Kofax Process Director 7.8 Web Applicaton Patches
© 2022 Kofax. All rights reserved.
Use is subject to license terms.
Introduction
This ReadMe file contains information about updates and enhancements made to the Kofax Process Director 7.8 Web Application™.
Patch Level 9 - December 6, 2022
Updates
Resolved an issue wherebt the Query action for the processor selection was unavailable.
Resolved an issue whereby a Forward action produced an error.
Resolved an issue with log level and other log.properties configuration settings.
Resolved an issue whereby session-related logging events were duplicated.
Several security-related issues were resolved.
Patch Level 8 - June 7, 2022
Updates
Resolved an issue where SAML2 Relay State cookie was validated with an error message.
Corrected the error with too many similar entries in the /EBY/PDWA_TPAR table.
Resolved an issue whereby a posting attempt after a workflow release in Web Application did not work correctly if the document was not error-free.
Several security-related issues were resolved.
Patch Level 7 - October 20, 2021
Enhancements
The maximum user ID length is now extended to 256 characters in MSADAuthService and MSADAuthService2.
PO history can be hidden for invoices with many line items. The number of line items in a PO for which the PO history will be shown is now configurable within the "pdap_show_po_history" configuration file.
On logon the help page appears as a pop-up.
A new parameter pd_wfsteps_in_detail that determines whether the workflow processors are displayed in the table area of the document detail view or in the additional information area has been added.
A new parameter pdap_show_maa_table has been introduced (in Process Director Accounts Payable only) to enable an option to hide or display the account assignments for purchase order item in an MM invoice.
A security exception warning is recorded in the log file in case the entered user name or password are wrong.
Updates
Resolved an issue whereby the wrong mimetype was used to upload documents via drag and drop.
Resolved an issue whereby Croatian language was not supported, Hungarian was used instead.
Resolved an issue whereby a workflow receiver could not be chosen between two identical SAP/WUM user IDs, the field was inactive and the error message was displayed.
Resolved an issue whereby Web Application retrieved WEB BOARD related data during login operation and called /COCKPIT/RFC_WB_GET_FIELDS_WEB function module. This call is obsolete and was removed.
In case the plugin_configuration.properties file cannot be loaded in AbstractProviderLoader, the proper error message is recorded in the log file.
Corrected the error with two simultaneous calls for Web Application: only one JCO DesinationDataProvider can be registered for JCO3.
Resolved an issue whereby the language in the user profile remained partially unchanged when a different logon language was set.
Resolved an issue whereby NullPointerException appeared if the configuration parameter accounting.copy had NOT_EXISTING_FIELD.
Default values for the configuration parameter maxresult.search were changed to improve performance and avoid Tomcat CPU spike.
Resolved an issue whereby a workflow processor assigned in the background was displayed in the pop-up instead of read-only user assignment table.
The following third-party libraries/utilities were upgraded: pdfbox to 2.0.23, fontbox to 2.0.23, commons-io to version 2.8.0, xmlgraphics-commons, jsoup.
Several security-related issues were resolved.
Patch Level 6 - January 28, 2021
Enhancements
For MYSAPSSO scenario, the check for an active connection with the same name is performed before a new connection is created.
Updates
Resolved an issue whereby the size limit set for attachments in the /COCKPIT/WI15 transaction was not applied in the Web Application.
Resolved an issue whereby the session timed out within two minutes of opening the OCI catalog in the Chrome browser.
The following third-party libraries/utilities were upgraded: sapjco3 version 3.1, hibernate-entitymanager, hibernate-c3p0, guava, bcprov-jdk15on, and bcprov-ext-jdk15on.
Several security-related issues were resolved.
Patch Level 5 - September 28, 2020
Enhancements
The new pdweb-app.properties parameter "pd_mime_detection" activates automatic MIME-type detection to prevent malware uploads.
Updates
Resolved an issue whereby an exception issued by the XSSFilter appeared in the log file.
Resolved an issue whereby when using the ":copy" attribute of the pdweb-app.properties parameter "csvDownloadList", the Copy button did not appear in Chrome.
Resolved an issue whereby the Web application did not send empty parameters to the OCI catalog.
When “displayMode” is set to “SYSTEM_FIRST” for a master worklist, the Web Application now displays the connected systems in the order specified in the “systemWorklistconfigs” parameter.
Several security-related issues were resolved.
Patch Level 4 - August 10, 2020
Enhancements
When the user is automatically logged off after a period of inactivity, the pdweb-app.properties parameter “logoff_redirect_url” now redirects the user to the specified URL.
Updates
Resolved an issue whereby the Czech language translation for "Overdue" was incorrect.
Resolved an issue whereby the document detail view of an invoice was not displayed when the user clicked the single document link in a workflow email.
Resolved an issue with the ReadSoft Mobile application whereby a blank screen was displayed instead of the invoice image.
Resolved an issue whereby an error message was displayed after the user cancelled the “File upload from list” action.
Resolved an issue whereby SAML SSO did not work if the user’s PC or browser language was not installed in the SAP system.
Resolved an issue whereby the Tomcat parameter “-Dcom.ebydos.webapp.config” did not work correctly when used with the “%context%” variable.
The following third-party libraries/utilities were upgraded: Hibernate core.
Several security-related issues were resolved.
Patch Level 3 - June 4, 2020
Enhancements
When follow-up fields are represented by icons, the "Follow-up flag" field is now highlighted when more than one follow-up flag is present.
Updates
Resolved an issue whereby after entering an incorrect workflow recipient ID, it was not possible to delete that recipient from the recipients list.
Resolved an issue whereby empty lines were displayed in the document overview list after the user clicked the single document link in a workflow email, processed the document, and then returned to the document list.
Resolved an issue whereby the print preview was empty when the parameter “pd_print_page = yes” was set and the user clicked the button to print the page.
Several security-related issues were resolved.
Patch Level 2 - April 17, 2020
Enhancements
Follow-up flag descriptions are now displayed instead of the IDs. If several follow-up flags are assigned, the descriptions are displayed in a tooltip. (Applies to Process Director Accounts Payable only).
New pdweb-app.properties parameter "pd_search_auto_select" to automatically select a single search result. If this parameter is set to "yes" and the field's search help returns only one value, that value is automatically entered in the field. If the parameter is set to "no", the user must select the value. The parameter can also be set for a specific field or document type and field.
New pdweb-app.properties parameters “pd_decorate_field” and “pd_decorate_line” to highlight fields and table rows based on specific field values. This can be used, for example, to highlight Process Director Accounts Payable documents for which payment is overdue.
Updates
A signed SAMLResponse signature from the identity provider is now mandatory.
The parameters “Certificate” and “PrivateKey” are now mandatory in the “ServiceProviderConfiguration” section of the “SAMLConfiguration.xml” file.
When uploading attachments, radio buttons are now available for the user to select the correct attachment type if the corresponding mime type or the field type is not unique in /COCKPIT/WI15.
Resolved an issue whereby an email user was not able to access the workflow by clicking the document link in the email.
Resolved an issue whereby the message “The application was terminated” was displayed when the user logged off. The logon page is now displayed when the user logs off.
Resolved an issue whereby the attachment list disappeared after displaying messages.
Resolved an issue whereby the Web Application stopped working when the user created a new invoice from the Quick Start menu and then pressed the “Back” button.
Resolved an issue whereby messages from a previous workflow action as well as the current action were displayed in the “Messages” popup.
Resolved an issue whereby the Web Application stopped working after approving of the last of a number of forwarded documents.
Resolved an issue whereby the Web Application did not support the SAML signature algorithm SHA256. It is now possible to configure the signature algorithm in the “SAMLConfiguration.xml” file.
Resolved an issue whereby too many suggestions were saved. Suggestions are now only retained when a document is saved, forwarded, queried or approved.
Several security-related issues were resolved.
Patch Level 1 - February 3, 2020
Enhancements
In a SAML SSO scenario, for security reasons, all assertions from the IdP must now be signed.
When the document is saved after the user enters a value, the cursor remains in that field when the document is updated.
Updates
Resolved an issue whereby too many buttons were displayed for the recipient of a query. Query recipients can now only add a note and answer the query.
Resolved an issue whereby if more than one system was defined in the saplogon-properties file, the logon page for the default system was always displayed after a timeout.
Resolved an issue whereby suggestions were saved even if pd_suggest_mode=off was set in the pdweb-app.properties file.
Resolved an issue whereby the error message “Please fill all mandatory fields” was displayed when uploading an attachment.
Resolved an issue whereby suggestions were not displayed for the recipient fields in the “Start workflow” dialog box.
Resolved an issue whereby an error occurred when the workflow processor opened an invoice document relating to a purchase order that contained items without a delivery date.
The following third-party libraries/utilities were upgraded: commons-beanutils, JTidy, PDF-Box, Log4j.
Several security-related issues were resolved.
Support
If you have questions or problems, refer to the Kofax Knowledge Base.