Softpedia >Windows >Network Tools >Misc. Networking Tools >Apache Syncope >  Changelog

Apache Syncope Changelog

What's new in Apache Syncope 2.1.14 Fusion

May 8, 2023
  • Bug:
  • [SYNCOPE-1731] - Performance issue with multiple any type classes
  • [SYNCOPE-1734] - Elasticsearch not updated for uidOnCreate
  • [SYNCOPE-1749] - Incorrect Dynamic Group Membership Condition save from Console
  • [SYNCOPE-1750] - Password policy not enforced if password is not stored in Syncope
  • [SYNCOPE-1755] - NullPointer exception during PULL delete operation in case of NO_MATCH
  • [SYNCOPE-1756] - Add an id_token_hint parameter to the logout provider url for OIDC
  • Improvement:
  • [SYNCOPE-1720] - Switch persistence identifiers to UUID version 7

New in Apache Syncope 2.1.13 Fusion (Dec 12, 2022)

  • Bug:
  • [SYNCOPE-1693] - Must change password submit on console leads to errors
  • [SYNCOPE-1704] - Policy update not affecting External Resources
  • [SYNCOPE-1706] - Notification task not created with event category PROPAGATION
  • Improvement:
  • [SYNCOPE-1694] - Optimize creation of Implementation instances
  • [SYNCOPE-1696] - Audit Elasticsearch persistence
  • [SYNCOPE-1709] - Persist Jobs' current status in the database to support multi-node deployments
  • [SYNCOPE-1713] - Support time-based conditions for Audit, Exec and Remediation queries

New in Apache Syncope 2.1.12 Fusion (Aug 8, 2022)

  • Bug:
  • [SYNCOPE-1671] - Wrong JobDelegate column name in scheduled task table
  • [SYNCOPE-1683] - Show connector overridden properties in resource wizard in tabular topology during create
  • [SYNCOPE-1691] - Schema labels not used for attribute column headers
  • Improvement:
  • [SYNCOPE-1669] - Create pull results for remediations
  • [SYNCOPE-1670] - Support Graceful shutdown
  • [SYNCOPE-1674] - Optimize User, Group and Any Object lifecycle events management

New in Apache Syncope 2.1.11 Fusion (Mar 21, 2022)

  • Bug:
  • [SYNCOPE-1646] - Linked Account status set to wrong value on propagation
  • [SYNCOPE-1648] - Search with PostgreSQL JSONB fails for FIQL like 'username!=value'
  • [SYNCOPE-1649] - Reports: XML character escaping applied to CSV output
  • [SYNCOPE-1650] - Default Account Rule: pattern is ignored
  • [SYNCOPE-1651] - Invalid users can be specified in X-Syncope-Delegated-By
  • [SYNCOPE-1654] - Inconsistent Realm search FIQL expressions between JPA and Elasticsearch engines
  • [SYNCOPE-1656] - Remediations are not created on update while pulling
  • [SYNCOPE-1657] - Unable to define a new name for a cloned resource
  • [SYNCOPE-1659] - Read-only flag not working in console on virtual attributes [SYNCOPE-1660] - Anonymous requests does not store domain and delegatedBy information in the auth context
  • [SYNCOPE-1663] - Value errors in FIQL expressions lead to empty result rather than error messages
  • [SYNCOPE-1664] - JSONB: Inconsistent search query when is used a pull correlation rule
  • Improvement:
  • [SYNCOPE-1658] - Allow to view the topology in table format
  • [SYNCOPE-1666] - Security Answer encryption
  • [SYNCOPE-1667] - Propagation Policy
  • [SYNCOPE-1668] - Provide Entity Cache report and management

New in Apache Syncope 2.1.10 Fusion (Oct 11, 2021)

  • Relevant Dependency Upgrades:
  • Elasticsearch: 7.15.0
  • Flowable: 6.7.0
  • Spring: 5.2.17.RELEASE
  • Spring Security: 5.2.12.RELEASE
  • Apache CXF: 3.3.12
  • Apache OpenJPA: 3.2.0
  • Issues:
  • Bug:
  • Console goes NPE when Connector fails to initialize
  • JPA JSON: Date conversion pattern including slashes leads to incorrect search results
  • Group Owner update/delete action doesn't trigger propagation action
  • Create Rules with configurations for each domain, make creation thread safe
  • Uncaught exception when creating Enum schema
  • Update of Realm doesn't trigger provisioning for users
  • Task run failure with multi-node deployments
  • Case insensitive search with Elasticsearch extension returns wrong results
  • New Feature:
  • Delegation
  • Improvement:
  • Use Group owners to extend Delegated Administration
  • Pass ConnId ObjectClass to ReconFilterBuilder
  • Give the possibility to add a custom message to the confirm dialog
  • Provide ordering of attributes in the diff view on the history management
  • Allow to purge Propagation Tasks

New in Apache Syncope 2.1.9 Fusion (Apr 12, 2021)

  • Bug:
  • [SYNCOPE-1606] - Syncope returns an exception when doing two sequential operations for the same user from the toggle panel
  • [SYNCOPE-1607] - Console Page preferences not working
  • [SYNCOPE-1613] - startAt date is set to start field for SCHEDULED, PULL and PUSH TaskTOs
  • [SYNCOPE-1616] - CSV and single push / pull concurrency issues
  • [SYNCOPE-1619] - SearchPanel should display the input field based on the type of the selected property
  • [SYNCOPE-1620] - JWT validation requires exp and nbf claims
  • [SYNCOPE-1622] - ConnId Connectors not pooled with Resource override
  • Improvement:
  • [SYNCOPE-1608] - Allow wildcard group membership search
  • [SYNCOPE-1609] - Reduce the number of table joins into PostgreSQL JSONB persistence implementation
  • [SYNCOPE-1610] - Set Reconciliation to work with Pull and Push Correlation Rules if available
  • [SYNCOPE-1611] - Caffeine Cache for Virtual Attribute Cache
  • [SYNCOPE-1624] - Toggle panel improvements

New in Apache Syncope 2.1.8 Fusion (Dec 21, 2020)

  • BUG:
  • [SYNCOPE-1590] - Error when adding i18n labels to schemas
  • [SYNCOPE-1596] - Console: read-only attributes not rendered as disabled
  • [SYNCOPE-1598] - Create or update user with two+ memberships for the same group are not prevented
  • [SYNCOPE-1601] - Propagation not always triggered after form submit in User Requests
  • [SYNCOPE-1602] - ConnObjectKey attribute values not included with DefaultPushCorrelationRule
  • [SYNCOPE-1603] - PushCorrelationRule not used for DELETE on External Resources
  • [SYNCOPE-1604] - AjaxDateTimePicker doesn't handle some 1900 dates the right way
  • [SYNCOPE-1605] - Propagation task not generated if update involves only ConnObjectLink
  • IMPROVEMENTS:
  • [SYNCOPE-1591] - Support fetching data from internal storage for XML content loader
  • [SYNCOPE-1594] - Allow to filter user requests and forms by username
  • [SYNCOPE-1597] - Enable default customization of console layout
  • [SYNCOPE-1600] - Flowable: support password form property type

New in Apache Syncope 2.1.4 Fusion (Apr 23, 2019)

  • New and noteworthy:
  • Support for MySQL 8:
  • Thanks to dependency upgrade to Apache OpenJPA 3.1.0, this release can now be deployed with internal storage on MySQL 8.
  • Support for MySQL JSON Data Type:
  • Similarly to what done for PostgreSQL's JSONB with 2.1.3, this release brings support for MySQL's JSON data type.
  • Dynamic Conditions Improvements:
  • Various fixes and enhancements improving dynamic conditions: see SYNCOPE-1439 and SYNCOPE-1441 for details.
  • Elasticsearch improvements:
  • The Elasticsearch extension was reviewed and ensured working with latest Elasticsearch 6.x releases. Code was migrated to High-level REST client.
  • Docker images now featuring OpenJDK:
  • The Docker images are now based on OpenJDK builds provided by courtesy of Zulu.
  • Bug:
  • [SYNCOPE-1428] - APIs to read by key return 404 instead of 401 for not authenticated calls
  • [SYNCOPE-1429] - Wildcard case-insesitive queries do not work with Elasticsearch
  • [SYNCOPE-1430] - ItemTransformer for Date schemas throws NPE
  • [SYNCOPE-1431] - Connector and Resource history compare does not work
  • [SYNCOPE-1432] - After creating new connector / resource, Topology does not show it
  • [SYNCOPE-1437] - Error while searching for users / groups / any objects with Elasticsearch when no data are present
  • [SYNCOPE-1438] - "changePwdDate" field is not initialized when create a new user with the specified password
  • [SYNCOPE-1439] - User membership attributes not updated
  • [SYNCOPE-1440] - Pagination of Users/Groups doesn't work as expected with Elasticsearch
  • [SYNCOPE-1442] - Inactive Job with cron expression set is executed anyway
  • [SYNCOPE-1443] - Changing Display Rows number in Reconciliation Resource Panel doesn't work
  • [SYNCOPE-1446] - Persistence exception on PostgreSQL when AUDIT is enabled on propagation tasks
  • [SYNCOPE-1447] - NPE while deleting a privilege from admin console
  • [SYNCOPE-1448] - Bean loading/register section not threadsafe
  • [SYNCOPE-1450] - Audit: sensitive information not masked by default during update
  • [SYNCOPE-1452] - Notification about is not deleted after update
  • [SYNCOPE-1453] - MappingItem with "mustChangePassword" field cannot be provisioned and updated during import
  • [SYNCOPE-1454] - Avoid duplicated Propagation Tasks
  • [SYNCOPE-1457] - NonAlphaNumeric policy pattern matches the "Not word" character class
  • New Feature:
  • [SYNCOPE-1401] - Leverage MySQL JSON type
  • Improvement:
  • [SYNCOPE-1433] - Unflag/flag uniqueness shouldn't be permitted
  • [SYNCOPE-1436] - Remove pullPolicy EAGER fetchType from JPAExternalResource
  • [SYNCOPE-1441] - Perform in-memory match for dynamic conditions
  • [SYNCOPE-1444] - Pull correlation rules: allow to discriminate ongoing event
  • [SYNCOPE-1445] - Docker: support pgjsonb as DBMS option
  • [SYNCOPE-1449] - Support multi-value attributes in JEXL expressions
  • Task:
  • [SYNCOPE-1400] - Support MySQL 8

New in Apache Syncope 2.1.1 Fusion (Aug 20, 2018)

  • Bug:
  • [SYNCOPE-1331] - ExternalResourcePropagationAction is too long name for a table in Oracle DB
  • [SYNCOPE-1333] - Missing virtual attribute value in case of type extension
  • [SYNCOPE-1334] - Maven install problem with Apache Syncope 2.1.0
  • [SYNCOPE-1335] - Missing SQL statements when upgrading from 2.0 Jazz
  • [SYNCOPE-1337] - Password history policy is not enforced on salted passwords
  • [SYNCOPE-1338] - Double type conversion applied during pull leads to errors
  • [SYNCOPE-1339] - Enduser spinner does not apply to the whole page
  • [SYNCOPE-1340] - Cannot update membership attribute
  • [SYNCOPE-1342] - console UI login form ignores Domain selection
  • [SYNCOPE-1343] - Attributes are not reset after pull of null values
  • [SYNCOPE-1344] - CORE_SCHEME not being updated in enduser.properties
  • [SYNCOPE-1346] - Adding a new task while re-executing a propagation task
  • [SYNCOPE-1347] - Invocation Problem calling org.apache.syncope.installer.processes.ArchetypeProcess
  • [SYNCOPE-1350] - Date values not formatted according to the conversion pattern
  • [SYNCOPE-1352] - Group wizard doesn't update the plain attributes
  • [SYNCOPE-1353] - DBPasswordPropagationActions link in the reference guide is wrong
  • [SYNCOPE-1354] - Push Tasks do not send status onto External Resources
  • [SYNCOPE-1356] - LDAPMembershipPullActions does not remove memberships
  • [SYNCOPE-1357] - MemoryVirAttrCache not working
  • [SYNCOPE-1358] - Search by boolean value does not work from Admin Console
  • New Feature:
  • [SYNCOPE-1348] - REST: replace bulk operations with batch requests
  • Improvement:
  • [SYNCOPE-1336] - Add pagination for approvals forms
  • [SYNCOPE-1341] - Domain should be configurable parameter for syncope-enduser docker image

New in Apache Syncope 2.1.0 Jazz (Jul 9, 2018)

  • Syncope name and logo are about music, about expressing the mission of orchestrating data and resources: for this reason Syncope releases are named after some well-known musical terms.

New in Apache Syncope 2.0.8 Jazz (Mar 19, 2018)

  • NEW AND NOTEWORTHY:
  • Admin Console:
  • New language translation available: Japanese.
  • New feature: schema search.
  • Enduser UI:
  • New language translation available: Japanese.
  • OpenAPI 3.0 / Swagger UI 3.0
  • The existing support for Swagger 2.0 specification was upgraded to OpenAPI 3.0.
  • Additionally, Swagger UI 2.0 was replaced by Swagger UI 3.0.
  • ISSUES:
  • Bug:
  • [SYNCOPE-1257] - USER search by GROUP does not work if group name has spaces
  • [SYNCOPE-1261] - When starting with empty database and no ConnInstances in Content.xml no bundles are reported as available
  • [SYNCOPE-1263] - REST invocation with invalid JWT string returns 500
  • [SYNCOPE-1265] - SAML 2.0 IdP cache empty until either new is imported or SAML2IdPService#list is invoked
  • [SYNCOPE-1266] - Multivalue binary attributes leads to OutOfMemory exception
  • [SYNCOPE-1269] - Cannot specify validator for Configuration Parameters
  • [SYNCOPE-1272] - Export of the report always returns the result of the last execution
  • [SYNCOPE-1275] - Add the possibiliy to delete a job
  • [SYNCOPE-1276] - Link or assign Group from External Resource resets dynamic membership conditions
  • New Feature:
  • [SYNCOPE-1259] - Japanese translation for Admin console & Enduser UI
  • [SYNCOPE-1279] - Provide live updates from running tasks and reports
  • Improvement:
  • [SYNCOPE-1225] - Search funcionality in Schemas
  • [SYNCOPE-1267] - Provide check of mimetypes before generate a binary attribute preview
  • [SYNCOPE-1274] - Report required and read-only payload properties in OpenApi spec
  • [SYNCOPE-1280] - Better job interrupt
  • Task:
  • [SYNCOPE-1262] - Upgrade to Swagger UI 3.0

New in Apache Syncope 2.0.7 Jazz (Dec 27, 2017)

  • New and noteworthy:
  • SCIM 2.0:
  • The SCIM extension is now available, allowing to provision users and groups through the new /scim REST endpoint according to the SCIM (System for Cross-domain Identity Management) 2.0 specifications.
  • Issues:
  • Bug:
  • [SYNCOPE-1222] - Unwanted delete from External Resources on Membership removal
  • [SYNCOPE-1223] - Cannot search for values containing comma
  • [SYNCOPE-1224] - CLI: user "all" operations limited to 25 users
  • [SYNCOPE-1226] - List the attributes to be displayed show deleted attributes
  • [SYNCOPE-1227] - Password template not nullable after setting
  • [SYNCOPE-1229] - Pull task execution bulk delete fails
  • [SYNCOPE-1230] - Bad toggle handling during task execution delete
  • [SYNCOPE-1231] - Hidden columns in bulk action resul modal page
  • [SYNCOPE-1232] - AnyType removal does not check for existing AnyObjects
  • [SYNCOPE-1233] - NullPointerException in Topology after creating a connector with no displayName using pure REST call
  • [SYNCOPE-1235] - Unlink or unassign Group from External Resource resets dynamic membership conditions
  • [SYNCOPE-1236] - Pagination error for executed tasks
  • [SYNCOPE-1239] - Missing specified plain attr values if plain attr step is the last one of the any management wizard
  • [SYNCOPE-1241] - Under high load propagation after pull might fail
  • [SYNCOPE-1244] - Error creating bean with name 'logicInitializer' on startup related to quartz clustering
  • [SYNCOPE-1246] - Group membership search stucks with several thousands of groups
  • [SYNCOPE-1247] - Group search and auto-completion does not work with several thousands of groups
  • [SYNCOPE-1248] - Password policy history error when the user is updated before being approved
  • [SYNCOPE-1250] - Missing attributes layout order
  • [SYNCOPE-1251] - UserTO variable is not updated during Update Activiti Task
  • [SYNCOPE-1252] - Search failing for non-string attributes from Admin Console
  • [SYNCOPE-1253] - Pulled users have password set even if no mapping was provided
  • Improvement
  • [SYNCOPE-1138] - Update RelationshipTO to also report the "left" end of a relationship
  • [SYNCOPE-1228] - Parent should be passed once for Realm create
  • [SYNCOPE-1234] - SyncDelta pre-processing
  • [SYNCOPE-1237] - Copy table row element key to clipboard by clicking on its name in toggle menu
  • [SYNCOPE-1238] - Terminate Topology background checks once completed
  • [SYNCOPE-1242] - Simple way to see elements full text value in Palette Panels
  • [SYNCOPE-1243] - Add information to GroupTO about user and AnyObject membership counts
  • [SYNCOPE-1255] - Dynamic group/role create/update can result in timeout error in case of a great number of members
  • New Feature:
  • [SYNCOPE-152] - Support SCIM REST API
  • [SYNCOPE-1249] - Support for mustChangePassword mapping

New in Apache Syncope 2.0.6 Jazz (Oct 14, 2017)

  • Bugs:
  • [SYNCOPE-1205] - Serialization exception in the logs when editing users pending approval
  • [SYNCOPE-1206] - Dynamic membership updates not considered for provisioning during update
  • [SYNCOPE-1207] - Audit: incorrect output element reported for Pull Tasks
  • [SYNCOPE-1210] - Random password generation fails for push tasks
  • [SYNCOPE-1211] - syncope migration 1.2 to 2.0 users blocked to 200
  • [SYNCOPE-1213] - Syncope console should advice user about exceeded file size
  • [SYNCOPE-1214] - Error when sorting Users by Realm
  • [SYNCOPE-1215] - Multivalue readonly fields allow frontend deletion
  • [SYNCOPE-1217] - Using the JAVA API is possible to create a Realm with the same name in the same parent realm
  • Improvement:
  • [SYNCOPE-1212] - Allow for easier Pull / Push processes customization
  • Task:
  • [SYNCOPE-1186] - Remove copy of SAMLSSOResponseValidator and SSOValidatorResponse when CXF 3.1.13 is out

New in Apache Syncope 2.0.5 Jazz (Sep 11, 2017)

  • SAML 2.0 Service Provider improvements:
  • Allow to define complete mapping between Syncope Schema and SAML 2.0 attributes
  • Allow to specify custom IdP Actions - which can be used, among other things, for flexible Role assignment based on SAML 2.0 statements
  • Consent to on-the-fly creation of unmatched SAML 2.0 users, allowing users not pre-existing in a given Apache Syncope deployment to be created in case of SAML 2.0 SSO
  • Strict validation of SAML 2.0 payloads
  • Signature of the generated Service Provider Metadata
  • Support for IdP-initiated SSO
  • Realm provision enhancements:
  • Introduced in earlier versions, Realm provisioning is now feature-equivalent to Users, Groups and Any Objects provisioning, with complete mapping, resource exploration and more.
  • Audit Appenders:
  • It is now possible to configure Audit Appenders, which allow to route audit messages, with optional transformation (rewrite), to files, queues, sockets, syslog, etc.
  • Delegated Administration for Connectors and External Resources:
  • Connectors now requires to specify a Realm, which is then used to evaluate the entitlements owned by administrators when performing management operations on Connectors and their External Resources.
  • Moreover, changes in Connectors and External Resources configuration are now tracked by default and allow to revert unwanted / breaking changes at hand.
  • Bugs:
  • Bug
  • [SYNCOPE-1139] - StackOverflowError while serializing AuditEntry after propagation
  • [SYNCOPE-1140] - Error when trying to assign a relationship
  • [SYNCOPE-1141] - Error when getting /numbers with application/xml
  • [SYNCOPE-1149] - Access token still required for the third party JWT SSO integration scenario
  • [SYNCOPE-1150] - Invalid property set for propagation task modal page header
  • [SYNCOPE-1151] - Glinch in the root realm information
  • [SYNCOPE-1158] - Misleading Push Task reports
  • [SYNCOPE-1162] - Change to Connector's display name not reflected by contextual menu
  • [SYNCOPE-1163] - External Resource priority is never NULL
  • [SYNCOPE-1166] - No propagation task is created for resources where the password is not propagated
  • [SYNCOPE-1168] - Encryptor pads short secret keys with "0" instead of random characters
  • [SYNCOPE-1169] - Operation not supported error when trying to run a bulk action for users
  • [SYNCOPE-1170] - Can't remove a "Dynamic USER assignment"
  • [SYNCOPE-1174] - NPE in AccessTokenDataBinderImpl if no 'jwt.lifetime.minutes' schema is present
  • [SYNCOPE-1175] - Password Reset Token Generation Not Working After Upgrading to 2.0.4
  • [SYNCOPE-1178] - PlainSchema page empty while self update on Enduser
  • [SYNCOPE-1179] - JWT "Date" claims are interpreted using milliseconds instead of seconds
  • [SYNCOPE-1180] - No e-mail debug output
  • [SYNCOPE-1184] - In the "Attributes to be displayed" sellection show the ones already displayed by default
  • [SYNCOPE-1188] - NPE Message while saving Dynamic Realm with empty key
  • [SYNCOPE-1189] - Realms page not accessible when user has permissions on dynamic realms
  • [SYNCOPE-1190] - Username not refreshed on toggle menu after user update
  • [SYNCOPE-1193] - Add the option to update a user via REST by using the username as key
  • [SYNCOPE-1199] - Syncope performance: AnyObjectTO's creation time grows with it's quantity
  • [SYNCOPE-1203] - Not possible to add provision rules for "Realm" type
  • Improvements:
  • [SYNCOPE-1096] - Download button should be disabled while populating for the first time a binary attribute
  • [SYNCOPE-1097] - Downloaded file for binary attribute better naming
  • [SYNCOPE-1115] - Display attributes for propagation tasks
  • [SYNCOPE-1143] - Fine-grained administration rights for Connector and Resources
  • [SYNCOPE-1146] - On-the-fly creation of unmatched users logging via SAML 2.0
  • [SYNCOPE-1147] - Extend SAML 2.0 IdP mapping to Roles
  • [SYNCOPE-1152] - Clear out unneeded anonymous authenticated services
  • [SYNCOPE-1153] - Push Tasks result to show "no operation" when operation is not enabled
  • [SYNCOPE-1154] - Edit resource to show always in the same order in list of object provision rules
  • [SYNCOPE-1155] - Hard-coded /syncope-enduser HTTP subcontext
  • [SYNCOPE-1159] - Allow to set Realm for Push Tasks
  • [SYNCOPE-1164] - Complete mapping for Realm provisioning
  • [SYNCOPE-1167] - Preliminary AnyType selection when adding new provision rule
  • [SYNCOPE-1171] - Skip Relationships page when no relationship types exist
  • [SYNCOPE-1172] - Error message of "Malformed Path" could be made a little clearer
  • [SYNCOPE-1173] - Replace List<String> dynGroups with List<MembershipTO> dynMemberships
  • [SYNCOPE-1176] - Edit provisioning rules menu is flat and not toggle
  • [SYNCOPE-1177] - Configuration Parameter deletion should ask for confirmation
  • [SYNCOPE-1182] - Use Remote Key in the Mapping to fetch external entities
  • [SYNCOPE-1183] - Realm attribute available (as a detail) to use as a column in the "realm view" object list
  • [SYNCOPE-1185] - Further validate SAML responses with CXF's SAMLSSOResponseValidator
  • [SYNCOPE-1192] - Provide latest GIT commit hash alongside with version number
  • [SYNCOPE-1194] - Sign the SAML SSO Service Provider Metadata
  • [SYNCOPE-1196] - Binary previewer also for configuration parameters
  • [SYNCOPE-1197] - Enduser console doesn't specify "SAML 2.0" as per the admin console
  • [SYNCOPE-1198] - Make the signature algorithm configurable for SAML SSO
  • [SYNCOPE-1200] - Allow to update user data during approval
  • [SYNCOPE-1201] - Allow AnyType-based conditions for DynRealms
  • [SYNCOPE-1202] - Support IdP Initiated SAML SSO
  • New features:
  • [SYNCOPE-1144] - Customizable Audit appender
  • [SYNCOPE-1145] - Connector and Resource configuration versioning
  • Task:
  • [SYNCOPE-1195] - Remove copy of OpenSAMLUtil when WSS4J 2.1.11 is out
  • Wish:
  • [SYNCOPE-1161] - Option to clone a resource

New in Apache Syncope 2.0.4 Jazz (Jul 6, 2017)

  • Netbeans Plugin
  • Besides the consolidated Eclipse IDE Plugin, a new plugin is now available for Apache Netbeans, with similar features.
  • Elasticsearch-based Search Engine
  • Especially suitable for large deployments, a new search engine relying on an external Elasticsearch cluster is provided, dramatically improving the overall search performance when the number of managed entities (Users, Groups and Any Objects) raises above tens of thousands.
  • Dynamic Realms
  • In addition to static containment provided by Realms, Dynamic Realms can be used to identify Users, Groups and Any Objects according to some attributes' value, resource assignment, group membership or any other condition available, with purpose of granting delegated administration rights.
  • Flexible Quartz configuration in clusters
  • The Quartz scheduler is largely used within Syncope Core to schedule the execution of jobs, including pull, push, notification and custom tasks, and reportlets.
  • By default, Quartz is configured for clustering, where all cluster nodes are equally selectable for processing jobs. Individual cluster nodes can now be disabled for jobs processing.
  • JWT and security improvements
  • SSO header change for RESTful services
  • In Apache Syncope 2.0.3, SSO support was added for RESTful services by sending a JWT Token using the X-Syncope-Token header.
  • From Syncope 2.0.4 onwards, this header value is no longer supported. Instead, you must use the standard Authorization Bearer header.
  • Third Party JWT SSO integration
  • Besides validating and accepting the JSON Web Tokens generated during the authentication process as sketched above, Apache Syncope can be enabled to cope with tokens generated by third parties.
  • Default key and password checking
  • In Apache Syncope 2.0.4, a warning is logged if the default JWS key is used to either create / update an access token, or is used to invoke on a RESTful service. A similar warning is logged if the default anonymous key is used to invoke on a RESTful service. A warning is also logged if the default admin password or anonymous key are detected.
  • If you see these warnings in the logs then it is critical to change the default values.
  • More information about the internal authorization process is now available in the Reference Guide.
  • HikariCP for JDBC connection pool
  • The internal storage connection pool is now based by default on the high-performance HikariCP.
  • Issues
  • Sub-task
  • [SYNCOPE-808] - Netbeans plugin
  • Bug
  • [SYNCOPE-1066] - WADL servlet uses request url to provide wadl
  • [SYNCOPE-1069] - Incomplete HA setup instructions
  • [SYNCOPE-1070] - Conversion pattern ignored for date, long and double values during propagation
  • [SYNCOPE-1071] - The executed notification tasks are not displaying on the console
  • [SYNCOPE-1075] - User lastChangeDate attribute is not displayed correctly
  • [SYNCOPE-1076] - The console doesn't allow to download the report in various formats
  • [SYNCOPE-1078] - Activiti modeler window doesn't open on click
  • [SYNCOPE-1079] - Missing toggle panel for the job control widget of the administration console dashboard
  • [SYNCOPE-1081] - Console: new toggle panel behavior anomalies
  • [SYNCOPE-1082] - Concurrent CRUD random failures with dynamic memberships
  • [SYNCOPE-1085] - Custom tasks modal page shouldn't show "Cancel" button
  • [SYNCOPE-1089] - Improve provisioning mapping page in order to avoid duplicates in internal attribute name list
  • [SYNCOPE-1090] - Error defining clause to search for group owners
  • [SYNCOPE-1091] - Error while downloading Jpeg binary attribute content
  • [SYNCOPE-1094] - Out of memory error while rendering PDF
  • [SYNCOPE-1098] - User edit modal page opening takes long in case of a lot of groups defined
  • [SYNCOPE-1099] - Dynamic group membership does not trigger propagation
  • [SYNCOPE-1101] - Error showing action icons on Notidfication events managements
  • [SYNCOPE-1104] - Missing autocomplete for ConnId object class when defining new provision
  • [SYNCOPE-1107] - The installer fails with a NoClassDefFoundError
  • [SYNCOPE-1108] - NullPointerException while saving an empty template
  • [SYNCOPE-1109] - Installer fails to setup Activiti
  • [SYNCOPE-1110] - Error replacing group/auxclass/resource during self-management operation
  • [SYNCOPE-1111] - New any type not shown unders Realms
  • [SYNCOPE-1112] - Error searching for user/group/anyobject by providing conditions on attribute with schema type Long
  • [SYNCOPE-1114] - Dynamic group information not available during propagation
  • [SYNCOPE-1121] - Enduser form customization does not work with empty section in edit mode
  • [SYNCOPE-1122] - Enduser must show all attributes when customForm.json has empty section with show=true
  • [SYNCOPE-1123] - Enduser UserRequestValidator NPE on custom form empty sections
  • [SYNCOPE-1125] - Password on external resource not updated via Enduser
  • [SYNCOPE-1127] - Membership attribute values are not shown
  • [SYNCOPE-1128] - Content exporter does not sort for internal foreign keys
  • [SYNCOPE-1130] - NPE refreshing realm page after realm creation
  • [SYNCOPE-1131] - Cannot delete resources owned by realms
  • [SYNCOPE-1133] - Search panel used for relationships definition does not work
  • [SYNCOPE-1134] - Action menu not working after page refresh
  • [SYNCOPE-1135] - Groups list not refreshing after realm change
  • Improvement
  • [SYNCOPE-1047] - Replace ActionLinksPanel with TogglePanel
  • [SYNCOPE-1053] - Show actual pending modifications during approval
  • [SYNCOPE-1067] - More flexible delegated administration model
  • [SYNCOPE-1068] - Console: CSRF protection
  • [SYNCOPE-1072] - Display or enable add button only to realms were CREATE is owned
  • [SYNCOPE-1073] - Hide realm management if no realm entitlement are owned
  • [SYNCOPE-1074] - Realm navigator: show only relevant realms for delegated admin
  • [SYNCOPE-1083] - ConnInstance location is not normalized
  • [SYNCOPE-1084] - Switch to HikariCP for Core's default DataSource definitions
  • [SYNCOPE-1086] - Avoid to read whole entities to check ETag
  • [SYNCOPE-1087] - Avoid to read input entities if no notification or audit are requested
  • [SYNCOPE-1088] - Store authorizations with access tokens
  • [SYNCOPE-1093] - Add some feedbacks when linking not existing groups/resources to existing user
  • [SYNCOPE-1100] - Provide JWT expiration information to self
  • [SYNCOPE-1103] - Option to disable Quartz instances across cluster
  • [SYNCOPE-1106] - Remove misleading getAttrMap and similar methods from TOs
  • [SYNCOPE-1117] - Make it more obvious that the jwsKey needs to be changed
  • [SYNCOPE-1118] - Update docs to explain what "anonymousKey" refers to
  • [SYNCOPE-1119] - Make it more obvious that the default admin password needs to be changed
  • [SYNCOPE-1120] - Use the standard Bearer Authorization header for JWT tokens
  • [SYNCOPE-1124] - Support functions for internal JEXL engine
  • [SYNCOPE-1126] - Include realms into the Explore Resource feature
  • [SYNCOPE-1136] - Groups list reset always after realm change
  • New Feature
  • [SYNCOPE-1077] - Extension: Elasticsearch-based search engine
  • [SYNCOPE-1095] - Provide preview for JSON and XML binary field
  • [SYNCOPE-1129] - Third Party JWT SSO integration
  • Task
  • [SYNCOPE-1080] - Update swagger-jaxrs dependency to 1.5.13

New in Apache Syncope 2.0.3 Jazz (Apr 18, 2017)

  • SAML 2.0 Service Provider features:
  • SYNCOPE-1041 provides an extension enabling Apache Syncope to act as as SAML 2.0 Service Provider.
  • Once an Apache Syncope deployment - enabled with this extension - is properly configured, and the Syncope Core application is running, the Syncope Admin UI and the Syncope Enduser UI can be enabled to allow SAML-based SSO. The global result is that Admin UI and / or Enduser UI can be accessed after user authentication against (one of configured) SAML 2.0 Identity Provider(s).
  • Portions of this software are developed by the support of the University of Helsinki, the largest university in Finland with 35,000 degree students and some 8,000 employees.
  • Enduser UI: form customization:
  • After SYNCOPE-1009, the Enduser UI now features a JSON-based high-level form customization mechanism which further enhances its adaptation capabilities.
  • Via this enhancement, it is possible to dynamically configure the user form to:
  • hide / show attributes
  • set attributes read-only for users
  • provide default value(s)
  • Flowable user workflow adapter:
  • SYNCOPE-1055 adds native support for the Flowable Java BPM Engine, besides the one based on Activiti.
  • Authentication / Authorization improvements:
  • Up to Apache Syncope 2.0.2, each REST invocation required - at least in the default configuration - to inject the invoker credentials via the Authorization HTTP header.
  • After SYNCOPE-1035, the process is more structured and requires an initial authentication step which returns an unique JSON Web Token, which can be used for further invocations. This renewed mechanism is the basis for easier inclusion of various authentication mechanisms, including SAML 2.0 - as provided by SYNCOPE-1041 - OAuth 2.0 and OpenID Connect.
  • Moreover, with SYNCOPE-1015 it is now possible to configure which user attribute(s) can be passed as login name for authentication, besides username (default).
  • Bug:
  • [SYNCOPE-1003] - Error when accessing notification tasks for a given user
  • [SYNCOPE-1004] - Notification tasks generated for self read event not linked to user
  • [SYNCOPE-1007] - NPE in Console when on an empty search term for user assignment
  • [SYNCOPE-1008] - Maven home directory not trimmed of whitespace
  • [SYNCOPE-1010] - Some PushActions methods not invoked even if assigned
  • [SYNCOPE-1012] - Security answer not recognized during password reset
  • [SYNCOPE-1013] - Password reset link generated by default notification template does not trigger Enduser UI features
  • [SYNCOPE-1014] - The list of security questions is not refreshed after creating new one
  • [SYNCOPE-1016] - Last change date not updated for users when attributes are updated via pull
  • [SYNCOPE-1022] - UTF-8 characters in security questions not correctly encoded by Enduser UI
  • [SYNCOPE-1023] - Maven projects from archetype deploy test content with 'all' profile
  • [SYNCOPE-1024] - Enduser does not manages properly ENUM schema labels
  • [SYNCOPE-1025] - SYNCOPEAUDIT table not populated
  • [SYNCOPE-1026] - Cannot remove group owner once set
  • [SYNCOPE-1027] - Mapping errors cannot be fixed when defining provision rules for a new resource
  • [SYNCOPE-1030] - Invalid DefaultAccountRule definition from Admin Console
  • [SYNCOPE-1032] - Role key must be not modifiable during edit from Admin Console
  • [SYNCOPE-1033] - NPE in Admin Console when working with Reconciliation Report
  • [SYNCOPE-1034] - Assigned Auxiliary classes disappear in the Type Extensions panel when click on cancel
  • [SYNCOPE-1036] - Notification icon does not refresh on new approval event
  • [SYNCOPE-1037] - Pending approvals list is clickable
  • [SYNCOPE-1038] - User create: finish button should remain clickable if the last step is reached
  • [SYNCOPE-1039] - User attributes in user edit/create form are reset after validation error
  • [SYNCOPE-1040] - Membership derived attributes cannot reference own plain attributes
  • [SYNCOPE-1042] - Removal of all executed pull tasks via bulk action returns a missing resource exception
  • [SYNCOPE-1043] - Improve JWT token expiration handling
  • [SYNCOPE-1044] - By editing the provisioning rules, modal footer is not disabled
  • [SYNCOPE-1045] - Activiti Modeler: log out from Admin Console in case of error
  • [SYNCOPE-1046] - Console: task execution sort not working properly
  • [SYNCOPE-1048] - Into the connector configuration page the same bundle appear more then once if different versions exist
  • [SYNCOPE-1049] - Console returns an error if you try to explore Syncope as a remote object
  • [SYNCOPE-1051] - It is possible to schedule task execution in the past
  • [SYNCOPE-1052] - Enduser CAPTCHA not reloading
  • [SYNCOPE-1057] - Type extensions cleared after group update during pull
  • [SYNCOPE-1060] - Date in membership attribute is propagated as timestamp
  • [SYNCOPE-1062] - Changes pulled from one resource not propagated externally
  • Improvement:
  • [SYNCOPE-991] - Improve user password management / resource management
  • [SYNCOPE-1005] - Schema sorting should be done on JS side
  • [SYNCOPE-1009] - Enduser must provide an easy way to enable/disable visualization and sorting of USER attributes
  • [SYNCOPE-1020] - Support for BPMN call activity
  • [SYNCOPE-1028] - Improve usability of the modal window for provision rules
  • [SYNCOPE-1029] - Change modal window title and button bars background
  • [SYNCOPE-1031] - Hide key when creating / editing Security Questions from Admin Console
  • [SYNCOPE-1050] - Allow easier extension of REST interface exposed to AngularJS
  • [SYNCOPE-1058] - Do not show time picker and values for date-only schemas
  • [SYNCOPE-1059] - Remove final landing page after user create/update
  • [SYNCOPE-1061] - Support SAML 2.0 Redirect profile
  • [SYNCOPE-1063] - Incomplete title for modal windows from Topology
  • [SYNCOPE-1064] - Improve security of customization mechanism
  • New Feature:
  • [SYNCOPE-1015] - User Authentication using email
  • [SYNCOPE-1035] - JWT-based access to REST services
  • [SYNCOPE-1041] - SAML 2.0 Service Provider feature
  • [SYNCOPE-1055] - Provide Flowable 5.X-based workflow adapter

New in Apache Syncope 2.0.2 (Mar 31, 2017)

  • Released on January 27th, 2017
  • Case-insensitive search, selectable via REST and available by default from the Admin Console
  • Enduser application's default HTML / CSS template now responsive
  • Sample External Resource provided, using the Scripted REST connector
  • Apache FOP upgraded to the latest stable version available, providing major enhancements to report export as PDF and RTF
  • Brand new Log Viewer, which provides full access to Core logs from the Admin console

New in Apache Syncope 1.1.8 (Mar 31, 2017)

  • Released on July 3rd, 2014
  • Bug:
  • [SYNCOPE-499] - Deletion of role set as parent role in template generates exception
  • [SYNCOPE-500] - Wrong (unwanted) derived attribute insertion addition in membership modal page
  • [SYNCOPE-501] - Virtual attribute propagation not working when updating only virtual attributes
  • [SYNCOPE-504] - Sync/Push actions shouldn't be executed in dryrun
  • [SYNCOPE-509] - In Task page after change of number of rows (to display) is erroneously added a column to tasks table
  • [SYNCOPE-512] - If there are no roles in edit user modal page is possible to create membership between root (fake) role and user
  • [SYNCOPE-515] - Bad integration test causes role ownership conflicts
  • Improvement:
  • [SYNCOPE-485] - Upgrade to Activiti 5.15.1
  • [SYNCOPE-486] - Update Selenium test configuration
  • [SYNCOPE-507] - User login date conditional logging
  • [SYNCOPE-511] - Enhance synchronization report information
  • [SYNCOPE-519] - Report default values for connector properties
  • [SYNCOPE-520] - Move reset sync token to resource actions

New in Apache Syncope 1.1.7 (Mar 31, 2017)

  • Released on April 11th, 2014
  • Bug:
  • [SYNCOPE-484] - Reports and Content export fails over HTTPS connection
  • Improvement:
  • [SYNCOPE-487] - make Velocity tools available in templates for notifications

New in Apache Syncope 1.1.6 (Mar 31, 2017)

  • Released on February 22nd, 2014
  • Bug:
  • [SYNCOPE-452] - Generated project not starting in embedded mode
  • [SYNCOPE-453] - Propagation problem with role virtual attribute mapped in user mapping
  • [SYNCOPE-454] - Update user without password specification involving resource with "Generate password if missing" enabled, sends password out anyway
  • [SYNCOPE-455] - Role child implicit delete won't be propagated during parent delete
  • [SYNCOPE-459] - Read-only virtual attribute cannot be added for a user by admin console
  • [SYNCOPE-462] - Upgrade Spring to 3.2.7
  • [SYNCOPE-465] - Selected items lost browsing paged results
  • [SYNCOPE-466] - Server error when updating an existing policy to its global counterpart
  • [SYNCOPE-474] - forbidden error when tried to change password
  • [SYNCOPE-475] - After session expired, console shows split screen
  • [SYNCOPE-476] - NPE opening Roles tab
  • [SYNCOPE-477] - Alert popup appears through page navigation after modal window closing
  • Improvement:
  • [SYNCOPE-460] - Default datasource uses BasicDataSource
  • [SYNCOPE-468] - Add information to what components refer to a certain policy
  • [SYNCOPE-469] - Group policies and logs under configuration
  • Task:
  • [SYNCOPE-463] - Update notification docs after SYNCOPE-423
  • [SYNCOPE-478] - Upgrade to Wicket 6.14.0

New in Apache Syncope 1.1.5 (Dec 4, 2013)

  • Bug:
  • Meaningless error message when attempting to delete user owning role
  • Improve notifications
  • UserService#update and RoleService#update require entity id to be specified twice
  • Counting search results fails with MySQL when OR condition is used
  • Users can log in the admin console despite of their status
  • Password not mandatory when subscribing external resource
  • Read-only virtual attribute values not retrieved from external resource
  • Wrong ID generation for new Notification instances
  • Timestamp based synchronization miss events
  • Improvement:
  • Provide user / role pre-processing mechanism
  • Improve audit info
  • Resolve OpenJPA dependency overlap
  • Add CSV report format
  • Provide debug logging for controller methods' input and output
  • Replace role action labels with icons
  • Index on Activiti table boosts overall performance
  • Use cached virtual attribute values with offline resources

New in Apache Syncope 1.1.4 (Oct 1, 2013)

  • Bug:
  • LDAP Roles lose entitlement upon LDAP synchronization
  • Audit tables are reset after restart
  • Users are made active when updating in NoOpWorkflowAdapter
  • Special chars break REST URLs
  • Improvement:
  • Inconsistent status of user edit form after exception returned by bad propagation on primary resource
  • Enrich PropagationStatusTO to report possible propagation exception message
  • Add index on task.executed
  • Allow notifications with empty about field
  • Make username pattern configurable via account policy
  • Perform retries on failed notifications
  • Clean activiti history for unused variables
  • Reduce log level of bean validation errors
  • AttributableSearchDAOImpl / Avoid query construction with string concatenation

New in Apache Syncope 1.1.3 (Jul 15, 2013)

  • HTTP Status 404 adding a role to a user with IE8
  • Scheduled tasks are executed without transaction support
  • removeAll and retainAll in PropagationByResource dont evaluate correctly boolean expression
  • Double update propagation with virtual attributes on already associated resource when changing password and adding new resource
  • secretKey does not get resolved during archetype:generate
  • Role attribute mapping for user mapping item doesn't result in a multivalue property
  • Poor search performance on MySQL
  • Deploying syncope.war with MSSQL server settings to Tomcat on Windows results in Error listenerStart

New in Apache Syncope 1.1.2 (Jun 22, 2013)

  • Bug:
  • Wrong error message on failed login
  • Console RuntimeException with multiple sessions for the same user
  • Connector error before save
  • when self reading admin user
  • QUARTZ tables are not written into an innodb mysql DB for an mvn generated and created project
  • Console webapp does not start on Glassfish
  • Exporting configuration via console causes exceptions to be thrown
  • Deleting a role from admin console throws an exception
  • Adding and saving roles with resources during save
  • Core hangs for a very long time (1h+ and then resumes) after a CLI role create and list
  • Failure assigning resource to an existing user
  • Issues with CXF and Glassfish
  • NPE when reading user assigned to resource with no mapping
  • Database sync (no full reconciliation) fails with "Unsupported object class"
  • Unable to synchronize deleted objects from OpenDJ
  • Improvement:
  • SyncopeUser tokens do not use secure random strings
  • Default Reportlets improvements

New in Apache Syncope 1.1.1 (May 11, 2013)

  • Bug:
  • Errors when editing role membership assignment in notifications (About and Recipients)
  • No connectors available on clean install
  • UserTemplate evaluation generates unjustified attributes to be removed
  • LDAP Membership propagation does not remove memberships
  • Unable to set resource for role via the console
  • When deleting role on external resource, also remove from there users with resource assigned only via that role
  • ConnectorService#list invocation with null parameter actually calls ConnectorService#readByResource
  • Removing Role mapping from External Resource fails
  • When creating new report, the modal window does not close and an exception is logged
  • ApacheDS not available since second run of the standalone distribution
  • Rejected users are anyway propagate to associated resources
  • External attribute disabled in case of schema info not available
  • Uniform constraint violation building
  • ConfigurationTestITCase#browseAccountPolicy Selenium test fails
  • Cannot add 'RoleOwnerSchema' mapping item via console
  • Improvement:
  • Ignore propagation if no schema mapping is provided
  • Disable mapping tab when the underlying connector does not support correspondent ObjectClass
  • Task:
  • Database import / export and related tasks

New in Apache Syncope 1.1.0 (Apr 26, 2013)

  • Bug:
  • LICENSE & NOTICE: duplicated entries
  • 'Enforce mandatory constraints' not working
  • Could not delete an user with LDAP resource
  • When deleting an user, REST error doesn't bring error message to display
  • UI Error when sorting Synchronization Task executions
  • With trace level NONE notification tasks don't get updated
  • LDAP test connector status management does not work with synchronization
  • User attributes not sychronized properly from LDAP resource
  • Change Display Attributes button misaligned
  • TaskModalPage Refresh button misaligned
  • MySQL and Oracle integration test hangs
  • Resources: schema mapping form shows incorrect external field names for SyncopeUserId and Password
  • Test org.apache.syncope.core.persistence.relationships.derAttrFromSpecialAttrs not enabled
  • Error when trying to change readonly attribute
  • SyncopeUser.hasTokenExpired() can easily cause nullpointer exception
  • When running in embedded mode, CSVDir configuration shows unresolved ${urlencoded.csvdir.path} property
  • ActivitiWorkflowLoader called by SpringContextInitializer even when ActivitiUserWorkflowAdapter is not selected
  • Invalid passwords might fill up user's password history
  • When updating a role, assigned entitlements get lost
  • Sync user attributes using a long schema attribute as accountId
  • "Connection is read-only" during initialization
  • Authentication failure using password with special characters
  • Failures upgrading OpenJPA
  • CSVDir connector fails during check connection
  • Username and password not evaluated from user template during synchronization
  • Users with no entitlements cannot edit their own profile via console
  • With an high number of users, the admin console's 'TODO' tab is extremely slow
  • Update propagation with null virtual attribute values
  • Role visualization error
  • Create sync policy fail
  • Possible NullPointerException into SchemaMappingUtil.getAccountIdValue()
  • AES encryption key defined in source code
  • Role deletion inhibits notification update
  • Sync: during update with user template existing memberships break update
  • Broken export
  • NPE when accessing Configuration page with no global sync policy
  • User data not refreshed before edit
  • External Attributes are showing up for AccoundId/Password in Resource User Mappings
  • Status is not updated when synchronizing existing users
  • Error when accessing the Resources page as non-admin
  • Can't create Sync or Sched Task in Console
  • 'Mandatory' error in Console when propagating Virtual Attributes
  • Virtual Attributes don't propagated in case of update during synchronization
  • When trying to update an user in status 'rejected', an error 500 is returned
  • Enter key not bound to user form submit
  • Palette elements get translated
  • Introducing UserWorkflowService
  • User list sort based on username fails
  • "Persistent" feedback messages
  • Exception when creating connector instances with no bundles available
  • Error executing SyncTask twice or more
  • No way to see Connector help message for multi-valued property
  • Support synchronizing role memberships from LDAP groupOfNames
  • Wicket error adding new derived/virtual attribute
  • Can't create a new Role in Chromium
  • REST: create turns into update for some entities
  • Stacktrace when accessing the Configuration page on JBoss
  • Error messages during Tomcat shutdown
  • NPE with no global password policy defined
  • Wrong CSS deleting execution task
  • noopworkflow profile not succeeding
  • User List sorting via Derived attributes column doesn't work
  • Can't delete a role from a user in the console
  • Use a auto-complete textfield to chose for external attribute to be mapped during schema mapping creation
  • Some CXF REST services can be accessed by anonymous
  • enum schema multivalue doesn't work
  • When deleting user schema, user list attributes head don't get updated
  • Console might fail to connect when core is deployed on virtual host
  • REST methods returning implementation classes might fail when there are no available
  • Error in the console when you try to assign to an user a resource without CREATE or UPDATE capabilities
  • User schema mapping error for Username
  • Improvement:
  • Solve some warnings and verify if generated projects still work
  • Add ability to search for Roles via the REST API
  • Remove MD5 as a supported password cipher algorithm
  • Display all Execute Tasks (Propagation, Notification and Scheduled) and related Execution history items sortered in descending order
  • Simplify Maven project structure
  • Upgrade Quartz to latest 2.X stable version
  • Add more password encryption options
  • Prevent task execution request for running tasks
  • Avoid propagating useless update operations
  • User, role and membership properties for derived schemas
  • Password required for resource subscription
  • Support more than one local connector bundles directory and zero or more ConnId's connector servers
  • Provide Task entities with a name and an optional description
  • Provide asynchronous refresh of tasks and reports list
  • Provide refresh button in task and report modal windows
  • Provide cancel button for all modal windows
  • Virtual attribute cache
  • LDAP test connector should provide status information
  • Make default sorting order consistent
  • Add checkboxes to tables headers and rows
  • Refocus on user deletion page
  • Improve rat-plugin configuration
  • AbstractSchema enumerationValues and enumerationKeys too short
  • Add OSGi support
  • Create standalone distribution
  • Clear test configuration in order to avoid AccountId/Password mapping explicitely valued
  • DB Table connector does not see changes in underlying table until restart
  • Provide suggestions / help / examples for JEXL-based input fields
  • Provide Validation Error message to user
  • ReadOnly option for virtual attributes
  • NotificationJob is hardcoded to run every 2 minutes
  • User Workflow visualization
  • Let user explicitly choose to give value for AccountLink (when defining resource schema mapping)
  • Check for mandatory condition on Virtual / Derived attributes
  • Role owner
  • Allow to change the bundle version associated to an existing connector instance
  • Using Standard JAX-RS API in Syncope (Introducing Apache CXF WS Stack)
  • Move persistence and persistence impl into separate modules
  • Resolve dependency cycles between persistence and the rest of syncope core
  • Extended org.apache.rat exclude list for eclipse IDE
  • Make external property file usage possible
  • Improve UserTestITCase, RoleTestITCase and TaskTestITCase
  • Consolidate task execution in TaskTestITCase
  • Implement RoleOwnerSchema for role propagation and synchronization
  • Improve error handling in NotificationTest
  • Upgrade Activiti to 5.11
  • Provide build profile for skipping any test-related activity
  • Hide Global Password/Account/Sync policy in security resource selections
  • Schema Mapping for propagation and synchronization
  • Java class as sync policy correlation rule
  • Create transitional Service interfaces and switch tests and console to use them
  • Inject Recipient and Event variable in Velocity Email Notification Template
  • Email Notification Templates Documentation
  • Password should be provided again at resource subscription time if a "Password" schema mapping for that resource exists
  • Enable Rest IntegrationTests to run more than once (per build)
  • Upgrade Spring to 3.2.1
  • Improve archetype resource population from core and console
  • Connector instance timeout
  • Update some checked exceptions to runtime ones
  • Refactor client module: Move common classes into common module
  • website edits
  • Move NotFoundException to core.persistence.dao
  • Show information (version, license, ...)
  • If AccountId is selected when creating a Resource Mapping, then make it mandatory
  • Align search botton
  • Add "row to display" selector in resources
  • View user details during approval
  • Provide feature for reloading all connectors
  • Return User instead of Boolean from REST username + password query
  • Provide access to user / role data on external resources
  • Email address validator regexp
  • New Feature:
  • Policy-compliant random password generation
  • Password change on an external resource only
  • Scripted SQL connector bundle
  • Role provisioning
  • Task:
  • Derived and Virtual attribute use cases
  • Workflow: concepts, how to customize and how to trace
  • Self-registration
  • Build reference flows for propagation and synchronization
  • Upgrade to Apache Wicket 1.5.8
  • Close Modal Window on keypress (ESC)
  • Automatic page refresher for task and report
  • Upgrade to latest Apache Wicket 6.X.Y
  • Ensure that Syncope test data is consistent
  • Upgrade instructions from 1.0.X to 1.1.0
  • Verify export / import
  • Check console style (CSS) on Internet Explorer
  • Provide Getting started / Standalone distribution

New in Apache Syncope 1.0.8 (Apr 26, 2013)

  • Bug:
  • Errors when editing role membership assignment in notifications (About and Recipients)
  • Improvement:
  • Email address validator regexp

New in Apache Syncope 1.0.7 (Apr 26, 2013)

  • Bug:
  • User List sorting via Derived attributes column doesn't work
  • Use a auto-complete textfield to chose for external attribute to be mapped during schema mapping creation
  • enum schema multivalue doesn't work
  • When deleting user schema, user list attributes head don't get updated
  • Console might fail to connect when core is deployed on virtual host
  • Task:
  • Check console style (CSS) on Internet Explorer

New in Apache Syncope 1.0.6 (Apr 26, 2013)

  • Bug:
  • User data not refreshed before edit
  • Status is not updated when synchronizing existing users
  • Virtual Attributes don't propagated in case of update during synchronization
  • When trying to update an user in status 'rejected', an error 500 is returned
  • Enter key not bound to user form submit
  • Palette elements get translated
  • User list sort based on username fails
  • "Persistent" feedback messages
  • Exception when creating connector instances with no bundles available
  • Stacktrace when accessing the Configuration page on JBoss
  • Improvement:
  • Virtual attribute cache
  • Add "row to display"; selector in resources
  • View user details during approval

New in Apache Syncope 1.0.5 (Apr 26, 2013)

  • Bug:
  • Update propagation with null virtual attribute values
  • Possible NullPointerException into SchemaMappingUtil.getAccountIdValue()
  • AES encryption key defined in source code
  • During sync null attributes from template are considered
  • Role deletion inhibits notification update
  • Sync: during update with user template existing memberships break update
  • Improvement:
  • Solve some warnings and verify if generated projects still work
  • Display all Execute Tasks (Propagation, Notification and Scheduled) and related Execution history items sortered in descending order
  • AbstractSchema enumerationValues and enumerationKeys too short
  • Hide Global Password/Account/Sync policy in security resource selections
  • Inject Recipient and Event variable in Velocity Email Notification Template
  • Email Notification Templates Documentation
  • Password should be provided again at resource subscription time if a "Password" schema mapping for that resource exists
  • Connector instance timeout
  • website edits