2022.1.2 Minor Releases

Each update is cumulative and includes all updates provided in earlier 2022.1.2 updates. 

Minor Releases:

2022.1.2.10

April 12, 2024

Some logging details have been encrypted for security reasons

For "trace" logging or errors that may occur between the Network Director and Policy Manager, logging entries have been encrypted that might pose a security risk, including all sensitive information.

Prior to this update, the entire request and response XML were printed with and without encryption when the log level was "trace" or when an error was thrown.

Case number: No related case number

Support added for IAM authentication

Akana adds support for using AWS Identity and Access Management (IAM) authentication tokens when accessing Amazon RDS (Relational Database Service) instances. When the IAM feature is enabled on the Amazon RDS instance, Akana communicates with the RDS instance using the IAM token instead of traditional database credentials. Akana has certified this feature with MySQL and Aurora MySQL-compatible databases.

Case number: 01049614

2022.1.2.9

February 26, 2024

New config property controls the frequency of resource caching

Automatic resource caching (resources being all static and other resources in a container, including users, groups, APIs, apps, board items, etc.) can now be configured to avoid circumstances in which a very large cache can result in poor performance while refreshing.

Use the new Admin console property atmosphere.config.staticVisibilityRelationshipCacheInDays within the com.soa.atmosphere configuration to set both the number of previous days to refresh and the frequency of the job.

Case number: No related case number

Standard and non-standard error codes are now available in analytics logs

The analytics logs filter "Status Code" included only standard error codes. Now, non-standard error codes have been added for cases in which other error codes are used; for example, 555, 556, and 557 are now available in the filter.

Case number: 01062506

Basic Auditing Policy did not correctly display in the Developer Portal

The Basic Auditing Policy did not properly display "Verb" and "Status" as well as "partial request" and "partial response."

Case number: 00969635

OpenID Connect Relying Party Domain allows additional parameters

The OpenID Connect Relying Party Domain now allows the option to configure additional parameters and to send them in the /api/login/ssoLogin call.

In addition, using Oracle Access Manager as the OIDC domain for single signon is now supported. For detail, see “OpenID Connect Support” on the Akana documentation website.

Case number: 01002120

Using Okta as an external OAuth provider could produce a general system error

When using Okta as an external OAuth provider, the "audience" field was not being passed properly, resulting in a general system error.

Case number: 00991749

Header parameters can now be added to the Test Client security settings

When configuring the Test Client with security settings, one or more header parameters can now be added, both for internal and external OAuth providers.

Case number: 00678067

Support added for Oracle 23c, with some limitations

The Akana platform has added certification for Oracle 23c.

Due to some limitations with Oracle 23c, however, it is not yet certified with Lifecycle Coordinator, Lifecycle Manager, and Lifecycle Repository, which includes Promotions and Custom Properties.

Case number: No related case number

Logs display repeatedly returned to the top

In the Community Manager developer portal, the display of an API's logs would repeatedly return to the top of the screen when viewing a log's expanded detail.

Case number: 01057294

My Apps page did not update APIs connected count after deleting an API

In the Community Manager Developer Portal, deleting an API did not correctly decrement the number of apps displayed under "APIs Connected" on the My Apps page.

Case number: No related case number

Shared secret with special characters could be unreadable

When creating a shared secret for an app in the Community Manager portal, the secret could be saved in an unreadable format if it contained special characters.

Case number: 00900221

HTTP Message Validation policy could trigger an error given certain conditions

When configured with the "Fail Early" setting, the HTTP Message Validation policy failed to validate the message value against oneOf, allOf, or anyOf subschemas.

Case number: 01022402

After upgrade, SQL queries could result in long delays

After upgrading to 2022.1.2, some SQL queries could take more than 30 seconds during the provisioning part of installation.

Case number: 01031006

Exporting a large volume of services could fail when using Oracle

In Community Manager, exporting organizational data could fail for organizations with more than 1,000 APIs or Apps when using Oracle.

Case number: 00904852

Database connection leaks for Policy Manager could occur in certain conditions

The number of active database connections were increasing in certain environments, causing the connection pool to get exhausted at times.

Case number: 00803115

2022.1.2.8

December 5, 2023

Concurrency Quota Policy cannot recover from validation failure when combined with another policy

When using the Concurrency Quota Policy with any other policy that validates a response, a validation failure resulted in an unrecoverable state.

Case number: 00987844

Updating the context path no longer automatically updates the WSDL port name if the port name already exists

When updating the context path of an API, the Developer Portal automatically updates the WSDL port name for that API. If an application has already set the WSDL port name, this automatic update could change the port name and therefore result in a failure to consume the API. Now, the portal checks if a WSDL port name already exists; if so, it is not updated.

Case number: 00947521

Combining some policies and configurations could fail to log the response body

When configuring the Detailed Auditing Policy for failure and the Basic Auditing Policy for success, and then sending the request for any API, the response body was logged on successful transactions.

Case number: 01024495

SOAP services returned a 404 error when "Bind to all interfaces" was not selected

SOAP services returned an HTTP 404 error "File not found" when "Bind to all interfaces" was not selected on API Gateway listeners. Now, a SOAP service works even when unchecking "Bind to all interfaces."

Case number: No related case number

2022.1.2.7

November 1, 2023

Note: These fixes have also been provided with 2022.1.2.3

Network Director unresponsive after addition of new certificates

When new certificates were added to Policy Manager, Network Director could become unresponsive, resulting in the failure of some requests.

Case number: 00831818

Revoking an existing OAuth grant could return an error

Calling the API Revoke Token to revoke an existing OAuth token could return an error if the "Encrypt JWT Access Token" option under Akana OAuth/OIDC Provider settings was enabled.

Case number: 00925204

2022.1.2.6

June 30, 2023

New index fields added to Log4j 2.x Elasticsearch

The following index fields have been added to Log4j 2.x Elasticsearch appender:

  • alertCode
  • enclosedExceptions
  • eventId
  • tenant

Case number: No related case number

Support ticket: No related support tickets.

OAuth provider access token could fail when using HSM

When configuring a signing key using HSM (hardware security module) as an external keystore, generation of the OAuth provider access token could fail in some situations.

Case number: 00921624

Support ticket: No related support tickets.

2022.1.2.5

June 8, 2023

Using an external keystore with alias could still require a password in the UI

Note: This issue also shipped with 2022.1.3.

When signing in using an external keystore and an alias, the UI incorrectly required a password, causing the login to fail.

Case number: No related case number

2022.1.2.4

May 31, 2023

When using an external keystore, entering an alias name for a PKI key could fail

When the environment was configured to use an external keystore, assigning a user alias in the Manage PKI Keys Wizard could fail.

Case number: No related case number

Support ticket: No related support tickets.

2022.1.2.3

May 19, 2023

Custom JOSE profile policy could not find private key

A custom JOSE Profile-Driven Security policy could fail to find a private key to decrypt a request when using this type of configuration:

  <amz:jwsSource getPrivateKeyViaCert="true">
    <amz:fromJwkSet
      filterByUse="true"
      jwksUrl="${jwks.url}"
      selectNewest="true" />
  </amz:jwsSource>

Case number: 00902251

Support ticket: No related support tickets.

2022.1.2.2

May 5, 2023

Editing an API created in Policy Manager could return an error in Community Manager

Editing an API in Community Manager that was based on a service created in Policy Manager could return an error "General system error. Contact system administrator."

Case number: 00902274

Support ticket: No related support tickets.

2022.1.2.1

May 9, 2023

Assigning keys to a container using an external keystore could fail

When using an external keystore, such as Entrust HSM, a validation error could be returned regarding public certificates.

Case number: No related case number

Support ticket: No related support tickets.