The release 1.6.1  was published on 11.07.2015


Read documentation of 1.6.1 release:


There are two distribution formats:

  • tar.gz bundle which can be unpacked and this way installed in a single directory,
  • rpm which can be installed system-wide in the Linux standard locations.

The rpm is build and tested on Centos 6, noarch. It should work flawlessly also on SL6 and recent Fedora distributions. We may build packages for other distributions in future, however the tar.gz format should be fully portable. Java 8 JRE is the primary installation prerequisite. For more detailed installation information please check the Unity manual.


The highlights of 1.6.0 release are:

  • Unity appearance and its control was generally improved.
    • First of all Unity interfaces use now a new, modern theme, based on Vaadin’s Valo theme.
    • The login screen was fully reorganized to be more user friendly and flexible.  It is possible to organize authentication options into logical groups (called ’tiles’), regardless of underlying authentication protocol. It is also possible two use different types of presentation of authentication options: either by showing all at once or in a lazy loaded table more suitable in case of many possibilities.
    • Style modifications are possible now (using SASS compiled to CSS). What is more each and every web endpoint can have a different styling. All default images can be replaced.
    • Finally the JavaScript size was reduced to improve loading time of the initial web page and Unity’s web server compresses the largest files to improve the loading speed even more.
  • Merging of accounts (entities) is possible now, in a number of variants:
    • Administrator can merge two existing entities by attaching one to another. Some of the settings of the entity being merged into can be lost during this operation.
    • Users can now link identities on their own, e.g. to be able to log into Unity and its dependant services with different external accounts. This operation can be triggered from Home UI (to add another external identity) and during the first login with an unknown remote identity (as an alternative to register a new account). Both ways can be turned off by administrator.
  • Besides self-modifiable attributes it is possible now to use self-modifiable identities. Admin UI has now Identity types management tab, where such possibility can be activated. Home UI provides appropriate editing functionality. What is more it is possible to control minimum number of elements for identity types, e.g. to require at least 1 confirmed email identity.
  • There is also a range of smaller new features like enhanced REST API with write operations, possibility to control individual values of exposed SAML attributes on the consent screen or improved flexibility of output translation profiles.

Please note that this is the 1.6.x releases are the last supporting Java 7. From the 1.7.0 version Unity will require Java 8 to be started.

Make sure to read the detailed update instruction, which can be found in documentation before upgrading.

Big thanks to everybody involved in this release!


Bugs fixed:
  • 406 The confirmation UI broken
  • 415 Attribute statements flushed upon group update
  • 403 It is not possible to disable credential expiration
  • 407 Credential reset doesn’t work for the email identities
  • 408 Email identity is not used as contact email
  • 409 Should not be possible to re-registter with the existing identity
  • 410 Refresh button causes error when identities management is disabled for user’s account page.
  • 411 Do not show empty line with credentials on HomeUI
  • 412 Hide entity id in HomeUI
  • 413 Attribute classes UI shouldn’t scroll to bottom on load
  • 414 Update MVEL documentation links
  • 418 Flickering popup animation
  • 419 Group rename should not be possible
  • 421 Fix doc and UI of registration form condition
  • 422 Remotely obtained identity and attribute metadata is lost when processed via registration form
  • 423 Creation of identities via REST ignores identity metadata
  • 427 Registration requests cannot be deleted
New features:
  • 417 Variable in output profile with id of IdP used for authN
  • 420 Implement scheduled entity operations in the REST API
Bugs fixed:
  • Very long DNs cause persistence layer error
  • Attribute types are not updated correctly: displayed name is not properly set
  • Mandatory attributes in registration request can not be removed by admin
  • NPE after submit registration request with empty optional param
  • Libraries are not loaded if lib folder is a symlink
  • OAuth endpoint does not handle some errors correctly
  • SAML IdP config allows for both DN and entity defined per trusted SP
  • Attribute type created without displayed name set has no default displayed name value
  • Translation profile wizard fails with exception when there is no remote authenticator defined
  • Unknown, complex SAML attribute value types are causing NPE
  • Attribute types withimmutable type but mutable values should have their displayed name and description editable
  • Improved initialization of the admin user is not reporting the name of the created credential
  • Error in user registration
  • SAML IdPs without name set should have the entity’s organization name
  • Translation profile syntax is not checked on the spot
  • Consent skipping feature is always using SAML preferences, even for the UNICORE endpoints
  • SAML preferences not working for the SOAP endpoint
  • Some aposthropes are displayed as ”
New features:
  • Introduce simplified authentication UI layout
  • Better Look and Feel
  • Customizable branding
  • Improve loading time of authnUI and consent screens
  • Design account association feature
  • Engine operation to merge a non-existing identity with an existing one
  • Engine operation to merge two existing entitites, solving conflicts
  • Provide an interface for the existing entities merge in Admin UI
  • Provide a web interface for a new account association with existing one – activated during login
  • Provide a web interface for a new account association with existing one – activated from HomeUI
  • Identity types management
  • Self managed identities
  • Possibility to hide selected values of SAML attributes
  • Support loading jar files from additional directories
  • Enhance the REST API with fundamental write ops
  • Authenticators reloading during startup
  • hidden-from-discovery metadata extension support for SAMl federations
  • Add info about configuring SAML IdP with metadata to SAML howto
  • Email identities should have a flag to mark as a contact email
  • Retrieve authenticated identity in output translation profile
  • Add action to conditionally break authentication in output profile
  • Mitre expiry date format change
  • Ensure that too many confirmations are not sent to a particular address


Here you can download previous versions from the series and read their documentation: