Versions Compared

Old Version 10

changes.mady.by.user Miika Vesti

Saved on

compared with

New Version Current

changes.mady.by.user Antti Kallio

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents

Initial release

Released 2020-10-14.

This version brings major improvements to user directories which enable login from external services, such as Apple, Microsoft, Google and Facebook. All technologies are OpenID or SAML, where OpenID is preferred, as it is also the native protocol of TIS.toc

Breaking changes

Web themes

  • Login layout has new components for signing in via external user directory. They need to be added to any web themes that customise this view:

Code Block
languagexml
<vaadin-label style-name="divider" width-full _id="externalLoginDivider">
	<hr>
</vaadin-label>
<vaadin-label plain-text _id="externalLoginLabel" />
<vaadin-button style-name="external-login-button" plain-text width-full _id="externalLoginButton" />
<vaadin-vertical-layout style-name="external-login-layout" plain-text width-full _id="externalLoginLayout" />

New features

These social, and other sign-ins are currently in status “early release” meaning they are fully functional, but have not yet been extensively regression tested. Later in separate release notes we will promote these new features as mature.

  • [ONEP-1796] - Add dynamic group UserCondition for "strongly identified"

  • [ONEP-2002] - Implement Facebook sign-in (OpenID)

  • [ONEP-2003] - Implement Google sign-in (OpenID)

  • [ONEP-2006] - Implement Azure AD login (OpenID)

  • [ONEP-2008] - Implement improved ADFS user directory (SAML)

  • [ONEP-2009] - Implement MPASSid login (OpenID, not SAML)

  • [ONEP-2012] - Implement Microsoft sign-in (OpenID)

  • [ONEP-2013] - Implement Apple sign-in (OpenID)

Improvements

  • [ONEP-1884] - Separate SAML user directory for suomi.fi-tunnistus (SAML)

  • [ONEP-1972] - Implement OpenID user directory and refactor external sign-in processes

  • [ONEP-2004] - Update authorisation collection indexes

  • [ONEP-2005] - More customisable external sign-in policy for OpenID login dialog

  • [ONEP-2010] - Refactor user directory authentication

  • [ONEP-2011] - Implement autentication error codes

  • [ONEP-2014] - Major authentication error message refactoring

Bug fixes

  • [ONEP-1966] - Suspected incident in suomi.fi-tunnistus successUri

...