Introduction
Stonebranch provides product maintenance in the form of updated product installation packages. This document lists the product installation package maintenance history for Universal Data Mover Gateway 2.0.x.
Product Packaging
A package maintenance level is incremented when the package changes or the package installation changes.
Stonebranch changes product version, release, or modification identifiers at its discretion when it deems an appropriate number of enhancements or capabilities have been introduced to warrant the change.
Versioning
Package version numbers are comprised of four numeric identifiers: version, release, modification level, and maintenance level.
For example, for Universal Data Mover Gateway 2.0.0.0:
2 = Version 2
0 = Release 0
0 = Modification Level 0
0 = Maintenance Level 0
Packaging Methods
The Universal Data Mover Gateway 2.0.x packages are provided in formats appropriate for the target platforms.
See Installation Guide for information on installing, upgrading, and applying maintenance to the Universal Data Mover Gateway.
Package Maintenance Levels
This section identifies the changes included in Universal Data Mover Gateway 2.0.x.
This table identifies the maintenance level of every component in each package.
Release | Release Date | UDMG Server | UDMG Agent Proxy | UDMG Authentication Proxy | UDMG Admin UI | UDMG Web Transfer Client |
---|---|---|---|---|---|---|
2.0.0.0 | May 31, 2024 | 2.0.0.0 | 2.0.0.0 | 2.0.0.0 | 2.0.0.0 | 2.0.0.0 |
UDMG 2.0.0.0 - May 31, 2024
Change ID | Component | Description |
---|---|---|
#35208 | UDMG Server | Adds parameter to disable the implicit assignment of Transfer Rules. Prior to this change, a Transfer Rule is allowed for all servers, partners, and accounts right after its creation. It is only restricted after an explicit assignment (whitelisting) to at least one server, partner, or account. The prior functionality created confusion for UDMG users as well as allowed unauthorized access to files and folders for third-party accounts during the time between the rule creation and its explicit assignment. The change allows the functionality to be disabled with the new UDMG Server configuration parameter The default value remains false but is likely to change with future releases. [rule] ; Disables global rules, requiring rules to be explicitly allowed to be used. ; ExplicitRuleAssignment = false |
#36187, #35684 | UDMG Server/Client | Provides new option to select the login name for the SFTP connection attempts during the CLI SSH keyscan (show or save). The change can prevent the remote server from blocking connections from an unknown user. $ udmg-client partner keyscan partner show -h Usage: udmg-client [GLOBAL-OPTIONS] partner keyscan [partner] show [show-OPTIONS] [keyscan command arguments] partner: The partner's name [show command options] -t, --type=[ssh-rsa|ssh-dss|ecdsa-sha2-nistp256|sk-ecdsa-sha2-nistp256@openssh.com|ecdsa-sha2-nistp384|ecdsa-sha2-nistp521|ssh-ed25519|sk-ssh-ed25519@openssh.com] Specifies the type of the key to fetch from the host (default: all). Can be repeated multiple times to filter multiple statuses. -l, --login= Specifies the account for the connection attempts. $ udmg-client partner keyscan my_remote_sftp show -t ssh-rsa -l ec2-user ven. mars 15 14:12:45 UTC 2024 ● Partner remote_sftp SSH public keys: Public key 0 : Type: ssh-rsa Public key: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQCY1rAsf...9rmQ6ve5WD+iK5fNvsfT+SLINHEQRJN8= |
B-19917 | UDMG Authentication Proxy | Improves security between UDMG Admin UI and UDMG Authentication Proxy with the use of session ID instead of credentials after the initial login (secured the JWT token). |
B-19918, B-19919, B-19920, B-19921 | UDMG Admin UI, NGINX | Improves security with a default NGINX configuration including the recommended security HTTP headers, hiding the server version, and disabling weak TLS ciphers. The following changes are now the default for the manual installation procedure and the installation with Linux packages (RPM/DEB). For an upgrade, the parameter must be manually reviewed and added to the NGINX configuration file.
|
#32516 | UDMG Server/Client | Adds the display and management of the Audit permission for UDMG users. The permission grants the ability to list and view the audit records. The short code for the Audit permission on the CLI is 'a'. $ udmg-client user update wsadm -r "a=rwd" The user wsadm was successfully updated. $ udmg-client user get wsadm ● User: wsadm User groups: Generic Email: Login Type: local Permissions: ├─Transfers: r-- ├─Servers: r-- ├─Partners: r-- ├─Rules: r-- ├─Users: r-- ├─Administration: r-- ├─Pgp: r-- └─Audit: rwd |
#35978 | UDMG Server | Shows a summary of the UDMG Server disk usage on the New "Storage" service:
GET /api/status { "Admin": { "state": "Running", "reason": "Release 2.0.0" }, "Storage": { "state": "Running", "reason": "213.58 GB (16%)" }, GET /api/status { "Admin": { "state": "Running", "reason": "Release 2.0.0" }, "Storage": { "state": "Error", "reason": "25.0 GB (96%)" }, |
#36459 | UDMG Server | Displays the udmg-server instance node Id on the For instance: gateway_1:8080-mft-gw-0 GET /api/status { "Admin": { "state": "Running", "reason": "Release 2.0.0.0" }, "Controller": { "state": "Running", "reason": "ACTIVE" }, "Database": { "state": "Running", "reason": "" }, "License": { "state": "Running", "reason": "" }, "Node": { "state": "Running", "reason": "gateway_1:8080-mft-gw-0" }, "Storage": { "state": "Running", "reason": "5.8 GB (37%)" }, "local_auth_test_server": { "state": "Running", "reason": "" }, "test_ftp": { "state": "Offline", "reason": "" } } |
#34778 | UDMG Server | Export/import: supports the user email field. |
#35132 | UDMG Server | Migrate command: improves log message; the list command shows the current and the target versions with the $ /opt/udmg/bin/udmg-server migrate -c /opt/udmg/etc/udmg-server/server.ini --list 1.5.0 [DATABASE] 2.0.0 [DEFAULT] |
#34502 | UDMG Client | Adds option and environment variable UDMG_COLOR to disable the color output. Output Options: --color=[always|auto|never] Control color output (default: auto) [$UDMG_COLOR] |
#35917 | UDMG Server/Client | Adds new timeout options:
[database] ; Threshold before warning for long-running queries, the default is 10 seconds WarningTimeout=10s
[WARNING ] Database: transaction is taking an unusually long time, printing stack for debugging purposes:
-t, --timeout= Client Connection Timeout (default: 30) [$UDMG_CLIENT_TIMEOUT]
an error occurred while sending the HTTP request: ...: context deadline exceeded |
#34948 | UDMG Admin UI | Adds "Cluster Nodes" service to the UDMG Admin UI navigation pane with the list of the UDMG instances. |
B-18766 | UDMG Admin UI | Adds the local server "Status" column to the Local Server list. The change makes it easier to view server status without having to open the UDMG Server status pop-up for quick monitoring. |
#34488 | UDMG Admin UI, UDMG Server | FTP Server: adds support for the REMOVE and RENAME commands. Each command can be enabled or disabled individually for each local FTP/FTPS/FTPES server. |
#35133 | UDMG Server | Fixes the panic error when the application is terminated during the startup sequence, while the node status is being determined. |
#32532 | UDMG Server | Fixes the insertion of the audit record for the transfer retry command. |
#33370 | UDMG Server | Adds additional language to error message for invalid JSON syntax in API payload. |
#35148 | UDMG Server | Adds additional language to error messages for the duplicate assignment of an object to a Business Service.
|
#35244 | UDMG Server | Adds additional language to error messages for unknown Business Services: $ udmg-client sb_biz member no_bs add partner atmoz_partner business service 'no_bs' not found |
#34817 | UDMG Server | Fixes the error message when setting an object name or login value that is too long. It was reported as a database error and now displays as:
|
#34412 | UDMG Server | Fixes the validation for host-based authentication on the SFTP server configuration. The local and remote account names must be the same. |
#34567 | UDMG Server | Fixes a panic error when restarting a local PeSIT server. |
#36137 | UDMG Server | Fixes a panic error during transfer post-task when the serviceName parameter of an ICAP task does not match the service name on the ICAP server. |
#34965 | UDMG Server | Fixes the missing banner in the FTP* server welcome message (220 response). $ curl -v ftp://localhost:4100 * Trying 127.0.0.1:4100... * Connected to localhost (127.0.0.1) port 4100 (#0) < 220 UDMG-FTP-2.0.0.0 |
#35147 | UDMG Server | Fixes the possibility of creating a user group with an assigned Business Service. The Generic Business Service is enforced as the default value. |
#35641 | UDMG Server | Adds the missing option for the udmg-server import command to select and process only the users from an export file. $ /opt/udmg/bin/udmg-server export -h Usage: udmg-server [OPTIONS] export [export-OPTIONS] Help Options: -h, --help Show this help message [export command options] -c, --config= The configuration file to use -f, --file= The destination file. If none is given, the content of the export will be written to the standard output -t, --target=[rules|servers|partners|users|business-services|user-groups|local-accounts|all] Limit the export to a subset of data. Can be repeated to export multiple subsets. (default: all) -v, --verbose Show verbose debug information. Can be repeated to increase verbosity $ /opt/udmg/bin/udmg-server import -h Usage: udmg-server [OPTIONS] import [import-OPTIONS] Help Options: -h, --help Show this help message [import command options] -c, --config= The configuration file to use. -s, --source= The data file to import. If none is given, the content will be read from the standard output. -t, --target=[rules|servers|partners|users|business-services|user-groups|all] Limit the import to a subset of data. Can be repeated to import multiple subsets. (default: all) -d, --dry-run Do not make any changes, but simulate the import of the file. -v, --verbose Show verbose debug information. Can be repeated to increase verbosity. -r, --reset-before-import Empty the database tables before importing the elements from the file. Cannot be used without the -s option. --force-reset-before-import Empty the database tables before importing the elements from the file without confirmation prompt. |
#35639 | UDMG Server | Fixes the missing GET /api/sb_servers/:local_server_name/certificates/:cert_name { "id": 30, "name": "TestKey", "revoked": "2024-01-25T12:55:25.898261Z", "privateKey": "-----BEGIN PRIVATE KEY-----\nMIIJQgIBADA...----END PRIVATE KEY-----" } |
#35608 | UDMG Server | Fixes the confusion between sb_pgp and pgp as object types in the udmg-client commands. The sb_pbp is used for all actions involving the PGP records. Usage: udmg-client [GLOBAL-OPTIONS] sb_biz member [business-service] add [object-type] [object-name] [direction] Connection Options: -a, --address= The address of the UDMG Server [$UDMG_SERVER_ADDRESS] -i, --insecure= Skip certificate verification [$UDMG_SERVER_INSECURE] -l, --legacy= Use legacy API version [$UDMG_SERVER_LEGACY] -t, --timeout= Client Connection Timeout (default: 30) [$UDMG_CLIENT_TIMEOUT] Output Options: --color=[always|auto|never] Control color output (default: auto) [$UDMG_COLOR] Help Options: -h, --help Show this help message [member command arguments] business-service: The business service's name [add command arguments] object-type: The object's type. [server|partner|rule|sb_pgp] object-name: The object's name direction: The rule's direction (required only for rule objects) |
#35165 | UDMG Server | Fixes to prevent the update of a local server protocol type. $ udmg-client server update my_ftp_server -p sftp the protocol cannot be updated after creation |
#35875, #34210 | All | Upgrade of the Go compiler version from 1.18 to 1.21. Switch to the Microsoft build of the Go toolset for better support of FIPS 140-2. |
#35952 | UDMG Agent Proxy | Linux installation packages configure the client API default port to 2280 instead of 8080. This was already the recommended value for the manual installation procedure. |
#35232 | UDMG Authentication Proxy | Updates documentation to reflect the change of the default port from 5000 to 5775. |
#35538 | UDMG Server | Linux package names now have 4 digits for the version number. For example, udmg-admin-ui-2.0.0.0.build.99.x86_64.rpm |
#36052 | UDMG Server | Fixes the ownership of the log folder after the Linux package installation. The ownership of the log folder is now set to udmg:adm . |
#35963 | UDMG Server | Fixes the error message when a local server log file cannot be opened. |
#34828 | UDMG Server | Fixes the error message to include the temporary path when the temp file for an inbound file transfer cannot be opened. |
#35786 | UDMG Server | Fixes the occurrence of error messages in the UDMG Server log regarding the "superfluous call" from the REST API handler. |
#34904 | UDMG Server | Fixes the duplicate messages for the received list commands on the SFTP local server logs. |
#34955 | UDMG Server | Adds a new error message during the SFTP partner keyscan command when the remote host is not reachable.
|
#35264 | UDMG Server | Fixes the internal database error that was raised when attempting to delete a user with an open session. The user session is dropped, and the user is disconnected after the timeout. |
#35273 | UDMG Server | Fixes the error message for deletion of a user group with members. $ udmg-client_b sb_usr delete my_user_group unexpected error: user group cannot be deleted because of objects associated to it |
#35376 | UDMG Server | Fixes the name of the fields in the personal access token API payload. The name of the fields is now in camel case. GET /api/sb_users/:user/tokens { "user_tokens": [ { "id": 5, "name": "token_02", "creationDate": "2024-01-10T08:59:21.899845Z", "expirationDate": "2024-02-01T08:04:05Z" } ] } |
#34832 | UDMG Server | Removes the deprecated root , inDir , outDir , workDir fields from REST API schemas and CLI command arguments. |
#35490 | UDMG Authentication Proxy | Fixes the invalid API sample response field in the Swagger UI. |
#35958 | NGINX | Fixes the 'unknown log format main' after Linux Debian installation. The 'main' log format is disabled on the NGINX package from the Debian/Ubuntu repository unlike the official NGINX repository or the RHEL/Rocky/CENTOS RPM packages. The log format is reverted to the default ('combined') and is left to the administrator to enable a more detailed log format. |
#35276 | UDMG Client | Adds a colon in the list output to separate the object type and the object name. $ udmg-client server list | grep Server Servers: ● Server: "ftp_test_server" [Enabled] ● Server: "ftpes_test_server" [Enabled] |
#35301 | UDMG Server | Export/import: prevents the reset of the optional fields.
|
#35247 | UDMG Server | Ends the support for releases prior to 1.2.1.1 (0.7.1-sb.3). Migration from older releases is not supported anymore. $ /opt/udmg/bin/udmg-server migrate -c /opt/udmg/etc/udmg-server/server.ini --list 0.7.1-sb.3 1.3.0 1.3.1 1.3.2 1.4.0 1.4.1 1.5.0 2.0.0 [DATABASE, DEFAULT] |
#36449 | UDMG Server | Fixes the initialization failure when using a non-default database schema for MS SQL Server.failed to init the database: command failed: mssql: The object 'dbo.local_agents' does not exist or is invalid for this operation. |
#35752 | UDMG Server | Improves the "internal database error" message with the addition of the actual message from the database.
|
#36609 | UDMG Server | Fixes the log level for database errors that are retried. A warning message appears instead of an error message. |
#35359 | UDMG Admin UI | Fixes the listing of user sessions, the 100 most recent sessions are now displayed, instead of the 20 oldest. |
#36602 | UDMG Server | Set the default network interface for UDMG Server to be 0.0.0.0 instead of localhost configuration file excerpt [admin] ; The address used by the admin interface. Host = 0.0.0.0 |
#40910, #33566 | UDMG Admin UI | Fixes the autocompletion in username and passowrd field by the browser on the new User and new Shared Account screens |
#35381 | UDMG Web Transfer Client | Fixes the inability to configure a folder for upload and download of files. Is is now possible to configure a send and a receive rule with the same virtual path and local path, allowing to have a common folder on the Web Transfer Client interface for sending and receiving files. |
#36208 | UDMG Server | Fixes an error condition with the FTP server: when receiving a file with a subdirectory path, it was not created. The server was only creating the necessary folders up to the rule local path. |
#36701 | UDMG Server | Fixes the import of UDMG user from the command line. When loading a user without specifying usergroup membership, it is created and useable (connect, get, update, delete) but not listed (udmg-client user list). The default usergroup is now assigned for the user in this case. |
#36839 | UDMG Server | Fixes the list of authorized transfer rules in the account endpoints Changes on UDMG Server API: The available virtual paths for a given account are a combination of: The list of server or partner rules was incorrect.
Changes on UDMG Admin UI: The rules at server/partner and account level are marked as private in the account Rules tab. |
#36816 | UDMG Web Transfer Client | Fixes the list of folders on the dashboard, the virtual paths for rules that were assigned at the local-auth server level were not displayed. The available folders are selected by : 1) the rules that are authorized for this account, |
#36799 | UDMG Server | Improves the logging of API calls to the UDMG Server. TrackID information was only shown when rate limiter was enabled, it is now always displayed along with remote IP address and the user agent. Previous format 2024/05/14 09:09:27 [INFO ] Admin: Request GET: /api/transfers 2024/05/14 09:09:27 [INFO ] Admin: TrackID: 50bf24fa-0221-4344-bf00-4d0e6b0f04ac - Received GET on /api/transfers?sort=start-&limit=1000&offset=0&start=2024-05-13T09%3A09%3A27.277Z New format 2024/05/23 18:42:26 [INFO ] Admin: ID='Direct Request' Method='GET' URL='/api/status' RemoteAddr='192.168.10.72' UserAgent='curl/8.7.1' |
#35194 | UDMG Authentication Proxy | Improves the logging of http requests on the UDMG Authentication Proxy with the addition of the remote ip and nthe user agent. level=error TS=2024-06-05T15:21:06.424084373Z Service=HTTP Request="Method='POST' URL='/auth/local' RemoteAddr='185.70.76.140' UserAgent='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36'" Error="code=401, message=authentication error" |
#36862 | UDMG Server | Adds a 1 minute timeout to publish event task (PUBLISHEVENT) |
#35530 | UDMG Admin UI | Fixes the inability to see and apply business service filters for the Local/Shared Account list and the Remote Accounts list: |
#33109 | UDMG Agent Client | Adds OpenAPI Swagger /swagger/index.html endpoint on the UDMG Agent Client |
#33106 | UDMG Agent Client | Adds the option to connect with HTTPS to the UDMG Server API New
|
#40782 | UDMG Server | Show the UDMG Server version with curl -L -I "http://user:password@udmg.example.com:8080/api/status" HTTP/1.1 200 OK server: UDMG/2.0.0 date: Wed, 29 May 2024 10:25:50 GMT |