Preparing IAM 7.7 for upgrading to 8.0

This article describes preparing the IAM configuration for upgrading from IAM 7.7 to IAM 8.0. Since the JSP-Loginapp is no more available in IAM 8.0, this involves removing all JSP-Loginapp plugins.

Overview

With the removal of the JSP-Loginapp in IAM 8.0, all configuration plugins that were exclusively used for the JSP-Loginapp are no more available.

In order to migrate the configuration (see Upgrade Airlock IAM) all these plugins have to be removed.

An IAM configuration file containing JSP-Loginapp plugins cannot be migrated to IAM 8.0. The migration process (using the CLI command iam upgrade) exits with an error listing the plugins to be removed.

Migration support in the Config Editor

Since finding and removing JSP-Loginapp plugins can be cumbersome. The Config Editor in IAM 7.7 is able to list the plugins to be removed before migration.

ConfigEditor77MigrationSupportSmall

The feature needs to be activated manually and involves downloading an up-to-date plugin list as shown below.

  1. To enable the Config Editor feature, do the following:
  2. Copy the contents of the plugin list (see below) to a text file named iam-removed-classes.txt.
  3. Copy the file iam-removed-classes.txt to the IAM base directory: this is the directory containing the instances folder).
  4. In the Config Editor, either load a new configuration file or reload the page (browser reload).
  5. The feature is now enabled and the tab Removed in 8.0 should be shown.

Airlock IAM needs to be able to read the file.

Make sure that ownership and permission of the file is such that the OS user running Airlock IAM can read it.

Plugin list

The following list of plugins is updated during the development of IAM 8.0. When using the feature, make sure to use the latest plugin list (see above).

Version history:

Version

Description

2022-10-17

Initial version.

2022-11-16

Added 45 more classes to the list.

Show moreShow lesscopy
com.airlock.iam.core.misc.impl.sso.AirlockAssertionIdentityPropagator
com.airlock.iam.core.misc.util.ticket.codec.AirlockAssertionTicketDecoder
com.airlock.iam.login.app.misc.configuration.selfservice.userselfreg.EmailBasedUsernameSuggester
com.airlock.iam.login.app.misc.configuration.selfservice.userselfreg.StringGeneratorUsernameSuggester
com.airlock.iam.login.app.misc.configuration.selfservice.userselfreg.UserSelfRegistrationConfig
com.airlock.iam.login.app.misc.configuration.selfservice.userselfreg.UuidUsernameSuggester
com.airlock.iam.login.application.configuration.gdpr.selfreg.SelfregConsentSpecificationGroupConfig
com.airlock.iam.login.app.misc.configuration.selfservice.UserDataEditConfig
com.airlock.iam.login.app.misc.configuration.selfservice.UserDataEditGroupConfig
com.airlock.iam.login.app.misc.contexts.ForwardLocationContextExtractor
com.airlock.iam.login.app.misc.contexts.UrlAndForwardLocationContextExtractor
com.airlock.iam.servicecontainer.app.internal.domain.model.task.UserImporterTask
com.airlock.iam.login.app.misc.configuration.selfservice.MigrationHintPageConfig
com.airlock.iam.login.app.misc.configuration.selfservice.MigrationConfig
com.airlock.iam.login.app.misc.configuration.selfservice.CustomMigrationConfig
com.airlock.iam.login.app.misc.configuration.selfservice.MtanSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.MtanSelfServiceConfig.OldNumberNotificator
com.airlock.iam.login.app.misc.configuration.selfservice.MtanSelfServiceConfig.UserInserterMapping
com.airlock.iam.login.app.misc.configuration.selfservice.CertificateSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.CrontoSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.MatrixCardSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.VascoDigipassSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.KobilAstSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.targetapps.InternalServiceAccessConfig
com.airlock.iam.login.application.configuration.gdpr.selfservice.UserConsentSelfServiceConfig
com.airlock.iam.login.application.configuration.gdpr.persistence.UserConsentDatabasePersisterConfig
com.airlock.iam.login.application.configuration.gdpr.persistence.UserConsentConsistencyUserChangeListener
com.airlock.iam.login.application.configuration.gdpr.specification.ConsentSpecificationConfig
com.airlock.iam.login.application.configuration.gdpr.specification.ConsentSpecificationGroupConfig
com.airlock.iam.login.app.misc.configuration.selfservice.ContactMeConfig
com.airlock.iam.login.app.misc.configuration.selfservice.DeleteUserConfig
com.airlock.iam.login.app.misc.configuration.selfservice.LockoutSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.UnlockSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.OAuth2SelfServiceSettings
com.airlock.iam.airlock2fa.application.configuration.Airlock2FASelfServiceConfig
com.airlock.iam.login.app.misc.configuration.selfservice.SelfServiceConfig
com.airlock.iam.login.app.misc.representation.authorization.RoleBasedRepresentationAuthorization
com.airlock.iam.login.app.misc.representation.authorization.AllowAllRepresentationAuthorization
com.airlock.iam.login.app.misc.representation.Representation
com.airlock.iam.core.misc.impl.sso.RepresentationSsoTicketConfig
com.airlock.iam.login.app.misc.oneshot.impl.KobilTwvOneShotAuthenticator
com.airlock.iam.login.app.misc.configuration.HttpBasicAuthConfig
com.airlock.iam.login.app.misc.configuration.LegalDisclaimer
com.airlock.iam.login.app.misc.configuration.KobilTwvSettings
com.airlock.iam.login.app.misc.configuration.RoleBasedAuthenticator
com.airlock.iam.login.app.misc.oneshot.impl.ti8m.Ti8mCredentialExtractor
com.airlock.iam.login.app.misc.oneshot.impl.ti8m.Ti8mSecureMobileAuthenticator
com.airlock.iam.login.app.misc.oneshot.impl.ti8m.StaticRequestParameterProvider
com.airlock.iam.login.app.misc.oneshot.impl.ti8m.ClientRequestParameterExtractor
com.airlock.iam.admin.application.configuration.ti8m.Ti8mSecureMobileTokenController
com.airlock.iam.admin.application.configuration.ti8m.Ti8mDummyDeviceRepositoryConfig
com.airlock.iam.admin.application.configuration.ti8m.Ti8mDefaultDeviceRepositoryConfig
com.airlock.iam.common.application.configuration.ti8m.qrcodegeneration.Ti8mDummyQrCodeGeneratorConfig
com.airlock.iam.common.application.configuration.ti8m.qrcodegeneration.Ti8mDefaultQrCodeGeneratorConfig
com.airlock.iam.common.application.configuration.ti8m.lettergeneration.Ti8mActivationLetterGeneratorConfig
com.airlock.iam.oauth2.application.configuration.ui.OAuth2LegacyJspApplicationUiConfig
com.airlock.iam.login.app.misc.configuration.ntlm.NTLMFrontSideConfig
com.airlock.iam.login.app.misc.configuration.ntlm.NTLMNetLogonAuthentication
com.airlock.iam.login.app.misc.configuration.ntlm.NTLMDomainControllers
com.airlock.iam.login.app.misc.configuration.ntlm.NTLMDomainControllerConfig
com.airlock.iam.login.app.misc.configuration.ntlm.NTLMEmulatingBasicFallbackConfig
com.airlock.iam.login.app.misc.configuration.security.IpAddressRestrictions
com.airlock.iam.login.app.misc.configuration.SpnegoConfig
com.airlock.iam.saml2.application.configuration.SamlSpConfig
com.airlock.iam.saml2.application.configuration.SamlIdpConfig
com.airlock.iam.saml2.application.configuration.SamlEntityConfig
com.airlock.iam.saml2.application.configuration.SamlAttributeImportConfig
com.airlock.iam.saml2.application.configuration.assertion.attribute.RolesAttributeConfig
com.airlock.iam.login.app.misc.saml2.SAMLVirtualUserAuthenticator
com.airlock.iam.login.app.misc.configuration.targetapps.Saml2IdpTargetApplication
com.airlock.iam.login.app.misc.existingsession.UseExistingUserSessionPage
com.airlock.iam.login.app.misc.configuration.targetapps.PortalApplicationConfig
com.airlock.iam.login.app.misc.configuration.targetapps.PortalApplicationGroup
com.airlock.iam.login.app.misc.configuration.targetapps.Saml2IdpTargetApplication
com.airlock.iam.login.app.misc.configuration.oauth.OAuth2ClientSettings
com.airlock.iam.login.app.misc.configuration.oauth.OpenIDConnectClientSettings
com.airlock.iam.login.app.misc.configuration.oauth.OpenIDConnectDiscoveryClientSettings
com.airlock.iam.login.app.misc.configuration.reverseproxy.WebserviceCertAuthSettings
com.airlock.iam.login.app.misc.configuration.reverseproxy.WebserviceCertAuthSettings.WsAccessRule
com.airlock.iam.login.app.application.configuration.risk.RiskSettings
com.airlock.iam.authentication.application.configuration.risk.extractor.ip.IPAddressRangeRiskExtractorJspConfig
com.airlock.iam.authentication.application.configuration.risk.extractor.geolocation.TypicalGeolocationRiskExtractorJspConfig
com.airlock.iam.authentication.application.configuration.risk.extractor.typical.TypicalRiskExtractorJspConfig
com.airlock.iam.authentication.application.configuration.risk.extractor.browser.TypicalUserAgentRiskExtractorJspConfig
com.airlock.iam.login.application.configuration.sso.SsoTicketConfig
com.airlock.iam.login.app.misc.e2epwenc.RsaEndToEndPasswordEncryptionHandler
com.airlock.iam.login.app.misc.e2epwenc.DummyPlaintextPasswordEncryptionHandler
com.airlock.iam.login.app.misc.e2epwenc.RsaDecryptionHandler
com.airlock.iam.login.app.misc.e2epwenc.StaticRsaDecryptionHandler
com.airlock.iam.login.app.misc.configuration.targetapps.IdPropagatorTargetApplication
com.airlock.iam.login.app.misc.configuration.targetapps.ApplicationConfig
com.airlock.iam.login.app.misc.configuration.targetapps.OAuth2AuthorizationServerAccessConfig
com.airlock.iam.login.app.application.configuration.oauth.as.openid.OpenIDConnectRestUiAuthenticationFlowRedirectConfig
com.airlock.iam.login.app.application.configuration.oauth.as.openid.OpenIdConnectUsernameLoginHintJspConfig
com.airlock.iam.login.app.application.configuration.oauth.as.openid.OpenIdConnectSsoTicketLoginHintJspConfig
com.airlock.iam.login.app.application.configuration.oauth.as.openid.AsCentricOpenIDConnectAcrToRestUiAuthenticationFlowMappingConfig
com.airlock.iam.login.app.application.configuration.oauth.as.openid.OpenIDConnectRestUiIdentityPropagationConfig
com.airlock.iam.login.application.configuration.openid.AsCentricOpenIDConnectRoleToAcrMappingConfig
com.airlock.iam.login.application.configuration.openid.LegacyOpenIdConnectAcrClaimConfig
com.airlock.iam.login.app.misc.configuration.AuthenticationConfig
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalUserRoleResource
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalUsernameResource
com.airlock.iam.authentication.application.configuration.risk.accesspolicy.AccessPolicy
com.airlock.iam.login.application.configuration.targetapp.NoLanguagePropagation
com.airlock.iam.login.app.misc.configuration.PasswordManagementGroupConfiguration
com.airlock.iam.login.app.misc.configuration.PasswordManagementSimpleConfig
com.airlock.iam.login.application.configuration.targetapp.LoginappSessionUpdateIdentityPropagatorConfig
com.airlock.iam.login.application.configuration.targetapp.SessionTicketIdentityPropagatorConfig
com.airlock.iam.login.app.misc.configuration.security.SecurityConfig
com.airlock.iam.login.app.misc.configuration.security.AttackDetectorConfig
com.airlock.iam.core.misc.util.attackdetector.impl.DummyUsernameConstraintChecker
com.airlock.iam.core.misc.util.attackdetector.impl.PasswordFrequencyChecker
com.airlock.iam.login.app.misc.existingsession.IgnoreExistingUserSessions
com.airlock.iam.login.app.misc.existingsession.DestroyOtherUserSession
com.airlock.iam.login.app.misc.existingsession.DestroyMultipleExistingSessions
com.airlock.iam.login.app.misc.contexts.UrlAndForwardLocationContextPattern
com.airlock.iam.login.app.misc.LoggingTicketProcessor
com.airlock.iam.core.misc.impl.authen.AirlockAdminAuthenticator
com.airlock.iam.core.misc.impl.authen.CrontoAuthenticator
com.airlock.iam.core.misc.impl.authen.SecurIdAuthenticator
com.airlock.iam.core.misc.impl.authen.MigratingAuthenticator
com.airlock.iam.core.misc.impl.authen.SimpleMetaAuthenticator
com.airlock.iam.core.misc.impl.authen.IakAuthenticator
com.airlock.iam.core.misc.impl.authen.mobileid.MobileIdAuthenticator
com.airlock.iam.core.misc.impl.sso.onbehalflogin.OnBehalfLoginAuthenticator
com.airlock.iam.login.app.misc.oauth2.provider.Oauth2ImplicitGrantIdentityPropagator
com.airlock.iam.login.app.misc.oauth2.provider.OAuth2IdentityPropagator
com.airlock.iam.login.app.misc.oauth2.provider.OpenIDConnectIdentityPropagator
com.airlock.iam.login.app.misc.oauth2.provider.configuration.OAuth2ResourceEndpointConfig
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2JSONResourceWriter
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2ResourceMapping
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalStaticResource
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalContextDataResource
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalDateContextDataResource
com.airlock.iam.login.app.misc.oauth2.provider.resource.OAuth2LocalLocalDateContextDataResource
com.airlock.iam.login.app.misc.oauth2.introspection.config.TokenIntrospectionConfig
com.airlock.iam.login.misc.oauth2.configuration.OAuth2AuthorizationServerSettings
com.airlock.iam.login.misc.oauth2.configuration.OAuth2ImplicitGrantAuthorizationServerSettings
com.airlock.iam.login.misc.oauth2.configuration.OpenIDConnectAuthorizationServerSettings
com.airlock.iam.login.misc.oauth2.provider.configuration.OpenIDConnectClaimConfiguration
com.airlock.iam.login.application.configuration.oauth2.token.revocation.PublicClientTokenRevocationEndpointConfig
com.airlock.iam.login.application.configuration.oauth2.token.revocation.AuthenticatedTokenRevocationEndpointConfig
com.airlock.iam.login.application.configuration.oauth2.OAuth2ClientCentricMetadataEndpointConfig
com.airlock.iam.login.application.configuration.oauth2.OAuth2ClientCentricTokenEndpointConfig
com.airlock.iam.login.application.configuration.oauth2.userinfo.OpenIDConnectUserInfoEndpoint
com.airlock.iam.login.application.configuration.oauth2.clientauthentication.OAuth2ClientCertificateConfig
com.airlock.iam.admin.application.configuration.oauth2.OAuth2ClientCentricTokenController
com.airlock.iam.servicecontainer.app.application.configuration.task.token.OAuth2TokenCleanUpStrategyConfig
com.airlock.iam.login.app.application.configuration.oauth.OAuth2AccessTokenAuthenticator
com.airlock.iam.login.app.application.configuration.oauth.OAuth2AccessTokenDecoder
com.airlock.iam.login.app.misc.configuration.security.ContentSecurityPolicyConfig
com.airlock.iam.login.app.misc.configuration.BasicConfig
com.airlock.iam.login.app.misc.configuration.locking.LockingSettings
com.airlock.iam.core.misc.impl.pwdselfservice.DefaultPwdSelfServiceRestrictionsProvider
com.airlock.iam.core.misc.impl.pwdselfservice.EmailPwdSelfService
com.airlock.iam.core.misc.impl.pwdselfservice.SmsPwdSelfService
com.airlock.iam.core.misc.impl.pwdselfservice.TimingCaptcha
com.airlock.iam.core.misc.pwdselfservice.AuthMethodBasedPwdSelfService
com.airlock.iam.core.misc.pwdselfservice.PasswordSelfServiceConfig
com.airlock.iam.login.app.misc.configuration.LanguageCookie
com.airlock.iam.login.application.configuration.captcha.SimpleCaptcha
com.airlock.iam.login.misc.plugin.pwdselfservice.SecretQuestionsPwdSelfService
com.airlock.iam.login.rest.application.configuration.UserSelfRegistrationRestConfig
com.airlock.iam.core.misc.impl.authen.KobilAstAuthenticator
com.airlock.iam.core.misc.impl.authen.KobilAstDevicesFilter
com.airlock.iam.authentication.application.configuration.kobil.KobilTmsAuthenticationStepConfig
com.airlock.iam.transactionapproval.application.configuration.kobil.KobilTmsMessageProviderImplConfig
com.airlock.iam.core.misc.impl.kobilssms.DummyKobilAstClientImpl
com.airlock.iam.core.misc.impl.kobilssms.KobilAstClientImpl
com.airlock.iam.admin.application.configuration.kobil.KobilTokenController
com.airlock.iam.core.misc.impl.authen.NullUserChoiceFilter
com.airlock.iam.core.misc.impl.persistency.usereventbus.KobilSsmsConsistency
com.airlock.iam.servicecontainer.app.internal.domain.model.task.KobilAstActivationLetterTask
com.airlock.iam.servicecontainer.app.internal.domain.model.task.StatisticsLogToDBTask
com.airlock.iam.core.misc.impl.statistics.dataaccess.StatisticsDatabaseAccess
com.airlock.iam.admin.app.misc.statistics.renderer.impl.CsvStatisticsRenderer
com.airlock.iam.admin.app.misc.statistics.renderer.impl.ColumnChartRenderer
com.airlock.iam.admin.app.misc.statistics.renderer.impl.DummyStatisticsRenderer
com.airlock.iam.admin.app.misc.statistics.renderer.impl.PieChartRenderer
com.airlock.iam.admin.app.misc.statistics.provider.impl.EventCountStatistics
com.airlock.iam.admin.app.misc.statistics.provider.impl.GenericStatisticsEventCategory
com.airlock.iam.admin.app.misc.statistics.provider.impl.GenericStatisticsEventGroup
com.airlock.iam.admin.app.misc.statistics.provider.impl.UsersPerEventsOverPeriodsStatistics
com.airlock.iam.admin.app.misc.statistics.provider.impl.UsersStatisticsEventGroup
com.airlock.iam.admin.app.application.configuration.statistics.StatisticsConfiguration
com.airlock.iam.servicecontainer.app.internal.domain.model.task.AuditLogToStatisticsLogTask
com.airlock.iam.common.rest.application.authorization.NoCaptchaResourceProtector
com.airlock.iam.common.rest.application.authorization.RegexCaptchaResourceProtector
com.airlock.iam.common.rest.application.authorization.ResourceToProtectByCaptcha
com.airlock.iam.login.rest.application.configuration.CaptchaConfig
com.airlock.iam.login.application.service.captcha.DummyCaptchaFactory
com.airlock.iam.common.application.configuration.email.EmailVerificationConfig
com.airlock.iam.core.misc.emailselfservice.EmailSelfServiceConfig
com.airlock.iam.core.misc.selfservice.LegacyEmailVerificationConfig
com.airlock.iam.core.misc.selfservice.SmsVerification
com.airlock.iam.login.application.configuration.user.registration.UnlockUserAction
com.airlock.iam.login.application.service.user.registration.LockReasonPrecondition
com.airlock.iam.transactionapproval.application.configuration.airlock2fa.Airlock2FATransactionApprovalMessageProviderConfig
com.airlock.iam.transactionapproval.application.configuration.airlock2fa.Airlock2FAContextualInformationConfig
com.airlock.iam.transactionapproval.application.configuration.mtan.MtanMessageProviderImplConfig
com.airlock.iam.common.rest.application.authentication.BasicAuthCredentialPolicy
com.airlock.iam.common.rest.application.authentication.CertificateCredentialPolicy
com.airlock.iam.common.rest.application.authentication.CookieTicketCredentialPolicy
com.airlock.iam.common.rest.application.authentication.HeaderTicketCredentialPolicy
com.airlock.iam.common.rest.application.authentication.OAuth2CredentialPolicy
com.airlock.iam.common.rest.application.authentication.StaticRequestCredentialPolicy
com.airlock.iam.common.application.configuration.credential.LegacyRequestAuthenticationAdapterConfig
com.airlock.iam.admin.application.configuration.credential.LegacyAdminSsoTicketRequestAuthenticationAdapterConfig");