Powered by Algolia

    New in v4.2.1.13

    Version 4.2.1.13 contains minor upgrades along with security and vulnerability fixes. The full set of changes can be found in the change log. Below is an overview of the improvements and steps required after upgrading.

    Changes in Groovy scripts

    In OpenIAM version 4.2.1.13, the reconciliation feature was refactored to improve load distribution across nodes in a clustered environment and to provide an out-of-the-box report on its results. Consequently, some Groovy scripts were modified:

    1. Scripts extending BaseReconciliationGroupCommand, such as iamscripts/recon/CreateIdmGroupCustomCommand/UpdateIdmGroupCustomCommand.groovy, underwent a signature change.

    Before:

    Map<String, Attribute> attributes, String activityId, String parentAuditLogId, Map<String, String> dataMap) throws Exception {

    After:

    Map<String, Attribute> attributes, String parentAuditLogId, Map<String, Object> dataMap) throws Exception {
    1. The signature was also changed for scripts extending AbstractPopulationScript.

    Before:

    public int execute(Map<String, Attribute> line, ProvisionUser pUser) {

    After:

    int execute(Map<String, Attribute> line, ProvisionUser pUser, Map<String, Object> dataMap) {
    1. The return type was changed for scripts extending DefaultAuthenticationCustomHandler.

    Before:

    String principalConversion(String principal, String managedSysId, String auditLogId) {

    After:

    PrincipalConversionResponse principalConversion(String principal, String managedSysId, String auditLogId) {

    PrincipalConversionResponse - Return Type Explanation

    The PrincipalConversionResponse class is the return type for methods that handle the conversion of a principal during the authentication process.

    When a principal (such as an employee ID) needs to be modified (for example, converted to a user login), this class is used to return the updated principal along with a flag that indicates whether the login entity should be re-evaluated.

    Key Properties:

    1. Updated Principal (principal): This represents the updated principal value after conversion (like the user login after mapping).
    2. Login Entity Update Flag (loginEntityUpdated): This boolean flag indicates whether the login entity should be re-evaluated after the principal conversion.

    Use Case: The PrincipalConversionResponse is used in situations where the principal undergoes a transformation during authentication (e.g., converting an employee ID into a user login). It returns an object that not only contains the updated principal but also indicates whether further actions are needed, such as re-evaluating the associated login entity.


    Important Note:
    In version 4.2.1.13, the Reconciliation History page has been removed, and its data deleted. Before upgrading, ensure that you download any necessary reports. Starting from OpenIAM v4.2.1.13, new CSV reports will be generated for reconciliation, and synchronization results will be recorded in the audit log.

    New Groovy scripts

    1. A new Groovy script has been introduced for a new batch task - iamscripts/batch/cancelUARCampaign.groovy. The details of this new batch task are described in this document.

    2. A new Groovy script for customizing the CreateAccessRequest approver flow is available: iamscripts/bpm/CustomCreateUserRequestEntitlementsApproverAssociationIdentifier.groovy.

    

    

    export const _frontmatter = {"title":"New in v4.2.1.13","metaTitle":"Summary of New Features and Improvements in v4.2.1.3","metaDescription":"This section provides a summary of the new features and improvements available in v4.2.1.13 relative to v4.2.1.12."}
    Previous
    New in v4.2.1.12
    Next
    New in v4.2.1.5