Hello there!

Need Help? We are right here!

Support Icon
miniOrange Email Support
success

Thanks for your Enquiry. Our team will soon reach out to you.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×


Version 3.3.6


New Features:


  • Added Radius authentication in Reports + Rate Limiting.
  • Added Authy Authenticator Integration.
  • Added support for C200 (TOTP) Tokens.
  • Added option to enable linked apps.
  • Added all linked apps for Microsoft 365.
  • Added 'Sync Users in miniOrange' option for Database User Store during login.
  • Prompt users to set up their 2FA on first login in all flows.
  • Option to choose the 2FA Method from configured 2FA Methods.
  • Enforce 2FA on Additional Admins from main Customer Admin.
  • Added IdP Initiated SSO/SLO for JWT apps.
  • Enhanced Single Logout Support.
  • Assign multiple Policy Based Access for Single Browser Extension Apps.
  • Group based restriction for password less apps.
  • Office365 Provisioning using Graph APIs.
  • Enforce 2FA on Additional Admins from main Customer Admin.
  • Microsoft Authenticator as the 2FA Method in Adaptive Authentication.
  • Improvements around update user group membership API.
  • Improvement around custom out-of-band email templates.
  • Improvements around IP restriction when using FireFox Browser.
  • Mobile Device UI Improvements.
  • Added feature to allow Admins to activate the users manually.
  • Added support for SHA256 hashing in DB as auth source.
  • Added SmarterMail as a Form Post application.
  • Added support for encrypted assertion when miniOrange is the Service provider.
  • Better error handling for JWT Applications.
  • Better support for BigCommerce.
  • Support for Accounting for VPNs, Switches, Firewalls and other platforms that support Radius Accounting.
  • Adding provision for CustomJS and CustomCSS on the EndUser Dashboard.
  • Improved page load times for the EndUser Dashboard.
  • Improved support for Radius Group and custom attributes.
  • Security improvements around LDAP gateway and miniOrange servers.
  • Support for giving users the choice to choose their group/role on the SignUp Page.
  • Added an option to allow Admins to hide specific apps for all users.
  • Improvements around search, to find users against multiple LDAP Directories.
  • Support for Twilio as a Custom SMS Provider.
  • Fixed the Log4Shell Vulnerability recently found in Log4j Library.
  • Added the option to authenticate from a particular storeID (Magento2).
  • Prevent Concurrent login when using external IDPs/UserStores.
  • Added an option to be able to search for applications and groups while adding / editing policies.
  • User API improvements.
  • Added option to set your own Out of Band SMS Templates.
  • Browser Extension improvements.
  • Bigcommerce Provisioning and Deprovisioning.
  • Hook in user provisioning in user signup flow.
  • Gracefully handle password sync failure in multiple apps.
  • Added support for nonce & PKCE request parameters in OAuth domain-mapping flow.
  • All endpoints reset on branding reset/change.
  • Support for Multiple HTTP SMS Gateways is added. Country-Specific SMS gateway can now be added in miniOrange IDP.
  • Added a feature in Customer Admin to add policies for the Superadmin applications.
  • GUID support for Oauth, JWT apps attributes and User APIs.
  • Added an API endpoint to enable/activate a user.
  • Interface to choose redirect URL of JWT apps on enduser dashboard.
  • Search apps in app list by client ID for JWT and OAuth apps.
  • Added support for miniOrange as SCIM Client.
  • Added support for multiple redirect URLs in JWT Apps.
  • Force Authentication feature for SAML Apps in Broker Flow.
  • New API Endpoint for adding new user groups.
  • New API Endpoint for deleting user groups.
  • XSS Vulnerability Fixes.
  • Improvements in MFA Policy checks for Windows Desktop MFA.
  • Added Custom Administrator feature, which can be granted limited capabilities.
  • Improved the UI and introduced Selectable MFA Methods for various login flows.
  • Users get an expired message in Radius Response if their password in Active Directory is expired.
  • Support Single Logout for Multiple JWT Applications.
  • Improved UI and user experience for 2fa configuration.
  • Added Domain Mapping Option for OAUTH IDPs.
  • Added some new default SAML applications (vManage, SproutLoud, Splashtop, DeepFreeze).
  • Added a feature to send a signed logout response during Single Logout when binding is HTTP-POST.
  • Added Support For 2FA (OTP over SMS, EMAIL, SMS and EMAIL) methods for VPNs that don’t support RADIUS Challenge.
  • Improved UI of OAuth Apps.
  • Added a feature in Customer Admin to add policies for a Superadmin applications.
  • Mandatory option added for users to validate their phone number or Email while configuring 2FA in the Inline Registration flow.
  • Added a feature in Customer Admin to view all active sessions of end-users and an option to invalidate those sessions.
  • Added NameID format option in the SAML Identity Source section.
  • Support for Multiple Magento User Stores (Authentication Sources).
  • Added support for nonce & PKCE request parameters in OAuth domain-mapping flow.

Improvements:


  • Remove dependency of SAML application name from the IdP initiated SSO URL.
  • Added option to configure HTTP binding for SLO.
  • JWT/Bigcommerce/Thinkific apps attribute mapping with static value support.
  • Remove miniorange as a user store option. miniOrange is added as the default user store from now.
  • Improvements in API as authentication Source.
  • Improve Single Sign-On Audit & Add Logout Audit.
  • LDAP fallback authentication ROLE based check for PASSWORD SYNC.
  • German language support for end-user dashboard.
  • Allow users to Edit the name of Already Configured Application.
  • IDP Session Timeout functionality now works for Broker flow as well in addition to miniOrange IDP (password authentication) flow.
  • Send Signature and SigAlg query parameters while sending SAML authentication and logout request using HTTP-Redirect binding.
  • PKCE support in OAuth implicit grant.
  • Added Domain Mapping option to Cognito user store and Oauth IdP.
  • Allow sending static attributes from Oauth IdP.
  • Update local miniOrange Password after a successful authentication against AD credentials if fallback auth is enabled.
  • Export User groups(CSV) under customer admin.
  • On-boarding status UI improvement and UI fixes for product settings page.
  • Device Restriction: Updated Fingerprint Based Device Identification.
  • Added miniOrange SMS Gateway(Cloud) in on-premise build as the default gateway.

Bug Fixes:


  • Fixed failed authentication in case of SAML Domain Mapping flow is abandoned.
  • Fixes for BigCommerce On the fly user creation.
  • Audience URI not updated while Importing SAML metadata.
  • Create API does not assign users to the groups if all the incoming groups are not present in the miniOrange database.
  • Random Password is being assigned to users in AD when importing users and password sync is enabled.
  • Fix to Create an Enabled(Usable with UserLogonName) User in the AD if Password Sync is ON.
  • Challenge Options should only be visible when we select Challenge as the action in the Adaptive Authentication page.
  • Minor UI fixes while adding 2FA/ Adaptive in Policy section.
  • Corrected expiry time being calculated during max integer range.
  • Fixes in OIDC flow when Adaptive Authentication is enabled.
  • LDAP import fixes during case mismatch.
  • LDAP connection fixes when the search base had characters like '*' & '/' in it.
  • SMS 2FA was fixed when users who had spaces in their phone numbers were imported from AD.
  • Fix for duplicate emails of users fetched from LDAP server.
  • Azure AD Single Logout Fix.
  • DB Provisioning Fixes.
  • Logs don't show up on some windows environments while adding IdP.
  • Fixes for multiple sub-domains and vanity URL support.
  • Fixes around JWT Single Logout Flow.
  • Fixed an error with reset option for branding configuration.
  • If radius app config not found in registry fallback to db.
  • Edit Custom application name.
  • Missing graph library and loading issues in a few Reports sections for the SuperAdmin.
  • Improved Error messages while deleting additional admin.
  • 404 redirect issue with SMS Configuration for SuperAdmins.
  • Empty error message when superadmin performs quickest.
  • Add missing default links in navigation menu items.
  • Minor bugfixes for BigCommerce provisioning attribute mapping. Added BigCommerce Provisioning setup guide on the setup page.
  • Minor fixes in SCIM.
  • Edit Custom application name.
  • JWT / HTTP Apps were listed on the End-User dashboard despite policy restrictions.
  • Fixed the KBA Methods reconfiguration.
  • Fixed the Incorrect incoming username and email when Apple is the OAuth provider.
  • Fixed missing graph library and loading issues in a few Reports sections for SuperAdmin.
  • Fixed message when deleting additional admin.
  • Fixed Superadmin menu giving 404 errors when we visited SMS Provider option.
  • Fixed error message box when superadmin performs quickest.

Others:


  • Removal of ConnectWise from the miniOrange IdP.
  • Added the following apps as default apps in miniOrange along with documentation:
    • Spotfire - SAML and OAuth
    • Splunk - SAML
    • Slack - SAML (just added logo)
    • QlikSense - SAML
    • QlikView - SAML
    • Polarion - SAML
    • Creatio - SAML
    • HubSpot - SAML
    • RemotePC - SAML
    • Ultimate Software - SAML
    • Marketo - SAML
  • Add github browser extension app.
  • Add Apps to Google Workspace Linked apps.