NextGen: Signicat Identity Broker

2 June 2022

• Fixed polymorphic signature validation issues
• Fixed remember TOTP text when set to 1 day
• Various (internal) bugfixes & improvements

30 May 2022

• Added IRMA preproduction connection
• Various (internal) bugfixes & improvements

23 May 2022

• Various (internal) bugfixes & improvements

17 May 2022

• Various (internal) bugfixes & improvements

29 April 2022

• Updated text on the OwnIdP TOTP onboarding page
• Various (internal) bugfixes & improvements

19 April 2022

• Various (internal) bugfixes & improvements

6 April 2022

• Fixed bug related to eH service catalog updates
• Added eID names to the OIDC well-known supported scopes
• Updated navigation of the Configuration application
  • SP Connections and eID connections have gotten their own pages
  • Less used options moved under an 'Advanced' heading in the menu
• Various (internal) bugfixes & improvements

1 April 2022

• Added support for Rabobank as iDIN acquirer
• Various (internal) bugfixes & improvements

22 March 2022

• Added warning for when CIAM account password is about to expire
• Added template for default SAML LoA contract
• Various (internal) bugfixes & improvements

14 March 2022

• Changing CIAM account password can be forced during login flow
• Various (internal) bugfixes & improvements

9 March 2022

• Various (internal) bugfixes & improvements

3 March 2022

• Improved WCAG compliance on IdP selection screen
• Various (internal) bugfixes & improvements

1 March 2022

• Fixed TLS downgrade when adding BeID
• Fixed: allowing ':' character in URLs
• Various (internal) bugfixes & improvements

21 February 2022

• Updated IdP simulator names (UI only)
• Various (internal) bugfixes & improvements

10 February 2022

• Various (internal) bugfixes & improvements

8 February 2022

• Various (internal) bugfixes & improvements

1 February 2022

• SP connections can now also be searched based on EntityID and/or OIN (search is only available when a lot of SP connections are configured)
• Various (internal) bugfixes & improvements

27 January 2022

• Various (internal) bugfixes & improvements

14 January 2022

• Various (internal) bugfixes & improvements

7 January 2022

• Fixed: Saml Form SP Connection Overrides AssertionConsumerServiceIndex
• Various (internal) bugfixes & improvements

30 December 2021

• Various (internal) bugfixes & improvements

23 December 2021

• Small UI/text updates
• Various (internal) bugfixes & improvements

14 December 2021

• Fix for eHerkenning & eIDAS history in configuration dashboard
• Various (internal) bugfixes & improvements

10 December 2021

• Patched log4j vulnerability (implementation was not exploitable)

9 December 2021

• Fix OIDC SP well known endpoint
• Fix for certificate handling (after migration)

2 December 2021

• Various (internal) bugfixes & improvements

22 November 2021

• Various (internal) bugfixes & improvements

19 November 2021

• Various (internal) bugfixes & improvements

11 November 2021

• Various (internal) bugfixes & improvements

2 November 2021

• Various (internal) bugfixes & improvements

25 October 2021

• Added extra validation in IRMA authentication
• Various (internal) bugfixes & improvements

14 October 2021

• Various UI improvements
• Various (internal) bugfixes & improvements

11 October 2021

• Various (internal) bugfixes & improvements

5 October 2021

• Improved account linking flow when multiple organisations exists with the same KvK number
• Various UI & text improvements
• Various (internal) bugfixes & improvements

29 September 2021

• Various UI improvements
• Various (internal) bugfixes & improvements

10 September 2021

• Add additional attributes to UZI pas IdP response
• Various (internal) bugfixes & improvements

30 August 2021

• Updated styling of upload fields in configuration management application
• Various (internal) bugfixes & improvements

26 August 2021

• Fixed double encoding on DigiD app2app
• Updated styling of information boxes in configuration management application
• Various (internal) bugfixes & improvements

19 August 2021

• Fixed OIDC PKCE flow SP logo upload for DigiD app2app
• Added UTC indication to time on error pages
• HTTP connections are no longer allowed on preproduction
• Various (internal) bugfixes & improvements

9 August 2021

• Icon for DigiD App2App is now configurable
• Added additional information to message log for failed account linking flows
• Added support for Transient NameID on SP connection
• Fixed: Setting icon for custom OIDC connection
• Various (internal) bugfixes & improvements

22 July 2021

• Various (internal) bugfixes & improvements

19 July 2021

• Made distinction between authentication and authorization (lookup) connections more explicit in message log
• Various (internal) bugfixes & improvements

16 July 2021

• TOTP issuer label is configurable (by technical support)
• Various (internal) bugfixes & improvements

14 July 2021

• Updated Favicon
• Fixed navigation from connection to message log
• Various (internal) bugfixes & improvements

9 July 2021

• Fixed logout not working in all scenario's
• Made Facebook Response URL readonly
• Various (internal) bugfixes & improvements

5 July 2021

• Account linking: Allow onboarding via a 'consumer idp' for bussiness flow
• Various (internal) bugfixes & improvements

1 July 2021

• Fixed bug with regard to navigating to message log with filters
• Removed certificate login option from CIAM login screen
• Removed LoA1 references for eHerkenning
• Updated font to match new styling
• Various (internal) bugfixes & improvements

30 June 2021

• Updated styling to match new Signicat style
• Various (internal) bugfixes & improvements

29 June 2021

• Updated 'Remember me' texts on CIAM login screen to be more clear
• Return CIAM externalID to SP
• Add tooltip for long organisation names in CIAM organisation selection screen
• Various (internal) bugfixes & improvements

24 June 2021

• Added URL validation on all URL input fields
• Various (internal) bugfixes & improvements

18 June 2021

• Various (internal) bugfixes & improvements

17 June 2021

• Added protocol logo's in Service Provider section
• Various (internal) bugfixes & improvements

16 June 2021

• Added validation for the email input (on certificate expiration notifications)
• Various (internal) bugfixes & improvements

15 June 2021

• Various (internal) bugfixes & improvements

10 June 2021

• Service catalog management made available when eH/eIDAS connection is active
• Various (internal) bugfixes & improvements

8 June 2021

• Improved readability of message log
• Various (internal) bugfixes & improvements

4 June 2021

• Navigation of message log improved
• Message log messages are displayed in more readable format
• Various (internal) bugfixes & improvements

1 June 2021

• Various (internal) bugfixes & improvements

27 May 2021

• Set maximum number of records on download of message log
• Various (internal) bugfixes & improvements

19 May 2021

• Made maximum number of days to remember device for TOTP configurable
• Various (internal) bugfixes & improvements

18 May 2021

• Added requested LoA to Broker Services
• Various (internal) bugfixes & improvements

12 May 2021

• Fixed: eH Service catalog issue
• Various (internal) bugfixes & improvements

10 May 2021

• Fixed: S-IAM connection cannot be deleted
• Signing certificates can be deleted from the UI
• Various (internal) bugfixes & improvements

7 May 2021

• Fixed revocation list issue with Digitaal Paspoort IdP
• Various (internal) bugfixes & improvements

5 May 2021

• Show custom error response if S-IAM user wants to login with inactive account
• Improved some NL translations in TOTP screens
• Added SCIM requests and responses (Broker - S-IAM) to message log
• Various (internal) bugfixes & improvements

29 April 2021

• Added Digital Passport to IdP simulator
• Added possibility to add 2FA to external (OpenToken) IdP
• Various (internal) bugfixes & improvements

22 April 2021

• SP connection name added to certificate expiration email
• Previously deleted MFA connections made visible in the message log
• Added Norwegian BankID
• Various (internal) bugfixes & improvements

19 April 2021

• Audit log of access to message log made visible.
• Added MFA explicitly to the message log
• Added BSNk structure version to service catalog management
• Itsme service codes made more flexible
• Various (internal) bugfixes & improvements

7 April 2021

• Return MFA issuer in response to SP
• Various (internal) bugfixes & improvements

1 April 2021

• Use Accept-Language from browser to set broker locale
• Digitaal Paspoort: Return email as subject
• Various (internal) bugfixes & improvements

26 March 2021

• Added configuration to determine which certificate to use for signing, when multiple valid certificates are available.
• Various (internal) bugfixes & improvements

18 March 2021

• Various (internal) bugfixes & improvements

17 March 2021

• Added option to change the OIDC client secret on a SP connection
• Various (internal) bugfixes & improvements

12 March 2021

• Added broker services, this can be used to filter available IdPs and provide default scopes to IdPs, based on the SP connection or request
• Various (internal) bugfixes & improvements

11 March 2021

• Various (internal) bugfixes & improvements

5 March 2021

• Add message to user when he is temporarily blocked (using Signicat IAM login)
• Various (internal) bugfixes & improvements

3 March 2021

• Various (internal) bugfixes & improvements

1 March 2021

• Assertion of IdP send in SP response (via SAML)
• Made message log retention period configurable (default 3 months)
• Various (internal) bugfixes & improvements

18 February 2021

• Added consent popup for lowering TLS version on adding BeID authentication provider
• Attributes within attribute filter are sorted alphabetically
• Added support for iOS usage of universal links
• Updated DigiD logo
• Various (internal) bugfixes & improvements

16 February 2021

• Create Level of Assurance contract from template (DigiD & eHerkenning avialable). This can also be done from the SP connection screen if no contract exists
• Import functionality or attribute filters & LoA contracts
• Various (internal) bugfixes & improvements

11 February 2021

• Added Cleverbase as IdP
• Various (internal) bugfixes & improvements

4 February 2021

• Added UZI-pas as IdP
• Add broker domain information to certificate expiration email
• Various (internal) bugfixes & improvements

1 February 2021

• Various (internal) bugfixes & improvements

22 January 2021

• Added: Option to automatically send (SP) certificate expiration notifications
• Various (internal) bugfixes & improvements

13 January 2021

• Various (internal) bugfixes & improvements

12 January 2021

• Various (internal) bugfixes & improvements

8 January 2021

• Added support for transient subject identifier for OIDC SP connections
• Added multi lingual support in the configuration interface (Dutch & English)
• Various (internal) bugfixes & improvements

4 January 2021

• iDIN QR code login possible via iDIN connection (requires additional configuration, please contact technical support)
• Allow username and email as login with CIAM account
• Various (internal) bugfixes & improvements

22 December 2020

• Bugfix for eHerkenning service catalog
• Various (internal) bugfixes & improvements

14 December 2020

• Bugfix: Fixing login issues on Broker configuration for certain users

10 December 2020

• Return Itsme address as separate attributes if multple attributes are returned by Itsme
• eHerkenning/eIDAS: Added the option do download the BSNk decryption keys
• Various (internal) bugfixes & improvements

8 December 2020

• Added LoA level 2+ to LoA contracts
• Bugfixes:
  • Return CIAM organisation attributes to SP
  • Fix cancel button on LoA contract page
• Various (internal) bugfixes & improvements

3 December 2020

• Rebranding from Connectis styling to Signicat styling
• OIDC SP SLO backchannel logout added
• Preparations for iDIN QR code login
• Added export functionality for shared configuration items
• Added support for past/deleted connections in message log
• eHerkenning service catalog:
  • Add field validations
  • Automate service catalog certificate when broker decryption in turned on
• Bugfixes:
  • CIAM cancel response did not appear in the log
  • CIAM organisation attributes are now returned to SP
  • Fix download link in message log
  • Fix Service Catalog download button
  • Make it possible to set OIDC SP maxSession validitry in minutes
• Various (internal) bugfixes & improvements

17 November 2020

• Added 'Show Usage' functionality for shared configuration items
• OIDC: Support for IdP initiated Logout
• Various (internal) bugfixes & improvements

12 November 2020

• Added more flexibility (units of time) to 'duration' settings
• eHerkenning: in case of eIDAS-inbound service, automatically add EB idp scoping
• Various (internal) bugfixes & improvements

10 November 2020

• eHerkenning: add response attribute to attributeLabel mappings (for OIDC SP connections)
• Various (internal) bugfixes & improvements

9 November 2020

• SP URL can be added to the SP configuration
• Small UI updates for consistency
• Various (internal) bugfixes & improvements

3 November 2020

• eHerkenning: Added check if requested service exists in the service catalog
• Message log: Added possibility to search by part of the error code id
• OIDC SP: Added revocation endpoint
• Various (internal) bugfixes & improvements

29 October 2020

• Allow http redirect URLs on OIDC SP configuration
• Added filter option on CIAM company selection during login
• Improve speed of DNSSEC check
• Improvements for OIDC SP session management
• Message log: shows error id in table
• Various (internal) bugfixes & improvements

20 October 2020

• Added BeID support (x509 certificate)
  • Only certificate information can be returned
• Added Spanish FNMT certificate support (x509)
• Improvements for OIDC SP session management
  • Introduce refresh token validity & max session validity
  • Implement refresh token request
  • Remove authorization code once it is used
• Added Belgian OrganizationId Lookup support
• Added initial support for eH/eIDAS Service Catalog management
• Added support for AttributeConsumingService in SAML SP metadata
• Various (internal) usability improvements
  • Show nice error, with back button, when no X509 certificate supplied
• Various bugfixes:
  • Fix Enable/Disable connection for DigiD
  • Fix cancel behavior on Broker Settings screen
  • Webpage becomes unresponsive when entering invalid OpenID provider URI
  • OIDC SP: Refresh is broken

1 October 2020

• Added Digital Passport login support
• Added other iDIN DISP connections support
• IdP Simulator: added eIDAS support
• Added SP connection validations
• Added auditing of IdP simulator requests and responses
• Added setting for requiring authentication for usage of SP simulator
• Various (internal) bugfixes & improvements

23 September 2020

• IdP Simulator: added eHerkenning support
• Improved loading speed of history
• Various (internal) bugfixes & improvements

22 September 2020

• Internal cleanup of unused components

21 September 2020

• Added Itsme support
• IdP Simulator: add button to trigger an error
• Obtain OIN from PKIo certificate for eHerkenning connections
• Various (internal) bugfixes & improvements

15 September 2020

• eHerkenning/eIDAS: connection fails if there is no attributeConsumingServiceIndex
• eHerkenning/eIDAS: Support for specifying a default service index
• Bugfix: SAML SP redirect binding is broken
• Various (internal) bugfixes & improvements

11 September 2020

• I (opens new window)nternal improvements & cleanup

10 September 2020

• Added support for DigiD (SAML)
• Added support for eHerkenning / eIDAS
• Added support for disabling connections
• Added Audit message log download option
• IdP Simulator: added DigiD support
• IdP Simulator: added iDIN support
• Added validation for IdP connections
• Added Metadata contact information
• Added support for Encrypted Attributes in SAML SP connection
• Added support for requestedLoA on OIDC SP connections
• Added support for OIDC IdP frontchannel logout
• SP simulator: Always use forceAuthn on Test button
• Various (internal) bugfixes & improvements

20 August 2020

• Add support for customer information to SAML metadata
• Various (internal) bugfixes & improvements

17 August 2020

• Support showing iDIN Bank selection screen
• Added filtering to configuration history
• Added support for OIDC IdP connection setup via URL
• Added support for OIDC IdP frontchannel logout
• Added support for uploading certificates on SP SAML form
• Show certificate information in Metadata Form (for SAML SP connections)
• Added support for Idp initiated logout requests
• Added DNSSEC check for relevant IdPs
• Added PKIo certificate check for relevant IdPs
• Various (internal) bugfixes & improvements

4 August 2020

• Added support for permissions restricting functionality
• Various (internal) bugfixes & improvements

31 July 2020

• Added iDIN support (DISP connections)
• Added support for (internal) federation management

28 July 2020

• Small (internal) bugfix

27 July 2020

• Added link from connection configuration to pre-filtered MessageLog
• Various (internal) bugfixes & improvements

22 July 2020

• Various (internal) bugfixes & improvements

17 July 2020

• Added notification for SP connection certificate expiration
• Added logo from theming session to broker (login) screens
• Various (internal) bugfixes & improvements

14 July 2020

• Various (internal) bugfixes & improvements

7 July 2020

• Added f (opens new window)ull featured SAML SP form
• Various (internal) bugfixes & improvements