Skip to content

Deploy RC 295#8746

Closed
zachmargolis wants to merge 19 commits intostages/prodfrom
stages/rc-2023-08-11
Closed

Deploy RC 295#8746
zachmargolis wants to merge 19 commits intostages/prodfrom
stages/rc-2023-08-11

Conversation

@zachmargolis
Copy link
Contributor

@zachmargolis zachmargolis commented Jul 10, 2023
edited
Loading

User-Facing Improvements

  • Error screens: Removed pathway and error page for stand alone error messaging (#8716)
  • Identity Verification: Process form submission on final attempt before rate limiting (#8727)
  • Success Banners: Idv success (#8735)
  • Suspension: Add email send on create account (#8725)
  • Passwords: Improve messaging when user enters a forbidden password (#8726)
  • Copy changes: Change Update CTA in Spanish (#8733)

Bug Fixes

  • Session Timeout: Fix appearance of session timeout modal (#8743)

Internal

  • Analytics: Add mfa_created_at to Multi-Factor Authentication event (#8718)
  • IALMAX: Create allowlist of service providers in the application config that can utilize the IALMax flow (#8700)
  • Identity verification: Remove unsupervised proofing flow state machine controller (#8705)
  • In-Person Proofing: Log the presence of address line 2 when enrolling in IPP (#8731)
  • In-Person proofing: Send only address line 1 to USPS when creating an enrollment (#8734)
  • In-Person proofing: Refresh USPS token in job (#8721)
  • Maintenance: SMS/Voice notification. (#8730)
  • Source code: Make HTML escaping in translations consistent (#8713)

Upcoming Features

  • Face or Touch Unlock: Fix redirect for cancelled sign-in (#8738)
  • Face or Touch Unlock: Remove requirement for available platform authenticator during authentication (#8723)

zachmargolis and others added 19 commits July 6, 2023 11:05
@zachmargolis
Lint _html keys in YML files (#8713)
6c75bb9 
* Add lint to standardize i18n keys named with HTML
* Makes sure they actually contain HTML
* Update HTML check to check across all locales, so that only one
string needs the _html

changelog: Internal, Source code, Make HTML escaping in translations consistent
@Sgtpluck @zachmargolis
LG-9958 add allow list for IALMAX (#8700)
a737777 
Changelog: Internal, IALMAX, Create allowlist of service providers in the application config that can utilize the IALMax flow

Co-authored-by: Zach Margolis <zachmargolis@users.noreply.github.com>
@soniaconnolly
LG-9939 Final doc_auth_controller removal (#8705)
0435778 
* Remove DocAuthController, spec, and routes

changelog: Internal, Identity verification, remove unsupervised proofing flow state machine controller

* Remove unneeded /doc_auth from link_sent polling route

* Add back deprecated route without alias for 50/50 state

* Add legacy redirect for /doc_auth/:step routes
@soniaconnolly @matthinz
Make /verify/doc_auth/:step redirect to /verify/welcome (#8729)
bcec644 
The previously added legacy route left the user on /verify/doc_auth/welcome
which would give them a 404 when they click Continue.

[skip changelog]

Co-authored-by: Matt Hinz <matt.hinz@gsa.gov>
@jmdembe
LG-9657: Improve messaging for forbidden password feedback (#8726)
402aaa6 
* move string to error config

* WIP: suggestion for forbidden password

* use includes instead of indexof

* add test for password strength, cleanup

* changelog: User-facing improvements, password, improve messaging when user enters a forbidden password

* Address PR comment: typescript declaration
@kevinsmaster5
LG 8622 Removes stand alone error page for F/T Unlock (only WebAuthn …
7d85822 
…Method) (#8716)

* changelog: User-Facing Improvements, Error screens, Removed pathway and error page for stand alone error messaging

* remove unneeded context block

* flatten context out defining multiple MFA'

* remove unused i18n keys from yml files

* undelete error view and the related locale phrases. add to error method in the controller the redirect to please try again view

* fix lint errors

* change passed parameter to string

* revert error method to remove unneeded redirect

* tidy up line break
@ThatSpaceGuy
LG-10214 Suspended User Create Account Flow (#8725)
3f9dd59 
* LG-10214 Suspended User Create Account Flow

changelog: User-Facing Improvements, Suspension, Add email send on create account
@jc-gsa
LG-9984: Add mfa_created_at to analytics (#8718)
73c598b 
Add mfa_created_at to Multi-Factor Authentication event

changelog: Internal, Analytics, Add mfa_created_at to Multi-Factor Authentication event
@night-jellyfish @zachmargolis
LG-9433: Create USPS auth token refresh job (#8721)
abb03e5 
changelog: Internal, In-person proofing, Refresh USPS token in job

[LG-9433](https://cm-jira.usa.gov/browse/LG-9433)

Right now, the responsibility for renewing the authentication token lies
with the methods calling out to the USPS API for any reason. This can
delay requests to, for example, search for nearby post offices, as they
have to first do the authentication and then do the work.

Creating a USPS authentication token refresh job takes the
responsibility away from the other calls to the API. They still have the
logic and ability to do so as a failsafe in case all the refresh jobs
fail, but if the jobs are working properly they should never need to
make the call.

We also added a stubbed method for testing errored requests.

Tested in the Joy Sandbox and locally successfully.

Co-authored-by: Zach Margolis <zachmargolis@users.noreply.github.com>
LG-10195: Log presence of address line 2 when enrolling a user in in-…
8139bcd 
…person proofing (#8731)

* log presence of address line 2 on enroll

changelog: Internal, In-Person Proofing, Log the presence of address line 2 when enrolling in IPP
LG-10103: Send only address line 1 to USPS when creating an enrollment (
fa47ef8 
#8734)

* send only address line 1 to USPS

changelog: Internal, In-person proofing, Send only address line 1 to USPS when creating an enrollment
LG-10154 letter on the way screen (#8735)
b6feab8 
* Set banner text conditionally

changelog: User-Facing Improvements, Success Banners, Idv success

* Add success message for resend

* Add translations

* Extend existing verify by mail spec to check success banner

* Test success banner on resend

* Shorten line

* Remove typo
@aduth
LG-10177: Always show Face / Touch Unlock in list of configured MFAs (#…
cf4faa5 
…8723)

* Remove redirect from WebAuthn authenticate

changelog: Upcoming Features, Face or Touch Unlock, Remove requirement for available platform authenticator during authentication

* Remove platform available check from webauthn input unhide

* Create show.html.erb_spec.rb

* Reshuffle specs for webauthn visibility

* Enable platform auth setup in test
@amirbey
LG-9335 - post release 50 50 cleanup (#8719)
01eb5d2 
* remove flow_session flow_path preserved for 50/50 state continuity

* [skip changelog]

* remove remaining flow_path[:flow_session]

* remove comment
@gina-yamada
Modified CTA Update button for Spanish (#8733)
9c54a1e 
* Modifiied CAT Update button for Spanish

* changelog: User-Facing Improvements, update cta text, change Update CTA in Spanish
@aduth
LG-10290: Fix F/T unlock cancel sign-in redirect (#8738)
a1fcfbf 
* LG-10290: Fix F/T unlock cancel sign-in redirect

changelog: Upcoming Features, Face or Touch Unlock, Fix redirect for cancelled sign-in

* Remove unused ID reference
@amirbey
LG-10205: Don't rate limit users on their last attempt (#8727)
f14b065 
* check throttled before increment for gpo

* rate limit gpo immediately

* happy linting

* happy linting

* processes hybrid_handoff send link request for max attempts

* happy linting

* changelog: Identity Verification: Process form submission on final attempt before rate limiting

* changelog: User-Facing Improvements, Identity Verification, Process form submission on final attempt before rate limiting

* update failed attempts count based on max attempts

* rename context for gpo verificaiton rate limited tests
@dawei-nava
LG-10124: implementation of notification sender. (#8730)
0d55b58 
* LG-10124: implementation of notification sender.

changelog: Internal, Maintenance, SMS/Voice notification.

* LG-10124: refactor based on jira card update.

* LG-10124: remove subclassing, since we are ok with code duplications.

* LG-10124: alias method.

* LG-10124: cleanup
@aduth
Fix session timeout modal styles (#8743)
a58a8d7 
changelog: Bug Fixes, Session Timeout, Fix appearance of session timeout modal
@aduth
Copy link
Contributor

aduth commented Jul 10, 2023

If it can be corrected, the branch name should be 07 for the month, not 08.

aduth
aduth approved these changes Jul 10, 2023
View reviewed changes
Copy link
Contributor

@aduth aduth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

@zachmargolis
Copy link
Contributor Author

zachmargolis commented Jul 10, 2023

If it can be corrected, the branch name should be 07 for the month, not 08.

🤦 not without closing this PR... I'll do that

@zachmargolis zachmargolis deleted the stages/rc-2023-08-11 branch July 10, 2023 20:18
@zachmargolis zachmargolis mentioned this pull request Jul 10, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@aduth aduth aduth approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.