Release Notes 7.7.0
Supported Upgrade Paths
For a list of Resolve Actions Pro versions that you can upgrade from, see the upgrade guide that is appropriate for your upgrade type:
What's New
This release of Actions Pro introduces the following new features, improvements, and changes.
OAuth Authentication Support in HTTP Gateway
The HTTP Gateway adds support for OAuth authentication. See ::title for details.
New Way of Configuring Authentication in HTTP Gateway
The new HTTP Authentication tab available in the HTTP Gateway filter administration screen allows you to create multiple authentication configurations associated with a specific network port number. You can then apply a selected configuration when creating a filter.
As a consequence, the SSL option has been moved from the filter configuration to the HTTP authentication configuration.
See ::title for details.
Existing HTTP filters with None or Basic authentication are automatically migrated to the new format during upgrade.
New Page Component: Diff
The new Diff Page Builder component allows you to compare records of custom tables from the Actions Pro database. It is suitable for configuration change management and is meant to work with the CSV upload feature.
See ::title for details.
Infrastructure Changes
The following changes aim to improve stability, compatibility, performance, and security but might also be dictated by new features.
Updated Groovy Version
The version of Groovy has been upgraded to 2.5.21. See JAR Changes to learn how this change affects the availability of JAR files.
Simplified Groovy Sandbox Whitelisting
With this Actions Pro version, the Groovy Sandbox whitelists the following by default:
- Standard Java classes and their methods
- Javax classes and their methods
- Groovy classes and their methods
- org.codehaus.groovy classes and their methods
The requirement to whitelist classes and methods remains only for Resolve classes and methods.
JAR Changes
Download the spreadsheet to find out how JAR file availability and versions change between Actions Pro versions.
Starting with version 7.3, only new additions and updated JAR files are being included. JAR files that are no longer part of the Actions Pro installation are marked as removed. Keep in mind that the Actions Pro upgrade procedure does not delete older versions of upgraded or removed JAR files; they might still exist after an upgrade.
Security
OWASP Certification
This release has been Veracode OWASP Top 10 v1 certified:
- Mitigated Veracode Level: VL3
- Original Veracode Level: VL3
- Veracode static scan: 88
- Veracode dynamic scan: 99
Upgraded Content Security Policy
New Fetch directives have been added to the Content Security Policy that help detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks.
In addition, System Properties have been added to allow you to append to the default directive values and to add custom Fetch directives.
See ::title for details.
Resolved Issues
The following issues have been resolved with this Actions Pro version.
| Priority | Internal ID | Summary |
|---|---|---|
| P3_Medium | PRO-1468 | Veracode dynamic analysis is reporting 2 vulnerabilities related to Content-Security-Policy not setting either script-src or default-src attributes |
| P3_Medium | PRO-1467 | Veracode dynamic analysis reporting vulnerability related to RSTOKEN cookie not having SameSite attribute set to Strict/Lax |
| P3_Medium | PRO-1466 | Veracode dynamic analysis reporting 3 vulnerabilities related to JSESSIONID cookie not having SameSite attribute set to Strict/Lax |
| P3_Medium | PRO-1438 | Kafka Gateway Not Working After Upgrade 7.3 |
| P3_Medium | PRO-1331 | HTTP Gateway - user should see a warning when creating and deploying filter with the same URL and port number as already existing one |
| P3_Medium | PRO-1312 | Add License modal - Text area for pasting License Key is not visible and is too small |
| P3_Medium | PRO-1310 | When new Companion filter is added/removed, list of companion filters shown in main filter is not updated |
| P3_Medium | PRO-1305 | Gateway Filter Deployment and undeployment open issues |
Known Limitations
The following table lists issues that are known to appear in this Actions Pro version.
| Priority | Internal ID | Summary |
|---|---|---|
| SUPP-1346 | RS-00007109 | The output in result macro popup from displays extra spaces in the front. |
| SUPP-1862 | RS-8026 | Cannot modify text editor content. The header size is changed when changing the body text size and the latest change is not being saved. |
| SUPP-1838 | RS-00007951 | Form buttons in specific wikis do not work as expected. |
| SUPP-1399 | RS-6986 | Logstash jsm_options are overwritten on Resolve version update. |
| SUPP-1420 | RS-00005252 | RSControl log throughput is high. Setting log.map to INFO does not reduce the log load. |
| SUPP-1405 | RS-7232 | Can not display Resolve Wiki page in Asssure1 window. |
| SUPP-1296 | RS-00006991 | Result Component returns partial Results from WS. |
| SUPP-33 | RS-6110 | The result and detail macros do not update to display the new worksheet when executing a Runbook form its Decision Tree. The impact is no new execution result worksheets are being created, all are stored in the last worksheet. |
| SUPP-34 | RS-26733 | The Resolve login screen is displayed on attempt to log in to Resolve using ADFS due to being logged in to another third party application using ADFS at the same time. |
| SUPP-38 | RS-26942 | An error message is displayed in the Organizations page after related groups and roles are deleted. |
| SUPP-37 | RS-27437 | XML parser cannot handle namespaces when generating XPaths. |
| SUPP-75 | RS-00006136 | Title of the browser tab page does not change after upgrade to 6.2.2.8. |
| SUPP-69 | RS-5192, RS-24758 | getActionTaskDetailResult does not work when from WebService. |
| SUPP-52 | RS-6505 | Custom Forms do not load when there are special characters used in Xtable Custom Form. |
| SUPP-87 | RS-27308 | Zenoss Gateway component field for filter does not accept queries that start with "I". Impact is the gateway cannot trigger Runbooks off filter criteria. |
| SUPP-539 | RS-3581 | Resolve registration does not clear properties. |
| SUPP-1126 | RS-00006684 | NetcoolAPI addJournal function does not insert correct user ID on a Netcool server. |
| SUPP-1296 | RS-00006991 | SSHConnect expect() methods return messages display disjointed message. |
| SUPP-2008 | RS-00008384 | Removing a group does not remove any org_group_rel entries for it. |
| SUPP-2500 | RS-00009998 | Spaces are not valid characters for CONSTANT type of input parameters when an Action Task is added to a Decision Tree. |
| SUPP-2433 | RS-9722 | Intermittent: Action Tasks including "Start" do not have inputs and outputs. |
| SUPP-1330 | RS-00007072 | Connector lines in the main model and decision tree can be modified in Automation Designer view only mode. |
| SUPP-1513 | RS-00007096 | Zenoss Gateway Rewrites the WS Summary Section with Zenoss Summary field when process aborts. |