| Database schema (all features) | | | |
| Database minimum versions | | The minimum database versions have been increased for several databases (compared to IAM 7.7): MariaDB (10.4), MSSQL (2016). See also System requirements. | |
| | | | |
| | | | |
| | | The IAM web server log no longer uses the instance configuration property iam.log.level to determine the web server log level. To control the level at which the web server produces log messages, please use iam.web-server.log.file.level and iam.web-server.log.console.level instead. In rare cases, you may receive an error about invalid boolean values in the instance.properties file on IAM startup. This indicates that a misconfiguration in your instance.properties file was detected, which needs to be corrected. | |
| | | - The following log-related instance properties (
instance.properties file) have been renamed to reduce confusion with new properties: iam.web-server.log.enabled >> iam.web-server.log.file.enabled iam.web-server.access-log.enabled >> iam.web-server.access-log.file.enabled iam.web-server.log.pattern >> iam.web-server.log.format.simple.pattern iam.web-server.access-log.pattern >> iam.web-server.access-log.format.simple.pattern
During configuration migration, these keys are automatically changed in the instance.properties file. However, if environment variables are used to overwrite the properties, the corresponding environment variables need to be changed. | |
| | | Due to a bug in the Log4j library, audit log statements could be overwritten after log file rollover. In the fixed implementation, log statements are directly written to log files containing the date in the file name (e.g. medusa-audit.log.2023-03-24 ). The file medusa-audit.log (without date) is no longer written. External processes depending on the file must be adapted. Alternatively, a custom log configuration may be used to re-enable the file. | |
| | | | |
| | | | |
| | | The health check JSON response field state has been removed. As of the micro profile health 3.0 specification the JSON response field state was replaced by the field status . Since IAM 7.5, both JSON response fields have been returned for backward compatibility. Now only the JSON field status is returned. Components still relying on the state field need to be adapted or reconfigured. | |
| | | With IAM 7.1, package names of IAM Java classes have been renamed from ch.ergon.* to com.airlock.* . The old package names could still be used up to IAM 7.7 but are no longer supported in IAM 8.0 Such class names may be referenced in some configuration files (e.g. Log4j configuration, shared secret configuration, or custom web.xml). The main IAM configuration (medusa-configuration.xml) is not affected. If still referring to IAM classes using ch.ergon.* package names, these references must be adapted. | |
| Airlock 2FA text elements | | Up to IAM 7.7 the Airlock 2FA Settings allowed specifying a separate string resource file to look up translations (e.g. for push messages). This is no longer supported. If a separate string resources file (e.g. not strings_xx.properties ) has been used in this way, the text elements need to be copied to the string resource files of the corresponding IAM modules. - The following configuration properties define the string resource files per module (in 8.0)
- Loginapp >> Language Settings
- Adminapp >> Language Settings
- Transaction Approval >> Language Settings
If using Airlock 2FA in the RADIUS server: the string resource file is now part of the Airlock 2FA Authenticator plugin. | |
| Airlock Gateway mapping templates | | New Airlock Gateway mapping templates have been published for IAM 8.0. The new templates must be used to account for the removed JSP-Loginapp, new features, and stricter deny rules. Please refer to Configuration of IAM mappings for further information. | |