Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deploy RC 363 to Production #10234

Merged
merged 13 commits into from
Mar 12, 2024
Merged

Deploy RC 363 to Production #10234

merged 13 commits into from
Mar 12, 2024

Conversation

amirbey
Copy link
Contributor

@amirbey amirbey commented Mar 12, 2024
edited
Loading

User-Facing Improvements

  • Doc Auth: Update selfie hint text translations. (#10213)

Bug Fixes

  • Accessibility: Safari use of VoiceOver reading alt=null images (#10200)
  • PIV/CAC: Consistently clear PIV session detail after deletion (#10220)

Internal

  • Automated Testing: Improve reliability of automated tests (#10221)
  • Code Quality: Remove legacy MFA management route code (#10218, #10219)
  • Code Quality: Remove unnecessary background styles from language picker (#10217)
  • Dependencies: Update dependencies to latest versions (#10210)
  • In-Person Proofing: Add FE logging for liveness_check_required (#10156)
  • SAML: VTR support was added to SAML Response (#10224)

Upcoming Features

  • VoT: Added Vot to oidc user info (#10215)
  • biometrics: Getting started screen for step-up selfies (#10207)

kevinsmaster5 and others added 13 commits March 7, 2024 12:51
@kevinsmaster5
LG-12465 VPAT 1.1.1 Safari VoiceOver svg with null alt (#10200)
1eee4f9 
* changelog: Bug Fixes, Accessibility, Safari use of VoiceOver reading alt=null images

* add ability to check for role in svg

* change role from 'img' to 'presentation'

* reset role to img

* revert test for svg role

* fix lint

* add skipping method to axe_clean violation test

* make axe exclude more specific

* add comment explaining exclude matcher
@aduth
Upgrade Login.gov Design System to v9.0 (#10210)
ddf78f0 
* Upgrade Login.gov Design System to v9.0

* Add changelog

changelog: Internal, Dependencies, Update dependencies to latest versions
@aduth
Remove unnecessary background styles from language picker (#10217)
b456d85 
changelog: Internal, Code Quality, Remove unnecessary background styles from language picker
@aduth
Clean PIV session detail after deletion (#10220)
d540121 
changelog: Bug Fixes, PIV/CAC, Consistently clear PIV session detail after deletion
@charleyf
LG-12160: FE Logging Changes (#10156)
704f45c 
* Note the places for addition

* Add FE logging and fix existing tests

* changelog: Internal, In-Person Proofing, Add FE logging for liveness_check_required

* test commit

* Add to FE logs

* Add additional FE events

* Remove unnessecary change - liveness_checking_required is already included in response

* Add `liveness_checking_required` to more FE events

* Add new value to tests

* Fix missing argument

* Remove duplicate param doc

* Lint fixes

* Use the new SelfieCaptureContext

* Update events to include "image added" events

* Document events to fix lint problem
@aduth
Switch to have_current_path for MFA path comparison (#10221)
7b7e529 
changelog: Internal, Automated Testing, Improve reliability of automated tests
@aduth
Remove legacy TOTP deletion routes (#10219)
9905a91 
* Remove legacy TOTP deletion routes

changelog: Internal, Code Quality, Remove legacy MFA management route code

* Remove unused find_form
@aduth
Remove legacy PIV/CAC deletion routes (#10218)
7938717 
* Remove legacy PIV/CAC deletion routes

changelog: Internal, Code Quality, Remove legacy MFA management route code

* Remove unused find_form
@jmhooper
Add the vot to the SAML response when it is used as an AuthnContext…
ad03269 
… for SAML (#10224)

In #10178 we added the ability for SAML service providers to make a request with a vector of trust in the AuthnContext. When a SAML SP does this the vector of trust that is used for the authentication transaction should be reflected to the SP in the SAML response.

The authentication context appears in 2 places in the SAML request:

1. In the authn context for the entire transaction:

    ```xml
    <AuthnStatement AuthnInstant="2024-01-01T00:00:00" SessionIndex="_abc-123-def-456">
      <AuthnContext>
        <AuthnContextClassRef>A1.B2.C3</AuthnContextClassRef>
      </AuthnContext>
    </AuthnStatement>
    ```

2. In the attribute statement. With ACR values these appeared as seperated AAL and IAL nodes. For VTRs they appear in a single VTR node:

    ```xml
    <AttributeStatement>
      <!-- ... -->
      <Attribute Name="vot" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="vot">
        <AttributeValue>A1.B2.C3</AttributeValue>
      </Attribute>
    </AttributeStatement>
    ```

Making the VoT appear like this required changes in 2 places:

1. In the SAML controller the correct `authn_context` value was passed to the `#encode_response` method. This is a method from the `18f/saml_idp` gem which is overriden in `SamlIdpController`.
2. The `AttributeAsserter` was modified to recognized a VTR request and add the correct values to the `AttributeStatement` node in the SAML response.

changelog: Internal, SAML, VTR support was added to SAML Response
@dawei-nava
LG-12122: update selfie hint text translations. (#10213)
173fa96 
changelog: User-Facing Improvements, Doc Auth, Update selfie hint text translations.
@jmax-gsa
LG-12492 Update getting started screen for legacy selfies (#10207)
7d662c5 
Updated with new text, and pulled out a new presenter WelcomeScreenPresenter.

changelog: Upcoming features,biometrics,Getting started screen for step-up selfies
@jmax-gsa @zachmargolis
LG-12563 add vot to user info controller (#10215)
bb02307 
Changed oidc user info endpoint to include vot information when requested.

changelog: Upcoming features,VoT,Added Vot to oidc user info

---------

Co-authored-by: Zach Margolis <zachmargolis@users.noreply.github.com>
@amirbey
LG-12557: portrait match is received when not requested (#10193)
5837343 
* fix session result bug when selfie is not requested

[skip changelog]

* selfie_status not_processed when selfie has not been requested

* define success for session result stub

* update test for document capture session result  success? alias

* rename liveness_enabled to match trueIDrespones arg name

* happy linting

* test that success? method returns success attribute value

* restore docauth mock selfie_status now that TrueIDRespnse#selfie_status only stores selfie_result when present and requested

* update comment for selfie_stauts return value
@amirbey amirbey closed this Mar 12, 2024
@amirbey amirbey deleted the stages/rc-2024-03-12 branch March 12, 2024 15:56
@amirbey amirbey restored the stages/rc-2024-03-12 branch March 12, 2024 15:57
@amirbey amirbey reopened this Mar 12, 2024
@amirbey amirbey changed the title Stages/rc 2024 03 12 Deploy RC 363 to Production Mar 12, 2024
@amirbey amirbey marked this pull request as ready for review March 12, 2024 16:11
@amirbey amirbey self-assigned this Mar 12, 2024
@amirbey amirbey merged commit ba90e45 into stages/prod Mar 12, 2024
1 check passed
@amirbey amirbey deleted the stages/rc-2024-03-12 branch March 12, 2024 16:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zachmargolis zachmargolis zachmargolis approved these changes

@matthinz matthinz Awaiting requested review from matthinz

@mitchellhenke mitchellhenke Awaiting requested review from mitchellhenke

@aduth aduth Awaiting requested review from aduth

Assignees

@amirbey amirbey

Labels
status - promotion
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@amirbey @zachmargolis @kevinsmaster5 @aduth @charleyf @jmhooper @dawei-nava @jmax-gsa