❗️

High-Risk Update: Backend Enhancements and Console UI Revamp for User Management

This includes backend updates to API endpoints and revamps the Users, Roles & Permissions UI in console. It addresses bugs, including issues with email updates and revoking user access. We are closely monitoring the system post-release and have a 15-minute rollback plan in place. Please report any issues immediately to ensure platform stability.

The following changes are included in this release of the Next Identity platform.

New Features

Operate

⭐ Users, Roles & Permissions

We are thrilled to launch the first phase of the Users, Roles & Permissions update in Next Identity console, exclusively available to Next Reason internal users. This initial release includes a significant UI revamp, laying the groundwork for the next version, which will expand access to our customers. With this update, internal teams can:

• View, search, and filter users more efficiently, streamlining user management.
• Access detailed views of roles, improving clarity and oversight of permissions.
• Seamlessly add, edit, and delete users, enhancing administrative capabilities.

While this release focuses on internal enhancements, it is designed to prepare for the introduction of new predefined roles and broader user management capabilities in our upcoming version. To understand more about this update, explore our guide.

Enhancements

Analyze

• Remove User Count from Next Identity console: Temporarily removed user count information from the Next Identity console. Explore other Engagement metrics available.

Connect

• Backend Enhancements: Migrated several account-related endpoints to improve compatibility with future IDP integrations and increase IDP agnostic capability.

Operate

• Unified Unique ID Management: Enhanced the Next Identity console to support consistent unique ID assignment across properties and clients in all environments. Features include UI updates to display IDs, scripts to populate IDs for existing entities, and integrated onboarding processes for ID assignment.
• Environment Sequence Determination: Introduced a mechanism to accurately identify the highest and lowest environments in our customer's pipeline. This enhancement ensures precise data retrieval and display for properties or client information, especially during the initial onboarding stages where some environments might not yet contain all properties.

Unify

• Enhanced Mobile Flag Display Logic: Improved the automatic setting of country flags in key user interfaces such as registration, login, and profile management. It ensures the correct default flag is shown, enhancing user experience even when location details are not specified.
• Email Footers Data Privacy Update: Updated the email footer text to ensure compliance with data privacy regulations and improve customer communication clarity.
• Biometric Authentication for Mobile OTP: Integrated biometric verification into the Mobile OTP login flow to enhance security and meet AAL2 compliance standards. Learn more about Biometric Authentication.
• Restrict Access to Themes: Temporarily restricted all access to Themes in the Next Identity console. The Themes feature is comprehensively disabled across the product interface. API access remains unchanged. Improved theme management functionality is planned for release later this year.

Bug Fixes

Adopt

• Project Details Loading Issue: Resolved an issue where users were unable to edit or view project details in Adopt, experiencing loading times of over five minutes.
• Delete Button Displayed for Operator Role in Client Creation: Removed the delete button for the Operator role during client creation in the Next Identity console. The delete function caused errors in the Onboarding process and is now restricted to the SuperAdmin role, where deletion works correctly.

Operate

• Manage Users Not Working in Pre-Prod: Addressed an issue where the Manage Users feature in Pre-Production was non-functional due to conflicts caused by shared resources. This ensures the feature operates correctly in the Pre-Production environment.
• Clients Not Displaying in Inventory Screen: Resolved an issue where newly added clients and properties were not appearing in the Inventory screen. This fix ensures that all clients and properties are now correctly displayed.
• Events Not Triggered for User Updates and Deletions: Addressed an issue where events were not triggered for user updates and deletions in a specific application. This fix ensures that all relevant events are sent, preventing data mismatches and maintaining synchronization with workflows.
• Internal Error When Adding Secret Rotator and Secret Viewer Roles: Fixed an issue where an internal error occurred when users with the Secret Rotator and Secret Viewer roles attempted to log in to the Next Identity console. Users can now log in without encountering errors.

Unify

• 2FA Code Delivery Correction: Fixed an issue where 2FA codes were sent via email instead of SMS during account activation for users with the SMS-based MFA setup.
• Unable to Update Email via /change-id Endpoint: Resolved an issue where the /change-id endpoint returned a 422 status code with a "record not found" error message instead of the expected 200 status code. This ensures seamless email updates.
• Changing Mobile Number Redirects to Internal Service Error Page: Fixed an issue causing users to be redirected to an Internal Service Error page when attempting to change their mobile number.
• 2FA Not Working on Customer Demo Application: Fixed an issue in the Customer Demo Application where the OTP was not being validated, causing an error message "Please enter a valid verification code."
• Last Login Field Not Updating: Resolved an issue where the lastLogin field was not being updated upon user login. Now, both firstLogin and lastLogin fields are correctly updated, reflecting accurate login activity.
• Error 500 When Activating SMS Number: Fixed an issue where a 500 error was received during SMS number activation, preventing the verification code from being sent.
• Communication Preferences Not Saving from Registration: Fixed an issue where communication preferences set during registration were not being saved. Preferences can now be saved directly from the registration screen, ensuring user settings are retained.
• Logout Process Allowed with Empty Client ID: Corrected an issue where the logout process could be executed without a client_id, returning a 200 OK status. Now, the system requires a valid client_id and throws an error if it is missing, ensuring proper session handling.
• Incorrect Mobile Flag Display Based on ui_locale: Fixed an issue where the mobile flag was not displaying correctly based on the ui_locale parameter. The flag now accurately reflects the specified locale or defaults to mobile_default_country if ui_locale is not provided.
• Validation Code Sent to Incorrect Contact for Mobile and Email Changes: Resolved issues where the validation code was sent to the old mobile number instead of the new one during mobile changes and to a mobile number instead of the new email during email changes.
• Invalid Fields on Progressive Profile Screen for Two-Step Verification: Fixed an issue on the Progressive Profile screen where users were unable to enter mobile numbers for two-step verification, receiving an "invalid_fields" error.
• Notification Issue for Existing User Registration: Resolved an issue where existing users did not receive a notification email and were redirected to an error page upon attempting to register again.
• Incorrect Delivery Method for Verification Code: Fixed an issue where users received verification codes via SMS instead of the selected voice call option when changing their mobile number.
• 2FA Error After Progressive Profile Screen: Addressed an issue where the 2-Step Verification was erroneously triggered after the Progressive Profile screen, resulting in an error message.
• Unable to Change Mobile Number in Profile Page: Fixed an issue where users were unable to save their new mobile number on the Profile Details page because the "Save" button was grayed out.
• Missing Verification Code for Email Update: Resolved an issue where users did not receive a verification code via email when updating their email address on the Change Email page.

General

• Log Error Message Correction: Addressed incorrect error messages in logs due to unintended external endpoint calls.

Next Identity API

• Unable to Revoke Access for Existing Users: Resolved an issue where access could not be revoked for existing users in the application. This fix ensures that user access can now be properly revoked as intended, maintaining accurate access controls.