Unit4 Identity Services 221.8.0 release notes

*Release date

About this release

This release is version 221.8.0 of the Unit4 Identity Services (U4IDS). These release notes contain important information about U4IDS and provides an overview of features included in this release, important information, bug fixes and known issues.

About Unit4 Identity Services

U4IDS is the single Identity Solution and architecture for the Unit4 eco-system​, allowing users to have one single identity for log on across multiple applications.

• It provides as a federation gateway​ to each customer organization’s Identity Provider or identity solution.
• It standardizes on OpenID Connect for authentication.​
• It supports multi-tenant applications.
• It supports the following external identity provider protocols:
  • SAML 2.0 protocols
  • WS-Federation
  • OpenID Connect
• It allows web API and Powershell based administration of tenants, clients and scopes.
• It allows external claims transformation/harmonization and introduces Unit4 Identity claim​.
• It supports native clients and browser-based clients (through Implicit flow and Hybrid flow​).
• It enables secure machine-to-machine communication between services (through Client Credentials flow).
• It supports cloud deployment only.

IdentityServices 4 builds on asp.net core 3.X and extends IdentityServer 4. More about IdentityServer 4 can be found here: https://identityserver4.readthedocs.io/en/latest/ More about Asp.net core can be found here: https://docs.microsoft.com/en-us/aspnet/core/?view=aspnetcore-3.1

New features and enhancements

• Published third-party report in about page.
• Documented the InteractiveAuth commandlet.
• Security improvements.

Deprecated functionality

Powershell
- The following commandlets have been deprecated
- BasicAuth
- ExternalIdentityAuth

Discovery endpoint
The discovery endpoint http://IDS_URL.com/identity/.well-known/jwks was deprecated in IdentityServer4 v. 1.0.0 and is no longer supported in U4IDS. You must now use the following endpoint:

http://IDS_URL.com/identity/.well-known/openid-configuration

Bugs fixed in this release

No bugs have been fixed in this release.

Patches

No patches have been created in this release.

Known issues

There are no known issues in this release.

Note

• Scope settings AlwaysIncludeInIdToken and IncludeAllClaimsForUser is not supported in IdentityServer4. Instead you can add the claims you want in the identity token in requested identity scopes and the claims you want in the access token in requested resource scopes. However, we recommend using the user-info-endpoint instead, to keep the tokens small.