On 23rd of April the following was released:
- ISL Conference Proxy 4.4.1947.98 for Windows 32bit (Platform=win32, Revision=c7e43b04b79608657004b7e82018e83ad1c1bf69 , release_date=2020-04-21, req_os_version=0x06000000-0x7fffffff)
- ISL Conference Proxy 4.4.1947.98 for for Windows 64bit (Platform=win64, Revision=c7e43b04b79608657004b7e82018e83ad1c1bf69 , release_date=2020-04-21, req_os_version=0x06000000-0x7fffffff)
- ISL Conference Proxy 4.4.1947.98 for for Linux 32bit (Platform=linux, Revision=c7e43b04b79608657004b7e82018e83ad1c1bf69 , release_date=2020-04-21, req_os_version=0x0206170000-0xffffffffff)
- ISL Conference Proxy 4.4.1947.98 for for Linux 64bit (Platform=linux64, Revision=c7e43b04b79608657004b7e82018e83ad1c1bf69 , release_date=2020-04-21, req_os_version=0x0206170000-0xffffffffff)
Modules
- Authentication 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- Backup 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- Core Login 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- DNS 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- ISL AlwaysOn 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- ISL Groop 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- ISL Light 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- ISL Pronto 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- Locale 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- NTP 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- PostgreSQL 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- Reports 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- Storage 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
- System Monitor 4.4.1947.98 (revision=c7e43b04b79608657004b7e82018e83ad1c1bf69, release_date=2020-04-21)
Translations
- backup_20200421_20200421_090000.translation
- core_login_20200421_20200421_090000.translation
- isl_alwayson_20200421_20200421_090000.translation
- isl_conference_proxy_20200421_20200421_090000.translation
- isl_groop_20200421_20200421_090000.translation
- isl_light_20200421_20200421_090000.translation
- isl_pronto_20200421_20200421_090000.translation
- reports_20200421_20200421_090000.translation
We detected an issue with ISL AlwaysOn module 4.4.1947.98 (created wrong index on Linux platform) and we have released and update on 11th of May:
- ISL AlwaysOn 4.4.1947.101 (revision=16ae508cbc08b9f9e0e25b2b43146ba06f2eb191, release_date=2020-05-05)
Update availability
All updates, except translations, have release date set to 2020-04-21. Your ESS will need to be same or higher to be able to update your server. This release is available to all countries except Japan.
Upgrading to new version
This are server side updates so hosted service users do not need to do anything.
Server license users please check Upgrading Server License
Improvements
ISL Conference Proxy - Core - Fix dynamic /return handler to return static data only (SECURITY) [ISLCONFPROXY-2103] More
DescriptionDynamic /return handler was fixed to return static data only.
ISL Conference Proxy - Core - Add patch for jquery1.12.4 CVE CVE-2019-11358 (SECURITY) [ISLCONFPROXY-2144] More
DescriptionPatch was added for jQuery 1.12.4 vulnerability CVE-2019-11358
ISL Pronto - Module - Fix dynamic /live/islpronto/reconnect.js handler to verify data (SECURITY) [ISLPRONTO-1315] More
DescriptionIn previous versions passing of arguments to ISL Pronto API was handled incorrectly, thus XSS HTML injection was possible. Handling of parameters was redesigned, all user input is now correctly escaped.
ISL AlwaysOn - Module - Add option to limit computer search to domain - setting "islalwayson::use_d_id" - add 1 and remove 2 indexes (FEATURE) [ISLALWAYSON-1500] More
DescriptionSupport for domain based queries on ISL AlwaysOn connection table was added. User facing connection queries should now be faster.
ISL AlwaysOn - Module - add webapi system/islalwayson/connection/optimize/1 (FEATURE) [ISLALWAYSON-1528] More
DescriptionNew webapi method that can optimize ISL AlwaysOn connections table was added. The method is accessible in configuration pages under Active Sessions, ISL AlwaysOn tab, section "DB Optimize". There are two modes on operation:
- optimize all connections (Search All button)
- per domain optimize (Search Domain Users and Search Connections)
ISL AlwaysOn - Module - UPDATE jquery-ui to v1.12 (FEATURE) [ISLALWAYSON-1539] More
DescriptionjQuery was updated to v1.12, fixed modal and menu css.
ISL AlwaysOn - Module - expose more info during islalwayson/computer/connect/2 to hag (FEATURE) [ISLALWAYSON-1549] More
DescriptionWebapi islalwayson/computer/connect/2 logs now include more information about new created connection and target computer.
ISL Conference Proxy - Core / Core Login - SameSite cookie attribute (FEATURE) [ISLCONFPROXY-1877] More
DescriptionSSO SAML cookies with v2 key and SameSite=None were added to /sso/saml/sp/. Existing cookies on /sso/saml/sp are kept the same for compatibility with older browsers. Cookie CPSSOID will be now deleted when browser finishes login by visiting /users/main/loginsso.
ISL Conference Proxy - Core - Port DT functions from plpgsql to sql (FEATURE) [ISLCONFPROXY-2049] More
DescriptionFunctions isldt_* in PostgreSQL database were optimized for better performance.
ISL Conference Proxy - Core / Core Login - SAML access permission check (FEATURE) [ISLCONFPROXY-2069] More
DescriptionSettings "Security / External authenticator login settings rules" and "Security / SAML login settings rules" were extended with access permission check rules:
- ["check-key", "KEY", "VALUE"] - KEY must match VALUE exactly (empty VALUE will also match non-existing KEY)
- ["check-attr", "SAMLATTR", "VALUE"] - SAML attribute must match VALUE exactly (attributes are a list of values, so the first match is considered success)
- ["check-in-group", "GROUPEXPR"] - user must be in GROUPEXPR
If the checks fail, user will get access permission error.
ISL Conference Proxy - Core - Support DT multicolumn ORDER BY in VFS compat layer (FEATURE) [ISLCONFPROXY-2071] More
DescriptionSupport for multi-column ORDER BY in direct tables mode was added to DB API VFS/DT compat layer.
ISL Conference Proxy - Core -Add Host field to public web watchdog requests (FEATURE) [ISLCONFPROXY-2096] More
DescriptionHost field was added to public web watchdog requests.
ISL Conference Proxy - Core -Improve HTTP remote proxy handling/reporting (FEATURE) [ISLCONFPROXY-2108] More
DescriptionHTTP remote proxy handling and reporting was improved.
ISL Conference Proxy - Core - Restart all moduleapps if main ICP translations change (FEATURE) [ISLCONFPROXY-2109] More
DescriptionTranslation file change for ISL Conference Proxy will now flag all module apps for restart, because the list of installed languages might change.
ISL Conference Proxy - Core - Export installed languages into languages.json (FEATURE) [ISLCONFPROXY-2110] More
DescriptionCurrent installed languages list is exported into languages.json when ICP translations are initialized or changed.
ISL Conference Proxy - Core - Add Message-ID to emails (FEATURE) [ISLCONFPROXY-2118] More
DescriptionISL Conference Proxy now sets Message-ID in every email for better compatibility with MSAs (mail submission agents) that do not add it themselves.
ISL Conference Proxy - Core - Setting to adjust X-XSS-Protection (FEATURE) [ISLCONFPROXY-2123] More
DescriptionNew setting "HTTP header X-XSS-Protection" was added to configuration pages, Security section. Value of "X-XSS-Protection" header can now be adjusted using the setting. The default value is 0.
ISL Conference Proxy - Storage - Add support for network share storage location (FEATURE) [ISLCONFPROXY-2128] More
DescriptionSupport for storage location on network share location was added. Users can now setup storage location on network share locations on Windows. User can provide username and password used when authenticating to access network share location.
ISL Conference Proxy - Module DNS - Add support for DNS records with _ (FEATURE) [ISLCONFPROXY-2130] More
DescriptionSupport was added for DNS records containing underscores.
ISL Conference Proxy - Core - Update Bootstrap to 3.4.1 (FEATURE) [ISLCONFPROXY-2133] More
DescriptionBootstrap was updated to version v3.4.1.
ISL Conference Proxy - Reports - UPDATE jquery-ui to v1.12 (FEATURE) [ISLCONFPROXY-2136] More
DescriptionjQuery UI was updated to v1.12 in reports.
ISL Conference Proxy - Core Login - Update Bootstrap to 3.4.1 (FEATURE) [ISLCONFPROXY-2139] More
DescriptionCore Login module was updated to use Bootstrap v3.4.1.
ISL Conference Proxy - Backup - Update Bootstrap to 3.4.1 (FEATURE) [ISLCONFPROXY-2140] More
DescriptionBackup module was updated to use Bootstrap v3.4.1.
ISL Conference Proxy - Core - ICP improve web internal server errors (FEATURE) [ISLCONFPROXY-2154] More
DescriptionWeb internal server errors were improved and now contain also timestamp in web administration, more detailed errors when handler terminated prematurely and handler list.
ISL Conference Proxy - Core - Unify jQuery-ui Dialog css between v1.9 and v1.12 (FEATURE) [ISLCONFPROXY-2155] More
DescriptionCss was updated so widgets jquery ui dialogs looks the same in v1.9 and 1.12
ISL Conference Proxy - Core - Module Authentication - add option to disable LDAP referrals (FEATURE) [ISLCONFPROXY-2158] More
DescriptionDISABLEREFERRALS option was added to ldap authenticator executable: "DISABLEREFERRALS;1; (disable referrals)" The option disables LDAP chase referrals if it causes speed issues.
ISL Conference Proxy - Core - GRID message analytics (FEATURE) [ISLCONFPROXY-2159] More
Description"[Core] GRID message analytics" was added to logs with two messages that are logged every 15min:
- handled messages with expected execution time (info)
- handled messages with long execution time (warning, critical)
Levels for regular message handling:
- critical >= 1s
- warning >= 100ms
Levels for file message handling (certain object-* messages, direct-upload):
- critical >= 20s
- warning >= 10s
ISL Conference Proxy - Module PostgreSQL - Remove bloat panel in PostgreSQL web admin (FEATURE) [ISLCONFPROXY-2170] More
DescriptionPostgreSQL bloat panel was removed from web admin. The information was not accurate or useful.
ISL Conference Proxy - Module PostgreSQL - PostgreSQL web admin DB activity (FEATURE) [ISLCONFPROXY-2171] More
DescriptionPostgreSQL activities panel was added to web admin. It is accessible in configuration pages, section "PostgreSQL", "Activities".
ISL Conference Proxy - Core - WebAPI2: report origin tags provided by session query backend (FEATURE) [ISLCONFPROXY-2173] More
DescriptionOrigin tags support was added to session query backend protocol.
ISL Conference Proxy - Core - Remove hhash task & expire vfs object task HEFA_LOCK (FEATURE) [ISLCONFPROXY-2174] More
DescriptionHEFA_LOCK was replaced with a custom lock in expire_task, hhash_task was removed when not needed.
ISL Conference Proxy - Core - Do not report DB event long execution time for init (FEATURE) [ISLCONFPROXY-2183] More
DescriptionCallback events that were created during init will not be present in logs anymore.
ISL Groop - Module - UPDATE jquery-ui to v1.12 (FEATURE) [ISLGROOP-1058] More
DescriptionUpdated jQuery UI to version v1.12 and updated dependencies.
ISL Light - Module - UPDATE jquery-ui to v1.12 (FEATURE) [ISLLIGHT-5468] More
DescriptionUpdated jquery ui to v1.12 and fixed style changes (ui-menu and dialogs).
ISL Light - Module - Improve rpc handling (FEATURE) [ISLLIGHT-5474] More
DescriptionHandling of remote procedure calls was improved.
ISL Light - Module - store isllight/session/resolve/1 aux and dbid to hag (FEATURE) [ISLLIGHT-5484] More
DescriptionWebapi2 method isllight/session/resolve/1 now stores databaseId and auxId in log.
ISL Light - Module - State timing for rpc_reply (FEATURE) [ISLLIGHT-5489] More
DescriptionNew log key LIGHTRPC_TIMING_TXT was added.
ISL Light - Module - add origin tags to isllight/session/info/1 (FEATURE) [ISLLIGHT-5498] More
DescriptionNew origin tags when requesting session info were added.
ISL Pronto - Module - Handle iPad 13 User-Agent (FEATURE) [ISLPRONTO-1313] More
DescriptioniPad 13 Safari User-Agent is using Mac desktop format by default. Two changes were made to make it easier to spot potential iOS devices:
- Safari version reports GUI version, not engine version anymore
- " / iOS" is added to desktop OS version
ISL AlwaysOn - Module - send changed computers notification on old owner when doing webapi switch owner (DEFECT) [ISLALWAYSON-1518] More
DescriptionIn previous versions owned computer count was not updated after performing the change admin action. This was now redesigned and correct computer count should be shown after migrating computers.
The defect was fixed.
ISL Conference Proxy - Reports - Check for deleted content on chat_transcript page (DEFECT) [ISLCONFPROXY-1772] More
DescriptionIn previous versions when content of chat was deleted, islpronto/chat/content/get/single/1 webapi returned null which caused javascript error on chat_transcript.html page. This was now redesigned and should not happen anymore.
The defect was fixed.
ISL Conference Proxy - Backup - Remove reference to core login resources (DEFECT) [ISLCONFPROXY-2026] More
DescriptionIn previous versions backup module contained reference to other modules and module pages would not work correctly if other modules were missing. This was redesigned and references to other modules should now be removed.
The defect was fixed.
ISL Conference Proxy - Core Login - Improve UX feedback and logs on twilio SMS send (DEFECT) [ISLCONFPROXY-2052] More
DescriptionIn previous versions when sending 2FA confirmation code failed, user did not get any details of error. This was now redesigned and user should now see Twilio error code in such cases. Logs were improved and now contain also "user_id", "ip_address" and "reason".
The defect was fixed.
ISL Conference Proxy - Storage - Remove storage area from memory on delete (DEFECT) [ISLCONFPROXY-2101] More
DescriptionIn previous versions when storage area was deleted, it was still kept in memory and file operations still worked. This was now redesigned and file operations will now fail immediately after delete.
The defect was fixed.
ISL Conference Proxy - Core - Add specialization constructor for appender to appender (DEFECT) [ISLCONFPROXY-2129] More
DescriptionIn previous versions backup of database on Windows 32bit machines would fail. This was now redesigned and should not happen anymore.
The defect was fixed.
ISL Conference Proxy - Core Login - Replace hidden css class with display none (DEFECT) [ISLCONFPROXY-2152] More
DescriptionIn previous versions when accessing Security pages on device with slow network, text was flashing on screen, until page was completely loaded. This was now redesigned and issue should not happen anymore.
The defect was fixed.
ISL Conference Proxy - Core - Handle invalid resource URL paths with 404 instead of internal error (DEFECT) [ISLCONFPROXY-2153] More
DescriptionIn previous versions ICP responded with internal error on URLs that use resource loader (for example /users/main/*) when invalid path was provided. This was now redesigned and ICP will now return HTTP 404 error code in such cases.
The defect was fixed.
Module ISL AlwaysOn, ISL Groop, ISL Light - Update jquery-ui menus - set position to SE (DEFECT) [ISLCONFPROXY-2197] More
DescriptionIn previous versions dropdown menu was not fully visible. This was now redesigned and position of dropdown menu on collisions was fixed.
The defect was fixed.
ISL Light - Module - move login rpc to separate executor (DEFECT) [ISLLIGHT-5491] More
DescriptionWhen using login from rpc (old ISL Light Desk and slow external authentication) this can cause significant delays to other rpc calls. This was now redesigned and should not happen anymore.
The defect was fixed.