TOLERANT Bank Release 4.0
2015/12/04
Notices
- 32-Bit operating systems are no longer supported.
- When upgrading an installation where https is used, a MANUAL(!) step is required to reimport the certificate into the java virtual machine. This step is documented in the „HTTPS“ appendix of the manual (section „USING JAVA API WITH HTTPS“). This step is necessary, as the upgrade does not know the keystore password used in previous installs.
- The product ships with a newer embedded web server (jetty 9.3.3). The configuration of the server has changed, so that the server configuration now resides in $TLCONFIG/jetty-config. When upgrading, all web server configurations from the previous installation should be incorporated automatically into the new config.
- A newer java virtual machine (1.8.0_66) is now bundled with the product.
- The script to install a windows service using Apache Tomcat has been removed. If you still need this script, please write an email to support@tolerant-software.de
- The temporary directories for the extracted web applications are now reused on startup.
- Java API requires java1.6 or a newer version.
- The internally used TOLERANT Match library was updated to version 3.1.
- The feature to run the Bank Client GUI with a local configuration file, configured through installation path at menu „File–>Settings“ or the URL parameter „dir“, was removed.(since Bank 3.1)
New Product Features
Client GUI
- Improved field help messages for generated search fields to give more bank specific information.
- The service configuration check before starting the Client GUI is no longer carried out by the client, but by sending an administration request to the Bank service, if possible. If security features are enabled, the configfile.check right is needed.(since Bank 3.1)
- Projects which are not running are removed from the project selection box, when the Client GUI is started.(since Bank 3.1)
Service
- The security settings can now be configured to use LDAP for authentification. More details can be found in the manual.
- The service administration command reconfigure service was improved.(since Bank 3.1)
General
- A new command „check configfile“ is added to the bankAdmin tool, to get information about configuration warnings and errors.(since Bank 3.1)
- The checkdigitmethod 87 has now a new submethod, used by some banking institutions.(since Bank 3.1)
Security
- Following rights were added:
- configfile.check: Get configuration warnings and errors information form the administration service interface.
- environment.get: Get defined environment variables.
- The rights „configfile.get“ and „project.state“ were added to the predefined „GUEST“ role at default security.xml. They were added to allow the use of Client GUI. But keep in mind that these rights are administrative rights, which can be a security issue.
- When using https the following CipherSuites have been disabled by default, due to security problems:
- SSL_RSA_WITH_DES_CBC_SHA
- SSL_DHE_RSA_WITH_DES_CBC_SHA
- SSL_DHE_DSS_WITH_DES_CBC_SHA
- SSL_RSA_EXPORT_WITH_RC4_40_MD5
- SSL_RSA_EXPORT_WITH_DES40_CBC_SHA
- SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA
- SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA
- SSL_RSA_WITH_RC4_128_SHA
- SSL_RSA_WITH_RC4_128_MD5
- TLS_ECDHE_RSA_WITH_RC4_128_SHA
Performance
- No major improvements
Miscellaneous
- Nothing to report
Fixed Bugs
Client GUI
- Bug #3081: Exception at console, if user has security activated and no project.state right.
- Bug #3003: After start the client, the spinner do not stop to spin.
- Bug #2923: In rare cases there is an internal error after send a request to service.
- Bug #2786: Wrong value(„null“) at log file output after reading the configuration from service.
- Bug #2161: Useless help message for bank search fields.
Service
- Bug #3053: The attribute „allowEmptyResults“ for a synonymFile if set to „Y“ will now also revert a synonym replacement if the result is a string containing only of blanks.
- Bug #2228: Error message if service configuration contained errors was unreadable.
Installer
- Bug #2925: Installation to paths with umlauts or other special characters failed.
General
- No bugs were fixed
Known Bugs
- Bug #3200: ElementResultStatus can have too many digits in case of unknown bankcodes
Requirements
- Please refer to the manual
Installation/De-Installation
- Please refer to the manual
Release 3.1, 2015/08/11
Notices
- The feature to run the Bank Client GUI with a local configuration file, configured through installation path at menu „File–>Settings“ or the URL parameter „dir“, was removed.
New Product Features
Client GUI
- The service configuration check before starting the Client GUI is no longer carried out by the client, but by sending an administration request to the Bank service, if possible. If security features are enabled, the configfile.check right is needed.
- Projects which are not running are removed from the project selection box, when the Client GUI is started.
Service
- The service administration command reconfigure service was improved.
General
- A new command „check configfile“ is added to the bankAdmin tool, to get information about configuration warnings and errors.
- The checkdigitmethod 87 has now a new submethod, used by some banking institutions.
Security
- The java virtual machine 1.8.0_45 is now bundled with the software.
Performance
- No major improvements
Miscellaneous
- Nothing to report
Fixed Bugs
Client GUI
- No bugs were fixed
Service
- No bugs were fixed
Installer
- No bugs were fixed
General
- No bugs were fixed
Known Bugs
- no known bugs
Requirements
- Please refer to the manual
Installation/De-Installation
- Please refer to the manual