Release Date: 11 December 2025

Release (1.14.0)

Overview

This release adds support for Neo4j Ops Manager users to log in using Single Sign-on. The Neo4j Ops Manager server can be configured with one or more of these SSO IdPs: Auth0, Google Identity, Microsoft Entra ID and Okta. See the Neo4j Ops Manager documentation for more details. This release also includes changes to components based on security and supportability

Highlights

• Support for integrating with SSO for login authorization flow (Docs):
  • Add Google Identity authorization code flow
  • Add Auth0 authorization code flow
  • Add Entra ID authorization code flow
  • Add Okta auth code flow
  • Add profile page for SSO 
  • Block username-password login if it is turned off
  • Log warnings on missing claims, default to empty first/last name, email 
• Migrate to Neo4j Design Library v3
• Migrate to official spring gRPC
• Allow external emails in notification configs
• Add userCreated field to conditions
• Update to Spring boot 3.5.8

Fixes

• Make non-user created conditions undeletable
• Make mTLS cert config optional
• Adding constraint for Metric timestamps
• Add migration to remove any broken metrics

Internal version changes

• Upgrade from 3-eclipse-temurin-24 to 3-eclipse-temurin-25 as docker base image
• protobuf to 1.36.10 
• neo4j-migrations-spring-boot-starter to 2.19.2 
• neo4j-go-driver/v5 to 5.28.4
• crypto to 0.45.0
• grpc to 1.77.0
• prometheus/common to 0.67.4
• jjwt.version to 0.13.0 
• tomcat-embed-core to 11.0.14 
• jsoup to 1.21.2
• nimbus-jose-jwt to 10.6
• byte-buddy to 1.18.2
• json-schema-validator to 2.0.0
• jakarta.validation-api to 3.1.0 
• Use latest protobuf libs
• bcpkix-jdk18on to 1.83
• cobra to 1.10.2
• caffeine to 3.2.3