2023.05.1 Release Notes
- 21 Jun 2023
- 8 Minutes to read
- Print
- DarkLight
2023.05.1 Release Notes
- Updated on 21 Jun 2023
- 8 Minutes to read
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
2023.05.0,2023.05.0-hotfix1 Release Notes
Product Features and Enhancements
| Reference Number(s) | Summary | Components | ||
|---|---|---|---|---|
| SID-81 | ShieldID Multi-Tenant Support | undefined | ||
| SID-79 | UI: ShieldID Changes for Supporting Multiple Tenants | undefined | ||
| SID-78 | BE: ShieldID Authorizer Changes for Supporting Multiple Tenants | undefined | ||
| SID-77 | BE: ShieldID WAF API Changes for Supporting Multiple Tenants | undefined | ||
| SID-12 | Initial Project Setup | undefined | ||
| SID-89 | BE: Alternative of properties for Unlicensed user | undefined | ||
| SID-39 | Configure for license | undefined | ||
| SID-40 | BE: Informative Static Page for User's don't have License for ShieldID | undefined | ||
| SID-37 | Integrate ShieldID in RI with License Configuration | undefined | ||
| SID-12 | Initial Project Setup | undefined | ||
| SID-70 | Introduce interpolation token for providing RI system roles via an OIDC ID token claim | undefined | ||
| SID-67 | Add WAF Security Configuration for ShieldID in tenant | undefined | ||
| SID-66 | Add property for ShieldID and make available in bootstrap information | undefined | ||
| SID-33 | Create AWS API to Update WAF manageable ruleset. | undefined | ||
| SID-32 | Create AWS API to fetch WAF manageable ruleset. | undefined | ||
| RIC-2755 | Must Change Password Flag with Alt Action Enhancement | Connect, IDP | ||
| RIC-2757 | Validate password in ActmActionsService when enableAlternateChangePasswordAction | Authentication | ||
| RIC-2756 | Fix password reset init to validate password and ensure a recoveryToken exists | Authentication | ||
| RIC-2599 | Deprecation Azure AD and MSOL Modules | RIC | ||
| RIC-2568 | (BE) Deprecation of the Azure AD and MSOL modules, RPS Protocol - Part 2 | RIC | ||
| RIC-2564 | Deprecation of the Azure AD and MSOL modules, RPS Protocol | RIC | ||
| RIC-2472 | Auto Proceed to Duo Config | Authentication, Configuration | ||
| RIC-2461 | UI: Navigate automatically to Duo without extra button click (Legacy UI) | Authentication | ||
| RIC-2459 | UI: Config option for autoProcess prop added in BE (Cloud) | Authentication | ||
| RIC-2456 | BE: Config option to automatically proceed to Duo without extra button click | Authentication | ||
| RIC-2374 | Role Sync Scheduler | Roles | ||
| RIC-2686 | API and Connect support for setting auto sync cron/timezone on Roles | Connect, Roles | ||
| RIC-1088 | Authentication Security Enhancements | Authentication, LDAP, password policy | ||
| RIC-1685 | Productize and Reconcile Password Policies | Authentication | ||
| RIC-2783 | Disable Implementation of Check Status for Delegated Password Resets | Authentication, password policy | ||
| RIC-491 | Studio Improvements Backlog | Studio | ||
| RIC-840 | Studio Backlog Items | Studio | ||
| RIC-82 | Spike: Studio Job Schedule Cron Expression Display Times | Studio | ||
| RIC-2455 | Update to Expose Last Password Reset Date | People | ||
| RIC-2416 | UI: Show Time Component for idauto-pwdPrivateTS Gal Attribute in Details | People | ||
| RIC-2391 | Studio Jobs Schedule Updates | Studio | ||
| RIC-2469 | (UI) Studio Job Scheduler Enhancement | Jobs, RIC, Studio | ||
| RIC-2468 | (BE) Studio Job Scheduler Enhancement | Jobs, RIC, Studio | ||
| RIC-2392 | (BE) Upgrade task for Scheduler Changes | Studio | ||
| RIC-2375 | Improvements for Entitlement Approval Process | Requests | ||
| RIC-2376 | Add additional info on the Task Notification Card for Entitlement Requests | Requests | ||
| RIC-2356 | Add Details to Task Notifications for Entitlement Requests | Requests | ||
| RIC-2374 | Role Sync Scheduler | Roles | ||
| RIC-2450 | (BE) Update group info and group membership info via a single update endpoint | RIC, Roles | ||
| RIC-2443 | (UI) Update Role Sync changes based on newest BE changes | RIC, Roles | ||
| RIC-2380 | (BE) Refactor the GroupManagementRestService_v2 to be in alignment with Google API standards | RIC, Roles | ||
| RIC-2379 | (BE) Pare down GroupManagementRestService_v2 | RIC, Roles | ||
| RIC-2368 | 'Proxy As' Functionality Enhancements | ProxyAs | ||
| RIC-2408 | (UI) Update to 'Proxy As' functionality | ProxyAs, Security Vulnerability | ||
| RIC-2393 | (BE) Update to 'Proxy As' functionality | ProxyAs, Security Vulnerability | ||
| RIC-2246 | (UI) Portal Role Viewer Admin cannot see Members of Roles | RIC, Roles | ||
| RIC-2333 | Update Web Security Configuration to Improve Security Rating | Web Security | ||
| RIC-2366 | Convert and Refactor Web Security Component | Web Security | ||
| RIC-2332 | UI: Add editable fields for new HTTP Response headers added in the BE | Web Security | ||
| RIC-2331 | BE: Create Integration test cases for Missing HTTP Response headers. | Web Security | ||
| RIC-2330 | BE: Add default values for Missing HTTP Response headers in the Database | Web Security | ||
| RIC-2329 | BE: Missing HTTP Response headers, causing a low-security scan rating. | Web Security | ||
| RIC-2127 | Add Last Password Reset Date Attribute | GAL | ||
| RIC-2128 | Add Last Password Reset Date in GAL (read-only) for use in Delegations | GAL | ||
| RIC-1961 | Studio Quality of Life Updates | Studio | ||
| RIC-2201 | Intercept Studio artifact installs, include catalogId | Studio, Studio Catalog | ||
| RIC-1727 | Module Navigation - Add Kebab and Right-Click | Reporting | ||
| RIC-2327 | Add Kebab and Add Right-Click to Configuration>Security Module | Configuration | ||
| RIC-2326 | Add Kebab and Add Right-Click to Configuration>System Module | Configuration | ||
| RIC-2325 | Add Kebab and Add Right-Click to Configuration>SSO Portal Module | Configuration | ||
| RIC-1088 | Authentication Security Enhancements | Authentication, LDAP, password policy | ||
| RIC-1685 | Productize and Reconcile Password Policies | Authentication | ||
| RIC-2567 | (BE) Modify minimum value of Maximum Age | password policy | ||
| RIC-2515 | (UI) Password Policy Manager - Auto Account Lockout Tab | password policy | ||
| RIC-2442 | (BE) Delete the password history and user account state for a user when they are deleted via Connect | Connect, password policy | ||
| RIC-2441 | (BE) Delete the password history and user account state for a sponsored account when it is deleted | password policy, Sponsorship | ||
| RIC-2440 | Updates following RIC-2419 for Locked accounts can unlock their account via password change | Authentication | ||
| RIC-2412 | (BE) Write integration tests for new Password Policy changes | Authentication, password policy | ||
| RIC-2411 | (BE) Rewire EmailAuthnRequestHandler to IAuthenticationService | Authentication, password policy | ||
| RIC-2410 | (UI) Update Password Validator to account for account status tracking | Authentication | ||
| RIC-2378 | Remove passwords from Password History if the passwordRememberedCount is smaller than the size of the history list | Authentication, password policy | ||
| RIC-2291 | (BE) Handle automatically unlocking a locked account | Authentication, password policy | ||
| RIC-1727 | Module Navigation - Add Kebab and Right-Click | Reporting | ||
| RIC-1736 | Add Kebab and Add Right-Click to Configuration>General Module | Configuration | ||
| RIC-1732 | Add Kebab and Right-Click to Reports Module | Reporting | ||
| RIC-1731 | Add Kebab and Right-Click to Roles Module Navigation | Roles | ||
| RIC-1088 | Authentication Security Enhancements | Authentication, LDAP, password policy | ||
| RIC-1685 | Productize and Reconcile Password Policies | Authentication | ||
| RIC-2215 | (BE) Create UserAccountStatusService implementation | Authentication, password policy | ||
| RIC-2214 | (BE) Create new PasswordAuthenticator to replace GenericLDAPAuthenticator | Authentication, password policy | ||
| RIC-2110 | (BE) Rewire AuthenticationExchangeRestService to IAuthenticationService | Authentication, password policy | ||
| RIC-2097 | (BE) Verify SelfServiceSupport class functionality | Authentication | ||
| RIC-2096 | (BE) Update Password Validator to account for account status tracking | Authentication | ||
| RIC-2093 | (UI) Update password policy screens with additional fields as needed | Authentication, password policy | ||
| RIC-2092 | (BE) Rewire QrAuthenticationRestService to IAuthenticationService | Authentication, password policy | ||
| RIC-2090 | (BE) Update ActmActionsRestService for submitChallengeValidation to call IAuthenticationService | Authentication, password policy | ||
| RIC-2089 | (BE) Rewire SmsAuthenticationRestService to IAuthenticationService | Authentication, password policy | ||
| RIC-2088 | (BE) Rewire OTPAuthenticationRestService to IAuthenticationService | Authentication, password policy | ||
| RIC-2087 | (BE) Rewire PictographAuthenticationRestService to IAuthenticationService | Authentication, password policy | ||
| RIC-2075 | (BE) Create new Connect actions for version checking updating users passwords, and disabling accounts | Authentication, password policy | ||
| RIC-2074 | (BE) Handling changed location of LDAP properties | Authentication, password policy | ||
| RIC-2073 | (BE) Refactor and fix AbstractSponsorshipDAO and RICloundSponsorshipDAO | Authentication, password policy | ||
| RIC-2071 | (BE) Update ACTMPasswordPoliciesAdminRestService for new DTO/Entity | Authentication, password policy | ||
| RIC-2070 | (BE) Create password history implementation | Authentication, password policy | ||
| RIC-2069 | (BE) Rewire IDP password reset services, and AuthN password reset service | Authentication, password policy | ||
| RIC-2068 | (BE) Create AuthenticationService object to be used by AuthN and IDP Reset Services | Authentication, password policy | ||
| RIC-2067 | (BE) Refactor implementation of IdentityDataGatewayFacade | Authentication, password policy | ||
| RIC-2066 | (BE) Refactor GenericLDAPAuthenticator | Authentication, password policy | ||
| RIC-2064 | (BE) Create AccountFailState object for failure counting | Authentication, password policy | ||
| RIC-2063 | (BE) Create implementation of IAccountStatusService and IAccountPasswordService interfaces | Authentication, password policy | ||
| RIC-2062 | (BE) Create interfaces for password policy management and authentication | Authentication, password policy | ||
| RIC-1696 | (UI) Add LDAP Password Policies to Default Password Policy | RoadMap | ||
| RIC-849 | OIDC ROPG Support for JAMF | OIDC | ||
| RIC-1631 | ROPG for OpenID Connect | Authentication, OIDC | ||
| RIC-1907 | JAMF Connect will need to allow Passthrough Authentication | OIDC | ||
| RIC-1700 | Create a test environment specific to JAMF | OIDC | ||
| RIC-1699 | Add BE support for Option to Enable ROPG to the OIDC Configuration | OIDC | ||
| RIC-1693 | Add BE support ROPG Flow | OIDC | ||
| RIC-1692 | (UI) Add Option to Enable ROPG to the OIDC Configuration | OIDC | ||
| IDH-481 | Connect Target Adapter | Adapters, Tenant | ||
| RIC-2370 | Service Tokens: Refactor Studio OAuth 2.0 Code into Reusable Mint/Authenticator | Authentication, Studio | ||
| RIC-2260 | Remove Folders | Folders | ||
| RIC-2323 | (UI) Update UI to reflect new name of SSO Portal | Configuration, SSO Portal | ||
| RIC-2653 | Alignment of Terminology in Studio and IDHub | Studio | ||
| RIC-2695 | Register Preferred Name Attributes to the GAL | GAL, RICloud OpenLDAP | ||
| RIC-2813 | (BE) Addition of Account Lockouts System Delegation | Delegations, password policy, People | ||
| SID-47 | Deployment Documentation for Devops | undefined | ||
| SID-52 | Refresh token from Cognito | undefined | ||
| SID-59 | UI Improvment of ShieldID UI | undefined | ||
| SID-76 | Error Handling for Error Response from BE | undefined | ||
| SID-113 | Support DEVOPS to Setup ShieldID | undefined | ||
Feature Improvements
| Reference Number(s) | Summary | Components | ||
|---|---|---|---|---|
| RIC-2375 | Improvements for Entitlement Approval Process | Requests | ||
| RIC-2576 | Improvement needed for Task Notification Form items validation | Requests | ||
| RIC-2398 | Studio: Enhancement of Filters and Access Groups | Studio | ||
| RIC-2413 | Audit and Log Access Group Scopes | Studio | ||
| RIC-2374 | Role Sync Scheduler | Roles | ||
| RIC-2233 | (BE) Schedule a Role Sync | RIC, Roles | ||
| RIC-491 | Studio Improvements Backlog | Studio | ||
| RIC-840 | Studio Backlog Items | Studio | ||
| RIC-1007 | (UI) Studio: consolidate `consumer` and `provider` serializers into `base-application-serializer` | Studio | ||
| RIC-2374 | Role Sync Scheduler | Roles | ||
| RIC-2016 | (UI) Schedule a Role Sync | RIC, Roles | ||
| RIC-2229 | Remove Folders | Folders | ||
| RIC-2351 | Optimize ExpiredLogFileClusterJob | Connect, Jobs | ||
| RIC-2439 | Add 'noreferrer' to application launches | Applications | ||
Resolved Issues
| Reference Number(s) | Summary | Components | ||
|---|---|---|---|---|
| SID-12 | Initial Project Setup | undefined | ||
| SID-88 | Edit button visible for Rate Limit Rules | undefined | ||
| SID-81 | ShieldID Multi-Tenant Support | undefined | ||
| SID-82 | Loading issues of ShieldID page | undefined | ||
| SID-12 | Initial Project Setup | undefined | ||
| SID-71 | "refused to connect" page displayed instead of default Banner on ShieldID page | undefined | ||
| RIC-491 | Studio Improvements Backlog | Studio | ||
| RIC-840 | Studio Backlog Items | Studio | ||
| RIC-1494 | (UI) Application "Installation Notes" Does not hold bullet list or numbered list format upon save. | Studio | ||
| RIC-1340 | (UI) Studio Relies on Applications being licensed | Studio | ||
| RIC-2455 | Update to Expose Last Password Reset Date | People | ||
| RIC-2454 | "Allow editing" checkbox present while adding/editing Read Only Attribute | GAL, People | ||
| RIC-2391 | Studio Jobs Schedule Updates | Studio | ||
| RIC-67 | (UI) Studio Job Schedule Times Do Not Correspond to Job History Timestamps | Studio | ||
| RIC-2363 | Team Entitlements visible to Managers | Requests | ||
| RIC-2338 | BE: Team Entitlement should be visible to any Managers with Direct Reports | Requests | ||
| RIC-2336 | UI: Team Entitlement should be visible to any Managers with Direct Reports | Requests | ||
| RIC-1983 | Bug Board | RIC | ||
| RIC-2693 | Issue in saving Regular Expression in Password Syntax tab | password policy | ||
| RIC-2579 | 2023.02.0 Missing Pendo in Portal | Pendo | ||
| RIC-2305 | BE: Forgot Password link shows for users who do not belong to a Forgotten Password Policy | Authentication | ||
| RIC-1088 | Authentication Security Enhancements | Authentication, LDAP, password policy | ||
| RIC-1974 | Server-side Exponential Back outs | Authentication | ||
| RIC-2228 | API is throwing an unhandled exception in case OTP is not the expected length | Authentication | ||
| RIC-1961 | Studio Quality of Life Updates | Studio | ||
| RIC-2531 | Application "Installation Notes" unordered list is being saved as Ordered list | Studio | ||
| RIC-1894 | Tenant Health Check for Support | Configuration | ||
| RIC-2696 | Intermitent Errors on /api/rest/v1/admin/system/statusReport processing runningJobs | REST API | ||
| RIC-1088 | Authentication Security Enhancements | Authentication, LDAP, password policy | ||
| RIC-1685 | Productize and Reconcile Password Policies | Authentication | ||
| RIC-2734 | Exponential Backoff Failure in WAC with QR Code | Auth Client | ||
| RIC-2709 | Sticky Disables via Connect Action Sets | Authentication, Connect | ||
| RIC-2706 | BE: Exponential Backoff and Authentication failure for SMS in WAC | Auth Client | ||
| RIC-2703 | BE: Duo Authentication failure in Windows Auth Client | Auth Client | ||
| RIC-2702 | User is unable to login after enabling grant support access | Configuration | ||
| RIC-2230 | Misc Bug Fixes | RIC | ||
| RIC-1996 | Checkbox getting unchecked on editing and saving Role Attribute. | Roles | ||
| RIC-1983 | Bug Board | RIC | ||
| RIC-1621 | UI: Add user agreement fails if a deleted user agreement 'name' is used | User Agreement | ||
| RIC-1961 | Studio Quality of Life Updates | Studio | ||
| RIC-976 | (UI) Studio > Email Templates: Cursor remains on front of the token added instead of back | Studio | ||
| RIC-317 | RapidIdentity SafeID | Web Security | ||
| RIC-1515 | SafeID Cleanup and Deployment | SpyCloud, Web Security | ||
| RIC-1755 | (UI) Incorrect language for notifications displayed in "Alert" for User. | Configuration | ||
| RIC-2216 | (BE) Connect Operator: JS Injection Attack via Action Args | Connect, Security Vulnerability | ||
| RIC-2257 | SSO Portal >> Settings menu "Settings" text is underscored when "mouse over" | SSO Portal | ||
| RIC-2294 | 'Proxy As' causing Network Errors on Loading of GO! View | ProxyAs, SSO Portal | ||
| RIC-2419 | Locked accounts can unlock their account via password change | Web Security | ||
| RIC-2457 | Column names of "Running Jobs" are displayed incorrectly | Studio | ||
| RIC-2488 | Handle deleted users when sending scan summary | *** not specified *** | ||
| RIC-2508 | NPE when processing Workflow Approval Task | Requests | ||
| RIC-2519 | Layout issue with QR Codes using Avery Labels format | QRCode | ||
| RIC-2530 | (UI) Connect Operator: JS Injection Attack via Action Args | Connect, Security Vulnerability | ||
| RIC-2542 | X-RESTPOINT-USER-ROLES not getting extracted and applied to requests | RESTPoints | ||
| RIC-2578 | Excessive requests sent when executing a Global Search | GlobalSearch | ||
| RIC-2586 | UI : Forgot Password link shows for users who do not belong to a Forgotten Password Policy | Authentication | ||
| RIC-2645 | UI: "No result found" text message is not central aligned | password policy | ||
| RIC-2655 | "Need Help" link not visible on Login page | *** not specified *** | ||
| RIC-2705 | Alt actions broken because sessions API doesn't accept non-LDAP users | Authentication | ||
| RIC-2743 | Studio jobs type column not updated to new names | Studio | ||
| RIC-2747 | Forgot password link not visible when multiple policies are enabled | Authentication | ||
| RIC-2814 | Studio jobs are getting org.postgresql.util.PSQLException | Studio | ||
| RIC-2820 | Update Password Uses Default Policy Regardless of Other Applicable Policies | password policy | ||
| RIC-2822 | Accounts locked in LDAP cannot be unlocked via RI UI | password policy, People | ||
| SID-65 | Add button and input HTML elements Not showing correct behavior for Ip Address and Country Code rule. | undefined | ||
| SID-68 | Incognito/Browser issue to load ShieldID in RI application | undefined | ||
| SID-69 | "Loading" in text displayed instead of spinner. | undefined | ||
| SID-73 | UI:Incorrect rule name displayed on ShieldID Rules page | undefined | ||
| SID-74 | BE:Incorrect rule name displayed on ShieldID Rules page | undefined | ||
| SID-83 | Edit button displayed for AWS managed rules in ShieldID Rules page | undefined | ||
| SID-86 | IP Set description getting removed on adding or deleting IP from rule | undefined | ||
| SID-90 | Name change not allowed for Rate Limit rules | undefined | ||
| SID-91 | UI Issues: Ellipsis, Edit button, popups, fonts as compare to application standards | undefined | ||
| SID-94 | Issues in validation messages and message popup | undefined | ||
| SID-95 | Add Sorting functionality for list in ShieldID application | undefined | ||
| SID-98 | Results text not displayed on rules tab as well as edit pop up window | undefined | ||
| SID-102 | Delete button still visible even when checkmarks are removed | undefined | ||
| SID-103 | Issue in kebab menu dropdown | undefined | ||
| SID-112 | Alphabet Case issue for finding 'limit' keyword inside rulename. | undefined | ||
| SID-115 | HTML page displayed instead of Overview and Rules tab in ShieldID | undefined | ||
| SID-117 | Support Access, idaas.startup.devSysAdminAccessEnabled, and vanity domain IDP override broken | undefined | ||
Updated on Wed Jun 07 2023 12:49:34 GMT-0400 (Eastern Daylight Time)
Was this article helpful?