Skip to content

Releases: 18F/identity-idp

RC 444

16 Jan 20:51
@jmhooper jmhooper
2025-01-16T205141
d853850
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 444 Latest
Latest

User-Facing Improvements

  • In-person proofing: Removes post office closure alerts from barcode page and email (#11733)

Bug Fixes

  • screen reader: Changing aria label for selfie capture (#11739) (#11739)

Internal

  • AAMVA: Feature flags for conditionally sending attributes to AAMVA were removed (#11724)
  • Analytics: Log analytics events for backup code reminder (#11738)
Assets 2
Loading

RC 443.1

14 Jan 18:53
@jmhooper jmhooper
2025-01-14T185340
116345a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 443.1

Internal

  • Dependencies: Update dependency to latest version (#11743)
  • Performance: Reduce size of application stylesheet (#11745)
Assets 2
Loading

RC 443

14 Jan 18:53
@jmhooper jmhooper
2025-01-14T185325
4e1fbd4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 443

User-Facing Improvements

  • In-person proofing: Content and translation changes to Ready to Verify View and Email (#11687)
  • Select email: Update content to be clearer for users in french and simplified chinese (#11729) (#11729)
  • document capture upload: Disable drag and drop functionality if selfie required (#11728) (#11728)

Bug Fixes

  • Code Revert: Revert changes introduced in 0d65152 (#11699)
  • SAML Gem: Validates signature algorithm correctly (#11741) (#11741)
  • Sign in: Bug fix for recaptcha failure not incrementing failed sign-in rate limiter (#11703)

Internal

  • Analytics: Initiating SP issuer is logged on verify-by-mail code entry (#11713)
  • CI: Pin Alpine image to 3.20 (#11723) (#11723)
  • Dependencies: Update outdated package version pinning (#11722)
  • Dependencies: Update dependencies to latest versions (#11720, #11721)
  • Developer Experience: Don't require obsolete openssl-1.1 (#11731)
  • Documentation: Fix documentation formatting (#11727)
  • Identity Verification: Update maintenance windows for states (#11705)
  • TrueID: Regex to parse the height from documents was adjusted (#11737)

Upcoming Features

  • Doc Escrow: Add encryption and storage pieces (#11714)
Assets 2
Loading

RC 442.1

08 Jan 22:18
@mitchellhenke mitchellhenke
2025-01-08T221745
This tag was signed with the committer’s verified signature.
mitchellhenke Mitchell Henke
GPG key ID: 4E345CFEDB1E6938
Learn about vigilant mode.
6ece32f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 442.1

Reverts Previous Changes

  • Attempts API: Implement ability to create and store Attempts API events (#11692)
  • Maintenance: Update newrelic_rpm gem (#11699)
  • Refactoring: Use more descriptive method last_sign_in_email_address (#11688)
Assets 2
Loading

RC 442

07 Jan 18:39
@solipet solipet
2025-01-07T183916
a082cb3
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 442

User-Facing Improvements

  • In-person Proofing: Add translations for temp copy about Jan 9 post office closure (#11709)
  • In-person Proofing: Add in-person post office closed email for January 9th closures. (#11702)
  • In-person proofing: Conditionally render Post Office Closed alert banner on Ready to Verify View and Email (#11707)

Bug Fixes

  • Fraud prevention: Limit query for timeframe expired event (#11696)
  • Logging: Include jurisdiction_in_maintenance_window in result when AAMVA raises exception (#11700)

Internal

  • AAMVA Support: NH and OK were added to the list of AAMVA supported states (#11708)
  • Attempts API: Implement ability to create and store Attempts API events (#11692)
  • Face or Touch Unlock: Logging for users in FT unlock setup ab test (#11683)
  • Face or Touch Unlock: Logging for users in FT unlock setup ab test (#11710)
  • In-person proofing: Add submit_attempts property to try again and IPP fallback doc auth troubleshooting events (#11682)
  • Maintenance: Update newrelic_rpm gem (#11699)
  • Performance: Move condition check above potential database queries (#11706)
  • Refactoring: Use more descriptive method last_sign_in_email_address (#11688)
  • Sample apps: Include protocol in sample app friendly names (#11712)

Upcoming Features

  • Anti-Fraud: Override CSP for ThreatMetrix based on feature-specific config (#11678)
Assets 2
Loading

RC 441

31 Dec 16:53
@mitchellhenke mitchellhenke
2024-12-31T163822
This tag was signed with the committer’s verified signature.
mitchellhenke Mitchell Henke
GPG key ID: 4E345CFEDB1E6938
Learn about vigilant mode.
faae3a7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 441

User-Facing Improvements

  • Accessibility: Skipnav container no longer blocks content at large zoom levels (#11676)
  • Account screen: Show Service Provider name in return-to-service provider call to action (#11686)

Internal

  • Code Quality: Remove unused code (#11679)

Upcoming Features

  • Authentication: Move ThreatMetrix to multi-factor authentication setup page (#11654)
  • Identity Verification: Socure timeout provides users with options. (#11572)
  • Partner account: Select email to share with partner (#11667)
Assets 2
Loading

RC 440

19 Dec 23:16
@matthinz matthinz
2024-12-19T231647
56ea064
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 440

User-Facing Improvements

  • Accessibility: skipnav container no longer blocks content at large zoom levels (#11676)

Bug Fixes

  • Doc Auth: Fix "Try again" button opening up Selfie SDK (#11661)
  • Partner agency: Prevent blank submission of preferred email form (#11568)

Internal

  • Code Quality: Simplify code using newly-available JavaScript features (#11666)
  • Dependencies: Drop dependencies in favor of Node.js native utilities (#11648)
  • Document Authentication: Repeat webhooks for docv (#11633)
  • Enable Chinese in staging: Delete production available_locales to use default which includes zh (#11668)
  • IdV Analytics: Make IdV event enhancement opt-out (#11588)
  • In-person proofing: Delete deprecated FSM state ID url (#11655)
  • In-person proofing: Move STEP_INDICATOR_STEP constants out of InPersonFlow (#11607)
  • Socure: Cleanup of error handling (#11595)
  • Static Analysis: Fix custom linter for configurable mail delivery (#11642)
  • Testing: Add rubocop-capybara (#11669)

Upcoming Features

  • Select email workflow: Select email supports single email (#11656) (#11656)
  • Doc Auth: Add feature test to ensure Socure rate limit count appears correctly (#11671) (#11671)
Assets 2
Loading

RC 439

17 Dec 19:11
@zachmargolis zachmargolis
2024-12-17T191117
f95f7ab
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 439

User-Facing Improvements

  • Authentication with SP: Change link from add email to change email (#11594)
  • In-Person proofing: Add translations for IPP Password Reset Email (#11645)

Internal

  • Analytics: Add integration error event (#11615)
  • Analytics: Remove support for allowed_extra_analytics (#11647)
  • Analytics: Remove support for wildcard allowed_extra_analytics (#11643)
  • Analytics: Document analytics events (#11634)
  • CI: Update image source from dockerhub to AWS Public ECR (#11641) (#11641)
  • Documentation: Fix documentation formatting (#11640)
  • Linting: Fix dot position (#11631) (#11631)
  • Maintenance: Update actionpack to address security vulnerability (#11630)
  • Maintenance: Update to Ruby 3.3.6 and Node 22 (#11605)
  • Maintenance: Update simpleidn and faker gems (#11646)
  • OpenID Connect: Support two OIDC key-pairs (#11626)
  • OpenID Connect: Simplify OIDC Logout validation (#11644)
  • SP Configuration: Add the ability to specify a locale in a redirect URL (#11620)
Assets 2
Loading

RC 438

12 Dec 16:52
@eileen-nava eileen-nava
2024-12-12T165159
276fb50
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 438

User-Facing Improvements

  • Account screen: Add a new link to return to the service provider for verified users who have not connected their account yet. (#11606)

Internal

  • Automated Testing: Improve test setup for enrolling profiles (#11315)
  • Dcoumentation: Add Frontend documentation for Images best practices (#11613)
  • Documentation: Expand on form pattern documentation validation, error handling (#11611)
  • OpenID Connect: Validate identity provider public/private keys (#11612)

Upcoming Features

  • socure: Reuse socure valid urls (#11555)
Assets 2
Loading

RC 437.1

10 Dec 22:09
@eileen-nava eileen-nava
2024-12-10T220910
8d3e4b0
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
RC 437.1

Bug Fixes

  • SAML Integration: Adding condition to allow no certs if integration has block_encryption set to none
Assets 2
Loading