RELEASE_NOTES_3.1.1

Version 3.1.1

Release Date: 2025-02-12

New Features

Header Text Display

Added header_text parameter to the API for customizable header display
New component displays configurable text to the left of the avatar in the UI
Text is right-aligned and grows to the left
Supports language files for multilingual deployments
If header_text is not set, no additional text is displayed

Session Variables in Rules

Added support for session variables in rules.json regex evaluation
Session attributes (e.g., ${session.givenName}, ${session.familyName}) can now be used in regex patterns
Enables dynamic blocking rules based on logged-in user information
Example: "regex": "^((?!(?i:${session.givenName})).)*$" now works as expected

Extra Attribute Support

Added extra_attribute_1 attribute for SAML SP applications
Can be consumed by applications that require additional user attributes
Available for all SAML SP configurations

Improvements

Configuration Updates

Updated pwdreset.json module with two new configuration parameters:
- "overlay_dir": "${system.customer_home}/overlay/"
- "logout_endpoint_url": "${globals.logout_endpoint_url}"

Logging Optimization

Cleaned up default logging configuration in pipe files:
- pwdreset.json: Removed all default logging (no request/session logging)
- self_reset.json: Kept only request logging (removed session logging)
- delegated_reset.json: Kept only request logging (removed session logging)
Reduces log verbosity while maintaining essential audit trails

Configuration Cleanup

Removed unnecessary parameter from globals.json for Password Reset
Streamlined configuration for better maintainability

Bug Fixes

EntraID Module

Fixed missing EntraID module in Password Reset distribution
EntraID password changes now supported for Microsoft Entra ID (formerly Azure AD)

InformationEndpoint Update

Updated InformationEndpoint module to version 2024.77 or higher
Now supports overlay configuration consistent with other modules
Resolved compatibility issues with newer configuration patterns

Technical Details

Dependencies:

InformationEndpoint: 2024.77+
Platform: 2024.77+
Includes EntraID module support

Configuration Changes:

Session variables are now resolved at runtime in rules.json
New overlay directory configuration for easier customization
Logout endpoint URL can be configured globally

API Changes:

Added header_text field to API responses
Added extra_attribute_1 to SAML attribute list

Upgrade Notes

1

Session Variables in Rules

If you use custom rules.json files, you can now leverage session variables.
Update your rules to use ${session.<attribute>} syntax for dynamic evaluation.

2

Configuration Files

Review and update pwdreset.json if you need overlay or logout endpoint customization.
Check globals.json for removed parameters (automatic cleanup).

3

Logging

Default pipe logging has been reduced.
If you need more verbose logging, add configuration explicitly in your pipes.

4

EntraID Support

EntraID module is now included by default.
No additional configuration needed unless using EntraID password operations.

Documentation

For detailed configuration examples and migration guides, please refer to:

https://docs.fortifiedid.se/password-reset/
https://docs.fortifiedid.se/password-reset/configuration

Known Issues

None reported for this release.

Support

For questions or issues, please contact Fortified ID support or visit our GitHub repository.