/
Universal Data Mover Gateway 1.3.0 Release Notes

Universal Data Mover Gateway 1.3.0 Release Notes

May 29, 2023

Universal Data Mover Gateway release 1.3.0.0 - May 9, 2023, contains the following high-level features. For a complete list of all the included features and fixes, please refer to Universal Data Mover Gateway 1.3.x Maintenance.

Protocols

Backlog

Title

Description

Backlog

Title

Description

#31180

Partner SSH Key Scan and Store

Feature to fetch, display, and automatically store the SSH host keys for a remote partner from the configuration panel.

#32302

Ignore Revoked Partner Key

Skip the revoked host keys during handshake with a remote partner

#32328

Ignore Revoked Server Key

Skip the revoked host keys during server initialization

#32364

SFTP session details

More details for SFTP session

  • print SSH session ID in hexadecimal format in the log

  • in case of handshake error: show the remote address: Failed to perform handshake: '%s' Address '%s'

  • in case of handshake success, show the user, client version, and remote address: ID: '%X' Handshake connection User: '%s' Client Version: '%s' Address: '%s

  • keep session id in transfer info with key: udmg_session_id

Security

Backlog

Title

Description

Backlog

Title

Description

#31692

Cross-Origin Resource Sharing (CORS) for Admin UI

New 'domain' configuration parameter for Authentication Proxy to define the list of allowed and trusted domains to perform CORS requests

#32226

Cross-Origin Resource Sharing (CORS) for Web Transfer Client

New 'domain' configuration parameter to define the list of allowed and trusted domains to perform CORS requests

#32304
#31691

CSRF Protection for Admin UI

New 'CSRF' flag parameter for Authentication Proxy to enable CSRF protection. A CSRF Token is exchanged between Authentication Proxy and Admin UI during the authentication handshake.

#32227

CSRF Protection for Web Transfer Client

A CSRF Token is exchanged during the authentication handshake between the frontend and backend.

#31696

Mime Type Scanning

Scanning of transferred files to determine their mime-type and suggested file extension. The guessed type and extension are added as transfer metadata:

  • udmg_file_computed_extension

  • udmg_file_computed_mimetype

#32295

User Revocation of Certificate or Key

Certificate records (TLS certificate, SSH host key, or SSH public key) can be disabled on demand with 'revoke' and 'authorize' features.

User Experience

Backlog

Title

Description

Backlog

Title

Description

#31968

Server and Partner extended info fields

Addition of custom fields for describing Servers and Partners. Standard fields are

  • Description

  • Contact 1 name, email, and phone

  • Contact 2 name, email, and phone

Additional fields can be added from the interfaces as pairs of label - value according to user needs.

#32329

Cancel Transfer

Cancel action is available from Admin UI when the transfer is not already completed (not Done nor Cancelled)

#32359

TLS Certificate Details

Display of complete TLS certificate details, including among others the expiration date, subject, SAN list

#32345

SSH Public Key Details

Display of complete public key details, including algorithm, bits (key size in bits, only for RSA), fingerprintSHA256, fingerprintMD5, authorizedKeysLine

#32330

SSH/TLS Private Key Details

Display of complete private key details, including algorithm, bits (key size in bits, only for RSA), key type, fingerprintSHA256, fingerprintMD5, authorizedKeysLine

#32453

Log User Actions on Servers

Log and audit the actions on the local servers for traceability: enable, disable, start, stop, restart

#31869

Composite quick filter

Quick filters for composite status in Transfer Activity: 

Pending, Active, Blocked, Completed, Problem

Architecture

Backlog

Title

Description

Backlog

Title

Description

#32227

Module Rebranding

The solution components are renamed to udmg-* for better usability:

  • waarp-gatewayudmg-client

  • waarp-gatewaydudmg-server

  • mft-auth-proxyudmg-auth-proxy

  • mft-agent-clientudmg-agent-client

  • mft-agent-serverudmg-agent-server

  • mft-web-upload → udmg-web-transfer

Version numbering for udmg-server and udmg-client is now aligned with the UDMG release and not with the legacy 3PP.

The default installation folders and environment variables are also updated.

#29886

SaaS Disaster Recovery

SaaS offer is available with support for disaster recovery.

#31784

LDAP Integration

Support for LDAP authentication of UDMG users with explicit binding.

#32519

SSO Integration

Support for Single Sign-On authentication of UDMG users with the following Identity Providers:

  • SAML 2.0

  • Google

  • OAuth2

  • OpenID

#32653

User Email Info

Addition of email field for UDMG Users. This is required for SSO integration.

Remote Interfaces

Backlog

Title

Description

Backlog

Title

Description

#31940

Show internal object ID in API responses

Addition of internal object ID in the GET/LIST API response for below endpoints, for improved usability and easier troubleshooting.

  • users

  • sb_partners

  • sb_partners/X/accounts

  • sb_partners/X/certs

  • sb_servers

  • sb_servers/X/accounts

  • sb_servers/X/certs

  • sb_rules

#32818

API to update own password

New 'password' web service and CLI command to provide the ability for a UDMG user to change its own password without the system permission to update all users.

udmg-client user password -p [password] [username]

#32676

Healthcheck API

'healthcheck' web service and CLI command to provide an easy monitoring of UDMG services.

One line response with overall system status:

  • Operational: all services are Running or Offline (either disabled or stopped by a user).

  • Degraded: at least 1 service is in the Error state.

  • Transitional: at least 1 service is in Starting or ShuttingDown state.

#32938

Authentication Proxy Swagger  Specification

OpenAPI Specification (Swagger 2.0) for the UDMG Authentication Proxy.

#32961

Certificate Expiration Report API

New web service and CLI command to list the TLS certificates that have expired or will expire in the next X days.
udmg-client sb_cert expired --days=30

Universal Controller Integrations

Backlog

Title

Description

Backlog

Title

Description

#32198, #32195,
#32201

UDMG File Transfer 1.2: Support Wildcard Transfer

  1. New actions "MPUT" and "MGET" for wildcard transfers:

    • support for wildcard in source file parameter,

    • creation of wildcard transfer on UDMG,

    • monitoring of child transfers on UDMG,

    • tabular report on STDOUT with final child transfer status,

    • short summary report in EXTENSION output,

    • PAUSE, RESUME, and CANCEL commands are propagated to child transfers

  2. "Transfer Progress" output field is redefined to show human readable value

    • size in KB, MB, or GB for single transfer,

    • "x out of y files" for wildcard transfer

  3. "Max files to monitor" parameter: limit the number of child transfers that are monitored by the task instances, 100 by default.

  4. "Wait for transfer completion" parameter: task instance only returns when the transfer is completed (with DONE or CANCELLED status) on UDMG.
    For wildcard transfers, only returns when all child transfers are completed. Activated by default.

#32463

UDMG File Transfer 1.2: refresh output with re-run

"Re-run" task instance resumes a pending transfer or refresh the output data for a completed transfer.

#30931

UDMG File Transfer: Keep UAC Task ID

Task instance UUID is added as UDMG transfer metadata (field: udmg_ue_task_uuid).