Skip to content

RC 112
Compare
Choose a tag to compare
@zachmargolis zachmargolis released this 18 Jun 16:34
2020-06-18T163206
This tag was signed with the committer’s verified signature.
zachmargolis Zach Margolis
GPG key ID: 6EBD53C298BE7E5B
Learn about vigilant mode.
1f43945
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

RC 112

Improvements/Changes

  • The content on our "delete your account" screens is clearer and easier to follow. See screenshots, below (#3780)

Delete your account 1
Delete your account 2
Delete your account 3

Accessibility

  • Decorative images are hidden from screen readers to prevent confusion and redundancy for
    users. This is an accessibility best practice we're excited to incorporate. (#3824)
  • Show/hide buttons create bugs for some users. The QR code is now always visible on the "add authenticator app" page and the alt text was updated. (#3843, #3844)

Bug Fixes Users Might Notice

  • IAL2: Users can re-verify to take a selfie when visiting a SP. Previously we would just pass a user
    without a selfie to the service provider. (#3804)
  • Unconfirmed email addresses: Users who don't confirm an email address, can re-add the email at a later time. (Also released as patch release in RC 111.1 #3821)
  • Copy changes to make sure our language is clear and concise. Examples include updates to the "re-enter your password" screen (#3818) (#3818) and PIV/CAC copy (#3827).
  • Liveness: Fixed the handoff between a computer and mobile (#3834) as well as a loading issue with the selfie page. (#3836)
  • Fixed a bug in the HTML of the "how you know this is a government website" banner at top of home page

Behind-the-Scenes Changes Users Might Not Notice

  • Updated vulnerable code libraries (#3796)

  • Support for multi-region KMS, allows us to keep login.gov up and working with encrypted data if one Amazon Web Services region goes down (#3812, #3816)

  • Fix tests to use separate Chrome driver which fixes unreliable behavior in our test suite (#3826) Removed unused ID scanning code (#3825)

  • Update calls to AAMVA to check driver's license data to retry automatically on failure. This should reduce errors for users attempting to proof (#3831)

  • Fixed the returning of nonce values in OpenID Connect API when there are multiple login attempts (released as patch release RC 111.3) (#3832)

  • Allow service providers to request signing in with AAL3 level (requires a PIV/CAC or WebAuthn token) (#3835, #3840, #3839)

  • Clean up test logging output for parallel tests (#3841)

  • Store test service provider ID in a parallel-friendly way (#3842)

Assets 2
Loading