[midPoint] Filtering users by credential metadata in Midpoint 4.9

[Ivan Tarjan]

Hello, good evening, I’ve been working on a task that notifies users that
their password is about to expire, and while it was working perfectly
before the 4.9 upgrade, it looks like it stopped working. I’ll go through
the problem using screenshots.

These are some of my users.

>From what I’ve read in the 4.9 release page and what I can see here, the
way metadata is stored has changed.


And when I try to query my users whose password was created before a date
(in this example it’s far into the future to show an edge case where it
should show me everyone) it only shows me the administrator, which is the
only user that was created before the upgrade

While checking for differences in the xml between the administrator and
other users, I noticed that it still has the old metadata format.



In the 4.9 release page I found that this was the new way to filter by
metadata

https://docs.evolveum.com/midpoint/release/4.9/#:~:text=Value%20metadata%20storage%20and%20process%20are%20indexed%20for%20assignments%20and%20available%20for%20search%20using%20assignment/%40metadata/storage

However, it does not seem to be working, be it with or without the @, is
there something that I’m missing?



Also, to verify that the query itself was working correctly, I tried it in
https://demo.evolveum.com and it worked as expected

Search in demo before passwords were set


Demo is running an older version and has the older metadata format

Thank you for your assistance!
-- 
*Ivan Dimitri Tarjan Caldarini*
Jr IAM Engineer | Rakkau
+54 (911) 3383-0309
itarjan at rakkau.com <nrossi at rakkau.com>
www.rakkau.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20250123/cc38d49b/attachment.htm>