Mobile Authentication Enrollment failed when requests are directed to different nodes in cluster.
405 Method not found is mapped to a 500 internal server error.
Jackson exceptions are returned to the caller.
Do not show which application server we use in the Http response header.
3.02.00
Features
HTTP requests are stored for use in reporting.
SMS authentication can be enforced as the last step of the enrollment process.
An end user can be forced to upgrade their version of the app, by marking an application as disabled.
I want DCR to be disabled when a mobile platform version is disabled.
Support for Dynamic Client Upgrade (DCU) in the Token Server.
We now keep track of the application version in use by the dynamic client when the /client/validate endpoint is being called.
Deprecated the /validation/client endpoint in favor of /client/validate.
The client validation endpoint is able to detect if a device is debugged or jailbroken based on information in the request.
You can disable application versions and in the DCR and Client Validation process and upgrade the application version. A few more events are introduced:
DYNAMIC_REG_VERSION_DISABLED: when the version has been disabled.
DYNAMIC_REG_NEW_REGISTRATIONS_DISABLED: when the version is no longer allowed to accept new registrations.
CLIENT_VALIDATION_INVALID_HEADER: when one or more of the headers used in the client validation process are left ou or invalid.
CLIENT_VALIDATION_VERSION_DISABLED: when the version used has been disabled.
CLIENT_VALIDATION_DEBUGGER_DETECTED: client validation failed because it was detected a debugger was attached to the app.
CLIENT_VALIDATION_JAILBREAK_DETECTED: client validation failed because it was detected the device was jailbroken/rooted.
CLIENT_VALIDATION_ABUSE_DETECTED: client validation failed because general abuse on the device was detected.
CLIENT_VALIDATION_UPGRADE_INITIALIZED: the dynamic client upgrade process is initiated after client validation detected it was required.
DYNAMIC_UP_SUCCESS: the client successfully upgraded to a different mobile platform version.
DYNAMIC_UP_FAILED: the client failed to upgrade to a different mobile platform version.
Bug fixes
You cannot log into the admin console if you do not put a / at the end of the URL.
An acceptance of a push message in the iOS demo app is not seen by the Token Server.
Required numeric field refreshTokenRetryLimit is not checked in the server side validator.
ETCD properties are not set before JGROUPS/INFINISPAN is initialized.
The following 3rd party libraries have been updated: