Release 10.9.0.35
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.9.0.33
Improvements
| Component | Description | Issue |
|---|---|---|
| Administration | A new tooltip has been added to the authorization settings which explains that the Enforce that all passwords are strong (green) checkbox cannot be edited because the property is enabled on system level. | MTM-36662 |
| REST API | The REST API has been updated to provide the ability to query alarms by filtering using createdFrom=<iso-date-time> and createdTo=<iso-date-time> parameters. |
MTM-42499 |
| Security | The vulnerable Log4j library has been updated to the secure 2.17.1 version. | MTM-43349 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Enterprise tenant | On the Branding page the following fields are now mandatory: Main brand logo, Favicon, Main brand color. | MTM-42893 |
| REST API | Fixed a race condition during event binary upload which caused a wrong binary assignment. | MTM-43591 |
Release 10.9.0.31
Fixes
| Component | Description | Issue |
|---|---|---|
| Karaf/OSGI | The Log4j library has been updated to version 2.16 to mitigate CVE-2021-44228. | MTM-42885 |
Release 10.9.0.28
Fixes
| Component | Description | Issue |
|---|---|---|
| Export | The export title has been missing in the filename of export files. This has been resolved. | MTM-41901 |
Release 10.9.0.27
Fixes
| Component | Description | Issue |
|---|---|---|
| Reporting | Removing the export configuration now properly removes its configured schedulers. As a result, report-agent doesn't attempt to create an export for non-existing configurations, which previously resulted in an error in logs. | MTM-40358 |
Release 10.9.0.26
Info
There have been no significant improvements or fixes related to this component since the last Maintenance release.
Release 10.9.0.25
Improvements
| Component | Description | Issue |
|---|---|---|
| REST API | Added the possibility to query alarms and events by filtering using the parameters lastUpdatedFrom= and lastUpdatedTo=. |
MTM-41364 |
Release 10.9.0.24
Improvements
| Component | Description | Issue |
|---|---|---|
| Core platform | To improve performance, the default setting for the algorithm to generate database IDs has been changed. This change particularly affects high volume, high concurrency ingestion. | MTM-33426 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | The New tenant form had some overlapping style issues on the Storage limit per device field which made error messages unreadable. These issues have been fixed. | MTM-41498 |
| Email templates | When the tenant administrator creates a new user, the user receives a confirmation email along with a password reset option. Previously, the default password reset email template did not contain the username. The template has been changed so that for new users the username is included in the email. | MTM-40430 |
| REST API | When the use of green passwords is enforced and the minimal strong password length (system.password.green.min-length property) is higher than the device password length (device-user.password.length property), the system will use the green.min-length value, that means, generate a longer password. Prior to this change, the system rejected auto-generated passwords that were too short blocking device bootstrap. |
MTM-39836 |
Release 10.9.0.23
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | In the User page, the number of entries in the user list was restricted to 100 items. Now, the user list can show more than 100 users. | MTM-40458 |
| Administration | An issue with asynchronous tenant deletion has been resolved. Previously, when the platform failed to delete one tenant (for example due to database issues), then it stopped processing the deletion of a task. The fix contains handling errors, which now enable the deletion of other tenants to continue. Additionally, after a tenant deletion task failed for tenants, it retries the operation for up to 10 times. If it fails 10 times, then the affected tenant is suspended and an alarm is raised on the Management tenant. | MTM-40638 |
| Core platform | The Japanese version of the UI showed a wrong translation for the "Major" alarm severity. With this fix, the behaviour has been corrected. | MTM-40111 |
| REST API | The API "GET - Representation of a ManagedObjectCollection" has been corrected. Previously, when the query parameter onlyRoots was applied the pageSize parameter didn't work. | MTM-41225 |
| Two-factor authentication | In the Edit user window (which shows up if you click User settings in the user menu in the top right), the Set up two-factor authentication button will no longer appear, if the user does not have the proper privileges. | MTM-38374 |
| Two-factor authentication | Resolved an issue where the preferred login mode has not been updated after re-login. The user no longer needs to refresh after re-login to display the correct login mode. | MTM-40778 |
Release 10.9.0.21
Info
There have been no significant improvements or fixes related to this component since the last Maintenance release.
Release 10.9.0.20
Improvements
| Component | Description | Issue |
|---|---|---|
| Performance | The performance for querying top-level groups with inventory roles has been improved for large device hierarchies. This improves the responsiveness of the following pages: inventory roles assignment to users, top-level groups view in Device Management and Cockpit. | MTM-40298 |
Fixes
| Component | Description | Issue |
|---|---|---|
| UI | It's now possible to select dates in the "Registration date" column filter. | MTM-39972 |
Release 10.9.0.18
Fixes
| Component | Description | Issue |
|---|---|---|
| Core product | The error message which shows up when the JSON sent via realtime is incorrect has been improved. | MTM-30257 |
Release 10.9.0.17
Improvements
| Component | Description | Issue |
|---|---|---|
| Security | Security has been improved by preventing HTTPS redirects with invalid HOST headers. | MTM-38168 |
Release 10.9.0.16
Improvements
| Component | Description | Issue |
|---|---|---|
| Administration | Significantly improved performance when paging the files repository with a large number of inventory binaries. | MTM-37890 |
| REST API | The Inventory API has been improved with a new "hasany()" function which accepts multiple parameters. This means that it is possible to use a single statement rather than multiple 'has()" functions joined with OR statements. For example: /inventory/managedObjects?query=$filter=hasany(c8y_IsDynamicGroup, c8y_Status) | MTM-39003 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | Translation issues with several UI strings have been resolved. | MTM-38376 |
| Administration | Breadcrumbs are no longer duplicated on the Simulator page and the SmartRest templates page. The issue occurred since this feature had not been fully migrated to the ngx-component. Now, breadcrumbs in AngularJS can be added in 3 different places/ways:
- c8yBreadcrumbsSet component - c8yBreadcrumbsProvider by adding breadcrumbs array - c8yBreadcrumbsProvider by adding function which can be invoked All breadcrumbs added by angularJS in one of these ways should now work correctly. |
MTM-38693 |
| REST API | Security has been improved by including the header "X-Content-Type-Options: nosniff" to all responses from the Cumulocity IoT platform. | MTM-37335 |
Release 10.9.0.12
Known issues
In the Administration application, the “Default subscriptions” page, in which you can configure which applications are subscribed to a tenant per default on tenant creation, is currently not correctly displaying the list of applications. The issue will be fixed with the maintenance release 10.9.0.15. You can still use REST API to configure the default subscriptions, see Tenant API in the Cumulocity IoT OpenAPI Specification.
Improvements
| Component | Description | Issue |
|---|---|---|
| Administration | The performance in the tenant list view has been improved, specifically perceptible with larger number of tenants. The improvements have been achieved by progressively rendering the tenants on scroll. | MTM-34032 |
| Administration | Audit logs are created when a bulk operation has been changed. | MTM-33153 |
| Administration | The tutorial application has been improved by:
- flattening the structure of the entire application, - removing outdated examples, - adding new examples such as translations, dynamic forms, - slimming app.module.ts, - creating separate modules for each of the examples, - performing a general refactorization to improve readability of examples. |
MTM-33593 |
| Administration | The Branding tab no longer has any required fields. Branding can be configured with any configuration. | MTM-36871 |
| Administration | The performance of the users list in the User page has been improved by changing how the user API is called to fetch users. Moreover, this change further improves the way the user hierarchy is built. | MTM-34927 |
| Administration | The Gainsight PX integration can now be enabled or disabled for each tenant in the Custom properties tab, see Enterprise tenant > Managing tenants in the User guide. | MTM-36927 |
| Administration | Using a strong password is now enforced by default. A strong password must meet all of the following conditions:
- include lower case characters - include upper case characters - include digits - include special characters - contain at least N characters, where N is configurable and the default value is 8 |
MTM-36254 |
| Administration | The user experience for setting the default applications has been improved. The option Default applications for new tenants has been removed from Settings > Configuration > Applications. A new Default subscriptions page is available in the Applications menu, where default applications for both new tenants and existing ones can be configured, see Enterprise tenant > Managing tenants in the User guide. | MTM-35168 |
| Administration | The SMS gateway view is only available if the user has the respective READ permission. Data can be entered and the Delete and Save buttons are displayed only if the user has the respective ADMIN permission. | MTM-36998 |
| Administration | A confirmation dialog (asking for the password) has been added to prevent accidentally deleting a tenant. | MTM-18618 |
| Administration | New placeholders for tenant ID, username and password have been added in the Login screen. | MTM-34011 |
| Administration | After removing delegated users, audit logs were not displayed for the shared user manager role and an error message "Cannot find document with ID" was displayed. The issue has been fixed by making sure that such events do no longer prevent audit logs from being displayed. | MTM-38363 |
| Authentication | After changing the login mode or the TOTP strategy, users can cancel the operation if they don't want to be logged out. | MTM-36126 |
| Billing | Device statistics are now included (counted) for all processing modes. | MTM-34968 |
| Billing | Request counting in SmartREST and MQTT is now more consistent. The behaviour now matches that for the REST interface. For details see, Tenants in the Cumulocity IoT OpenAPI Specification. | MTM-32970 |
| CEP (Esper) | CEP Esper was upgraded to Java 11. | MTM-34536 |
| CEP (Esper) | Customers who are still using CEL (Esper) as a CEP engine will receive an alarm once a day which informs about the deprecation of the service. | MTM-34751 |
| CEP (Esper) | Some Java library calls have been disabled in this release for security reasons. If you have Esper CEL that uses Java system calls, you should test your application carefully in an upgraded test environment before upgrading your production environment. | MTM-37710 |
| Certificates | Information about operations on trusted certificates is now available in the audit logs. A new record with information about action is added when the user adds, updates, or deletes the certificate. | MTM-34429 |
| Core | The ngx-bootstrap library has been upgraded to version 5.6.1 | MTM-33919 |
| Core | Nexus components have been updated to the latest version (3.28) in the online and offline installation. | MTM-35657 |
| Data broker | When validating the data-broker connector the test has been improved to ensure it works correctly in all cases. | MTM-36786 |
| Enterprise tenant | When loading tenant usage statistics, the user timezone information is now taken into account. Prior to this change all statistics were loaded in UTC timezone. Now, when the user is located in a different timezone (for example, Australia), the result may be loaded for a different day. See also Enterprise Tenant > Usage statistics and billing in the User guide. | MTM-35137 |
| Enterprise tenant | In order to correctly support wildcard certificates it is necessary to ensure the tenant domain name conforms to the required standard. For this reason underscores are no longer allowed in the tenant domain name, when creating new tenants. | MTM-28092 |
| Export | When migrating smart-rule-based schedules to the new reporting agent, the platform will make sure they are activated right away, without any required extra action from the user. | MTM-37718 |
| Export | In the export details, the checkbox for the time range selection now correctly reflects the saved configuration when opened for editing. | MTM-37685 |
| Gainsight | For tenants with the Gainsight product-experience tracking feature enabled, the following additional user information is now passed to the Gainsight platform:
- email address - username - phone number - first name - last name |
MTM-37435 |
| MongoDB | To improve reliability and atomicity, the tenant is updated partially (only the field that changes) instead of doing full tenant entity override. | MTM-35863 |
| MongoDB | Improved performance and database load on queries that return in a sorted order. | MTM-35519 |
| Realtime | The /cep/realtime endpoint is deprecated. Customer applications should be migrated to /notification/realtime.
The /devicecontrol/notifications enpoint is deprecated. Customer applications should be migrated to /notification/operations. |
MTM-36761 |
| REST API | The handling of bulk changes to managed objects has been improved. It is now possible to add or delete a group of children to a parent managed object with one API call, bulk add/delete. | MTM-35390 |
| REST API | Improved the inventory API "hasany()" function which now accepts multiple parameters. This means that on a query it is possible to use a single statement rather than multiple OR statements.
For example: /inventory/managedObjects?query=$filter=hasany(c8y_IsDynamicGroup, c8y_Status) |
MTM-38270 |
| Security | Jetty has been upgraded to version 9.4.36 for the Core. | MTM-36711 |
| Smart rules | "On alarm duration increase severity" smart rule was fixed for multiple devices. Now, when the smart rule monitors multiple devices and first reaches the CRITICAL state, the remaining alarms are still monitored in a separate context. | MTM-32668 |
| Smart rules | To improve clarity, the labels for activating/deactivating smart rules for group's children have been modified. | MTM-34305 |
| SMS | bics.com has been added as a new SMS provider to the SMS gateway. | MTM-33890 |
| SMS | The SMS gateway now supports using Comarch as SMS provider. | MTM-34939 |
| SMS | The SMS provider page has been updated and SMS providers can now be configured using the Administration UI, see Administration > Changing settings > Providing SMS provider credentials in the User guide. Only users with permission SMS READ can see the SMS configuration and users with permission SMS ADMIN can modify the SMS configuration. | MTM-35493 |
| Two-factor authentication | The administrator can now enforce TOTP for other users. | MTM-33430 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | The tenant option sms77.api.key is now prefixed with "credentials." implicitly in order to fetch the correct option value. | MTM-34362 |
| Administration | In the user list, the option "Copy inventory roles from" for a current user is now available. | MTM-34976 |
| Administration | The email template for data export now resolves the {tenant-domain} placeholder and line breaks correctly. | MTM-34632 |
| Administration | The menu item for the SMS provider setting is now only visible in the navigator if the microservice for the SMS functionality (sms-gateway) is subscribed to the corresponding tenant. | MTM-35261 |
| Administration | All input fields in the detail view of an application in Applications > Subscribed applications are now read-only since the whole form is not saveable (you cannot edit applications owned by the parent tenant). | MTM-35128 |
| Administration | System audit logs are now displayed properly again in the Audit logs tab. | MTM-31664 |
| Administration | Fixed issue, when UI was treating file size limits in bits instead of bytes. | MTM-35966 |
| Administration | Very long names/versions will now be displayed in 2 lines and no longer got truncated. | MTM-35219 |
| Administration | The checkbox Send password reset link as email will now only be available in the Edit user dialog on creating a new user. | MTM-37043 |
| Administration | Added missing translations for validation errors in the Custom properties tab of tenants. | MTM-34208 |
| Administration | In the User page, changing the password for the current user is now working. | MTM-37314 |
| Administration | Issue resolved where it was possible to use a weak password when a strong password enforcement had been configured. | MTM-38479 |
| Administration | In the Management tenant, providing a URL in Settings > Configuration > Support link will now enable the Request support button. Previously, the button was not visible. | MTM-39011 |
| Authentication | Fixed issue where the Two-factor authentication (TFA) options could be selected even if TFA was disabled. The TFA option checkboxes are now disabled if TFA is not enabled. | MTM-35967 |
| Authentication | The QR code for the TOTP configuration is now generated by JS framework instead of Google Api. | MTM-35526 |
| Authentication | A generic error message is now returned instead of an internal server error for '/cep/realtime'. | MTM-35527 |
| Data broker | The error message that shows up when a data-broker connector cannot be created now includes details, such as the SSL certificate problem with the destination URL. | MTM-35686 |
| Core product | Fixed handling big values for measurements provided via scientific notification. Values are now stored as floating point type. | MTM-37811 |
| Enterprise tenant | In the Branding page it is no longer possible to upload a non-supported file format; you can now only upload image files. | MTM-29627 |
| Enterprise tenant | Resolved translation error in the German UI when activating the custom domain name in the Enterprise tenant. | MTM-29705 |
| MongoDB | Improved MongoDB performance that was impacted when counting documents. | MTM-35111 |
| MongoDB | The managed object deletion mechanism has been improved. When deleting a huge amount of data it should no longer affect the overall platform performance. | MTM-31711 |
| MongoDB | The performance of monitoring device availability has been improved. It now works faster when monitoring a large amount of devices. | MTM-36213 |
| Realtime | The error response from the real-time endpoint will not return sensitive server information. | MTM-34650 |
| Realtime | Improved memory consumption when using inventory roles READ ACLs for realtime notifications on /* channels. | MTM-36926 |
| REST API | The update event is sent to CEP when the c8y_ActiveAlarmsStatus managed object fragment is updated. | MTM-36239 |
| REST API | The childAsset custom fragment is now allowed to be used for inventory. | MTM-34304 |
| REST API | Deleting a fragment of an object via the REST API no longer leads to wrong data display and wrong CEP rule execution. | MTM-35833 |
| REST API | When uploading event binaries to the platform in chunks, and the final chunk reveals that the total file exceeds the configured file size limit, the whole operation is rolled back, and all previously stored chunks are removed correctly. | MTM-32794 |
| REST API | Binary API: The size of the binary sent to the API is now based on the actual size and not based on the `Content-Length` header. | MTM-35295 |
| Security | The security for onTopLBs has been improved by introducing OSCP (Online Certificate Status Protocol) to ensure that the certificates are valid. | MTM-35631 |
| Single sign-on | Fixed the rare case that the single sign-on configuration had been not updated after successful save of a new configuration. | MTM-38999 |
| SMS | The SMS77 configuration with inherit.enable=true now allows the inheritance of the encrypted api.key defined by credentials.api.key. | MTM-36982 |
| SMS | The SMS provider OpenIT/plusserver now supports sending SMS with non-ASCII characters. | MTM-37600 |
| Two-factor authentication | Fixed an issue occurring when logging in as a support user when the tenant ID is provided in the user input on the login screen. | MTM-35125 |
| Two-factor authentication | For more clarity, a new warning message has been added for disabled users with TOTP, stating that the user is disabled. | MTM-36710 |
| Two-factor authentication | The TFA (SMS/TOTP) options are only available on the user details page when TFA is enabled on system or tenant level. | MTM-36732 |