Release notes 5.X
5.04.00
Features
- Transaction signing support for mobile authentication with push.
Improvements
- ONGAuthenticationErrorAuthenticatorDeregistered is returned when the fingerprint authenticator is deregistered
- Internet connectivity and server reachability errors are now returned as
ONGGenericErrorNetworkConnectivityFailure
andONGGenericErrorServerNotReachable
respectively and no longer asONGGenericErrorUnknown
.
Bugfixes
- The fingerprint authenticator was not marked as preferred after migrating from iOS SDK version 4.x to 5.04.00.
5.03.08
Bug fixes
- Fixed error returned after cancelling fingerprint authentication.
- Fingerprint is no longer deregistered when the device is locked during authentication.
- Fixed error decryption crash when payload encryption is on.
5.03.07
Bug fixes
- Fixed fingerprint and mobile authentication migration issues.
- Fixed DCU error preventing successful client validation.
5.03.06
Bug fixes
- Added missing
body
parameter toONGResourceRequest
.
5.03.05
Bug fixes
- Fixed jailbreak detection false positives.
5.03.04
Bug fixes
- Fixed a case where the SDK would think all user profiles are deregistered because of an issue with the
NSUserDefaults
. - Fixed concurrency issues with dynamic client registration.
- Fixed an issue that prevented detecting abuse (jailbreak / debugger) on the Server side in a certain case.
5.03.03
Bug fixes
- The invalid grant type error will no longer deregister the device.
- The client configuration is now cached on the device.
- Fixed a crash occurring when no response body was received from the Security Proxy.
- Fixed a crash during error handling when payload encryption is turned on.
5.03.02
Bugfixes
- The fingerprint authenticator was not marked as preferred after migrating from iOS SDK version 4.x to 5.x.
5.03.01
Bugfixes
- The local logout error is no longer propagated when revocation succeeded with unsupported content type.
5.03.00
Features
- Added support for unauthenticated resource calls.
- Network communication can now be logged using SecurityController.
Improvements
- Improved security of tokens stored in the memory.
5.02.01
Bugfixes
- Fixed crash when payload encrytion handshake fails during resource requests.
5.02.00
Features
- Registration requests are now cancellable.
- Mobile Authentication
transactionId
is now accessible inONGMobileAuthRequest
.
Improvements
- Improved security of the randomization algorythm used in payload encryption.
Bugfixes
ONGRequestBuilder
now properly sets headers property when buildingONGResourceRequest
.- Fixed error handling for FIDO errors.
5.01.02
Bugfixes
- Touch ID authentication was not properly disabled after the SDK detected abuse.
- Correctly handle User and device deregistration for Touch ID authentication.
- Only return fully registered profiles.
- Prevent generating empty nonces for payload encryption messages.
Improvements
- Add accept
application/json
headers to all REST requests.
5.01.01
Bugfixes
- Deregistering FIDO authenticator doesnt mark all of FIDO authenticator as deregistered anymore.
- Fixed user deregistered and device deregistered error handling.
- Payload encryption handshake is no longer failing when executing concurrent network tasks.
5.01.00
Features
- Support for FIDO UAF (Fast IDentity Online) authenticators.
Improvements
- Authenticator type values inlined with Android SDK.
Bugfixes
- Fixed concurrency issue which might have prevented from receiving a new pin challenge.
- Fixed
validatePinWithPolicy
issue preventing successful registration. - Cancelling mobile authentication now sends error with correct description.
- Fixed issue when mobile authentication might have logout the user.
5.00.02
Features
- Added beta support for FIDO authentication.
Bugfixes
- Fixed bug preventing retrial of DCU.
- Fixed device registration & upgrade for iOS 10 on a Cordova app.
5.00.01
Bugfixes
- Fixed the bug which was preventing from including a path within base URL.
5.00.00
Improvements
- Error codes were aligned with Android.
- Create and change pin challenges are now cancellable.
- Methods for fetching registered and nonregistered authenticators are now both synchronous and take a user profile as a parameter.
- Introduced
allAuthenticatorsForUser:
convenience method.
Bugfixes
- Fixed mobile authentication cancellation.
- Fixed occasional error preventing registration completion.
- The
authenticatedUserProfile
property ofONGUserClient
is now updated after deregistration. - The
ONGMobileAuthRequest
now provides amessage
property instead of atitle
andbody
. - The
ONGMobileAuthRequest
now properly returns a user profile. - Removed
clearTokens:
andisAuthorized
methods fromONGUserClient
. - Fixed migration issues.
5.00.00-BETA
This is a BETA release that can still contain bugs and issues. You should not use it for any production releases!
Improvements
- Completely redesigned public API to make the SDK easier to use.