Added
5.24.41 2025-01-31
Form.js
: support new lifecycle hook afterValidated
UFileMultiple
control: new getPreviewInfo
prop that accepts a file-processing function,
which determines how file data is displayed in the control
UFileRenderer
control: new fileOriginalName
, fileSize
, and iconContentType
props,
which can override how file information is displayed — changing the icon, file size, or file name.
For example, can be useful for retaining original details of converted files
5.24.39 2025-01-16
- SECURITY the default authentication page
ub-auth.html
now contains a rule to avoid being indexed by Google
5.24.38 2025-01-14
- added masking of viewport during re-logon to prevent user interaction with UI while waiting for authentication response
Changed
5.24.40 2025-01-28
URequest2FA.vue
changed the text message in the 2FA confirmation window when relogin
Removed
5.24.37 2025-01-09
URichTextEditor
: remove template
plugin and its button from the toolbar since there are no passed
templates by default to make it work. It can be added with the help of buildTinyMceConfig
prop method alongside needed templates
Fixed
5.24.40 2025-01-28
UTableEntity
: fixed Cannot convert undefined or null to object
while saving new record in case it does not
match whereList and not all required fields are in record before estimating its matches where list;
(regression from adminui-vue@5.24.27)
UDropdown
: popover DOM element now removed from body (fixed position) when UDropdown is destroyed
5.24.39 2025-01-16
UTableEntity
: deleting of item that loses access after update
5.24.38 2025-01-14
UTableEntity
: consider where items marked as non-clearable while selecting an item by ID on local data changes.
It fixes passing of required where items for some misc options like __useRelatedEntityRls
in Scriptum.
Also, prevents failing if some item loses access after update
PDFViewerExt_InsideIframe
: added min-height of 200px for summary content section
5.24.37 2025-01-09
URichTextEditor
: fixed preview
feature (actual fix is in adminui-reg
CSP rules)
- removed the
viewsource
button from the toolbar since it does not exist
5.24.36 2025-01-07
UTableEntity
: introduced a check to ensure that condition is not equal to 'custom' before adding the expression to
fieldList in updateDataFieldList
getter.
- Locale key
select.valueIsUndefined
: removed entity name from message
Added
5.24.112 2025-01-14
- added masking of viewport during re-logon to prevent user interaction with UI while waiting for authentication response
Fixed
5.24.113 2025-01-16
- EntityGridPanel multifilter: the element label is now taken from the label of the corresponding grid column (if the column is available), rather than from the attribute label
Added
5.24.42 2025-01-16
- SECURITY main application page now contains a rule (header
X-Robots-Tag: noindex, nofollow
) to avoid being indexed by Google.
Rule can be removed by sets ubConfig.application.customSettings.visibleForSearchEngines
to true
5.24.40 2025-01-09
frame-scr
CSP rule now includes data:
- used by tinymce preview
Changed
5.24.42 2025-01-16
- SECURITY removed
X-XSS-Protection
header from main application page (deprecated by browsers, unsafe)
Fixed
5.24.44 2025-01-29
- Fixed caching of home page headers for multi-tenant environment by caching headers for each tenant separately [LDOC-4402]
Fixed
5.24.18 2025-01-31
- work of
isSuperUser
function in multi-tenant environments, now it checks "admin" by login instead of ID
Added
5.24.27 2025-01-31
- for fileSystem based BLOB store new configuration parameter
newFolderMask
is added -
a file system permission mask for new folders. Default is 0o750. Set it to 0 to inherit permissions
Added
5.24.10 2025-01-09
- export
formatCurrency
- a currencies formatting for UK
// before this changes (wring way)
const formatCurrency = require('@unitybase/cs-shared/formatCurrency')
// after this changes - right way
const { formatCurrency } = require('@unitybase/cs-shared')
Fixed
1.0.3 2025-01-09
- Added missing locales for 'Date/time' key
Changed
5.24.23 2025-01-09
- SECURITY user anonymizing now uses SHA256 of userID salted with host instead of MD5 of username
Fixed
5.24.24 2025-01-14
- prevent error
Cannot read properties of null (reading 'setupCert2KeyWatchdog')
in case user,
what previously logged into the system with a hardware token has logged in using cloud cryptography
- added validation what the user login match the initial one when re-entering.
Logins may differ if the user chooses a different key during CERT2 re-authentication
Added
5.25.50 2025-01-28
- SECURITY access to
/clientRequire/**/*.js.map
in case server in not in -dev mode now always returns 404.
This makes it difficult to reverse engineer the client side if the package in case developer forgot to remove
the map
files from the package
5.25.49 2025-01-16
- added documentation for
ubConfig.application.customSettings.visibleForSearchEngines
prop
Changed
5.25.51 2025-01-31
Session.runAsAdmin
function changed, so that for multi-tenant environment
it loads admin
user ID and redirects call to Session.runAsUser
with the ID.
This fixes the problem that server built-it admin session is bound to the system tenant.
Changed
5.24.34 2025-01-31
uba_user
entity on multitenant environment now allows in all tenants to see users with mi_tenantID=0
,
there just two of them:
root
- the system user, which can be used to log into any tenant
anonymous
uba_subject
entity now uses MT policy tenantAndCommonAndSpecialUsers
to allow seeing the root
and anonymous
users
- update operation now validates that in user tenants it is not possible to update
anonymous
and root
built-in users
in any way
Fixed
5.24.31 2025-01-09
- Added
uba_advSecurity
read permission for Supervisor
Added
5.25.57 2025-01-31
- For multitenant environment added
DBPostgresPolicies.tenantAndSpecialUsers
and
DBPostgresPolicies.tenantAndCommonAndSpecialUsers
policies to use with uba_user and uba_subject correspondingly,
so that the root
and anonymous
users can be used seen in the tenants, as there might be entries referencing them.
Changed
5.25.55 2025-01-16
- SECURITY improvements in generated nginx config for HTTPS:
- removed support for TLS1.1 (remains TLS1.2 and TLS1.3)
- use a modern ssl_ciphers set (removed week ciphers: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA)
- added support for DHE/EDH and Forward Secrecy
- (Linux) added generation of DH params file if not exists; on Windows should be generated manually
Removed
5.25.55 2025-01-16
ubcli linkStatic
: removed -run
cmd line switch (never worked)
Fixed
5.25.56 2025-01-28
initialize
command now uses ubMigrate.exec
instance of ubMigrate.migrate
method,
this fixes initialization of multi-tenant environments
Fixed
5.24.36 2025-01-14
ubm_sysdictionary
form: fixed custom JSON validation to correctly handle objects as values,
preventing an invalidJson
error