GA 1.1.0 – DigiCert DNS

DigiCert® is pleased to announce the release of DigiCert® DNS GA 1.1.0.

This release introduces enhancements to the API, back-end, and UI; fixes across the API, back-end, front-end, and UI; and new features in both the API and UI.

We welcome your feedback as we continue to expand and refine the platform.

Enhancements

This release includes the following enhancements:

API:
- Added a name filter to the GET /domains/primary endpoint for improved querying capabilities.
- Added a name filter to the GET /domains/secondary endpoint to simplify domain search and filtering.
- Changed the /nameserversets/{id}/makeDefault endpoint to all lowercase for uniformity.
- Updated activity log messages for root records to display @ when the record name is empty for better clarity.
- Updated the /activityLog endpoint URI to use all lowercase for consistency with naming standards.
- Updated the default SOA configuration in Production to use ns200.digicertdns.com, with the value now pulled dynamically from configuration settings.
Back-end:
- Enhanced TSIG secret validation to detect ASCII hex within Base64-encoded values, convert it to raw bytes, and verify length, while continuing to support pure hex strings and Base64-encoded bytes.
- Increased the frequency of usage event reporting from daily to hourly for improved data accuracy.
- Standardized activity log categories into a reusable enum, now including Managed, Security, Secondary, System, and Configuration.
UI:
- Extended the banner above the Record table to span the entire table width for a cleaner layout.
- Improved the Settings page so that the success modal only appears after the save action completes, and the Save button is disabled during loading to prevent multiple submissions.
- Made Record Name, Record Type, and GTD Region fields read-only after creation, while keeping TTL and RDATA fields editable.
- Moved the Save and Cancel buttons to the left to accommodate the Resource Center icon.

Fixes

This release includes the following fixes:

API:
- Corrected pagination behavior with RBAC filtering to return accurate paged results.
- Fixed a bug where listed secondary domains threw a permission exception instead of returning a boolean.
- Fixed an issue where deleting a CNAME record by ID caused an UltraDNS error.
Back-end:
- Ensured cache eviction occurs only after successful transaction commits to eliminate stale data issues.
- Fixed a timeout issue occurring during requests to UltraDNS.
- Fixed an issue where TSIG key secret and algorithm updates for managed domains were not propagating to UltraDNS.
- Fixed column-level controls in the custom role table to allow proper Allow All, Deny All, and Clear All operations.
- Restricted role lookups during default resource group fallback to include only roles tied to that group.
Front-end:
- Corrected usage pie chart scaling errors when displaying data in billions.
- Fixed a crash that occurred when manually typing a date in the date picker by improving input validation.
- Fixed a problem where editing a role’s description did not save correctly or persist after refreshing.
- Fixed an issue where custom SOA records did not take effect by ensuring proper validation against the nameserver.
- Fixed an issue where updating a resource group’s name or description would not persist after saving.
- Fixed resource group filtering by name to return accurate results.
- Fixed unintended SOA updates on linked domains during zone creation; SOA updates now occur only when explicitly triggered.
UI:
- Updated the Primary Domain Settings page to display only the hostname and IP address (not FQDN).

New features

This release includes the following new features:

API:
- Added support for updating record names via the PUT /v1/domains/primary/{domainId}/records/{recordType}/{recordId} endpoint.
- Implemented a new permission evaluation hierarchy: Explicit Deny > Explicit Allow > Implicit Deny for clearer authorization logic.
- Introduced an end-of-month billing report schedule that runs before midnight GMT on the first day of each month.
UI:
- Introduced clickable Allow and Deny icons on the Role Creation and Role Edit screens, allowing users to toggle selections intuitively.