MidPoint History

Last modified 22 Apr 2021 17:31 +02:00

Release 4.3.1 (Faraday Update 1)

Release date: 11 May 2021
Focus: bugfixes
Release notes: Release 4.3.1

The Faraday update brings miscellaneous bugfixes.

  • Miscellaneous bugfixes.

Release 4.3 (Faraday)

Release date: 09 April 2021
Focus: performance and scalability
Release notes: Release 4.3

The Faraday release brings performance improvements, user interface and diagnostic improvements and major internal improvements.

  • midScale: Major scalability improvements (prototype)
  • Axiom query language (experimental)
  • Outbound ActiveMQ provisioning (experimental)
  • Significant improvement to password management page
  • Diagnostic and visibility improvements

Release 4.2 (Maxwell)

Release date: 23 October 2020
Focus: meta-data (experimental), reporting, audit, authentication
Release notes: Release 4.2

The Maxwell release brings new reporting mechanism, updates to auditing implementation, continued improvement for authentication and handful of other interesting improvements. Most importantly, midPoint 4.2 brings experimental updates to the very foundations of midPoint.

  • New reporting mechanism
  • Updates to auditing implementation
  • Continued improvement for authentication
  • Experimental updates to the very foundations of midPoint (Axiom, metadata)

Release 4.1 (Pasteur)

Release date: 09 April 2020
Focus: authentication, user interface, cleanup
Release notes: Release 4.1

The Pasteur release brings major authentication improvements, user interface improvements, improved archetype functionality and a number of smaller improvements.

  • Authentication improvements
  • User interface improvements
  • Improved archetype functionality
  • Number of smaller improvements

Release 4.0.3 LTS (Gutenberg Update 3)

Release date: 28 January 2021
Focus: LTS bugfixes
Release notes: Release 4.0.3

The Gutenberg update brings bugfixes and minor improvements.

  • Numerous bugfixes and minor improvements.

Release 4.0.2 LTS (Gutenberg Update 2)

Release date: 12 February 2020
Focus: LTS bugfixes
Release notes: Release 4.0.2

The Gutenberg update brings bugfixes and minor improvements.

  • Numerous bugfixes and minor improvements.

Release 3.9.1 (Galileo Update 1)

Release date: 14 November 2019
Focus: bugfixes
Release notes: Release 3.9.1

The Galileo update brings release brings bugfixes and minor improvements.

  • Numerous bugfixes and minor improvements.

Release 4.0.1 LTS (Gutenberg Update 1)

Release date: 22 October 2019
Focus: LTS bugfixes
Release notes: Release 4.0.1

The Gutenberg update brings bugfixes and minor improvements.

  • Numerous bugfixes and minor improvements.

Release 4.0 LTS (Gutenberg)

Release date: 08 September 2019
Focus: major LTS release, archetypes and numerous features
Release notes: Release 4.0

The Gutenberg release is a major milestone in midPoint development. It brings long-awaited features such as archetypes and support for multiple equivalent accounts. Many internal mechanisms were significantly improved. There is also a number of exciting experimental features. However, perhaps the most important aspect of midPoint 4.0 is the long-term support (LTS). Gutenberg will be supported for many years to come.

  • Archetypes
  • Support for multiple equivalent accounts on a resource (inbound)
  • Thresholds and limits (experimental)
  • Approvals without a workflow engine
  • Long-Term Support
  • Java 11 support

Release 3.9 (Galileo)

Release date: 09 November 2018
Focus: significant improvements in almost all areas
Release notes: Release 3.9

The Galileo release brings broad assortment of improvements and new features in almost all areas of midPoint functionality.

  • Service account management
  • Major rework of provisioning consistency code
  • Full use of improved ConnId framework (1.5.0.0)
  • Docker containerization improvements
  • User interface improvements

Release 3.8 (Watt)

Release date: 13 June 2018
Focus: performance and scalability, various improvements
Release notes: Release 3.8

The Watt release brings major performance and scalability improvements. There are also provisioning, security and user interface improvements.

  • Performance and scalability improvements
  • Data model improvements (subtype)
  • Customization improvements
  • Various improvements

Release 3.7.2 (Darwin Update 2)

Release date: 08 June 2018
Focus: bugfixes and minor improvements
Release notes: Release 3.7.2

The Darwin update brings stability improvements and several minor features.

  • Provisioning Propagation
  • Password policy and authorization improvements
  • Improved handling of function libraries
  • Various improvements

Release 3.7.1 (Darwin Update 1)

Release date: 08 March 2018
Focus: bugfixes and minor improvements
Release notes: Release 3.7.1

The Darwin update brings stability improvements and several minor features.

  • Provisioning Propagation
  • Password policy and authorization improvements
  • Improved handling of function libraries
  • Various improvements

Release 3.7 (Darwin)

Release date: 18 December 2017
Focus: stand-alone deployment, governance feature improvements, many gradual improvements
Release notes: Release 3.7

The Darwin release brings new deployment model and numerous gradual improvements. There are improvements of identity governance features, improvements of user interface and internal improvements.

  • Stand-alone deployment
  • User interface improvements
  • Governance improvements
  • Expression and mapping improvements
  • Security improvements

Release 3.6.1 (Comenius Update 1)

Release date: 11 October 2017
Focus: bugfixes and minor improvements
Release notes: Release 3.6.1

The Comenius update brings number of smaller improvements, fixes and stability enhancements.

  • Auxiliary object class improvements
  • Reliability improvements for parallel processing
  • LDAP, Active Directory and CSV connector improvements
  • Authorization improvements
  • Minor improvements and bugfixes

Release 3.6 (Comenius)

Release date: 04 July 2017
Focus: governance features, password management, connectors
Release notes: Release 3.6

The Comenius release brings numerous new features especially in the field of identity governance, password management and identity connectors.

  • Major policy rules improvements (governance)
  • SoD approval, certification and major improvements (governance)
  • Escalation (governance)
  • Ad-hoc recertification (governance)
  • Personas (governance)
  • Password hashing and mail-based account initialization
  • Important improvements to mappings, expressions, object templates and other mechanisms
  • Numerous GUI improvements
  • Custom forms (GUI)
  • Quasi-fulltext search (GUI)
  • Shopping cart and role catalog improvements (GUI)
  • Significantly improved Powershell support (connector)
  • New CSV connector (connector)
  • Manual connectors by ITSM integration (connector)

Release 3.5.1 (Einstein Update 1)

Release date: 09 April 2017
Focus: bugfixing and minor improvements
Release notes: Release 3.5.1

The Einstein update brings number of smaller improvements, fixes and stability enhancements.

  • Specification of mapping domain and range
  • Easy customization of basic look and feel
  • CredSSP and Exchange PowerShell support in AD/LDAP connector.
  • Minor improvements and bugfixes

Release 3.C (Cimrman)

Release date: 01 April 2017
Focus: revolutionary features that support the Internet of People (IoP) concepts in the home environment
Release notes: Release 3.C

The Cimrman release brings revolutionary features that support the Internet of People (IoP) concepts in the home environment.

  • Change of versioning scheme.
  • Change of color scheme.
  • Pre-configured objects and roles to support the IoP concept in home environment.

Release 3.5 (Einstein)

Release date: 21 December 2016
Focus: governance features, self-registration, JSON/YAML
Release notes: Release 3.5

The Einstein release brings lots of features related to identity governance, self-registration and support for JSON/YAML.

  • Role catalog (governance)
  • Role request based on shopping cart (governance)
  • Deputy (governance)
  • Role lifecycle (governance)
  • Object history (governance)
  • Self-registration and email-based password reset
  • Support for JSON and YAML data representation

Java 7 support is no longer supported.

Release 3.4.1 (Heisenberg Update 1)

Release date: 13 September 2016
Focus: AD powershell support, minor features, bugfixes
Release notes: Release 3.4.1

The Heisenberg update brings a number of fixes and minor improvements.

  • Powershell (WinRM) support in AD/LDAP connector
  • Object templates can be specified for user, role, org and service subtypes.
  • Dynamic resolution of targetRef in assignment/inducement
  • Password history
  • Support for expression tracing for any individual expression

Java 7 support is deprecated.

Release 3.4 (Heisenberg)

Release date: 24 June 2016
Focus: governance (access certification), major GUI improvements and customization improvements
Release notes: Release 3.4

The Heisenberg release brings identity governance features and significant user interface improvements. MidPoint 3.4 is one of the major milestones in midPoint project history.

  • Access certification (production quality)
  • Major GUI improvements
  • Support for overlay projects and deep customization
  • Service objects
  • Matching rules improvements
  • Full support for Java 8

Release 3.3.1 (Lincoln Update 1)

Release date: 07 April 2015
Focus: AD over LDAP support, multi-domain AD support, minor improvements
Release notes: Release 3.3.1

The Lincoln update brings major GUI look&feel improvements and miscellaneous new features that improve practical usability of midPoint.

  • AD over LDAP connector in production quality
  • Multi-domain AD support
  • Support for volatile resource attributes
  • Several matching rule improvements
  • Expression improvements

Release 3.3 (Lincoln)

Release date: 01 December 2015
Focus: GUI look and feel, self-service, practical usability
Release notes: Release 3.3

The Lincoln release brings major GUI look&feel improvements and miscellaneous new features that improve practical usability of midPoint.

  • Significant GUI look & feel improvements
  • New self-service GUI pages
  • Sequences
  • LDAP-based connector for Active Directory (experimental)
  • Displaying role members on role details page
  • Expanded audit record table and reports
  • Improved localization
  • Numerous practical improvements in many components

Release 3.2 (Tycho)

Release date: 05 August 2015
Focus: new advanced LDAP connector, internal improvements and governance technology preview
Release notes: Release 3.2

The Tycho release brings new advanced LDAP connector, internal improvements and governance technology preview.

  • Password recovery (security questions)
  • Access certification (technology preview)
  • Reworked LDAP connector
  • Provisioning enhancements (auxiliary object classes, native attribute names, etc.)
  • Asynchronous bulk delete task
  • Auditing improvements
  • User interface improvements

Release 3.1.1 (Sinan Update 1)

Release date: 24 April 2015
Focus: Lookup tables, user interface improvements, quality improvements
Release notes: Release 3.1.1

The Sinan update brings new usability features and significantly improved user interface. It also improves performance, diagnostics and overall product quality.

  • Python scripting
  • Support for enumerated property values
  • Support for value lookup tables
  • Role assignment constraints: minimum and maxim role assignees
  • Validation plug-in
  • Schema refinement by using object template
  • User interface improvements

Release 3.1 (Sinan)

Release date: 02 February 2015
Focus: resource wizard, usability features, GUI improvements, performance improvements, diagnostics and overall product quality
Release notes: Release 3.1

The Sinan release brings new usability features and significantly improved user interface. It also improves performance, diagnostics and overall product quality.

  • Resource wizard
  • Improved role and organization user interface
  • Improved entitlement GUI
  • Notification support for roles and organizations
  • Conditional roles and assignments/inducements
  • Significant performance improvement

Release 3.0 (Newton)

Release date: 01 June 2014
Focus: generic synchronization, entitlements, authorizations, GUI design, cleanup
Release notes: Release 3.0

The Newton release brings new major features such as entitlements, delegated administration, generic synchronization and RESTful interface.

  • Generic Synchronization
  • Entitlements
  • Improved GUI look & feel
  • Fine-grained authorizations, delegated administration
  • REST API
  • Internal cleanups (data parsing, schema, etc.)

MidPoint 3.0 is a turning point. It starts a new age in midPoint development. The "Newton" as we call it is introducing features that are quite unique in the identity management field. It goes beyond traditional identity management. This midPoint version joins together provisioning-based identity management (IDM), privileged identity management (PIM) and organizational structure management into a single, unified model. MidPoint development is no longer trying to match the competition. MidPoint versions from the age of enlightenment are leading the way to discoveries.

Release 2.2.1 (Crius Update 1)

Release date: 28 January 2014
Focus: quality and stability improvements, minor features
Release notes: Release 2.2.1

Crius update 1 has brought mostly bugfixes, quality and stability improvements.

Release 2.2 (Crius)

Release date: 01 September 2013
Focus: workflow, GUI authorizations, rename, activation, inducement, metadata
Release notes: Release 2.2

Crius has brought new features.

  • Change to Apache License version 2.0
  • Workflow integration
  • Authorizations in GUI
  • Numerous activation enhancements
  • Expressions, mapping and RBAC enhancements
  • Matching rules
  • Major conceptual generalizations
  • Object template improvements
  • Enhancement of assignment enforcement modes
  • Improved resource dependencies
  • Improved synchronization
  • Performance and scalability improvements

Release 2.1.1 (Coeus Update 1)

Release date: 04 March 2013
Focus: quality and stability improvements, minor features
Release notes: Release 2.1.1

Coeus update 1 has brought mostly bugfixes, quality and stability improvements.

Release 2.1 (Coeus)

Release date: 10 December 2012
Focus: attribute mapping, password policies, provisioning dependencies and robustness features, organizational structure
Release notes: Release 2.1

Coeus has brought new features.

  • Password policies
  • Auditing to SQL tables
  • Provisioning dependencies
  • Provisioning consistency
  • Remote connector discovery
  • Improved attribute mappings and expressions
  • Experimental workflow integration
  • Organizational structure
  • GUI improvements
  • Rule-based RBAC (RB-RBAC) ability by using conditional mappings in user template
  • Experimental JasperReports integration

Release 2.0 (Rhea)

Release date: 20 June 2012
Focus: RDB repository, new GUI, scripting, schema stabilization, production quality
Release notes: Release 2.0

Rhea has brought production-quality to midPoint and also new features.

  • Identity repository in the relational database
  • Improved administration GUI
  • Groovy Expressions
  • ECMAScript (JavaScript) expressions
  • Protected Accounts
  • Basic Segregation of Duties (SoD): Role exclusions
  • Underlying platform based entirely on Prism Objects
  • Schema stabilization, move to "version 2" schemas, backward compatibility of the schema
  • PolyString support allows automatic conversion of strings in national alphabets
  • Custom schema extensibility
  • API cleanup
  • Further testing and codebase stabilization
  • Provisioning robustness and simple provisioning failures handling
  • Enterprise class scalability (hundreds of thousands of users)

Release 1.10 (Phoebe)

Release date: 07 February 2012
Focus: advanced RBAC, auditing, switch to pure relative changes, reconciliation
Release notes: Release 1.10

Phoebe has improved many issues of the previous versions and introduced preview of new features.

  • Relative changes: Provisioning model is fully based on relative changes (see Relativity)
  • Advanced RBAC: midPoint supports advanced and dynamic Role-based access control (RBAC) mechanism (see Advanced Hybrid RBAC). Expressions in the roles, hierarchical roles, parametric roles (including ability to assign the same role several times with different parameters).
  • Reconciliation: scheduled task to compare actual and desired state of the accounts
  • Basic auditing: auditing implementation allow auditing changes to a (log) file
  • Testing and stabilization: Further testing and codebase stabilization

Release 1.9 (Cronus)

Release date: 25 October 2011
Focus: product stabilization, basic password management, basic role management, clean up leftovers
Release notes: Release 1.9

Cronus has improved many issues of the previous versions and introduced preview of new features.

  • Basic Role-Based Access Control (RBAC): Support for roles, account construction defined by the roles and simple role hierarchy. Beta quality.
  • Assignment: The concept of assignment, differentiation of what user should have and what he has. Beta quality.
  • Resource schema enhancements automatic resource schema generation, schema handling improvements, etc.
  • User activation/deactivation: disable user, enable user
  • Fix password management: Password management in previous versions was kind of a hack. Make a systemic solution.
  • Leftovers and minor improvements delete user reaction, import processes reliability, provisioning scripts
  • Improved testing: Add more automated tests: unit and selenium tests. Create system testing framework.
  • Troubleshooting: Object validation, logging improvement, better error messages

Release 1.8 (Hyperion)

Release date: 05 August 2011
Focus: code cleanup, gradual rework of vital system components, user interface usability improvement
Release notes: Release 1.8

Hyperion is built up on the previous Prometheus release. The code cleanup continued. There were large reworks in components that were no longer maintainable.

  • Provisioning refactoring. The legacy OpenIDMv1 provisioning code was dropped and re-created using a cleaner code structure.
  • New Unified Connector Framework (UCF) interface was introduced. This partially works around known problems of ICF. It is also a first step in ICF evolution.
  • IDM Model refactoring. Better expression handling and restructured the code for better maintainability.
  • XML repository. New repository implementation based on BaseX XML database engine.
  • Relational database repository is no longer maintained (reimplementation is planned in later releases).
  • Java interfaces. The WSDL-based interface definitions were switched to native Java interfaces (except for IDM Model web service)
  • Basic task manager. Basic architectural changes to support asynchronous tasks and multi-node operation are in place.
  • Logging improvements. Logging configuration is persistent and better supports troubleshooting of IDM deployments, including dynamic developer-grade logging.
  • Error reporting improvements. Errors are propagated all the way to the GUI with a reasonable (and nested) error messages.
  • Automatic initialization. Initial repository content is loaded on first start of the system.
  • Substantial testing improvement. Lots of new unit tests, integration tests and introduced sanity test. Selenium-based test framework with increasing number of automated test cases.

Release 1.7 (Prometheus)

Release date: 18 May 2011
Focus: code restructuring, removing dead meat, get development back in shape
Release notes: Release 1.7

As the very first step midPoint code was made significantly "lighter", removing some of the "dead meat" that accumulated over the year of hectic OpenIDM development. The code was also stabilized, the tests were fixed and the complete development process was brought back to a reasonable shape.

  • Removed OpenESB: OpenESB is a dead project and the hope of reviving it is very low. OpenESB was slowing down OpenIDM development from the very beginning. This does not mean that midPoint cannot be used in "ESB" environment. Just the approach was changed to decouple these technologies. midPoint is provided in a form of simple Java web application (WAR) based on Spring.
  • Removed Glassfish dependency: midPoint is no longer dependent on a specific application server. The primary development and testing platform is now Apache Tomcat.
  • Simplified build: The build system was completely revamped. The new build system is much simpler and based on a "pure" maven without any hacks.
  • Fixing unit tests: The unit tests were reviewed, deprecated unit tests were removed and the tests that are still needed were fixed. The tests would deserve better cleanup, but they are all passing now. And that is how it shall remain from this point on.
  • Architecture update: New wiki was created with an up-to-date information on current midPoint implementation and also the design. The UML models were updated as well, removing unnecessary components exactly as it happened in the code.

MidPoint release 1.7 roughly corresponds to the features planned for OpenIDM snapshot 1.7. The state of release of 1.7 is technology preview. It is not intended for production use.

Project Start

MidPoint project started in April 2011 by several key people that were working on the OpenIDM project. Initial midPoint release was based on the unreleased version 1.7 of OpenIDM. There were several reasons for splitting up with OpenIDM:

  • The publicly visible development effort of OpenIDM by the ForgeRock team efficiently ceased in February 2011. ForgeRock haven't publicly announced any updated plan for OpenIDM.
  • The part of the team that was led by nLight had done most of the design and development work to date. That part of the team had a differing view on further development of OpenIDM than the ForgeRock team had. ForgeRock decided to take a development path different from the one that was originally envisioned for OpenIDM.
  • The "nLight part" of the team was confident that the original design needed just few adjustments and most of these adjustments were expected and accounted for in the design. Therefore it was decided that the existing OpenIDM code should not be wasted and the development should continue in the original spirit.

The people from nLight and few other companies joined forces and established a new company: Evolveum. The Evolveum mission is to lead a pragmatic development of professional open-source projects. Short-term goal is to carry on the development of OpenIDM following the original approach. Product name was changed to midPoint. The members of Evolveum team are original authors of significant part of the code base, therefore it was decided to start a completely new project using the code that the Evolveum team "owns" and, in an open-source spirit, reuse some of the other parts of the OpenIDM code base.

ForgeRock announced plans for further OpenIDM development in June 2011. It was obvious that the two development branches are following very different approach:

  • The OpenIDM v2 development led by ForgeRock took an approach of a total rewrite of the complete system. OpenIDMv2 is based on popular but unproven and immature technologies.
  • The midPoint development led by Evolveum took an approach of gradual improvement. MidPoint is based on stable, proven and well understood technologies.

First ten midPoint releases were named after Titans from the greek mythology. It begins with Prometheus who brought fire to the men and continues with other Titans. This naming convention describes the overall motive of the era very well. There midPoint releases provided features that a traditional user provisioning system should have. The goal was to build a solid foundation and feature base. The goal was to bring a new project to the state where it can technologically match the competition.

There was always innovation in midPoint, even in this era. But it was mostly hidden inside. MidPoint versions from the era of the Titans feels and looks like an traditional identity management system.