Technical Enhancements
Web Security
• The application has again been tested for possible OWASP Top 10 flaws. This was done by performing Veracode static and dynamic scans on the PRECISION Web UI solution. Potential vulnerability flaws were reviewed and either corrected or mitigated.
Authentication
• Added a new JAAS authentication provider.
• Added the ability to automatically create new users in PRECISION from an external repository by communicating with a DSML Gateway. Web service calls to the DSML Gateway can be made manually from the ADMIN screen or by configuring a background scheduled thread using "scheduler-service.xml".
Browser Support
• Added support for Internet Explorer 11.
A new precision.properties property can be used to tell the Web UI what IE renderer to use.
precision.ui.xuacompatible=IE=11
By setting this to IE=11 the Web UI should continue to render correctly when Internet Explorer 12 becomes available.
• The look and feel of screens that do not use Ext JS components have been updated to render more consistent with the other screens. The input field heights and prompt images used have changed.
Note: This change may affect how customized screens render when built over the 4.9 baseline.
Shipment Inquiry, Your Search Fields
• Compliance screens and step one of desktop shipping have been converted to render using Internet Explorer Standards Mode.
• Improved support for Chrome. Fixed some cosmetic issues.
Also Chrome has an issue making AJAX requests after a web page has been posted. This issue causes Chrome to report a network error. A fix has been made to version 34 of Chrome which is currently available as a Beta release from Google.
• JavaScript code has been changed to only log output to the browser console if the console is available.
Components
• Web UI 4.9 is built using Java 7 (1.7.0_51-b13).
Note: JBoss will not be able to deploy the Web UI until the JRE it uses has been upgraded to Java 7.
• The Oracle JDBC driver has been updated to the Java 7 offering (\WebUI\lib\db\ ojdbc7-12.1.0.1.jar).
