Skip to main content

Release Notes: 2024

October 2024

New features

  • New User Interface has been launched:

    • Revamped Navigation & Layout: Card*based layouts have replaced the traditional table views, offering a more modern and visually appealing way to view and manage data

    • Side menu improvements: Now features an expandable design for easier navigation and more flexibility

    • Improved Menus: Previous menu structures have been replaced by tabs, allowing for faster access to sections and relevant features

    • Advanced Search & Filtering: Search components and filters have been added to key pages, enabling users to find and filter information more efficiently and accurately

    • Quick Switchers: Introduced quick switchers for organisations, servers, and applications, allowing seamless toggling between entities to save time and reduce complexity

New User Interface

  • Data administrator role added-Assignable through Reference Data.

    • Data Admins can manage the platform without having access to Reference Data. This is useful for cases where you need organisation management but not full access to all configuration data.

Improvements

  • Enhanced support for payment initiation API integration
  • Soft deletion support added for API Resources and Server Certifications
  • Performance optimisations for multiple endpoints when handling large datasets
  • Logo migration - Logos now hosted on the data subdomain instead of the web subdomain
  • Optional homepage URI field added for software statements

OpenID Provider Changes:

  • Implemented support for RAR (Rich Authorization Requests)

  • Fixed background colour to improve loading times

Bug fixes

  • Addressed inconsistency in JWKS to align with standard x5t#256 -> x5t#S256

  • Fixed an issue where a super user could not re-enable an Authorisation domain mapping

  • Backend pagination inconsistencies have been addressed

OpenID Provider Changes:

  • Password policy inconsistency resolved

  • "Back to sign in" button - Fixed not working on session timeout

Breaking changes

  • UserEmail field deprecation:

    • The UserEmail field for organisation administrators is marked as deprecated. It may be removed in future releases. Please use the email field instead

August 2024

New features

  • Support for uploading public keys to software statements for organisations with the BYO-KEYS role

Improvements

  • Added an icon to the domain users permission table to denote user types that don't have email notifications enabled

  • Adjust conditions for advanced software statement configuration to be visible

  • Enhance visibility conditions for Advanced Software Statement configuration options in the UI.

    • Now visible for software statements with a Directory type role or on all software statements when viewed as a super user.

Breaking changes

  • Participants endpoint date format change - Addressed an inconsistency with the DeprecatedDate and RetirementDate for authorisation servers in the participants endpoint being returned as arrays instead of string representation

June 2024

New features

  • Logos for Resources:

    • The platform now supports uploading and displaying logos within resources. This also allows you to have a centralized hosting place for all logos.

    • Moderation and validation is done on uploaded images to block potentially offensive content

Improvements

  • Security Improvements:

    • Improve password reset functionality to prevent user password enumeration and email flooding attack vectors

    • Improve error messages to obfuscate cloud service specific information

    • Added additional layers of sanitization to reject unsafe user input before it is handled

  • Improve error message for invalid certification URI to specify the expected format

Bug fixes

  • Fixed an issue where a domain user role could not be deactivated, even if all users with that role were deactivated

April 2024

New features

  • Field "API Webhook" for Software Statements is now available.

  • Flags are now available to configured for Organisations, Authorisation Servers and Software Statements.

    • Flags are enabled in Reference Data and then available to be added by all users with write access to these resources

Improvements

  • Improve user error message for empty values in login

Bug fixes

  • Fixed issue where Family Complete field in API Resources wasn't being correctly updated

March 2024

New features

  • Domain/Technical Users are now configurable in Reference Data. They can be set up by a Super Admin

Improvements

  • Adjusted UI label for field "UserEmail" inside the Organisation Administrators modal. It's now "Email"

Bug fixes

  • Fixed issue where Family Complete field in API Resources wasn't being correctly updated

  • Fixed issues in API Resources when an API had two different mandatory versions

  • Fix API behaviour to disallow changing of certification types and variants, in line with UI and data layer

January 2024

Improvements

  • Pagination Added: Implemented pagination on the Authority Domain Role Claims page for better navigation

  • Enhanced URI Handling: Redirect_URIs now accept comma-separated values for adding, and it's now possible to export all values on the Details page

  • Edit Button Addition: Added an "Edit" button to all "Details" views for easier changes

  • Autofill Suggestions: Introduced autofill suggestions in fields where the value is consistently the same

Bug fixes

  • Authority Domain Role Claim Input: Resolved an issue where the Authority name input wasn't being registered correctly

  • Side Menu Visibility: Fixed the issue where the side menu was not appearing in Reference Data > Metadata

  • Organisation Certificate Upload: Addressed the problem where a user couldn't upload a file when creating a new organisation certificate without refreshing if the modal was closed prematurely

  • Domain Claim Dialog: Rectified the issue when selecting an Authority without domain names in a new domain claim dialog

  • Sidebar Stability: Fixed the issue where reloading while in Role Change History caused the sidebar to close

  • Loading Text Error: Corrected the display error where the text "Loading more items" would show up even when there were no items

  • OIDC User Info Response: objects that have key values that are empty strings are removed from the response payload as per https://openid.net/specs/openid-connect-core-1_0.html#UserInfoResponse

  • OpenID Provider: Updated footer message

  • Software Statement Warnings: Changed to correct FAPI link in Software Statement warning information

  • Clients endpoint: The last_updated field now better reflects the last time a client was updated

Open Book IconTABLE OF CONTENT