Release notes

2.3.0

Published on 19/07/2024
  • DEFINITIVE DELETION of PRO vaults not migrated to version 7
  • BREAKING: test banks without expiration date are now considered expired

2.2.0

Published on 01/07/2024
  • Fixed a bug where manual validation from an admin is requested from the first device instead of the second when the option is activated.
  • Forgotten password and second device validation notifications are no longer sent to super administrators except if if there is no dedicated administrator for the bank.

2.1.0

Published on 27/06/2024
  • correction of the password strength evolution curve taking into account the deletion of vaults and shared elements (previously, deleted vaults and shared elements continued to count with their last known value).

2.0.1

Published on 17/06/2024
  • versions of the app stricly below 7.1.1 can no longer make changes to vaults.

2.0.0

Published on 17/05/2024

⚠️ This version requires node 20 or later.

  • dependency update (node 20 or later required)
  • connection to Microsoft Entra
    • when creating a vault, the server can check if a user is authorized by querying Microsoft Entra OR by looking if the user’s email address is authorized (old method)
    • every day at 1 a.m. and 1 p.m., the server automatically deactivates users who are no longer authorized neither via Microsoft Entra nor via an email address format rule

1.11.0

Published on 30/04/2024
  • adds a mechanism to simplify changing server URL

1.10.0

Published on 09/04/2024
  • expiration times for one-time codes sent by the server in password emails Forgotten or device permissions are now displayed in the server’s local time instead of UTC.

1.9.2

Published on 04/04/2024
  • fixes platform verification for new device enrollment

1.9.0

Published on 03/04/2024
  • an email is automatically sent to all super-administrators and administrators of the bank when a user submits a password reset request
  • adds a parameter to configure authorized platforms, per bank and per user
  • adds an option to require manual validation from an administrator for adding a second device (disabled by default)
  • improves the management of device types
  • modifies the status information sent to UpSignOn (removes that which are no longer useful and adds the nodejs version)

1.8.6

  • correction on the master password reset request if a previous request had already been done
  • changes the default value for CSV export authorization (now prohibited by default) NB: this setting had to be reset for all users
  • fixes the last session date displayed in the console

1.8.5

  • adds a specific mechanism to allow the migration of PRO vaults after their enrollment on a v7 application
  • fixes the request route to delete a recipient from a shared vault