Universal Data Mover Gateway 1.3.x Maintenance

Introduction

Stonebranch provides product maintenance in the form of updated product installation packages. This document lists the product installation package maintenance history for Universal Data Mover Gateway 1.3.x.

For Universal Data Mover Gateway 1.3.x, applying maintenance refers to the increase from a currently installed and supported version of the Universal Data Mover Gateway to a later 1.3.x version of the Universal Data Mover Gateway (for example, increase Universal Data Mover Gateway 1.0.0.0 to Universal Data Mover Gateway 1.3.0.0).

Product Packaging

A package maintenance level is incremented when the package changes or the package installation changes.

Stonebranch changes product version, release, or modification identifiers at its discretion when it deems an appropriate number of enhancements or capabilities have been introduced to warrant the change.

Versioning

Package version numbers are comprised of four numeric identifiers: version, release, modification level, and maintenance level.

For example, for Universal Data Mover Gateway 1.3.0.0:

  • 1 = Version 1

  • 2 = Release 3

  • 0 = Modification Level 0

  • 0 = Maintenance Level 0

Packaging Methods

The Universal Data Mover Gateway 1.3.x packages are provided in formats appropriate for the target platforms.

See Administrator Guide for information on installing, upgrading, and applying maintenance to the Universal Data Mover Gateway.

Package Maintenance Levels

This section identifies the changes included in Universal Data Mover Gateway 1.3.x.

This table identifies the maintenance level of every component in each package.

Release

Release date

UDMG Server

UDMG Agent ProxyUDMG Authentication ProxyUDMG Admin UIUDMG Web Transfer Client
1.3.0.1May 18, 20231.3.0.01.3.0.01.3.0.01.3.0.11.3.0.0
1.3.0.0May 9, 20231.3.0.01.3.0.01.3.0.01.3.0.01.3.0.0

UDMG 1.3.0.1 - May 18, 2023

Change IDComponentDescription
#33121UDMG Admin UIFix: Cannot edit details and rule assignments for HTTP/S and PeSIT servers

UDMG 1.3.0.0 - May 9, 2023

Change IDComponentDescription
#31180UDMG Server,
UDMG Admin UI
Partner SSH Key Scan and Store: feature to fetch, display, and automatically store the SSH host keys for a remote partner from the configuration panel.
#32302UDMG ServerSkip the revoked host keys during handshake with a remote partner
#32328UDMG ServerSkip the revoked host keys during server initialization
#32364UDMG Server

More details for SFTP session

  • print SSH session ID in hexadecimal format in the log
  • in case of handshake error: show the remote address: Failed to perform handshake: '%s' Address '%s'
  • in case of handshake success, show the user, client version, and remote address: ID: '%X' Handshake connection User: '%s' Client Version: '%s' Address: '%s
  • keep session id in transfer info with key: udmg_session_id
#31692 UDMG Admin UI

Cross-Origin Resource Sharing (CORS).

New 'domain' configuration parameter for Authentication Proxy to define the list of allowed and trusted domains to perform CORS requests

#32226UDMG Web Transfer Client

Cross-Origin Resource Sharing (CORS)

New 'domain' configuration parameter to define the list of allowed and trusted domains to perform CORS requests

#32304
#31691
UDMG Admin UI

CSRF Protection

New 'CSRF' flag parameter for Authentication Proxy to enable CRSF protection. A CSRF Token is exchanged between Authentication Proxy and Admin UI during the authentication handshake.

#32227UDMG Web Transfer Client

CSRF Protection

A CSRF Token is exchanged during the authentication handshake between the frontend and backend.

#31696UDMG Server

Mime Type Scanning

Scanning of transferred files to determine their mime-type and suggested file extension. The guessed type and extension are added as transfer metadata:

  • udmg_file_computed_extension
  • udmg_file_computed_mimetype
#32295UDMG Server,
UDMG Admin UI

User Revocation of Certificate or Key

Certificate records (TLS certificate, SSH host key, or SSH public key) can be disabled on demand with 'revoke' and 'authorize' features.

#31968UDMG Server,
UDMG Admin UI

Server and Partner extended info fields

Addition of custom fields for describing Servers and Partners. Standard fields are

  • Description
  • Contact 1 name, email, and phone
  • Contact 2 name, email, and phone

Additional fields can be added from the interfaces as pairs of label - value according to user needs.

#32329UDMG Admin UICancel Transfer action is available when the transfer is not already completed (not Done nor Cancelled)
#32359UDMG Server,
UDMG Admin UI
Display of complete TLS certificate details, including among others the expiration date, subject, SAN list
#32345UDMG Server,
UDMG Admin UI
Display of complete public key details, including algorithm, bits (key size in bits, only for RSA), fingerprintSHA256, fingerprintMD5, authorizedKeysLine
#32330UDMG Server,
UDMG Admin UI
Display of complete private key details, including algorithm, bits (key size in bits, only for RSA), key type, fingerprintSHA256, fingerprintMD5, authorizedKeysLine
#32453UDMG Server

Log User Actions on Servers

Log and audit the actions on the local servers for traceability: enable, disable, start, stop, restart

#31869UDMG Admin UI

Composite quick filters in Transfer Activity: Pending, Active, Blocked, Completed, Problem

#31969Global

Module Rebranding

The solution components are renamed to udmg-* for better useability:

  • waarp-gateway  udmg-client
  • waarp-gatewayd  udmg-server
  • mft-auth-proxy  udmg-auth-proxy
  • mft-agent-client  udmg-agent-client
  • mft-agent-server  udmg-agent-server
  • mft-web-upload → udmg-web-transfer

Version numbering for udmg-server and udmg-client is now aligned with the UDMG release and not with the legacy 3PP.

The default installation folders and environment variables are also updated.

#29886GlobalSaaS offer is available with support for disaster recovery.
#31784

UDMG Admin UI,
UDMG Authentication Proxy


LDAP Integration

Support for LDAP authentication of UDMG users with explicit binding.
The breaking glass "admins" parameter is removed and replaced with the ability to choose local authentication provider.

#32519

UDMG Admin UI,
UDMG Authentication Proxy

SSO Integration

Support for Single Sign-On authentication of UDMG users with the following Identity Providers:

  • SAML 2.0
  • Google
  • OAuth2
  • OpenID
#32653

UDMG Server,
UDMG Admin UI

Addition of email field for UDMG Users. This is required for SSO integration.
#31940UDMG Server

Addition of internal object ID in the GET/LIST API response for below endpoints, for improved usability and easier troubleshooting.

  • users
  • sb_partners
  • sb_partners/X/accounts
  • sb_partners/X/certs
  • sb_servers
  • sb_servers/X/accounts
  • sb_servers/X/certs
  • sb_rules
#32818UDMG Server

API to update own password

New 'password' web service and CLI command to provide the ability for a UDMG user to change its own password without the system permission to update all users.

udmg-client user password -p [password] [username]

#32676

UDMG Server


Healthcheck API

'healthcheck' web service and CLI command to provide an easy monitoring of UDMG services.

One line response with overall system status:

  • Operational: all services are Running or Offline (either disabled or stopped by a user).
  • Degraded: at least 1 service is in the Error state.
  • Transitional: at least 1 service is in Starting or ShuttingDown state.
#32938UDMG Authentication ProxyOpenAPI Specification (Swagger 2.0) for the UDMG Authentication Proxy.
#32961UDMG Server

Certificate Expiration Report API

New web service and CLI command to list the TLS certificates that have expired or will expire in the next X days.
udmg-client sb_cert expired --days=30

Requires the Administration Read permission.

#32817UDMG Web Transfer ClientFix: Invalid profile entry in user menu.
#32969UDMG Admin UIFix: Invalid profile entry in user menu.
#31852UDMG Admin UIFix: Server status showed yellow for expected offline server. It now shows yellow only for unexpected server statuses (at least 1 server is not running or offline).
#32150UDMG Admin UIFix: Times in Transfer Details are in user local timezone instead of UTC like the Activity list
#32043UDMG Admin UIFix: UI hangs after switching from a transfer record with transfer info attributes to another without any transfer info
#31900UDMG Admin UIFix: harmonize UX elements for display of lists (rule, algorithms, buttons).
#31996UDMG Admin UIFix: improved readability of dropdown lists for filters and column selector.
#32346UDMG Admin UIFix: Server configuration overwrite caused by PUT instead PATCH method.
#32354UDMG Admin UIFix: Missing hover hints on buttons.
#32421UDMG Admin UIFix: Reorder buttons to match Universal Controller UX design.
#32809UDMG Admin UIFix: Issue with refresh on PGP Key details after record deletion.
#32182UDMG Admin UIFix: Cannot edit a transfer rule list when the list has 0 item.
#32314UDMG Admin UIFix: Filtered partner list result is reset after selecting a record.
#32315UDMG Admin UIFix: Filtered server list result is reset after selecting a record.
#32303UDMG Authentication ProxyFix: missing location header with transfer id when transfer is initiated through the proxy.
#31175UDMG ServerFix: log message with wrong transfer id 0 for http server transfer.
#31319UDMG ServerFix: verbose output for CLI export command on stdout instead of stderr
#31973UDMG ServerFix: internal database error during CLI import on MySQL.
#31972UDMG ServerFix: validation error during CLI import of default business service.
#32035UDMG ServerFix: CLI command error for PGP records handling with group level permissions.
#32370UDMG ServerFix: Warnings "cannot write logs: write x.log: file already closed" on Windows platform.
#32419UDMG ServerFix: Local server start mode is reset to 'disabled' after any update on that server.
#32789UDMG ServerFix: FTP passive port range is not constrained. The range is now limited to 1025-65535.