RELEASE_NOTES_MGMT_CENTER

Version 1.3.1

Release Date: 2025-02-12

This release focuses on enhancing the management experience across all products, with significant additions for Password Reset integration, improved SAML and OIDC configuration workflows, and numerous quality-of-life improvements.

Key Highlights

• Complete Password Reset integration with dedicated UI and configuration management

• Enhanced SAML Profile support with improved application management

• Automatic display name generation for pipes, steps, and flows

• Improved OIDC RP and OP configuration workflows

• Standardized terminology across all products ("Authenticators", "Credential Validators")

• Bug fixes and UI consistency improvements

New Features

Password Reset Management

Complete Password Reset Integration

Management Center now includes full support for managing Password Reset deployments, bringing the same powerful configuration capabilities available for Access, Portal, and Forms to password management workflows.

• Dedicated Password Reset UI - New management interface specifically designed for Password Reset configuration

• Password Rules Configuration - API and UI for managing password complexity rules and validation policies

• Self-Reset Pipe Management - Configure and manage self-service password reset workflows

• Delegated Reset Configuration - Set up and manage delegated password reset scenarios for helpdesk use

• ADResetClient Module - Added missing ADResetClient module for Active Directory password write-back operations

• Installer Integration - Password Reset now included in the unified Management Center installer

• Documentation Updates - Complete documentation for ports, configuration, and deployment

Configuration Updates:

• Updated default logout endpoint URL: ${globals.host_uri}pwdreset/logged_out/

• Added display names for default Password Reset pipes

• Updated Discovery page to include Password Reset service

SAML Profile Management

Enhanced SAML Application Workflows

Significant improvements to SAML Profile creation and management make it easier to manage multiple applications sharing common SAML configurations.

• Profile Creation and Management - Create SAML Profiles to share configuration across multiple applications

• Profile Selector - New UI component for selecting profiles when configuring SAML applications

• Application View Integration - Profiles now appear in the application listing view

• Profile Association Display - See which applications are using each SAML Profile

• Improved Pipe Creation - Pipe creation for SAML SP and Profile objects moved to dedicated view for better workflow

Visual Improvements:

• New icons for SAML Profiles matching the visual style of OIDC RP icons

• Tags now properly displayed on profiles and RPs

• Application view sorted by display name for easier navigation

• Updated search placeholder text for better clarity

OIDC Improvements

Enhanced OpenID Connect Configuration

Multiple improvements to the OIDC configuration experience make it easier to set up and manage OpenID Connect integrations.

• Improved Discovery Metadata - Added id_token_alg_values_supported to Implicit Flow discovery metadata

• Better Default Handling - Fixed default keystore display in UI for new OP configurations

• RP Template Improvements - Corrected pipe_id handling in RP templates

• Claims Editor Enhancement - Expanded JSON editor for claims configuration

• Documentation Links - Fixed documentation links for RP configurations

Parameter Updates:

• Removed sign_ prefix from Authentication and Implicit Flow parameters for consistency

• Updated parameter naming conventions across OIDC configurations

Improvements

Display Name Management

Automatic Display Name Generation

The system now automatically generates meaningful display names for pipes, steps, and flows, improving readability and making it easier to identify components at a glance.

• Flow Display Names - Automatically generated when creating new flows

• Step Display Names - Auto-generated for steps within flows

• Pipe Display Names - Meaningful names for pipes based on their purpose:

  • Authenticator pipes get descriptive names based on authentication method

  • SAML SP pipes get names derived from the SP configuration

  • SAML Profile pipes use profile-based naming

  • OIDC RP pipes use RP-based naming

  • Default Password Reset pipes include service-specific names

UI Consistency:

• Display names now used consistently throughout the UI

• Primary display uses display_name field instead of technical ID

• Fallback to technical ID when display_name is not available

Configuration Management

Default Configuration Updates

Standardized default configurations across all products for consistency and better out-of-the-box experience.

• Access - Updated default configurations for improved SAML and OIDC workflows

• Portal - Refreshed default settings aligned with other products

• Forms - Updated flow and pipe defaults

• Password Reset - New default configuration optimized for common use cases

Configuration Improvements:

• Fixed TokenAuthentication valve default value that caused startup issues

• Removed unnecessary service file from Forms Windows deployment

• Updated HTTP listener creation with improved defaults

• Better cascade handling for HTTP listener deletion

User Interface Enhancements

Terminology Standardization

Updated terminology across the interface for consistency and clarity:

• "OPTIONS" changed to "CREDENTIAL VALIDATORS"

• "OIDC" changed to "OIDC RP" where appropriate

• Consistent use of "Authenticators" throughout Access configuration

Visual Improvements:

• Added icons throughout configuration interfaces for Access, Portal, and Forms

• Improved dropdown list visual styling with proper borders

• Fixed scrollbar behavior when adding new modules

• Reduced unnecessary spacing for more compact displays

• Better metadata component positioning

• Enhanced tab retention during updates

Navigation Improvements:

• Expandable navigation headings in left panel (now consistent across all products)

• Orange indicator properly shows unsaved changes across all contexts

• "Changes saved but not deployed" indicator positioning improved

• Fixed tab focus retention during RJSF form updates

Bug Fixes

OIDC Fixes

• Fixed RP creation failures

• Corrected path generation when editing OP objects from MC

• Fixed discovery functionality

• Resolved Implicit Flow tokens tab issues

• Fixed NPE when deleting OP set as default

• Corrected order field handling for new OIDC Chain entries

• Fixed RP JSON editor data persistence

SAML Fixes

• Fixed default metadata file value appearing when creating new SAML SP

• Corrected IdP value selection when creating new SAML SP or Profile

• Fixed pipe name showing "undefined" when created for SAML SP

• Resolved attribute settings handling for SAML applications

• Fixed field population when SAML Profile is selected

JSON Editor Fixes

• Standardized JSON editor behavior across Access, Forms, and Portal

• Fixed "Discard changes" functionality in pipe JSON mode

• Added proper validation to prevent updating with invalid JSON

• Consistent behavior for all JSON editing contexts

General Fixes

• Fixed filter clearing not resetting search field

• Corrected application update API to consolidate multiple calls into single request

• Fixed expansion/collapse behavior for nested categories

• Resolved "Change user" button visibility issues

• Fixed documentation links opening in same window

• Corrected module documentation link targets

API Enhancements

New Endpoints

• SAML Profile API - Complete CRUD operations for SAML Profiles

• System Variables API - Retrieve system variables for configuration

• Flow Management - Enhanced flow deletion and listing APIs

API Improvements

• Consolidated application listing into single API call for better performance

• Improved request handling for setting OP to null in RP configurations

• Better error handling for module creation and deletion

• Enhanced cascade deletion for dependent resources

Technical Details

Module Updates

New Modules:

• ADResetClient - Active Directory password reset client

• ExternalFlow - External flow authentication support

Missing Modules Added:

• OIDC module now available in configuration

• SAML & OIDC modules properly displayed on configuration start page

• Three missing Forms modules added to UI

Deployment Improvements

• Named EXE files for better service identification

• Updated install_service.ps1 with registry value parameters for upgrades

• Fixed hardcoded memory values in install_service.ps1

• Improved service upgrade process

Performance Optimizations

• Reduced unnecessary API calls in application views

• Optimized module refresh behavior

• Cached version check results for better performance

• Improved entity load operations

Breaking Changes

Upgrade Notes

Password Reset

If you're adding Password Reset to an existing Management Center installation:

SAML Profiles

If you're using SAML applications:

OIDC

If you're using OpenID Connect:

Display Names

For existing flows, steps, and pipes:

Documentation

Complete documentation is available at:

• Management Center Documentation

• Password Reset Configuration

• SAML Configuration Guide

• OIDC Configuration Guide

Known Issues

Scheduled for Future Release

• Schedule Management - Full UI for managing scheduled jobs (in progress)

• Vault UI - Enhanced vault configuration interface

• License Validation - License file validation improvements

Support

For questions, issues, or feature requests:

• GitHub Issues: fortifiedid/managementcenter

• Documentation: docs.fortifiedid.se

• Contact Fortified ID support team

Contributors

Thank you to all contributors who made this release possible through bug reports, feature requests, testing, and code contributions.