Web Agents

Known issues

Web Agent 2024.9

Issue Comment

AMAGENTS-6749: Agent local configuration files lost formatting

Unresolved

AMAGENTS-6729: Looping after Authentication in session quota mode with -25 / 403 errors

Unresolved

AMAGENTS-6727: WPA policy cache module creates empty policy json file

Unresolved

AMAGENTS-6363: Shared user profile attributes

Unresolved

AMAGENTS-6306: Infinite apache error log caused by pipe error

Unresolved

AMAGENTS-6279: X-frame option is not coming in response header for Application url when fragment redirect is enabled

Unresolved

AMAGENTS-6215: "Not Enforced Client IP List" abnormal

Unresolved

AMAGENTS-5958: Invalid error AMConfigurationException generated in the AM log

Unresolved

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice

Unresolved

AMAGENTS-5032: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

Web Agent 2024.6

Issue Comment

AMAGENTS-6628: Fragment replay is broken with custom login mode 2

Fixed in 2024.9, 2023.11.1

AMAGENTS-6527: WPA SSL_shutdown shutdown while in init errors in agent log

Fixed in 2024.9

AMAGENTS-6363: Shared user profile attributes

Unresolved

AMAGENTS-6306: Infinite apache error log caused by pipe error

Unresolved

AMAGENTS-6279: X-frame option is not coming in response header for Application url when fragment redirect is enabled

Unresolved

AMAGENTS-6215: "Not Enforced Client IP List" abnormal

Unresolved

AMAGENTS-5958: Invalid error AMConfigurationException generated in the AM log

Unresolved

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice

Unresolved

AMAGENTS-5032: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

Web Agent 2024.3

Issue Comment

AMAGENTS-6628: Fragment replay is broken with custom login mode 2

Fixed in 2024.9, 2023.11.1

AMAGENTS-6494: Agents local policy eval fails. Agent name and policy application name are switched

Fixed in 2024.6, 2023.11.1

AMAGENTS-6363:websites sharing a cache sometimes don’t get the expected headers set because of cache sharing issues in the agent

Unresolved

AMAGENTS-6306: infinite apache error log caused by pipe error

Unresolved

AMAGENTS-6289: AM_SYSTEM_LOG_FILES only works for debug.log

Fixed in 2024.6

AMAGENTS-5958: Invalid error AMConfigurationException generated in the AM log Logging error web-agent

Unresolved

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice.

Unresolved

AMAGENTS-5032: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

AMAGENTS-3663: Nginx Agent print absolute build path into debug logs

Fixed in 2024.6

AMAGENTS-2813: Agents Logout perform logout multiple times

Not a defect

AMAGENTS-2755: Currently when setting up the agent it’s necessary to have a client certificate file when using S Channel

Won’t do

Web Agent 2023.11

Issue Comment

AMAGENTS-6628: Fragment replay is broken with custom login mode 2

Fixed in 2024.9, 2023.11.1

AMAGENTS-6494: Agents local policy eval fails. Agent name and policy application name are switched

Fixed in 2024.6, 2023.11.1

AMAGENTS-6172: WPA for IIS doesn’t work when running in 32bit mode on 64bit Windows OS

Fixed in 2024.3

AMAGENTS-6046: convert_request_after_authn_post writes to /tmp instead of configured PDP directory

Fixed in 2024.3

AMAGENTS-5985: Interactive installation using existing agent configuration files duplicate properties which are commented out

Fixed in 2024.3

AMAGENTS-5983 Interactive installer refer to the legacy agent configuration file - OpenSSOAgentBootstrap.properties

Fixed in 2024.3

AMAGENTS-5958: Invalid error AMConfigurationException generated in the log

Unresolved

AMAGENTS-5777: IIS web agent zip file includes 32bit DLL

Won’t do

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice.

Unresolved

AMAGENTS-5032: WPA: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

AMAGENTS-4590: login-fragment-relay page should have charset specified.

Fixed in 2024.3

AMAGENTS-3992: WPA: com.forgerock.agents.config.hostmap does not seem to use the IP address

Fixed in 2024.3

AMAGENTS-3663: Nginx Agent print absolute build path into debug logs

Fixed in 2024.6

AMAGENTS-3506: If there are permissions issues with password file with installation on IIS then the log messages are not helpful

Fixed in 2024.3

AMAGENTS-2813: Agents Logout perform logout multiple times

Unresolved

AMAGENTS-2755: Currently when setting up the agent it is necessary to have a client certificate file when using S Channel

Unresolved

Web Agent 2023.9

Issue Comment

AMAGENTS-6494: Agents local policy eval fails. Agent name and policy application name are switched

Fixed in 2024.6, 2023.11.1

AMAGENTS-6175: Memory leak in credentials_secure_free

Fixed in 2023.11

AMAGENTS-6073: Idle timeout should not update on NEU with SSO Only, neu fetch and

Fixed in 2023.11

AMAGENTS-6046: convert_request_after_authn_post writes to /tmp instead of configured PDP directory

Fixed in 2024.3

AMAGENTS-5985: Interactive installation using existing agent configuration files duplicate properties which are commented out

Fixed in 2024.3

AMAGENTS-5958: Invalid error AMConfigurationException generated in the log

Unresolved

AMAGENTS-5777: IIS web agent zip file includes 32bit DLL

Unresolved

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice.

Unresolved

AMAGENTS-5594: Web agent will return 403 errors if OpenSSL libraries aren’t loaded.

Fixed in 2023.11

AMAGENTS-5032: WPA: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

AMAGENTS-4590: login-fragment-relay page should have charset specified.

Fixed in 2024.3

AMAGENTS-3992: WPA: com.forgerock.agents.config.hostmap does not seem to use the IP address

Fixed in 2024.3

AMAGENTS-3663: Nginx Agent print absolute build path into debug logs

Fixed in 2024.6

AMAGENTS-3506: If there are permissions issues with password file with installation on IIS then the log messages are not helpful

Fixed in 2024.3

AMAGENTS-2813: Agents Logout perform logout multiple times

Unresolved

AMAGENTS-2755: Currently when setting up the agent it is necessary to have a client certificate file when using S Channel

Unresolved

Web Agent 2023.6

Issue Comment

AMAGENTS-6494: Agents local policy eval fails. Agent name and policy application name are switched

Fixed in 2024.6, 2023.11.1

AMAGENTS-6175: Memory leak in credentials_secure_free

Fixed in 2023.11

AMAGENTS-6046: convert_request_after_authn_post writes to /tmp instead of configured PDP directory

Fixed in 2024.3

AMAGENTS-5995: Don’t extend user session for not enforced url with fetch attributes enabled

Fixed in 2023.9

AMAGENTS-5985: Interactive installation using existing agent configuration files duplicate properties which are commented out

Fixed in 2024.3

AMAGENTS-5833: WPA 403 error on /agent/cdsso-oauth2 with invalid jwt.aud.whitelist parameter value

Fixed in 2023.9

AMAGENTS-5777: IIS web agent zip file includes 32bit DLL

Unresolved

AMAGENTS-5718: Custom Login mode 2 doesn’t correctly process composite advice.

Unresolved

AMAGENTS-5594: Web agent will return 403 errors if OpenSSL libraries aren’t loaded.

Fixed in 2023.11

AMAGENTS-5495: Web agent validator reports access to OpenSSL v.1.1.x instead of v3.x

Fixed in 2023.9

AMAGENTS-5032: WPA: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

AMAGENTS-4590: login-fragment-relay page should have charset specified.

Fixed in 2024.3

AMAGENTS-3992: WPA: com.forgerock.agents.config.hostmap does not seem to use the IP address

Fixed in 2024.3

AMAGENTS-3663: Nginx Agent print absolute build path into debug logs

Fixed in 2024.6

AMAGENTS-3506: If there are permissions issues with password file with installation on IIS then the log messages are not helpful

Fixed in 2024.3

AMAGENTS-2813: Agents Logout perform logout multiple times

Unresolved

AMAGENTS-2755: Currently when setting up the agent it is necessary to have a client certificate file when using S Channel

Unresolved

AMAGENTS-2724: WPA: Custom login does not work, if agent is installed in different location than root

Duplicates AMAGENTS-5981

Web Agent 2023.3

Issue Comment

AMAGENTS-6175: Memory leak in credentials_secure_free

Fixed in 2023.11

AMAGENTS-6046: convert_request_after_authn_post writes to /tmp instead of configured PDP directory

Fixed in 2024.3

AMAGENTS-5995: Don’t extend user session for not enforced url with fetch attributes enabled

Fixed in 2023.9

AMAGENTS-5985: Interactive installation using existing agent configuration files duplicate properties which are commented out

Fixed in 2024.3

AMAGENTS-5833: WPA 403 error on /agent/cdsso-oauth2 with invalid jwt.aud.whitelist parameter value

Fixed in 2023.9

AMAGENTS-5777: IIS web agent zip file includes 32bit DLL

Unresolved

AMAGENTS-5495: Web agent validator reports access to OpenSSL v.1.1.x instead of v3.x

Fixed in 2023.9

AMAGENTS-5594: Web agent will return 403 errors if OpenSSL libraries aren’t loaded.

Fixed in 2023.11

AMAGENTS-5032: WPA: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

Web Agent 5.10

Issue Comment

AMAGENTS-5995: Don’t extend user session for not enforced url with fetch attributes enabled

Fixed in 5.10.3

AMAGENTS-5833: WPA 403 error on /agent/cdsso-oauth2 with invalid jwt.aud.whitelist parameter value

Fixed in 2023.9

AMAGENTS-5777: IIS web agent zip file includes 32bit DLL

Unresolved

AMAGENTS-5495: Web agent validator reports access to OpenSSL v.1.1.x instead of v3.x

Fixed in 2023.9

AMAGENTS-5594: Web agent will return 403 errors if OpenSSL libraries aren’t loaded.

Fixed in 2023.11

AMAGENTS-5032: WPA: Native agents for windows do not correctly use unicode for the file system, resulting in configured files with garbled names.

Unresolved

AMAGENTS-4984: Setting samesite cookie to lax will cause the agent auth flow to fail if we are using different sites

Duplicates AMAGENTS-5189

AMAGENTS-4672: Web Agent does not handle specific case for Not-Enforced URL and one level wildcard properly

Unresolved

Web Agent 5.9

Issue Comment

AMAGENTS-5068: performance issue in AMAGENTS-4716 fix

Fixed in 5.10.0

AMAGENTS-4795: POST Data Sticky Load Balancing Cookie Name configuration option isn’t working

Fixed in 5.10.0

AMAGENTS-4897: config.fallback.mode doesn’t work for not-enforced url configuration

Fixed in 5.10.0