Release 4.2.2

The log below describes the changes in v4.2.2. More on some of the features in 4.2.2 version of OpenIAM can be found in What's new section.

Issue key	Summary
OE-3517	Access Certification: Dashboard-> Campaign list: Not listing more than 50 campaigns
OE-3486	Make "Name" Column Clickable to Open Item Details
OE-3478	UI Page rewrite: /webconsole/mngsystemlist
OE-3468	UI Page rewrite: /webconsole/authenticationProviders
OE-3467	UI Page rewrite: /webconsole/contentProviders
OE-3466	UI Page rewrite: /webconsole/organizations
OE-3453	Table search: Autocomplete filter state inconsistent with applied filter
OE-3452	Fix Property Source Order
OE-3442	UI Page rewrite: /webconsole/resources
OE-3441	UI Page rewrite: /webconsole/groups
OE-3440	UI Page rewrite: /webconsole/roles
OE-3438	Access Control → Resource and Organization pages throw 500 error
OE-3435	Duo Authentication: Path needs to be updated
OE-3431	Administration->Log Viewer-> Date field is not displaying Audit log records table
OE-3430	Optimize Autocomplete Component Data Loading
OE-3429	Documentation links page is broken
OE-3426	Edit auth provider menu is broken
OE-3425	Administration->Mail configuration-> SMTP Username is not getting removed when user tries to delete and save.
OE-3424	Synchronization: Error on deselecting uploaded csv file
OE-3423	Layout issue with dynamic record count - Extra space below pagination when changing page size.
OE-3416	Synchronization search is not working properly
OE-3415	Administration: Page templates-> Proper validation needs to be displayed when user clicks on save button without mandatory fields.
OE-3414	System Configuration: Organization: Screen goes blank on deselecting the 'Organization Hierarchy used by the UI Templating Engine' dropdown.
OE-3413	4.2.2 upgrade failure-> Due to NullPointerException could not start application.
OE-3411	Color of buttons in 'Select access' should be aligned
OE-3410	Cannot save row after editing access duration
OE-3409	Mailbox configuration — sensitive fields are shown as plain text
OE-3408	[Selfservice] My Groups shows empty page
OE-3407	'My identities' and 'out of office assistant' options seen on Selfservice my info page, irrespective of the selection from sys config
OE-3406	[Selfservice] Revoke Access for user - request gets created for the logged in user
OE-3404	Parent resource entitlement gets added as a child resource entitlement
OE-3402	Access certification: Self service-> User Access Review-> Pagination Dropdown Value Mismatch on User Tab
OE-3400	Not possible to add new custom field from connector configuration page
OE-3399	Not possible to save custom attribute value options
OE-3397	'New Group' view request has empty approver details
OE-3396	[Create Group Request] On submitting a group request - user gets redirected to Edit Group blank page with error message
OE-3395	It is not possible to copy full groove script pass from Groovy Manager
OE-3394	New edition of Groovy script doesn't take place immediately
OE-3392	User search dropdown doesn't allow to input login
OE-3387	Dropdown change value bug
OE-3382	Disable action buttons on dashboard based on campaign status
OE-3381	REST API /rest/api/user/admin/get/{id} does not return user entitlements
OE-3377	Remember Me text is missing on login page
OE-3375	Audit log: Extend_Access_certification_campaign -> Description as Expire Access certification campaign
OE-3374	[Direct Reports - Manage Identities] Search User identity API gets executed twice every time on the Manage Identity table
OE-3373	[Direct Reports - Manage Identities] Refresh button missing in Action column
OE-3372	Provisioning: Leave with Pay: UI of description text field requires space
OE-3369	Prevent force reload of the page after Groovy script is saved
OE-3368	Cannot use just created Groovy script, error is "Groovy Script does not exist"
OE-3367	Groovy script editor - cannot create new script
OE-3366	4.2.2 upgrade failure - Fix Cassandra reference in the Docker Compose
OE-3362	Audit log: IT_POLICY_RESET_BY_USER -> Need to update the info with consent configuration name
OE-3361	Consent configuration: When Consent name is too long, system needs to show proper error
OE-3360	Selfservice - End user is not able to change password from selfservice
OE-3358	UAR - Use new endpoint to fill Entitlement details
OE-3357	Access certification: Application Admin -> Not able to view the access needs to be reviewed
OE-3356	Access certification: Reviewer's Manager -> Not able to view the access needs to be reviewed
OE-3355	Increase USER_TYPE_IND length
OE-3351	Access certification: Dashboard -> Dropdown Selection in Dashboard Causes Infinite Loading When More Than 20 Campaigns Exist
OE-3347	Impossible to track escalation of UAR request from audit log
OE-3342	Access certification: Progress state is not updated in Self service & Dashboard
OE-3337	[Direct Reports] get user subordinates endpoint `/api/users/subordinaries/<userID>` executes twice on Direct Reports page
OE-3336	[Direct Reports] Unable to Reset Password
OE-3330	Edit Managed Sys functionality shows blank screen after navigating from Policy Map Scripts
OE-3329	Groovy Manager: Edit Script -> Many scripts is failing compilation error when user tries to save it
OE-3328	Expose Java applications metrics for Prometheus
OE-3327	Web Console Shows null in Language Fields in Metadata Type create screen
OE-3325	The description is marked as a mandatory field, but user is able to proceed without it.
OE-3321	Scripts in the view should be ordered in alphabetic order
OE-3320	404 Error when clicking on Policy Map in Managed System
OE-3316	Remove 'Participate in Access Certification'
OE-3308	[Select Rights from Profile] Unable to delete Access Profile
OE-3307	Saving Groovy script without changes erases entire script
OE-3303	Access certification: Reminder and Escalation email templates
OE-3293	Access Certification: cannot save config with Scheduled interval set
OE-3292	Initiate and Cancel Bulk Request actions trigger an endless loop of repeated API calls
OE-3291	Access certification: Manager of Access review -> Entitlement view shows duplicate/irrelevant records
OE-3288	Exception in Connector status after adding test connector script in Groovy Manager
OE-3287	Error page appears on clicking 'edit provider' from 'edit URI pattern' page
OE-3283	[User Search] 'Department' and 'Start Date' appear empty in Search Results table
OE-3282	Sys Config - Full Name Ordering table does not have display name
OE-3281	[User Search] Configured Additional Criteria (Application, Group, Role, Organisation) not visible on search page
OE-3279	[User Search] Unable to add search criteria 'Application' and 'Extended Attributes'
OE-3278	[User Search] Issues in User search by ROLE, GROUP and ORG
OE-3276	UI UAR: Polling issue
OE-3275	Unable to drop nodes on Auth Rule Screen
OE-3273	Enable TLS encryption for Redis in an RPM installation
OE-3264	Access Certification -> Campaign executes without data when user has no roles/groups assigned, resulting in missing pie chart and log errors
OE-3263	Access Certification: Reviewers -> Supervisor -> Campaign execution fails when reviewer is User Supervisor with supervisor type assigned
OE-3262	Access Certification: Reviewers -> Group -> Entitlement review progress not synchronized in main entitlement view across group members
OE-3260	Access Certification: Extend Campaign - cascade extension
OE-3259	Access Certification: Expire Selected Campaign -> Expired campaign review screen shows all entitlements under each entitlement instead of individual record view
OE-3258	Access certification: User Access Certification -> Incorrect expiration mail triggered to user and reviewer after Access Review completion in Self Service
OE-3257	[Selfservice Create Request] Unable to delegate request
OE-3256	Change to bitnamilegacy etcd version for docker
OE-3255	Community images not working with openiam-docker-compose
OE-3253	Drag and Drop doesn't work on Auth Rule
OE-3250	Access certification: Application Certification -> Application Certification allows saving without Application after execution – validation missing
OE-3249	Access certification: Application Certification -> Issues with Select/Exclude Entitlements (Not retained, Duplicate selection allowed, Exclusions not applied in Self Service)
OE-3247	Unable to delete user in template view
OE-3245	Access certification: Application Certification -> Application name not displayed in Applications tab after saving selected/excluded entitlements in Application Certification
OE-3240	Synchronization: Unable to select previous version of csv file from dropdown
OE-3239	Access certification: Access Certification execution fails silently when no reviewers are assigned -> user-friendly error not displayed
OE-3238	Access certification: Popup misaligned due to dynamic page scroll across tabs – requires scroll adjustment
OE-3237	Selfservice 'My Info' appears blank for the user when Out Of Office assistance assigned
OE-3236	Editing a user by updating attributes to null is not reflecting the changes
OE-3235	Access certification: Risk Event Driven Certification -> Type of Certification name needs to be updated
OE-3234	Groups: User is not able to delete a group
OE-3233	UI Access certification: Report -> When user tries to generate report we are getting error
OE-3232	Access certification: Delete Campaign -> Logs Failure record when user tries to delete campaign
OE-3231	Access certification: Expiration Policy -> Extend Expiration for (days) throws unknown error when entering more than 10 digits – show user-friendly validation
OE-3228	Synchronization: CSV preview after uploading does not contain vertical scroll while synchronization
OE-3225	Organization doesn't appear in user search results
OE-3224	[Create New Group] 'Is Visible' flag default value false, but appear as true after save
OE-3223	[Selfservice Create Request] Update session API called for every character entered in Reason For Request field
OE-3222	[Selfservice Create Request] "ADD TO CART" button is present on the select access page for the empty line (managed sys with no access)
OE-3221	[Selfservice Create Request] Application description missing on selecting the service catalog select category page
OE-3220	[Selfservice Create Request] Double API calls in catalog
OE-3219	[Selfservice Create Request] Unable to submit request using 'Select Rights From Profile'
OE-3217	[Selfservice Create Request] Cannot select access rights in catalog
OE-3216	[Selfservice Create Request] Page scrolls into infinite
OE-3215	Access certification: Reviewer -> Remove Reviewer option enabled when only one reviewer is present
OE-3214	Access certification -> New/Edit Access certification -> Select users -> Pagination issues
OE-3212	Access certification -> Error message not user-friendly when Access Certification Name exceeds 50 characters
OE-3211	Access certification -> Pagination change shows “No Records Found” on pages other than first
OE-3210	Access certification: Search Access certification -> Search works only on first page – not functional on other pages
OE-3206	[certification] UI improvements
OE-3205	[certification] UI allows to submit review twice
OE-3204	UI [certification] execute campaign many times by instant click
OE-3203	Business Rules: User is getting error while adding groovy script in business rules
OE-3201	Business Rules: Users are able to create action groups with duplicate names
OE-3200	Business Rules: Screen throws error when user searches using '#'
OE-3199	[certification] Small UI improvements
OE-3198	[certification] User preview by risk API doesn't work
OE-3197	Business Rules: User should not be able to save business rule until all mandatory fields are filled
OE-3196	[certification] Submit all select even approved items
OE-3195	Unable to create new Authentication Provider
OE-3193	Authentication provider: In Edit screen when user click on Create new provider opens Edit page
OE-3192	Certification UAR: Not possible to add more users into selected user after cert was saved
OE-3191	Business Rules: Unable to terminate a user
OE-3188	Handle situation when campaign step falls into more than one step
OE-3186	[Certification] Null value issue with 'send reminder after days' and 'number times to send a reminder' fields on Reviewer page
OE-3185	[Certification] Change UI label for days of Campaign
OE-3180	Access certification: UAR Count needs to be updated
OE-3178	Access certification: Manager of access reviewer is not getting notified through mail
OE-3177	UI Access Certification -> Screen is dynamic and infinite scrolling
OE-3176	Access certification: Reviewer -> Mandatory should be true for Reviewer 1 by default
OE-3172	Groovy Manager: User is unable to create a groovy script - Compilation Error
OE-3171	UI multiselect dropdown needs to display selected values properly
OE-3170	Access certification: Mail template issues
OE-3168	Access certification -> Self service -> Entitlement View: show actual status of step approveness
OE-3167	Synchronization page UI is distorted for CSV
OE-3166	Null dropdown while adding new resources in Role Entitlements
OE-3165	Business rule: able to save the rule without mandatory field
OE-3163	Success safe message appears for only one moment
OE-3160	Get rid of synchronous connector type in synchronization
OE-3159	Access certification: Updating Selectiontype without value is not displaying proper validation
OE-3158	Create Access Request does not provide entitlement to the user after successful approval
OE-3155	Sync history should show only events related the sync config
OE-3153	Merge 4.2.1.15 into 4.2.2
OE-3152	User admin: Issues
OE-3151	Migrate to Sonarcloud
OE-3150	User Activation via email link is not working
OE-3146	If a parameter is configured to be a securestring but is not one it is shown in logs in the error message
OE-3145	Create Garbage collection job to delete old non-prod images in our docker registry
OE-3144	Rework api on getting entitlement details to include data for graphical chart
OE-3141	Cannot add action for BR, screen became blank after selection
OE-3140	Field content is overlapped on edit URL pattern
OE-3139	Synchronization: When clicking 'Sync now' there is no success message about sync started
OE-3136	Wrong message on clicking 'View Direct Reports' from Selfservice
OE-3135	[Selfservice] Create Request for others - request gets created for the logged in user
OE-3133	Administrative actions is not working
OE-3132	Repeatable call of validate API on change password screen
OE-3131	Administration -> Mail configuration -> Issues
OE-3130	User admin: Create new user -> Not able to create user in template view
OE-3128	Fido / Web authentication: Throws error
OE-3126	BeanSearchAutoComplete not correctly initialised
OE-3125	Re-write approval API by access review item
OE-3124	Connectors: Connector Configuration -> System throws 500 & 400 error when user click on Connector configuration
OE-3123	Provisioning: Managed system -> Edit -> Attributes Issue
OE-3122	[SelfService Create Request] Unable to select user while creating request by cloning user rights
OE-3121	UAR: Entitlements User list view REST API
OE-3119	[Selfservice] Pages from Approval Dashboard are not loading (except View in-box)
OE-3118	Create Auth Provider page appears blank
OE-3117	Administration: About OpenIAM -> 404 error
OE-3116	Provisioning -> Synchronization -> Issues
OE-3112	TextInputComponent does not honour type=number
OE-3109	Left menus for re-written in react pages is not working
OE-3108	Problems on managed system config page
OE-3106	Export User: The exported CSV does not contain the proper columns
OE-3104	Edit user in webconsole is blank page
OE-3102	Save groovy script from UI of batch tasks erases the content
OE-3101	Sync config page issues
OE-3100	Dropdown issues
OE-3099	Fix OpenIAM installation on RHEL 9.5/9.6
OE-3096	Create new sync config page hangs
OE-3095	SoD violation: On selecting the violation the screen freezes
OE-3092	Edit user: Not able to remove the non-mandatory field related to user information
OE-3090	UI Page rewrite: /webconsole/users
OE-3089	Cannot save changes in System Configuration on tab Organization
OE-3088	URI Pattern create page is broken
OE-3086	Administration -> Mail configuration -> Screen gets freezed when user select dropdown value
OE-3084	Change password action is prohibited due to blinking on the screen
OE-3083	Policy -> Delete Authentication rule -> Needs to be updated
OE-3082	Self service: Access management -> New user -> Not able to create user
OE-3080	UI Page rewrite: /webconsole/access-certifications
OE-2593	Mapstruct tests: "PolicyAttributeMapper" to "UserToUserMembershipXrefMapper" (inclusive)
OE-2592	Mapstruct tests: "GroupAttributeMapper" to "PhoneMapper" (inclusive)
OE-2591	Mapstruct tests: from the first one until "FidoAuthenticatorMapper" (inclusive)
OE-2589	Add Related account via API
OE-2588	EBS Connection Connection Closed Error
OE-2587	Wrong behavior for Criipto and Duo authentication if used "Select auth type" page
OE-2586	RPROXY Auth Types NOT working
OE-2585	Improvements into helpdesk functionality
OE-2584	Mail Box configuration password is visible as plain text
OE-2583	Bug adding more search criteria
OE-2579	Improve upgrade script (rpm) to work correctly without Internet connection in a box
OE-2578	[DevOps] Add support for MacOS using the M1/M2 chips
OE-2577	IDOR vulnerability in Task screen
OE-2576	When manager/admin resets password for a user, expiry date/grace period are not updated
OE-2574	Introduce security vulnerability scanning for jars
OE-2573	Prevent end user clicks save button right after performing administrative action on edit user page template
OE-2572	Just created user was added to role by BR but identity wasn't generated
OE-2567	Vulnerability related to handling of consecutive forward slashes in URL validation in postBackUrl parameter
OE-2566	Device Registration leads to invalid error dialog
OE-2565	[DevOps] Create rpm-utils for 4.2.2
OE-2564	Enable dropdown for metadata in webconsole edit user
OE-2562	Session cookie vulnerability
OE-2561	Postback URL parameters get truncated in login page
OE-2560	Oauth token refresh is not returning token
OE-2559	Refactor ServiceNowIncidentRequest.toJsonObject
OE-2558	Error when saving user multiple times in short period of time
OE-2557	Modify CSF rules in proxy
OE-2555	Include the Conduent vulnerabilities fixes into OpenIAM
OE-2554	Handle DUO_AUTH in rproxy
OE-2553	Vulnerability: Apache Commons Text - need to upgrade
OE-2552	OpenIAM Vulnerabilities
OE-2551	User cannot approve access request in some cases
OE-2550	Upgrade to the latest version of JanusGraph
OE-2549	Optimize API calls on direct report page
OE-2548	Cannot override null attribute value by saving user via template
OE-2547	Bug when submitting new hire request with auto-approved step and requester has lots of direct reports
OE-2546	Terminating users via SelfService Admin Actions should trigger a workflow but remain compatible to process requests without invoking the workflow
OE-2545	Alphabetical Search (intern)
OE-2543	Add error messages for Criipto authentication
OE-2541	Fixes for batch tasks on schedule
OE-2540	Update OpenIAM services to support multiple queues
OE-2539	Update the Active Directory connector to support multiple queues
OE-2538	Separating queues for password changes and synchronization
OE-2537	Add groovy for generating callback URL for Criipto authentication
OE-2536	Cache-control header should be better set for static content
OE-2535	Show proper comments to the delegatee user if the actual approver is out of office
OE-2534	Encrypt password type attribute while saving simulation request
OE-2533	Unable to upgrade Azure via Terraform
OE-2525	Rewrite `mailbox-configuration/edit.jsp`
OE-2524	Rewrite `/revoke-bulk-access`
OE-2523	Rewrite `/revoke-access`
OE-2522	Rewrite `/create-bulk-request-select`
OE-2521	Rewrite `/selfservice/createRequestSelect`
OE-2520	Create Request Pages (Selfservice)
OE-2519	The `/selfservice/myInfo` page needs to be fixed
OE-2518	Oauth PKCE Grant flow disable client secret check
OE-2516	Organization Type with a number in its name doesn't appear in the search results
OE-2515	Develop procedure of archiving indexes in ES
OE-2511	Give JanusGraph (rpm) 1Gb RAM
OE-2509	Remove `SimpleDialog` in favour of `ConfirmDialog`
OE-2508	Group management in self-service
OE-2505	Update the OpenIAM mobile app for iOS and publish to the App Store
OE-2503	Customer reported vulnerabilities
OE-2501	Edit role workflow request is not properly working
OE-2500	When direct report page is in bulk mode need to hide action buttons
OE-2497	Cannot do cert authentication in ESB
OE-2496	Update Redis helm to the latest 17.7.x chart
OE-2490	Configure staging.openiam.com to use certificate authentication
OE-2489	Add MySQL 8 support
OE-2486	Rewrite existing security-keys page into React
OE-2485	Yubikey integration
OE-2484	Refactor request & form templates
OE-2483	Disable Redis snapshot
OE-2481	Group management in selfservice portal
OE-2478	Add ability to have more than one edit user page in selfservice
OE-2474	Add support for RHEL 9 and Rocky Linux 9
OE-2471	[Connectors] Google Workspace
OE-2470	[Connectors] FreeIPA
OE-2460	Include OAuth2 authorization endpoint in consent scope
OE-2458	Password validation error if user has different logins for OpenIAM and other system
OE-2455	Use multiselect in user Access Report criteria
OE-2454	User's access is not displayed in the table
OE-2453	Validation not working for Select supervisor field on user template in Selfservice
OE-2449	Select user on conversion page must work as normal user drop down search but among direct reports
OE-2448	Inactive and Terminated users are not appearing on the Direct Reports table
OE-2446	Implement Custom Logout Redirect in OpenIAM
OE-2445	Button of conversion is not appearing
OE-2444	Need a confirmation pop up when clicking on save button on New Hire Form from Selfservice
OE-2443	Edit user workflow error is not displayed to end user
OE-2436	Workday Synchronization is throwing exception in Connector Logs
OE-2435	Security vulnerabilities in 4.2.1.8 (Self Service) Content security policy not implemented properly
OE-2425	Revoke access request - unable to complete
OE-2422	Expand list of user statuses which can't be found in selfservice if flag is enabled in system properties
OE-2419	Add/remove supervisor in selfservice using workflow engine
OE-2418	Can't reset password for user right after it was synced from AD
OE-2417	WEB AUTHENTICATION doesn't work correctly if used managed system login module
OE-2411	Consent Management: Issues found while testing
OE-2410	Introduce new option 'conversion' in direct report page
OE-2406	Add a "description" column in view of access request
OE-2405	Not able to open page 'direct reports' when one of direct report has lots of sub reports
OE-2404	Add ability to limit metadata type list in dropdown when creating user object
OE-2402	Description given upon user's termination is not saved in audit logs
OE-2400	Disable/enable of identity is skipped due to managed system not found in cache
OE-2399	Add in audit log group provisioning info
OE-2398	Add email notification for admins when manual task is created
OE-2397	Improvement for manual access assignment
OE-2395	Can't instantiate group pre/post processors
OE-2394	User must be able to apply a custom message when applying cart validation for self-service catalog
OE-2390	Update OpenIAM workflows to allow integration with ticket system
OE-2386	Add support for Organization level filtering for the Webconsole -> User manager
OE-2384	User sync from source (AD for ex) without provisioning throws lock exception on MsSql DB
OE-2383	Business Rule calculation doesn't take into account whether the user's entitlements are end dated or not
OE-2382	Update RPM deployment on RHEL with STIG security template
OE-2381	Refresh identity button should be available only for active identities
OE-2380	Identities of direct report must contain only active identities
OE-2376	Monitor RabbitMQ
OE-2375	Infrastructure monitoring for RPM deployments
OE-2374	Prometheus monitoring for RPM Deployment including HA
OE-2372	Automate Tanzu deployment using Terraform
OE-2370	Deploy OpenIAM to Tanzu (non-HA)
OE-2369	Analyze requirements for deploying to Tanzu
OE-2367	Improve httpd updating
OE-2366	In Self-Service Password Reset extended unable to select multiple managed systems
OE-2365	After BR service restart no rules are applied to user
OE-2362	Add column identity into table of supervisor/subordinates and related/primary accounts
OE-2361	Bulk password Reset Admin panel
OE-2351	Deleting a Business rule produces the message "undefined"
OE-2350	Unable to delete a target that has defined targets
OE-2342	When you save a business rule and there is an error, you are not given an option to correct
OE-2341	Migrate from ES -> Opensearch: java code
OE-2340	Migrate from ES -> Opensearch: documentation
OE-2338	Migrate from ES -> Opensearch: swarm
OE-2337	Migrate from ES -> Opensearch: kubernetes
OE-2332	Business rules improvements
OE-2331	Save user with entitlements - did not update user info in entitlements ES doc
OE-2330	LDAP connector: if group is not assigned to a user return warning message back
OE-2325	Improve audit log message for account being locked due to failed authentication attempts
OE-2322	Forgot username email template should be improved
OE-2319	`access_token` format should be configurable
OE-2318	OAuth: PKCE Flow requires JWT parameter
OE-2314	Improve user recon performance
OE-2313	Can't create user with lastName Null
OE-2312	Fix Cassandra configuration in HA installation
OE-2311	Consent history for end user
OE-2309	Improve the no-internet RPM install
OE-2308	Upgrade the Apache version in both docker and rpm to 2.4.57 to add security vulnerabilities
OE-2307	DevOps Tasks (4.2.1.6 and 4.2.1.7)
OE-2306	When number of role/group is big (>10K) UAR may not contain needed user's access
OE-2302	JanusGraph get rid of the root user
OE-2298	Bulk password reset in Self-service
OE-2296	Validate that the user has changed a certain number of characters in their password from the previous iteration
OE-2292	Add ability to skip policy map performing white setPassword operation
OE-2290	Groovy script for relay state
OE-2289	URI pattern - add ID field
OE-2288	Batch task can't be scheduled when using MSSQL DB
OE-2287	Add support of Twilio new API path
OE-2284	Can't select language on login page
OE-2282	Group entitlement end date not getting saved from admin console
OE-2281	Introduce SonarQube in our build process
OE-2280	Migrate from Elasticsearch to OpenSearch
OE-2279	UI Page Rewrite: Resource Questionnaire
OE-2278	UI Page Rewrite: Adaptive Risk
OE-2277	Groovy Elasticsearch: groovy-manager Elasticsearch connections stop working after a while
OE-2276	Incorrect helm versions in our Kubernetes project
OE-2274	Support OpenIAM docker scenario on Ubuntu 22.04
OE-2273	[UAR] Only one Campaign record appears on the User Access Reviews page
OE-2272	Escalation of the request didn't change assignee of the task
OE-2271	Admin interface to view users consents
OE-2270	Check infra
OE-2269	DaysToComplete for campaign is not counted correctly
OE-2268	Consent agreement feature implementation
OE-2267	User interaction with consent agreement
OE-2266	Account unlock fails when the status of the OpenIAM identity is different than selected managed systems
OE-2265	Upgrade the Apache webserver in the RPM and Docker distributions to resolve vulnerabilities
OE-2264	Manager name in MyInfo should include the full name
OE-2263	User name in the self-service portal header should be updated to show the full name
OE-2262	Implement drag and drop for MUI Table
OE-2257	User self-service direct reports is not rendering completely
OE-2256	RPM installation log
OE-2255	Consent management
OE-2254	Resolve vulnerabilities
OE-2253	Incremental user sync has lock exceptions
OE-2251	Redis K8 container has critical vulnerabilities
OE-2250	Lock exceptions when we sync groups from AD to OpenIAM using SQL Server
OE-2249	Access certification reminders are not being sent
OE-2246	Azure K8 deployment with Cassandra
OE-2245	Docker deployment on RHEL 8.8
OE-2244	RPM deployments on RHEL 8.8
OE-2243	Deployment targets (4.2.1.6)
OE-2242	Access request report improvements
OE-2241	Workday sync fails when there is JSON Array in the JSON document
OE-2240	UAR refactoring for big data
OE-2236	Self-service top menu buttons must be RBAC controlled
OE-2233	Cover by unit test feature of OE-2220
OE-2230	Access certification review page (MSSQL DB): no paging on summary/pivot view/admin tab
OE-2229	Add refresh button for identities in webconsole
OE-2228	Introduce SonarCube into our CI pipeline
OE-2227	Set sendEmail/sendNotification auditEvent under primary audit action
OE-2226	Scope report is not getting generated
OE-2225	Add button to return to campaign layout page
OE-2221	Wrong total count of tasks on UAR campaign stat page
OE-2220	Delete certification tasks if certification config is deleted
OE-2219	Can't save certification when added escalation to a review step
OE-2218	Fix misconfiguration of the HA cluster
OE-2217	Edit user from selfservice should be auto-approved if requester is an approver
OE-2216	Left menu is not working 'edit user' in webconsole
OE-2215	Conduent second day roll out
OE-2214	4.2.1.6 Customer priorities
OE-2213	User reconciliation fix for 'do nothing and report' use case
OE-2212	Business rule services go down when one of RabbitMQ nodes goes down
OE-2211	SERGEY - move 4.2.1.5 PRs into 4.2.2
OE-2210	SLAVA - move 4.2.1.5 PRs into 4.2.2
OE-2207	ANTON - move 4.2.1.5 PRs into 4.2.2
OE-2206	LEV - move 4.2.1.5 PRs into 4.2.2
OE-2202	Initiate Bulk Request DirectReportee selection issue
OE-2201	When user's access gets end-dated the identity should become not active and vs when end-date erased
OE-2199	When using MSSQL database, API search tasks doesn't support paging
OE-2198	Add batch task to provision future and deprovision expired access - [Built-in solution for 4.2.2]
OE-2197	If user has request in simulation, OpenIAM doesn't allow to delete user
OE-2196	New hire form submitted without accesses selected throws error when approve approves the request
OE-2195	Create request API submits start/end dates in requester timezone
OE-2194	Page of user entitlements improvement
OE-2193	Enabling System Property: Revoke roles and groups after employee termination leads user into a provisioning loop
OE-2191	User access report should only include the entitlements that are included in the search filter
OE-2190	Unable to update Workday attribute user_name with current SOAP API
OE-2189	Retry provisioning feature
OE-2188	External link (API) called on every react page
OE-2187	Can't generate identity for managed system w/o policy map with 'password' type
OE-2186	Call sync postprocessor once after all sync_threads are completed
OE-2183	Add ability to send header information for SMTP
OE-2181	PROVISIONING_ADD/MODIFY shows a warning related to Business rules
OE-2180	Extend direct report page with option of 100 and 250 users per page, add option to select all presented on the page
OE-2178	View simulation request must have header with user name
OE-2177	Delete All simulation requests not working
OE-2175	Support Comment attribute for AD users out of the box
OE-2174	Parent group attributes are lost after connecting a child group
OE-2173	Add option to skip writing search results even in debug mode for .NET/PS connectors
OE-2172	Searching for users with an accent fails
OE-2171	Add ability to unlock user account for AD connector
OE-2170	Return DN from AD if Path was requested during the search
OE-2169	Remove OpenIAM identity from managed identities (selfservice)
OE-2167	Enable Contractor Ops, Initiate Bulk Req buttons should be Access Driven
OE-2166	Saving Managed System removes all simulation requests
OE-2165	Column search for direct reports in self-service does not work correctly
OE-2164	Webconsole - Advanced Search for users can only list first 500 users
OE-2163	Provision failure requests report is not working on dev
OE-2157	Resolve vulnerabilities in containers used for K8 deployments
OE-2156	4.2.1.5 - Release tasks
OE-2154	Carried forward tasks (4.2.1.6)
OE-2153	4.2.1.5 - DevOps Release Tasks
OE-2152	Introduce Graph DB to prevent cycling issue in fetching Supervisors and Subordinate
OE-2151	Compare button access certification doesn't work
OE-2150	Implement connector response custom groovy handler
OE-2149	Synchronize Group and User Relationships between OpenIAM and Active Directory (AD) and AD Group synchronization for nested groups for AD Group Sync
OE-2148	RHEL 8.7 deployment on Azure
OE-2147	RHEL 8.7 on AWS
OE-2146	RPM Deployment targets
OE-2141	AWS: TF module with MS SQL Server
OE-2140	AWS: TF Module with Postgres and Redis (PaaS)
OE-2139	AWS: TF module with MariaDB and Redis (PaaS)
OE-2138	AWS: Helm deployment
OE-2137	Azure: Azure TF module for Cassandra
OE-2136	Azure: Azure TF module for Elasticsearch
OE-2135	Azure: Helm deployment
OE-2134	Azure: Azure TF module with Postgres and Redis (PaaS)
OE-2133	Azure: Azure TF module with MariaDB and Redis (PaaS)
OE-2132	K8 1.25.6 support on major cloud providers
OE-2130	Inconsistency in Data (selfservice)
OE-2129	Add return code for Skip record but with success
OE-2125	Managed systems dashboard shows 'no active connector found' for Rexx and Salesforce MS
OE-2124	Revoke Access Request email notification contains ACCEPT/REJECT buttons for auto approved request
OE-2123	Some Unicode chars can't be sent over email
OE-2122	Auto Generate Password throwing error -> Only 4 repetitive characters allowed
OE-2121	Do not generate provision request if no changes has been done to user
OE-2118	Logo on logout page is always default OpenIAM logo
OE-2117	Bug on filter AUDIT_ACTION for export audit logs to syslogs
OE-2116	Clone managed system - do not clone policy map correctly
OE-2115	Fix changePassword vulnerabilities
OE-2114	Display name of objects in audit instead of IDs
OE-2113	Managed system clone is broken - OU mappings are not cloned
OE-2112	Email notifications are being sent to CC and BCC participants of mail even though Mailbox configuration is in Simulation Mode (when email is sent through post processor)
OE-2111	Document changes regarding max tries for password validation
OE-2110	Terminating error code improvements
OE-2102	Managed system credentials should be maintained in the vault
OE-2100	Design
OE-2071	Podman support
OE-2069	Docker support for Ubuntu 24
OE-2068	Rancher
OE-2066	Deploy to GCP Kubernetes 1.27
OE-2065	Deploy to AWS Kubernetes 1.32
OE-2064	Deploy to Azure Kubernetes 1.32
OE-2036	Validate AD service account password presence before connecting
OE-2034	Error on rproxy. Incorrect approvedAuthLevels value
OE-2033	Hide terminated users in self-service
OE-2032	Introduce auto approval for access revocation request
OE-2031	Self Service - During user creation if custom attribute is left empty later if user tries to modify custom attribute then it is not changed in user profile
OE-2030	Value for custom attribute is not getting updated when end user is modifying through self-service
OE-2029	Add filtering options for direct reports in self-service
OE-2028	Business Rule Screen remains editable for user which has read-only role
OE-2027	GraphID Cache not refreshed if RabbitMQ messages failed to deliver
OE-2026	When custom attribute value is changed for a user from SelfService form; assigned roles are getting removed from the user
OE-2025	UI becomes unresponsive when changing the User Status using Administrative Actions
OE-2024	Add audit log into sendEmail method
OE-2023	When user tries to validate a custom attribute using custom validator script, it throws internal error on UI on self-service but it doesn't display which attribute it is related to
OE-2018	Add ability to expire campaigns
OE-2016	Self-service forgot password - should always show the MFA options
OE-2011	Revoke access workflow does not remove entitlements in the target system
OE-2010	Create user from orphan doesn't set metadata type even if one was selected
OE-2009	Performed actions are not stored in audit for add/modify user
OE-2008	Stop logging in audit of provisioning_modify/provisioning_add Business rules that were not applied
OE-2006	Add a configurable option where entitlements can be removed if a reviewer does not complete the review
OE-2004	Enable/disable contractor operations button is absent from the direct reports page
OE-2003	Introduce column Lock marker into popup for manage identities of direct reports
OE-2002	The user table cannot be populated if there are direct reports without an email address
OE-2001	Policy map - custom user attribute limit
OE-2000	Revoke access request - revoke all user's access
OE-1999	Troubleshooting utilities for all .NET/PS connectors
OE-1998	Users are not able to checkout from the cart
OE-1997	Self-registration fails due to wrong code, even if no code has been asked
OE-1996	UI Page rewrite: all authentication provider pages
OE-1995	UI Page rewrite: /webconsole/patternEdit
OE-1992	UI Page rewrite: /webconsole/br
OE-1991	UI Page rewrite: /webconsole/ip-location-manage
OE-1990	UI Page rewrite: /webconsole/synchronization
OE-1989	Can't open history of my submitted requests
OE-1988	Deep link to create requests doesn't always lead to tab #3
OE-1987	Redis sentinel - Replace Redis with Sentinel for RPM installations
OE-1986	Webconsole - user administration - improve the identities section
OE-1985	Failure reporting for provisioning/de-provisioning operations by managed systems
OE-1983	Webconsole - Approver association screen is cut off on lower resolutions
OE-1982	Webconsole - User admin is missing menu options when logging into /webconsole
OE-1981	Direct reports - Identity operations - should pull the identity status information from the managed system
OE-1980	Direct reports - Operations (Create request, Review access, disable, reset password, identity operations) should be enabled based on role
OE-1979	Customer based priorities - 4.2.1.5
OE-1978	If Manager not having Super Security Role, he gets forbidden page on clicking reset password for his reporter's
OE-1977	Catalog search is broken when searching using top search bar
OE-1976	Direct Reports - User should not be able to perform Disable User, Reset password, and Manage identities for their own account
OE-1975	Provide OTP validation on reset password through direct report
OE-1974	Add description column into access cart table
OE-1972	Password generated by policy map is not saved into OpenIAM DB for non-default managed systems
OE-1971	Bulk entitlement request by managers
OE-1970	Orphan Management report is not generated
OE-1969	Allow to keep only essential audit logs and rotate others
OE-1968	Field description in user-role/user-group etc. relation objects (XREFs) should indicate how access arrived to user
OE-1967	Integration of EU EID by using Criipto solution
OE-1959	AD path validation for user operations
OE-1957	When adding group as a child/parent to another group then group attributes/admin/owner got erased
OE-1953	Fix CSV file preview using selected delimiter
OE-1952	[Entitlement Bulk Operations] "Participate in Access Certification" common field is missing
OE-1951	[Entitlement Bulk Operations] Entitlement Objects pagination is not working as expected
OE-1950	[Entitlement Bulk Operations] Internal Error when clicked Next button without selecting common fields
OE-1949	Direct reports should allow enable, disable, unlock, password reset for a selected application
OE-1948	Change password - extended should not require that the user knows their current password
OE-1947	Allow AD Connector to add user with empty/null 'Manager' attribute
OE-1945	Role and Group with false "is Visible" flag is visible on Webconsole and Self-service portal
OE-1943	Add 4.2.1.4 version in doc
OE-1941	[Entitlements Bulk Operations] Difficult to perform type and search user as Admin and Owner for edit common fields of entitlement
OE-1940	[Entitlements Bulk Operations] "Select All" should consider the filtered entitlements and not all displayed on the page
OE-1939	[Entitlements Bulk Operations] Sort Role name in ascending and descending order is not working
OE-1938	[Entitlements Bulk Operations] Entitlement Type select drop-down content disappears on clicking down arrow
OE-1929	Application vulnerabilities
OE-1926	Fix error which reflects on export user page on payload
OE-1925	Child event's timestamp in the audit log table is not adjusted to browser's time zone
OE-1922	Some Java connectors are logging password into log file. It must be masked
OE-1921	.NET connector core - dependencies update all connectors
OE-1920	Update Exchange connector libraries dependencies
OE-1919	Test Exchange connector against latest version
OE-1918	Improve handling password sync in AD connector
OE-1916	Menu 'About' is missing in DB MSSQL
OE-1898	Enable operation can't be simulated
OE-1897	Fix log rotation of JanusGraph
OE-1896	Simulation request table, date must be with time
OE-1895	Audit for editing system configuration is poor
OE-1894	Multipart responses sender ability for MSSQL connector
OE-1893	Multipart responses sender ability for Generic connector
OE-1892	Work with Kate to document Entitlement Bulk Operation features
OE-1891	Move 4.2.1.3 to CE docker tag
OE-1887	API Usage - Entitlements
OE-1884	Branding customizations for the Self-service portal
OE-1883	Branding and UI Customization - Login/logout/Change password screens
OE-1881	Merge 4.2.1.4 to 4.2.2
OE-1873	Password policy priority is ignored
OE-1869	Add/Delete Attributes for Roles/Groups on Entitlement Bulk Operation Screen
OE-1858	Connectors status notifications (in 4.2.1.5)
OE-1856	Simulation mode improvements
OE-1850	Logging of simulation requests is weak
OE-1849	Bug in access right when linked managed system is deleted
OE-1848	Internal error on save content provider with empty authentication rule
OE-1847	Cassandra does not get started during OpenIAM CLI init
OE-1846	Uninstall script (RPM) does not remove Redis data
OE-1845	Provide httpd_update "without internet" install scenario
OE-1844	Directory Lookup - View User Info - High response times
OE-1843	Add ability to hide items on login page
OE-1842	"404 Page not found" on clicking URI pattern of a page template
OE-1839	Notifications on Synchronization and Reconciliation processes
OE-1838	systemd dependencies
OE-1837	UI Page rewrite: /webconsole/reconciliationEdit
OE-1834	Access certification: Delete a campaign
OE-1832	UI Page rewrite: /webconsole/policyMap
OE-1831	Selecting/Unselecting Menu not reflecting on User Login
OE-1830	Scheduled batch tasks wrong order
OE-1829	Cannot create groups with the same name for different managed systems
OE-1828	Fix logo and search bar in OpenIAM documentation-4.2.1.2
OE-1827	Set up notification when connectors are down on PROD and DEV
OE-1824	Webconsole user reset password menu throws error "password cannot contain login"
OE-1819	Loaded pair of private and public keys is treated as invalid
OE-1818	Add new action in target of business rules
OE-1817	Curator as a cronjob is not called when deployed OpenIAM for the first time
OE-1816	Complete Swagger (missing some APIs)
OE-1813	New Hire with approval: Skipping approver levels
OE-1809	Disable Rule is not working when trying to disable editing an attribute based on user type in self-service edit screen
OE-1808	Start and End Date is not getting saved in database when the date format in system configuration is DD/MM/YYYY
OE-1807	IS_NEW_xxxxx adaptive risks - incorrect behavior
OE-1806	Policy map bugs/questions
OE-1804	Populate object data for dynamic custom field script
OE-1803	Recon refactoring
OE-1802	Not able to submit the Self Registration request after providing values for Start and End Date attribute
OE-1800	Internal error when a Group member takes action on New Hire With Approval Request
OE-1799	Access Certification request not going to group members
OE-1798	Users getting duplicated on Access Certification dashboard for Oracle
OE-1797	Validate and get rid of obsolete fields in metadata type
OE-1796	Managed system is not populated on page of group identities
OE-1794	Non-sense in logs after performing action 'deActivate' user from webconsole
OE-1793	Clean up batch task schedule table for completed tasks
OE-1791	Access Certification Campaign issues on Oracle
OE-1790	Authentication improvements - Knowledge questions and captcha
OE-1788	[Progress Tracker] Issue with static and animated arrow
OE-1787	Allow users to request access that is going to be expired soon when using catalog
OE-1786	Logo changed but on refresh OpenIAM logo appears for fraction of second
OE-1785	Max length should be increased for fields
OE-1784	Self-service > Requests in My Approval history appears blank
OE-1781	Self-service: Access Certification is not shown when using OracleDB
OE-1777	Bulk user export
OE-1775	The Orphan accounts on every run adds new record
OE-1774	Audit logs do not show what has changed on each run (feasibility of running delta)
OE-1773	Sync audit logs do not show the user name for new users during a failure
OE-1772	Synchronization audit logs show an incorrect value
OE-1771	Customer reported issues
OE-1770	Non-admin user should be blocked from performing 'Initiate Transfer' operation
OE-1769	Remove RES_ATTRIBUTE_VALUES it is causing foreign key constraint fails
OE-1768	Sync running in circle and never ends
OE-1767	Script Connector For CREATEUSER
OE-1766	Add option to request access from the 'not authorised' page
OE-1765	Introduce custom links on 'not authorized page'
OE-1764	MS SMTP modern auth
OE-1762	Max file upload limit for CSV sync needs to be increased from 47 MB
OE-1760	Stack Trace in reports should be removed
OE-1758	Organizations getting assigned to user who is executing the sync job
OE-1757	Move code for sending out email to new user from IDM to ESB
OE-1756	Suppress loading module warnings for AD module in connector
OE-1755	Disable User from Self-service doesn't update the Account Status on Self-service's direct reports table
OE-1754	Access Request table should have 'Request for Access' Task Type as a pre-selected option
OE-1753	[1199 Funds] Performance Issue on clicking User Access Review from Self Service
OE-1752	Column BODY can't store big CSV file content
OE-1751	'Select All' doesn't consider all the user contractors present in the Direct Reports table
OE-1750	Provision service stops working when alias has more than one index associated with it
OE-1749	MSSQL replace IFNULL with COALESCE in mssql.history.select.mapper.xml
OE-1748	Show time as well in Date filter
OE-1747	[1199 Funds] Access Certification Reminder Notification is not working on production
OE-1746	Log file after rotation remains 0kb
OE-1745	Organization Entitlement and deleting functionality
OE-1744	Add Test case in React for Initiate transfer component
OE-1743	Add Filter in OpenIAM documentation
OE-1742	How to setup SAML auth using user's email and not principal
OE-1741	'Enable Contractor Operations' doesn't consider multi-level direct report hierarchy
OE-1737	Click operation on email id and phone number should be disabled in direct reports table
OE-1735	Use the access control model to limit what users can do to their organization
OE-1734	Auth provider ID should be part of our UI
OE-1733	Provide an API to get all Scopes for ClientID in a single request
OE-1732	Introduce upgrade util for OpenIAM CLI
OE-1731	Search sort issues with 'View My Requests' table
OE-1728	New Hire with approval workflow is skipped when initiated from Classic View
OE-1726	Develop Sailpoint Script Connector for Tracfone
OE-1725	QA Findings [4.2.1.5]
OE-1724	Wrong Approver status for New Hire workflow in case of multiple approvers
OE-1723	401 error when non-admin user clicks Initiate New Hire workflow
OE-1722	Create OpenIAM Doc for this feature
OE-1721	Self-registration setup and usage
OE-1720	Rename new feature tile name from "Current Requests Requiring Approval" to "Approval Dashboard"
OE-1719	When single option is selected under My Info - Current Requests Requiring Approval section appears blank
OE-1718	Current Requests Requiring Approval - "My Approvals" should not appear in the "Access Requests" Section
OE-1717	UI Page rewrite: /webconsole/editAttributePolicy
OE-1716	UI Page rewrite: /webconsole/*Policy
OE-1714	Create new user via REST API - wrong requestor is set
OE-1711	Menu is broken when open Synchronization History page
OE-1710	When selecting time on UI when to disable user it may not happen as manager wanted
OE-1707	Initiate new hire
OE-1706	Expand self-service landing page functionality to support JML processes
OE-1705	New Hire User Workflow - initiate access requests for roles/groups
OE-1704	Add script to have current Access requiring approval menu enabled
OE-1703	Add Sorting on View Direct Reports Screen
OE-1702	Task progress tracker - take business rules into account
OE-1701	Business rules - add new target action 'Create access workflow'
OE-1700	Edit user workflow - can't add/remove user entitlements
OE-1699	New Hire workflow - roles/groups are not presented on task details page
OE-1698	OpenIAM CLI autoinit mode is broken
OE-1697	Include tar installation during OpenIAM install
OE-1696	Cassandra and JanusGraph services are not enabled
OE-1695	Allow to customize login during authentication against managed system module
OE-1694	Direct reports have multiple issues
OE-1693	Access request count on the dashboard and the detail view are not aligned
OE-1691	Approvers order calculation error after UI configurations
OE-1690	Curator: permission denied in RPM
OE-1689	Add title to the simulation page
OE-1688	When users login to OpenIAM using federation, we do not update the last login date
OE-1687	Audit log is poor for action SEND_OTP_TOKEN: error from OTP provider
OE-1686	Pictures are not displayed in doc for OTP
OE-1684	Introduce integration of sync and workflow API
OE-1682	Update cluster_healthcheck.sh script
OE-1681	Ensure default TLS1.2 usage for .NET/PS connectors
OE-1679	PermittedDN should support several locations
OE-1678	Introduce bulk operations over role and groups
OE-1677	Allow emergency reindex with pagination of Elasticsearch indices
OE-1676	User last_date shown in the webconsole is one day behind the date saved in the DB
OE-1675	[Bug] Spelling mistake in error message for duplicate email id
OE-1674	.NET/PS cleanup tasks should be configurable
OE-1673	Multipart responses sender ability for Exchange
OE-1672	Multipart responses sender ability for WinLocal connector
OE-1671	Multipart responses sender ability for Azure connector
OE-1669	Add upgrade notes to OpenIAM Docs [4.2.1.3]
OE-1664	Add checks for minimum PS version on .NET connectors
OE-1663	AD connector search should generate warnings if any results were filtered
OE-1660	ESB
OE-1659	Workflow
OE-1658	IDM container
OE-1657	Synchronization
OE-1656	Email manager
OE-1655	Reconciliation container
OE-1654	Auth manager
OE-1653	Device manager
OE-1652	Business rules manager
OE-1651	Linux connector
OE-1650	LDAP connector
OE-1649	JDBC Connector
OE-1648	Workday connector
OE-1647	Certificate generator
OE-1646	Chown container
OE-1645	Elasticsearch container should be updated like we did for Elasticsearch-k8
OE-1644	Iamscripts container
OE-1643	MariaDB container should be updated like we updated MariaDB-K8
OE-1642	New container vulnerabilities
OE-1640	Vault server should be upgraded from 4.2.x to 4.2.1.3 and higher
OE-1638	UI Page rewrite: /webconsole/batchTaskEdit
OE-1636	Add basic code checks to CI deployment process
OE-1635	User entitlements page tab organization not shown dates and access rights
OE-1633	Applying simulation requests in sequence
OE-1631	Sort, Filter, Pagination On New page
OE-1630	Simulation mode for email notifications
OE-1629	Update Docs to describe how customers can update branding
OE-1627	Docs to configure rProxy when a load balancer is being used
OE-1625	Not possible to change lang labels for default fields on page templates
OE-1624	Issues when calculation BR when request came from web service
OE-1622	4.2.1.3 vulnerabilities
OE-1621	UI container vulnerabilities
OE-1617	Unable to Send Attachment with NotificationRequest
OE-1616	Unable to Delete Custom User Attributes
OE-1614	Addresses Do Not Get Saved on Self-Registration
OE-1613	Sponsored Accounts Can Be Sponsors
OE-1611	Apply multipart responses sender ability to all .NET/PS connectors
OE-1609	Apply protocol changes for provisioning operations on .NET/PS connectors
OE-1608	Change SEARCH request parameter in all .NET/PS connector
OE-1607	Add integration tests for search operations for .NET/PS connectors
OE-1602	Add haproxy service as load balancer
OE-1600	After run uninstall and then install again
OE-1598	JanusGraph: multilist of Cassandra IPs
OE-1597	Vulnerabilities in Cassandra and Activiti
OE-1596	Set Cassandra log level to warn
OE-1595	Make changes in conf files behind the scenes
OE-1594	Flyway baseline is printed wrongly during RPM installation
OE-1592	Add column of last login into User_report
OE-1591	Improve doc for Oracle connector
OE-1589	Rename label in business rule
OE-1588	[Language] Default language selection change not reflecting on the login page
OE-1586	Newly created metadata type with 'isActive' flag false appears on page
OE-1583	Verify SSO to Office365 page was migrated in docs
OE-1582	Migrate wiki page about Freshdesk SSO
OE-1581	Migrate wiki page about DB migration
OE-1580	Documentation
OE-1579	Improve the ability to see the progress of workflows for end-users
OE-1578	Self-service landing page should have a dashboard which shows the content of the in-box
OE-1577	RPM installer can't install pre-released version
OE-1576	Include SAP connector in release/prerelease process
OE-1575	Managed system simulation mode
OE-1573	Authentication Provider page broken as Scopes not getting searched due to change in BR screen
OE-1572	[SysConf] 'Show the Area Code on Phone Numbers' flag status as false is not working
OE-1571	[SysConf] Are Challenge Response Questions Secured? flag status change to true does not hide answers on the page
OE-1570	Select date calendar UI issue
OE-1568	[SysConf] Unable to add roles to the field 'Following roles grant access to see all object (ignoring "is visible" flag)'
OE-1567	Handle backend operations based on Front end action
OE-1566	Add new pages for Bulk Operations
OE-1565	Add New Columns on Existing screen and handle sorting/filtering
OE-1563	Check on log rotation, new files appear to be 0b always
OE-1562	Add ability to cluster vault service
OE-1561	react.bundle.js is not extracted when upgrading RPM installations
OE-1557	Introduce REST API to search OAuth client by client ID
OE-1556	RPM cluster type of delivery
OE-1555	Support for automated deployments
OE-1554	SPS Improvements: RabbitMQ Parallel Booting
OE-1551	SPS Improvements: Update stash
OE-1550	SPS Improvements: Add ability to configure additional JavaOpts in terraform.tfvars or values.yaml
OE-1549	SPS Improvements: Investigate Redis OOM
OE-1547	SPS Improvements: Improve default resource limits
OE-1545	There is no option to see logs from openiam-cli log util
OE-1544	Validate smoothness of openiam-cli init
OE-1543	Introduce util for release updates
OE-1542	RPM deployments and related tasks
OE-1541	Saving the email for a user in Workday returns MalformedURLException
OE-1533	Update mod_openiam C libs to use OpenSSL 3.0
OE-1532	Update lib-ssl to v3.0 in the rProxy
OE-1530	Fixing broken umlaut characters for .NET connectors
OE-1529	Describe dev CI using
OE-1527	ADValidation.groovy classname update
OE-1524	Internal Error on saving role with description more than 400 characters
OE-1522	Modify RPM Installation for Elasticsearch curation
OE-1520	Curate Elasticsearch documents which don't need to be kept
OE-1519	[SysConf] Internal error while creating new user after changing 'Default Managed System' from Default
OE-1518	Log4j vulnerabilities
OE-1517	Resolve security vulnerabilities in Apache and JDK
OE-1516	Add support for Rancher deployments
OE-1515	Resolve vulnerability in the RabbitMQ-K8 container
OE-1514	Accent characters user search issue
OE-1511	Fixing memory traffic for SEARCH operation with multipart responses in .NET connectors
OE-1509	Can't instantiate GroovyScriptEngineIntegration in groovy for script connector
OE-1508	Allow reports to be sent over email to requester
OE-1507	Fix call of pre/post processor for class DeleteGroupProvisionOperation
OE-1506	Problems on authentication policy page
OE-1504	Clone Managed system is broken
OE-1503	Sync History Error
OE-1502	ESB get error on start with custom VAULT_SECRET_PATH
OE-1501	Set headers as part of default configuration to improve security
OE-1500	Upload file extension error in MyRequest page
OE-1498	[User Bulk Operations] Search Resource - Search by resource type is not working
OE-1497	[User Bulk Operations] Reset Password - For auto generate password selection, checkbox for Send password via email should be disabled and checked
OE-1496	[User Bulk Operations] Search Group - Search by managed system is not working
OE-1495	[User Bulk Operations] Items displayed per page shouldn't be empty by default
OE-1494	Synchronization configuration list is empty in webconsole
OE-1490	Related to the above, that the rules could be sorted by one of the fields
OE-1489	The business rules filter by status does not work
OE-1488	Business rules improvements
OE-1486	Internal error occur on self registration
OE-1483	Managed systems are not being saved as part of the business rule target
OE-1482	Error in the preview of business rules
OE-1480	ManSystem attribute table - remove md element dropdown, it's not applicable for ms attributes
OE-1479	Merge SOAP and REST Workday connectors
OE-1470	User is not added in full tree of organization based on org hierarchy
OE-1468	Remove deprecated items in system configuration
OE-1467	Can't add child/parent organisation to an organisation
OE-1463	Parametrized operation reindexAll (ability to disable reindex by desire)
OE-1450	Workday Connector changes for Company Attribute
OE-1445	Refine Workday Rest Connector
OE-1444	Resolve container vulnerabilities in rProxy and Janus Graph
OE-1442	Add ability to override email sender
OE-1441	Create a Workday connector documentation
OE-1437	User search doesn't work when search by metadata + user status
OE-1436	Implement REST API to create audit logs from third-party systems
OE-1435	When sync has error SYNC_CONFIG_ALREADY_RUNNING there is no details about sync config
OE-1432	Improve managed system dashboard
OE-1431	Improve synchronization configuration list
OE-1430	Role manager summary view should also show the description
OE-1429	UI Improvements
OE-1428	Roles must be unique within a managed system
OE-1427	Can't set start/end date and access for user-org membership
OE-2128	Add janusgraph performance improvements to RPM installation
OE-1426	Need a filter query to sync certain number of records from Workday API Connector instead of all the records
OE-1425	CSV sync groovy issues
OE-1422	UI Issue: Complete Button text not displayed on User Entitlement screen
OE-1421	Issue with role search on Role Screen
OE-1414	Notify on approve type is multiselect field but after clicking on save and again check the value it gets deleted in Review All Access Position Change Workflow
OE-1411	Error message is displayed on screen if MAILBOX CONFIGURATION template Mandatory fields is left blank
OE-1409	UI should be able to work with an available node if the initial node which was contacted is down
OE-1408	Update our HA configuration so that it's not pinned to a single node - especially true for Elasticsearch, Redis, RabbitMQ and Vault
OE-1407	Improve default HA configuration
OE-1405	User report is blank for supervisor filter
OE-1402	Optimize performance for HR feed using CSV to import to OpenIAM
OE-1401	Optimize performance and memory when import from target to OpenIAM
OE-1400	Optimize performance and memory for synchronization and provisioning when working with large datasets
OE-1398	Email to {0} is displayed as action button on Access Certification request
OE-1394	Large dataset can't be pulled when using RDBMS sync adapter
OE-1393	User termination is not reflecting in AD on moving user from normal OU to disabled OU
OE-1391	User is provisioning to AD without group as a Member Of
OE-1389	Self registration navigation between pages has no loader
OE-1388	Allow to customize email templates in user workflows
OE-1377	Upgrade to JDK 17
OE-1376	Stack upgrade
OE-1372	Revoke access request approval on Administrative actions is not working
OE-1366	Change IPC communication between external runner and connector
OE-1352	Fixing showing SSO application icons for App Launcher macOS version
OE-1350	Batch task 'activate by start date' works wrong
OE-1349	Group Identities Managed System Column is empty
OE-1348	Cannot add authentication provider attributes
OE-1347	Synchronisation Page Not loading
OE-1346	Login=prompt is not removed when request came from login page
OE-1345	Group search does not work if there is "-" hyphen in group name on role entitlement screen
OE-1344	Error is displayed on screen if MAILBOX CONFIGURATION template field is left blank
OE-1343	Message is not clear on UI when we tried to save MAILBOX CONFIGURATION
OE-1342	Business rule: dropdown to select groovy script must be autocompleted with groovy scripts in suggestions
OE-1341	Create new UI custom fields - can't select Section type
OE-1339	Keele UAT findings/improvements
OE-1338	Can't submit self-registration form
OE-1337	Show email/phone on webconsole user search result regardless of published status of these objects
OE-1336	Simplify the selection of admin and service accounts
OE-1334	Integration access certification with SOD rules
OE-1333	Implement UAR reviewer: user view and user's entitlement view
OE-1327	Additional User Search Criteria - No result found Issue
OE-1326	Password policy is not associated with user
OE-1325	Create User Template Supervisor search is not accurate
OE-1324	Managed system prop to skip it from password sync is ignored
OE-1323	Unable to get access rights associated with a role from our API
OE-1322	Gluster alternative for Redhat Linux
OE-1321	Add support for pipe delimited files
OE-1320	Mail code text box in user template is not getting saved
OE-1319	User superior selection pop up appears while selecting subordinates
OE-1317	User history - pagination disappears after closing event details
OE-1316	User Entitlement - Items per page display is messed up on Resource entitlement table
OE-1315	User History - current date as a start date selection filter is not working
OE-1314	Reset password in webconsole doesn't save password for non default managed system in DB
OE-1313	[IT Policy] - User unable to login when IT policy is activated
OE-1312	Add support of msDS-cloudExtensionAttribute in AD connector
OE-1310	Initiate manual task for termination user when terminate from 'administrative actions'
OE-1307	Distorted web elements on system sysconfig page
OE-1306	User Entitlement - End date gets saved one day prior as of the selected date
OE-1304	User 'Email Type' appears blank on Selfservice
OE-1301	Docker Security Scan: cassandra
OE-1300	Docker Security Scan: vault + bootstrap
OE-1299	Docker Security Scan: stash
OE-1298	Docker Security Scan: redis + redis-k8 + redis-sentinel
OE-1297	Docker Security Scan: rabbitmq-k8
OE-1296	Docker Security Scan: prometheus + pushgateway
OE-1295	Docker Security Scan: postgres + postgres-k8
OE-1294	Docker Security Scan: nfs-provisioner
OE-1292	Docker Security Scan: medusa
OE-1291	Docker Security Scan: mariadb-k8
OE-1290	Docker Security Scan: kube-state-metrics
OE-1289	Docker Security Scan: kubectl
OE-1287	Docker Security Scan: janusgraph
OE-1286	Docker Security Scan: iamscripts
OE-1285	Docker Security Scan: flyway
OE-1282	Docker Security Scan: curator
OE-1281	Docker Security Scan: consul
OE-1280	Docker Security Scan: chown
OE-1279	Docker Security Scan: certificate generator
OE-1278	Docker Security Scan: activiti
OE-1277	Docker Security Scan: UI Image
OE-1276	Docker Security Scan: Base Docker (Spring Boot) Image
OE-1275	Security issues with docker images
OE-1274	Uploading file with not supported extension doesn't show an error
OE-1272	Select Access from create request in self service is not reflecting with back changes
OE-1271	[User Search] Additional User Search 'Role' added from config is NOT reflecting on User search page
OE-1270	[User Search][Enhancement] Support to clear individual search criteria selected during user search
OE-1269	[User Search][Enhancement] Add 'view items per page' (10,30,50) to User Search results
OE-1267	[User Search] Search text appearing as a reference to the search criteria is messed up
OE-1266	[User Search] 'Clear' button should clear search results along with search criteria
OE-1265	Improve audit logging for sync and upload comments in request
OE-1263	Business rules interface - show the managed system for entitlements
OE-1262	Improve audit logging for Login action
OE-1260	Reset password page redirects to login page
OE-1259	[User Admin] Confusing terms - Alternate contact and Out of office assistant
OE-1257	[User Admin] Email type resets to null while editing user
OE-1256	Not able to provision user and group to AD
OE-1255	Issues found during functional testing on 4.2.1.2 / 4.2.1.3
OE-1254	[User Admin] User should be blocked from using future date as birth date while creating new user - add validation
OE-1253	[User Admin] Can not clear user selection for 'copy existing user accesses' while creating new user
OE-1252	[User Admin] Can not clear Supervisor once selected
OE-1250	Bug searching names with accents
OE-1249	Fix tests for related accounts
OE-1247	Allow user to run Java connectors without vault
OE-1246	Not receiving credentials mail on user sync from AD to OpenIAM
OE-1241	RPM Installation modification: redis connection mode
OE-1238	Button Overlap on Delete managed system confirmation pop-up
OE-1237	Not able to add principal name and employee id in create request self-service portal
OE-1236	Long Term add 3rd Party Application registration UI and storage in DB
OE-1235	Short term - Hardcode in SSOController 'TEAMS_PLUGIN'
OE-1234	Extend Register Application functionality
OE-1233	[SelfService] Directory Lookup is missing from the UI
OE-1232	Once our search is complete with the user and we proceed further the user name still displays in the search field
OE-1228	UI Page rewrite: /webconsole/batchTaskSearch
OE-1227	Put validation of verification of email/phone on server side
OE-1226	Login again link has 'undefined'
OE-1225	[SelfService] Internal error on 'accept' request
OE-1224	User Approver association is not working
OE-1222	Self-registration, verify both an email and phonenumber
OE-1221	Contractor management - self-service improvements
OE-1219	Request reminder NPE
OE-1218	Disable user from UI (direct reports screen) by manager should not initiate workflow
OE-1216	Azure connector code refactoring
OE-1214	Update solution default log levels
OE-1212	Simulation batch mode should save execution order
OE-1211	Problem with newly created roles/groups/resources/users and integrity with Graph/Elasticsearch during update
OE-1210	Add comment in email when auto delegate
OE-1208	Edit user: UI is not clear what was changed in user
OE-1207	Apply changes on .NET connectors for handling async search requests
OE-1206	Batch simulation runner for .NET connectors
OE-1205	Suspend/resume operation need to apply policy map on all .NET connectors
OE-1204	Update Successfactors connector build
OE-1202	Principal generation
OE-1201	Request report manual M issue, no requester. How to open original?
OE-1200	Group is not created in AD
OE-1197	User access report - allow filter by supervisor
OE-1196	Users access report - filtering seems to be doing an "or" operation vs an "and"
OE-1195	Entitlement report
OE-1194	Improve the USER_REPORT to allow extracting either "all" users and by multiple status. Additional attributes also need to be added
OE-1186	Simulation mode needs to support encrypting passwords
OE-1184	Re-hire (Test case #28): user was not re-enabled
OE-1181	Extending MS Exchange Connector to support Exchange Online PowerShell V2 module
OE-1176	Timeout problem of retrieving data from the Connector
OE-1175	MS-SQL server tests for flyway fails w/o showing an error
OE-1174	Hide language dropdown on login page if only one language is active
OE-1173	Hide of profile picture hides 'my info' section in selfservice
OE-1172	Display supervisor on template (edit user in selfservice)
OE-1171	Simple email address (simple phone) fields are not displaying data on user template
OE-1170	Improving filtering in SAP
OE-1167	Create a report which shows the requests which are approved/rejected
OE-1164	Access Rights for all the configured applications to be made accessible
OE-1163	CC - Email Notification and sending credentials
OE-1162	Issues reported by PWC
OE-1161	Request escalations are not being sent
OE-1159	Test case #24 - Unable to disable user using the direct reports interface
OE-1158	Test case #15 Group name in the "New Group Request" email is wrong
OE-1157	Test case #11 No buttons are shown in the email "Revoke Access Request", just links
OE-1156	Test case #10 A user submitted an access request on behalf of another user. Email was not sent to the user that made the request
OE-1155	Test case #8 When a request was rejected (after delegation), the email was only sent to the end user
OE-1154	Test case #7 View details button in the email doesn't work
OE-1153	Test case #5 Accept Request link in the email doesn't work
OE-1152	Test case #4 When a request was rejected by the 1st approver, the email was only sent to the end user. Before it was sent to the end user AND the approver
OE-1149	User access report - add ability to select users based on the supervisor
OE-1147	Revert back info that was in sync audit action
OE-1146	Just created users can't use OTP
OE-1144	AD connector may not save custom attributes
OE-1141	Flyway fails for MSSQL script
OE-1135	Problem with business rules
OE-1133	Upgrade to the latest version of Springboot
OE-1132	Spring framework vulnerability CVE-2022-22965
OE-1131	Password Logging Issue
OE-1130	Combining single value collection with multi value collection for Exchange connector
OE-1129	Allow multi select of types to notify on approve/reject in approver association
OE-1126	Allow the customer to override the SOD rule
OE-1125	Apply new fixes into OpenShift Helm deployment
OE-1124	Paging shows up to 10000 elements
OE-1123	Regression: Can't clone managed system
OE-1122	Role management -> Role entitlements does not show the parent role or the inherited entitlements
OE-1120	Self-service direct reports interface - add the username and employee Id to the list of attributes
OE-1116	Workday connector
OE-1114	Conditional search parser execution on .NET/PS connectors
OE-1113	Exchange connector logs code cleanup
OE-1112	Azure connector logs code cleanup
OE-1106	Upgrade to Elasticsearch 7.16.3 to get the latest Log4J
OE-1105	Upgrade Elasticsearch 6.8.23 to get Log4J 2.17.1
OE-1104	Upgrade Apache HTTPD server in both docker and RPM
OE-1103	Upgrade Apache and ES to mitigate security vulnerabilities
OE-1099	Manage passwords of related account when primary user changes its own password
OE-1098	Business rule causes block of provisioning
OE-1096	Create a hook in the request from service catalog process where customers can add custom SOD rules
OE-1095	Terminate user workflow
OE-1089	Revoked entitlement is not properly presented in subsequent approvals
OE-1081	SafeNet Authentication Service (SAS)
OE-1080	Transfer attachments from access request to manual task
OE-1078	Entitlements are not being deprovisioned on the end date
OE-1077	Entitlements which have a future start date don't work
OE-1076	Emails related to "new group creation" have issues with the text and links
OE-1075	Links in email notifications related to workflow are not working
OE-1074	Regression issue - call to start workflow no longer compiles
OE-1073	Customer / Internal QA Findings
OE-1072	Default scripts load configuration related to a specific customer
OE-1071	Create default configuration for SAP Successfactors connector
OE-1069	Increase container memory for vault
OE-1068	Send email notifications for manual task
OE-1066	Add button to download orphan report from orphan page
OE-1064	Create user is forcing user to enter phone number even in the absence of the phone number field on the template
OE-1062	Add references of new properties and GroovyScript to dozer mappings
OE-1061	Finish up and refactor SearchUserDialog
OE-1059	If User has banded symbols (like space) in last/first/name or email or login, sync can't save user
OE-1058	Hide private key body from the public access from REST API
OE-1057	Create DTO class for new Entity GroovyScript and modify DTOs for existing entities
OE-1056	Status and operation of business rule is not populated when open rule for edit
OE-1054	QA Findings - 4.2.1.3
OE-1053	ES floods logs with warnings in IDM and other services
OE-1052	Add references of GROOVY_FILE to existing entities which hold groovy path to various scripts
OE-1051	Business rules Groovy are not running
OE-1050	Fixing WinLocal connector
OE-1049	Bug in element displaying on self reg page
OE-1048	Script connector has issue when reset password
OE-1047	Task to rename existing groovy files
OE-1046	Checking error in user synchronization produces blocked window
OE-1044	Revoke access workflow should allow you to set the date
OE-1043	Request-approval flow does not process the start date
OE-1041	Create Table SQL scripts for new table GROOVY_FILE
OE-1036	Not display emails/phones/address for selfservice -> "Edit Your Profile"
OE-1035	User can change phone after validation
OE-1032	My Information
OE-1024	Files for Simple email and simple phone on self-registration page are not ordered
OE-1019	Organization location is not displayed
OE-1018	User can change email address after validation
OE-1015	Error on generation orphan report
OE-1014	Managed system configuration ON_DELETE doesn't work
OE-1012	Sex can't be changed once selected on user edit template
OE-1009	Some of user data got lost when selfreg is multistepped
OE-1008	Apache webserver vulnerabilities
OE-1006	Task that must be claimed can be approved from approve list
OE-1005	Change password fails
OE-1004	Fix Paginator for page : "Reconciliation and synchronization activities"
OE-1003	Update Reconciliation activities CSV report
OE-1000	Create new RabbitMQ Vhost `openiam_machine_learning` for RPM Installations
OE-999	Upgrade Elasticsearch to v7.16.1
OE-998	Upgrade Elasticsearch to v6.8.21
OE-997	Fix email templates
OE-996	User data got truncated after saved in self-reg-doc
OE-994	Implementing custom unlock screen for macOS credential provider
OE-993	Self Registration NOT working - Internal Error on submission
OE-991	Reconciliation failing on start
OE-990	Dynamic field based on other fields data
OE-989	Email confirmation during self-registration
OE-988	Fix Managed System data collecting
OE-987	When doing reset password by email user got 401 error
OE-986	Allow user to select manager(sponsor) when doing self registration
OE-985	Preview users by application throws internal error
OE-982	Update documentation about AD connector sync
OE-981	Decrease default concurrency of .NET connectors
OE-980	Toxic access detection
OE-979	Newly created metadata element is displayed by ID not by name
OE-978	Task administration throws error when trying to open any task
OE-977	Org certified shows as ID instead of display name
OE-976	My approvals page improvements
OE-975	If the only one option for OTP enabled, end users sees error
OE-974	Resave of auth provider erases resource properties
OE-973	Field "Gender" added to page template displays incorrect value
OE-972	Simplify logging in Generic connector
OE-971	Add documentation for recon config
OE-970	Re-Check 'User Access Report' extension and data
OE-966	Upgrade Gatsby to the latest version
OE-964	Improve request report to show provision status after request was approved
OE-963	Increase name and description column of table ROLE and GRP
OE-961	AD password checked - Directory searcher case sensitivity
OE-960	RPA investigation
OE-959	Migrate My sessions SelfService page to React framework
OE-958	Popup window with error/success message is attached to top of the frame
OE-957	Add connectors to Kubernetes cluster
OE-956	Position change activiti requests don't appear in list of requests to approve for approver
OE-955	Unable to create Office 365 mailbox template
OE-953	Can't create revoke access request
OE-952	Email notifications doesn't work for revoke access workflow
OE-951	Implementing installer package for macOS credential provider
OE-950	Mail Sender - can't send some email (NO_ACTIVE_EMAIL_CONFIGS)
OE-949	Update Tomcat version
OE-948	Group Entitlements changes - doesn't trigger group provision
OE-947	Modify user fails and logs show no useful information
OE-944	Add ability to delete scripts which are no longer needed
OE-942	Revoke Access Workflow - requestor field is empty
OE-941	Access review page should show the account for each managed system as well as start/end date
OE-940	Access certification campaign fails to run due to issue with scope report
OE-939	E-mail notifications sent after a request is approved need to be improved
OE-937	In-box task type is wrong
OE-936	Inbox filtering by "Request Create Date" does not work
OE-935	Term "Default approver" in an approval flow is not intuitive
OE-934	Request approval computes the wrong dates if a duration has been selected
OE-932	Login page - Clicking next without entering a value does not display any error messages
OE-931	[Audit Log] Unable to perform 'Select an Action' by type and search
OE-930	[Audit Log] Reindex Elasticsearch - No description and Client IP found in the Log Viewer table
OE-929	[Audit Log] Sequence Generator - No description found in the Log Viewer table
OE-928	'Cancel' on Approver Association page not working as expected
OE-927	[Self Registration Config] Issues found with template fields addition
OE-926	Migrate Task screen to React framework
OE-925	Deployment architecture for 4.2.1.2
OE-924	Number of access certs for the approver is not displayed
OE-923	Can't add login to user using UI interface
OE-922	The extra \ in JSON for MetadataFieldTemplateXrefEntity#rules
OE-921	Can't save language mapping for Resource with type Application Category
OE-920	User Entitlement page - Once collapsed, Resources tree cannot be expanded
OE-918	Week of Sept 27th
OE-916	Update UI issues with the my approvals screen based on details provided
OE-915	User access screen in self-service - the space between rows is inconsistent and too broad
OE-913	User was created using sync, but user history does not show the create event
OE-911	QA Findings [release 4.2.1.1 - 4.2.1.2]
OE-910	About OpenIAM page doesn't show build information
OE-908	When manual managed system doesn't have connectors, its entitlements can't be displayed in certification task
OE-905	Exchange
OE-904	AD
OE-903	Azure
OE-902	Make fileshare permissions available to be assigned from user perspective in AD PowerShell connector
OE-901	[Selfservice] My Approvals inbox counter not decrementing after action taken on the request
OE-900	Update documentation describing how to work with DFS publishing
OE-899	Merge 4.2.0.9 into 4.2.1.1
OE-898	Edit user workflow should follow same model of approver associations
OE-897	UI improvements for View Direct reports and My Access screen
OE-896	Week of Sept 20th
OE-895	The reverse proxy stopped working with web sockets
OE-894	Find and fix problem with Reports page on MSSQL DB
OE-893	Menu loading failed with timeout for Super Security Role
OE-892	Add DFS support to AD connector
OE-891	API getUserBetweenLastDate ignores actual date range
OE-890	User template read-only fields still are editable
OE-889	Supervisor type disappears after manager user save (1199)
OE-887	Change from custom UI theme back to default does not happen
OE-886	Create new group request - task details page doesn't have useful information
OE-885	Delegate Request email - incorrect link in email
OE-884	Add UI and some general methods for Counters
OE-883	Documentation about D365FO Connector
OE-882	Self-registration flow improvements
OE-881	Unique series generator implementation
OE-880	Name of language does not change on login page
OE-879	Proxy can't proxify content for root '/'
OE-878	AD connector - add FileShare object type handling depending on Group parameter
OE-877	Add improvements for support provisioning fileshare in AD connector build
OE-876	Add support of AD FileShare provisioning
OE-875	OpenShift - Deploy, create configuration and document
OE-874	1199 - UI improvements
OE-873	Support hours when request for access
OE-872	Backport AppleID in 4.2.0.9
OE-871	Provision/synchronization of user groups for Linux not correct for few groups
OE-870	New version of Spring has bug in AbstractJackson2HttpMessageConverter (sslRestTemplate)
OE-868	Migration from v3 to v4 supposed to erase activiti data
OE-865	Introduce Apple ID single sign on
OE-864	Migrate View My Access selfservice page to React framework
OE-862	Improve review my access page in SelfService
OE-861	Dynamic combobox doesn't work as expected
OE-859	BCC sending email functionality has error
OE-857	Improve service account selection in our access review process
OE-854	[Admin] Improve ability to manage identities associated with a user
OE-853	Rproxy: change references of `responseValue` to `value`
OE-852	Login module should check basic user parameters even if password was not sent
OE-847	Check reports, new durations should be applied
OE-846	Fix UI: force user to select less duration if his request went out of limits
OE-845	Improvement for access right drop down in catalog
OE-842	Migrate View Direct reports selfservice page to React framework
OE-839	Update CSP Header to allow inline images loaded by custom UI theme
OE-838	Social Login for Apple
OE-832	PostbackUrl management for login again after reset account or forgot username etc.
OE-831	Request administration is unable to open request if number is duplicated
OE-830	Can't reset password by Email for Locked account due to exception
OE-829	Unable to login to Selfservice for a new user when multiple auth methods are set
OE-828	Implementing installer for credential provider
OE-827	Implementing unit tests for credential provider
OE-826	Implementing credential provider for Windows with supporting OIDC
OE-825	Upgrade Infrastructure for 4.2.2
OE-824	Add support for passwordless authentication
OE-823	Profile switching
OE-821	Java client for authentication (office depot Request)
OE-820	Kronos - implement add operation
OE-819	Business Rules - performedActions are null
OE-818	Improve Policy Map for membership attributes
OE-817	Business Rules - can't change target for existing business rules
OE-816	Provide the option to renew access (via an email notification)
OE-815	Revoke access when access expires
OE-814	Send notification n days before access is going to expire
OE-813	Use the max duration to validate the dates during the request creation process
OE-812	Use the default duration to set a default end-date on request when using the cart
OE-811	Ability to set both a duration and a maximum allowed time for a request
OE-810	Request / approval improvements
OE-809	Add admin operations to support: Terminations and deceased
OE-802	Search audit logs
OE-801	Search / create / modify authentication provider
OE-800	Search / create / modify Managed systems
OE-799	Search / Create / Modify Organization
OE-798	Search / Create / Modify Roles
OE-797	Search / Create / Modify Group
OE-796	Get My application
OE-793	Refresh token
OE-792	Get token
OE-791	User create
OE-790	User search
OE-789	Logout
OE-787	Improve swagger documentation for essential services
OE-786	New UI for SelfRegistration Steps management
OE-784	Duo
OE-779	Localization on labels on headers appear to be broken
OE-777	Webconsole -> Menu administration is unable to page through results
OE-776	Customer reported issues for 4.2.1.1
OE-774	Integrate 'default membership duration' with request access functionality
OE-772	Add managed system information to connector related events
OE-771	Add Client IP to the audit summary view
OE-770	Self registration does not work
OE-768	Ldap connector doesn't delete membership for Active Directory
OE-767	Change localhost to 127.0.0.1 in healthcheck in rproxy docker container
OE-766	Improvements for RBAC model
OE-765	Google connector - can't sync user-group memberships
OE-763	Auth Provider Resource URL got erased
OE-762	Change password button in selfservice is disabled
OE-760	Access Certification - Campaign show wrong counter
OE-759	Migrate My approvals selfservice page to React framework
OE-758	Log Viewer UI pagination disappears after closing individual event details pop up
OE-757	AUDIT_REPORT is not working - 400 Bad Request
OE-756	[REPORT] USER ACCESS REPORT/ REQUEST REPORT/ ENTITLEMENTS_MEMBERSHIP_REPORT: 500 Internal Server Error
OE-755	Remove redirect to /webconsole/setup after CP was created
OE-754	07/08/2021 RELEASE-4.2.1 Test Request
OE-752	Add support for behavioral patterns in authentication
OE-750	Refactor credential providers to support additional functionality
OE-741	Social registration does not populate fields of selfreg form
OE-740	When error on social login then returned login page is empty
OE-739	Cannot create auth provider (with type where supports_otp false)
OE-738	User has no cell phone then drop down with OTP is empty
OE-737	Custom field type combo box has wrong behaviour
OE-736	Labels for custom fields are not properly translated
OE-735	Two or more selfreg configurations can stay active for one content provider
OE-734	Improve search in WinLocal connector
OE-733	Add ability to add domain users to local groups if computer is a member of domain
OE-732	[UI Theme] Uploaded Login, Selfregistration and application logo doesn't appear on Chrome and Edge
OE-731	[FIDO Authenticators] Unable to register new key
OE-730	All static resources are redirected to `/idp/login` when going through the proxy
OE-729	Can't login using rproxy users with special characters in name
OE-728	Unable to proceed Use IT Policy page - Unable to access application
OE-726	Message 'Challenge response questions feature has been disabled by your administrator' appears for a moment before user redirection to Challenge Response Question after Password Reset
OE-725	If managed sys has password type fields then need to decrypt them before send to connector
OE-724	Update httpd docker image to latest version
OE-722	Kronos - implement incremental sync
OE-720	Add response code to the audit table
OE-719	Dynamics F&O connector
OE-718	[Audit logs] Reconciliation - refactor
OE-714	[Audit logs] Forgot username
OE-713	[Audit logs] Forgot password logs incorrect messages
OE-712	[Audit logs] Clicking forgot password, on a locked record, produces "UNLOCK_PASSWORD" event
OE-711	[Audit logs] Batch task is executed, but from the initial log viewer screen we cannot tell which task was executed
OE-710	[Audit logs] Multiple authentication failures do not show that an account has been locked
OE-709	[Audit logs] Authentication failure event
OE-708	[Audit logs] Logout creates multiple events which are not linked together
OE-704	[Enhancement] Audit Log records of Self Registration Workflow Config are missing
OE-703	Unable to add page template when configuring selfregistration
OE-702	Expand search filter when adding entitlements to user
OE-701	Self Registration Workflow Config: Issues and Enhancements
OE-700	Correct button label from 'And new Self Registration Workflow Step' to 'Add new Self Registration Workflow Step'
OE-699	Internal Error appears while adding Self Registration Workflow step when only Name field is entered
OE-698	Unable to create a Self Registration workflow with the same name as the deleted one
OE-697	Add default action - end-date all access
OE-696	When saving action in popup window, double click on save leads to duplicate item in action
OE-695	Related account page cannot be opened (500 error)
OE-694	Operation label should be for add AND update
OE-693	Labels for actions are messed up
OE-692	Business rules: improvements/bug fixes
OE-691	Make drop down autocomplete, not just selector
OE-690	When editing action need to bring existing actions
OE-689	Business rules: put name of the target in title of popup window
OE-688	If business rule is modified then un_do target got cleaned up
OE-687	Remove business rule immediately if it has no 'un_do'
OE-686	[Selfservice] Non admin user unable to create request for himself
OE-685	PUT HTTP method used instead of POST for creating new Business Rule
OE-684	Cancel Self Registration Workflow gives 404 error
OE-683	Unable to create Self Registration Workflow
OE-682	HTTP PUT method used instead of POST while creating Self-registration Workflow
OE-679	SCIM 2 - OpenIAM to act as a SCIM endpoint
OE-678	Check on proxy side that URLs below are permanently public
OE-676	Log Viewer - Synchronization user failed logs
OE-675	Log Viewer - Synchronization log event doesn't have child logs
OE-674	Migrate containers to leverage docker memory limits for heap sizing
OE-673	Add proper healthcheck for janusgraph
OE-672	Send out message to the alternate user only when it is his turn to approve
OE-671	[OTP Provider] Unable to delete OTP Provider
OE-670	[OTP Provider] Cancel OTP provider gives 404 error
OE-669	Cannot run flyway against Bechtel
OE-667	Misc issues (audit improvements and others)
OE-666	[Audit Log] OTP Provider event logs are not captured
OE-665	'Browse File for Upload' window opens on clicking text - 'Select Groovy Script For Loading:'
OE-664	On deleting Custom Field, relevant resource for the created custom field doesn't get deleted
OE-663	'Challenge response questions feature has been disabled by your administrator.' message on cancelling create CP on setup
OE-662	Create User from Webconsole
OE-661	SelfRegistration Workflow Configuration UI Fixes/Improvements
OE-660	User Bulk Operations issues
OE-658	Extend Orphan Management to allow automated maintenance
OE-657	Improve request - approver UI in the self-service portal
OE-656	Implementing custom credential provider for Windows using (.Net)
OE-655	Improvements audit logs and messages of selfregistration process
OE-653	Improve AD connector login module
OE-652	Menu Authorization is broken for 4.2.1
OE-650	AzureGraph connector login module implementation
OE-649	Add the ability to filter by description and type in the service catalog
OE-648	Azure connector login module implementation
OE-647	401 error when hit /webconsole or /selfservice
OE-643	Email OTP doesn't work
OE-642	When enable email OTP, user cannot login using code from email
OE-639	Not possible to add supervisor card to the user template
OE-638	Skip SearchBaseDN parameter if -SearchBase is specified in request for AD PowerShell sync
OE-637	Reports doesn't work
OE-636	Approver Association - can't calculate approver
OE-635	User see Unauthorized page after /webconsole/setup
OE-634	SSH Key Management
OE-633	Can't add comment for request approval process
OE-631	Fix auto approve functionality
OE-630	1199 - UI improvements (requester/approver)
OE-629	Reportviewer does not start
OE-628	If user approves request using link in mail he might see internal error
OE-627	Allow automatic PowerShell connector updates
OE-626	If no access right selected during access request then approver got internal error when open task
OE-625	Org widget is broken on selfreg page
OE-624	Tab name is missing "webconsole" or "selfservice"
OE-623	Incorrect userId in request to ESB
OE-622	Create user logins by quarter report
OE-621	SAP user has to reset password after creation
OE-620	Main logo is not changed
OE-619	Expired cookie should always redirect to login page
OE-618	Add ability to rename Users in AD PowerShell connector
OE-617	Merge 4207 into 421
OE-616	Migrate confirmTwoFactorAuth jsp page to React
OE-615	When open drop down to add oauth scopes, resources are not filtered by type
OE-614	Handle Vault Bootstrap Errors
OE-613	Migrate selectUserType.jsp page to React framework
OE-612	Fix style inconsistency for migrated pages
OE-611	Integration tests for updated AD connector
OE-610	Cannot setup a content provider when going through the proxy
OE-609	Migrate my-device jsp page to React
OE-607	Remove user entitlements for target system - user still exists in the target system
OE-606	UI label/links small fixes
OE-605	Core changes in connector to support group sync
OE-604	Access control model
OE-603	Implementing OIDC .Net examples
OE-602	After user submits revoke request he cannot track it
OE-597	Migrate identityUser jsp page to React framework
OE-595	Error when add comments to the create request
OE-594	Refactor AD connector code to fit Generic connector structure
OE-593	Improve logging on AD connector
OE-592	Improve search for AD connector
OE-591	Fix issue with possible connector installation path encoding
OE-584	Migrate processHelpdeskRequest jsp page to React framework
OE-582	Migrate device-registration jsp page to React
OE-581	UI branding and customization
OE-580	Developer - Getting started with the API
OE-579	Flexible view of users in the system
OE-578	Unauthorized user can see webconsole search menu instead of unauthorized page
OE-577	[Groovy Manager] Internal Error on Import Groovy script
OE-576	Norway/Denmark Localization
OE-575	Migrate secretWord jsp page to React framework
OE-574	Return claim functionality in workflow
OE-573	SAML SLO Exception
OE-572	Installing on a remote database
OE-571	User administration
OE-570	Configure SMTP
OE-569	Configure SMS
OE-568	Configure HTTPS
OE-567	Script connector
OE-566	JDBC Connector
OE-565	Reconciliation
OE-564	Configuring access reviews
OE-563	Working with manual systems
OE-562	Configuring request / approval
OE-561	Automated position change
OE-560	Automated provision - terminations
OE-559	Automated provisioning - new users
OE-558	Import user + entitlement memberships
OE-557	Import entitlements
OE-556	Improve the isCertified flag requirements for access reviews
OE-554	Include in oracle-ebs connector provision user to HRMS module
OE-553	Automatic Account Unlock
OE-551	CREATE_MANAGED_SYSTEM log details reveal password
OE-550	Group creation request by cloning an existing group
OE-548	Create connector - Kronos
OE-547	Internal Error when delete user who is a UAR manager
OE-546	Migrate placeholder improvement for custom fields
OE-545	Replacing MSOL to Graph modules in Azure connector
OE-544	The resource types are not shown
OE-542	Bugs in certification when one or more steps are not mandatory
OE-541	Switching to PowerShell Graph module for Azure
OE-540	Audit Logs - Add device info
OE-539	Fix LoginUserCommandExecutor for Ldap connector
OE-538	Thales connector
OE-537	Fix description column in request administration
OE-536	AWS connector doesn’t sync groups/roles
OE-534	Migrate challengeResponse jsp page to React
OE-533	Error when submitting request
OE-532	Adding MSSQL connector to TeamCity
OE-531	Implementing credential provider for MacOS with OTP field
OE-530	Credential provider for MacOS
OE-528	Access Certification - User Access Review page broken
OE-527	Fix Web authentication on react. Test with different keys
OE-525	Authentication using source system - LDAP / AD
OE-524	Authentication using source system - Azure AD
OE-522	Expand authentication options
OE-521	Device registration
OE-518	Adaptive Authentication
OE-517	Voice Delivery of OTP using Twilio
OE-516	Passwordless authentication/Mobile App (Latest version)-iOS
OE-515	Passwordless authentication/Mobile App (Latest version)- Android
OE-514	OTP should configurable to 6 or 8 digits
OE-513	Automatic Provider Failover with a Primary and Secondary config; Primary/Secondary support for Out-of-band delivery (OTP - SMS, Mail, Voice etc)
OE-512	MFA Improvements
OE-511	Mobile OTP app not working on iOS with new xcode
OE-508	publicResourceIds in PublicResourceCache sometimes is cleaned up randomly
OE-506	Authentication provider: fix typo in UI label
OE-505	Extend Azure connector to include some AAD attributes
OE-504	Investigating switching to PowerShell Graph module for Azure
OE-503	HTTP 404 Error - Selfservice -> Request Administration
OE-502	Improve oracle-ebs connector for user sync
OE-501	Migrate Functionality from v3 to v4.2.1
OE-500	Check R-rpoxy issue with Web-Socket during Push authentication
OE-495	UI: Migrate IdP UI to React
OE-494	OIDC Certification test - related findings
OE-493	Websockets not working
OE-492	[Reports] 404 error on downloading Reports
OE-491	[Audit Log] Internal Server Error on Search Audit Logs when From Date is selected
OE-490	List of Resource Types appears blank
OE-489	Configure SMS from the webconsole
OE-488	Remove Fields for Apple Demo
OE-487	Check if there is a way not to reset password in SAP after password provisioning
OE-486	Migrate usePolicy jsp page to React
OE-484	Extend feature of limitation for user search only inside its organization
OE-483	Push Auth Rule - NOT WORKING
OE-481	AD connector should support setting account expiration date
OE-480	Migrate auth-web jsp page to React
OE-479	Implementing groovy scripts for MSSQL connector
OE-478	Reset password with secure link error handling
OE-477	Token expired right after creation
OE-476	Integrated Windows Authentication
OE-469	Add custom redirect after security questions (for Florida)
OE-468	Documentations - How to configure google connector
OE-467	Implement style changes for login pages
OE-466	Migrate auth-select jsp page to React
OE-465	Error on call auth-select page
OE-463	Investigate Password Filter TLS connection issues
OE-462	Warning for some special attrs for id_token
OE-461	OIDC certification test - oidcc-max-age-1 test failed
OE-460	Create default scopes
OE-459	Problems with scopes authorization
OE-458	Request / approval – improve UI to support a hierarchical view
OE-457	Authorization to public scopes is broken in 4.2.1
OE-456	Fix/Improve SMS code verification page
OE-454	Security Vulnerability: outdated jquery and select2
OE-453	Security Vulnerability: Misconfigured Access-Control-Allow-Origin Header
OE-452	Security Vulnerability: Tomcat Version Disclosed
OE-451	Security Vulnerability: Set `SESSION` cookie to be Secure, if using https
OE-450	Migrate logout and changePasswordManagedSys jsp pages to React
OE-449	Delete from jfrog based on last accessed time, not based on upload time
OE-448	Fix WinLocal connector fallback to default user attributes
OE-447	Upgrade version of tomcat
OE-446	Security Vulnerability: HTTP TRACE / TRACK Methods Allowed
OE-445	Security Vulnerability: Remove default Tomcat Files
OE-444	Solve memory leaks on .NET connectors
OE-443	Password filter TLS 1.2 support
OE-442	It is not possible to create new menus from the console
OE-441	Refactor select-account.jsp page
OE-439	Rename of sync config duplicates the batch task for schedule run
OE-438	Skipping certificate validation does not work properly in Password Filter backup service
OE-437	Merge 4.2.0.5 -> 4.2.1
OE-436	Modify syncPasswordFromSrc endpoint to avoid circular updates
OE-435	Security Vulnerability: Update to Latest Tomcat 9
OE-434	Security Vulnerability: Session Cookie is insecure
OE-433	Fix Security Vulnerabilities in 4.2.1
OE-432	Add access rights to detail view and pivot
OE-431	Cyclical behavior in the AD password filter
OE-428	Email notifications doesn't work for 'Notify on Approval' and/or 'Notify on Rejection'
OE-427	Couldn't reset password via 'Forgot your password?' feature
OE-426	Migrate auth-push page to React Framework
OE-425	Add ability to support EI 11 for React apps
OE-424	Search by name on revoke access page doesn't work
OE-423	Add feature to create new user from an orphan
OE-422	Indexing roles in elastic search take a long time
OE-421	New SelfRegistration Flow - already registered user
OE-420	Security Q&A option is not locked after entering incorrect
OE-419	Redirect users after account activation or reset password
OE-416	Cannot create new OAuth Client
OE-415	Authentication improvements - Phase 1
OE-414	WinLocal connector should support account flags
OE-413	WinLocal does not handle adding groups on user creation correctly
OE-412	oracle-ebs:jar is periodically deleted on Jfrog
OE-411	Business rules - Target's actions disappear after saving appropriate business rule
OE-410	Create starter script for rproxy with https
OE-408	Reviewer UI bugs
OE-407	Auto-publish swagger json into our gatsby docs
OE-406	Implement provisioning for MSSQL PowerShell connector
OE-405	OpenIAM Twillio Programmatic Voice API usage
OE-402	Custom Windows credential provider
OE-395	Allow to use mod_rewrite together with headers set by rProxy
OE-394	Fix NPE bug in social login
OE-391	[SMS authentication] Internal error on clicking 'Forgot phone?' option
OE-390	Can't save any groovy script
OE-389	Re-enable running all db-specific tests on CircleCI
OE-388	Setup Vulnerability scanning web testing using Tenable
OE-387	Write LinkedIn documentation
OE-386	Redirect after selfregistration
OE-385	SAP Connector doesn't perform search anymore
OE-384	FIDO does not work in Oracle and Postgres
OE-383	Selfservice: Error loading Access Profiles page
OE-382	Certification report should support old (before refactoring) campaigns
OE-381	No languages listed on the Search Language page
OE-380	If user has the access then in catalog then access right is shown as 'nu'
OE-379	HTTP 404 error on Metadata Type page
OE-378	USER_ACCESS_REPORT is broken
OE-377	Update Credential provider to newer dependencies
OE-376	OIDC Spec Compatibility / Certification issues
OE-375	Update 4.2.1 with fixes based on observed EI problems
OE-374	Remove reporting batch task after the campaign was completed
OE-373	Select box is broken when MFA is enabled for a pattern
OE-371	On detail page view when click 'close' modal of comment it doesn't close and there is an error in browser console
OE-370	When user completes tasks on pivot and then clicks on tab summary he still can see loaded task, after refresh they gone
OE-368	Revoke of access doesn't revoke it actually
OE-367	Reviewer UI - reviewer table on details view must correctly reflect all steps of the process
OE-366	Certificate login not working when rproxy used
OE-364	While doing Search AD connector should be able to be requested exact datetime format
OE-362	Investigate issue with returning time values from AD connector
OE-361	Simplify log operations in .NET connectors
OE-360	Timeout when creating setting up application first time (4.2.1)
OE-359	Add ability to use `-ce` images when executing docker compose
OE-357	Send link to request details in approval notification for self registration
OE-356	Email of access certification says complete 'anytime' even if there is day limit
OE-355	Authentication - Knowledge questions
OE-352	BUG. Template USER_RESET_PASSWORD_ACTIVATION_NOTIFICATION doesn't work
OE-351	UI component for re-ordering approver association doesn't re-count level properly
OE-350	AD connector should check groupBaseDn for group operations
OE-349	Make .NET connector max log DB size configurable
OE-348	Stress Test 4.2.1: Clear result data
OE-347	Stress Test 4.2.1
OE-346	Exchange connector code improvements
OE-345	AD connector code improvements
OE-343	Password filter code refactoring
OE-342	Fix problem with cache encryption of Password filter service backup
OE-341	SSO - OIDC
OE-340	SSO - oAuth
OE-339	SSO-SAML
OE-338	Authentication and MFA
OE-336	Provisioning configure connector
OE-335	Kubernetes Installation
OE-334	Docker installation
OE-333	RPM Installation
OE-332	Product Documentation
OE-94	Linkedin registration
OE-88	Facebook registration
OE-87	Linkedin Login
OE-107	Expand Social Auth and Registration to include the major provider
OE-85	Improve UAR report
OE-143	Add Authorization Code Flow with Proof Key for Code Exchange (PKCE)
OE-30	Login Attributes management in OpenIAM on Oracle does not work
OE-86	Update Language packs for French and German
OE-31	Fix message for OTP SMS type
OE-106	Improve UAR core functionality
OE-105	[CLR] Target system integration
OE-83	Reviewer UI - Reports Tab
OE-13	Reviewer UI - Administration Tab
OE-51	Reviewer UI - Pivot view improvements
OE-53	Reviewer UI - Review detail view
OE-52	Reviewer UI - UAR Summary view (add tabbed view)
OE-54	Reviewer UI - Add page to show all UARs for the current user
OE-17	Reviewer UI - Add option for User access reviews to the portal landing page
OE-50	Admin UI - Add UAR Manager on page 1 the configuration screen
OE-103	User Access Review Report Improvements
OE-102	[CLR] User Access Review UI Improvements
OE-46	Fill email from google to custom field
OE-157	Audit for modify managed system has no information about what was modified
OE-125	Poor audit action logging
OE-47	Update syncPasswordFromSrc web method to allow validate request without save
OE-9	Reset Password via challenge response question not working - "Password synchronization is failed!" error
OE-1	Unable to create new User
OE-62	Access Reviews-Bulk cleanup for pending requests of certification
OE-244	Optimize Graph operations for large data sets
OE-23	Custom fields with type password are stored as plain text in DB
OE-80	Migrate upload storage volume to k8
OE-98	Audit report
OE-27	Connector configuration page is not loaded
OE-73	Documentations - How to upgrade
OE-75	Add feature to multiple delegate from request administration screen
OE-67	Entitlement membership report
OE-69	Orphaned account report
OE-281	React Refactor: /idp/unlockChallengeResponse
OE-246	Fix iam-services race conditions after 4.2.0.4 -> 4.2.1 merge
OE-35	Oracle EBS connector doesn't work with 4.2 version
OE-37	Change password audit has no requester
OE-36	Email approval fixing
OE-39	[Access Profile] Unable to create new access profiles
OE-272	Implementing SYNC operation for Microsoft Dynamics CRM connector
OE-254	Implementing Microsoft Dynamics CRM connector
OE-255	Merge 4.2.0.4 -> 4.2.1
OE-280	React Reactor: /idp/unlockPassword
OE-279	Refactor initial IDP pages into React
OE-101	When step of review is broke down into multiple steps then report looks confusing
OE-15	Access Certification: make sure that if task was delegated then report will represent it
OE-265	Extend OpenIAM endpoint for password filter to be able to run password validation
OE-223	Password filter - supporting validating AD passwords against OpenIAM policies
OE-49	AbstractMatchObjectRule MATCH_ATTR_MSYS_PRINCIPAL is not supported from UI anymore
OE-48	Access Certification: add button to UI to clean up campaign data
OE-235	TLS support from connectors side to RabbitMQ
OE-249	Refactor UI into React
OE-198	AD connector cuts -properties section on custom requests
OE-199	Metadata with values from user not working
OE-216	Update .NET connectors dependencies
OE-136	Simplify error logging on Azure connector
OE-211	Azure connector should support syncing group memberships in user request
OE-180	Business Rules menu is not showed
OE-242	Self-registration flow designer
OE-21	Entitlement owner membership: If user B was selected as owner/admin on edit role/grp/res page and then replaced by other user A. B remains as owner in membership.
OE-205	Redirect to https from rProxy running at http
OE-144	Remove references to smtp username/password in vault-bootstrap
OE-117	rProxy - If field value is empty it is not sent to Form Post
OE-56	AD connector should be able to get SID
OE-58	Connector Dev - LastPass
OE-19	Passwords can be exposed in logs in debug mode while running sync
OE-81	Bulk permission sync from Azure connector
OE-29	Fix page scrolling issue on User Comparison UI
OE-82	Introduce relation between users to maintain multiple accounts for a user
OE-42	Bulk operations does not work as expected
OE-78	Only set SMTP Username/password in vault once
OE-68	Azure group and role membership sync format changes
OE-71	Access Certification - report to show revoke operations
OE-24	Need to lock user object when saving, so other parallel user change transaction won't fail
OE-64	Ability to sync Azure Roles and role memberships
OE-90	Implement Azure DevOps report based on sync
OE-92	Enable only HIGH default ciphers in apache
OE-91	Remove dot from domain name in example configs
OE-100	Implementing SYNC operation for SharePoint .net connector
OE-130	Vulnerable version of the library 'handlebars.js' found
OE-14	[Orphan Management] Email Addresses doesn't appear in the table for the Orphan accounts
OE-12	[Orphan Management] Orphan identity search is not working
OE-7	[Report] Mandatory field mark is missing on Access Certification Report
OE-8	Actions on Search User page doesn't refresh UI to force user to re-login on session expiry
OE-10	Problem when create new access right
OE-22	Position change should be triggered by supervisor change + title changed
OE-158	[Audit Log] Failed Synchronization shows SUCCESS result in the audit log table
OE-32	[Selfservice] Create Group Request should not be present on the UI for non-admin users
OE-127	Validate deployment against Kubernetes 1.19 (per lev's note)
OE-251	Implement certificate based authentication for RabbitMQ
OE-44	Account merging functionality for Admins
OE-18	Wrong API response of Delete Alternate Contact
OE-219	Collect group memberships for group sync in Azure only upon request
OE-221	Update jQuery version to 3.5.1
OE-124	Update MS SQL Server connector to support import of entitlements and user
OE-212	Drop Attribute policy from the internal OpenIAM data model
OE-239	Collecting file shares information and usage report based on sync
OE-61	Implement reporting for Azure environment based on sync
OE-147	Connector queue settings for .NET connectors
OE-266	Migrate MSSQL connector to V5 structure
OE-233	Implementing powershell MSSQL connector
OE-234	Migrate WinLocal connector to connector v5 structure
OE-20	SAP Connector error on build
OE-57	Password filter documentation
OE-134	Fix and enable CreateUserRequestSeparateWorkflowTest.approveWithDefaultResource
OE-137	Managed System resources should not be public
OE-245	TestAddUserProvisionOperation.testProvisioningStream fails in 4.2.1
OE-38	Custom field width adjustment is not reflecting on the page
OE-59	ALTERNATE_ID column have to have a FK to USER_ID
OE-118	Ldap connector doesn't work on clean install unless you force to save it from UI
OE-322	Implementing unit tests for running extension applications in secure mode
OE-321	Implementing ability to restart extension applications
OE-70	Add Elastic Config step to Kubernetes docs
OE-97	Docs for RPM HA install
OE-120	File browser not working on version 4.2.0.1 (Groovy Manager)
OE-110	Count "Max. User Number" is not considered when the Role entitlement is added to the user
OE-113	Confusing pop up 'Organization Type Search' on organization type membership page
OE-25	etcd storage keeps growing and vault fails by timeout when tries to get values
OE-196	[Enhancement] Improve new entitlements view
OE-248	Check and update SSL for rpm installation for rProxy
OE-751	Credential provider MFA support
OE-320	Extending AppLauncher installer project for including RClone encryption dependencies
OE-253	Introduce graph database
OE-252	Update stack for 4.2.1
OE-319	Implementing App Launcher setting for reset RClone config password settings
OE-318	Implementing App Launcher password window
OE-317	Implementing App Launcher supporting encrypted RClone config file
OE-224	Update all cookies in rProxy and set ‘secured’ and ‘httpOnly’ attributes
OE-226	Password filter security
OE-220	Create Microsoft Dynamics CRM connector
OE-215	Azure connector should be able to work with MailEnabledSecurityGroups
OE-181	2FA during SAML SSO problems
OE-177	'Is Visible' checkbox resets to true even though set as false on user info save
OE-190	Some UI page send a page size less than one
OE-191	.NET connectors should return parameters in case sensitive manner - exactly like OpenIAM requested for search
OE-192	AD connector does not properly handle 'Never expire' password when dealing with Login module
OE-241	Create batch task to clean up unused csv files uploaded in sync
OE-243	AD connector should fallback to default location if both Path and BaseDN are not set
OE-316	Implementing unit tests for OneDrive module of App Launcher for macOS version
OE-231	Generic connector implementation
OE-228	Email notification about completion reconciliation
OE-197	Custom field display name disappears after save
OE-114	Content Security Policy prevent downloading report
OE-214	Audit logs are flooded by GET_SMS_OTP_STATUS
OE-210	Encrypt RabbitMQ password in connector configuration file
OE-315	Implementing OneDrive authorization window for macOS version
OE-314	Implementing OneDrive support for App Launcher for macOS version
OE-262	Add ability to sync group membership for Azure connector out of the box
OE-313	Implementing windows installation package with supporting OneDrive
OE-312	Implementing unit tests for OneDrive interfaces
OE-260	Automated TeamCity builds for Azure connector
OE-261	Installer implementation for new Azure connector
OE-195	Azure v4 connector wrongly detects available parameters for modifying group identities
OE-63	Improvements for P3 project
OE-193	Errors on groovy compile should show script name
OE-256	Increase timeout for rest API calls through rProxy
OE-311	Implementing OneDrive authorization windows for Windows version
OE-259	Extend Exchange connector debug messages coverage
OE-238	AD connectors should support setting Co out of the box
OE-104	Improve out of the box reports
OE-41	[Dh] Extend password policy to include a password dictionary
OE-206	Upgrade Springboot and ES to the latest
OE-250	Create a downloadable file as part of the release process with jars to enable groovy script development
OE-126	rProxy 4.2.1 related tasks and improvements
OE-271	Create api call for getCookieKey in common lib
OE-270	Create api call for validateToken in common lib
OE-269	Create api call for sendCert in common lib
OE-257	Exchange Online PowerShell part for a new connector version
OE-213	.NET connector documentation
OE-179	[Webconsole] Unable to remove already added out of office assistant
OE-176	[Webconsole] Unable to save out of office assistants start date and end date
OE-189	[Webconsole] System config > UI > Save - throws error if 'New Device Registration' fields kept empty
OE-188	[Webconsole] Fix web-element indentation on create Source Adapter page
OE-187	[Webconsole] Log Viewer - Additional Search for Audit Log Records is NOT working
OE-186	[Webconsole] Search user by criteria - Nickname is NOT working
OE-185	[Webconsole] Search by Organization Type not working on Organization Search page
OE-184	[Webconsole] Not able to add Questionnaire to the Resource
OE-310	Implementing unit tests for google drive extension
OE-268	Create api call for renewToken in common lib
OE-267	Create api call for federateUri in common lib
OE-145	Fix json parser in r-proxy
OE-329	User can login to ssh with OpenIAM user only from second attempt, if no such user exists locally
OE-328	Handle change password in pam module
OE-327	Login to ssh with OpenIAM user
OE-326	Login to X server (GUI) locally with OpenIAM user
OE-325	Login locally with OpenIAM user
OE-324	Create non-existing user on first login in pam module
OE-323	Call login api function from pam module
OE-258	Rewrite Azure PowerShell connector script to fit new connector version
OE-237	Improve group/role edit page to retrieve object from DB only once
OE-230	PAM module for authentication in Linux
OE-247	Refactor common functions in apache rProxy module
OE-149	Add url for Content Security Policy violations reporting
OE-222	Add ’secure’ flag to SESSION and JSESSIONID cookies in rProxy
OE-309	Implementing OneDrive support for App Launcher for Windows version
OE-151	Webconsole -> User manager -> Edit entitlements lets you add or remove entitlements but it does not let you edit the start and end date
OE-156	Audit log for make decision is weak
OE-217	Make 'Propagate Through Proxy' and 'Propagate on Error' disabled by default
OE-182	URI Pattern's Meta Data Items have empty 'Type' when editing
OE-183	URI Pattern's Meta Data displays old data after edit
OE-203	FIDO authentication - Add support for Web FIDO based authentication
OE-264	Rule based functionality to enable Automatic Provisioning and de-provisioning
OE-178	[Selfservice] Add mandatory field check for 'Token' on the scan QR code for Device Registration
OE-535	Approver of request shouldn't be able to delegate request to requester, this is security leak
OE-308	Adding supporting google drive for App Launcher
OE-307	Adding supporting enter key for App Launcher registration window (Mac OS version)
OE-306	Implementing App Launcher installation package for Mac OS
OE-305	Implementing App Launcher status window for Mac OS
OE-304	Implementing App Launcher registration window for MacOS
OE-263	MobileOTP - Show Notification Alert with data from push notification
OE-303	Implementing App Launcher context menu on menu bar for MacOS
OE-302	Move App Launcher project to portable library
OE-301	App Launcher installer should support adding shortcut on desktop and start menu panel
OE-300	Registration form should automatically submit when user presses ‘enter’ key for App Launcher
OE-299	Rename project Launchpad to App Launcher
OE-298	Implementing status window for App Launcher
OE-297	App Launcher tray icon should indicate error if App Launcher lost connection with OpenIAM
OE-109	Issues with challenge response while login to Webconsole - Access denied for new users
OE-296	Endpoint in core OpenIAM to get application id and start SSO
OE-295	Installer - implementing backend logic
OE-294	Installer - implementing UI
OE-293	UI - implementing login screen
OE-292	Implementing logout action
OE-291	UI - implementing managing application's menu
OE-290	UI - implementing tray menu flow
OE-289	Unit tests for configuration provider
OE-288	Configuration provider implementation
OE-287	Unit tests for DPAPI implementation
OE-286	Implementing secret storage using DPAPI
OE-285	Unit tests for OAuth2
OE-284	Supporting OAuth2 authentication
OE-283	Unit tests for embedded web server
OE-282	Embedded web server implementation
OE-202	App Launcher
OE-122	User must not be allowed to select past date while deleting
OE-201	Correct error message should be displayed for a login attempt of deactivated user
OE-208	Allow to set default value for 'Application Servers' on /webconsole/setup.html page from url arguments
OE-225	Connector: AppTable
OE-200	My approvals page on self service is not paged
OE-194	Org type does not render Asian and Cyrillic languages correctly
OE-232	r-proxy FUTURE related tasks and improvements
OE-171	Kerberos authentication in r-proxy v4
OE-204	Store Auth Cookie name for specified domain in r-proxy
OE-168	Protect RESTful using r-proxy and SAML
OE-172	Protect RESTful services using r-proxy and oauth2
OE-166	PostbackURL config option in Content Provider settings is ignored
OE-227	URL parse functions
OE-218	Modify the proxy to take into account new changes: Error Mappings

Release 4.2.1.15

Changelog for v2026.1.1