Releases: 18F/identity-idp
Releases · 18F/identity-idp
RC 568
RC 567
Bug Fixes
- Analytics: Ensure referer is valid (#13018)
- Document Authentication: Update mrz NO match for Socure document capture (#13032)
- Session timeout: Fix some timeouts not redirecting to login (#13020)
Internal
- Doc Auth: Replace dl language with state id (#13027)
- Doc Auth: Adding ab for passport cards (#13034)
- IdV: Add customer event type to LexisNexis DDP requests (#13029)
- IdV SSA Agent: Handle agent request to proof user (#13025)
Upcoming Features
- Proofing Agent: Validates the data received from the proofing agent. (#13028)
RC 566
RC 565
RC 564
Bug Fixes
- Completions page: Avoid throwing error when verified at is set for user (#13010)
- phone vulnerabilities: Change link informing users about common scams (#13002)
Internal
- IdV: Remove references to state id verification at verify info step (#12999)
- Security: Update mcp gem to 0.10.0 (#13013)
- Reporting: added report for fraud metrics lg99 (#12919)
Upcoming Features
- Proofing Agent: Perform account check lookup (#13006)
RC 563
User-Facing Improvements
- Account deletion email: Update content (#13000)
- MFA setup: Inform user that phones are vulnerable to phishing scams (#12991)
Bug Fixes
- Analytics: Ensure request referer is captured in all (#12925)
- MFA added email: Send email for added MFA after phone setup during multiple MFA setup (#12995)
Internal
- Dependencies: Loosen rubocop version pins and autocorrect new cop offenses (#12993)
- Dependencies: Update ruby dependencies from package audit (#12997)
- IdV: Add SSN to Phone Finder request (#12996)
Upcoming Features
- Proofing Agent: Validate proofing data (#12981)
RC 562
Bug Fixes
Internal
- CI: Updating review app for new service naming (#12990) (#12990)
- Dependencies: Bump Rails version (#12992)
- Dependencies: Loosen rubocop version pins and autocorrect new cop offenses (#12936)
- One Account: Remove OneAccount feature flag and experiment (#12984)
- Proofing Agent: Authenticate http requests to proofing agent (#12980)
- Proofing Agent: Validate location-id and agent-id request headers (#12977)
Upcoming Features
- Historical Attempts API: Encrypt attempt data before saving to UserProofingEvents table (#12983)
RC 561
RC 560
User-Facing Improvements
- MFA emails: Email notifications for adding/deleting MFA methods (#12911)
Bug Fixes
Internal
- Dependencies: Update dependencies to latest versions (#12959)
- Doc Auth: Add socure mapping for id_card (#12943)
- Messaging: Update text messages keys to have an 'sms' suffix (#12961)
- Reporting: Fixed socure kyc query to use jsonParse and unest to get full data (#12969) (#12969)
Upcoming Features
- Proofing Agent: Add proof agent API endpoints for search_user and proof_user (#12960)
RC 559
User-Facing Improvements
- Password compromised check: Add a/b test capabilities for compromised password check (#12922)
Bug Fixes
- Email Notification: Send notification emails to confirmed addresses only (#12962)
Internal
- Doc Auth: Update telephony link content to use new naming convention (#12952)
- Event Summarizer: Add Socure KYC evaluator to event summarizer (#12949)
- IdV: Update threatmetrix iframe to include sandbox for security (#12950)
- Tracking: Error handling updates (#12958)
Upcoming Features
- Doc Auth: Add idv level for proofing agent (#12963)
- Historical attempts API: Fix event API naming inconsistency (#12946)
- Historical attempts API: Ensure that data is not queued twice for the same RP (#12951)
User-Facing Improvements
- Email: Improve styles for reset password email for gmail(LG-17202:(https://gsa-standard.atlassian-us-gov-mod.net/browse/LG-17202))