Changes

====Updated Behavior to User/Organization Security Matrix====Added Ability a new setting to enable stricter controls for the '''User/Organization Security Matrix'''. For new instances, the default behavior of the system will be to apply any settings selected under the '''Hierarchy Permission''' section AND any settings selected under the '''Category/Role''' section. Currently, the default behavior would choose one section setting OR the other in some scenarios. There is no change in behavior for existing clients. However if you wish to Make adopt the stricter controls, navigate to '''Global Settings''' > '''Security''' tab > '''System Security''' section > Toggle off '''Enable Classic Security Matrix Behavior'''.<!-- 136836 - Able to access parent organization despite security matrix permissions --> ====Updated Tab Bar to be Visible to All Users Based on Role Permissions====Visibility of the '''Tab Bar ''' will no longer be controlled by both a personal setting and a role-based setting. If a role has permission to see the '''Tab Bar''', users with that role will see the Tab Barit. Previously users with role permission to see the '''Tab Bar ''' also had to enable the Tab Bar an additional setting under the user menu before they would be able to see the Tab Barit. To enable the tab bar, go to '''Global Settings ''' > '''Security ''' tab > '''System Feature Permissions ''' > '''Features ''' tab > '''Enable Tab Bar'''.

====Added Ability to Retain Page Location on Save====Currently when a user saves, the page reloads and the user is brought back to the top of the page. After the upgrade, if a user saves a record page such as '''Level 1''', '''2''', '''3''', '''Organization''', '''User ''' or '''Template ''' page, then after the page reloads, the system will automatically scroll the page to approximately the user's last location on the page.

 ====Added Ability to Add Attachments from Configuration Folders in Email Templates====Global Administrators editing email templates can now add default attachment files from a configuration folder. To see this new feature, go to Menu Icon > Email > Templates tab > Edit or create a template > Default Attachments (Configuration Folder).<![[File:2022-07- 124007 ticket- Select Default Attachment for Email Template from Config Folder 129948-->  ====Added Ability to Generate PDFs from Workflow Tasks Using a Specific Role====Added the ability for workflow tasks to generate PDFs as a specific role1. For example, you could generate a PDF using png|thumb|none|800px|The buttons of the external applicant role and the fields included in the PDF would be only the fields users with that role have permission to see<strong>Media Library</strong> are consistently styled. To see this new setting, go to Menu Icon The <strong> Workflows Share</strong> Tasks tab and <strong> Edit a task of type Generate PDF File or Generate PDF File Asynchronously Statistics</strong> The new setting is called Generate PDF File forbuttons are now surfaced on the first level.<!-- 128740 - Ability to select which role to generate the pdf as --> ]]

Added the ability to make copies of '''Organization ''' and ''' User ''' signup pages. To make a copy of a signup page click the '''Save As ''' button. In addition, signup pages will also have a new field called '''Signup Page Name ''' to help distinguish between signup pages.

 ====Updated Workflow System Generated PDFs for Top-Aligned Captions to Stay with Content====Updated system generated PDFs so that any top-aligned caption and their corresponding content is enclosed in the same table row. This will help keep questions question and answer copy content together in PDFs.

 ====Added Ability to Create Copy Profiles====To see this new feature that allows you to set up predefined profiles for copying records[[File:2022-07-ticket-124566-1.png|thumb|none|800px|When generating PDFs, field caption, go to UTA Settings instructions and the answer will appear on the same page if <strong> Level 1/2Caption Location</3 tab strong> Copy Profiles. Additionally, you can also is set up the ability to copy a Level 1/2/3 object through a workflow on a status change by using a new Task Type of Trigger Copy Profile.<!-- 120929 - Improved Copy of Level 1sstrong>Above Field</2s (Phase II) --strong> ====Added New Hierarchy Permissions to the User and Organization Security Matrix====Added if all 3 can fit on a new hierarchy permission of Users Under Associated Organizations to the user security matrix and Associated Organizations to the organization security matrixsingle page.<!-- 126369 - Request for user-organization-association roles on security matrix -->]]

Updated the single sign-on settings page and included a (SSO) module with greater role mapping functionality to better support identity federation. A new section option for role mapping. If Role Mapping is set to Enabledavailable, and if enabled, users will be provisioned with all only the roles and access as defined configured within this mapping section, and as described by the SSO assertion attributes received from the Identity Provider system. You may define the list of roles to be monitored or managed, and they then from this list, a user upon login will be stripped have their user roles updated according to the contents of any the SSO assertion. Any mapped roles that they may currently possess that are listed presented in this setting but were the assertion will be added to the user's profile, while any roles not defined explicitly presented in the assertion attributeswill be removed from the user's profile. Updates Additionally, updates were made to the layout of the configuration page including labels, tooltips, and title bars for added clarity.

[[File:2022-07-ticket-124791-1.png|thumb|none|800px|Added a new role mapping section to the single sign-on settings page used with federated authentication]] ====Updated Behavior Added New Hierarchy Permissions to the User/and Organization Security Matrix====Added a new setting hierarchy permission of '''Users Under Associated Organizations''' to enable stricter controls for the '''User/Security Matrix''' and''' Associated Organizations''' to the '''Organization Security Matrix'''. The default behavior This adds a new scope of access for associated users and organizations within both the system will be to apply any settings selected under the Hierarchy Permission section AND any settings selected under the Category/Role section. Previously, the default behavior would choose one section setting OR the other. To revert to the original security matrix behavior, navigate to Global Settings > Security tab > System Security section > Toggle on Enable Classic '''User''' and '''Organization Security Matrix Behavior'''.<!-- 136836 126369 - Request for user- Able to access parent organization despite -association roles on security matrix permissions -->

Added ability to allow the user to provide a reason for accepting or declining an invitation from the system. To enable this setting, go to UTA '''Configuration Settings ''' > '''Level 1/2/3 ''' tab > ''' Invitation Templates ''' > Edit a template > ''' Invitation Templates ''' tab > Toggle on ''' Enable Input for Decline Reason ''' and/or ''' Enable Input for Accept Reason. Under each toggle, there is an additional setting called Make Reason Mandatory which will force the user to provide a reason before they can accept or decline an invitation'''. To see a list of response reasons from invitees, go to the ''' Invitation ''' tab. If the invitee provided a reason for accepting/declining click the ''' View Reason ''' button.

In the event that an e-signature status is canceled, expired, failed, or voided, a new workflow can be triggered to continue the process. For example, you might want to update the level 1 record status if the e-signature request was not completed. To enable this setting, go to the desired '''Special - Web Page View ''' custom field with '''Enable E-signature ''' toggled on to see the new setting called ''' Failed to Complete Workflow'''.

====Updated Media Library UIAdded Color Settings to the Gantt Chart Type====Updated Added new settings to the look of the Media Library and surfaced the Share and Statistics features. Previously'''Gantt''' chart type to specify color codes by subject, status, type, the share and statistics features could be found if you clicked on the Edit Metadata button. The edit metadata button has now been renamed to Propertiesmore. To set permissions on default file availabilitysee this setting, go to UTA Settings > Level 1/2/3 tab > Custom Fields > Create or edit a the desired custom field with Media Library enabled > Permissions and Availability tab of type '''Special - Chart''' > Toggle on Allow Public Access Set '''Data Type''' to Files. This setting allows you '''Records related to set whether or not audio or video files uploaded object''' > Set '''Chart Type''' to the Media Library will be shareable by default'''Gantt'''. To disable access to a single file within the Media Library, go to the desired file in the Media Library, click the Properties button, The two new settings are '''Color Code By '''and uncheck Enable Public Access''' Colors'''.<!-- 129948 135525 - Media library URL and Statistics improvements Gantt Chart Colors -->

===Minor Updates=======Added Ability to Generate PDFs from Workflow Tasks Using a Formula Field to Advanced Data TablesSpecific Role====On Added the Advanced Data Table custom fields, you can now enter ability for workflow tasks to generate PDFs as a field formula that will run on save and clear of the Advanced Data Table. Fields referenced in the field formula of the Advanced Data Table custom field will have their field values refreshedspecific role. For example, you could use generate a PDF using the field formula to update external applicant role and the values on fields included in the underlying record pages, and those values PDF would get updated right away so be only the user would not fields users with that role have to click save permission to see the updated values. To see this fieldnew setting, go to the desired custom field '''Menu Icon''' > '''Workflows''' > '''Tasks''' tab > Edit a task of the type Special - Advanced Data Table.Note: formulas need to be based on SQL syntax'''Generate PDF File''' or '''Generate PDF File Asynchronously''' > The new setting is called '''Generate PDF File for'''.<!-- 130741 128740 - Enhancement request for XML (Save on XML popup saves Ability to select which role to generate the record pdf as well) -->

====Added Color Settings to the Gantt Chart Type====Added [[File:2022-07-ticket-124007-1.png|thumb|none|800px|A new settings field allows Global Administrators to the Gantt chart type to specify color codes by status, type, or subject. To see this setting, go to the desired custom field of type Special - Chart add default attachments from <strong> Set Data Type to Records related to object Configuration Folders</strong> Set Chart Type to Gantt. The two new settings are Color Code By and ColorsEmail Templates.<!-- 135525 - Gantt Chart Colors -->]]

Added a new date option to render dates with the month name fully spelled out to avoid confusion. Example: January 03, 2022 (mmmm dd yyyy). To view dates in this new format, change your settings located at '''User Menu ''' > '''Personal Settings ''' > '''Regional ''' tab.

Added a new user standard field called '''Pronouns ''' where users can specify their preferred personal pronouns. To enable this field, go to '''Global Settings ''' > '''Users ''' tab > '''Standard Fields ''' > '''Pronouns'''.

To see this new setting, go to '''Menu Icon ''' > '''Workflows ''' > '''Tasks ''' tab > Edit a task of the '''Type ''' of '''Acknowledgement ''' > '''Message Template ''' tab > Set the '''Message Type ''' to '''Email ''' and choose '''Email Template ''' for '''Email Type'''.

Added a new setting to automatically save the record when opening up a new record page. To enable this setting, go to '''Global Settings ''' > '''System ''' tab > Toggle on '''Automatically Save New Records on Creation'''. This setting applies to new records of the following types: '''UTA Level 1/2/3''', '''Users''', '''Organizations''', and '''Transactions'''.

When copying custom field changes to other versions, we added a new option to skip updating display order in case you wanted to update a field but you do not want to update the display order of that field in all versions. To see this setting, go to '''UTA Configuration Settings ''' > '''Level 1/2/3 ''' > '''Custom Fields ''' > Select desired fields > Click '''Copy to Other Versions'''. Under Select '''Update''' for''' If field already exists, select Update. A ''' to see the new toggle will surface called '''Update Display Order'''.

Added ability to download all attached files from a record with a single click from inside the record. This feature collects the files from upload fields, creates a single zip file and then downloads that zip file just like the '''Enable File Download ''' feature on list views. To set this feature, go to '''Global Settings ''' > '''Security ''' tab > '''System Feature Permission ''' > '''Features''' tab > '''Enable File Download from Record'''. Once this feature is set, you can go to the desired '''UTA''', '''Organization''', or '''User ''' record and click the '''Actions ''' menu and select '''Download Files'''.

Added support for users who need to lookup organizations using the United Kingdom’s registrar Companies House. To see this option, go to '''Global Settings ''' > '''Organization ''' tab > '''Signup Pages ''' > Create or edit a signup page > '''General ''' tab > '''Verification Service'''. There is now a new option called '''United Kingdom Companies House (CH)'''. You must set up an integration key before being able in order to use this featureby going to '''Global Settings''' >''' Integrations''' tab > '''Integration Key Management''' > Create a key for Companies House.

Added new translation options for text box single and multiple line custom fields. Users who utilize the translation service feature can now set a default language to translate from and to. To see the new settings, navigate to the desired text box custom field and toggle on '''Enable Translation Service'''. '''Enable Field Translation Service ''' must also be toggled on , which is located at under '''Global Settings ''' > '''System ''' tab.

Added the ability to add a discussion board thread to '''SmartCards'''. To see this feature, go to '''Menu Icon ''' > '''Discussion Board ''' > Click on a '''Topic'''. You will now see a list view of existing threads within that topic. Beside each thread, there is now a button with a star button icon called '''Add to SmartCard'''.

==== Added Export Functionality <!-- 140820 - Due diligence (transaction) record issues -->* Fixed an issue where users were not able to override the lock on status for Failed Logins, Locked and Expired Accounts ====transactions.

====Other Changes====* Added ability a new column to export the Failed Login, Locked Accounts '''Invitations History''' called '''Invite Sent''' which can be sorted in descending order by date and Expired Accountstime. To see thisthe''' Invitation History''', go to Global Settings the desired UTA record and click '''Logs''' > Security > Password and Activation Policies'''Invitations History'''. In the left<!-- 138153 -hand navigation, click Should invitation history be ordered in descending order based on the desired tab. There will now be an Export button at the top of the list that will export the logs as an Excel file. You can select specific records to export or export the entire list by not selecting anything124468 date like other histories? -- Password and Activation Policies Reports>

Added Export Functionality for Message Queue <!-- 128992 - PGP encryption keys added in the Integration Key Management -->Added ability to export Message Queue list. This will export the to, from, subject and dates. The export will not include * Updated the body display of the message or its attachments. To see '''Special - Like Button Rating''' custom field so the new export, go to Menu Icon > Message Queue > click the desired tab thumbs up and then click the Export button at the top of the list viewdown will display in PDFs. 124563 - Export files in Message Queue

Added Indicator Icon to Message Queue for Email Attachments<!-- 138372 - System Usage Chart - All option just shows last 24 hours -->Added a paperclip icon * Deprecated the classic setting to hide the list view of emails in top button action bar on the Message Queue to indicate whether the email contains an attachmentuser profile. Previously, this setting was located at '''Global Settings''' >''' Security''' tab > '''System Visibility Permissions''' > '''People''' tab > '''Hide Menu Bar'''. 127638 - Email Attachment indicator on Message queue

Will have to get feedback from wivina for this oneSmartConnect API changes<!-- 139297 - cannot close split screen -->Modified the text options under Action Types * Added security patches for improved clarityopen source components.128706 - Consumer/provider custom fields update

<!-- 136472 - HP Fortify - Vulnerable Open Source Components -->* Updated Autoloader to Apply Multiple Rolesthe state/Categories province standard field options for New Records Added ability to add multiple user roles or multiple company categories when importing new records via Kenya and the autoloaderU. This eliminates the need to apply multiple roles or categories by using additional workflowsK. To see this setting, go to Menu Icon > Autoloaders > Edit an autoloader > Process tab. Depending on the Create/Update Behavior option chosen, you will see the Role/Category field now accepts multiple role/category options. 132802 - Autoloader - Abilitiy to add more than one role to created/updated user

Added Link to <!-- 139609 - Standard Field - State / Province Incorrect for Kenya (ID 1056) --><!-- 136592 - Council Area drop down options in Organisation Profile for Standard Fields -->Added a link beside the Created By and * Updated By standard fields that open up wording on the corresponding user profile in a new modal windowSmartSimple Cloud cookie policy for added clarity. This setting is applied to UTA Level 1/2/3 records, User records, and Organization records. If you navigate to the standard field you can hide this link using the Restrict Profile Link setting.132989 - Created By Link

Updated Login Pages<!-- 136834 - Priority area/interview location quick edit window -->Added * Fixed an issue where running the T2P tool would overwrite the ability to specify a Logout Redirect URL access tokens for alternate login pages. Additionally, Docusign when the ability to include an "origin" URL parameter has been removedintegration links option is not selected. 134351 - Add configurable setting for logout redirect url

Added Patch for PDFWriter Vulnerability <!-- 137726 - Hide transactions (publications) from Left Panel -->* Added additional validation archived standard field and custom field audit tables to PDFWriter and DOCXWriter post requests before documents will be generatedthe '''Report Builder'''. 135113 - pdfWriter Vulnerability Patch

Added Security Settings to Autoloader Ad Hoc Upload Page<!-- 137973 - Older logs not appearing in reports -->Added additional role security to autoloader where * Updated the ad hoc upload page will check if you are Global Administrator or if you have any of pie chart for reports so that the roles permitted to use the URL. If no roles are configured, only the Global Administrator will have accessx-axis information is also displayed. To see this setting, go to Menu Icon > Autoloaders > Edit an autoloader > Process tab. There will be a new Role setting under the Ad Hoc Upload section. 136382 - Additional Caixa Security Audit Report (Autoloader Permissions)

Updated State/Province Options for Cayman Islands<!-- 138973 - Report Chart Issue (Pie Chart) -->Updated * Fixed an issue with attached PDF previews where portfolio PDFs were displaying icons instead of content. Additionally, any file generation errors would be appended to the list last page of districts (State/Province standard field) for the Cayman Islands137992 - state/province options for cayman islands are not correctPDF.

Added Validation to Virtual Folder and Alias Names <!-- 139631 - Danish translations for Login PagesJuly 2022 upgrade. -->Added validation to virtual folder names and alias names within login pages to prevent illegal characters and duplicate names===August 4th 2022 (202207.03)=======Fixes====135000 - need URI character sanitization of foldername and alias parameter of login * Fixed an issue with the French Canadian translation file that prevented web page configurationsviews from displaying.

Added Role<!-Based Permission Access the Data Exchange History LogAdded a new role-based permission settings 139697 - WPVs are blank for french users -->* Fixed an issue with the exchange history log, for sorting of rows by '''Last Modified''' date in the New Data Exchange. To see the setting go to Global Settings > Integrations tab > (you must be using the New Exchange Type) Import Settings or Export Settings > Edit Import/Export Setting > The new setting is called Exchange History Accesscustom fields list view.137437 <!- DEX3 Exchange History Log - Create Role Permission Access139522 - sort by last modified not working -->

Added SmartField Options for Chart Custom Fields ===July 28th 2022 (202207.02)=======Fixes====Added SmartField settings options to * Fixed an issue with time-based one-time password (TOTP) where the custom field type Special - Chart to easily control if charts will be included in Smartfields or for entering the code was not visible on the session timeout screen. 137904 - Special Chart custom field is missing the smartfields options

Security ImprovementsUpdates to Apache, JavaScript, and Google Maps API, PDFRemoved the X<!-XSS-Protection header from being served by the platform138391 139477 - Netcraft vulnerability finding 20220612 for Apache config137569 QA Issue: Session Timeout login not working with TOTP MFA - Netcraft Pentest Scan - V1. Outdated JavaScript libraries - Google Maps API>137794 * Added a server- wide setting to set a maximum API Update Contact - Org association bug and Sonarqube vulnerabilities137389 - NetCraft Pentest 04-2022138525 - Home Depot Finding - XSS app_groupemailrecord limit per call, up to a maximum of 25,000 records per call.jsp138526 - Home Depot Finding - XSS app_appobjlogic.jsp138552 - Home Depot Finding - XSS app_processTo set this limit, go to '''Global Settings''' >''' System''' tab > '''Gort Agent''' > '''Server Details '''tab > '''API Record Limit Per Call'''.jsp

Header Text Template Field <!-- 138655 - Upgrade API call to Max 25000 records per page -->* Fixed an issue with the display of the thousands separator for PortalsThe header text template in portals was deprecated currency fields in the '''Advanced Data Table''' using a previous upgrade. Any content entered into the Header Text Template options will no longer be visible after the upgradelanguage setting of Spanish. 136309 - Portal header not displaying

Image Compression Exclusion<!-- 139011 - Point of Contact Field lookup shows incorrectly if user has access -->====Other Changes====Images uploaded to * Updated the system that have a width or height of greater than 15Catalan, Danish, Spanish,000 pixels will no longer be processed by GORT to create a smaller compressed thumbnail image. Images that do not get processed because of image dimensions will be noted in the GORT log. 138085 - Image compression exceptions for png and French (Canada) translation files

Deprecate running associated workflow after change status workflow task executed on related objectsOn new workflow tasks of the type of "Change Status" if there is a workflow associated with the target status it will not be triggered. On existing tasks of this type, you will see a toggle Run Associated Workflow on Target Objects under the target status drop down when the target object has Related Objects option selected. This toggle will only appear on existing tasks to avoid disruption. The toggle will not appear for new tasks and if it is toggled off it will no longer be available. 134968 <!- Deprecate running associated workflow after change status workflow task executed on related objects- 139403 - July 2022 Upgrade translations –>