CSSCurrent en:Version 7.4.0: Unterschied zwischen den Versionen

Version vom 7. Juli 2025, 12:20 Uhr

eRelease Date: TBD

Important Update Notes

Language Packages

Due to structural changes in the language packages, all supported server language packages will be updated automatically, customized language packages will be removed during the update process (a backup is done before). If more language packages are needed, it is required to download and install them again.

In case your language packages have been modified, the attached delta-file Datei:Delta english lp 7.3.0 to 7.4.0.txt can help you to locate the changes in this update and re-apply the modifications. The structure of this file is explained in Language Pack Changes.

New features

Improvements

Obsolete log files and service definitions will be removed with this update, that were only relevant to earlier versions of Cryptshare and are no longer required.
The installed OWA package version displays the build number.
If the notification of all recipients fails during a transfer, the Cryptshare Server skips the notification of the sender about a ‘successful notification of the recipients’. Starting with this version, the sender's notification is now also saved as failed. This affects the display in the transfer log and responses from the SOAP and REST API. This is to avoid the false impression that the sender has been informed about the transfer.

Content Security Policy changes

The default Content Security Policy (CSP) configuration of the Cryptshare Web App (end user interface) and Cryptshare Admin Interface has been tightened and no longer allows unsafe-inline or unsafe-eval directives.

The CSP configuration has also been tightened in case additional resources from other sources are used by removing the previously mentioned directives. If you only integrate images from other sources, no further adjustment is required.

{{{title}}}

However, if you want to integrate scripts (e.g. cookie banners) from other sources, an extended configuration with a new parameter is required. Further information can be found here. hier.

REST-API

Enhanced Transfer Polling: Sender Details now available

The sender’s name and phone number are now saved in the database and can be retrieved via the Sender/Recipient Transfer polling API.

Bug Fixes

Fixed an issue causing application logs to appear in host system syslogs (`/var/log/messages` or `/var/log/syslog`).
Fixed an issue where boolean properties in the Transfer-Polling API response defaulted to false when not included. They now return null unless specified via the Fields parameter.
Fixed an issue where the Transfers in the "Processing" state that exceeded their expiration_date were incorrectly returned as active in the API response before the cleanup task ran. They are now correctly returned with the state DELETED_BY_EXPIRATION
Fixed an issue where under specific circumstances the "Save changes" button in the policy administration was not responsible.
Fixed an issue that prevented transfers created by QUICK from being polled via the Rest Api.

@@ Zeile 19: / Zeile 19: @@
 The CSP configuration has also been tightened in case additional resources from other sources are used by removing the previously mentioned directives. If you only integrate images from other sources, no further adjustment is required.
-{{WarnBox|content=However, if you want to integrate scripts (e.g. cookie banners) from other sources, an extended configuration with a new parameter is required. Further information can be found here.|title=}}
+{{WarnBox|content=However, if you want to integrate scripts (e.g. cookie banners) from other sources, an extended configuration with a new parameter is required. Further information can be found here. [[{{NAMESPACE}}:Advanced_Configuration#Content_Security_Policy|hier]].}}
 === REST-API ===