6. Changelog

This changelog documents all notable changes to the ICS app. Keep a Changelog is the format and this project adheres to Semantic Versioning.

6.1. 1.1

Released: 16. September 2022

6.1.1. Added

Stability

• ICS split the cookie headers by a logic that didn’t consider certain cases. Now, ICS uses a standard cookie library for the handling cookie headers.

• During app installation, ICS tests the URLs of the required services Keycloak, Nextcloud, Nordeck, and UCS Portal, if it can reach them. The installation shows a warning, if the test can’t reach the services. Additionally, ICS runs a health check within the Docker container every 60 seconds to test, if it can reach the services.

Refreshing Access Tokens

A middleware that automatically refreshes access tokens when they expire.

6.1.2. Changed

• Improve the readability of user documentation.

6.1.3. Security

• The Redis database provides persistence for app sessions. The update applies the following security fixes to Redis:

  • Password protection provided in /etc/intercom-redis.secret.

  • The Redis container is only accessible from the docker-compose internal network (external: false).

• Verify the JWT (JSON Web Token) access or ID token with the public key of the Keycloak issuer.

• Enable backchannel-logout and remove the appropriated app-session from ICS.

6.1.4. Fixed

• Convert the uppercase value for the environment variable PROXY to lowercase. Using the variable in JavaScript requires the value in a lowercase string.

6.2. 1.0

Released: 22. August 2022

6.2.1. Added

• Initial Release