T&A 8 8.38.5.0 Controlled Release Report

We are pleased to announce the latest controlled release of Advanced Time and Attendance 8: Version 8.38.5.0!

Below is a list of all features and bug fixes for this controlled release since the last Controlled release (version 8.38.4.1). More information can be found by contacting our Customer Support team.

For instructions on how to upgrade your installation of Time and Attendance 8, please take a look at our Upgrade guide by clicking here.

Type

Jira/Salesforce

Issues

Resolution notes

Small Enhancement

TA-8451

23380228

400 Bad request error was being randomly generated, when booking absences.

A check has been added to ensure referrer-policy is set correctly. If the HTTP response header is configured incorrectly, then an error is logged in the Elmah file and references referrer-policy.

Defect

TA-8430

Fields in Employee Details could not be set back to blank.

Users will be able to remove field values, in the Employee Details screen and save the record with blank values.

Defect

TA-8407

Logging into web app, as an employee, shows last login information twice.

Employee last login information is correctly displayed in the web app.

Defect

TA-8524

Supervisor login preferences are not being obtained from the correct User profile.

Login preferences will be obtained from the correct User profile for Supervisors.

Bug

TA-8289

System allows unrestricted file uploads

File upload restrictions introduced to make the application more secure. Three new settings are available in the web config file.

For upgrades, the new settings will not be automatically added. However, if a config does not exist in web.config, then default values will be used, as shown for each config.

Customers can override the defaults by adding the config to web.config and amending the values used.

Config

Default values

File size limit in bytes

10MB

White list of file extensions

“txt,doc,docx,pdf,xls,xlsx,rtf,gif,csv,jpeg,jpg,png,pps,ppt,pptx,ods,odt,wpd”

Mime types restriction

"text/plain,application/pdf,application/rtf,image/jpeg,image/gif,image/png,text/csv,application/msword,application/vnd.openxmlformats-officedocument.wordprocessingml.document,application/vnd.ms-excel,application/vnd.openxmlformats-officedocument.spreadsheetml.sheet,application/vnd.ms-powerpoint,application/vnd.openxmlformats-officedocument.presentationml.presentation,application/vnd.oasis.opendocument.spreadsheet,application/vnd.oasis.opendocument.text,application/vnd.wordperfect"

Note: You can use "*" as a value to allow file types.

Bug

TA-8481

Cannot access Drop down menus in work record of clock card, while using the mobile app.

When using the Clock card in the Mobile app, sub-menus in the work record will now be accessible.

Bug

TA-8492

Running setup batch file for web T&A installation throws error.

Running the setup batch file for the Web app, will successfully install the web files.

Bug

TA-8443

Vulnerability issue - runtime error page is displayed when hitting specific URLs

Correctly display custom error page (400) when an invalid character is detected in HTTP request path.

Was this article useful?

T&A 8 8.38.4.1 Controlled Release Report

T&A 8 8.38.5.1 General Release Report

Contact