After certification, this release got us back to track with both adding new features, improving current ones, and there was also a bug which got fixed. The relevant changes are listed below.
New Features
Product Catalog webhook support. I.e. trigger external application on change.
Subscription webhook support. I.e. trigger external application on change.
By default hide Personal ID Code in User Editor, viewing requires confirmation step.
Artificial API request slowdowns (for account create), configurable per client. This is both an control and a mitigation to prevent exess number of new accounts created by malfunctioning client. Malfunctioning could also happen in certain network error situations.
Improvements
Webhooks Enable and Lock settings checkboxes to editor.
Show default max access token and refresh token validity times in openid connect editor. This is for informational purposes mostly, yet it is an important information for developers.
To assist troubleshooting, add test connection button to "suomi.fi valtuudet" settings view
Bug fixes
Prevent duplicate emails through SAML IdP if duplicate emails are not allowed in namespace. This was a nasty one to find.