Release 4.2.1.9

The log below describes the changes in v4.2.1.9.

Issue keySummary
OE-2620mail Approval/Rejection via email doesn't work for New Hire With Approval Request.
OE-2619Custom Redirect defined in the system configuration doesn't redirect user to a custom URL after reset password.
OE-2618Redirect in loop after calling post-login metadata endpoint.
OE-2617UAR count tasks issue (Oracle DB).
OE-2614PostgresDB: request history and request administration pages are not loading data.
OE-2613Role Type appears NULL in the response of "get roles by Id" api.
OE-2611Need to add script to override approvers for revoke request.
OE-2600Password validation on webconsole reset password page.
OE-2599Password history rule is ignored when reset password in Active Directory using password filter.
OE-2598Fix typos on Metadata edit page.
OE-2595Users being returned as only the reportees instead of the entire tree, with collapse/uncollapse functionality breaking for Active/InActive sesion.
OE-2594MsSQL DB. User task history has incorrect table data.
OE-2589Add Related account via API Documentation.
OE-2587Wrong behavior for Criipto and Duo authentication if used "Select auth type" page.
OE-2586RPROXY Auth Types NOT working.
OE-2585Improvements into helpdesk functionality (introduce custom attributes and MFA).
OE-2584Mail Box configuration password is visible as plain text.
OE-2583Bug adding more search criteria on user search page.
OE-2577IDOR vulnerability In Task screen.
OE-2576When manager/admin resets password for a user, expiry date/grace period are not updated.
OE-2572Just created user was added to role by BR but identity wasn't generated.
OE-2567Vulnerability related to handling of consecutive forward slashes in URL validation in postBackUrl parameter.
OE-2566Device Reistration leads to invalid error dialog.
OE-2564Enable dropdown for metadata in webconsole edit user.
OE-2561Postback url parameters get turncated in login page.
OE-2560Oauth token Refresh is not returing token.
OE-2558Error when saving user multiple times in short period of time (concurrency saving faiulure).
OE-2557Modify CSF rulesin proxy.
OE-2552OpenIAM Vulnerabilities discovered by scanner.
OE-2547Bug when submit new hire request with auto-approved step and requester has lots of direct reports.
OE-2545Alphabetical Search in header.
OE-2535Show proper comments to the delegatee user if the actual approver is out of office.
OE-2534Encrypt password type attr while saving simulation req.
OE-2527Issue2: Request Auto-Approval After First Approval Step Despite Multiple Levels of Approvers and User is assigned Access.
OE-2518Oauth PKCE Grant flow disable client secret check.
OE-2505Update the OpenIAM mobile app for iOS and publish to the app store.
OE-2500when direct report page is in bulk mode need to hide action buttons.
OE-2497Cannot do cert authentication in ESB.
OE-2496Update Redis helm to the latest 17.7.x chart .
OE-2481Group management in selfservice portal issues.
OE-2460Include oauth2 authorization endpoint in consent scope.
OE-2453Validation not working for Select supervisor field on user template in Selfservice.
OE-2435Security vulnerabilities in 4.2.1.8 (Self Service) Content security policy not implemented properly.
OE-2400Disable/enable of identity is skiped due to man system was not found in cache.
OE-2390Update OpenIAM workflows to allow integration with ticket system.
OE-2292Add ability to skip policy map performing white setPassword operation.
OE-2282Group entitlement end date not getting saved from admin console.
OE-2181PROVISIONING_ADD / MODIFY shows a warning related to Business rules.
OE-1824Webconsole user reset password menu throws error "password cannot contain login".
OE-1577rpm installer can't install pre-released version.
OE-1463Parametrized operation reindexAll (ability to disable reindex by desire).
OE-1304User 'Email Type' appears blank on Selfservice.