Release 10.11.0.38
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.11.0.37
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.11.0.36
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.11.0.33
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.11.0.32
Fixes
| Component | Description | Issue |
|---|---|---|
| Enterprise tenant | On editing subtenants, parent tenants can no longer delete the administrators phone number, if the phone number is a mandatory field (for example, if TFA is enabled). | MTM-46183 |
Release 10.11.0.31
Fixes
| Component | Description | Issue |
|---|---|---|
| Inventory roles | To improve performance, unnecessary type queries have been removed from the inventory role assignment page. The has('c8y_IsDeviceGroup') fragment is used now, instead of a type+eq+c8y_DeviceSubgroup query. |
MTM-46014 |
Release 10.11.0.28
Fixes
| Component | Description | Issue |
|---|---|---|
| Authentication | It is now possible to display all audit log entries related to the authentication configuration by filtering by "Tenant Auth configuration". | MTM-45072 |
Release 10.11.0.26
Improvements
| Component | Description | Issue |
|---|---|---|
| REST API | The performance of creating measurements has been improved by removing redundant read requests to the database. | MTM-44162 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | The performance of the Status tab in the application's details has been improved by avoiding excessive communication with the backend. Reducing the load on the backend also improves the overall platform stability. | MTM-45279 |
Release 10.11.0.25
Fixes
| Component | Description | Issue |
|---|---|---|
| Bulk operations | The memory usage has been reduced when processing bulk operation requests for large, dynamic asset groups (smart groups). This fixes an issue that occurred with smart groups containing a large number of assets. | MTM-44591 |
Release 10.11.0.24
Improvements
| Component | Description | Issue |
|---|---|---|
| Data broker | Previous releases of the Data Broker microservice could fail to upgrade correctly when a new version of the microservice was uploaded to the platform. When this happened, the older version would continue to run even though the new version was available. This issue could be mitigated by unsubscribing and re-subscribing to the microservice from the Management tenant. With this release, the microservice will correctly upgrade to the new version with no user interaction required. | MTM-43352 |
Release 10.11.0.23
Info
There have not been any significant improvements or fixes related to this component since the last Maintenance release.
Release 10.11.0.22
Fixes
| Component | Description | Issue |
|---|---|---|
| MongoDB | The performance and memory consumption of inventory "query by text" has been improved by disabling the result sorting. This change is behind a feature toggle and must be switched on by the system administrator for a particular tenant. | MTM-42503 |
Release 10.11.0.19
Fixes
| Component | Description | Issue |
|---|---|---|
| CEP (Esper) | A performance issue has been fixed by optimizing the CEP event mapping time. | MTM-41219 |
Release 10.11.0.17
Improvements
| Component | Description | Issue |
|---|---|---|
| Documentation | Added a description on how to disable TOTP for a user to Administration > Two-factor authentication in the User guide. | MTM-42594 |
Release 10.11.0.16
Improvements
| Component | Description | Issue |
|---|---|---|
| Messaging Service | All Messaging Service components, including the Pulsar server, notifications WebSocket server, and the data broker microservice, have been updated to fix the vulnerabilities in the log4j library reported as CVE-2021-44228 and CVE-2021-45046. | MTM-42838 |
| REST API | The REST API has been updated to provide the ability to query alarms by filtering using createdFrom=<iso-date-time> and createdTo=<iso-date-time> parameters. | MTM-42499 |
| Security | The vulnerable log4j library has been updated to the secure 2.17.1 version. | MTM-43349 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | To improve the usability, the layout of the New inventory role page has been adjusted and now displays two columns: the name and description for the inventory role on the left, permissions on the right. | MTM-42548 |
| CEP (Esper) | Random blocking of database connection attempts from predefined smart rules has been fixed. | MTM-41797 |
| Enterprise tenant | On the Branding page the following fields are now mandatory: Main brand logo, Favicon, Main brand color. | MTM-42893 |
| REST API | Fixed a race condition during event binary upload which caused a wrong binary assignment. | MTM-43591 |
Release 10.11.0.12
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | The cell ID usage statistics icon was still showing an outdated layout. This has been fixed by referring to the current icon library. | MTM-42306 |
| Reporting | The export title has been missing in the filename of export files. This has been resolved. | MTM-41901 |
| Karaf/OSGI | The Log4j library has been updated to version 2.16 to mitigate CVE-2021-44228. | MTM-42885 |
Release 10.11.0.8
Improvements
| Component | Description | Issue |
|---|---|---|
| Data broker | It is now possible to configure a HTTP/HTTPS proxy for the data broker agent microservice, in the usual manner for microservices. See General aspects > Microservice runtime > Proxy variables in the Microservice SDK guide. | MTM-41307 |
| REST API | Added the possibility to query alarms and events by filtering using lastUpdatedFrom=<iso-date-time> and lastUpdatedTo=<iso-date-time> parameters. |
MTM-41364 |
| Security | To support customers with older devices Cumulocity IoT supports weaker ciphers by default. If you are running on a self-hosted or dedicated environment and wish to remove support for these weaker ciphers you need to contact your Operations Team to request them to remove support for the weaker ciphers. For customers of Cumulocity IoT Public Cloud please contact Software AG Global Support to raise a ticket. | MTM-41831 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Karaf/OSGI | The Netty-Codec library has been upgraded to version "4.1.70.Final". | MTM-42144 |
| Reporting | Removing the export configuration now properly removes its configured schedulers. As a result, the report agent doesn't attempt to create an export for non-existing configurations, which previously resulted in an error in logs. | MTM-40358 |
| REST API | The race condition which can occur during the processing of the following requests has been corrected:
GET, POST, PUT /user/{tenantId}/users/{username}/roles/inventory GET, PUT, DELETE /user/{tenantId}/users/{username}/roles/inventory/{id} GET /user/{tenantId}/users/{username}/roles/inventory/{id}/roles In rare cases the race condition could have caused errors during the processing of the above requests. |
MTM-41855 |
Release 10.11.0.4
Improvements
| Component | Description | Issue |
|---|---|---|
| Administration | Users can now use the User settings dialog to control the collection of usage data and product experience features such as Knowledge Hub and product notifications. See Getting started > User options and settings in the User guide. | MTM-37359 |
| Data broker | Reduced the default resource limit for the databroker-agent-server microservice to request 1000mCPU. | MTM-40043 |
| Core platform | To improve performance, the default setting for the algorithm to generate database IDs has been changed. This change particularly affects high volume, high concurrency ingestion. | MTM-33426 |
| Core platform | OpenResty has been upgraded to version 1.19.3. | MTM-39980 |
| Security | When creating a new user, it is now mandatory to provide a valid email address. | MTM-34356 |
| Security | When creating a new tenant, it is now mandatory to provide a valid administrator email address. | MTM-34355 |
| Security | The tenant admin users will now have enhanced password, that is, green password, enforced. This increases security and protects the tenant admin account. | MTM-39603 |
| Single sign-on | Single sign-on users are managed by an external authorization server, and user details are set based on tokens from the authorization server and mappings from the single sign-on configuration. Some mappings were missing in the previous implementation, that is, for user email, first name, last name, and phone number. Mappings for these user details have now been added to the configuration. | MTM-32506 |
| Smart rules | The smart rules documentation has been updated to indicate that under certain circumstances, for example, if the time gap between measurements is quite large, the smart rules "On measurement threshold create alarm" and "On measurement explicit threshold create alarm" may raise an incorrect alarm severity. See Cockpit > Smart rules in the User guide. | MTM-40164 |
| SMS | The SMS-gateway microservice has been updated to use Telefonica Kite API v9. | MTM-40883 |
| Two-factor authentication | Cumulocity IoT will now provide the issuer name to distinguish between different instances, tenants and other OTC stored in authenticator applications like Google Authenticator or Microsoft Authenticator. | MTM-39026 |
Fixes
| Component | Description | Issue |
|---|---|---|
| Administration | Breadcrumbs are no longer duplicated on the Simulator page and the SmartRest templates page. The issue occurred since this feature had not been fully migrated to the ngx-component. Now, breadcrumbs in AngularJS can be added in 3 different places/ways:
- c8yBreadcrumbsSet component - c8yBreadcrumbsProvider by adding breadcrumbs array - c8yBreadcrumbsProvider by adding function which can be invoked All breadcrumbs added by AngularJS in one of these ways should now work correctly. |
MTM-38693 |
| Administration | A contact phone number is now required when creating a new tenant to avoid situations in which an administrator cannot log in when TFA by SMS is enabled. | MTM-39412 |
| Administration | In the User page, the number of entries in the user list was restricted to 100 items. Now, the user list can show more than 100 users. | MTM-40458 |
| Administration | An issue with asynchronous tenant deletion has been resolved. Previously, when the platform failed to delete one tenant (for example due to database issues), then it stopped processing the deletion of a task. The fix contains handling errors, which now enable the deletion of other tenants to continue. Additionally, after a tenant deletion task failed for tenants, it retries the operation for up to 10 times. If it fails 10 times, then the affected tenant is suspended and an alarm is raised on the Management tenant. | MTM-40638 |
| Administration | Fixed a bug that was preventing administrators to change local users email addresses when they were logged in using SSO. | MTM-40875 |
| Administration | After changing the login mode in the management tenant, the login mode now refreshes correctly after re-login. | MTM-37603 |
| Administration | The New tenant window had some overlapping style issues on the Storage limit per device field, which resulted in unreadable error messages. These issues have been fixed. | MTM-41498 |
| Billing | The tracker-agent now uses microservice subscription. The registration of tenants tracker-agent-{tenantId} is no longer required. A subscription is now required for new tenants using the tracker-agent. Tenants that have already been using tracker-agent will be subscribed automatically. | MTM-34597 |
| Core platform | Significantly improved performance when paging the file repository with a large number of inventory binaries. | MTM-37890 |
| Core platform | The Japanese version of the UI showed a wrong translation for the "Major" alarm severity. With this fix, the behaviour has been corrected. | MTM-40111 |
| Enterprise Tenant | The checkbox that allows subtenants to modify definitions of retention rules or tenant options is now available for Enterprise tenants under Administration > Tenant policies. | MTM-39494 |
| REST API | Deleting a non-existing tenant will now return a 404 HTTP status code instead of an error 500. | MTM-38976 |
| REST API | To avoid issues with the usage of special and control characters when creating tenant options, it is no longer allowed to create tenant options with special HTTP and control characters. See also here for the list of disabled special HTTP characters: https://secure.n-able.com/webhelp/NC_9-1-0_SO_en/Content/SA_docs/API_Level_Integration/API_Integration_URLEncoding.html. | MTM-37683 |
| REST API | Improved the security for the "/user/currentUser" endpoint - users with SYSTEM role no longer have access to the endpoint. | MTM-39852 |
| REST API | When green password is enforced and the minimal strong password length (system.password.green.min-length property) is higher than the device password length (device-user.password.length property), the system will use the green.min-length value, that means, generate a longer password. Prior to this change, the system rejected auto-generated passwords that were too short blocking device bootstrap. |
MTM-39836 |
| Security | The following third-party libraries have been upgraded to fix security vulnerabilities:
- dompurify to 2.2.9 - serialize-javascript to 5.0.1 - underscore to 1.13.0 - ini upgraded to 1.3.8, 2.0.0 - three upgraded to 0.128.0 - ssri upgraded to 6.0.2, 8.0.1 - semantic-release dependency has been removed - dot-prop upgraded to 4.2.1, 5.3.0 - faye-websocket upgraded to 0.11.3 |
MTM-39109 |
| SMS | Sending SMS with the KPN provider returned an error even when the SMS was sent correctly. Improved response handling with the KPN API has been implemented to address this issue. | MTM-40724 |
| Two-factor authentication | In the Edit user window (which shows up if you click User settings in the user menu at the top right), the Set up two-factor authentication button will no longer appear, if the user does not have the proper privileges. | MTM-38374 |