Release notes 2.x¶

2.20.0¶

Improvements:

We patched the Log4j vulnerability.

2.19.0¶

Features:

The "date of birth" profile attribute is now editable when the application is appropriately configured. See the Profile fields management section for more information.

2.18.2¶

This is a maintenance release involving updates to internal libraries.

2.18.1¶

Improvements:

Allow disabling the X-Frame-Options header from being returned by the application in the HTTP response.
Set the SameSite cookie policy to None by default to make integrations easier if Onegini Customer Service runs on a different origin than the SAML IdP.

2.18.0¶

Improvements:

Allow setting X-Frame-Options: SAMEORIGIN response header instead of the default X-Frame-Options: DENY.

2.17.0¶

Bug fixes:

Update idp-sdk to get the GBG enum for idp.

2.16.0¶

Features:

The name of the application in the Onegini Token Server is shown in the list of events.

Improvements:

Display a specific error when mobile number is invalid on the user creation screen.

Bug fixes:

Fixed incorrect callback URL creation used for mobile device verification
The message that was sent for device verification was not translated to the user's preferred locale. This has been fixed.
After triggering device verification, the status message always showed that the verification had failed. This has been fixed.

2.15.0¶

Features:

Added the device verification which allows to initiate a mobile authentication in order to verify a user device.

2.14.1¶

Bug fixes:

Fixed an issue with duplicated authorities when using environment variables.

2.14.0¶

Features:

Additional profile mappings can be provided when externally inviting users.

Bug fixes:

Changed labels for persons that signed in the past week.

2.13.0¶

Features:

Introduced Resend e-mail verification user action.
Added possibility to Decouple external identity provider from a person.

Bug fixes:

Fixed Devices API beans not created on some application startups.

2.12.1¶

Bug fixes:

Fixed Devices API not being exposed in the last 2.12.0 version of the Onegini Customer Service.
Fixed incorrect messages displayed when updating email, phone number or deleting custom attribute failed.

2.12.0¶

Features:

Show the device model and OS version in the list of mobile devices.

2.11.0¶

Features:

Added new property, which allows to specify the Content-Security-Policy header value.

2.10.0¶

Features:

Additional custom attributes can be provided when externally inviting users.

2.9.0¶

Improvements:

Wrapped HTTP session with Spring Session in order to improve session and cookie management.
Added support for the SameSite Cookie attribute to comply with upcoming internet browser standards, regarding whether the cookies should be restricted to a first-party or same-site context.
It is now possible to create users in Onegini Customer Service for different labels.

Bug fixes:

When refreshing the user's detail page, an error 500 occurred. This has been fixed.

2.8.1¶

Fixed issue where user events were not visible

2.8.0¶

Features

Added user label information in the users search result page and user details page
Added possibility to search for users on different labels

2.7.1¶

Bug fixes:

Replaced browser basic auth login popup with Spring Security form to prevent browser from caching authorization header.
Fixed exception when there is no configuration for searched keys on extension side
Fixed problem of displaying user profile when no name defined

2.7.0¶

Improvements

Allow to set specific java options through the JAVA_OPTS environment variable

2.6.0¶

Improvements:

Weekly statistics show data from the past 5 years

2.5.3¶

Bug fixes:

Some property names in the example compose file in Onegini Customer Service were incorrect
fixed property discovery issue

2.5.1¶

Bug fixes:

Fixed an issue where ‘delete account’ functionality would not work due to a misconfiguration

2.5.0¶

Features:

Added possibility to modify a phone number

Improvements:

Added support for longer custom attributes values
Validation of phone number and email address is configurable

Bug fixes:

Fixed environment variables for setting Configuration API credentials
Fixed encoding of + when searching via phone number

2.4.0¶

Features:

Events shown on the user details page are now paginated
Introduced new property onegini-idp-ccc.person.profile.events-page-size which defines the number of events that are shown on a single page. The default value is 10

Improvements:

Migrated to Spring Boot 2 and Spring Security 5
Updated GitlabCI and Java docker images

2.3.1¶

Bug fixes:

Fixed wrong sdk version used in communication with idp extension
Fixed problem related with searching users

2.3.0¶

Improvements:

Updated OpenSAML dependency.
Updated SDKs and align code with new api.

Bug fixes:

Fix mobile phone field issues and formatting.

2.2.1¶

Features:

Added possibility to create a user

2.1.0¶

Features:

Added support for managing custom attributes

Improvements:

Updated Java version in Docker images

2.0.1¶

Improvements:

Updated Java version in Docker images

2.0.0¶

Features:

Added support for ldap login. (more info)
New version of saml support. (more info)

Bug fixes:

Fixed that the ONEGINI_OPTS param was ignored.