New Release: Hornbill ESP (2650)

[Harry Hornbill]

Hello Everyone

The latest version of Hornbill ESP (2650) has been released to live.

Release Notes for this release are as follows:

New

• Expanded session::userAuthenticateSAML and session::guestAuthenticateSAML to allow the SAML response to be provided as a base64 encoded string. This primarily assists with testing/validation.
• {#CH00120426} As a user I want to control the visibility of my profile
• The service is now able to write to a SAML validation failure log file if the security.saml.logResponseValidationFailures is enabled by the instance administrator
• Added a new admin option which when enabled logs SAML request validation failures.
• It is now possible for an entity to overload the task ownership behavior through a new FlowCode event called OnAllowTaskCompleteOwnerOverride

Change

• remove pcf switching experimental flag
• {#CH00143865} Check mailbox rights when getting Folders List
• admin.views.email.rules.table.routingOptions.flowcode from flowcode to operation as requested by jamesa.

Fix

• Resolved problems with the way the service was handling SAML responses where the response body was digitally signed instead of assertion. Both options are now supported.
• Then authenticating SAML responses, locally declared namespaces in the Issuer element of the assertion are now processed correctly.
• SAML authenticate implementation did not correctly handle locally defined namespace definition for the assertion Issuer.