IMPROVEMENTS AND FIXES

• Name Generation - Fixed issue when conditions are used with sync enabled.

NEW FEATURES

IMPROVEMENTS AND FIXES

• Apps - Child Form "disabled" does not work
• Multi-Export - SFTP Connection reset after uploading files to a windows OpenSSH server

• Name Generation - Sync'd update number iteration not honoring iteration settings

• REST: Support RFC 7644 patch request for SAP Concur support

• Role Model – Support role membership parameter

• Settings - License settings tab shows ag-grid warnings in the browser console

• Service - Improved the enabling maintenance mode information
• Service - Dataset reference indexes not updated dynamically for add-update-delete
• Service - Update nodejs to 22.16.0
• Templates - Insert Variable or Table menu scrolls out of view.

KNOWN ISSUES

• Name Generation - When conditions with sync enabled, a mapping can fail to with an iteration error

NEW FEATURES

IMPROVEMENTS AND FIXES

• Apps - Required text, date and dropdown elements correctly disable submit buttons
• Apps - No variable available for external host URL
• Apps - Variable validation when using script function data
• Apps - Incorrect variable dependencies cause variable reset in multi-form apps
• Apps - When changing form in designer, form not selected in left bar
• Apps - Action output variables empty for notifications
• Apps - Child form default button not honored
• Apps - Onboarding / password reset resend code timer issue
• Filters - Filter not marked as dirty when changing order and selection options
• Name Generation - Name generation not supporting condition when sync flag on
• Name Generation - Name generation error when mapping un-synced values and not mapping synced values
• REST - Allow some field to be excluded from the $select parameter
• REST - Iterator columns not available in the base object
• Role Mining - Delete system group causes existing role miner error
• SAML - Signature wrapping fix CVE-2025-47949
• Service - Onboarding status text not updated immediately
• Service - SQLite Foreign-key constraint error when restoring repository on blank system

• Service - Update NodeJS to 20.19.2

KNOWN ISSUES

• Name Generation - Sync'd update number iteration not honoring iteration settings
• Service - Dataset reference indexes not updated dynamically for add-update-delete

IMPROVEMENTS AND FIXES

• Internal - Incorrect mapping attribute requirements for internal lookup tables for a delete mapping
• Upgrader - Improved support of running the NIM update on Windows 2019 Server
• Role Model - Support role mining for automatic role model configuration

KNOWN ISSUES

Name Generation - If the Synchronize Flag is enabled for a name then condition is not used in the method evaluation. If you turn off the Synchronize Flag for the name the condition is properly evaluated

NEW FEATURES

IMPROVEMENTS AND FIXES

• Internal - Support delete function for internal lookup tables with no key configured
• Connectors - Dropdown did not always correctly initialize on the previously selected value.
• Connectors - The default value of a settings grid interface item is used again.

KNOWN ISSUES

• Upgrader - If NIM is installed on Server 2019 you will likely run into error 87 when attempting to upgrade NIM from the Version tab under settings. This is due to an issue with TLS version checking. Workaround: Run installer manually

NEW FEATURES

• REST - Support for OAuth Password Flow

IMPROVEMENTS AND FIXES

• Apps - Add table validation cache
• Apps - Fixed drop down issues
• Auditing - Datetime data of memberships and object mutations no longer incorrect

• Audit Queries - Editor now correctly recognizes WITH statements with a SELECT inside it

• Connectors - Powershell connectors not longer fail to export

• JavaScript - Fixed some linting issues with standard JavaScript functions and objects

• Repositories - Certificate Maintenance schedules can now be restored; previous they were only store in the backup

• SAML - Improvements for vulnerability CVE-2025-29774 and CVE-2025-29775
• Session - Endless loop of access denied was possible, add option for logout
• Session - When one browser tab is idle, it will no longer logout all tabs
• Snapshots - Fixed restore issue when encryption key changes, service would not start and fails with "RSAES-AEOP padding error"
• Snapshots - Mailed settings are now restored properly
• Snapshots - Fixed issue when restoring, while NIM did not shutdown correctly the restore would fail.

• Updater - Do not abort the update with error 6 or 1077
• Validation - Fixed false-positive error for Job guard events

KNOWN ISSUES

• Upgrader - If NIM is installed on Server 2019 you will likely run into error 87 when attempting to upgrade NIM from the Version tab under settings. This is due to an issue with TLS version checking.

NEW FEATURES

IMPROVEMENTS AND FIXES

Apps - Fixed issue with grid validation message being shown on load

Apps - Checkbox JavaScript validation now properly enforced

Apps - Fixed issue with logging out users when dismissing notifications

Apps - Ability to disable button on click

Apps - Fixed variable validation error using checkbox with filter and parameter

Apps - Fixed ability to set placeholder on float input text when using dark mode

Apps - Fixed issue renaming app if access group already existed

Audit Log - Fixed issue with false-positive group membership entries

Audit Log - Fixed failed membership auditing updates with numerical key values

Audit Query - Improve data type support for audit query results

Configuration - Fixed issues where configuration changes don't mark fields dirty

Certificates - Importing certificate no longer requires password

Connectors - Moved connectors from Program Files to ProgramData

CSV - Removed dependency for WMIC

CSV-STP - Ciphers now configurable

Internal - Fixed issue where internal passwords could be cleared unexpectedly and not logged

Multi-export - Added disclaimer for existing files in directory being uploaded via SFTP

Name Generation - "Synchronize name iterations" checkbox is removed and replaced by the "Synchronize" checkbox on each name

Password Reset - Fixed issue with vprConfirmationCodeAddress not being populated on ActionsCompleted event

REST - Support for Key/Value Responses

REST - Function execution support when resolving variables

REST - Support for ordering connection fields and hide Tenant ID

REST - Option to not send query parameters with value is empty

REST - Override support for connection fields

REST - Connection fields can now be marked required

REST - Fixed issue with child tables reporting parent table is missing

REST - Fixed issue with 404's being ignored on PATCH/PUT

REST - Resolved issue with Google Sheets records being overwritten in dataset

SAML - Logout of an SAML session should no longer present error to user

Scripts - Resolved error in NIM type definition file when audit queries result in arguments with equal names

Variables - Improved dirty field detection

KNOWN ISSUES

Validation - Job Guard events report as "not supported" but functions properly

Service - Attempting to use the upgrader service could fail to retrieve the installer, requiring manual effort of downloading and running the installer (e.g. Update error: Failed to update NIM to it's latest version. The updater service stopped with an error 6.)

JavaScript - Global functions could, e.g. parseInt(), report as "does not exist or is used before it is defined" but work properly when used

Snapshots - Snapshot restoration could fail if some database files are not properly removed in the process.

Snapshots - Mail settings are not currently included in snapshot

NEW FEATURES

IMPROVEMENTS AND FIXES

SAML - The sessionNotOrAfter attribute was not correctly used, giving all sessions a 5m timeout

SAML - When editing a new SAML configuration the authnRequestsSigned is now checked

REST - Receiving an object array while expecting a string array will crash the service

KNOWN ISSUES

Name Generation - "Synchronize" flags do show checked even though they are saved as such. This means you can easily override the flags to be not checked if you save without rechecking the boxes.

Logging - The audit log for Google membership changes can sometimes reflect changes that did not actually occur in addition to ones that did. This only occurs with Google using the Role Model.

Internal - If you attempt to update a record in the internal.passwords table but don't specify the existing the fields already populated it could clear it out.

CSV System - When using Windows Server 2025, it's possible to run into an "WMIC" error when retrieving a list of files on a CSV System.

• Workaround: Install optional feature on server via command (https://techcommunity.microsoft.com/blog/windows-itpro-blog/wmi-command-line-wmic-utility-deprecation-next-steps/4039242) 
•  DISM /Online /Add-Capability /CapabilityName:WMIC~~~~ 

IMPROVEMENTS AND FIXES

• SAML - Login does not redirect to the login page

• Service - Force update from a different branch does always download from production
• Service - Uniqueness constraint violation should generate a warning only when validating table data
• Events - Failure when email template contains table

• Validation - Incorrect used by reporting for intersystem relations

• Role model – group membership parameter disappears

• Jobs - No recipient causes job/table notification to stop on error

• Apps - After copying an app, the tag modal is not shown when the pen icon is clicked

• Apps - Incorrect handling when copying and renaming a form

Known Issues

• SAML - "NotOnOrAfter" within the "Conditions" element is used to control session lifetime currently. This is always provided so it never defaults back to NIM specified timeouts. Future version will use "SessionNotOnOrAfter" within the "AuthnStatement" element, which is optional. When not specified then NIM specified timeouts are used.

NEW FEATURES

IMPROVEMENTS AND FIXES

• Service - When the server reconnects, socket.io communication is restored
• Service - Use secure session cookies when HTTP is disabled
• Service - Improved session security
• Service - Update dependent packages including node
• Service - Name Generation iterations limit configurable
• Service - Small possible memory leak fix while processing API
• Service - Improved authentication on socket.io communication.
• Service - When offloading audit is enabled, the service won't start
• UI - Dark mode for form construction tab displayed incorrectly
• UI - Log window scrolling not correct
• REST - Option to set extra headers on data retrieval per table
• REST - Add the excludedFields in the array selector configuration
• REST - Make it possible to override the selector configuration per endpoint
• REST - Support retrieving non JSON results without text/plain content-type
• REST - Respect maxCount on exponential retry configurations
• REST - Allow the Google connector to override the build-in retry configuration
• REST - Remove double query parameters on paged calls with link paging
• REST - Body will preserve the type with fields where a variable resolves as non-string
• REST - Filter out NULL values in data collection responses
• Systems - Dataset statistics show errors in overview
• Systems - No checking on duplicate (primary) key and reference values
• Role Model - Support for multiple member tables with Role Model scoping
• Configuration - When restoring a repo, only load the last successful data if the hash matches
• Logs - Loading large logs in the log overview failed with Maximum call stack size exceeded
• Templates - Cannot send test e-mail when configuring notification template e-mail
• Apps - sort and search in grid custom column
• Apps - incorrect processing of variable state
• Apps - Validation error 500 between forms
• LDAP - Connection reset errors are not logged anymore

Known Issues

• SAML - After being released, it was discovered users are able to login with SAML but can be immediately returned to the login screen
• Events - Email fails to send when tables are used in the template

Notes

• This version checks uniqueness on system table keys. If a key is not unique it will fail validation.