[Unity-idm-discuss] Release 1.3.0

[Krzysztof B. <go...@ic...>]

Dear All,

Release 1.3.0 is ready. It features a great amount of of new features.
Before upgrading be sure to review update documentation: upgrade process 
was simplified but caution is still needed.

For those using snapshot builds of 1.3.0 the automatic update not work. 
In such a case export to JSON and import to clean database is required.

Details and download link are in the usual location:
http://www.unity-idm.eu/site/downloads


The most important changes:

-) A new endpoint supporting SAML ECP protocol was added. The endpoint 
allows for using Unity to bootstrap the ECP login (i.e. Unity is a SP).

-) A new RESTful endpoint was added, allowing to query the Unity 
database in a simple way.

-) OAuth2 and OpenID Connect remote authentication is possible now. 
Tested with Google, Microsoft Live and Facebook providers.

-) Translation profiles were greatly enhanced and improved. There two 
kinds of translation profiles now: input and output. The input profiles 
have the same purpose as the former translation profiles, but the 
actions were refactored so their creation is much simpler, intuitive and 
at the same time much more flexible. The output profiles are a new 
concept, allowing to dynamically change the data which is returned via 
the IdP endpoints. The new functionality of translation profiles allows 
for creating ad-hoc identities and attributes with complex contents. 
What is also very important the documentation was greatly improved, 
contains many examples and the Admin UI offer a greater help during edit.

-) It is possible to configure remote SAML authenticator with a SAML 
metadata, what allows to set its trust in a simple way. It is also 
possible to use metadata of several federations and to override some of 
the automatically imported manually.

-) Unity was updated to use latest web framework release what should 
improve login experience a lot:
  --) page address doesn't change on the authentication screen,
  --) remote authentication has no lag after returning to Unity,
  --) rare hangs of the remote authentication were eliminated.

-) There is a number of smaller Admin UI improvements:
  --) simple identities search
  --) it is possible to see source IdP, profile and timestamps of 
identities and attributes obtained remotely.
  --) it is possible to remove many rows of tables at once.

-) Registration forms can be configured to be automatically accepted 
when custom conditions are fulfilled.

-) Dynamic, automatically created identities framework was refactored 
fixing several bugs. Additionally it is possible to inspect 
automatically created identities in the Admin UI and even to manually 
clean them.

-) There is a new JWT authentication method, useful for keeping login 
sessions for RESTful interface.


Best regards,
Krzysztof