...
Major upgrade transitions all microservices from .NET 6.0 to .NET 8.0. The update addresses the upcoming end-of-support for .NET 6.0, effective November 12, 2024, ensuring continued security and support by leveraging the latest .NET framework enhancements. This upgrade does not affect current functionality or performance but is crucial for maintaining future compatibility and receiving ongoing support.
...
Enhancements and Fixes in Azure AD B2C Connecter:
Multiple enhancements have been introduced to the Azure B2C Connector to address issues with updates on newly retrieved instances of the resource system and account store. The b2cInboxProcessor class has been added to streamline processing. These changes resolve failures with SAP groups and improve the handling of activation requests and fulfillment workflows. The fix ensures proper functionality for Azure B2C tenants.
A fix has been applied to the Azure B2C Connector to address an issue where deleted applications were repeatedly re-inventoried, resulting in multiple duplicates. The update ensures that the correct skip token flag is used to prevent this duplication. This fix impacts the Azure B2C tenant inventory for DT, eliminating unnecessary re-inventory of deleted applications
A fix was implemented to address issues with parallel execution of normal and deleted inventory processes by using local variables instead of global ones. This change ensures that using the use of the next highest token and other related variables is thread-safe, preventing conflicts during inventory operations. This update only impacts the Azure B2C tenant inventory.
This A fix addresses addressing an issue in the AzureGroupInventoryProvider of Azure SCIM Connector where AzureAD inventory failed due to a mismatch between GroupGUID and SystemIdentifier for existing groups. Changes were made to the SyncToEntity method to ensure that the GroupGUID is set only when the GroupID is greater than 0. This resolves the inventory failure issue for Daimler, with no customer impact expected.
ZScaler
The Application Segment tab and data grid column names on the Zscaler Access Policy page within the legacy UI have been corrected to reflect the Application Segment.
A fix has been applied to address an issue with the Zscaler inventory. The process was exiting abnormally due to a missing end date. This fix ensures the inventory run completes correctly by properly handling the end date.
An enhancement was applied to the SAP connector's ASIEProvider to enable dynamic synchronization of new account attributes from Account mapping in ASIE. This update ensures that account attributes created through the Create Account workflow or via code are synched correctly. Accounts provisioned by RET are not affected. This enhancement supports the dynamic data flow for accounts created through specific workflows.
IAM Shop
An enhancement has been applied to add the System Identifier Attribute to the application overview details. This update will enable customers to view it on the overview details screen.
Addressed the issue in the Assign App Right to Person functionality by ensuring eligibility checks from PBAC Definitions are applied before making assignments. Previously, assignments could be made without validating against PBAC criteria. This fix enhances the security and integrity of the system by validating eligibility according to PBAC Definitions. The issue affected customers using version 212, potentially allowing unauthorized or incorrect assignments.
A new feature has been introduced that enables the assignment of App rights to Business Roles and Locations (BRLs), Groups, and SetGroups from PBAC assignments and PBAC Definitions. This enhancement allows customers using version 212, such as DT, to manage rights assignments more efficiently. Additionally, users can now add field types to new assignments when applicable, with the flexibility of making them optional. This update streamlines the process of managing app rights across BRLs, Groups, and SetGroups without requiring mandatory field types.
A new feature has been added to the OnboardGroup process, introducing support for configuring the ParentID for location settings. The update includes the following RWF parameters:
DefaultParentLocationID: Allows setting an OrgZoneID to restrict group creation to a specific location and its children.
SelectALocation_IsVisible: Controls the visibility of the "Select a location" selector in the Group Information step.
SelectALocation_IsRequired: Makes the "Select a location" selector mandatory in the Group Information step.
This enhancement, implemented for DT, adds a "Select A Location" field on the Group Information page with configurable parameters. The customer impact is low, as it primarily involves new configuration options. Associated SQL details are provided in the linked pull request.
The IsDeletable property has been exposed on the FieldType model in the Resource Admin project as part of the update for JIRA ID RESADMIN-3242. This enhancement includes the addition of a new property in the Model FieldType, a new mapper for the IsDeletable property in the Resource Admin Backend, and updates to the AzFieldTypeView at the database level.
...