Releases: microsoft/assent-app
Releases · microsoft/assent-app
v.2.2.1
Azure AD rebranding + NuGet package updates
- Azure AD rebranding Azure Active Directory is now Microsoft Entra ID! Aligning with same we have replaced any references to Azure AD to Microsoft Entra ID within Assent app. Learn more about the name change.
- Since Azure Active Directory Authentication Library (ADAL) has been deprecated and will no longer receive security fixes, we have now migrated to use Microsoft Authentication Library (MSAL) to avoid putting app's security at risk.
- Upgraded Azure.Identity to 1.10.2
Configuration Changes
- Added a key ‘Authority’ in App Configuration which is an URL that indicates a directory that MSAL can request tokens from. Please refer Samples.
- Read more about Authority
v.2.2.0
New Features & Improvements
Web App
- User feedback: added handlers to initialize and launch the interface for any feedback collection library or component which users can access from the top header
Bug Fixes
Web App
- Prevent showing users old cached versions of code by pulling version number from asset file at run time
- Accessibility: change icon colors in high contrast mode
- Accessibility: allow users to view website at lower resolutions up to 320 x 256 px
- Accessibility: fixed screen reader announcement at action completion
v2.1.0
Upload Attachment feature & Improvements
Core Services API
- Added ability for approvers to optionally upload an attachment to an approval request such as receipt or proof of delivery, etc. One can control various aspects of this feature by tenant such as:
- Are users allowed to upload documents while performing approval action.
- Are users required/mandated to upload documents while performing approval action.
- If allowed, what are maximum number of documents that user can attach with the request.
- If allowed, what is the maximum size of documents that user can attach with the request. Read More
- Performance improvements.
- Ability to control users from which domains can access Assent app.
Payload Receiver Service API
- Performance improvements.
Web App
- Added ability for approvers to optionally upload an attachment to an approval request such as receipt or proof of delivery, etc. One can control various aspects of this feature by tenant such as:
- Are users allowed to upload documents while performing approval action.
- Are users required/mandated to upload documents while performing approval action.
- If allowed, what are maximum number of documents that user can attach with the request.
- If allowed, what is the maximum size of documents that user can attach with the request. Read More
Configuration Changes
- Added a key ‘WhitelistDomains’ in App Configuration to control users from which domains can access Assent app. Please refer Samples.
- one should enter semicolon separated domain values to be whitelisted as below in values of the key ‘WhitelistDomains’ in App Configuration
- @contoso.com;@abc.contoso.com
- one should enter semicolon separated domain values to be whitelisted as below in values of the key ‘WhitelistDomains’ in App Configuration
- Two new keys are introduced to ApprovalTenantInfo to support and control ability to upload attachments:
- IsUploadAttachmentsEnabled: This is a Boolean with default value false. To enable upload feature for particular tenant this key needs to be true.
- AttachmentProperties: This is a json and helps control various aspects of this feature such as, what are maximum number of documents that user can attach with the request, allowed, what is the maximum size of documents that user can attach with the request etc.Read More.
These properties are added in Samples for reference.
v2.0.0
New Features & Improvements
Primary Processor
- .NET 6 upgrade.
- Use Managed Identity to connect to Azure resources.
Notifications
- .NET 6 upgrade.
- Use Managed Identity to connect to Azure resources.
Core Services API
- .NET 6 upgrade.
- Use Managed Identity to connect to Azure resources.
Payload Receiver Service API
- .NET 6 upgrade.
- Use Managed Identity to connect to Azure resources.
Web App
- Accessibility panel in top header - allows users to adjust accessibility preferences including adjusting column sizes for tabular content with the keyboard
- Collapsible Section - provides optional info icon with accessible tooltip to provide additional context for collapsed content
Dev Tools
- .NET 6 upgrade.
- Use Managed Identity to connect to Azure resources.
Bug Fixes
Web App
- Fixed issues with refresh button for request details on history page when user navigates from a delegated context.
Configuration Changes
-
.NET 6 upgrade: Migrate apps from Azure Functions version 3.x to 4.x | Microsoft Learn
-
Managed Identity changes: Permissions needed for System assigned Managed Identity of below Azure Components
-
Payload Receiver Service API:
- App Configuration Data Reader
- Azure Service Bus Data Sender
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
-
Audit Processor:
- App Configuration Data Reader
- Azure Service Bus Data Owner
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
-
Primary Processor:
- App Configuration Data Reader
- Azure Service Bus Data Owner
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
-
Notification Processor:
- App Configuration Data Reader
- Azure Service Bus Data Owner
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
-
Watchdog Processor:
- App Configuration Data Reader
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
-
Core Services API:
- App Configuration Data Reader
- Cosmos DB Built-in Data Contributor
- Key Vault Secrets User
- Storage Blob Data Contributor
- Storage Table Data Contributor
Note: As of today only way to assign Cosmos DB Built-in Data Contributor is via the PowerShell or az cli below is the command fot the same:
az cosmosdb sql role assignment create --account-name "Cosmosdb account name" --resource-group "Name of resource group where cosmosdb exists" --scope "/" --principal-id "System assigned identity to to which this Role Assignment is being granted" --role-definition-id "00000000-0000-0000-0000-000000000002"For more information please read: Configure role-based access control for your Azure Cosmos DB account with Azure AD | Microsoft Learn
-
v1.1.0
New Features & Improvements
Primary Processor
- Introduced backward compatibility to support previous versions of ApprovalRequestExpression (ARX)
Notifications
- Introduced Continuation Token to page through large volume of data with Azure Tables while sending reminders notifications
- Added backward compatibility and fail-safe mechanism to send email notifications
Core Services API
- Streamlined the usage of delegation headers in API calls
Dev Tools
- Introduced backward compatibility to support previous versions of ApprovalRequestExpression (ARX)
Bug Fixes
Primary Processor
- Updated to UTF8 Encoding to support multiple languages while inserting data into Blobs
Notifications
- Allow Notification processor to get content from multiple folders by using prefix
Core Services API
- Displayed User friendly messages for scenarios wherein user re-visits an already approved requests via Microsoft Teams Notifications
- Minor bug fixes for system to intelligently show user messages in fail cases
- Updated controllers routing to support more than 1 GET method
- Updated scenarios for better handling User On-behalf Token while fetching details or submitting actions to LoB apps
- Other performance improvements
Configuration Changes
v1.0.0
New Features & Improvements
Web App
- Users can click on column headers in table view to sort data
- Profile component - shows current logged in account information and allows users to log out
- Top header shows image for current logged in user
Bug Fixes
Web App
- Prevent redirecting to pending approvals page when user closes history details
- Title in top header redirects to home page