List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.1 CDWS-4026 [Web Console]: View functionality is not working for key/trusted certificate other than RSA CDWS-4025 [CDZOS]: Error in adding .EASERVER node from web console CDWS-4023 [CDZOS]: Field "External Authentication" present only on View Details screen for .CLIENT node CDWS-4021 [CDZOS]: Error in adding duplicate partner CDWS-4012 Mismatch in Ciphers when TLS1.3 protocol and SP800-131A Strict security mode selected in filter of cipher for Windows CDWS-4011 Mismatch in Ciphers when TLS1.3 protocol and FIPS security mode selected in filter of cipher for Windows CDWS-4010 Order of "DefaultToLn" and "Disable" should be same for Security mode and Protocol for better user experience CDWS-4009 No Ciphers are visible when TLS1.3 and security mode "Disable" selected in filter for Windows CDWS-4006 Export of local node in windows is not working CDWS-4005 [CDZOS]:Not able to add partner with specific ciphers CDWS-3995 Certificates in Secure+ is not working for windows CDWS-3994 CRL Caching || Firefox || Error message for invalid input CDWS-3993 CDZOS: Security settings has been configured incorrectly with custom security CDWS-3991 Default values appearing as blank for CRL caching fields CDWS-3990 Mismatch in name of CRL caching fields CDWS-3958 Field "Certificate Validation Definition" is missing for local and remote secure+ nodes CDWS-3949 Not able to add user authority with "MaxSignonAttempts" for zOS CDWS-3945 MFTWebServices is not coming up after upgrade due to PostgreSQL password authentication failed CDWS-3942 local Host is missing from URL on upgrade page CDWS-3935 Unable to edit the local node with all protocols in zOS CDWS-3920 Blank secure+ Partner is coming on second page just after login for secure+ in zOS CDWS-3916 Admin Functionality after changing connectionTimeInactivityLimit and connectionTimeMaxLimit CDWS-3915 Trusted Certificates Not Showing on Admin Function CDWS-3875 [CDW]: Disable button for Security Protocol missing for .Client, .Seaserver and remote nodesrecord CDWS-3868 ‘Override’ parameter for Secure+ configuration for a remote node or the local.node CDWS-3852 EAserver hostname and port number not found on Create/Edit .EASERVER CDWS-3750 Mismatch in the values of parameters in POST and GET for partners in zOS MFT-10965 Addition codes added to userfile.cfg record when creating proxy ID List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.2 CDWS-4309 License folder doesn't get deleted on Windows server 2019 in white label installation CDWS-4307 Remove wlReadme.sh from Installation Directory in Solaris 11 CDWS-4299 Readme do not whitelabelled and License folder do not get deleted CDWS-4298 Authorized username is being displayed instead of guest user in swagger via index.html CDWS-4292 SuSe: 6005 to 6101 Upgrade || Two web service name after Upgrade CDWS-4289 Incorrect error message when maximum connection limit has been reached on CDWS CDWS-4283 "Password" prompt is coming extra in solaris 10 while upgrade CDWS-4282 Redhat 7 || Upgrade from 6003 to 6102 || Admin Password and Nodes are not retained after upgrade CDWS-4278 Password Max length check CDWS-4277 "System generated password" not working for admin CDWS-4266 PostgreSQL password is coming in plain text in installation logs CDWS-4265 Improper format of parameter is displaying in Tracing for Windows CDWS-4263 Change security screen for local node is coming blank for unix CDWS-4261 Admin password validations are not displayed properly on UI CDWS-4255 Remove unwanted files from Installation Directory in upgrade CDWS-4253 "Provided OS not Supported" error coming for CDZ netmap request when logging via CDWS UI CDWS-4243 PostgreSQL and MFTWebservices are not coming up after upgrade CDWS-4239 zLINUX|| Readme File: UI and API information CDWS-4222 CLONE - AIX : Nodes and Admin Password is not Persisted after Upgrade from 6.1.0.0. to 6.1.0.1 CDWS-4221 CLONE - File "decoded.txt" has not been deleted after successful silent install/upgrade on Windows CDWS-4205 Redhat || Silent Installation || Self-Signed : Installation Failed due to Tempered Keystore CDWS-4189 Edit Partner || Error message received if user tries to edit the partner details CDWS-4188 Redhat || Installation Step Text || "Enter the ConnectDirectWebServices secure server port" CDWS-4172 PostgreSQL and MFTWebservices are not coming up after upgrade CDWS-4170 Multiple .hidden backup files created in Upgrade on Zlinux CDWS-4169 Accessibility testing issues for all screens for unix CDWS-4158 Silent Upgrade not working on Solaris 10 CDWS-4155 InCorrect Error Messages in Admin Reset Password and login CDWS-4145 Accessibility testing issues for all screens for Windows CDWS-4135 Pre Installation Summary is missing in Zlinux Fresh Installation CDWS-4125 Accessibility testing issues for all screens for security feature CDWS-4076 Accessibility testing issues for all screens for zOS CDWS-3945 MFTWebServices is not coming up after upgrade due to PostgreSQL password authentication failed CDWS-3932 Change the documentation version in 6.1 Installers IBM JRE upgraded to 8.0.6.10 for all platformss List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.3 CDWS-4506 ResetDefaultCDWSAdminPassword.sh file getting generated with invalid character for RedHat CDWS-4505 ResetDefaultCDWSAdminPassword.sh file getting generated with invalid characters for suse and solaris CDWS-4504 KeyStore and truststore password getting printed in Rest API logs CDWS-4491 PostgresDataDeletion Jar giving ClassNotFound Exception CDWS-4488 501 error coming on UI from REST for secure certificates CDWS-4487 Latest Windows installer is not working CDWS-4455 "local userId" is coming empty on UI when added proxy from CDRequester with "administrator" CDWS-4454 "Filter Stats" is not working in Statistics in CDWS UI CDWS-4453 Incorrect password gets updated in user proxy when update the user proxy CDWS-4452 Need to make "Local Password" editable parameter for McD feature in user proxy CDWS-4450 Change keystore and Change truststore is not clickable in admin CDWS-4442 Value of McD parameter is not retaining in edit screen of user proxy for windows CDWS-4437 Incorrect value is coming for "authorizedToRunProcessUsingProxyServiceAccount" in user proxy for Windows CDWS-4436 "External Authenticator Address" value is coming empty in duplicate for user Authority in UI CDWS-4435 Unable to create a user with default values of operator template from UI for user authority CDWS-4434 Default value "No" is not selected in Edit template of operator in UI for user authority CDWS-4433 Default value "No" is not selected in Edit template of *genuser in UI for user authority CDWS-4432 Default value "No" is not selected in Edit template of admin in UI for user authority CDWS-4431 Newly added parameters are visible on UI when group authority is selected for User Authority CDWS-4430 Limit parameter is not working when fetching stats directly from CD Node CDWS-4428 Not able to add user Authority with all supported parameters for Windows CDWS-4426 Incorrect error message with integer values of McD parameters for User Proxy for windows CDWS-4425 Incorrect error message with incorrect value of parameter in user proxy for windows CDWS-4424 Incorrect check applied on accepted values for McD related parameters for user Proxy for Windows CDWS-4423 Mismatch in the GET values for user proxy for Windows CDWS-4421 Incorrect error message with integer values of McD parameters for User Authority for windows CDWS-4420 Incorrect format of accepted values in error message for user Authority for windows CDWS-4419 Incorrect check applied on accepted values for McD related parameters for user authority for Windows CDWS-4416 Newly added parameters are not visible on swagger for McD for User Authority and User Proxy CDWS-4413 Incorrect hyperlink description on "view Certificate" CDWS-4394 In case of upgrade from 6.0.0.3 to latest version, low disk space used. CDWS-4372 Unable to launch UI with index.html in URL CDWS-4370 Exception "java.lang.ArrayIndexOutOfBoundsException" while running performance CDWS-4369 CDWS Proxy user settings cannot handle entry with 2 @ symbols in it. CDWS-4361 Intermittent Issue: Redis_pkg folder found in WL Installation CDWS-4355 SuSe & Redhat|| WL || Webservice Name after Installation CDWS-4353 UI || Edit Security of Partner || Infinite Loading when select the dropdown to Custom Security CDWS-4352 Text CDWebconsole in Whitelabel RestAPI logs CDWS-4345 FQDN field is blank on certificate details Panel CDWS-4342 Access token gets expired after 24 hours even max time limit is configured as 72 hours CDWS-4334 CDWS Documenation Update for Silent Install Upgrade CDWS-4331 Removal of iterative call to fetch stats from CD for the process submitted in current session CDWS-4308 Intermittent Issue: Tempered Keystore CDWS-4293 Upgrade is not working for windows 16 on a particular path CDWS-4290 Cookies and local storage are not being deleted after logout from web console CDWS-4288 Use "PostgreSQL" instead of "Postgres" in Windows Installer CDWS-4273 Use "PostgreSQL Password" instead of "Password" in Windows Installer CDWS-4264 Incorrect positioning of "User Id" parameter for user authority in Unix CDWS-4254 Back-up Custom Keystores/TrustStores in case of Upgrade CDWS-4243 PostgreSQL and MFTWebservices are not coming up after upgrade CDWS-4230 Update Swagger to include the details for symbolic variable use. MFT-11305 CDWS Proxy user settings cannot handle entry with 2 @ symbol in it. List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.4 CDWS-5170 Webservices are not coming up in fresh installation of windows installer when installed frrom cygwin CDWS-5151 Utility to change keystore password is not working after upgrade CDWS-5149 "Not able to create user authority with Password exit ""Yes""" CDWS-5148 Installation gets stuck while doing via normal user inside root directory CDWS-5146 Password Exit Hash is a mandatory parameter when Password Exit DLL file is given CDWS-5144 Add Button is not getting enabled after successful validation CDWS-5143 "Improve user experience of utility ""ChangeKeystoreTruststoreAndUpdatePassword-0.1.jar""" CDWS-5141 Webservices are not coming up with complex postgres password in Windows Installer CDWS-5140 Introduction and Installation Folder is not visible in left side of panel in GUI mode CDWS-5116 CDWS 6005 - Fails to encode CD user name and password into base64 (TS004Ni942611) CDWS-5112 Unable to delete the keystore certificate for user functions CDWS-5111 Tracing is not getting updated when click first time on 'Update tracing' button CDWS-5109 Build Transfer Screen | Show override Options Screen field set alignment issue | Firefox CDWS-5107 Tooltip getting hidden for first field for every initialization parameters in Edit CDWS-5106 Space Alignment issue for Directory fieldset fields while creating |edit of user Authority CDWS-5105 Suse Silent Installation not working CDWS-5104 Incorrect Alignment for Password Exit field | User Authority CDWS-5103 Change Message on CDWS UI while deleting Key Certificate from Keystore CDWS-5100 Solaris 10 || Solaris 11 || Upgrade CDWS-5099 Solaris 10 || Root || Default and Self-Signed Installation || Webservices are not up CDWS-5092 "AIX, Solaris 11 || Self-Signed || Tempered Keystore" CDWS-5091 Incorrect Default value coming for password Exit field in user proxy for Swagger CDWS-5089 Upgrade || Admin Login Failed after upgrade CDWS-5087 Details page is not displaying on click of Group listing CDWS-5084 zLINUX|| Self-Signed || Tempered Keystore CDWS-5082 Webservices are not coming up in Windows Installer of 6.1 Branch CDWS-5058 Add newly added field for Group Authority for Password Exit Feature CDWS-5055 Incorrect Title while creating Group Functional Authority CDWS-5054 Swagger Version Change from 2.9.2 to 2.8.0 CDWS-5052 "Edit local node, client, .seaServer screen is not responding" CDWS-5041 MFTWebservices is not coming up on Windows after Spring boot upgrade CDWS-5040 ZOS || Error message is received if a user tries to edit the local node with tls1.3 CDWS-5035 6.2 CLONE - [CDW]: Save button remains grayed out on un-checking the security protocol previously selected CDWS-5012 "Failed to initialize pool: FATAL: password authentication failed for user ""postgres""" CDWS-4991 PasswordEncryption-0.1 Utility is not working fine CDWS-4892 Secure Param API not working from swagger CDWS-4891 Swagger interface issues : Change url mapping from sync to refresh CDWS-4890 "CDWS Webconsole : Change title from ""sync"" to "" refresh"" on ""Secure Partners Page""" CDWS-4828 Name/Reference/Path of keystore/Truststore not gets updated when upgrade from 6.0.0.3 to Latest CDWS-4827 Incorrect message code while deleting proxy in invalid format CDWS-4825 Incorrect error message for StopType api CDWS-4822 Error 501 when maximum database connection limit is reached CDWS-4821 Edit User Authority || Max Signon Attempts || Error Message Received CDWS-4814 Password is being printed in plain text in REST logs as part of APIs' response CDWS-4809 Unreadable message for Get API for Tracing -Zos CDWS-4807 "Extra dot ""."" is coming in CDWS Truststore path on UI" CDWS-4800 Incorrect error message while doing signin with empty password CDWS-4796 Error 501 while hitting Signin API without CSRF token CDWS-4790 Admin signout is successful with modified access token CDWS-4789 Admin signout is successful without headers X-XSRF-TOKEN & Authorization and cookies CDWS-4788 SecurePlusCipher error message unreadable for unix CDWS-4778 Inconsistency in mandate parameter in swagger and web console for user authority- Zos CDWS-4740 Accepting smaller case of protocal name in sessionType for Netmap Node - PUT CDWS-4716 ImportMode Incorrect keys for ZOS - add/replace/add_or_replace CDWS-4700 customer issue : “stopWebservice.sh” doesn't work after upgrade CDWS-4696 Miscellaneous extensions are coming in Extensions on swagger and coming separate in UI CDWS-4658 Mismatch dataType for externalAuthCertificateValidationDefinition in secure plus node CDWS-4657 Invalid Format for certificate data for secure plus key and secure plus trusted key CDWS-4650 "Intermittent Issue: FATAL: password authentication failed for user ""postgres""" CDWS-4604 Older log files override when unzip newer AchieveLog zip file CDWS-4599 Readme file text is different in different windows platforms MFT_11834 Using RESTful API Signon fails to encode the user name and password IBM JRE Upgrade to 8.0.6.20 Version List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.5 CDWS-5366 Error in Migration Logs In case of Postgres To Postgres Upgrade CDWS-5365 [CDW]: Exception in migration logs from postgres to postgress upgrade CDWS-5364 Solaris 11 | Tempered Keystore CDWS-5363 Admin data is not pertaining when upgrade from 6103 to Latest for Windows CDWS-5362 Admin data is not pertaining when upgrade from 6101 to Latest for Windows16 CDWS-5361 Solaris 11 double upgrade migration fail CDWS-5360 [RHEL 7.2]On upgrading from 6.0.0.5 to 6.1.0.5, CDWS services are not coming up. CDWS-5359 Encryption folder does not get deleted on uninstall when upgraded from previous version CDWS-5358 [CDW2019]: Admin data does not persist on double upgrade (6103 -> 6104 -> 6105) CDWS-5357 Admin data is not pertaining when upgrade from 6005 to Latest for Windows CDWS-5355 Upgrade from 6.1.0.1 to 6.1.0.5 is getting failed on fresh machine. CDWS-5354 Error : Unknown Operator == , When executing startPostgresqlSolaris.sh CDWS-5348 Admin data is not pertaining when upgrade from 6003 to Latest for Windows CDWS-5347 Webservices are not coming up with default properties in Windows 10 in silent and GUI both CDWS-5346 Webservices are not coming up with custom properties in silent and GUI both CDWS-5342 Solaris 10 : Postgres service is not working after upgrade from 6.1.0.4 to latest build CDWS-5332 SuSE || Upgrade is getting failed with Root User CDWS-5323 No proper error message on editing/adding/deleting process library file when user is having view auth for process library. CDWS-5321 Webservices are not coming up in Solaris 10 CDWS-5245 Delete option is not coming on key certificate view and trust certificate view page CDWS-5184 Error "Have not completed receipt of data from previous command performed yet" while adding/updating/deleting z/OS node MFT-11904 CDWS stopped working after installation. List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.5_iFix01 MFT-12049 Time displayed for all CD activities between CD WebServices and CD Statistics Logs: The time displayed between the 2 tools is exactly an hour apart. MFT_12261 While updating in CDWS, a Secure+ Remote Node, to set the protocol to DeaultToLN, get the error SPCG773E. List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.1.0.7 MFT-12384 CD Webservices filter not working based on short time range List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.2.0.1 CDWS-5989 User authorities not working CDWS-5988 Getting error when transferring file from unix node to zos. CDWS-5987 Transfer file page header "Sends" CDWS-5986 Receive file on zos from windows or unix is not working CDWS-5985 Lockout.time and invalidate.first.login.failure.after are overridden CDWS-5983 User Authorities are not reflecting in CDWS CDWS-5981 Spelling mistake in postreSQL installation message for CDWS 6.2.0.1 on Windows Platforms CDWS-5979 LOG OUT Error : Error while logging out of CD node CDWS-5978 User is not getting appropriate error message when user is blocked CDWS-5977 CDWS UI doesn't show proper error message in case of lockout CDWS-5952 CDWS is accessible after excluding all default cipher suite values from application.properties CDWS-5950 Logs are not generating for Invalid value in "server.ssl.ciphers-exclude" parameter MFT-12136 CDWS | Receive can only be done with Build a Transfer option List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.2.0.2 MFT-12774 log4j JNDI vulnerability CVE-2021-44228 , log4j updated to 2.15.0 List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.2.0.3 MFT-12774 log4j JNDI vulnerability CVE-2021-44228 , log4j updated to 2.15.0 log4j JNDI vulnerability CVE-2021-45105 & CVE-2021-45046, log4j updated to 2.17 List of Fixes (or Enhancements) included in Connect:Direct Web Service 6.0.0.7 CDWS-6167 commit date: 21-Feb-2022 JRE update for CDWS version 6.0 --------------------------------------------------------------------------------------------- Log4j Upgrade to 2.17.1 (CVE-2021-44832) --------------------------------------------------------------------------------------------- Postgre upgraded for CVE-2021-23214 --------------------------------------------------------------------------------------------- List of fixes included in Connect:Direct Web Service 6.0.0.8 1) Jira-Id : CDWS-7085 Description of Issue : Spring boot framework version upgrade from 2.4.1 to 2.6.6, jetty and jackson version upgrade Commit Date (DD-MON-YYY) : 13-APR-2022 2) Jira-Id : CDWS-7138 Description of Issue : JRE Upgrade to 8.0.7.6 Commit Date (DD-MON-YYY) : 04-MAY-2022 3) Jira-Id: CDWS-7123 Description of Issue : Fix for cookie without same-site attribute Commit Date (DD-MON-YYY) : 11-MAY-2022 4) Jira-Id: CDWS-7154 Description of Issue : Swagger : Installer : Grammatical error in left side panel Commit Date (DD-MON-YYY) : 11-MAY-2022 -------------------------------------------------------------------------------------------------------------------------------------------- List of fixes included in Connect:Direct Web Service 6.0.0.9 1) Jira-Id : CDWS-7212 Description of Issue : OWASP - Set Security Response Headers On Resources Commit Date (DD-MON-YYY) : 06-JUN-2022 2) Jira-Id : CDWS-7122 Description of Issue : OWASP - Web Browser XSS Protection Not Enabled Commit Date (DD-MON-YYY) : 06-JUN-2022 3) Jira-Id : 7357 Description of Issue : Upgrade postgres version on 6.1 and 6.0 branch Commit Date (DD-MON-YYY) : 21-JUL-2022