Note |
---|
Preview |
CoreOne Admin User Interface
Features
The format of the role claim used to issues permissions can now be defined as either an array or as a separated list. This can be configured on the application level and appropriate UI masks have been added.
CoreOne Application Services
Features
There is a new event that is thrown when a delegated permission is being suspended in the Self-Service Portal.
Breaking-Change: As we now distinguish between the deactivation of a delegated permission (the users deactivates the delegated permission) and the suspension (the user deactivates the representation relationship and thus the delegation will be suspended), the two existing events (Deactivated and Reactivated) were extended by a flag that tells you, whether or not the delegated permission was suspended or not:
WasSuspended
. You might wanna account for that new flag in any of the workflows that you have configured.
...
On the core identity create and update masks it is now possible to set a value for the
valid from
andvalid to
fields of a core identityThe role claim format can be defined on the Admin UI, see documentation here: Role claim configuration
Bug fixes
Prevented changing the core identity type of existing core identites in the update UI mask
Adjusted the allowed maximum length of query strings to prevent an issue of loading long autocomplete dropdown lists
CoreOne Application Services
Features
SAML assertion passing has been added. This allows you to simply pass SAML assertions from an external federation party to tokens.
The format of the role claim used to issues permissions can now be defined as either an array or as a separated list. This can be configured on the application level and appropriate UI masks have been added.
Bug fixes
The
sign_assertions
settings of SAML service providers was mapped incorrectly to the settingencrypt_assertions
. This meant, that even tough you enabled thesign_assertions
settings, assertions were not signed unless the settingencrypt_assertions
was enabled.Fixed an issue where the calculation of theHighestEmploymentDate
included deleted employmentsFixed an issue where attribute sets were constantly reassigned
CoreOne Authentication Services
Features
External logon provider role sync: It is now possible to create a configuration to map external role claims to COS resources
Bug fixes
Fixed an issue with multi values for external logon providers that are used to register a new user
The private policies and terms and conditions checkboxes on the registration masks missed proper translations if the user did not accept them.
Validation has been improved further on the registration mask. The submit form button was not always blocked before the async validation was finished.
When no reset method was available for a user, there was no appropriate log entry in the logs. An appropriate log entry has been added to simplify tracing.
Validation has been improved further on the registration mask. The submit form button was not always blocked before the async validation was finished.
CoreOne HCL System Connector
Improved the feedback messages after a deactivated user tries to login
The
sign_assertions
settings of SAML service providers was mapped incorrectly to the settingencrypt_assertions
. This meant, that even tough you enabled thesign_assertions
settings, assertions were not signed unless the settingencrypt_assertions
was enabledFixed an issue where the federation using SAML failed with an error message sometimes
Fixed an issue where login in with the logon method
multiple target system
failed because of a faulty subject id resolutionFixed an issue which prevented the loading of cshtml templates to override the UI on the login page
Fixed an issue where the loading of additional languages (for example Rumantsch) and overwritten language keys did not work correctly
CoreOne System Connector
Note |
---|
The sytem connector needs to be updated to 8.3.0 as well, otherwise it won’t work anymore. |
Bug fixes
Fixed an issue where saving empty attribute values failed for users in the OpenLDAP system connector
There is a new option to define a deactivated users group. Whenever a user is beieng being deactivated, he will be added to that group.
CoreOne Installer
Bug fixes
The installer now can handle both
aspnetcoremodulev1
andaspnetcoremodulev2
. The later has become the default in Windows Server 2022.
CoreOne Self-Service Portal
Features
There is a new event that is thrown when a delegated permission is being suspended in the Self-Service Portal.
The company list now gets refreshed automatically if a company was being activated
Bug fixes
Breaking-Change: As we now distinguish between the deactivation of a delegated permission (the users deactivates the delegated permission) and the suspension (the user deactivates the representation relationship and thus the delegation will be suspended), the two existing events (Deactivated and Reactivated) were extended by a flag that tells you, whether or not the delegated permission was suspended or not:
WasSuspended
. You might wanna account for that new flag in any of the workflows that you have configured.The CoreOne Suite Shop resource had insufficient rights to order something if a user only had this role
Fixed an issue where invitations links were not correctly loading the invitation
Fixed an issue where delegations were not correctly set to state
Active
after a representative got reactivated
CoreOne Workflow Services
Features
Updated the workflow engine to introduce some new features:
- Old workflow instances now get cleaned up
- New activity to execute SQL queries and commands
- Credential manager to store reusable secrets, connection strings, etc.
- Backing up of all workflow definitions: This only works via API at the moment, not over the UINew workflow activity: AttributeDropDownDefinitions, see https://itsense.atlassian.net/wiki/spaces/IKB/pages/1825669201/Next-Gen+Workflow+Activities#CoreOne-AttributeDropDownDefinition