Release Notes
================
New Features
- Added Radius authentication in Reports + Rate Limiting
- Added Authy Authenticator Integration
- Added support for C200 (TOTP) Tokens.
- Added option to enable linked apps.
- Added all linked apps for Microsoft 365.
- Added ‘Sync Users in miniOrange’ option for Database User Store during login.
- Prompt users to set up their 2FA on first login in all flows.
- Option to choose the 2FA Method from configured 2FA Methods.
- Enforce 2FA on Additional Admins from main Customer Admin
- Added IdP Initiated SSO/SLO for JWT apps.
- Enhanced Single Logout Support
- Assign multiple Policy Based Access for Single Browser Extension Apps.
- Group based restriction for password less apps
- Office365 Provisioning using Graph APIs
- Enforce 2FA on Additional Admins from main Customer Admin
- Microsoft Authenticator as the 2FA Method in Adaptive Authentication
Improvements
- Remove dependency of SAML application name from the IdP initiated SSO URL.
- Added option to configure HTTP binding for SLO.
- JWT/Bigcommerce/Thinkific apps attribute mapping with static value support.
- Remove miniorange as a user store option. miniOrange is added as the default user store from now
- Improvements in API as authentication Source
- Improve Single Sign-On Audit & Add Logout Audit
- LDAP fallback authentication ROLE based check for PASSWORD SYNC
- German language support for end-user dashboard
- Allow users to Edit the name of Already Configured Application.
- IDP Session Timeout functionality now works for Broker flow as well in addition to miniOrange IDP (password authentication) flow.
- Send Signature and SigAlg query parameters while sending SAML authentication and logout request using HTTP-Redirect binding
- PKCE support in OAuth implicit grant.
- Added Domain Mapping option to Cognito user store and Oauth IdP.
- Allow sending static attributes from Oauth IdP.
- Update local miniOrange Password after a successful authentication against AD credentials if fallback auth is enabled.
- Export User groups(CSV) under customer admin.
- On-boarding status UI improvement and UI fixes for product settings page.
- Device Restriction: Updated Fingerprint Based Device Identification
- Added miniOrange SMS Gateway(Cloud) in on-premise build as the default gateway.
Bug Fixes
- Fixed failed authentication in case of SAML Domain Mapping flow is abandoned.
- Fixes for BigCommerce On the fly user creation
- Audience URI not updated while Importing SAML metadata.
- Create API does not assign users to the groups if all the incoming groups are not present in the miniOrange database.
- Random Password is being assigned to users in AD when importing users and password sync is enabled.
- Fix to Create an Enabled(Usable with UserLogonName) User in the AD if Password Sync is ON.
- Challenge Options should only be visible when we select Challenge as the action in the Adaptive Authentication page.
- Minor UI fixes while adding 2FA/ Adaptive in Policy section.
- Corrected expiry time being calculated during max integer range.
- Fixes in OIDC flow when Adaptive Authentication is enabled.
- LDAP import fixes during case mismatch
- LDAP connection fixes when the search base had characters like ‘*’ & ‘/’ in it.
- SMS 2FA was fixed when users who had spaces in their phone numbers were imported from AD
- Fix for duplicate emails of users fetched from LDAP server.
- Azure AD Single Logout Fix
- DB Provisioning Fixes
- Logs don’t show up on some windows environments while adding IdP.
Others
- Removal of ConnectWise from the miniOrange IdP
- Added the following apps as default apps in miniOrange along with documentation.
- Spotfire – SAML and OAuth
- Splunk – SAML
- Slack – SAML (just added logo)
- QlikSense – SAML
- QlikView – SAML
- Polarion – SAML
- Creatio – SAML
- HubSpot – SAML
- RemotePC – SAML
- Ultimate Software – SAML
- Marketo – SAML
- Add github browser extension app
- Add Apps to Google Workspace Linked Apps