Release notes 5.X

5.04.00

Features

  • Transaction signing support for mobile authentication with push.

Improvements

  • ONGAuthenticationErrorAuthenticatorDeregistered is returned when the fingerprint authenticator is deregistered
  • Internet connectivity and server reachability errors are now returned as ONGGenericErrorNetworkConnectivityFailure and ONGGenericErrorServerNotReachable respectively and no longer as ONGGenericErrorUnknown.

Bugfixes

  • The fingerprint authenticator was not marked as preferred after migrating from iOS SDK version 4.x to 5.04.00.

5.03.08

Bug fixes

  • Fixed error returned after cancelling fingerprint authentication.
  • Fingerprint is no longer deregistered when the device is locked during authentication.
  • Fixed error decryption crash when payload encryption is on.

5.03.07

Bug fixes

  • Fixed fingerprint and mobile authentication migration issues.
  • Fixed DCU error preventing successful client validation.

5.03.06

Bug fixes

  • Added missing body parameter to ONGResourceRequest.

5.03.05

Bug fixes

  • Fixed jailbreak detection false positives.

5.03.04

Bug fixes

  • Fixed a case where the SDK would think all user profiles are deregistered because of an issue with the NSUserDefaults.
  • Fixed concurrency issues with dynamic client registration.
  • Fixed an issue that prevented detecting abuse (jailbreak / debugger) on the Server side in a certain case.

5.03.03

Bug fixes

  • The invalid grant type error will no longer deregister the device.
  • The client configuration is now cached on the device.
  • Fixed a crash occurring when no response body was received from the Security Proxy.
  • Fixed a crash during error handling when payload encryption is turned on.

5.03.02

Bugfixes

  • The fingerprint authenticator was not marked as preferred after migrating from iOS SDK version 4.x to 5.x.

5.03.01

Bugfixes

  • The local logout error is no longer propagated when revocation succeeded with unsupported content type.

5.03.00

Features

  • Added support for unauthenticated resource calls.
  • Network communication can now be logged using SecurityController.

Improvements

  • Improved security of tokens stored in the memory.

5.02.01

Bugfixes

  • Fixed crash when payload encrytion handshake fails during resource requests.

5.02.00

Features

  • Registration requests are now cancellable.
  • Mobile Authentication transactionId is now accessible in ONGMobileAuthRequest.

Improvements

  • Improved security of the randomization algorythm used in payload encryption.

Bugfixes

  • ONGRequestBuilder now properly sets headers property when building ONGResourceRequest.
  • Fixed error handling for FIDO errors.

5.01.02

Bugfixes

  • Touch ID authentication was not properly disabled after the SDK detected abuse.
  • Correctly handle User and device deregistration for Touch ID authentication.
  • Only return fully registered profiles.
  • Prevent generating empty nonces for payload encryption messages.

Improvements

  • Add accept application/json headers to all REST requests.

5.01.01

Bugfixes

  • Deregistering FIDO authenticator doesnt mark all of FIDO authenticator as deregistered anymore.
  • Fixed user deregistered and device deregistered error handling.
  • Payload encryption handshake is no longer failing when executing concurrent network tasks.

5.01.00

Features

  • Support for FIDO UAF (Fast IDentity Online) authenticators.

Improvements

  • Authenticator type values inlined with Android SDK.

Bugfixes

  • Fixed concurrency issue which might have prevented from receiving a new pin challenge.
  • Fixed validatePinWithPolicy issue preventing successful registration.
  • Cancelling mobile authentication now sends error with correct description.
  • Fixed issue when mobile authentication might have logout the user.

5.00.02

Features

  • Added beta support for FIDO authentication.

Bugfixes

  • Fixed bug preventing retrial of DCU.
  • Fixed device registration & upgrade for iOS 10 on a Cordova app.

5.00.01

Bugfixes

  • Fixed the bug which was preventing from including a path within base URL.

5.00.00

Improvements

  • Error codes were aligned with Android.
  • Create and change pin challenges are now cancellable.
  • Methods for fetching registered and nonregistered authenticators are now both synchronous and take a user profile as a parameter.
  • Introduced allAuthenticatorsForUser: convenience method.

Bugfixes

  • Fixed mobile authentication cancellation.
  • Fixed occasional error preventing registration completion.
  • The authenticatedUserProfile property of ONGUserClient is now updated after deregistration.
  • The ONGMobileAuthRequest now provides a message property instead of a title and body.
  • The ONGMobileAuthRequest now properly returns a user profile.
  • Removed clearTokens: and isAuthorized methods from ONGUserClient.
  • Fixed migration issues.

5.00.00-BETA

This is a BETA release that can still contain bugs and issues. You should not use it for any production releases!

Improvements

  • Completely redesigned public API to make the SDK easier to use.