Top Menu

Jump to content

Content

Roadmap

4.4.10

There are currently no work packages assigned to this version.


4.8.8

Start date 03/17/2025
Finish date 04/30/2025

Due in 29 days

0% Total progress

0 closed (0%)   3 open (100%)

Related work packages
  • Bug #10418: ninja import systemconfiguration ends with reason: Version must be a number: null. Reason: Version must be a number: null
  • Improvement #10461: Improve documentation for Anonymous export of data for role analysis purposes.
  • Task #10367: Upgrade hibernate to 6.6

4.9.1

Finish date 01/30/2025

about 2 months late

93% Total progress

13 closed (93%)   1 open (7%)

Related work packages

4.9.2

Start date 01/30/2025
Finish date 03/18/2025

14 days late

60% Total progress

3 closed (60%)   2 open (40%)

Related work packages
  • Bug #8818: Midpoint synchronization error
  • Bug #10206: Unable to display ServiceType correctly in the role catalog of request access
  • closedBug #10469: Campaigns - Table view
  • closedBug #10490: Invitation process fails with error invalid request
  • closedTask #10534: Add section "Upgrade From MidPoint 4.9" to MidPoint 4.9.1 "Verne" - Update 1

4.9.3

Start date 03/17/2025
Finish date 04/30/2025

Due in 29 days

7% Total progress

1 closed (7%)   13 open (93%)

Related work packages
  • Bug #10226: Remove single quote (') surrounding the arguments in the localization keys within midpoint-localization project
  • Bug #10353: SchemaDoc links are probably incorrect
  • Bug #10363: Update documentation and other resources influenced by H2 removal
  • Bug #10385: Uploading a bulk task produces a warning "req. metadata missing"
  • Bug #10402: Querying by credentials/password/metadata not working correctly
  • Bug #10405: Filter in the marking rule cannot be modified after rule is saved
  • Bug #10437: Schema extension save error
  • closedBug #10444: References seem to be loaded when listing accounts in GUI, this might slow the overall performance quite a lot
  • Bug #10558: Error in log during configuration of extension schema by GUI
  • Bug #10577: Error 500 when trying to add association to group projection
  • Improvement #10174: Metadata documentation
  • Task #9594: Check the performance reduction in Oracle-master jobs in recent Jenkins tests
  • Task #10357: Major reorganisation of information on connector pages
  • Task #10435: Adapt certifications tests

4.10

15% Total progress

21 closed (15%)   120 open (85%)

Related work packages

5.0

LTS, Evolution-revolution

8% Total progress

5 closed (8%)   58 open (92%)

Related work packages

backlog

The pool of all tasks that are planned to be implemented eventually. The scope of each release is selected from backlog.

9% Total progress

93 closed (9%)   909 open (91%)

Related work packages
  • closedBug #710: JMX sometimes becomes unreachable
  • Bug #918: ScriptedSQL connector won't survive database restart
  • Bug #919: ScriptedSQL connector will not "see" users created in the database during its run making synchronization useless
  • Bug #1007: Better error messages for adding a user to OpenDJ with some items missing + Incorrect treatment of 'sn' attribute.
  • Bug #1243: suspicion: OpenDJ resets synchronization token after purge delay
  • Bug #1296: Conflicting IDs in swallow
  • Bug #1518: Notifications on retried account operations may contain wrong or empty REQUESTER information
  • Bug #1644: midPoint does not reflect account rename if it is long-time/pending operation on resource
  • Bug #1869: Return runtime state information on cluster nodes via getObject() call
  • Bug #2046: DBTable Connector caches the schema until either DB/midPoint restart
  • Bug #2070: Use resource wizard in special mode (button) to generate resource configuration documentation
  • Bug #2087: Provisioning + consistency + strict dependencies problem
  • Bug #2132: Editing assignment parameter for role duplicates role assignment
  • Bug #2232: Colliding deltas in workflows
  • Bug #2288: More flexible approval notifications (candidates + on task cancellation)
  • Bug #2328: connectorConfiguration in connector schema is without maxOccurs
  • Bug #2397: Expression with concatenation of polystring throws "Cannot execute null+null expression"
  • closedBug #2423: AD Connector/Import setting incorrect time, time is off in attribute
  • Bug #2435: "Resolve" option does not work with multi-segment paths
  • Bug #2448: AssignmentTargetSearch script vs. path problem
  • Bug #2458: Slow provisioning and fast livesync
  • Bug #2476: Provisioning to AD fails if user to be created with iteration that is same as a group or in a protected object
  • closedBug #2477: Audit Events - dummy entries
  • Bug #2518: Exotic mapping interaction with multi-resource reconciliation
  • Bug #2613: Can't create orgs with russian names
  • closedBug #2618: Conditional mapping to administrativeStatus does not work
  • Bug #2817: Display MIME type for binary attributes with possible preview (small icon for image)
  • Bug #2843: Duplicate Error in Name (username) Field
  • Bug #2912: noFetch + resolve
  • closedBug #3127: MP Repo MSSQL: dbo.hibernate_sequence
  • Bug #3221: Delete and deny
  • Bug #3245: Connector Server logs case insensitive filter on Error logger (or higher)
  • Bug #3256: AD livesync throws NPE when AD Configuration was changed
  • Bug #3270: Unable to change intent in association definition
  • Bug #3301: Password policy not applied on direct resource modification
  • Bug #3302: SSO user missing End User role
  • Bug #3347: Allow configuring validation query (and other data source parameters) for Quartz scheduler
  • Bug #3350: Allow editing approvalSchema structures
  • Bug #3361: Show actual pictures when changed (in user change preview)
  • Bug #3376: ReturnDefaultAttributes is ignored by connId
  • Bug #3378: Quartz scheduler in JDBC mode intermittently fails with MySQL
  • closedBug #3427: WSDL cannot be retrieved online
  • Bug #3444: Operation result does not display the primary error (projector issue?)
  • Bug #3449: Reconciliation when importing from LDAP
  • Bug #3485: Object merge bugs & improvements
  • Bug #3487: Delta with "filled-in" reference is temporarily not supported
  • Bug #3602: Having an account with two UIDs prevents midPoint from listing any accounts
  • Bug #3611: edit resource -> Accounts -> Resource -> unknown number of matching results for CSVConnector
  • Bug #3621: Vague exception after setting "Enabled security protocols" field
  • Bug #3644: warnings in log when run Audit log report
  • closedBug #3651: scripted SQL connector and image type attribute errors
  • Bug #3676: Password generator does not use per-organization password policy when creating users
  • Bug #3707: reconcile read data one by one from resource not only find all at the beginning
  • Bug #3714: limitations/maxOccurs=1 on user ri:description attribute is ignored when I'm using auxiliaryObjectClass in AdLdapConnector
  • Bug #3715: Check if concurrent startup of 2 instances over common empty DB works correctly
  • closedBug #3722: Fill-in channel in certification campaign operations (e.g. stage close)
  • closedBug #3723: Eclipse XML formatting
  • closedBug #3752: Problem with compile
  • Bug #3765: Fix intolerantValuePattern for properties.
  • Bug #3776: Progress count for executeScript bulk action task is not updated
  • Bug #3781: objectForms in adminGuiConfiguration are not functioning as intended
  • Bug #3795: Configuring global policy rule for conditional approval of role requests
  • Bug #3817: Missing RequestId for REQUEST vs. EXECUTION
  • Bug #3818: Missing resource reference in audit log event
  • closedBug #3822: LDAP could not modify shadow, Item '{http://midpoint.evolveum.com/xml/ns/public/resou rce/instance-3}dn' without definition can't be saved
  • Bug #3825: Merge page does not display error messages (they are displayed in idm.log and on next page)
  • Bug #3872: Attribute 'id'
  • closedBug #3905: Quartz: optimize the synchronization process
  • Bug #3912: XML Configuration Ressource Synchronize Creating user by specific template
  • Bug #3913: Eclipse plugin should save the file before uploading
  • Bug #3918: Extremely slow organization units browsing after expansion
  • Bug #3936: More strict parsing of filters
  • Bug #3966: Dynamically-evaluated assignments are not processed correctly
  • closedBug #4016: Installing from binary, midpoint did not start
  • Bug #4019: MidPoint 3.5.1 and Tomcat 8.5.5 WARNING errors
  • closedBug #4057: Shutdown of midpoint and Powehell connector - WS Management exception
  • Bug #4077: Fix deepClone on ObjectClassDefinition
  • Bug #4097: Provisioning notification of FAILURE
  • Bug #4106: Live sync with AD accaunt stalled
  • Bug #4107: Clustered Midpoint Breaking Own Repository Object
  • Bug #4117: Shadow has no attributes after refresh schema (LDAP Connector)
  • closedBug #4122: DB connection leak
  • closedBug #4125: SOD Policy rules approval and prune policy actions not evaluated
  • Bug #4161: Problem reading activation attribute (simulated capability) if the attr is operational
  • closedBug #4164: Change password and illegible error messages
  • Bug #4189: CAS Login Broken, maybe just needs some documentation
  • Bug #4237: Save from Preview changes goes through the focus page (was: Adding new value shows wrong "bullet" (black))
  • Bug #4239: impossible to create shadow account when creating user
  • Bug #4288: Function basic.norm() delete "Ł" and "ł" instead replace them with "l"
  • Bug #4368: UI_CSV_NAME_ATTRIBUTE field undocumented in GUI
  • Bug #4420: "Repository objects" page could erase data
  • Bug #4421: simpleWorkflowNotifier messages are not localizable
  • Bug #4428: long vs int value in prism
  • Bug #4501: Resource schema validation error when editing the XML in the GUI and option 'Validate Schema' is checked.
  • closedBug #4520: There are Chinese chaotic codes on some pages
  • Bug #4557: User is not created from synchronization if the target accounts are failing with ObjectAlreadyExistsException
  • closedBug #4579: Make LightweightIdentifierGeneratorImpl cluster-aware
  • Bug #4621: adminGuiConfiguration vs other roles without that
  • Bug #4627: CAS: Logout after inactivity leads to 500
  • Bug #4633: Higher order inducements defined with orderConstraint does not work for targetRef
  • Bug #4683: Google Connector
  • Bug #4717: Can't assign more than one GSuite group via GoogleAppsConnector to user
  • Bug #4718: Google connector source code doesn't prompt for credentials so that I can get the refresh token
  • Bug #4745: Audit improvements
  • Bug #4750: Erro Office365 Connector
  • closedBug #4769: Resource Wizard problem: Can't create DatabaseTable Resource
  • Bug #4771: Check expressions in password policy does not apply when validating password
  • Bug #4774: User is capable of uploading a "too large" jpeg photo
  • Bug #4812: ADD deltas for single-valued properties break mapping evaluation
  • Bug #4834: Query.match issues
  • Bug #4907: Can't list users on russian language in UI ( Error 500 )
  • Bug #5003: Password propagation does not work ("user" channel)
  • Bug #5041: Fix failing TestWorkersManagement.test220PartitioningToWorkersMoreBuckets
  • Bug #5059: Too many tables error when trying to view user details
  • Bug #5065: Prism delta validation
  • Bug #5123: YAML !!binary is treated as text not as a binary
  • Bug #5142: Ninja does not correctly use relative paths for arguments
  • Bug #5148: Scripting hooks scripts are evaluated with evaluateNew = false
  • Bug #5271: Remove password action throws error trying to remove resource account password, but removes the password from midPoint user
  • Bug #5276: Support isIdempotent on LookupTableType deltas involving deletion of rows by keys
  • closedBug #5302: Eclipse plugin: configurable raw vs full object import
  • Bug #5311: Ldap comparator (midcredible)
  • Bug #5409: Concurrent transactions on H2 corrupt data
  • Bug #5412: Plus symbol in emailAddress breaks password reset
  • Bug #5432: Midpoint 3.9 does not search users with names in Russian
  • Bug #5468: com.evolveum.midpoint.util.exception.ConfigurationException: Configuration error: ERR_13219_NULL_SYNTAX_CHECKER Cannot validate 1000000006 with a null SyntaxChecker
  • Bug #5506: Import Account from OpenLDAP to MidPoint
  • closedBug #5623: Eclipse plugin fetches data from REST and shows strange whitespaces
  • Bug #5708: LDAP recompute user error
  • Bug #5745: ldap connector (apache ldap library) does not support opendj schema
  • Bug #5784: isMemberOf check does not work with role pruning
  • Bug #5831: Index-only attributes are not supported by searchObject call
  • closedBug #5848: Modification of associations throws ClassCastException
  • Bug #5859: Implement missing OrgFilterImpl.match method
  • Bug #5860: Resource wizard: setting limitations fails with 500 internal server error
  • Bug #5861: Audit report shows ObjectNotFound ERROR in log for deleted resources
  • Bug #5877: Error in front end If Birthdate is 10/11/1998 (english notation, 1998-10-11, october)
  • closedBug #5924: Notification does not contain correct channel during import
  • Bug #5931: Unexpected "No resource schema; have you executed the Test Resource operation?" in async connector
  • Bug #5937: Extensive (and misleading) error messages on "already exists" condition
  • Bug #5955: Reconciliation bricks whole midPoint instance
  • Bug #5957: Resource wizard: schema and auxiliary object classes
  • Bug #5976: maxAge security policy parameter ignored for passwords without timestamp
  • Bug #6207: Synchronous bulk action output is lost
  • Bug #6272: DatabaseTableConnector fails on large tables due to timed out connection
  • Bug #6292: Targets for skipped assignments are not loaded
  • Bug #6295: NPE in UnixConnector updating or querying users
  • Bug #6317: Cleaner stream closing in DomLexicalProcessor#read* methods
  • Bug #6323: Enable ModelController.preProcessWorkItemSecurity
  • Bug #6339: Entitlements use cases failure
  • Bug #6357: Synchronization doesn't update shadows
  • Bug #6470: English: capitalisation is not consistent
  • Bug #6582: Keyboard shortcut ENTER sometimes doesn't work in search filter
  • Bug #6598: Issue meaningful warnings when bulk actions variables cannot be cloned
  • Bug #6614: Audit record opened in new tab - midpoint does not remember audit record
  • Bug #6639: Strange "change owner" icon for resource objects
  • Bug #6642: Resource wizard: error after Add protected account button click
  • Bug #6649: Empty dropdown menu on 'Delegation to me' tab
  • closedBug #6652: Certification-related tasks do not have correctly set visible items
  • Bug #6686: Consolidation of PCVs with IDs does not work
  • Bug #6687: ConnId: script exit code
  • Bug #6711: Rethink usage of "Internal(s) Configuration"
  • Bug #6741: Emoji on Request comment breaks several parts of midpoint
  • Bug #6787: Studio: credentials.kdbx contains also environment username/password
  • Bug #6808: equals() for generated schema type uses different equivalence strategy than its prism container
  • Bug #6829: Suspended tasks due to m_assignment_reference_pkey constraint in DB
  • Bug #6856: Date handled incorrectly
  • Bug #6986: PrismPropertyDefinition.getTypeClass() returns null for some ENUM types
  • Bug #7003: modifyObject with invalid delta with wrong reference target type can be stored, but getObject fails
  • Bug #7057: Excessive object cloning on ID-only PCV deletion: implement serious solution
  • Bug #7069: Asynchronous provisioning connector does not distinguish between error types
  • Bug #7092: It's not possible to fix wrong XML namespace used for anyc connector in GUI
  • Bug #7126: Issue when deleting an assignment/inducement with documentation tag [not sure if this is a bug or by design]
  • Bug #7140: Cant create Org and/or role wich name conflicts after normalized with already existing org or role
  • Bug #7166: It is no longer possible to limit reconciliation scope in a flexible way
  • Bug #7180: Race conditions in task management
  • Bug #7194: Assignment activation doesn't work properly
  • Bug #7210: Cluster authentication error between separate docker hosts
  • Bug #7320: Obsolete information in "objects being processed"
  • Bug #7336: Required attribute UID not found in identification set while attempting to fetch object
  • Bug #7338: Future of midPoint evaluation (demo) deployment
  • Bug #7352: midpoint.sh and systemd service file generator uses incorrect parameters
  • Bug #7357: Page refresh (including auto-refresh) refreshes the page to the original state before user interaction again and again
  • Bug #7361: Multi-node task is shown as running, although the work is done
  • Bug #7417: Merge identities doesnt work
  • Bug #7419: Reconsider correctness of raw mode implementation in provisioning get/search ops
  • Bug #7441: midPoint cannot be stopped during startup
  • Bug #7453: Wrong authorization in hogwarts demo (in midpoint-samples)
  • closedBug #7479: MP Studio errors with HTTP/2
  • Bug #7506: Incorrect / inconsistent icon for Resource / Accounts / Import
  • Bug #7511: No warnings are reported when uploading object via REST with invalid references
  • Bug #7528: Studio: document generator does not show connector configuration properties
  • Bug #7584: Misaligned log records in trace file
  • Bug #7595: Design problems on smaller screens
  • Bug #7607: Wrong indent in task activity setting (recon)
  • Bug #7635: Error fatal while listing resources
  • Bug #7641: When profiling is turned off, it is still tracing
  • Bug #7650: Discuss midPoint 4 mappings
  • Bug #7653: ItemWrapperModel header wrapper without parent
  • Bug #7663: Schema Registry (via PrismSchema objects) contains duplicate type definitions
  • Bug #7667: Logging to syslog: problem with documentation vs GUI
  • Bug #7699: Password reset warning: Null principal
  • Bug #7721: Asynchronous update task can get closed during test connection operation
  • Bug #7743: Sysconfig/logging/subSystem not configurable by UI
  • Bug #7755: pagedSearchEstimate throws NPE
  • Bug #7772: Missing statistics for asynchronous update tasks
  • Bug #7784: only string attributes allowed for associations
  • Bug #7786: "Intolerant value pattern" kills all attribute values
  • Bug #7805: Multi-node task cannot be restarted "from zero state"
  • Bug #7806: Security policy from organization is not applied during user creation
  • Bug #7811: Misleading 128bit encryption key initialization
  • Bug #7812: Problems with recovery of failed multi-node task
  • Bug #7826: Browsing of org tree is broken if there are multiple parents
  • Bug #7828: Documentation on object collections and views and dashboards is messy
  • Bug #7830: Multi-node import task freezes the system
  • Bug #7832: Logo settings with relative path does not work on Windows
  • Bug #7838: Undiagnosable 500 from ID Match service
  • Bug #7841: Variants for asynchronous dashboards do not work
  • Bug #7852: Parameter column expression code is lost
  • Bug #7854: Task in "suspending" state is shown as "suspended"
  • Bug #7856: Task is marked as stalled even if it's already running
  • Bug #7858: Unnecessary namespace declarations when report params are serialized
  • Bug #7864: Distributed export produces strange warnings in the log
  • Bug #7867: Review date-time formats used for reports
  • Bug #7876: Strange exception when running multi-node task
  • Bug #7878: Partial reports data cannot be deleted via GUI
  • Bug #7881: "Cleanup after completion" does not work with multinode tasks (task trees)
  • Bug #7883: midpoint.sh: generate systemd object add unrelated string (log) to the output
  • Bug #7915: Use of string instead of byte array for PBEKeySpec
  • Bug #7919: Misleading synchronization statistics in recon task (concerning protected accounts)
  • Bug #7920: Creating and immediately deleting Grouper group suspends the asynchronous task and throws NPE
  • Bug #7929: Specify (and unify) semantics of PropertyLimitationsType
  • Bug #7949: BasicExpressionFunctions library: completion for library functions does not see all functions
  • Bug #7961: Request approval history incorrectly states approver (approval on behalf of)
  • Bug #7970: ContextLoader.loadFullShadow silently returns repo-only shadow even if full shadow is available
  • Bug #7971: Couldn't parse object ResourceType
  • Bug #7980: API JSON ExecuteScript request (Pipeline) leads to 500 Error IllegalStateException
  • Bug #7997: Sync job on LDAP ressource not re-started
  • Bug #8003: User history - Create report - report preview shows deltas in very strange way
  • Bug #8010: Exception on checking name
  • Bug #8015: midPoint allows to create assignment with any relation name (undefined before using)
  • Bug #8045: MidPoint Studio cannot use project cloned from git without first manually setting midPoint facet
  • Bug #8046: Captcha Problem in MidPoint Docker Container
  • Bug #8064: Notifications - actor's changed contact info not reflected until relogin
  • Bug #8070: Missing object template referenced from System configuration causes different behaviour for UserType and OrgType and strange errors
  • Bug #8080: Dark mode small issues
  • Bug #8091: Duplicates in shadows tags are not detected
  • Bug #8117: Import report/reverse report gets error if data contain accents
  • Bug #8118: findLinkedSource function throws java.lang.IllegalStateException (missing OID) if called during creation of the focus
  • Bug #8151: Suspicion: LDAP connector SPR implementation, wrong paging after reconnect
  • Bug #8153: TestActivities.test310 fails occasionally
  • Bug #8159: "Current CID sequence (x) is not above max used CID (y)" during 4.5->4.6 upgrade
  • Bug #8180: "Export to CSV" is confusingly slow
  • Bug #8193: New collection-based report cannot be previewed (in non-popup mode)
  • Bug #8203: It is possible to invoke "change archetype" even if there is no other archetype available
  • Bug #8211: Header, text and buttons are not aligned in confirmation dialog.
  • Bug #8212: "Expand" symbol for assignments cannot be hidden
  • Bug #8215: Reset to factory defaults deletes all objects in strange order
  • Bug #8220: When the account deletion is disabled, user deletion error is misleading
  • Bug #8228: Incorrect feedback message on the Repository objects page
  • Bug #8237: Import without sync settings is mistakenly shown in green
  • Bug #8240: Strange empty label in a completed correlation case summary panel
  • Bug #8246: Correlation: when some of the candidate owners are deleted in the meanwhile, none is displayed
  • Bug #8249: Users details page: Enter key click submits the form but doesn't redirect to users list
  • Bug #8253: Weight setting for single correlation rule is ignored
  • Bug #8266: 500 when using search on the organization tree page
  • Bug #8276: Error while trying to access a malformed report with GUI
  • Bug #8284: spring framework security config (log)
  • Bug #8285: (non critical) invalid reference during the init import (log)
  • Bug #8286: Axiom YAML expression obscure error when not indented
  • Bug #8290: Correlation item is not "correlator"
  • Bug #8296: Report task modify inconsistent data on AD resource through discovery channel
  • Bug #8307: Protected accounts cannot be displayed in Resource configuration
  • Bug #8311: Self registration: registration confirmation page isn't loaded after user opens a link from the notification
  • Bug #8312: DynamicFormPanel usage should be reviewed
  • Bug #8318: Upload action doesn't show progress correctly
  • Bug #8322: Cleanup task does not have System task archetype assigned
  • Bug #8325: Ninja in 4.5 does not warn of deprecations since 4.6
  • Bug #8338: Invalid mapping in activation/valid(From|To)/source produces unhelpful error
  • Bug #8342: Environmental Performance from Clustered Task
  • Bug #8352: Provisioning Scripts arguments
  • Bug #8356: Excessive task updates when running them, especially Cleanup task
  • Bug #8374: Duplicate user repository modify on login
  • Bug #8393: XML editor and code suggestion (or what)
  • Bug #8417: Report preview on user's history generates delta in unreadable format
  • Bug #8428: PPV(null) for metadata sent by GUI after Object template is removed
  • Bug #8433: Python Script Evaluator always returns NULL as a result of executing a multi-line script
  • Bug #8442: Missing schemas in schemadoc.
  • Bug #8450: Axiom serialization not working for some filters
  • Bug #8472: No layer specified in limitations does not include presentation layer
  • Bug #8473: Calendar widget - part of month name is hidden
  • Bug #8481: Midpoint - DB ERROR: insufficient data left in message
  • Bug #8494: Studio: various issues with resource templates
  • Bug #8504: Table width on resource accounts page vs content
  • Bug #8507: Fix TestImportRecon seriously
  • Bug #8522: asPrismObject on PCV-based Objectable returns null
  • Bug #8532: Multithreaded async update does not work?
  • Bug #8552: expression/script/returnType seems to do nothing
  • Bug #8564: Docker examples not working
  • Bug #8579: "Report configuration before run" page displays incorrect values.
  • Bug #8618: Slow and buggy Class loggers setting to StandardLoggerType
  • Bug #8626: cleanupAfterCompletion doesn't handle subtasks
  • Bug #8627: Resource template should skip Test phase
  • Bug #8632: GUI differences between a:maxOccurs and maxOccurs in schema definition.
  • Bug #8645: CSV export button can't generate report with 0 records
  • Bug #8661: Weak construction doesn't work in case of multiplicity
  • Bug #8673: Shadow Administrative status can be set to Undefined which causes warnings later
  • Bug #8678: Responsive UI - switching between panels displays wide menu
  • Bug #8680: Role wizard: additional keys for translation needed
  • Bug #8682: Role wizard: Button moving to next step does not work when validation error info is displayed.
  • Bug #8693: Schema: Referenced Lifecycle state element doesn't contain attribute values from parent element
  • Bug #8695: Mark management buttons are shown even if not applicable
  • Bug #8702: Using axiom filter in resource query produces different filter notation in connector API
  • Bug #8703: Info about skipping of synchronization/inbound (object marks related)
  • Bug #8709: Mark with severity 'error' for 'synchronize/outbound' doesn't get any error
  • Bug #8715: OperationPolicyConfigurationType is not Containerable
  • Bug #8716: Lockout strategy of "none" is not proposed by the connector
  • Bug #8727: Password reset: Strange error message during normal processing
  • Bug #8729: Role wizard: Refreshing page breaks wizard - opens new role page
  • Bug #8754: Fix credentialsReset/authenticationSequenceName property name
  • Bug #8757: Password reset: strange WARN message
  • Bug #8760: Role wizard: Keep view where wizard started.
  • Bug #8764: Nonsense Configuration error while navigating through Resource wizard
  • Bug #8765: Avoid "(unknown)" values in audit log entries
  • Bug #8771: Role wizard: Warning in log when role is saved
  • Bug #8777: Error while running a reconciliation task with filtered items reporting
  • Bug #8782: Simul. results: Confusing information about processed objects after them deletion
  • Bug #8783: Simulation result -> Processed objects table: search by oid parameter leads to error
  • Bug #8786: Role wizard: Adding one approver stops adding other governance members or members in wizard.
  • Bug #8791: Broken icon on create member popup
  • Bug #8792: Misleading WARN during preview changes
  • Bug #8794: User Default vs User Member translation issue
  • Bug #8797: Cannot instantiate panel error occurs for "User" dashboard links
  • Bug #8799: Benign errors reported in multi-threaded create-on-demand scenario
  • Bug #8810: User's Application don't work in old repository
  • Bug #8811: "Notify" bulk action is executed even in simulation mode
  • Bug #8812: "Reencrypt" bulk action is executed even in simulation mode
  • Bug #8813: "Resume task" bulk action is executed even in simulation mode
  • Bug #8826: Reset to factory default doesn't work while using h2 db
  • Bug #8844: Resource/Accounts: account icon shows activation status unknown
  • Bug #8846: Projection details: inbound mappings are not indicated (outbounds are)
  • Bug #8852: Dashboard error 500
  • Bug #8877: Midpoint 4.6 - Could not search shadow by name and resource ref
  • Bug #8884: Password reset issues
  • Bug #8897: Reset to factory settings load initial objects, but not post-initial objects
  • Bug #8903: Changed password is replicated to JDBC table resource with disabled credentials capability in SelfService channel
  • Bug #8913: Extraneous Hibernate WARN message
  • Bug #8914: Resource wizard: resource details page is opened while new resource creation
  • closedBug #8927: Multiaccounts nightmare
  • Bug #8930: effectiveMarkRef visible in GUI forms
  • Bug #8943: ItemPath.toString() incorrect
  • Bug #8951: GUI: Ditch the stacked icons in important actions
  • Bug #8959: GUI: Translation in use while default language is set English
  • closedBug #9015: Task is not scheduled, although it should be
  • Bug #9041: NPE when auth channel not present
  • Bug #9059: Schema elements related to correlation marked as experimental. Documentation is missing as well.
  • Bug #9084: Enduser role does not allow to read archetype name
  • Bug #9088: LDAP authentication configuration is somehow cached in session
  • Bug #9092: Schema definitions missing in SchemaDoc
  • Bug #9100: Object Collection Search item panel weird behaviour
  • Bug #9101: Induced entitlements: adding ends up with schema exception
  • Bug #9110: Audit details for resource mapping changes are strange
  • Bug #9113: Summary delta is incorrect in discovery situations
  • Bug #9117: Missing name of the account and also name of the resource in addObject / deleteObject operations in audit
  • Bug #9118: Incorrect data in audit delta while auditing of resource operation. Missing original attribute value.
  • Bug #9121: Search: Can't switch between Basic and a Axiom query.
  • Bug #9131: Task with a fatal low-level issue indicates SUCCESS in GUI
  • Bug #9146: Menu links for resource objects in Resource template configuration UI failed with error 500
  • Bug #9157: Resource -> Object classes shows object types
  • Bug #9170: Cannot create a business role when there are no application roles
  • Bug #9172: Experimental property shown even if experimental features are turned off
  • Bug #9173: Cannot add a value to an existing association mapping
  • Bug #9174: GUI attribute "Approver relation" has wrong data type in Dropdown-Menu
  • Bug #9187: Inappropriate "Exit wizard" button
  • Bug #9188: Shouldn't we have display name in the role summary panel?
  • Bug #9194: Exit business role wizard redirects to wrong page
  • Bug #9195: role mining business role wizard steps missing
  • Bug #9198: Strange looking archetype selection page
  • Bug #9199: Probably inadequate identity recovery error messages when there are too many matches
  • Bug #9200: Confusing reporting of "no match" situation during identity recovery
  • Bug #9203: Resource wizard: mappings table looks strange
  • Bug #9208: Identity recovery: strange behavior when no archetype is selected (two scenarios)
  • Bug #9209: Identity recovery: crash when multiple matches are there
  • Bug #9211: midPoint behind proxy server with LDAP authentication won't show login page
  • Bug #9213: Identity recovery: "unable to audit found identities" without further explanation
  • Bug #9214: Identity recovery fragments are not composed properly
  • Bug #9227: Object collection: edit filter throws 500
  • Bug #9230: Role Wizard: Other role
  • Bug #9232: Identity recovery: Harsh treatment of "no match" situation
  • Bug #9233: Identity recovery: missing values are not supported
  • Bug #9243: Password reset: notification mail is not sent after previous unsuccessful reset
  • Bug #9248: Resource wizard: repeated password input
  • Bug #9259: I receive a 500 when clicking on "Created Reports" in the GUI
  • Bug #9261: 500 for new App role when clicking from Service filter to Service tile
  • Bug #9262: Returned by default column on resource schema page is always unchecked
  • Bug #9269: ninja doesn't return correct return code / exit code for validation
  • Bug #9270: Ninja and truststore
  • Bug #9275: GUI: inconsistent user page on smaller screens
  • Bug #9276: userAccountControl failing to update with "Incorrect value type" error
  • Bug #9289: Resource Data : filter value placed in code block cause 500 (internal server error)
  • Bug #9303: connector-scripted-sql does not compile
  • Bug #9304: Audit log: resource stage does not log association modification
  • Bug #9306: Mark editor does not show objectOperationPolicy content
  • Bug #9341: Inconsistent behavior of advanced query (AXIOM) - does not work via midPoint Studio
  • Bug #9347: Self-Service Password reset ignores resource password mapping
  • Bug #9352: Resource wizard: inherited object type information is not displayed
  • Bug #9815: Initial object localization gaps
  • Bug #9868: Dashboard widget with multiple variations does not work
  • Bug #9878: displayOrder in dashboard does not work
  • Bug #10339: Add support for dereferencing object references in extensions
  • Improvement #318: Improved data model documentation
  • Improvement #652: Invert the schema dependencies
  • Improvement #708: Success / error messages after operation in GUI
  • Improvement #760: Support provisioning to containers
  • Improvement #763: URL-limited End-user GUI
  • Improvement #935: Resource-global password policy
  • closedImprovement #1091: Create user accounts when importing the user.
  • Improvement #1092: Make error messages (e.g. those related to provisioning errors) better structured.
  • Improvement #1125: Mapping source type conversion
  • Improvement #1143: How to get full ICF Exception to GUI?
  • closedImprovement #1162: Extensible relation attribute editing in assignment
  • Improvement #1191: When rotating logs, please write info to the just-rotated-log that it has been rotated
  • Improvement #1235: Add provisioning script results to provisioning results
  • Improvement #1249: Provisioning script criticality
  • closedImprovement #1252: Expose overwrite option in WS addObject
  • Improvement #1310: Native connector host failover
  • closedImprovement #1420: reload allowed actions for logged user after changes in roles definitions
  • Improvement #1438: Provide account owner OID in ResourceOperationListener notifications.
  • Improvement #1446: hasAssignedAccount function
  • closedImprovement #1450: Show complete model context information in tasks (not only primary delta).
  • Improvement #1474: Add validators to specific GUI fields (phone number, email address, ...)
  • Improvement #1484: Synchronization and DELETED situation
  • closedImprovement #1487: Show task result in synchronization (livesync/recon/import) task including information about situations and number of accounts
  • Improvement #1493: Recon, inbound and many accounts
  • Improvement #1567: Force flag and dependencies
  • closedImprovement #1576: Add a "pre-correlation" expression to contain logic common for subsequent (multiple) correlation expressions/conditions
  • Improvement #1578: Add argument support to CSV Scripts
  • Improvement #1583: Value policy: dictionary check
  • Improvement #1629: Rework uniqueness
  • Improvement #1636: Script cache cleanup
  • closedImprovement #1646: Performance improvement for "Drop all identities"
  • Improvement #1699: Send notifications when something goes wrong in the model.
  • Improvement #1708: Make the workflow service callable through model API
  • Improvement #1761: Support assignment parameters in mappings - when assigning roles (e.g. in Object Template)
  • Improvement #1821: Validity recompute in roles (transitive assignment)
  • Improvement #1875: Notification enhancement for non-user/non-account objects
  • Improvement #1894: Password policy based on organization improvement
  • Improvement #1929: Improved reconciliation for generic sync
  • closedImprovement #1958: Progress indicator also for bulk actions tasks
  • Improvement #1985: Hostname change in connector host is not recognized
  • closedImprovement #1986: Authorization for adding users - no attributes displayed in User Details form
  • Improvement #2083: Unknown ICF attribute in provisioning.getObject()
  • Improvement #2084: Extending resource schema in schemaHandling
  • Improvement #2130: Start approval for any security-sensitive role that is indirectly assigned to a user
  • Improvement #2153: Support normal strength and full authoritativeness for inbound mappings
  • Improvement #2179: Enhance wf samples so that approvers have the appropriate access rights
  • Improvement #2185: Visually distinguish accounts-to-be-deleted/added/unlinked when editing a user + allow to undo such operation
  • closedImprovement #2249: Create a bulk action "unassign"
  • Improvement #2267: Smart mappings to create assignment
  • Improvement #2271: Pre-calculate attribute values in the Account assignment form before submission
  • closedImprovement #2275: Display infor about incomplete operations in shadow
  • Improvement #2297: Lookup table case insensitive search
  • Improvement #2299: Spreadsheet-like editor for lookup tables
  • closedImprovement #2315: Resource wizard: connector host
  • Improvement #2338: Resource wizard tutorial
  • closedImprovement #2352: Access Certification II
  • Improvement #2356: Make Export objects use background tasks
  • Improvement #2358: Operational attribute flag in ConnId
  • closedImprovement #2481: When opening a user with an account that was freshly discovered as missing, show an indication
  • Improvement #2485: Reference filter resolution enhancements
  • Improvement #2508: Redirect user after login to the page according to his rights
  • Improvement #2521: Grouping of resources in GUI (user details)
  • Improvement #2525: Allow import task to continue from where it was stopped
  • Improvement #2532: Inbound mappings from several sources to the same user property
  • Improvement #2535: Add reevaluate search filter option to the import page
  • Improvement #2543: Notify user about session expiration
  • Improvement #2552: When click object in midPoint (User, Org, Role, ...) and there are consistency tasks executed, display progress indicator or some other kind of information
  • Improvement #2555: Implement notifications for resource-initiated changes
  • Improvement #2571: Convenient editor for assignments/inducements
  • Improvement #2599: Simple user profile page
  • Improvement #2642: ConnId schema attribute ordering
  • Improvement #2674: Username case sensitivity
  • Improvement #2688: set redirect page after login in
  • Improvement #2692: Case insensitive search of resource objects
  • Improvement #2702: Cache retrieved LDAP schema between LDAP connector instances
  • Improvement #2708: Organization tree order
  • Improvement #2749: after recompute in organization tree is showd firs org and not when I was before
  • Improvement #2772: Make creating a custom notifier easier
  • Improvement #2777: Do not display attributes not returned by default
  • Improvement #2789: Implement owner-based security restrictions for repository searches
  • Improvement #2790: Implement owner-based security restrictions for resource searches
  • Improvement #2800: Bulk task - "log" action enhancement to log custom information instead of object dump
  • Improvement #2823: Is it possible to display attempted-to shadow name even if it was not created due to an error?
  • closedImprovement #2827: Task that retries unfinished operations
  • closedImprovement #2833: Turn off ConnId filters by default
  • Improvement #2880: Do not die when reading attributes that are not in schema
  • Improvement #2910: Object icons and tooltips
  • Improvement #2923: Deleting a resource should delete tasks related to that resource
  • Improvement #3029: Password policy not used from GUI when creating user without password
  • closedImprovement #3042: Catch-all objectSynchronization configuration...
  • Improvement #3062: Optimize and fix associationFromLink
  • Improvement #3064: Search option for "distinct"
  • Improvement #3100: Tenant property when assign Org to user
  • Improvement #3128: Seriously implement "certification scheduling" page
  • Improvement #3134: Task to check status of resources that are down
  • Improvement #3155: Certification - Campaign Definition Improvements
  • Improvement #3169: Show link to midpoint in workflow notification
  • closedImprovement #3171: RW: add templates for search filters (and maybe expressions as well)
  • closedImprovement #3172: RW: add missing properties (e.g. shortcut, aux OCs for associations)
  • Improvement #3179: Fix illogical (random) order of attributes in DatabaseTableConnector
  • closedImprovement #3180: RW: implement downloading of graph files
  • Improvement #3223: GUI status message mess - cleanup
  • Improvement #3234: Assignment vs parentOrgRef and security (GUI)
  • Improvement #3238: Implement bulk Enable and Disable for orgs (like for users, roles, services)
  • Improvement #3257: SMS password template should be externalized
  • Improvement #3260: PageSecurityQuestions does not use MailTransport
  • Improvement #3274: Option for synchronization task to allow rewrite intent information stored in shadow
  • Improvement #3280: Overlay Project Improvements
  • Improvement #3291: Password History - Resources
  • Improvement #3297: Optimize expression execution
  • Improvement #3327: Expose password policy as variable in scripts
  • Improvement #3329: Allow use of non-DN bind names in LDAP connector (e.g. for AD)
  • Improvement #3330: Clarify working of mappings with target of "password value"
  • Improvement #3345: Hide assigned roles in request a role dialog
  • Improvement #3346: Request role unassignment
  • Improvement #3355: Consider 'relaxedEquals' for comparing values
  • Improvement #3364: Allow expressions in search filters in bulk actions
  • Improvement #3374: Seriously support non-string values for activation simulation attributes (status, lockout)
  • Improvement #3377: Parallel integration tests
  • Improvement #3410: Separate self-service URLs and admin URLs
  • Improvement #3411: Eclipse plugin: have macros also for dev/test/prod environment configuration properties
  • Improvement #3419: Activation mappings not relativistic
  • Improvement #3434: Setting up ScriptedSQLConnector without SearchScript filename results in unhelpful error
  • Improvement #3446: Provisioning scripts in schemaHandling
  • Improvement #3459: Refactor Model Controller
  • Improvement #3462: CSV File collector needs write access to directory
  • closedImprovement #3491: possibility to hide red star from 'Name' over minOccurs=0
  • Improvement #3498: Proper Schema documentation
  • Improvement #3502: Display claimable work items in user's home screen
  • Improvement #3503: Additional functions
  • Improvement #3513: Support resend invitation notification
  • Improvement #3519: Allow using paging/orderBy in report filter query
  • Improvement #3520: Assignment cleanup
  • Improvement #3529: Devel/production mode
  • Improvement #3533: Certification scope GUI parameters
  • Improvement #3557: Shopping cart improvement: parameters
  • Improvement #3558: Shopping cart improvement: catalog categories
  • Improvement #3560: Improved execution of strong mappings during unrelated changes
  • Improvement #3572: REST interface improvement
  • Improvement #3574: Support resource that return empty strings
  • Improvement #3575: Prism optimizations
  • Improvement #3587: ScriptedSQL connector logging level
  • Improvement #3589: polyStringNorm vs. stringIgnoreCase (not only) in query playground
  • Improvement #3594: Show default values of connector parameters
  • Improvement #3601: Visual improvements for item path widget
  • Improvement #3607: Refresh resource schema issues
  • Improvement #3638: JSON/YAML export for ad-hoc reports/lists
  • Improvement #3642: possibility to hide content menu on List users page
  • Improvement #3643: support two keystores
  • Improvement #3656: help in GUI to find answer to question "why this user has account in resource X"
  • Improvement #3658: limit number of accounts for cloud target systems
  • Improvement #3699: Strong mappings are applied when other attributes change and reconcile checkbox is not checked
  • Improvement #3711: Configurable lifecycle states
  • Improvement #3729: Adaptive fetch strategy (FetchStrategy troubles)
  • Improvement #3732: "Recompute all of selected members" in org. structure
  • closedImprovement #3736: UX: Recertification review screen does not have any confirmation/cancel buttons and not information message how it applies
  • Improvement #3751: Projector/clockwork update
  • Improvement #3777: different icon for enabled and disabled org in Org structure
  • Improvement #3798: Organization Tree - highlight/find user in the structure
  • Improvement #3807: Parallelized background tasks - /scripting/handler-3
  • Improvement #3835: WF "preview changes" functionality
  • Improvement #3839: after maxAge occured, change password mandatory in next logon before user can continue in MP
  • Improvement #3859: Password metadata improvement
  • Improvement #3864: Customization of headbar link colors
  • Improvement #3889: Reaction to outcomeIfNoApprovers situation
  • Improvement #3899: List personas authorization
  • Improvement #3924: Log new session ID after authentication
  • Improvement #3930: Origin metadata in assignments
  • Improvement #3935: Switch LDAP connector to updateDelta() operation.
  • Improvement #3937: able to put role in the basket multiple times
  • Improvement #3940: Bulk actions: searchIterative and delete
  • Improvement #3941: Review mapping relativity
  • Improvement #3975: ConnId handler configuration improvement
  • Improvement #3982: New values for limitPropagation: resource, objectType
  • Improvement #3995: Shield EndUsers from technical errors
  • Improvement #4001: Allow focus selector to have more than one object type
  • Improvement #4003: Better handling of missing extension items definitions
  • Improvement #4083: UserPasswordNotifier: No password in user delta(s), exiting.
  • Improvement #4147: Make requestComment mandatority configurable
  • Improvement #4148: WF - Split one request into many
  • Improvement #4153: Add message keys for context help to common schema for focus attributes
  • closedImprovement #4156: Add ability to search object by OID in "Repository objects"
  • Improvement #4163: User icon color
  • Improvement #4166: Perfect manual connector atomicity
  • closedImprovement #4167: Storing of view type per org root
  • Improvement #4170: Better optimistic consistency for clockwork
  • Improvement #4194: Asynchronous creation of objects
  • Improvement #4201: Evaluate validity changes as relative ones
  • Improvement #4234: More precise working with focusContext.objectTypeClass
  • Improvement #4235: UCF: caseIgnoreAttributeNames in initialize()
  • Improvement #4256: Approval/Disapproval note on bulk decision
  • Improvement #4264: Re-evaluate constraints when starting "spun off" approval process
  • Improvement #4289: Implement result count to CSV connector (for search)
  • Improvement #4301: UX improvement ideas
  • Improvement #4303: Role Governance task - technical WF detail
  • Improvement #4314: GUI policy rules: usability improvements
  • Improvement #4325: Assignment/inducement and authorizations in GUI
  • Improvement #4326: GUI customization persistence: search, columns, ordering, etc.
  • Improvement #4327: Color codes and tooltips
  • Improvement #4330: Consistency user experience: repeated message
  • closedImprovement #4335: Self Services: Password Credentials - UX
  • Improvement #4411: Make logging stacktrace to db optional
  • Improvement #4418: Notification for approved roles
  • closedImprovement #4423: Custom headings for attributes
  • Improvement #4445: Smarter rules around managing defaultness when multiple objectType elements are found
  • Improvement #4447: Configurable association editor
  • Improvement #4464: add+delete deltas
  • Improvement #4470: Role can be assigned twice to a user at one time (with validity constraints)
  • Improvement #4473: User has no information where the password was changed
  • Improvement #4490: Merging conflicting shadows
  • closedImprovement #4523: Assignments cannot be sorted
  • Improvement #4565: Display lifecycle status at least in projections somewhere near the account name
  • Improvement #4573: AWS midpoint cluster size
  • Improvement #4580: CSV connector duplicate detection
  • Improvement #4589: Certification approval GUI enhancements
  • Improvement #4599: Use of spring beans in expressions
  • Improvement #4616: Approval automaticallyCompleted, when requester=approver(s)
  • Improvement #4646: Focus list columns ordering ability is hardcoded
  • Improvement #4692: Provisioning (fetching) support for associations in GUI
  • closedImprovement #4714: Review and improve "induced associations" tab
  • Improvement #4724: Add variable with list of approvers to approval expressions
  • Improvement #4728: Clean up prism equals() methods
  • Improvement #4730: Time rounding
  • closedImprovement #4735: Eclipse plugin improvements
  • Improvement #4751: Missing operation label in feedback box during test resource
  • Improvement #4753: Date picker with support for seconds, milliseconds and timezone
  • Improvement #4782: Improve tooling to support object representation conversion (esp. objectModification) XML<->JSON<->YAML
  • Improvement #4787: Support scripts in retried (postponed) operations
  • Improvement #4790: Allow to redefine attributes in schemaHandling (and define new attributes)
  • Improvement #4796: Implement proper behavior of staleness=0 in provisioning
  • Improvement #4816: Support for basic format for policy breaking messages
  • Improvement #4824: Clean up ContextLoader
  • Improvement #4859: Authorizations: implicit filters
  • Improvement #4905: Optimize memory footprint when exporting objects
  • Improvement #4906: Move authorization to allow moving of organizational unit
  • Improvement #4922: Make notification evaluation more intuitive
  • closedImprovement #4937: Enable "push" mode of resource->midPoint communication
  • Improvement #4938: Setting delegation requires seeing all assignments
  • Improvement #4966: Inducement orderConstraint GUI
  • Improvement #5008: Add support for xsd:date
  • Improvement #5036: Org tree "Indirect" checkbox usage is not very intuitive
  • Improvement #5074: ModelInteractionService "assignable" methods alignment
  • Improvement #5133: Provide an ability to convert closed single-run task into recurring one
  • Improvement #5156: Export XML with names of objects
  • Improvement #5170: basic.sendNotify(to, subject, body, ...)
  • Improvement #5181: Multivalue parameter for bulk action
  • Improvement #5234: Support attribute restrictions (e.g. XSD maxLength for string)
  • Improvement #5253: Consider creation of second-level tabs bar in Resource details/Accounts (Entitlements, Generics...)
  • Improvement #5272: minAge security policy setting applies also for administrative password change
  • Improvement #5274: Indicate disabled assignments in Dashboard (self-service)
  • Improvement #5279: Org. tree menu does not support collections/views
  • Improvement #5305: Resource update operation not always relative
  • Improvement #5319: Create recompute task - add archetype restriction
  • Improvement #5343: Uploaded compilation error in script code prohibts midPoint startup
  • Improvement #5352: Better icon for "role"
  • Improvement #5384: ConnId support for schema generation constraints
  • Improvement #5443: Nonce should use hashing instead of reversible encryption
  • Improvement #5454: Persona target search
  • closedImprovement #5464: Update JasperRepors Eclipse plugin
  • Improvement #5493: Improve audit log viewer
  • Improvement #5529: Reconcile menu works even when you have readonly access
  • Improvement #5531: Add custom audit fields also to audit log viewer list AND details
  • Improvement #5539: Improve performance of typical tasks
  • Improvement #5579: Full support for searching AssignmentHolderType
  • Improvement #5619: Delegate multiple Workitems
  • Improvement #5632: WARN level message too long, too many of them
  • Improvement #5651: Consider matching rule while applying deltas
  • Improvement #5662: Improve (unassign) member operations to be more intuitive
  • Improvement #5675: GUI support for lang part of PolyString
  • Improvement #5702: Audit log viewer: add Previous/Next to the audit log details window
  • Improvement #5709: "display" for ObjectType
  • Improvement #5717: Deleting (workflow) case should maybe also delete the associated execution task
  • Improvement #5718: Better authorizations for views
  • Improvement #5737: Automatic GUI session invalidation
  • Improvement #5741: Lifecycle model: assignmentSelector that can be used to selectively activate/deactivate assignments
  • Improvement #5755: Change password hint
  • Improvement #5759: Configurable default relation for GUI
  • Improvement #5781: Mapping Range defaults
  • Improvement #5785: Entitlement membership handling for large entitlements (groups)
  • Improvement #5806: Test connection GUI improvements
  • Improvement #5807: Rework Java Connector Server
  • Improvement #5820: UCF future
  • Improvement #5827: Workflow bypassed under some circumstances
  • Improvement #5854: My work items should be formatted in the same wide panel as My requests
  • Improvement #5880: Improve start-up error message for SQL Server
  • Improvement #5882: Request roles using role catalog style problem
  • closedImprovement #5902: Notification attachment content id (cid) support
  • closedImprovement #5918: Import from resource AD to mid
  • closedImprovement #5919: Need clarification about important features
  • Improvement #5929: Audit log viewer improvements
  • Improvement #5930: Hook improvements: preview and initial state
  • Improvement #5941: Numeric/integer source fields are not displayed in the resource detail page
  • closedImprovement #5948: Make propagationUserControl=userChoice GREAT again!
  • Improvement #5963: Use of constants in systemConfiguration object
  • Improvement #5964: Config.xml documentation
  • Improvement #5966: Fallback to another approver if current is missing
  • Improvement #5968: Audit log viewer improvements
  • Improvement #5975: Pre-compute archetype attributes in GUI
  • Improvement #5990: Systematic approach to constraint checking
  • closedImprovement #5996: Automatic reload of security policies (cluster)
  • Improvement #5998: midPoint should compile resource objects during import via REST
  • Improvement #6001: Support on-demand item loading in ObjectDeltaObject sources
  • Improvement #6002: Implement caching of objects with "include" option
  • closedImprovement #6012: make disabled fields readOnly
  • closedImprovement #6017: Ability to sort assignment list by Role Name
  • closedImprovement #6067: Approvals via REST
  • Improvement #6069: Scripting SSH connector
  • Improvement #6111: Make notification delta renderer more robust
  • Improvement #6114: Skip approval stage option, if requestor is one of approvers
  • Improvement #6118: Support search shadows with noFetch without requiring resource and objectClass/intent defined in query
  • Improvement #6121: Make node ID assignment more robust
  • Improvement #6123: Certification items - show "No response from me"
  • closedImprovement #6124: Visual indication on progress in creating campaing
  • Improvement #6132: Provide lens context cleanup methods
  • Improvement #6152: Thresholds for recompute task (and possible others)
  • Improvement #6157: Password reset - policy which decides who can reset password
  • Improvement #6162: Show only user-relevant operation result tree nodes (by default)
  • Improvement #6168: AssignmentTargetRelationApproach for members tables
  • Improvement #6169: Union MainObjectListPanel and MultivalueContainerListPanel
  • Improvement #6227: tolerantValuePattern make it as expression
  • Improvement #6233: Forwardovanie schvalovania
  • Improvement #6236: Add approval date&time to
  • Improvement #6247: Language artifacts after changing language
  • closedImprovement #6276: Compiled groovy class garbage name
  • closedImprovement #6288: Configure / make configurable column width for views in GUI
  • Improvement #6302: Basic expression function startsWith - case sensitivity problem
  • Improvement #6304: Paging settings / option to cancel paging for the organizational structure (org tree).
  • Improvement #6308: Axiom: namespace aliases
  • Improvement #6347: Metadata and "repository objects" GUI pages
  • Improvement #6355: Metadata authorizations
  • Improvement #6359: Finish roleRelation authorization
  • Improvement #6380: getObject Function; setting options parameter dosn't do anything
  • Improvement #6382: Axiom should recognise nested augmentation items in default namespaces
  • Improvement #6385: Axiom Model Reactor should be one-phase
  • Improvement #6389: Metadata migration
  • Improvement #6423: Breadcrumb item click
  • Improvement #6500: Stop requiring element definition for PCD in schemas
  • Improvement #6515: LDAP connector: Support additionalSearchFilter for SunChangelogSyncStrategy
  • Improvement #6555: REST interface makes it really hard to diagnose errors with 500 internal server error
  • Improvement #6602: Default attribute hints are not translated
  • Improvement #6616: getObject() in Audit API
  • Improvement #6628: Making possible to set the item "Request comment (optional)" in the shopping cart as mandatory
  • Improvement #6666: Review and improve Page title
  • Improvement #6679: Convenient editor for objectTemplate
  • Improvement #6696: Http/404 when Tomcat's error.jsp is used
  • Improvement #6702: Rest ignores include/exclude options in search
  • Improvement #6768: Allow deleting primary delta in the hook
  • Improvement #6812: UserProfileStorage DEFAULT_PAGING_SIZE=20
  • Improvement #6818: Prism: Prism API should model composite object references easily to detect
  • Improvement #6821: Audit log viewer / report: search by Node
  • Improvement #6845: Unify constant, recommended and usual prefixes
  • Improvement #6895: Make generated JAXB types freezable
  • Improvement #6937: AbstractInputGuiComponentFactory doesn't count with multiple form components
  • Improvement #6938: SAML: Not possible to set maxAuthenticationAge
  • Improvement #6970: Make hints in GUI more user-oriented
  • Improvement #6981: Improve delta builder to be able to work with shadow attributes
  • Improvement #6997: Enable manual control over cluster nodes
  • Improvement #7010: Provisioning operations UI improvement
  • Improvement #7036: Cleanup task progress
  • Improvement #7056: Can't use contants in security policy object
  • Improvement #7161: Account lock event not triggered
  • Improvement #7170: Implement repository#executeJob method for new repo
  • Improvement #7187: Implement "before" and "after" activity tailoring
  • Improvement #7189: Implement pre/post activities
  • Improvement #7190: Implement activity state compatibility check on task resume
  • Improvement #7231: Import report parallelism
  • Improvement #7373: Tests for plugin
  • Improvement #7439: Better support for multi-tabs
  • Improvement #7477: Validity scanner start without lastScanTimestamp
  • Improvement #7556: AD connector and minimal fetch strategy
  • Improvement #7590: When a value is set in a single-valued item, clear the "incomplete" flag
  • Improvement #7710: Get rid of PanelInstance annotation
  • Improvement #7868: Can't edit model hooks on GUI
  • Improvement #7869: Can't edit workflowConfiguration/generalChangeProcessor/scenario on GUI
  • Improvement #7887: Admin GUI config count bagdes not updated properly during edit
  • closedImprovement #7972: Clearer "blocky" filters in fluent Java Query API
  • Improvement #8062: Cannot fetch auxiliary attribute from Active Directory
  • Improvement #8130: displayOrder in org tree
  • Improvement #8396: Shopping cart requests (ULB)
  • closedImprovement #8435: Import report task strips policy violation results
  • Improvement #8566: Multi tab browsing in Midpoint is difficult
  • Improvement #8576: Improve error reporting for import report tasks
  • Improvement #8586: Vacant visibility of panel in objectDetailsPage overrides visible setting
  • Improvement #8742: Implement 100% collision-free lightweight identifiers
  • Improvement #8866: Synchronization situation transitions do not show reasonable information if resource accounts were deleted during task run
  • Improvement #8868: Subtasks run on separate nodes from the main task
  • Improvement #8921: authorization-ui-3#mergeObjects & #usersAll is not used for merge button
  • Improvement #8922: model-3#modify for activation/administrativeStatus is not enabled, but "Enable" and "Disable" buttons are visible
  • Improvement #9086: Missing search options - level, indirect members
  • Improvement #9278: Annotations review, code improvements
  • Improvement #9813: Manage PolicyType in roleAssignments panel
  • Improvement #10037: Role wizard - incorrectly handled steps for role configuration and midpoint allows to continue with wizard even approval process has been started for role creation.
  • Improvement #10088: Preview changes related to persona object operation (add/remove persona object) are not displayed in GUI preview panel
  • Feature #80: Object validation during import in edits
  • Feature #132: Naming attribute support
  • Feature #325: Import from file as async task
  • Feature #340: Test connector sanity
  • Feature #539: RBAC GUI
  • closedFeature #619: Assign unmatched accounts
  • Feature #631: Password synchronization with Windows Domain
  • Feature #645: History and rollback
  • Feature #661: Custom functions in expresions
  • Feature #740: When editing object (user, role, ...) and there are unsaved changes, warn user if he/she clicks on menu links (all levels) before leaving the page
  • Feature #761: Manual processing marks
  • closedFeature #762: Object lifecycle status
  • Feature #770: Parallel provisioning
  • Feature #773: Enforce password change after password policy change
  • Feature #775: Prohibit changes to inactive users
  • Feature #787: Parallel object resolution
  • Feature #873: Add "Test connection" for ConnectorServer
  • Feature #878: Add support to distinguish if user has some of his assignments unsatisfied
  • Feature #931: Value policy: prefix and suffix
  • Feature #936: Account archivation
  • Feature #943: Limit reactions to a specific channel
  • Feature #1024: Reactions for sync failures
  • Feature #1094: Notify failure
  • Feature #1118: Tool wrappers for Linux
  • Feature #1164: Calling provisioning scripts from expressions (mappings)
  • Feature #1196: GUI preferences
  • Feature #1245: Script-driven provisioning
  • closedFeature #1327: Expression global variables (constants)
  • Feature #1330: Protected user
  • Feature #1346: Full and Incremental reconciliation
  • Feature #1411: Support fetching password in CSV connector
  • Feature #1540: Generic workflow integration code
  • Feature #1648: Reserved usernames
  • closedFeature #1655: Scripting functions as midPoint objects
  • Feature #1657: Value policy: excluding user/account properties
  • Feature #1658: Value policy: N out of M
  • Feature #1659: Disable reason
  • Feature #1660: Synchronization reaction: notify
  • Feature #1661: Assignment notifications
  • Feature #1685: Allow (user recomputation) tasks to reference object templates
  • Feature #1693: Add an option to update (midPoint user) attribute value when account is deleted
  • Feature #1769: Make midPoint self-aware regarding version, display in Server Tasks-Nodes for multi-node deployment
  • Feature #1797: Indicate that the organization has multiple parents - in the organization list
  • Feature #1820: Validity recompute in roles (immediate assignment)
  • Feature #1906: Authentication method in webservice/REST
  • closedFeature #1931: Add a setting for user to specify paging size (i.e. 50 users displayed on one page) and support it in searchs in GUI
  • Feature #1932: Role closure table
  • Feature #1934: Add tenant concept to authorizations
  • Feature #1977: Uniqueness checking/validation for user attributes (other than name)
  • Feature #1991: Add display name attribute for associations to be displayed instead of entitlement name
  • Feature #1992: Add expression to be used as display name for association
  • Feature #2002: Support storing/reading passwords in config.xml or some other external form
  • Feature #2026: Password expiration notifications
  • Feature #2041: Display results from the progress indicator in the result
  • Feature #2049: "Recently used" object feature
  • Feature #2050: LDAP connector OpenLDAP livesync using OpenLDAP replication protocol
  • Feature #2053: Option to limit provisioning for no/one/selected resource(s) and/or selected attributes during recompute or reconciliation...
  • Feature #2099: Connector reset button
  • Feature #2114: Import objects through model WS
  • Feature #2116: Improved support for structured values
  • closedFeature #2142: Capabilities per objectType (e.g. Delete capability only for some intents)
  • Feature #2144: Configured capabilities - add a way to ignore instead of "Operation not supported" error
  • Feature #2152: Better logging/tracing for Connector Server (.NET) - rotation, formatting
  • Feature #2188: Support DELETE+ADD instead of MODIFY operation for special cases such as unsupported attribute modifications
  • closedFeature #2201: Bulk actions: CSV or DB table input
  • Feature #2216: Preview mapping feature - when defining mappings in resource (role) wizard
  • Feature #2237: Notifications: add option to filter by attribute changes. E.g. to send notification if given attribute has changed
  • Feature #2256: Credentials: SSH keys
  • Feature #2265: DatabaseTable connector rewrite
  • Feature #2273: Support "virtual" resources
  • closedFeature #2331: Deleting shadows for selected resource - all or selective using kind/intent/object class filters
  • Feature #2343: Self-check service for midpoint
  • closedFeature #2355: Reload connectors and extension schema automatically
  • Feature #2360: Workflow state display (end user)
  • Feature #2363: SMS based authentication
  • Feature #2375: Unassign roles at the end of user lifecycle
  • Feature #2482: Provisioning and model support for connector authentication
  • Feature #2483: Advanced Segregation of Duties
  • Feature #2502: CSV connector: support for other object types
  • Feature #2505: Certificate-based authentication for REST
  • Feature #2550: Web UI activity monitoring
  • Feature #2575: End user role management
  • Feature #2633: Open and closed enumerations (lookups)
  • Feature #2634: Enumeration expressions
  • Feature #2644: Assignment: assignment reason (process)
  • Feature #2647: Smart data export (machine readable reports)
  • Feature #2698: Scripted summary header
  • closedFeature #2715: Service object type (advanced)
  • Feature #2873: Track origin of objects (during object create/modify(?))
  • Feature #2905: SoD exlusive role assignment in the context of some object
  • Feature #3095: Basic connector pages
  • Feature #3187: Notifications when task is started/finished/suspended
  • Feature #3210: Simplified "cloud" resource wizard
  • Feature #3259: Pass-through authentication
  • Feature #3261: Separate end-user GUI
  • Feature #3269: support HTTP/2 for demo - upgrade to Tomcat 8.5.3+
  • Feature #3310: Connetor usage limitation in multi-node environment
  • Feature #3372: Show user's manager(s) in Dashboard in self-service, and in admin GUI when editing that user (read-only is OK)
  • Feature #3385: Indicate also indirect assignment in self-service dashboard/profile
  • Feature #3389: Access Matrix
  • Feature #3478: "password change at next logon" activation property
  • closedFeature #3508: Service screen detail to display members
  • Feature #3515: GUI support for parametric roles
  • Feature #3581: Relation configuration
  • Feature #3704: Automatic unassignment of inactive assignments
  • Feature #3831: GUI pages for security policy
  • Feature #3952: Set Shadow Integrity Check parameters via GUI
  • Feature #3978: Flat organizational structure widget
  • Feature #4032: Rework Organization tree page
  • Feature #4065: Skip approvals (pre-approved batches)
  • Feature #4073: Cleanup task (part 2)
  • closedFeature #4116: Test midPoint with JBoss and fix issues
  • Feature #4171: Allow midPoint to configure logback.xml as well as logging in System configuration
  • Feature #4187: Allow localizable LookupTable labels
  • Feature #4188: Allow patching of objects during upgrade / initialization
  • Feature #4202: Relativistic member recompute after role change
  • Feature #4205: Power of Attorney
  • Feature #4212: Data provenance
  • Feature #4448: "GUI featre" configuration in adminGuiConfig
  • Feature #4510: Approvers in assignment metadata are missing information about approval stage
  • Feature #4529: Better credentials UI
  • Feature #4629: Topology visualization
  • Feature #4684: Allow definition of role auto-assignment in GUI editor (including condition)
  • Feature #4685: Message for users on dashboard
  • closedFeature #4701: midPoint studio
  • Feature #4711: Configurable enumeration widgets
  • Feature #4817: Policy values edit - support in GUI
  • Feature #4963: self-service for role management by IDM users
  • Feature #5026: Make hashing password storage configurable
  • Feature #5106: Show some information from midpoint.home in midPoint admin GUI
  • Feature #5332: Add Connectors page to Resources part of GUI
  • closedFeature #5689: Use roleMembershipRef to resolve role owners
  • Feature #5823: Prism 5
  • Feature #5840: Livesync should be able to tell how many events are waiting in the queue
  • Feature #5841: Handle delete attribute values on source system (performance)
  • Feature #6081: Align Configuration Management and Version Control
  • Feature #6421: Automatic and semi-automatic task redistribution
  • Feature #6436: Idea: summary panel also for object lists
  • Feature #6485: Indicate if the field has a lookup table attached (autocomplete) in GUI
  • Feature #6576: Upgradability of initial objects
  • Feature #6625: custom GUI for running anything
  • Feature #6823: Midscribe improvements
  • closedFeature #6951: Allow querying repository Shadows with ri:dn attributes
  • Feature #7000: "Change account owner" midpoint library function
  • closedFeature #7015: Support for JSON language
  • Feature #7046: Better midpoint project version and project dependencies handling
  • Feature #7059: Reconciliation ineffective
  • Feature #7220: Automatic reporting of problems related to task
  • Feature #7227: Option for Reverse Reports to produce an execution report after task run
  • closedFeature #7279: Task wizard
  • closedFeature #7302: Upload rollback feature
  • Task #807: ConnId connector documentation
  • closedTask #863: Test with JBoss appserver and fix issues
  • Task #1255: Design/discuss conditional before/after scripts execution
  • Task #1329: Document expression functions
  • Task #2078: Eliminate raw XNode data in prism as much as possible
  • Task #2557: Clean up ResourceObjectChangeListener and ResourceEventListener
  • Task #2626: Document JITP (Just in time provisioning)
  • Task #2829: Clean up ShadowManager
  • Task #3057: Design (look and feel) manual
  • Task #3353: Consistency mechanism tests cleanup
  • Task #3426: Disable Hibernate Validator (and consider using it in the future)
  • Task #3588: AD LDAP connector disconnect error
  • Task #3767: Test SOAP from .Net after removing "empty tags" hack
  • Task #3790: XML/JSON/YAML user documentation
  • Task #3828: Decide on equality of PCVs (also PRVs)
  • Task #3847: Mapping cleanup
  • Task #4007: Implement configurable summarization of operation results
  • Task #4042: Consider reducing the size of OperationResultType structures
  • closedTask #4089: Cleanup winrm4j
  • Task #4263: Set initiator for workflow process termination event to "real" user
  • Task #4366: Elaborate, recursive definitions, schema and security
  • Task #4480: Container id problem
  • Task #4482: Unify rules for including xsi:type when serializing prisms
  • Task #4689: Specify ObjectDelta.findItemDelta semantics
  • Task #4713: Reasonable policy metaroles in initial objects
  • Task #4888: Document asserters
  • Task #5097: Add tests for recon dry run
  • Task #5310: Check task manager test105 failures
  • Task #5455: Implement browsing of completed work items
  • Task #5574: Design advanced entitlements processing
  • Task #5656: Speed up build
  • Task #5688: Implement staleness option in repository cache
  • Task #5764: ConnTest NG
  • Task #5824: Update developer documentation
  • Task #5829: MidPoint CLI (python) as part of midPoint distribution
  • Task #5834: Clarify change-related data structures in provisioning
  • Task #6042: ConnId2 Plan
  • Task #6095: Consider repackaging GUI modules
  • Task #6098: Documentation improvement ideas
  • Task #6450: Fix implementation of repo add/delete op for multivalued items w.r.t. metadata
  • Task #6463: Remove CXF from REST clients (tests and intra-node communication)
  • Task #6505: User-friendly truststore
  • Task #6707: Review matching rules design
  • Task #7084: Upgrade HTTP Client dependencies in connectors
  • Task #7176: Document activity statistics handling mechanisms
  • Task #7188: Decide on how single-activity tasks should be represented
  • Task #7193: Review activity XML syntax, auto-scaling and threshold features
  • Task #10355: Get rid of midpoint/config/initial-objects in git