Rilasci

• Improve OpenID Connect state handling.
• Improve read OpenID Connect Discovery and SAM 2.0 metadata error message on time out.
• Improve login sequence time put handling in Control Client.
• Simplify log selection.

• Support for three different user identifiers; username, phone number and email.
• Support for two-factor with SMS and email. Continued support for two-factor with authenticator app.
• Two-factor do not require phone and email to be verified.
• Support for task actions in claim transforms:
  • Return error
  • Start authentication
  • Query internal users claims
  • Query external users claims.
• Support for local _local: claims in claim transforms
• A setting added which make it possible to delete refresh token grants when a user change password.
• Possible to search logs in all environments from master environment.

Bugs resolved:

• It is possible to set a redemption claim on a external user which has already been redeemed.

Resolved bug(s):

• PostgreSQL do not support ! in a Query (LINQLINQ resulting in invalid tenant load.

• SAML 2.0 authentication method, default disable login hint in Control Client.
• Reverse trace logs to match the Control Client log view.
• Show the Logs tab first in the Control Client.
• Change session update warning logs to event logs.
• Log template refresh interval change to 5 seconds.
• Optimize logging.

• Set 24 hours HTTP cache header (cache-control: max-age=86400, private) for OpenID Connect discovery .well-known/openid-configuration and SAML 2.0 SP / IdP Metadata.

• Set the Two-Factor Authenticator time tolerance down to 2 minutes.
• Divide failing login count into groups to make failing login count ready for multiple login types.

Resolved bug(s):

• Remove duplicated error summery in email conformation UI.

Resolved bug(s):

• Change external user ID because of incorrect validation check.

• Change the update properties of external users in the PUT method so that the properties only updated if they contain a value.
• Set the external user properties; authentication method and redemption claim values to lower.
• Do create before delete when changing an external user's ID.
• Allow any origin for /api/swagger/v1/swagger.json.
• Improve emails and add customizable address info footer. The Address information can be configured per environment and in settings:

  "Settings__Address__CompanyName": "xxx",
  "Settings__Address__AddressLine1": "xxx",
  "Settings__Address__PostalCode": "xxx",
  "Settings__Address__City": "xxx",
  "Settings__Address__StateRegion": "xxx"
  "Settings__Address__Country": "xxx"
  

• Prefer to show redemption claim value in the external users list.
• Make it possible to update external users based on the redemption claim value.
• Log refresh token grant not found as warning.

Resolved bug(s):

• Fails if authentication method state cookie is null.

• Link external user support redemption claim. The external users can be redeemed by a redemption claim type (e.g. email) and they are then automatically linked with the link claim type.
• Change submit in post form to improve Chrome custom tab and Android app support.
• Optimize query and fragment redirects.
• Add FoxIDs Control API method UserChangePassword that supports changing the user's password.

Resolve bug:

• Control API do not accept low level roles.