Table of Contents

5.1.5

PAS 5.1.5 is a feature release that has three main focus areas:

  • Resolving a few bugs present in PAS 5.1.3 and 5.1.4.
  • Creating a foundation for our new internal web applications (the PRISM-modules)
  • Creating a completely new web app frontend for our digital signature module.

If you are upgrading from any version earlier than PAS 5.1.4, you should also review the release notes for those releases before upgrading.

The new FedSigning module

Our new digital signature module phenix-prism-fedsigning now has a completely new look and feel when activated, see how to do that here (note that this has to be explicitly activated for the new look and feel to appear). Similar to the new authentication frontend introduced in PAS 5.1.3, this module has support for WCAG, custom themes, responsiveness, custom languages and more. It also introduces entirely new functionality such as support for signing multiple PDF documents, as well as viewing appendices. This functionality pairs with new functionality introduced in PhenixID Signing Workflow (SWF) version 2.5.7 set to release very soon.

Improvements

  • PHX-4051 Add support for multiple documents in FedSigning module. Described in detail above.

Bug fixes

  • PHX-4000 - PAS Freeze: Whens - DefaultScheduler stops executing queue in case of task throwing exceptions, may ex. stop processing HTTP requests. Resolved multiple concurrency issues in the Whens.java library. Some of those concurrency issues had the capacity to stop PAS from processing HTTP requests entirely if a rare erroneous state was reached.
  • PHX-4029 - Excessive memory usage in 5.1.4, lots of expensive GraalJS engines. Resolved an issue where PAS 5.1.4 would use excessive memory via the new GraalJS script engines.
  • PHX-4034 - FIDO2 Passkeys not discoverable, some keys do not show up. Resolved an issue where some FIDO authenticators did not create discoverable credentials. Default changed from discouraged to preferred, config options added here.
  • PHX-4042 - SAML Race condition, session state can be out of sync. Resolved an issue where session state could be out of sync due to a race condition in SAML.
  • PHX-4044 - Default max HTTP header size too small (8k). Updated the max HTTP header size to 32k instead of 8k as the previous number was too small for some client certificates.
  • PHX-4016 - BankID on the same device may return the user to a different browser tab. Resolved an issue where BankID (and some other mobile apps) would return the user to a new browser tab instead of the old one.
  • PHX-4050 - MFA Admin with prefetch OTP error "No value present". Resolved an issue where MFA Admin with prefetch OTP enabled would cause an error due to an incorrect javascript mapping.