WSO2 Identity Server 5.1.0 Alpha2 Released !! Date: 23rd October 2015The WSO2 Identity Server team is pleased to announce the release of WSO2 Identity Server 5.1.0 Alpha 2. You can download this distribution from *https://github.com/wso2/product-is/releases/tag/v5.1.0-alpha2 <https://github.com/wso2/product-is/releases/tag/v5.1.0-alpha2>*
Following list [1] contains all bug fixes and improvements available with alpha2 release. We encourage you to report issues, improvements and feature requests regarding WSO2 Identity Server through the public WSO2 Identity Server JIRA <https://wso2.org/jira/browse/IDENTITY> ~ The WSO2 Identity Server Team ~ [1] Release Notes - WSO2 Identity Server - Version 5.1.0-Alpha2 Bug - [IDENTITY-1071 <https://wso2.org/jira/browse/IDENTITY-1071>] - Expiry Times were managed at multiple places prior to IS 5.0.0 - [IDENTITY-1217 <https://wso2.org/jira/browse/IDENTITY-1217>] - Passwords in Ldap are stored in plain text - [IDENTITY-1805 <https://wso2.org/jira/browse/IDENTITY-1805>] - A user in a secondary user store having admin privileges, should not be able to delete own secondary user store - [IDENTITY-1982 <https://wso2.org/jira/browse/IDENTITY-1982>] - [intermittent]java.lang.SecurityException: Key Store with a name : <<tenant domain>>.jks does not exist exception thrown when loading the tenant - [IDENTITY-2403 <https://wso2.org/jira/browse/IDENTITY-2403>] - SP based JIT provisioning did not work - [IDENTITY-2421 <https://wso2.org/jira/browse/IDENTITY-2421>] - [intermittent] Runtime exception in decoding SAMLRequest in SAMLSSO Application Authenticator - [IDENTITY-2558 <https://wso2.org/jira/browse/IDENTITY-2558>] - IdP's default authenticator is not updated at the SP side when we change the default authenticator in IdP - [IDENTITY-2692 <https://wso2.org/jira/browse/IDENTITY-2692>] - User cannot create a service provider when the username case insensitivity is enabled - [IDENTITY-2803 <https://wso2.org/jira/browse/IDENTITY-2803>] - Passive STS realm is not validate while authenticating the user - [IDENTITY-2810 <https://wso2.org/jira/browse/IDENTITY-2810>] - UserStore configs added through UI does not set username regex properties correctly - [IDENTITY-2835 <https://wso2.org/jira/browse/IDENTITY-2835>] - Passive-STS Logout does not work - [IDENTITY-2911 <https://wso2.org/jira/browse/IDENTITY-2911>] - Error Thrown when Federating with google and provisioning users with PostgreSQL - [IDENTITY-2940 <https://wso2.org/jira/browse/IDENTITY-2940>] - [JIT] Default claim value specified in advanced claim configuration, is not set in user profile - [IDENTITY-2949 <https://wso2.org/jira/browse/IDENTITY-2949>] - Email of the tenant admin is missing in user profile after tenant creation - [IDENTITY-3070 <https://wso2.org/jira/browse/IDENTITY-3070>] - Issue in getAllowedUIResourcesForUser() in RemoteAuthorizationManager, when parameter <GetAllRolesOfUserEnabled> is set to true in user-mgt.xml - [IDENTITY-3105 <https://wso2.org/jira/browse/IDENTITY-3105>] - Bulk Import Users form allows to submit data without a default password - [IDENTITY-3131 <https://wso2.org/jira/browse/IDENTITY-3131>] - [APPM] Entries in User role cache disappear after multiple cache gets lost for no specific reason - [IDENTITY-3147 <https://wso2.org/jira/browse/IDENTITY-3147>] - Error messages when adding a user is not informative - [IDENTITY-3152 <https://wso2.org/jira/browse/IDENTITY-3152>] - User name case sensitivity issue with Oracle as user store. - [IDENTITY-3164 <https://wso2.org/jira/browse/IDENTITY-3164>] - <Property name="MemberOfAttribute">memberOf</Property> should be added to Default active directory configuration - [IDENTITY-3202 <https://wso2.org/jira/browse/IDENTITY-3202>] - [Password Policy] User cannot be created using a password adhering to new password pattern - [IDENTITY-3222 <https://wso2.org/jira/browse/IDENTITY-3222>] - Challenge questions set through setChallengeQuestions operation are not shown in dashbaord - [IDENTITY-3236 <https://wso2.org/jira/browse/IDENTITY-3236>] - There is no UI Entry to add DisplayNameAttribute value when creating a Secondary user stores - [IDENTITY-3245 <https://wso2.org/jira/browse/IDENTITY-3245>] - when connected to OpenLDAP, cannot add special characters in tenant usernames when UserDNPattern is not specified in user-mgt.xml - [IDENTITY-3255 <https://wso2.org/jira/browse/IDENTITY-3255>] - JDBC Secondary User Store inconsistent JDBCUserStoreConstants - [IDENTITY-3260 <https://wso2.org/jira/browse/IDENTITY-3260>] - When using a colon sign ":" in admin password, it giving error. - [IDENTITY-3264 <https://wso2.org/jira/browse/IDENTITY-3264>] - getLDAPRoleListOfUser not working with member-Attribute when User DN-Pattern is empty - [IDENTITY-3266 <https://wso2.org/jira/browse/IDENTITY-3266>] - CommonHybridLDAPTenantManager does not check if the tenant OU is created in LDAP before creatint it. - [IDENTITY-3296 <https://wso2.org/jira/browse/IDENTITY-3296>] - Email templates ui does not save special characters in a proper way - [IDENTITY-3303 <https://wso2.org/jira/browse/IDENTITY-3303>] - SCIM filter behave in unexpected manner when filter contains * character - [IDENTITY-3310 <https://wso2.org/jira/browse/IDENTITY-3310>] - Concurrency issue in adding an entry to SAMLSSOSessionIndexCache - [IDENTITY-3323 <https://wso2.org/jira/browse/IDENTITY-3323>] - While two different SP configurations are opened in two tabs, when updating the one SP configuration, other SP configuration is also got updated. - [IDENTITY-3330 <https://wso2.org/jira/browse/IDENTITY-3330>] - Adding a separate claim type for "passivests" (in FrameworkConstants.RequestType class) to be used with getDialectUri method - [IDENTITY-3333 <https://wso2.org/jira/browse/IDENTITY-3333>] - To do the bulk import, need disable the secondary user store - [IDENTITY-3342 <https://wso2.org/jira/browse/IDENTITY-3342>] - LDAP Bulk User Import - [IDENTITY-3348 <https://wso2.org/jira/browse/IDENTITY-3348>] - Possible null pointer in "doSetUserClaimValues" value method. - [IDENTITY-3352 <https://wso2.org/jira/browse/IDENTITY-3352>] - SCIM operations does not operate properly when IS is running in dumb mode - [IDENTITY-3353 <https://wso2.org/jira/browse/IDENTITY-3353>] - IS doesn't provision when deleting claims of a user at user store - [IDENTITY-3360 <https://wso2.org/jira/browse/IDENTITY-3360>] - LDAP/AD SSO Logins cause two AD login events - [IDENTITY-3366 <https://wso2.org/jira/browse/IDENTITY-3366>] - Error when applying security policy to sts - [IDENTITY-3387 <https://wso2.org/jira/browse/IDENTITY-3387>] - User core must ignore the "PartialResultException" throws by AD - [IDENTITY-3433 <https://wso2.org/jira/browse/IDENTITY-3433>] - Typo issue in Error message returned in addRemoveUsersOfRole in UserAdmin service when the user store is read only - [IDENTITY-3454 <https://wso2.org/jira/browse/IDENTITY-3454>] - Relay State is encoded - [IDENTITY-3467 <https://wso2.org/jira/browse/IDENTITY-3467>] - OAuth token generation fails when the user name is an email address - [IDENTITY-3474 <https://wso2.org/jira/browse/IDENTITY-3474>] - UseAuthenticatedUserDomainCrypto property does not work with WSO2IS 5.0.0 SP1 - [IDENTITY-3481 <https://wso2.org/jira/browse/IDENTITY-3481>] - Roles are not visible for users in secondary AD userstore - [IDENTITY-3485 <https://wso2.org/jira/browse/IDENTITY-3485>] - User search result gives ldap internal users - [IDENTITY-3489 <https://wso2.org/jira/browse/IDENTITY-3489>] - Roles added via admin service are not checked when user performing an action. - [IDENTITY-3528 <https://wso2.org/jira/browse/IDENTITY-3528>] - Error while adding datepicker for selecting date range with jquery 1.6.0 - [IDENTITY-3531 <https://wso2.org/jira/browse/IDENTITY-3531>] - NPE on login after a session time out - [IDENTITY-3536 <https://wso2.org/jira/browse/IDENTITY-3536>] - SSO enabled ESB with IS - logout functionality leads to unexpected behavior, when user is idle / server restart - [IDENTITY-3540 <https://wso2.org/jira/browse/IDENTITY-3540>] - Invalid SAMLSSOServiceProviderDO used in cache - Single Log Out with signed response fails - [IDENTITY-3546 <https://wso2.org/jira/browse/IDENTITY-3546>] - Unable to use "org.wso2.carbon.security.util.ServerCrypto" in a CXF JAX-WS application running on AS - [IDENTITY-3549 <https://wso2.org/jira/browse/IDENTITY-3549>] - Adding users and roles for read/write AD as the secondary user store is not allowed in Greg 5.0.0 - [IDENTITY-3555 <https://wso2.org/jira/browse/IDENTITY-3555>] - Cannot login from a user in secondary user store, if primary user store is inaccessible - [IDENTITY-3565 <https://wso2.org/jira/browse/IDENTITY-3565>] - LDAP connections are not closing propertly in user core - [IDENTITY-3567 <https://wso2.org/jira/browse/IDENTITY-3567>] - Outbound Provisioning to salesforce doesn't work - [IDENTITY-3570 <https://wso2.org/jira/browse/IDENTITY-3570>] - can't customize sso redirect page - [IDENTITY-3582 <https://wso2.org/jira/browse/IDENTITY-3582>] - In tenant mode, added roles are not visible in UI when using SCIM - [IDENTITY-3586 <https://wso2.org/jira/browse/IDENTITY-3586>] - Error when deleting OAuth/OpenID Connect Configuration in Service Provider - [IDENTITY-3588 <https://wso2.org/jira/browse/IDENTITY-3588>] - mysql - BPS profile Error at startup with -Dsetup when stating IS in "full" profile - [IDENTITY-3594 <https://wso2.org/jira/browse/IDENTITY-3594>] - Exception throws when try to access the user management in carbon console after configuring secondary remote user store. - [IDENTITY-3598 <https://wso2.org/jira/browse/IDENTITY-3598>] - Junk directories and files can be observed in the components directory - [IDENTITY-3603 <https://wso2.org/jira/browse/IDENTITY-3603>] - Access token generation using client credentials grant type fails for scope 'openid' - [IDENTITY-3604 <https://wso2.org/jira/browse/IDENTITY-3604>] - [IS510][Cluster] Default port 443 doesn't get set for "SAML2SSOAuthenticationService" endpoint - [IDENTITY-3607 <https://wso2.org/jira/browse/IDENTITY-3607>] - User password provisioning does not work with multiple user stores - [IDENTITY-3609 <https://wso2.org/jira/browse/IDENTITY-3609>] - Error and Warnings when starting server with -Dprofile=full - [IDENTITY-3610 <https://wso2.org/jira/browse/IDENTITY-3610>] - "System Error Occurred" was thrown when list the BPS profile with postgres database - [IDENTITY-3611 <https://wso2.org/jira/browse/IDENTITY-3611>] - Username shown as "Null" in Assign Roles section - [IDENTITY-3618 <https://wso2.org/jira/browse/IDENTITY-3618>] - Access token generation in tenant failed for Password grant type with scope=openid. - [IDENTITY-3620 <https://wso2.org/jira/browse/IDENTITY-3620>] - Deadlock when closing subscribers in Oracle - [IDENTITY-3621 <https://wso2.org/jira/browse/IDENTITY-3621>] - Classes which implement 'Serializable' shoud use unique random serialVersionUID value - [IDENTITY-3622 <https://wso2.org/jira/browse/IDENTITY-3622>] - "registry.xml" file has converted to dos mode - [IDENTITY-3623 <https://wso2.org/jira/browse/IDENTITY-3623>] - Workflow Engagements page UI is not consistent - [IDENTITY-3624 <https://wso2.org/jira/browse/IDENTITY-3624>] - Created workflow not get selected when create workflow through "Add new association" - [IDENTITY-3625 <https://wso2.org/jira/browse/IDENTITY-3625>] - Issue with SAML2 grant type for Oauth in tenant mode - [IDENTITY-3628 <https://wso2.org/jira/browse/IDENTITY-3628>] - Error when adding new User Profile using JDBCUserStoreManager - [IDENTITY-3630 <https://wso2.org/jira/browse/IDENTITY-3630>] - After adding GetAllRolesOfUserEnabled property to AuthorizationManager, Permissions are not properly reflected in AppCloud for Developer and AppOwner roles due error mentioned in the ticket. - [IDENTITY-3632 <https://wso2.org/jira/browse/IDENTITY-3632>] - Remove fixed endpoints in Google/Windows Live authenticators from UI to a config file - [IDENTITY-3637 <https://wso2.org/jira/browse/IDENTITY-3637>] - Workflow request not saved properly when add user triggered via SCIM - [IDENTITY-3646 <https://wso2.org/jira/browse/IDENTITY-3646>] - User consent still needed after setting SkipUserConsent=true - [IDENTITY-3647 <https://wso2.org/jira/browse/IDENTITY-3647>] - Not correct to keep default Alias as "null" - [IDENTITY-3651 <https://wso2.org/jira/browse/IDENTITY-3651>] - Different claim format from the IdP supporting OAuth/OpenID Connect (another IS) - [IDENTITY-3652 <https://wso2.org/jira/browse/IDENTITY-3652>] - JIT provisioning unsucessful when "subject identifier" and "attributes" are taken from two different steps. - [IDENTITY-3653 <https://wso2.org/jira/browse/IDENTITY-3653>] - NPE when trying to retrun the claims of a secondary user store user - [IDENTITY-3655 <https://wso2.org/jira/browse/IDENTITY-3655>] - [SCIM provisioning connector] ResourceNotFoundException when trying to delete user - only when User Store Domain is specified - [IDENTITY-3656 <https://wso2.org/jira/browse/IDENTITY-3656>] - [SCIM provisioning connector] Provisioned user is not assigned to the role - when User Store Domain is specified - [IDENTITY-3657 <https://wso2.org/jira/browse/IDENTITY-3657>] - Invalid info message when Idneitty.mgt service is disabled and try to lock user accont - [IDENTITY-3659 <https://wso2.org/jira/browse/IDENTITY-3659>] - System Error occured when adding tenants - Primary user store as read/write AD - [IDENTITY-3660 <https://wso2.org/jira/browse/IDENTITY-3660>] - Facebook ID is displaying as the user name - [IDENTITY-3664 <https://wso2.org/jira/browse/IDENTITY-3664>] - Tenant Domain - SAML Assertion Audience Restriction validation failed when login in to Travelocity with IDP initiated SAML2 SSO - [IDENTITY-3669 <https://wso2.org/jira/browse/IDENTITY-3669>] - carbon-core bundle should activated before workflow.impl bundle - [IDENTITY-3670 <https://wso2.org/jira/browse/IDENTITY-3670>] - Exception in backend when login into Dashboard - [IDENTITY-3672 <https://wso2.org/jira/browse/IDENTITY-3672>] - OAuth and Identity Provider Server Feature installation issues - [IDENTITY-3673 <https://wso2.org/jira/browse/IDENTITY-3673>] - cannot login to dashboard - [IDENTITY-3675 <https://wso2.org/jira/browse/IDENTITY-3675>] - Error while decoding authentication request Exception observed when login into dashboard when saml.sso debug logs enabled - [IDENTITY-3676 <https://wso2.org/jira/browse/IDENTITY-3676>] - Confirmation message gets attached to window instead of popup message - [IDENTITY-3679 <https://wso2.org/jira/browse/IDENTITY-3679>] - NPE was observed when login to dashboard - [IDENTITY-3680 <https://wso2.org/jira/browse/IDENTITY-3680>] - Completed task are not getting listed - [IDENTITY-3682 <https://wso2.org/jira/browse/IDENTITY-3682>] - Records are not showing after suspending - [IDENTITY-3684 <https://wso2.org/jira/browse/IDENTITY-3684>] - Missing dependency bundles in the "identity-mgt" - [IDENTITY-3686 <https://wso2.org/jira/browse/IDENTITY-3686>] - [IS510][Cluster][Load/Long][SAML] ORA-00001: unique constraint violation while storing session data - [IDENTITY-3687 <https://wso2.org/jira/browse/IDENTITY-3687>] - [IS510][Cluster][Intermittent] Server not responding when accessing registry for few minutes - [IDENTITY-3689 <https://wso2.org/jira/browse/IDENTITY-3689>] - Front end validation error for add Tenant admin username - [IDENTITY-3690 <https://wso2.org/jira/browse/IDENTITY-3690>] - Backend validation doesn't work for create Tenant user - [IDENTITY-3691 <https://wso2.org/jira/browse/IDENTITY-3691>] - Front end Tenant Admin password validation - [IDENTITY-3692 <https://wso2.org/jira/browse/IDENTITY-3692>] - UI not highlighted for the required fields - [IDENTITY-3696 <https://wso2.org/jira/browse/IDENTITY-3696>] - [user store] Error at test connection for secondary user store(JDBC) - [IDENTITY-3697 <https://wso2.org/jira/browse/IDENTITY-3697>] - change password for user navigate to dead page - [IDENTITY-3698 <https://wso2.org/jira/browse/IDENTITY-3698>] - Cannot suspend a user deletion without claiming the record - [IDENTITY-3699 <https://wso2.org/jira/browse/IDENTITY-3699>] - IDP initiated SLO not working. Not getting the SAML Logout Response for the GET - [IDENTITY-3701 <https://wso2.org/jira/browse/IDENTITY-3701>] - [IS510][Cluster][Load/Long][SAML] "Context does not exist. Probably due to invalidated cache" - [IDENTITY-3702 <https://wso2.org/jira/browse/IDENTITY-3702>] - [IS510][Cluster][Load/Long][SAML] com.hazelcast.core.OperationTimeoutException - [IDENTITY-3703 <https://wso2.org/jira/browse/IDENTITY-3703>] - [IS510][Cluster][Load/Long][SAML] "No Established Sessions corresponding to Session Indexes provided" - [IDENTITY-3706 <https://wso2.org/jira/browse/IDENTITY-3706>] - Super tenant workflow association's are visible to Tenant - [IDENTITY-3708 <https://wso2.org/jira/browse/IDENTITY-3708>] - Workflow not trigger for Tenants - [IDENTITY-3710 <https://wso2.org/jira/browse/IDENTITY-3710>] - Tenant mode BPEL & HT packages are getting deployed to the Super tenant location - [IDENTITY-3712 <https://wso2.org/jira/browse/IDENTITY-3712>] - Issue with add new user profile when using JDBC primary user store - [IDENTITY-3713 <https://wso2.org/jira/browse/IDENTITY-3713>] - Same username(user1) can be added before delete the user(user1) via workflow - [IDENTITY-3716 <https://wso2.org/jira/browse/IDENTITY-3716>] - [IS510][Cluster][OAuth] NPE occurred when requesting 'Authorization code' Access token by using an expired 'Authorization code' - [IDENTITY-3717 <https://wso2.org/jira/browse/IDENTITY-3717>] - [IS510] Audit logs need to include an entry for "Single Logout" event - [IDENTITY-3719 <https://wso2.org/jira/browse/IDENTITY-3719>] - [IS510][Cluster] - Error when deleting Secondary User stores - [IDENTITY-3721 <https://wso2.org/jira/browse/IDENTITY-3721>] - Error when creating Service Provider with an already created SP name which was deleted - [IDENTITY-3722 <https://wso2.org/jira/browse/IDENTITY-3722>] - XACML policies cannot be tried out from Try-it tool because of encoding special characters - [IDENTITY-3734 <https://wso2.org/jira/browse/IDENTITY-3734>] - Federated User ID showed with prefix "null" - [IDENTITY-3736 <https://wso2.org/jira/browse/IDENTITY-3736>] - [IS510][Cluster][OAuth][Load/Long] ORA-01653: unable to extend table - Oracle 'USER DBF' file grow up to 1GB within 2 hours - [IDENTITY-3738 <https://wso2.org/jira/browse/IDENTITY-3738>] - JIT provisioning didn't work for SAML > SAML federated scenario for jdbc Primary User Store - [IDENTITY-3741 <https://wso2.org/jira/browse/IDENTITY-3741>] - [Federated Setup] - When clicking already disabled authenticators NPE thrown in backend - [IDENTITY-3743 <https://wso2.org/jira/browse/IDENTITY-3743>] - Error when starting server with MySQL with -Dsetup [Error occurred while populating identity configuration properties] - [IDENTITY-3744 <https://wso2.org/jira/browse/IDENTITY-3744>] - [MSSQL] - Error while retrieving session data when login into Dashboard - [IDENTITY-3746 <https://wso2.org/jira/browse/IDENTITY-3746>] - Error in backend when super tenant users and tenant users logs into dashboard except admin - [IDENTITY-3748 <https://wso2.org/jira/browse/IDENTITY-3748>] - Identity server does not check for the selected grant types while authorizing. - [IDENTITY-3751 <https://wso2.org/jira/browse/IDENTITY-3751>] - 'Bulk Import Users' option should be available at 'Add Users and Roles' page - [IDENTITY-3753 <https://wso2.org/jira/browse/IDENTITY-3753>] - Cannot be rename the role which created at secondary user store - Active Directory R/W - [IDENTITY-3757 <https://wso2.org/jira/browse/IDENTITY-3757>] - Date field is null in Application logs and System logs - [IDENTITY-3759 <https://wso2.org/jira/browse/IDENTITY-3759>] - Can't assign admin role to users - [IDENTITY-3760 <https://wso2.org/jira/browse/IDENTITY-3760>] - Users created by management console are not created as SCIM users when SCIM is enabled in Userstore configuration - [IDENTITY-3762 <https://wso2.org/jira/browse/IDENTITY-3762>] - Exception occurs at server startup configured with mysql/mssql - [IDENTITY-3764 <https://wso2.org/jira/browse/IDENTITY-3764>] - [MSSQL] Error when creating users/roles - Exception in Backend - [IDENTITY-3765 <https://wso2.org/jira/browse/IDENTITY-3765>] - [MSSQL] - Error when creating tenants - Error in adding claims - [IDENTITY-3766 <https://wso2.org/jira/browse/IDENTITY-3766>] - DB2 ERROR: Failed to Add / list users or roles - [IDENTITY-3773 <https://wso2.org/jira/browse/IDENTITY-3773>] - [MSSQL/Oracle] - Error when adding custom claims for IDP - [IDENTITY-3774 <https://wso2.org/jira/browse/IDENTITY-3774>] - Error when editing tenant details - [IDENTITY-3775 <https://wso2.org/jira/browse/IDENTITY-3775>] - User cannot view 'user profile' in AD read only as secondary user store - [IDENTITY-3777 <https://wso2.org/jira/browse/IDENTITY-3777>] - [Federated Setup - Openid-connect as IDP and SAML as SP] - JIT provisioning failed for Google Authenticator in tenant mode - [IDENTITY-3779 <https://wso2.org/jira/browse/IDENTITY-3779>] - WARN thrown when deleting Identity Providers added - [IDENTITY-3780 <https://wso2.org/jira/browse/IDENTITY-3780>] - Issue with username validation and improper error message popup for secondary user stores - user creation - [IDENTITY-3781 <https://wso2.org/jira/browse/IDENTITY-3781>] - ClassNotFoundException when login to passive STS replying party application - [IDENTITY-3783 <https://wso2.org/jira/browse/IDENTITY-3783>] - [Federated Setup - Openid-connect as IDP and SAML as SP] - Custom Claims are not sent in Response - [IDENTITY-3784 <https://wso2.org/jira/browse/IDENTITY-3784>] - Numerical ID displayed for nameid-format:emailAddress when authenticated via Google authenticator - [IDENTITY-3786 <https://wso2.org/jira/browse/IDENTITY-3786>] - Unable to provide default password in SCIM provisioning configuration - [IDENTITY-3787 <https://wso2.org/jira/browse/IDENTITY-3787>] - [Tenant mode] [SCIM provisioning connector] [Password provisioning enabled] Error when updating the password - [IDENTITY-3789 <https://wso2.org/jira/browse/IDENTITY-3789>] - Users created in Secondary Userstore are not retrieved as SCIM users when listing via curl -v -k --user admin:admin https://localhost:9443/wso2/scim/Users - [IDENTITY-3791 <https://wso2.org/jira/browse/IDENTITY-3791>] - Locking the Users in secondary user stores failed - [IDENTITY-3792 <https://wso2.org/jira/browse/IDENTITY-3792>] - [Tenant mode] SQLIntegrityConstraintViolationException observed when generating access token for resource owner password credential grant type - [IDENTITY-3793 <https://wso2.org/jira/browse/IDENTITY-3793>] - Cannot delete all members(users) from SCIM PATCH operation - [IDENTITY-3794 <https://wso2.org/jira/browse/IDENTITY-3794>] - [IS510][ClaimMapping] Facebook claims doesn't receive by the Service Provider registered with 'Tenant's Secondary Userstore User' - [IDENTITY-3795 <https://wso2.org/jira/browse/IDENTITY-3795>] - UI : duplicate list items in Workflow Engagements > add new association > Operation Name drop down list - [IDENTITY-3798 <https://wso2.org/jira/browse/IDENTITY-3798>] - [Federated Setup - Openid as IDP and SAML as SP] - java.lang.NoClassDefFoundError when login with SAML to travelocity - [IDENTITY-3799 <https://wso2.org/jira/browse/IDENTITY-3799>] - [IS510] NULL value appear in Advanced Authenticators dropdown - [IDENTITY-3801 <https://wso2.org/jira/browse/IDENTITY-3801>] - [IS510][Cluster][OAuth][Load/Long] ORA-08103: object no longer exists - [IDENTITY-3802 <https://wso2.org/jira/browse/IDENTITY-3802>] - Authentication does not happen properly when another IS is acting as Passive STS provider - [IDENTITY-3803 <https://wso2.org/jira/browse/IDENTITY-3803>] - [Oracle 12c]Null displayed for Attribute Consuming Service Index when attribute profile is not enabled. - [IDENTITY-3804 <https://wso2.org/jira/browse/IDENTITY-3804>] - Invalid domain name error for AD secondary user store after disabled the user store and navigate to List-> Roles - [IDENTITY-3805 <https://wso2.org/jira/browse/IDENTITY-3805>] - Authentication with yahoo IdP failed. - [IDENTITY-3809 <https://wso2.org/jira/browse/IDENTITY-3809>] - [Federated Setup - SAML as IDP and Oauth/Openid-Connect as SP] - JIT provisioning fails in tenant mode - User is provisioned to super tenant domain - [IDENTITY-3813 <https://wso2.org/jira/browse/IDENTITY-3813>] - After editing the Service Provider name user no longer see the created configuration - [IDENTITY-3814 <https://wso2.org/jira/browse/IDENTITY-3814>] - [IS510][Cluster][OAuth/SAML][Load/Long] ResourceNotFoundException: Resource does not exist at path /_system/config/repository/components/org.wso2.carbon.identity.mgt/data - [IDENTITY-3815 <https://wso2.org/jira/browse/IDENTITY-3815>] - [IS510][Cluster][OAuth/SAML][Load/Long] NPE - exception while processing task:com.hazelcast.spi.impl.eventservice.impl.LocalEventDispatcher - [IDENTITY-3816 <https://wso2.org/jira/browse/IDENTITY-3816>] - Authentication with IWA failed for Travelocity for Login with SAML - [IDENTITY-3817 <https://wso2.org/jira/browse/IDENTITY-3817>] - NPE was observed when starting the cluster - [IDENTITY-3819 <https://wso2.org/jira/browse/IDENTITY-3819>] - "401 Error: Unauthorized" error was getting when list the approval from dashboard in cluster mode - [IDENTITY-3820 <https://wso2.org/jira/browse/IDENTITY-3820>] - Backend gives an error, When password reset via Admin service - [IDENTITY-3821 <https://wso2.org/jira/browse/IDENTITY-3821>] - add/update groups to primary user store with domain name via curl command is creating/updating two records to scim - [IDENTITY-3823 <https://wso2.org/jira/browse/IDENTITY-3823>] - [Federated Setup - Google oauth/Openid-connect as IDP and oauth/openid connect as SP] - Authentication failed for tenant mode - [IDENTITY-3824 <https://wso2.org/jira/browse/IDENTITY-3824>] - [IS510][Federation][Provisioning] Tenant JIT inbound user provisioning hits Workflows and provision users to Super Tenant - [IDENTITY-3832 <https://wso2.org/jira/browse/IDENTITY-3832>] - [IS510][Cluster][OAuth/SAML][Load/Long] NPE - Tenant domain has not been set in CarbonContext - [IDENTITY-3834 <https://wso2.org/jira/browse/IDENTITY-3834>] - While two different IDP configurations are opened in two tabs, when updating the one IDP configuration Error occurred - [IDENTITY-3835 <https://wso2.org/jira/browse/IDENTITY-3835>] - [CarbonRemoteUserStoreManger] Error when removing secondary user store user - [IDENTITY-3839 <https://wso2.org/jira/browse/IDENTITY-3839>] - List and add user pages go blank if secondary user store (CarbonRemoteUserStoreManger) configuration is wrong - [IDENTITY-3840 <https://wso2.org/jira/browse/IDENTITY-3840>] - [CarbonRemoteUserStoreManger] Cannot update user store configuration - [IDENTITY-3842 <https://wso2.org/jira/browse/IDENTITY-3842>] - [RemoteUserStoreManagerService] Last name attribute value is constanlty added when updating claims - [IDENTITY-3843 <https://wso2.org/jira/browse/IDENTITY-3843>] - One Time Password doesn't work as expected - [IDENTITY-3844 <https://wso2.org/jira/browse/IDENTITY-3844>] - Updating the Group name via SCIM, removes all the users associated with the Group - [IDENTITY-3845 <https://wso2.org/jira/browse/IDENTITY-3845>] - [RemoteUserStoreManagerService] Access Denied returned when trying to getTenantIdofUser - [IDENTITY-3847 <https://wso2.org/jira/browse/IDENTITY-3847>] - [Federated Setup - Google/Openid connect as IDP and Openid as SP] - Does not direct to the Google authenticator for tenant domain - [IDENTITY-3849 <https://wso2.org/jira/browse/IDENTITY-3849>] - Cannot register oauth application when unselect code and implicit grant type - [IDENTITY-3851 <https://wso2.org/jira/browse/IDENTITY-3851>] - Fixing case senstivity problem in INTERNAL domain. - [IDENTITY-3855 <https://wso2.org/jira/browse/IDENTITY-3855>] - Can't login to Dashboard if external BPS is down - [IDENTITY-3857 <https://wso2.org/jira/browse/IDENTITY-3857>] - [IS510][UserManagement] Permissions not get saved for INTERNAL Roles - [IDENTITY-3858 <https://wso2.org/jira/browse/IDENTITY-3858>] - Can not customize scope in Google Authenticator - [IDENTITY-3860 <https://wso2.org/jira/browse/IDENTITY-3860>] - One Time Password Claim value cannot be updated correctly for any user - [IDENTITY-3862 <https://wso2.org/jira/browse/IDENTITY-3862>] - [RemoteUserStoreManagerService] "Invalid operation" returned for getUserId operation - [IDENTITY-3864 <https://wso2.org/jira/browse/IDENTITY-3864>] - [RemoteUserStoreManagerService] Profiles with special characters can be created with setUserClaimValues - [IDENTITY-3868 <https://wso2.org/jira/browse/IDENTITY-3868>] - Can't authorize with 'remember me' checked - [IDENTITY-3872 <https://wso2.org/jira/browse/IDENTITY-3872>] - [Workflows > Add Approval Step] - Searching for Roles/Groups by hitting Enter throws out a blank page - [IDENTITY-3888 <https://wso2.org/jira/browse/IDENTITY-3888>] - [Dashboard] - Associated Accounts of Secondary User store users are not getting removed when the user is deleted - [IDENTITY-3889 <https://wso2.org/jira/browse/IDENTITY-3889>] - OAuth2TokenValidationService.findOAuthConsumerIfTokenIsValid() return wrong AuthorizedUser - [IDENTITY-3891 <https://wso2.org/jira/browse/IDENTITY-3891>] - Backend gives an error when deleting a user with +- sign in the username - [IDENTITY-3893 <https://wso2.org/jira/browse/IDENTITY-3893>] - [Request Path Authentication] Only OAuthRequestPathAuthenticator is listed as a local authenticator - [IDENTITY-3894 <https://wso2.org/jira/browse/IDENTITY-3894>] - [Request Path Authentication] User credential prompted even after sending right access token - [IDENTITY-3899 <https://wso2.org/jira/browse/IDENTITY-3899>] - SAML > SAML federation in Tenant mode - NPE thrown when signing out from Travelocity - [IDENTITY-3909 <https://wso2.org/jira/browse/IDENTITY-3909>] - Unique constraint violation error while storing session data when performing concurrent OAuth authorization - [IDENTITY-3915 <https://wso2.org/jira/browse/IDENTITY-3915>] - OperationCleanUpService not working in MySQL - [IDENTITY-3920 <https://wso2.org/jira/browse/IDENTITY-3920>] - Facebook Authenticator gives all the claims when nothing requested - [IDENTITY-3921 <https://wso2.org/jira/browse/IDENTITY-3921>] - Some claims received in Google Authenticator when no claims requested Improvement - [IDENTITY-1054 <https://wso2.org/jira/browse/IDENTITY-1054>] - Allow user search with some attribute value. - [IDENTITY-2012 <https://wso2.org/jira/browse/IDENTITY-2012>] - Redirect to commonauth servlet using the relative path - [IDENTITY-2611 <https://wso2.org/jira/browse/IDENTITY-2611>] - UsernameWithEmailJavaScriptRegEx missing in default user-mgt.xml - [IDENTITY-2699 <https://wso2.org/jira/browse/IDENTITY-2699>] - Role which generated for SP can be deleted from UI - [IDENTITY-2771 <https://wso2.org/jira/browse/IDENTITY-2771>] - Re-factoring required for org.wso2.carbon.identity.oauth:4.2.3 component - [IDENTITY-2993 <https://wso2.org/jira/browse/IDENTITY-2993>] - SAML2 Signature algorithm must be configurabled in Default Response/Assertion Builders - [IDENTITY-3133 <https://wso2.org/jira/browse/IDENTITY-3133>] - Passive STS IDP related configurations must be configurable through UI or configuation file. - [IDENTITY-3140 <https://wso2.org/jira/browse/IDENTITY-3140>] - UserDNPattern should not be an optional attribute - [IDENTITY-3156 <https://wso2.org/jira/browse/IDENTITY-3156>] - Token Revocation for Implicit Grant Tokens are not possible without sending client secret - [IDENTITY-3402 <https://wso2.org/jira/browse/IDENTITY-3402>] - Upgrade to latest openid4java version - [IDENTITY-3448 <https://wso2.org/jira/browse/IDENTITY-3448>] - We need to check the existence of group within group search base when groups are assigned to given user. - [IDENTITY-3449 <https://wso2.org/jira/browse/IDENTITY-3449>] - This is no need to search for attributes when it is already presented in DN - [IDENTITY-3515 <https://wso2.org/jira/browse/IDENTITY-3515>] - Need to allow multiple destinations in signed SAML requests - [IDENTITY-3561 <https://wso2.org/jira/browse/IDENTITY-3561>] - Self Sign Up and Account Confirmation - Generated Confirmation Keys Not Get Deleted - [IDENTITY-3571 <https://wso2.org/jira/browse/IDENTITY-3571>] - listBPSprofiles should not show 'embeddedBPS' when defaultprofile is used - [IDENTITY-3576 <https://wso2.org/jira/browse/IDENTITY-3576>] - Show a row saying 'No Requests Found' in Workflows list table - [IDENTITY-3626 <https://wso2.org/jira/browse/IDENTITY-3626>] - Make session timeout independent from storing implementation - [IDENTITY-3629 <https://wso2.org/jira/browse/IDENTITY-3629>] - BPEL & HT packages are not getting removed when delete workflows - [IDENTITY-3635 <https://wso2.org/jira/browse/IDENTITY-3635>] - Give a warning when you configure an HTTP endpoint as OAuth callback URL or the SAML 2.- ACS - [IDENTITY-3639 <https://wso2.org/jira/browse/IDENTITY-3639>] - Re-Factoring Workflow Feature - [IDENTITY-3661 <https://wso2.org/jira/browse/IDENTITY-3661>] - BPS Profile - Manager/Worker URL update - [IDENTITY-3662 <https://wso2.org/jira/browse/IDENTITY-3662>] - Workflow Wizard implement for Edit and View - [IDENTITY-3683 <https://wso2.org/jira/browse/IDENTITY-3683>] - InfoRecovery Sample app has hardcoded step count as 2 for recovering with challenge questions - [IDENTITY-3695 <https://wso2.org/jira/browse/IDENTITY-3695>] - Role is not getting approved when user is in unapproved state - [IDENTITY-3735 <https://wso2.org/jira/browse/IDENTITY-3735>] - Change the dashboard login page - [IDENTITY-3877 <https://wso2.org/jira/browse/IDENTITY-3877>] - Improve UX of User Portal - [IDENTITY-3901 <https://wso2.org/jira/browse/IDENTITY-3901>] - [IS510][FIDO] NPE - Should not allow to configure to get the 'subject identifier' and 'attributes' from FIDO authenticator Patch - [IDENTITY-2913 <https://wso2.org/jira/browse/IDENTITY-2913>] - OpenID prompt=none is not working - [IDENTITY-3311 <https://wso2.org/jira/browse/IDENTITY-3311>] - Control Case Sensitivity of Username in each User Store with a Property - [IDENTITY-3400 <https://wso2.org/jira/browse/IDENTITY-3400>] - "memberUid" attribute can not be handled as memership attribute in user core - [IDENTITY-3423 <https://wso2.org/jira/browse/IDENTITY-3423>] - Dead Lock encountered when deleting a hybrid role - [IDENTITY-3430 <https://wso2.org/jira/browse/IDENTITY-3430>] - IS SAML session timeout is not configurable - [IDENTITY-3431 <https://wso2.org/jira/browse/IDENTITY-3431>] - Social Account Association does not work properly for tenant users. - [IDENTITY-3437 <https://wso2.org/jira/browse/IDENTITY-3437>] - Internal roles do not work properly with secondary user stores. - [IDENTITY-3469 <https://wso2.org/jira/browse/IDENTITY-3469>] - NPE when claims are set to non existing user with identity mgt event listener enabled - [IDENTITY-3524 <https://wso2.org/jira/browse/IDENTITY-3524>] - Error occured when use TryIt tool to evaluate policy - [IDENTITY-3532 <https://wso2.org/jira/browse/IDENTITY-3532>] - Exception thrown when logging in to IS when multiple user-stores are enabled - [IDENTITY-3551 <https://wso2.org/jira/browse/IDENTITY-3551>] - When OAuth2 access token persistence fails due to IntegrityConstraintViolation respond with a 503 Status HTTP Response - [IDENTITY-3579 <https://wso2.org/jira/browse/IDENTITY-3579>] - Improve Error messages when creating a user with existing user name, invalid password, etc.. - [IDENTITY-3581 <https://wso2.org/jira/browse/IDENTITY-3581>] - Exception while invoking UserAdmin::changePasswordByUser for a secondary user store user with SCIM enabled - [IDENTITY-3649 <https://wso2.org/jira/browse/IDENTITY-3649>] - Load XACML policies from file system does not work in IS 5.0.0 - [IDENTITY-3755 <https://wso2.org/jira/browse/IDENTITY-3755>] - 'sub' attribute in OIDC UserInfo response not returned - [IDENTITY-3772 <https://wso2.org/jira/browse/IDENTITY-3772>] - OpenIDConnect UserInfo Response is missing sub claim - [IDENTITY-3903 <https://wso2.org/jira/browse/IDENTITY-3903>] - URL Decode on SSO request didn't work properly Task - [IDENTITY-2565 <https://wso2.org/jira/browse/IDENTITY-2565>] - If XACML related properties are outdated in identity.xml those must be removed from that file. - [IDENTITY-2596 <https://wso2.org/jira/browse/IDENTITY-2596>] - SAML2SSOManager is typed in application-authentication.xml - [IDENTITY-2652 <https://wso2.org/jira/browse/IDENTITY-2652>] - TODO list for CARBON-14744 - [IDENTITY-2669 <https://wso2.org/jira/browse/IDENTITY-2669>] - Printing Realm Cache log repeated manner - [IDENTITY-2872 <https://wso2.org/jira/browse/IDENTITY-2872>] - Parameter "AssertionConsumerServiceURL" should be added to "authenticators.xml" - [IDENTITY-2967 <https://wso2.org/jira/browse/IDENTITY-2967>] - Test IS 5.1.0 with WebContextRoot and ProxyContextPath - [IDENTITY-3250 <https://wso2.org/jira/browse/IDENTITY-3250>] - IS should adjust own Google authenticator according to the latest Google migration from OpenID2 to OpenIDConnect - [IDENTITY-3450 <https://wso2.org/jira/browse/IDENTITY-3450>] - User Management operations take lot of time when the user base is large - [IDENTITY-3534 <https://wso2.org/jira/browse/IDENTITY-3534>] - Need to do performance benchmarks for all IS features - [IDENTITY-3544 <https://wso2.org/jira/browse/IDENTITY-3544>] - [Migration] Migration from IS 5.0.0 SP01 to IS 5.1.0 - [IDENTITY-3574 <https://wso2.org/jira/browse/IDENTITY-3574>] - Need to update the slf4j version range on waffle and oltu orbit bundle - [IDENTITY-3599 <https://wso2.org/jira/browse/IDENTITY-3599>] - Create oltu-1.0.0 orbit bundle - [IDENTITY-3600 <https://wso2.org/jira/browse/IDENTITY-3600>] - Create openid4java-1.0.0 orbit bundle - [IDENTITY-3634 <https://wso2.org/jira/browse/IDENTITY-3634>] - Yahoo! authenticator still uses OpenID - should be migrated to OAuth 2.0 - [IDENTITY-3665 <https://wso2.org/jira/browse/IDENTITY-3665>] - [Oauth2] Issue in custom grant type access token generation - [IDENTITY-3811 <https://wso2.org/jira/browse/IDENTITY-3811>] - Create IDP_METADATA and SP_METADATA tables - [IDENTITY-3822 <https://wso2.org/jira/browse/IDENTITY-3822>] - Pack Mutual SSL Authenticator by default - [IDENTITY-3826 <https://wso2.org/jira/browse/IDENTITY-3826>] - Add a feature to pack sso agent from carbon-identity - [IDENTITY-3856 <https://wso2.org/jira/browse/IDENTITY-3856>] - Identity Management + Workflow use case should break - [IDENTITY-3861 <https://wso2.org/jira/browse/IDENTITY-3861>] - getSafeText() is still used in many places - [IDENTITY-3881 <https://wso2.org/jira/browse/IDENTITY-3881>] - Changing Cleanup Task Configurations Wish - [IDENTITY-3732 <https://wso2.org/jira/browse/IDENTITY-3732>] - Changes to the Associated User Accounts UI Sub-task - [IDENTITY-2057 <https://wso2.org/jira/browse/IDENTITY-2057>] - Review identity mgt related claims in claim-config.xml - [IDENTITY-2197 <https://wso2.org/jira/browse/IDENTITY-2197>] - EntitlementService is required managed permission - [IDENTITY-2686 <https://wso2.org/jira/browse/IDENTITY-2686>] - Need to write a DB based Security Policy Deployer for STS - [IDENTITY-2969 <https://wso2.org/jira/browse/IDENTITY-2969>] - Authentication endpoint doesn't work when Proxy Context Path is set in WSO2 IS 5.0.0 - [IDENTITY-3074 <https://wso2.org/jira/browse/IDENTITY-3074>] - User consent page url can not be configure.. although we can change login page url - [IDENTITY-3175 <https://wso2.org/jira/browse/IDENTITY-3175>] - Make confirmation code invalidation (after one use) optional in password reset with email flow - [IDENTITY-3521 <https://wso2.org/jira/browse/IDENTITY-3521>] - P2 Profile for workflow features - [IDENTITY-3552 <https://wso2.org/jira/browse/IDENTITY-3552>] - Remove deleted workflow request in IS from BPS as well - [IDENTITY-3553 <https://wso2.org/jira/browse/IDENTITY-3553>] - Documentation for Workflow - [IDENTITY-3558 <https://wso2.org/jira/browse/IDENTITY-3558>] - Ability to enable/disable workflow triggering globally - [IDENTITY-3568 <https://wso2.org/jira/browse/IDENTITY-3568>] - Final Workflow code review before 5.1.0-Beta - [IDENTITY-3584 <https://wso2.org/jira/browse/IDENTITY-3584>] - SAML2 Digest algorithm must be configurabled in Default Response/Assertion Builders - [IDENTITY-3589 <https://wso2.org/jira/browse/IDENTITY-3589>] - Duplicate entry for key 'CON_APP_KEY' - [IDENTITY-3593 <https://wso2.org/jira/browse/IDENTITY-3593>] - Enable embedded workflow engine out-of-the-box - and have a way to disable it in a production setup if its not required. - [IDENTITY-3597 <https://wso2.org/jira/browse/IDENTITY-3597>] - Creating 'Workflow' domain to create per workflow role - [IDENTITY-3640 <https://wso2.org/jira/browse/IDENTITY-3640>] - Decouple WF Framework from all the templates and workflow implementations. - [IDENTITY-3641 <https://wso2.org/jira/browse/IDENTITY-3641>] - Prepare Generic UI for Workflow framework - [IDENTITY-3642 <https://wso2.org/jira/browse/IDENTITY-3642>] - More flexible Template and WorkflowImpl metadata holder. - [IDENTITY-3643 <https://wso2.org/jira/browse/IDENTITY-3643>] - Re-Factor Bean/DTO usage within this whole feature and register service class as OSGi. - [IDENTITY-3644 <https://wso2.org/jira/browse/IDENTITY-3644>] - Creating seperate OSGi Bundle for template and workflowimpl - [IDENTITY-3645 <https://wso2.org/jira/browse/IDENTITY-3645>] - Workflow Request Delete Listener - [IDENTITY-3668 <https://wso2.org/jira/browse/IDENTITY-3668>] - Change Test Cases for this refactoring - [IDENTITY-3747 <https://wso2.org/jira/browse/IDENTITY-3747>] - Create indices for the user database operations in user core database scripts - [IDENTITY-3827 <https://wso2.org/jira/browse/IDENTITY-3827>] - Database access from ApplicationDAOImpl needs to be optimized to minimize access operations - [IDENTITY-3828 <https://wso2.org/jira/browse/IDENTITY-3828>] - WorkflowDAO database queries occur multiple times for single user delete operation - [IDENTITY-3829 <https://wso2.org/jira/browse/IDENTITY-3829>] - [UX] Create markups for new IS login and register pages -- Hasintha Indrajee Software Engineer WSO2, Inc. Mobile:+94 771892453
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
