Added password validation to web user create/edit action.
When main console pane shows a wipbin or queue contents, the proper wipbin or queue name is highlighted. But when main console pane doesn't show a wipbin or queue contents no wipbin or queue name is highlighted.
'Assign' and 'Move' actions on console menu are now available only to record owners.
Optimized jquery.maxlength.js for performance and added visible marking of the form field found in violation of maximum allowed length.
Added 'search' as Command To Execute for console.
Added file type verification for attachments on objects and emails.
Modifications:
Downloading of file attachments will be served using Dovetail Seeker and Dovetail Seeker Proxy instead of IIS virtual directory.
Eliminated confusing message when session is lost.
Bug Fixes
Fixed enable/disable logic dependent on a site part being selected.
Fixed a problem with attachments being stored for all contracts in one location.
Preventing potential malicious code execution if the code is saved in document title.
Added script injection attack prevention and input data size check for Login and Reset Password actions.
Added missing query limit test for Oracle databases.
Fixed a regex bug when validating the caret character in a search.
Fixed site parts retrieval, rendering, and sort for multilevel part configuration.
Added missing single-to-double quotes conversion for Queries.
Added endless loop prevention when updating Recent Objects list.
Fixed duplicate entries in Recent Objects list.
Fixed object reference data for console menu actions on selected objects.
Added proper rule title interpretation and enforcement for Change Requests and Part Request Details for auto-dispatch operation.
Fixed errors reported while opening a queue or WIPBin containing a part detail.
Fixed a problem with certain windows (e.g. Log Note) hanging after the action completes.
Fixed performance issues on re/load of CR pages when a large number of ClearQuality transitions is involved.
Fixed console behavior when "Sharing" link to a workflow object is clicked in an email.
Several other minor bug fixes.
Upgrading to Version 4.8
Apply database schema changes for Dovetail Agent. They are documented in the schema file, found in the \schema directory.
Beginning with Dovetail Agent version 4.8, the 'attachments' and 'uploads' virtual directories (or applications) are not to be used or even present:
Remove the Application.Contents('v_attach_dir') setting from global.asa
Remove the Application.Contents('v_upload_dir') setting from global.asa
Remove the attachments virtual directory in IIS
Remove the uploads virtual directory in IIS
If file attachments are in use:
Install the latest version of the Dovetail Seeker. Refer to Install the Dovetail Seeker chapter for instructions.
Configure Dovetail Seeker to serve attachments:
set seekerWebService.defaultResourceTimeout configuration key in seeker.config file.
Optional: modify the $DovetailAgent/pages/config.asp file, updating the ignoreAttachmentTypesArray variable which includes all file extensions that should be disallowed as attachments on workflow objects and emails. Out-of-the-box, this variable is populated with all file extensions blocked by MS Outlook and Gmail, plus few more. Customize it according to your needs.
Note: indexing of attachment files is not required for uploading or downloading of files.
To install the updates and the new files included with this release, copy all of the files under the \pages directory to the system.
Merge in any of your customizations with the new baseline pages.
