Release notes 3.02

3.02.01

Bug fixes

  • Mobile Authentication Enrollment failed when requests are directed to different nodes in cluster.
  • 405 Method not found is mapped to a 500 internal server error.
  • Jackson exceptions are returned to the caller.
  • Do not show which application server we use in the Http response header.

3.02.00

Features

  • HTTP requests are stored for use in reporting.
  • SMS authentication can be enforced as the last step of the enrollment process.
  • An end user can be forced to upgrade their version of the app, by marking an application as disabled.
  • I want DCR to be disabled when a mobile platform version is disabled.
  • Support for Dynamic Client Upgrade (DCU) in the Token Server.
  • We now keep track of the application version in use by the dynamic client when the /client/validate endpoint is being called.
    • Deprecated the /validation/client endpoint in favor of /client/validate.
    • The client validation endpoint is able to detect if a device is debugged or jailbroken based on information in the request.
  • You can disable application versions and in the DCR and Client Validation process and upgrade the application version. A few more events are introduced:
    • DYNAMIC_REG_VERSION_DISABLED: when the version has been disabled.
    • DYNAMIC_REG_NEW_REGISTRATIONS_DISABLED: when the version is no longer allowed to accept new registrations.
    • CLIENT_VALIDATION_INVALID_HEADER: when one or more of the headers used in the client validation process are left ou or invalid.
    • CLIENT_VALIDATION_VERSION_DISABLED: when the version used has been disabled.
    • CLIENT_VALIDATION_DEBUGGER_DETECTED: client validation failed because it was detected a debugger was attached to the app.
    • CLIENT_VALIDATION_JAILBREAK_DETECTED: client validation failed because it was detected the device was jailbroken/rooted.
    • CLIENT_VALIDATION_ABUSE_DETECTED: client validation failed because general abuse on the device was detected.
    • CLIENT_VALIDATION_UPGRADE_INITIALIZED: the dynamic client upgrade process is initiated after client validation detected it was required.
    • DYNAMIC_UP_SUCCESS: the client successfully upgraded to a different mobile platform version.
    • DYNAMIC_UP_FAILED: the client failed to upgrade to a different mobile platform version.

Bug fixes

  • You cannot log into the admin console if you do not put a / at the end of the URL.
  • An acceptance of a push message in the iOS demo app is not seen by the Token Server.
  • Required numeric field refreshTokenRetryLimit is not checked in the server side validator.
  • ETCD properties are not set before JGROUPS/INFINISPAN is initialized.

The following 3rd party libraries have been updated:

  • assert-j
  • chosen
  • commons-codec
  • commons-lang3
  • commons-validator
  • httpasyncclient
  • httpclient
  • httpcore-nio
  • jackson
  • MySQL driver
  • Spring Framework
  • Spring LDAP
  • Spring Security
  • Twilio