Release 4.2.1.9

The log below describes the changes in v4.2.1.9.

Issue key	Summary
OE-2620	mail Approval/Rejection via email doesn't work for New Hire With Approval Request.
OE-2619	Custom Redirect defined in the system configuration doesn't redirect user to a custom URL after reset password.
OE-2618	Redirect in loop after calling post-login metadata endpoint.
OE-2617	UAR count tasks issue (Oracle DB).
OE-2614	PostgresDB: request history and request administration pages are not loading data.
OE-2613	Role Type appears NULL in the response of "get roles by Id" api.
OE-2611	Need to add script to override approvers for revoke request.
OE-2600	Password validation on webconsole reset password page.
OE-2599	Password history rule is ignored when reset password in Active Directory using password filter.
OE-2598	Fix typos on Metadata edit page.
OE-2595	Users being returned as only the reportees instead of the entire tree, with collapse/uncollapse functionality breaking for Active/InActive sesion.
OE-2594	MsSQL DB. User task history has incorrect table data.
OE-2589	Add Related account via API Documentation.
OE-2587	Wrong behavior for Criipto and Duo authentication if used "Select auth type" page.
OE-2586	RPROXY Auth Types NOT working.
OE-2585	Improvements into helpdesk functionality (introduce custom attributes and MFA).
OE-2584	Mail Box configuration password is visible as plain text.
OE-2583	Bug adding more search criteria on user search page.
OE-2577	IDOR vulnerability In Task screen.
OE-2576	When manager/admin resets password for a user, expiry date/grace period are not updated.
OE-2572	Just created user was added to role by BR but identity wasn't generated.
OE-2567	Vulnerability related to handling of consecutive forward slashes in URL validation in postBackUrl parameter.
OE-2566	Device Reistration leads to invalid error dialog.
OE-2564	Enable dropdown for metadata in webconsole edit user.
OE-2561	Postback url parameters get turncated in login page.
OE-2560	Oauth token Refresh is not returing token.
OE-2558	Error when saving user multiple times in short period of time (concurrency saving faiulure).
OE-2557	Modify CSF rulesin proxy.
OE-2552	OpenIAM Vulnerabilities discovered by scanner.
OE-2547	Bug when submit new hire request with auto-approved step and requester has lots of direct reports.
OE-2545	Alphabetical Search in header.
OE-2535	Show proper comments to the delegatee user if the actual approver is out of office.
OE-2534	Encrypt password type attr while saving simulation req.
OE-2527	Issue2: Request Auto-Approval After First Approval Step Despite Multiple Levels of Approvers and User is assigned Access.
OE-2518	Oauth PKCE Grant flow disable client secret check.
OE-2505	Update the OpenIAM mobile app for iOS and publish to the app store.
OE-2500	when direct report page is in bulk mode need to hide action buttons.
OE-2497	Cannot do cert authentication in ESB.
OE-2496	Update Redis helm to the latest 17.7.x chart .
OE-2481	Group management in selfservice portal issues.
OE-2460	Include oauth2 authorization endpoint in consent scope.
OE-2453	Validation not working for Select supervisor field on user template in Selfservice.
OE-2435	Security vulnerabilities in 4.2.1.8 (Self Service) Content security policy not implemented properly.
OE-2400	Disable/enable of identity is skiped due to man system was not found in cache.
OE-2390	Update OpenIAM workflows to allow integration with ticket system.
OE-2292	Add ability to skip policy map performing white setPassword operation.
OE-2282	Group entitlement end date not getting saved from admin console.
OE-2181	PROVISIONING_ADD / MODIFY shows a warning related to Business rules.
OE-1824	Webconsole user reset password menu throws error "password cannot contain login".
OE-1577	rpm installer can't install pre-released version.
OE-1463	Parametrized operation reindexAll (ability to disable reindex by desire).
OE-1304	User 'Email Type' appears blank on Selfservice.

Release 4.2.1.8

Release 4.2.1.10