Release - September 2023

Modified on Tue, 2 Apr, 2024 at 1:43 AM

The following release notes summarize the most recent changes performed on the product.

Allowing admins to define the age of BlockID sessions.
Support for Coalesce SMS gateway
Settings to enable/disable hardware OTP (onespan).
- New screen to configure and test onespan connection.
- Allow users to use hardware OTPs for MFA logins.
- Allow users to use hardware OTPs for step up authentication.
- Introduced a descriptor on the Login Page for the OTP field - this is configurable if you need to change it.

Updated screen to accept principalEntityId and dltTemplateId for the gupshup gateway.
Introduce Authentication Settings API for community admins
Additional logging for the AdminX UI

Bug Fix: When an IDP certificate is uploaded, the key size and algorithm from the signing certificate will be used to sign the SAML response.
Invalid OTP Error when OTP was correct: IE 11 is currently caching for GET requests, sometimes they are sent without headers, so the server returns unexpected results. This resulted in AdminX being unable to decode the request and rejecting the authentication.
Fixed an error on AdminX UI where the accountsperperson and personsperaccount fields were interchanged.
Fixed caching issues which presented the settings for Community B when the user lands on Community A.

Updates to the Reports microservice to facilitate aggregation of data for reports.
- Reports microservice schedules offline, asynchronous, long-running jobs to facilitate aggregation of data and reports download.
- Internal behavior of Reports has changed where the requests to deposit events will be piped through the Events microservice.
A new Events microservice has been developed to capture and store events.
- Update the service directory with the URL for the new Events microservice.
Updated Webauthn microservice to return authenticator type when returning assertion result.
Support for Vodafone SMS gateway.

Moved the hardware key settings (onespan) to CaaS.
Added principalEntityId and dltTemplateId for the Gupshup gateway.
Updated OTP verify endpoint to allow hardware OTPs.
Type of OTP to be recorded in the event E_OTP_VERIFIED.
Changed allowed_time_stamp to 1 hour - this allows API requests to be valid for 1 hour.
Changes to authN service to support changes to IDP signing algorithm.
- Updated to read the signing certificate to derive algorithm, key size and expiry.
- Allowed the user to provide key size and algorithm when using a self-signed certificate.
- Added signature validation to incoming SAML requests.
- Sign the SAML response using the IdP signing certificate.
- Encrypt the SAML response using the IdP encryption certificate.

Allow the caller to call CaaS to bypass caching during a FETCH config call
Fixed issue in AuthN microservice where parsing of certificates without headers would fail.

BlockID 1.9.70 (iOS + Android)

BlockID v1.9.70 is uploaded to the 1Kosmos Play Store & App Store
Enable QR-based wallet & persona restoration on the BlockID application.
Sending additional attributes like device make and model during authentication and onboarding, as required by the Enrolled Devices Report capability on AdminX.

The consent screen didn’t appear in certain scenarios after scanning the QR code from the native iPhone camera.

Version: cp_wn_1.08.06

Cross-signed the Credential Provider’s DLLs through Microsoft. This was required to fix an issue on Windows 11 22H2 workstations where LSA, when enabled, would block the 1Kosmos smartcard driver from loading and resulting in authentication failures.

Version: cp_mc_1.08.00

Added validation to verify if the user is linked to a did. If not, login fails with an error “UserId is not linked.”
Improved logs.
Improvement in performance helps in limiting the issue where the Unlock Screen blacks out after inactivity.

Version: cp_lx_1.08.01