Release notes for the update July, 21 2024

Update Version 4.1.202407192016

New Features

Added API Tokens Management

Added the option to manage API tokens and to generate JWT tokens to authenticate and authorize external scripts and application to access data and processes of the application server.

API token represents an authentication and an authorization mechanism for 3rd party scripts and applications to communicate with the system server using its REST API. After created in the system, an API token generates a unique string signed by the tenant signature key in a standard JSON Web Token (JWT) format that that defines a compact and self-contained way for securely transmitting information from external parties to the system server.

To ensure access security, an API token encapsulates information about the user, expiration time and IP address filter for the caller location. It is signed by the tenant signature keys and could be disabled on the server side.

Added the option to execute system API from OpenAPI browser

Added the option to OpenAPI browser GUI to specify tenant for the script execution to execute selected function with the real data.

The option allows to use OpenAPI REST API browser to execute functions in the real application server tenant in addition to just browsing API categories and functions.

The option facilitates adoption of the system integration into the specific clients networks.

Improved filters on the Network Connections reports.

Added the option to filter connection list on space- and on asset-level reports by the Active indicator.

Added the option to filter system and asset level connection report by local and foreign address and port.

Extensions

Updated the application framework and WEB container to the latest versions.
Fixed the issue with Enable Policy Enforcement action disabling default in-bound traffic.
Updated server and client side application components to the latest versions.
Added context help for the Framework update on the About screen.
Added Oracle RDBMS, MS SQL Server, MySQL and PostgreSQL drivers to the software distribution.
Added the option to show a progress indicator when creating, updating a tenant or testing tenant back end database connectivity.

Bug Fixes

Fixed the issue with processing SSH script results with no exit code.
Fixed the issue with the missing Linux Firewall Management Script Batch in the default Unix-related asset types.
Fixed the issue with the blanket error message during the Linux installation about removing non-existing files.
Fixed the issue with saving asset that contains a single space character in a Password field.
Fixed the issue with parsing incomplete data in script definitions.
Fixed the publishing of the offline installer package.
Fixed the issue with the error message unlocking the empty secret field.
Fixed the issue with some password managers embedded into the browser attempting to save asset user and password fields to their vaults when saving assets.
Fixed the issue with accessing the application home page and the asset list by the user with no space administrator or space auditor permissions.
Fixed the issue with mis-counting total number of accessible space assets on the home page wizard for non-admin users.
Fixed the issue with non-admin users browsing the asset hierarchy.
Fixed the home page layout for non-admin users.
Fixed the issue with losing database password when creating tenants with the external database.
Fixed the success message after testing a tenant connection to the new database on the tenant add of edit screen.
Improved context help for DB URL field on the tenant editing screen to include database connection strings.
Fixed the issue with switching to policies and switching to original state checking the status of the operation.
Changed default rule prefix generated on Windows platforms to ZT.
Fixed the issues with using Oracle RDMS as a backend tenant database.