Smartstaff
2,107
edits
Changes
m
* Fixed an issue with the delete permissions on the duplicate check user/organization page so users with permission are able to delete an organization/user while merging.
*Fixed an issue with the processing of negative numbers for Norwegian krone (NOR) and Swedish krona (SEK) currency where the negative indicator on the currency value was stripped.
*Fixed an issue with comparing dates for autoloader file processing.
* Fixed an issue with how the Forgot Password screen was rendering on mobile devices.
* Fixed an issue with the Message Center where a file could not be removed from a selected template if it contained a single quote ( ' )in the filename.
* Updated the user’s personal settings to no longer display the time-based one-time password (TOTP) key and QR code that was associated with multi-factor authentication (MFA). This was hidden to enhance security. The TOTP Secret Key and TOTP QR Code are now only visible when you first set up TOTP. You can generate a new secret key and QR code by going to the desired user profile record and clicking Actions > Edit roles and access > Reset TOTP.
*Updated email behavior on backup servers to allow the sending of multi-factor authentication (MFA) verification codes as well as password resets. Other emails on backup servers will not be sent.
* Enhanced system security by adding additional checks and blocking uploads of files with certain extensions.
* Updated missing translation country names for Danish, Spanish, and Catalan.
* Updated cookie policy to reflect the new cookie used to support trusted devices when multi-factor authentication (MFA) is enabled.
* Deprecated the RSA Disconnected Token option from the multi-factor authentication (MFA) dropdown on user roles.
→February 9th 2023 (202302.01)
===February 9th 2023 (202302.01)===
====Fixes====
* Fixed an issue with the delete permissions on the duplicate check user/organization page so users with permission are able to delete an organization/user while merging.
<!-- 144732 - Security issue with org deletion -->
* Fixed an issue with the processing of negative numbers for Norwegian krone (NOR) and Swedish krona (SEK) currency where the negative indicator on the currency value was stripped.
<!-- 145047 - Issue with negative numbers in the system -->
* Fixed an issue with comparing dates for autoloader file processing.
<!-- 144908 - Autoloader appears stuck. Status is 'running 2023-01-12 12:25:04' -->
* Fixed an issue with how the''' Forgot Password''' screen was rendering on mobile devices.
<!-- 144106 - Forget Password Link - Android and Apple Mobile Browsers -->
* Fixed an issue with the '''Message Center''' where a file could not be removed from a selected template if it contained a single quote ( ' )in the filename.
<!-- 138660 - Cant remove file with Message Centre if it has single quote in the name -->
====Other Changes====
* Updated the user’s personal settings to no longer display the time-based one-time password (TOTP) key and QR code that was associated with multi-factor authentication (MFA). This was hidden to enhance security. The '''TOTP Secret Key''' and '''TOTP QR Code''' are now only visible when you first set up TOTP. You can generate a new secret key and QR code by going to the desired user profile record and clicking '''Actions''' >''' Edit roles and access''' > '''Reset TOTP'''.
<!-- 121945 - Update two-factor process -->
* Updated email behavior on backup servers to allow the sending of multi-factor authentication (MFA) verification codes as well as password resets. Other emails on backup servers will not be sent.
<!-- 140928 - securing all email sending functions in the system on backup environments (MFA) -->
* Enhanced system security by adding additional checks and blocking uploads of files with certain extensions.
<!-- 144430 - SmartFolders - File upload security and general issues -->
* Updated missing translation country names for Danish, Spanish, and Catalan.
<!-- 143763 - Country options not displaying as user's language -->
* Updated cookie policy to reflect the new cookie used to support trusted devices when multi-factor authentication (MFA) is enabled.
<!-- 143518 - Update to cookie policy page to reflect fact we no longer just have session-based cookie -->
* Deprecated the '''RSA Disconnected Token''' option from the multi-factor authentication (MFA) dropdown on user roles.
<!-- 139685 - Deprecate the RSA disconnected token option for MFA -->
===January 19th 2023 (202301.02)===