SR-B30426 · Issue 287706
Event Strategies enhanced for rolling windows
Resolved in Pega Version 7.3
incorrect counts were being created intermittently by Event Strategies used with a rolling window due to timing issues. To resolve this, the Event Strategy rule has been enhanced to better handle sliding time windows where intervals between incoming events are longer than the option value "Store state every N seconds" (given in the advanced settings of New: Data Flow Work Item).
SR-B30431 · Issue 287604
Enhancement to support encryption of Cassandra
Resolved in Pega Version 7.3
In order to build a HIPAA compliant Pega stack, support for encryption of Cassandra internode and client traffic has been added
SR-B30438 · Issue 292802
Audit window close button function change
Resolved in Pega Version 7.3
If an Audit--View history action was configured on the KYCWorkActionsPerform navigation rule, the link worked as expected from the case manager portal but generated an error if 'audit from other actions' was used and closed before accessing the link. This was due to the close button invoking the doclose function that clears the pyworkpage. To resolve this, the Advanced/history attachments tab close button will instead invoke self.close() .
SR-B30485 · Issue 287734
Tenant ID check added to Ruleset Wizard for MT
Resolved in Pega Version 7.3
Attempting to deleting a ruleset in a multi-tenant environment using the Ruleset Wizard resulted in the error message 'Getting records from the database' and the application would hang. This was due to a missing tenant ID in the SQL statement, and a check has been added to the query generation to ensure the prepared values for "pzTenantID" are included.
SR-B30713 · Issue 296998
New activity pyCustomValidator added to pzValidateCustomFilterSection
Resolved in Pega Version 7.3
When a report definition enables "Prompt for filter changes before displaying report", and the report specifies a custom filter section, the harness that displays the custom filter section (pzRRDisplayCustomFilterSection) is Final and was not available to validate the fields in the custom filter section. To enable this use, a new available activity "pyCustomValidator" has been added and can be called from pzValidateCustomFilterSection.
SR-B30747 · Issue 297009
XSS filtering added to report browser CategoryDescription
Resolved in Pega Version 7.3
The list of categories on the right in the report browser allowed some HTML tags to be applied when added to the label. XSS filters have been applied to the CategoryDescription labels to improve security.
SR-B30822 · Issue 289826
SignatureDate populated correctly
Resolved in Pega Version 7.3
The out-of-the-box signature control was passing the current date to the signature date field rather than the date parameter given. This has been fixed.
SR-B30914 · Issue 290290
PurgeExtraRecents logging changed from error to info
Resolved in Pega Version 7.3
In order to support increasing the number of recent items to display to more than 30, the existing logging function in System-User-Recents!pzPurgeExtraRecents activity has been changed from error mode to info mode so the logging can be disabled if desired.
SR-B30935 · Issue 289403
CMIS files stored according to application config
Resolved in Pega Version 7.3
Files uploaded to the CMIS repository were being stored in the "Root" Folder of the repository rather than the folder selected in the Application configuration. This was unexpected behavior caused by an implementation error, and has been corrected. The setFolderID in CMISConnector has been refactored in order to stop dropping the Folder ID in the request unless the Folder with that ID cannot be found. The name will be used if the folder ID is not found, and the root folder will only be used as the last resort.
SR-B30962 · Issue 291933
SaveOperatorUnavailability error message made generic
Resolved in Pega Version 7.3
Data-Admin-Operator-ID.SaveOperatorUnavailability generates the error message ("You are not authorized to create, modify, or lock operator instance "+myStepPage.getString("pyUserIdentifier")); if the request is not sent with the proper privileges. In order to obscure what the privileges are from potentially malicious use, this message has been made more general with the text "You are not authorized for this operation".