently erase all log keys associated with that profile.
  • ONEP-3607 Fixed an issue that prevented logging of object creator in certain cases.

Improvements

  • ONEP-2884 Added the ability to enable and disable OIDC clients, allowing for similar functionality to the management APIs. Users can now easily manage the availability of OIDC clients within the system.
  • ONEP-3521 Added validation to ensure that the SAML request ID matches the InResponseTo parameter of the original request. This enhancement helps prevent replay attacks, providing an additional layer of security for SAML transactions.
  • ONEP-3564 Implemented a optional feature to the MFA authentication process, allowing users to receive email or SMS codes automatically without needing to click a confirmation button when only one MFA method is available.
  • ONEP-3573 The /dvv/lookup/identity REST API has been updated to include the person's home address in the response.
  • ONEP-3584 Update OpenSAML libraries to latest available version
  • ONEP-3587 Implemented a REST API for performing mass updates of DVV basic information across all users in a namespace, or for members of a specific DVV group.

Customer specific

  • ONEP-3411 Customer specific user-interface feature for blocking subscriptions
  • ONEP-3463 Customer specific REST endpoint for creating new users

Release 4.41.0

Released 2024-11-04.

New features

  • ONEP-3063 Added the ability to manually verify phone numbers and email addresses for testing purposes.
  • ONEP-3442 Added a new UI validation view for the Kafka connection status within the System Preferences / Maintenance section.

Bug fixes

  • ONEP-3526 The issue regarding role namespace access in the ID UI has been resolved. Previously, if a namespace that a role had access to was deleted, it caused the namespace access management feature in the UI to break.
  • ONEP-3556 Addressed the omission of the apartment letter in the streetAddressDisplay field in certain cases.

Improvements

  • ONEP-3535 Added the capability to create custom OIDC Claims based on User's Custom Fields.
  • ONEP-3555 Contact addresses are now shown even when Protection Order is active.

Customer specific

  • ONEP-3508 Added metrics for OPH Koski lookups, handling error reporting differently

Release 4.40.0

Released 2024-10-25.

New features

  • ONEP-2887 ID service setup / initialisation has customisation options + dialog
  • ONEP-3294 Metrics collected on webhook activities
  • ONEP-3460 Add support for LinkMobility SMS gateway
  • ONEP-3533 ID service bootstrap based on bootstrap config file

Bug fixes

  • ONEP-3481 Roles view list shows deprecated permissions for roles
  • ONEP-3511 Access tokens failed to deactivate under certain conditions during Logout
  • ONEP-3540 Scheduled tasks "Delete inactive users" doesn't delete all inactive users

Improvements

  • ONEP-3454 Properly handle duplicate key exception when creating new user directory link via REST API
  • ONEP-3488 User creation (POST) and update (PUT) APIs return a list of validation errors if multiple validation issues arise during operation
  • ONEP-3534 Improve user searchText filtering for multipart firstname or lastname
  • ONEP-3568 Update Jersey dependencies

Customer specific

Release 4.39.0

Released 2024-09-27.

New features

  • ONEP-3324 Add a tool to find if Custom Role is assigned directly to Users
  • ONEP-3509 Implement OP-tunnistuspalvelu test environment
  • ONEP-3510 Add Users API support for filtering by 'locked' status
  • ONEP-3517 Implement endpoint for signed JWKS keys
  • ONEP-3518 Implement Entity Statement for OP tunnistuspalvelu
  • ONEP-3519 Implement automatic rotation for OpenID signing and encryption keys

Bug fixes

  • ONEP-3258 Handle error logging for certain network issues better
  • ONEP-3437 Password change API interface does not work as expected when using access token and returns excess information without requiring the current password for the call
  • ONEP-3438 Improve password change API interface responses when current password is missing or invalid
  • ONEP-3468 Fixed cache load exception in maintenance settings view
  • ONEP-3469 Fixed issue which happens after login in some cases
  • ONEP-3483 Management API client view list status needs new filtering and statuses
  • ONEP-3486 Include 'minor' field when migrating user between namespaces
  • ONEP-3499 User search with pagination returns duplicates on different pages when sorting by a field with common values
  • ONEP-3542 Fixed metadata fetching for Azure AD user directories

Improvements

  • ONEP-3421 Webhook from "failed" strong identification
  • ONEP-3443 Support DVV information types KotimainenYhteysosoite and UlkomainenYhteysosoite
  • ONEP-3461 Sentry maintenance UI: Improve Sample rate value readability
  • ONEP-3471 DVV Connection Profile Editor: Remove HTTP Header compatibility requirement from Username and Password fields
  • ONEP-3480 Use more secure LoginToken 'token' value
  • ONEP-3482 New Management API client does not have access-to-namespace field filled automatically
  • ONEP-3491 UI: Add a confirmation dialog to Locking and Unlocking account actions
  • ONEP-3494 Auto-filled registration form fields read-only is configurable
  • ONEP-3497 Disable cache for SAML SP metadata download
  • ONEP-3500 Adjust resolution of internal uptime determination to reduce overhead
  • ONEP-3501 Document userId field in user directory link REST endpoint
  • ONEP-3506 Add filtering by Account Type to the Accounts view
  • ONEP-3520 Update dependencies for 4.39.0

Customer specific

  • ONEP-3479 New fields to customer account identifier objects

Release 4.38.0

Released 2024-09-06.

New features

  • ONEP-3329 Import/Export feature to System local translations
  • ONEP-3446 Support for dynamically linking accounts with user directory
  • ONEP-3462 Support for manually linking single account with user directory from UI

Bug fixes

  • ONEP-3449 UserDirectoryResource encrypts link ID when required
  • ONEP-3484 Fixed user filtering by mobile number via REST
  • ONEP-3487 SMS routes use route specified sender address instead of cached one
  • ONEP-3489 External login does not update username if it already matches policy

Improvements

  • ONEP-3330 Log user logout action
  • ONEP-3451 Strong identification on external login registration
  • ONEP-3453 Search user directory links by encrypted authId
  • ONEP-3502 Handle password reset for users imported from external user directory

Release 4.37.0

Released 2024-08-19.

New features

  • ONEP-3413 Option to schedule activation and deactivation for Management API clients

Bug fixes

  • ONEP-3315 DVV Connections profile "event history" EventAux shows password in plain text
  • ONEP-3409 Duplicate SSN check not done when using REST for adding SSN to account
  • ONEP-3416 Fix typo in "welcome new user" email: "passwordUri"
  • ONEP-3440 SMS sender ID not correctly visible in user interface
  • ONEP-3441 User EnterpriseInfo: Fails to produce diff when editing user, breaks webhook changed property listing
  • ONEP-3444 Removing OIDC client's token fails if it is never-ending
  • ONEP-3447 Fixed external login registration form auto-fill
  • ONEP-3452 Fix UserDirectory swagger @Schema for namespace field
  • ONEP-3455 Fix Kafka record deserialization problem
  • ONEP-3465 Fixed scheduled tasks for ignite-clustered installations
  • ONEP-3478 Running some Unit Tests locally fails at ClusterScheduledTaskManager

Improvements

  • ONEP-3317 Namespace REST-rajapintaan lisäyksiä
  • ONEP-3319 Password/secret-field editing in UI to require extra step
  • ONEP-3420 Improve logging of "failed" strong authentication (Personal ID already in use)
  • ONEP-3439 Add possibility not to collect birthdates when asking adult-or-minor status
  • ONEP-3457 SAML signature and encryption requirements are configurable
  • ONEP-3470 Update Vaadin libraries
  • ONEP-3422 Improve User search text filtering

Release 4.36.2

Released 2024-06-17.

Bug fixes

  • ONEP-3465 Fixed scheduled tasks for ignite-clustered installations

Release 4.36.1

Released 2024-06-06.

Bug fixes

  • ONEP-3440 SMS sender ID not correctly visible in user interface
  • ONEP-3441 User EnterpriseInfo: Fails to produce diff when editing user, breaks webhook changed property listing
  • ONEP-3455 Fix Kafka record deserialization problem

Release 4.36.0

Released 2024-05-20.

New features

  • ONEP-3280 Restrictions on the time interval for changing contact information
  • ONEP-3429 Active external permissions claim provides permission IDs as easy-to-parse arrays

Bug fixes

  • ONEP-3432 Scheduled tasks run multiple times
  • ONEP-3434 Update kafka-clients library to latest version and fix scheduled task kafka bug

Improvements

  • ONEP-3430 Stored normalised User fields in database for improved search functionality

Release 4.35.0

Released 2024-04-15.

New features

  • ONEP-3415 Added REST endpoint for revoking all access tokens for user

Bug fixes

  • ONEP-3287 OIDC client allowed scopes don't restrict scopes as expected

Improvements

  • ONEP-3312 Update dependencies - Including JJWT
  • ONEP-3321 Update to jetty 9.4.54.v20240208
  • ONEP-3414 Added REST API for locking and unlocking user

Customer specific

Release 4.34.0

Released 2024-03-15.

Improvements

  • ONEP-3320 Allow more flexibility with Event Log retaining policy time limits
  • ONEP-3323 Support new SSN separators in REST and UI search

Release 4.33.0

Released 2024-02-23.

New features

  • ONEP-3289 Show MongoDB version, other useful info in Maintenance view

Bug fixes

  • ONEP-3306 Fixed maintenance view system logs for docker installations

Improvements

  • ONEP-3316 Add "Copy User ID to Clipboard" button to Accounts view

Customer specific

Release 4.32.0

Released 2024-01-26.

New features

  • ONEP-3214 Collect address parts separately for DVV sourced addresses
  • ONEP-3230 Ability to restrict signing in through OIDC client only to external directories
  • ONEP-3270 Added REST API endpoint for sending password change request email
  • ONEP-3276 Show ASN/country info where IP addresses are listed (such as SMS log) + add ip address to sms export

Bug fixes

  • ONEP-3275 Used filters remain visible in accounts view on top bar after clearing filters
  • ONEP-3278 Manual personal id entry window does not detect new Finnish id codes correctly
  • ONEP-3281 Copying SMS routing plan does not work

Improvements

  • ONEP-3231 View account MFA settings through UI
  • ONEP-3249 Improve Custom field change logging

Customer specific

  • ONEP-3283 salePlace REST API: field to erase call

Release 4.31.0

Released 2023-12-29.

New features

  • ONEP-3221 OIDC Clients: Add option to always include claims in ID Token

Bug fixes

  • ONEP-3153 Add performance monitoring to background operations
  • ONEP-3241 Domicile visible in UI when protection order active.

Improvements

  • ONEP-3188 REST API: Searching with 'co', 'sw', 'ew' filters is now case insensitive
  • ONEP-3236 Improve performance of JWT signing process
  • ONEP-3237 Move all API docs under /apidoc path, remove ReDoc
  • ONEP-3250 DVV/MUTP: Remove "Product code" field from connection profiles

Customer specific

Release 4.30.0

Released 2023-12-01.

Bug fixes

ONEP-3169 DuplicateKeyException sent to Sentry when using custom unique-email User-index on server

ONEP-3170 MongoDbBrowserWindow: Improve handling of MongoCommandException

ONEP-3210 GRANT_ANY_PERMISSION didn't work any more in Role editor

ONEP-3229 Failed to generate ID token if it included Domicile data with dates

Improvements

ONEP-2863 Improve internal performance

ONEP-3164 DVV Basic Info Update should replace existing active addresses with new address

ONEP-3195 User notes can be 1000 characters long

ONEP-3203 Improve performance and monitoring of REST API filters

ONEP-3204 Improve performance of REST calls by removing unnecessary authentication-time lookups

ONEP-3209 Resolve minor issues detected by SonarQube

ONEP-3223 Update address to DVV sandbox

Release 4.29.1

Released 2023-11-24.

Bug fixes

ONEP-3210 GRANT_ANY_PERMISSION didn't work any more in Role editor

ONEP-3229 Failed to generate ID token if it included Domicile data with dates

Improvements

ONEP-3195 User notes can be 1000 characters long

Release 4.29.0

Released 2023-11-10.

New features

ONEP-3131 Namespace access can be provided through granted Roles

Improvements

ONEP-3154 Mgmt API: Self-info API reports authentication status and Management API Client's primary namespace

ONEP-3162 Accounts view: Improvements to Email address and Mobile number columns, including a new filtering component

ONEP-3163 Implement asynchronous bucket4j proxy manager

ONEP-3165 Added two missing region flag emojis: 🌍 & 🛰️

ONEP-3172 Include details of used DVV connection profiles in User EventLog after updates

ONEP-3192 SMS sending: Allow number types UAN and PERSONAL_NUMBER

ONEP-3197 Report version number to Sentry in correct format

Bug fixes

ONEP-3178 User API: Legal info endpoint now returns domicile class when protection order is active

ONEP-3179 REST API: Requests are now reported to Sentry

Release 4.28.0

Released 2023-10-06.

A significant new feature is in how DVV connections are configured. A migration step must be initiated through the update task tool after upgrading to this version.

Bug fixes

ONEP-3143 DVV integration: Improved detection of modified address when it is received from DVV

Improvements

ONEP-3129 Management UI: Using country flag emojis instead of image files in certain UI elements

ONEP-3149 Management UI: You can use wildcard search patterns in the Accounts view to search more accurately by partial username, email, phone number

ONEP-3166 User API: Improved POST-based user search filtering

ONEP-3171 Updated dependencies flagged by vulnerability checker

New features

ONEP-3068 Added Temporary Domicile field for user, support for receiving data from DVV, improved editing and viewing of Domicile information

ONEP-3113 DVV integration: Supports multiple DVV connection profiles, which are now managed in a separate Management UI view. Profiles are selectable by user group, by namespace, or a default profile may be used. New configuration options in Namespace and Group editors.

ONEP-3138 Management UI: Added region based SMS rate limiting feature

Release 4.27.1

Released 2023-10-13.

This patch version fixes a detected issue in the User API’s Legal Info endpoint.

Bug fixes

ONEP-3178 User API: Legal info endpoint should return domicile class when protection order is active

Release 4.27.0

Released 2023-09-14.

Bug fixes

ONEP-3115 Improved logging during user logout event

ONEP-3119 Reduce no logging config found to debug level

ONEP-3122 Fixed time unit conversion bug in DurationField

ONEP-3135 When making a request with inactive client, the error message is in JSON format

Improvements

ONEP-3056 Improved event logging when viewing user personal data

ONEP-3072 Group API: Added sort support

ONEP-3111 When Mgmt API Client owner is changed, try to keep namespace access configuration as-is

ONEP-3125 Update to latest Trivore Jetty

ONEP-3126 Users API: Added notes field

ONEP-3130 Improve API documentation for User's Address.countryNumeric field

ONEP-3133 UserDirectory login requirements: Added OR operator

ONEP-3136 User LegalInfo API should return up-to-date domicile classes when possible

ONEP-3140 Added UserDirectory support for filtering imported groups when user signs in

ONEP-3142 Added Group eventlogging and Webhooks when updates happen via User Directory login

ONEP-3145 Improvements to Group index and queries

ONEP-3147 Improved Unit testing of Webhook processing

New features

ONEP-3071 Added Sentry performance monitoring and tracing support

ONEP-3139 Added dynamic group membership rules: custom field value, external permission

Release 4.26.0

Released 2023-08-28.

Bug fixes

ONEP-3086 User IP address is passed to Sentry when using Web pages

ONEP-3108 Improved namespace access checks in user creation API

ONEP-3128 /api/rest/v1/emailtemplate REST API filtering now works

Improvements

ONEP-2584 Event log generation adjusted to reduce excessive log history

ONEP-2944 Vaadin Vaadin dependencies updated

ONEP-3051 Changes to how country code is made available with foreign addresses

ONEP-3064 Soft deleted Users are purged based on current Namespace-configured delay

ONEP-3073 Password encoding key can be changed

ONEP-3080 Dependency updates

ONEP-3089 Include client name in Metrics (and update default Grafana dashboard)

ONEP-3091 Avoid collecting excessive metrics on certain invalid paths

ONEP-3095 Improvements to how User Strong Identification APIs can be used with OIDC access tokens

ONEP-3096 Email/mobile verification can be initiated via API by another user

ONEP-3121 Improve logging during email/mobile verification

New features

ONEP-3093 New API: Update existing User's legal info using DVV (basic info retrieval)

ONEP-3094 New API: Look up person's info from DVV, without User account

Customer specific

ONEP-3087 Improve StudentStateIntegration error logging & performance

ONEP-3117 Changes to how default consent values are handled during namespace migration

Release 4.25.1

Released 2023-06-13.

Improvements

ONEP-3091 Avoid collecting too much metrics on invalid /openid/** paths

Customer specific

ONEP-3087 Improve StudentStateIntegration error logging & performance

Release 4.25.0

Released 2023-06-02.

Bug fixes

ONEP-3067 Event log and Metrics indicate correct Event Source also when not using Ignite

New features

ONEP-3000 Added option to reject duplicate personal identity codes

ONEP-3009 Sentry error monitoring service support

ONEP-3046 Added API for PATCHing User CustomFields

ONEP-3065 Make webhook delay configurable

ONEP-3066 Add TrivoreCA_t005 certificates as trusted by default (Kafka, LDAP)

ONEP-3069 Added new APIs for managing Group custom fields

Release 4.24.0

Released 2023-05-11.

Bug fixes

ONEP-3012 User with reference to a deleted Group may break Accounts view when opening user editor

ONEP-3022 OIDC Sign-in logo wasn't copied from template namespace to new namespace

ONEP-3023 Content-Security-Policy violation report endpoint no longer fails if received report is empty

ONEP-3035 Resolve suspected dependency vulnerability issues

ONEP-3036 Fix exception in DiffUtils thrown during unit tests

ONEP-3037 Unit tests in LoginLayoutTests keep failing occasionally

ONEP-3042 InfluxDB Continuous Query configuration during server startup fails when using field name "duration"

ONEP-3047 User import from csv to ID not working in every ID-instance

ONEP-3048 When importing users through UI, importer creates usernames based on selected policy

ONEP-3049 Reading user's custom fields fails when a root-level field has a null value

Improvements

ONEP-2946 Added scheduled task to refresh MPASSid authentication sources

ONEP-3039 Add sender address support to Email Template message sending API

ONEP-3043 Event log lists: Indicate if actor has been deleted

ONEP-3050 Prefer 3-character language codes with language fields

ONEP-3057 List of changed User propertiers in USER_EDIT webhook contains all dot-notation parent property names

ONEP-3058 Include namespace code as a field in outgoing webhooks

New features

ONEP-2996 Added APIs for managing OIDC clients

ONEP-3019 Disable HSTS header set by Spring

ONEP-3025 Collect history of legal personal identity code changes

ONEP-3032 Added more APIs for managing Management API Clients

ONEP-3033 Add task which purges expired Personal Data Requests

ONEP-3060 Added Competency property to User's Conservatorship information

Customer specific

ONEP-3045 Add card number to sale end point

ONEP-3061 Include secondaryId and tag with sale

Release 4.23

Released 2023-03-17.

Bug fixes

ONEP-3004 Namespace search API doesn't work, gives 403 error even when should have access

ONEP-3016 Resolve detected log injection issues

ONEP-3018 StrongIdentification API documentation contains two 'userId' variables

Improvements

ONEP-2940 Update Swagger dependency, use new annotation options

ONEP-2954 Update logging libraries (slf4j, logback)

ONEP-2968 DVV: Support foreign addresses

ONEP-2969 DVV: Support receiving conservatorship information

ONEP-2989 Reduce amount of event log entries during Student Status Updates

ONEP-2994 Resolve detected dependency issues

New features

ONEP-2933 Collect metrics on Scheduled Task performance

ONEP-2943 Support sending push/alive notification to Uptime Kuma service with scheduled task

ONEP-2988 User Edit Webhook message includes a list of changed User fields

Release 4.22.1

Released 2023-03-06.

Bug fixes

  • ONEP-3018 StrongIdentification API contains two 'userId' variables

Release 4.22

Released 2023-03-03.

Bug fixes

ONEP-3002 Custom field browser's JSON viewer fails to open when entry value is null + enable creation of null-values fields

Improvements

ONEP-2941 Use Basic Authentication with DVV MUTP APIs

ONEP-2956 Personal Data Request Management views moved to Core modules

ONEP-2987 Configurability of webhook transmission times

ONEP-2993 Solve detected potential bugs

ONEP-3001 Requesting userinfo with client credentials returns some claims, not 404 response

New features

ONEP-2991 Groups View lists groups in a hierarchical tree table

Stories

ONEP-2971 Fix Azure group fetch when displayName is null

ONEP-2973 Add group support for Microsoft user directory

ONEP-2980 Validate OpenID post logout redirect URL values

Release 4.21.2

Released 2023-03-06.

Bug fixes

ONEP-3018 StrongIdentification API contains two 'userId' variables

Release 4.21.1

Released 2022-02-22.

Bug fixes

ONEP-3002 Custom field browser's JSON viewer fails to open when entry value is null. Enable creation of null-values fields. Editor of number value no longer allows entering an empty value.

Release 4.21

Released 2023-02-17.

Bug fixes

ONEP-2967 Management API Client namespace restriction does not work if left empty with some APIs

ONEP-2974 OIDC Client Credentials access token should not give any userinfo result

ONEP-2976 OpenID: allow external login only from selected directories does not work for AD FS user directories

ONEP-2986 Verify access token user identity when initiating strong identification

Improvements

ONEP-2920 Add Microsoft login with tenant filtering

ONEP-2921 Add remember me selection for external directory on OpenID login

ONEP-2957 Restrict Group deleting when other Groups are dependents of it

ONEP-2959 Improve readability of Custom Fields content

ONEP-2961 Improve SMS whitelisting (make it non-region based)

ONEP-2963 Collect metrics on blocked SMS messages

ONEP-2964 Support configuration of /openid/token CORS filter

New features

ONEP-2915 Feature Flag system for enabling experimental features on-the-fly

ONEP-2960 Multiple logout redirect URLs

ONEP-2977 Add option for custom fields for wallet transactions

Customer specific

ONEP-2982 Added summary view for subscriptions

Release 4.20

Released 2023-01-30.

Bug fixes

ONEP-2929 Scheduled task operation may fail if first executed manually from user interface

ONEP-2931 New sign in: Fix bug in multi user selection

ONEP-2938 Pricing Plan View's Copy function causes changes to original Pricing Plan

ONEP-2948 Email validation doesn't accept newer domains like .games

ONEP-2953 Improve result message format of the DVV admin tool "Update base info of everyone"

Improvements

ONEP-2965 Improve BaseEntity Metrics Collector's counting performance

New features

ONEP-2909 OIDC Client: Authentication flow (response_type) default value can be set, and selection can be enforced to prevent other flows.

ONEP-2947 Refactor ignoreOptionalOriginatorAddress property: move to routing plan

Release 4.19

Release

Released 2022-12-16.

Bug fixes

  • ONEP-2848 Group editor doesn't list other groups when they don't have disallowGroups value

  • ONEP-2897 Migrate user namespace REST API doesn't work as described

  • ONEP-2926 Password reset name verification UI should not be shown if user has no name to check

Improvements

  • ONEP-2843 Removed leftover UI elements in HSL Customer Care configuration view

  • ONEP-2856 Disable ability to create empty Access Controls

  • ONEP-2895 Simplify cluster NodeId and configure via environment variable

New features

Customer specific

  • ONEP-2928 Modify defaults for anon consents

  • ONEP-2923 More options to limit searching supplier events

Release 4.18.1

Released 2022-12-13.

Bug fixes

  • ONEP-2926 Password reset name verification UI should not be shown if user has no name to check

Customer specific

  • ONEP-2928 Modify consent defaults for new users in customer namespace

Release 4.18

Released 2022-11-18.

Improvements

ONEP-2750 Add API key authentication support for Infobip gateways

ONEP-2797 Add "API client last activity"-field to Trivore ID Management API client management UI

ONEP-2830 Remove old MyData entries

ONEP-2857 "Select all in page" or similar feature for Access Controls in View

ONEP-2871 Add created date, last-modified date columns to Namespaces view's table

ONEP-2875 Group name requirement validation moved to GroupService.save method

ONEP-2876 Group editor's "member of" selection is usable even with a large number of other groups

ONEP-2880 Upgrade pipeline to use mongodb 6.x

ONEP-2881 Remove user agent parser dependency, related functionality in SMS reports

ONEP-2886 Add support for environment variable configuration to docker image

ONEP-2890 Dynamic group membership's Age condition can be configured to use specific age information

ONEP-2896 Add support for external SMS number blocklist

ONEP-2898 Change docker USER (do not use root)

ONEP-2906 Ask for name(s) when resetting password

ONEP-2912 Preparations for NodeId changes

New features

ONEP-2582 Add view which lists event log types and their parameters, to help finding misconfigurations

ONEP-2782 Ability to override sender ID per SMS route

ONEP-2894 Add export function to Webhook call log window

ONEP-2899 Groups have a displayname field (non-unique alternative to 'name')

Bug fixes

ONEP-2809 Remove diagnostics.jsp feature, Improve error handling in various HTTP endpoints

ONEP-2831 Hide sensitive details in User Directory logs

ONEP-2868 Deleting namespace causes UI to freeze

ONEP-2873 Deleting groups shows incorrect information in dialog

ONEP-2908 NPE bug in KafkaClusterManager

Customer specific

ONEP-2904 Improve ticket cancel end point

Release 4.17

Released 2022-10-21.

Bug fixes

ONEP-2865 Security hotspot: Remove regex use from HttpCallMaker's authorization header censoring

ONEP-2864 Security hotspot: ImportWindow creates a temp file using potentially insecure filename

ONEP-2847 Management API incorrectly returns 500 status code instead of 404 not found

ONEP-2816 Translatable text fields in OIDC Client editor and elsewhere can break if multiple empty values are visible

ONEP-2792 SMS metrics: Source information is not provided in some situations

ONEP-2717 Namespace editor’s inactivity time limit field no longer breaks with negative values

Improvements

ONEP-2883 Commerce/Wallet transactions: Include vatAmount in REVERT modifications

ONEP-2879 Commerce/Product validity fields: Improve validNow status to accept start and end times on both sides of midnight

ONEP-2878 Commerce/Products UI: Validity editor’s time selection fields now allow entering exact time

ONEP-2849 Group Management API allows changing group hierarchy relations

ONEP-2845 Update support libraries

ONEP-2823 Include node identifier to metrics about API calls

ONEP-2814 Make MUTP test password configurable

ONEP-2784 Update country list data on server restart

ONEP-2753 Account filtering UI: Replace deprecated consent filtering with namespace/freeform consent filtering

ONEP-2749 Prevent personal ID's from strong identification and legal info updates from being shown in event logs

ONEP-2722 Add validation to DurationField bindings

New features

ONEP-2790 Implement LDAP docker image building

ONEP-2789 Add support for Kafka-based clustering

ONEP-2674 Integration with public IPinfo APIs

Customer specific

ONEP-2801 Remove deprecated features

Release 4.16

Released 2022-09-23.

Bug fixes

  • ONEP-2826 Automatic DVV MUTP update after Suomi.fi identification doesn't correctly save data
  • ONEP-2825 User editor's Personal ID Code field says there's no ID unless user also has Strong Identifications
  • ONEP-2819 Email and Phone number change API supports verifying existing unverified emails and phone numbers
  • ONEP-2803 Some defined scopes were not fully configured and were unusable
  • ONEP-2774 Fixed detected security issues

Improvements

  • ONEP-2824 Test user generator tool supports generating Personal Id Codes
  • ONEP-2821 Update Vaadin framework to latest version
  • ONEP-2808 Generate dependencies-report and downloadable zip in Gitlab pipeline
  • ONEP-2771 Reduce error logging when encountering invalid API credentials
  • ONEP-2739 Personal identification UI features moved to common Management UI

New features

  • ONEP-2818 Collect metrics about User Consent changes
  • ONEP-2785 Custom field support for External Permissions

Customer specific

  • ONEP-2815 Changes to customer specific Wallet transactions. Additionally Wallet transaction type names can be customised.

Release 4.15.2

Released 2022-10-24.

Improvements

ONEP-2890 Dynamic group membership's Age condition can be configured to use specific age information

Release 4.15.1

Initial release

Released 2022-09-09.

Bug fixes

ONEP-2826 Automatic DVV MUTP update after Suomi.fi identification doesn't correctly save data

Release 4.15

Initial release

Released 2022-08-26.

Bug fixes

  • ONEP-2794 Fixed: possible to select empty value in Multi Factor Authentication method selector
  • ONEP-2781 Fixed: DVV immigration source country information incorrectly stored as destination country
  • ONEP-2776 Fixed: OIDC custom sign-in caption didn’t replace placeholders correctly
  • ONEP-2775 Fixed: Opening AccessTokenRevokeWindow fails with NPE

Improvements

  • ONEP-2800 Country code for Finland is now added after DVV MUTP changes related to domestic addresses
  • ONEP-2798 Changes to user identifier history window and label in user editor
  • ONEP-2796 Changes to Management API usage metrics collection
  • ONEP-2791, ONEP-2779 Dependency library updates
  • ONEP-2783 Add custom field support to user directory attribute mapping
  • ONEP-2780 Support upcoming Finnish personal ID century sign characters
  • ONEP-2768 Improve docker packaging
  • ONEP-2755 Accounts View: Changes to selection options
  • ONEP-2746 Connect generated Access Tokens to used browser/useragent
  • ONEP-2744 Changes to UI views showing personal identification code

New Features

  • ONEP-2793 Collection of metrics about DVV MUTP actions
  • ONEP-2787 Add OIDC Claim for reading User custom fields
  • ONEP-2786 Custom field support for User Groups
  • ONEP-2778 Perform DVV data lookup after suomi.fi identification
  • ONEP-2777 Get allowed MFA methods from MFA API endpoint
  • ONEP-2758 OIDC Client customisation for Post-Signin and Post-Signout redirect pages

Customer specific

  • ONEP-2770 New client specific end point to search travel accounts

Release 4.14

Initial release

Released 2022-07-01.

Bug fixes

ONEP-2767 Soft-deleting an User no longer causes a User-Edit webhook

ONEP-2759 Email verification during OpenID user registration uses the email configuration from the target namespace correctly

Improvements

ONEP-2766 Improvements to coverage reports

ONEP-2765 Improvements to project build

ONEP-2747 Conflicting personal identity codes are now resolved by prioritizing LegalInfo based code, previously last identification was used.

New Features

ONEP-2763 New API: List and invalidate User's access tokens

ONEP-2762 New API: User MFA settings

4.14.1

Released 2022-07-01.

Bug fixes

ONEP-2775 Opening AccessTokenRevokeWindow fails with NPE

Release 4.13

Initial release

Released 2022-06-20.

Bug fixes

ONEP-2745 Fixed user Strong identification proper persistence when authenticating strongly via an external authorization provider

ONEP-2733 Change grid “Select all” -option to select all on current page

Improvements

ONEP-2743 Refactored Login management class

ONEP-2740 Upgrade dependency libraries

ONEP-2735 Show namespace name in Default Group Policy Editor

ONEP-2734 Accessibility improvements for ID sign in / register form

ONEP-2720 Event logging for strong authentication requests

Customer specific

ONEP-2737 Limiting ticket validation searches from the REST interface

Release 4.12

Initial release

Released 2021-06-03.

Bug fixes

ONEP-2731 Sign in failures due to dependency configuration issues

ONEP-2718 Dashboard Clusters-panel time format change, prevent IllegalArgumentException

Improvements

ONEP-2730 Update Libphonenumber dependency to support new phone numbers

ONEP-2727 Refactor Suomi.fi Authorisation code

ONEP-2724 User Directory Links API has create, delete endpoints

ONEP-2696 Persist StrongIdentification entry to User when authenticating via suomi.fi

ONEP-2585 Add OIDC information page to API-doc site

ONEP-2450 Update Apache Ignite

New Features

ONEP-2726 Added webhook events for Data Storage creation, modification, data modification, and deletion

Customer specific

ONEP-2723 Customer specific: Added new parameter to EDU API

4.12.1

Released 2021-06-20.

Bug fixes

ONEP-2745 Fix an issue with User StrongIdentification is not properly persisting when authenticating strongly via an external auth provider

Release 4.11

Initial release

Released 2022-05-20.

Bug fixes

ONEP-2716 MFA with email/sms code stops working after 10 uses per day

ONEP-2715 Authorisation filtering by "active" status not reliable if valid-to value is not set

ONEP-2695 DVV Address data not saved with Perustietohaku correctly

ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)

ONEP-2679 SMS metrics shows messages with empty/missing source and client_id, fix missing values

ONEP-2521 Namespace editor fields under "User deletion" accept negative values and do not show as read-only when view is set to read-only

ONEP-2504 Fix stable release pipeline

Improvements

ONEP-2709 HPA/YPA dashboard panel: No longer require source and type configuration to activate

ONEP-2708 Authorisations view & API: Indicate authorisation is inactive

ONEP-2702 Customize OIDC Sign-in view texts in OIDC client registration settings

ONEP-2699 Changes to allowed email domains field limits

ONEP-2697 Customize Reset Password view texts in OIDC client registration settings

ONEP-2694 Reset Password view uses OIDC client's theme when visited through OIDC sign-in

ONEP-2688 Changes to MFA related texts

ONEP-2683 Improve log messages, reduce excessive info-logging

ONEP-2677 Domicile class export and import as JSON file

ONEP-2676 Improved tool showing user’s effective permissions

ONEP-2643 User activity update no longer causes user-was-edited-webhook, instead causes new webhook call type

ONEP-2606 Personal IDs of related persons are stored encrypted

ONEP-2480 Editor title uniformity

New Features

ONEP-2700 Default email sender can be customised per Namespace

ONEP-2691 New API for changing password while confirming previous password

ONEP-2514 New API endpoint for querying about self (permissions, scope etc)

ONEP-2335 SMS sender address per region

ONEP-2332 Add default scope to OpenID Connect client configuration

ONEP-2329 Add root URL field to OpenID Client config

Customer specific

ONEP-2698 Removed customer specific translations

ONEP-2701

ONEP-2714

4.11.1

Released 2022-06-01

Bug fixes

ONEP-2731 Sign in failures due to dependency configuration issues

Improvements

ONEP-2730 Update Libphonenumber dependency to support new phone numbers

4.11.2

Released 2022-06-03

New Features

ONEP-2726 Added webhook events for Data Storage creation, modification, data modification, and deletion

Release 4.10

Release

Released 2021-04-27.

Bug fixes

ONEP-2670 REST API docs showed incorrect Authorisation schema

ONEP-2666 Temporary address from Suomi.fi authentication was not saved correctly to user data

ONEP-2652 Some FileStorage APIs cannot be used with access token due to scope misconfiguration

ONEP-2647 Webhook editor UI could become unusable if an user group did not have a name

ONEP-2161 In Accounts view, changing filters now resets page selection to first page

Improvements

ONEP-2682 Suomi.fi-authorisations have validFrom-value of creation time

ONEP-2669 Remove Authorisation.author and Authorisation.createdAt fields

ONEP-2668 Authorisation editor refreshed to match recent changes

ONEP-2667 Changes to Authorisation update API

ONEP-2651 Simplify Authorisation's Source and Type references

ONEP-2650 Replace AuthorisationGrantRight system with simpler permission based system

ONEP-2649 Remove unused trivore-id-sdk dependencies from project

ONEP-2645 Update dependency libraries

ONEP-2635 Censor 'principalId' value when creating Suomi.fi based authorisations

ONEP-2632 Don't create unnecessary User account for Authorisation Principal during suomifi-authorisation process

ONEP-2631 Prevent modifications to authorisations, except to validTo/validFrom fields

ONEP-2629 Refactored authorisation management code

ONEP-2593 Authorisation terminology update

ONEP-2573 Add two new fields for authorisations (role and authSpecifiers) for extended use cases

ONEP-2544 Cache Group information to improve user information loading speeds

ONEP-2416 Purge inactive authorisations from database after a certain amount of time has passed

ONEP-2352 Make "Show effective permissions" window easier to browse

ONEP-1487 Revoke user related authorisations on user deletion

New Features

ONEP-2673 Updating user's consent information launches Webhook event USER_CONSENT_UPDATED

ONEP-2644 Domicile classes can be exported+imported in Namespace Editor

ONEP-2641 Collect Authorisation revoke reasoning / metadata

ONEP-2577 Add endpoint to return list of authorisations for userId (OpenID client use case)

ONEP-2575 Add default validity time for added authorisation

ONEP-2130 Add copy group option

Customer specific

ONEP-2604

ONEP-2616

ONEP-2617

ONEP-2672

4.10.1

Released 2021-04-27.

Bug fixes

ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)

Release 4.9

Initial release

Released 2022-03-28.

Bug fixes

ONEP-2610 Fixed issue when deleting objects with identical IDs

ONEP-2595 Added support for address type POSTAL

ONEP-2561 Fixes to User account purge delay fields

Improvements

ONEP-2615 Use MUTP ‘kotikunta’ field to update User’s domicile classes when a protection order is active

ONEP-2613 Update Vaadin version

ONEP-2607 Copy municipality name from DVV MUTP addresses to User’s LegalInfo addresses

ONEP-2592 Improvements to DVV MUTP system

ONEP-2572 Use authorisation type value as is from suomi.fi-valtuudet

ONEP-2570 Add option to lock inactive user accounts instead of deleting them

New Feature

ONEP-2633 Show user's domicile classes in User Editor

ONEP-2603 Collect metrics about number of Users per Namespace

4.9.1

Released 2022-04-01.

Improvements

ONEP-2645 Update Spring libraries

4.9.2

Released 2022-04-20

New Features

ONEP-2673 Updating user's consent information launches Webhook event USER_CONSENT_UPDATED

4.9.3

Released 2022-04-27

Bug fixes

ONEP-2684 Fix issues with DVV Perustietohaku result applying (domicile class and other fields)

4.9.4

Bug fixes

ONEP-2695 DVV Address data not saved with Perustietohaku correctly

Release 4.8

Initial release

Released 2021-03-11.

Bug fixes

ONEP-2568 Switching UI views is slow when user has access to large number of namespaces.

ONEP-2531 Soft deleted accounts were not being fully deleted.

ONEP-2461 Date fields in Management UI didn’t use currently selected locale.

Improvements

ONEP-2559 User Search API has default sort order (ID in ascending order), uses more indexes

ONEP-2539 User Search API supports sortBy parameter

ONEP-2537 Improve User Search API performance when using nsCode filter

ONEP-2503 Added freeFormOrganisation field to User API responses

New Features

ONEP-2567 Added dependants field to User API

ONEP-2365 Collect metrics about sent Email messages

Customer specific

ONEP-2555 Change in customer specific module

Release 4.7

Initial release

Released 2022-01-31.

Bug fixes

ONEP-2550 Fixed an issue with updating new addresses from DVV

New Features

ONEP-2532 Add new legal attributes available from DVV (Finland)

4.7.1

Released 2022-02-03.

Improvements

ONEP-2539 User search API supports sortBy parameter

ONEP-2537 Improve User search REST API performance when using nsCode filter

4.7.2

Released 2022-02-04.

Improvements

ONEP-2559 Improve User Search API reliability with default sort order, more indexes

Release 4.6

Initial release

Released 2022-01-17.

Bug fixes

ONEP-2516 Increase security of Email Template processing: prevent class loading

ONEP-2507 User soft deletion must be checked when refreshing access tokens, updating subscriptions

Improvements

ONEP-2533 IP address based throttling of OIDC Authentication endpoint usage

ONEP-2524 Add error message schemas to apidoc for Wallet actions

ONEP-2523 Add groups column to the list of exported user accounts

ONEP-2522 Improve event logging for User search API

ONEP-2517 Better test coverage and fix code quality issues

ONEP-2515 Make CustomEmailMessages view use a grid component like other views

ONEP-1949 Add field Notes for email gateways

ONEP-2491 Move custom email message configuration from Namespace editor to separately managed items

ONEP-2520 Changes to User Agreement editor

New Features

ONEP-2505 Editing group memberships now requires permission GROUP_MODIFY_MEMBERSHIP (previous permission still works)

ONEP-2490 Email message can be sent when User account is deleted

ONEP-2489 Send warning email to user before automated account removal

ONEP-2482 User delete prevented if user is API client owner or otherwise needed

ONEP-2449 Limit OIDC Client authentication to users who are in specific groups

ONEP-2448 Add new users to selected user groups when registering via specific OIDC client

ONEP-2350 Remember visible panels in Dashboard view

Customer specific

ONEP-2510 Add a new boolean attribute to a customer specific module

Release 4.5

Initial release

Released 2021-12-17.

Important changes

Changes to web theme layouts

Previous “Privacy policy” and “Terms and conditions” functionality has been removed and replaced with “User agreements”. This may cause the need to update Web Themes which have custom New user registration Details form layouts. If the layout has not been customized, no changes are necessary.

To update a customized layout, you need to remove references to the previous functionality and add a component for the new functionality.

Add as last component before “extraLabel”:

<!-- Show User Agreement documents which the new user must or may accept. -->
<uic-user-agreement-acceptance-component _id="userAgreementComponent" id="user-agreement-acceptance" width-full />
<vaadin-label _id="userAgreementErrorLabel" style-name="failure" width-full visible="false" />

Remove lines like these referencing previous privacy and terms components:

<!-- If built-in privacy+terms system is disabled, these fields are hidden automatically. -->
<vaadin-check-box _id="acceptTermsField" />
<vaadin-button _id="privacyButton" style-name="link zero-padding" />
<vaadin-button _id="termsButton" style-name="link zero-padding" />
<vaadin-label _id="acceptTermsErrorLabel" style-name="failure" width-full visible="false" />

Initialize user activity fields

After installing the update and signing in to Management portal, you will see an upgrade dialog. It will show a new upgrade step: initializing the last-activity field for each User. Run this step and mark the step as performed.

Bug fixes

ONEP-2475 Migrating a User between namespaces no longer creates duplicate deletion log entries

Improvements

ONEP-2502 Wallet transaction type no longer converted to uppercase

ONEP-2499 No longer logs Mercurial keys during startup

ONEP-2496 Added automatic logging for more object types

ONEP-2493 Description field for namespaces

ONEP-2484 Event logs can be accessed in more views

ONEP-2483 Event log UI is more uniform between views

ONEP-2481 Improved Role editor

ONEP-2479 Refactored Webhook processing to enable better unit testing

ONEP-2474 Improved namespace and role editors

ONEP-2467 Fix openapi.json generation errors

ONEP-2439 Version information API returns data also in HTML format

ONEP-2415 Added missing properties to authorisations view and editor

ONEP-2437 Improved performance of sorting users by creation time

New Features

ONEP-2488 Inactive users can be deleted automatically

ONEP-2487 Track user’s last activity time

ONEP-2427 Added user agreement (privacy policy etc) customisation

Customer module changes

ONEP-2492 Added validityLengthSeconds to customer specific end points

Release 4.4

Release

Released 2021-11-26.

Bug fixes

ONEP-2459 Email template editor, default timezone field shows error

ONEP-2409 MFA code verifying window doesn't show address where code was sent to correctly

ONEP-2405 Event log viewer's date range filter may use wrong start-of-week day for selected locale

ONEP-2348 Permission ACCOUNT_MODIFY_LINKS incorrectly also grants permission ACCOUNT_MODIFY

Improvements

ONEP-2471 Hide target filter field in user and namespace log window

ONEP-2470 Show git-based build information with Version

ONEP-2460 Password Reset layouts editable in Web Theme

ONEP-2447 User selector component: Combine display name and selector button for compactness

ONEP-2438 Sort users based on created date in accounts view

ONEP-2346 Hide more unused permissions

New Features

ONEP-2465 Add language and religion fields to User

ONEP-2464 Add custodian fields to User

ONEP-2422 Add event logging for authorisation view events

ONEP-2366 Show metrics about sent SMS messages

ONEP-2358 Add event log browsing to namespace list view

Customer Specific

ONEP-2456 Improving documentation about product price handling

Release 4.3

Release

Released 2021-10-29.

Minor release focusing on code quality, bugfixes and small improvements.

Bug fixes

ONEP-2430 DVV PETP Import tool fails with NPE during data conversion

ONEP-2412 Fix user directory login actions class cast exception

ONEP-2360 Fix namespace modify permission handling

Improvements

ONEP-2431 Vaadin library update

ONEP-2413 Improve logging of access/refresh token creation/usage/refresh events

ONEP-2399 Email address field no longer required in User Editor

ONEP-2276 Per namespace configurability for Finnish national service DVV VTJ MUTP

ONEP-2440 Code quality: Fix dedicated errors

ONEP-2436 Code quality: Fix magic numbers

ONEP-2406 Password can be reset with SMS message

New Features

ONEP-2414 Add UI tool to browse User's access tokens

ONEP-2407 APIs for changing and verifying user mobile number

ONEP-2354 Browse log entries where actor is selected Management API Client

Customer Specific

ONEP-2445 Add separate field for Travel Account update channel ID

ONEP-2441 Add walletAuthority attribute to wallet transactions

4.3.1

Released 2021-11-04.

This patch version adds missing translations for Password Reset user interfaces.

4.3.2

Released 2021-11-16.

Bug fixes

ONEP-2459 Email template editor, default timezone field shows error

Improvements

ONEP-2460 Password Reset layouts editable in Web Theme

4.3.3

Released 2022-01-04

Bug fixes

ONEP-2516 Fix issue with email messaging system

4.3.4

Released 2022-01-14

Improvements

ONEP-2533 IP address based throttling of OIDC Authentication UI

Release 4.2

Release

Released 2021-10-04.

Bug fixes

ONEP-2382 MyData package creation fails because using misconfigured JSON converter

ONEP-2381 User and LogEntry related issue

ONEP-2379 Event log viewers claim that all new log entries have invalid signatures

ONEP-2374 Fix mobile number verification possible in user-interface

ONEP-2267 Fix namespace filtering in AccountEditor/Groups/Add tool

Improvements

ONEP-2397 Add authCodeEncoded index to access token collection

ONEP-2359 Don't log person's name or username to oneportal.log along with user id info

ONEP-2356 Update "User consents" window functionality in Accounts/Actions and elsewhere

ONEP-2284 CSV export for cluster uptime report

ONEP-2181 Text Messages: Filters are not able to search substrings

ONEP-2141 Send monthly cluster uptime report to predefined email addresses

ONEP-1643 Limit the number of tags per user and individual tag length.

ONEP-1515 Possibility to test OPH Koski integration with specific HETU

ONEP-2338 Main Menu text change on reporting

New Features

ONEP-2364 Collect metrics about sent SMS messages

ONEP-2362 New wallet transaction API

Customer Specific

ONEP-2363 Customer specific OpenID Connect UserInfo enrichment optimization

ONEP-2361 Customer specific REST API endpoint path changes

Notable changes

SMS search functionality has been improved. SMS search now uses case-insensitive prefix matching instead of exact matching (as it was previously). SMS database indexing has major changes and indexes need to rebuilt (done automatically but search may be slow until the rebuild is complete).

Patch 4.2.1

Released 2021-10-12.

Bug fixes

ONEP-2430 DVV PETP Import tool fails with NPE during data conversion

Improvements

ONEP-2418 Customer specific fields added to to sale API request in customer module.

Patch 4.2.2

Released 2022-01-04

Bug fixes

ONEP-2516 Fix issue with email messaging system

Release 4.1

Release

Released 2021-09-03.

Bug fixes

ONEP-2344 Labels in wrong place in Initial-Namespace-User form

ONEP-2343 Error when saving initial user of new namespace

ONEP-2337 MyData download attempt fails due to missing JSR310 datatype handler

ONEP-2325 Fix slow account view

ONEP-2320 User registration causes ConcurrentModificationException error messages

ONEP-2228 The "locale" claim may return values which are not BCP47 language tags

Improvements

ONEP-2347 API documentation at path /apidoc Permissions page's table shows which permissions grant each permission

ONEP-2345 Show permission code-name in Mgmt API Client editor's permission selector field

ONEP-2295 OIDC client: Can specify multiple namespaces from which users can sign in, while allowing registration of new users into a single namespace

ONEP-2202 Update to latest spring-data-mongodb

New Features

ONEP-2336 Using already used password reset leads to an informative page with special configurable link

ONEP-2333 Add "Evaluate" tool to OpenID Connect client editor

ONEP-2160 New policy option: Force user to use or setup some 2FA method during sign-in

Customer specific

ONEP-2339 New endpoint to query tickets

Release 4.0

Released 2021-08-13.

This is a major release. Major change is upgrade from Java 8 to Java 11.

Downgrade from version 4.0 to earlier version is supported to provide rollback capability in case of major issues arise. Downgrades are executed with technical support assistance, not by customers themselves.

Notable changes

Temporary directory has been changed from /var/lib/oneportal/tmp to /tmp with systemd PrivateTmp= enabled. If /var/lib/oneportal/tmp exists after upgrade, it should be removed.

Remove JAVA_TMPDIR and JAVA_HOME variables from /etc/sysconfig/oneportal if they exists after upgrade.

Improvements

ONEP-2299 Configuration options for after-changePassword behaviour

ONEP-2324 Drop deprecated authorisation indexes

ONEP-2322 Remove log-server and perf-test modules

ONEP-2318 Add automatic restart on failure using systemd unit file

ONEP-2316 Move JSVC_WAIT variable to service file

ONEP-2315 Move security limits to systemd service file

ONEP-2314 Use systemd PrivateTmp variable

ONEP-2285 Add customisation and new features to the changePassword form

ONEP-2194 Upgrade to Java 11

Customer specific

ONEP-2321 Add ticket validity related option to sale-API