Powered by Algolia

    New in v2026.3.2

    OpenIAM version 2026.3.2 delivers a series of enhancements, stability improvements, and critical fixes across core platform components. This release includes new features in logging, auditing, authentication, and UI modernization, along with important connector and infrastructure updates.

    New Features

    Logging and audit

    OE-2882 – SQLite logger sink rotation Introduced a pluggable SQLite logger sink implementation within the logging module, enabling structured log persistence with rotation support.

    OE-2883 – Text logger sink rotation Added a pluggable text logger sink, allowing logs to be written and rotated in plain text format for flexible logging configurations.

    OE-3184 – Enhanced audit log export Audit logs can now be exported to external systems with configurable filters and scheduling in syslog-compatible format. Additional features are:

    • Enables selective event export based on customer-defined criteria.
    • Introduces connector-based streaming for real-time integration with systems such as Splunk.
    • Has authentication and session management. More on configuring the feature can be found here.

    OE-3815 – Concurrent sessions and session revocation behavior Clarified and improved handling of concurrent user sessions and token revocation scenarios:

    • Defined expected behavior for multiple active sessions per user
    • Improved handling when sessions are superseded or revoked
    • Standardized UI behavior for invalidated sessions to ensure consistent user experience

    OE-3834 – OIDC revocation endpoint support The OIDC discovery URL now includes the revocation_endpoint, addressing security requirements for token lifecycle management and compliance.

    Connector and integration improvements

    OE-3914 – PsGraph connector: password reset support Added the ability to reset user passwords during SAVE operations within the PsGraph connector, enabling broader provisioning scenarios.

    Data processing and synchronization

    OE-3615 – CSV synchronization script (customer-ready) Introduced a standardized CSV synchronization script supporting the Joiner-Mover-Leaver (JML) process without requiring customer-side modifications for common use cases.

    Platform and infrastructure

    OE-3858 – Upgrade to latest compatible libraries Upgraded core platform dependencies to the latest compatible versions of Spring Boot and Java, improving performance, security, and maintainability.

    Bug Fixes

    Authentication and sessions

    OE-3821 – Forgot Password workflow issues Resolved issues where the “Forgot Password” process failed to send reset emails and incorrectly handled authentication flow. Also improved handling of unused authentication types.

    OE-3891 – Authorization failure for PTS application Fixed 500 errors when accessing the PTS application unless authorization was disabled for the /* URI pattern.

    OE-3815 – Session invalidation inconsistencies Addressed issues where invalidated sessions or revoked tokens still allowed partial access instead of proper redirection to login.

    Connectors and messaging

    OE-3890 – JDBC connector NullPointerException Fixed a critical issue causing provisioning failures due to a NullPointerException in the RabbitMQ listener, blocking connector operations.

    OE-3898 – Enum deserialization failure after Jackson 3.x upgrade Resolved message deserialization issues in RabbitMQ caused by changes in Jackson 3.x enum handling. Ensured compatibility with existing message formats.

    OE-3865 – PowerShell connector stuck RabbitMQ connections Fixed issues where stalled RabbitMQ connections prevented connector services from stopping, impacting installer and lifecycle operations.

    OE-3909 – Push notification failure on password reset Resolved an issue where push notifications were not triggered during password reset workflows.

    User access and administration

    OE-3722 – UAR saved without reviewers validation Fixed behavior where certification configurations could be saved without defining reviewers. The system now enforces proper validation and user guidance.

    OE-3748 – Supervisor principal not displayed in user profile Corrected an issue where the Supervisor Principal field was not displayed in the Supervisors & Subordinates section.

    Database and performance

    OE-3916 – Missing database indexes causing performance degradation Resolved critical performance issues caused by missing indexes on foreign keys. This led to excessive table scans, deadlocks, and system-wide slowdowns affecting:

    • UAR processing
    • Workflow execution
    • Provisioning and JML jobs
    • SelfService access

    Indexes are now properly created to prevent locking and improve query performance.

    UI and theming

    OE-3796 – Windows installer whitespace handling Fixed issues in the WIX installer where whitespace in Windows service names or paths caused installation failures.

    Access and application behavior

    OE-3877 – Mobile app store publishing Prepared and enabled publishing of the OpenIAM mobile application to both Google Play and Apple App Store, addressing release and distribution requirements.

    Minor upgrades

    • General improvements to system stability and performance across connectors and workflows.
    • Enhancements to logging extensibility via pluggable sinks.
    • Improved compatibility across authentication, provisioning, and messaging layers.
    • Updated handling of RabbitMQ messaging and connector lifecycle operations.
    • Minor UI and backend refinements aligned with React migration and modern frontend standards
    Previous
    New in v2026.3.1
    Next
    New in 2026.3.3