IBM Support

Release Card - Emptoris Services Procurement 10.0.0.5_iFix7

Question & Answer


Question

Release Card - Emptoris Services Procurement 10.0.0.5_iFix7

Answer

?


IBM Emptoris Services Procurement 10.0.0.5_iFix7 Release Card
?
Product(s):
?		IBM Emptoris Services Procurement
?
Release Version:
?		10.0.0.5_iFix7
Author:
?		Ashwini Sant
Quality Certified by:
?		SPQA

Build and Documents information:
Build Version:EMP_Services_Procurement_10.0.0.5_iFix7_55
  • EMP_Services_Procurement_10.0.0.5_iFix7_55.zip
Installation Files:Passport Advantage
  • EMP_Services_Procurement_10.0.0.0-485.zip
?
Fix Central
  • EMP_Services_Procurement_10.0.0.5_26.zip
  • EMP_Services_Procurement_10.0.0.5_iFix7_55.zip(10.0.0.5_iFix7)
  • elance-db.tar (10.0.0.5_iFix7)
Site Configuration File:None
Other Documents:

Special Instructions for Customer / Application Management team:

Please refer the FixPack5 (10.0.0.5) Release card for the previous special steps and execute those if not executed already.

For iFix1
#1Run migrate DB from the elance-db released with this iFix.

For iFix2
#1Run migrate DB from the elance-db released with this iFix.


For iFix3
#1Run migrate DB from the elance-db released with this iFix.
#2Import the ?ISPCognosPackage.zip? on your Cognos server. Follow the steps mentioned in the section ?Importing the Packages File on Windows? in install guide on page 53. If you have Cognos installed on Linux refer to section ?Importing the Packages File on Linux? in install guide on page 64.
#3Copy ?UDFAutomation.zip? provided with this release on Cognos server and extracts it.? Follow the steps mentioned in the ?ReadMe.txt? which will be available after extraction of ?UDFAutomation.zip?.


For iFix4
#1Run migrate DB from the elance-db released with this iFix.

For iFix5
#1
  • Run migrate DB from the elance-db released with this iFix.
  • Add application server hostname in sp.web.url property value as shown below into ConfigService.properties file found at Path : /opt/emptoris/apps/<Folder>/SP_<Folder>/PRIMARY_1/application/dist/elance/config/elance before starting primary server.
sp.web.url=https://<hostname>

For iFix6
#1Run migrate DB from the elance-db released with this iFix.

For iFix7
#1Run migrate DB from the elance-db released with this iFix.

Suite Compatibility Matrix:
ProductVersion(s)Comments
Emptoris Suite Installer
  • 10.0.2.4.1 Build 13
  • echos-agent-installer.jar
  • echos-launcher.jar
CWS
  • emptoris_web-2.0.0.0.3-43
IBM Emptoris Services Procurement
?
  • EMP_Services_Procurement_10.0.0.5_iFix7_55
  • elance-db.tar (10.0.0.5_iFix7)

Issues Resolved in this iFix:
Support Case NumberEngineering Issue NumberCategoryIssue Description
66042Security IssueIssue: Change in forgot password flow to address security issue to support security question when user clicks on forgot password link.
Root Cause: This information/username can be used to attack the application through a brute force attack.
Fix: Now when user id is wrong user is asked for previously saved security question while registration. Hence hacker will not get the information that user id is valid or invalid.
63942Security Issue?Fixed security related issue.


Enhancement Resolved in this iFix:
Support Case NumberEngineering Issue NumberDescription
NA

Issues Resolved in Previous iFixes:
Support Case NumberEngineering Issue NumberCategoryIssue Description
64760SecurityIssue: Weak CSRFToken protection on Login form in SP application
Root Cause: CSRF Attack
Fix: The 'elance40elance' CSRF token removed. On first hit server will generate new token and this will get use at time of login.
64757SecurityIssue: CSRFToken is sending over in URL
Root Cause: CSRF token issue
Fix: Changed method type to post so that all these values will go in form body instead of url.
64754SecurityIssue: User account is sending over in URL
Root Cause: CSRF token issue
Fix: Instead of page redirect. we introduced new page which get submitted directly on load. this way we are removing the username from parameter.? Now all the values are going as part of post request.
64752SecurityIssue: Upload of Unexpected File Type to Attachment under Procurement Categories in Emptoris Services Procurement
Root Cause: File attachment issue
Fix: Added png .rar. .html in default restricted file list
SR1004517862802Historical BugIssue: URL redirect to http in Soft layer.
Root Cause: When user logs in with https then because http port is blocked on the Soft layer user gets ?cannot be displayed? page even on successful login.
Fix: This is now redirected to https instead of http on successful login.
5377-1205738648931Historical BugIssue: A request is sent for approval to some incorrect user
Root Cause: A thread locale variable is not "unset" (after its been set) while "Submitting timesheet for approval".
This same thread locale variable in "Set" condition is taking "Hiring Manager" selection logic to different flow hence causing this issue.
Fix: Added logic to "unset" the thread locale variable in "Timesheet submit for approval" functionality.
5377-1314510458164Historical BugIssue: Manager information under "Time and Expenses" Tab is not showing correctly for orders where there is a Hiring Manager / Owner change.
Root Cause: In case of multiple Hiring Managers random hiring manager was shown on Timesheet and Expense sheet List page.
Fix: Added logic to select the latest Hiring Manager based on dates.
5377-1266150047493Historical BugIssue: Position requirements data not updated at contingent staff requirement section when user creates a direct order.
Root Cause: Code was not present to copy the position requirements from position to contingent staff.
Fix: Added code to copy the position requirements from position to contingent staff.
5377-1268771948014Historical BugIssue: Timesheet approval notification is received to managers even though timesheet has been approved.
Root Cause: Partial fix delivered for an issue in relation to this "consolidated emails" issues.
Fix: Added the complete fix for the issue in relation to "consolidated emails" functionality.
5377-1273220948478Historical BugIssue: System displays error page while entering the value for "Find delegation info for" in approval delegation section.
Root Cause: On click of "Enter" button the form was getting submitted without validation.
Fix: Now on click of "Enter" button given call to validations before the form is submitted.
5377-1264048046358Historical BugIssue: System encounters error when a user enters a particular user name on search and press enter under ?Approvals? section of system administration.
Root Cause: On click of "Enter" button the form was getting submitted without validation.
Fix: Now on click of "Enter" button given call to validations before the form is submitted.
5377-1235954646828Historical BugIssue: Validation that can be added via custom hook call for ?Invoice ID? is not displayed in red color with bold font on edit page.
Root Cause: In JSP file the message was shown in plain format.
Fix: Changed the display format of the message in JSP file and changed it to show it in Red color and Bold format.
5377-11776624 5377-1205738628678Historical BugIssue: Request went to the incorrect approver when the user submits the request for approval.
Root Cause: On change of request owner it should make change of owner in two database tables. However it was making change in only one DB table and not making change in "spm_rfx" table. When request is submitted for approval then it was still considering the old owner as logic was written to fetch the owner from "spm_rfx" DB table.
Fix: Added code to change the owner in "spm_rfx" table also upon change owner action.
?
*Note: Fixed on a particular reproducible scenario only. Please check the ticket for the scenario in which the issue is fixed.
5377-1255620143527RegressionIssue: Interview scheduled icon is not displayed when the supplier changes the interview status to ?Accepted?.
Root Cause: In the RTC 25168 our Product Manager given the requirement that interview icon should visible when interviews are scheduled and should disappear when interviews are completed.
As part of that a condition has been added to show the icon when interviews are in scheduled status.
But when supplier accepts the interview then also ideally interview is scheduled but our code does not include this status to show interview icon.
Fix: We have added the "Supplier accepted interview" state also to show interview icon.
?
**Note:
Desired behavior:
#1 Score should be calculated based on completed interviews only. Average score displayed should not be calculated based on total number of interviews scheduled as it currently works.
e.g 4 interviews scheduled. 2 completed with score 80/100 100/100.
Current Score displayed - 180/4= 45. Score should be displayed as 90.

#2 Icon for scheduled interviews - Icon should disappear when all the scheduled interviews are completed and scored in the system.
So a score with Icon - would indicate that the score is based on completed interviews and some interviews are yet to be completed. And
A Score without Icon - would indicate that this is final average score based after completing all the interviews.


Limitation:
Score of '0' with interview icons does not clearly indicate to user if no interviews have been completed or some interviews have been completed with a zero score. This is kind of corner case and since the likelihood of this occurring is very low no significant changes to this historical behavior have been proposed.
5377-1255848743586RegressionIssue: All the users of similar roles in a team section do not receive emails when the email is set to ?Consolidated?.
Root Cause: An issue reported to fix the multiple same line items appearing in consolidated email notification.
To fix this issue the duplicate line items having same subject were filtered out on complete list as a whole.
But this filtering should have been happened on "Per user" basis and not on whole list. Because same email notification could go to multiple administrators.
Fix: Now to fix the "Multiple same line items notification issue for consolidated emails" the message filtering has been done on "Per user" basis and not on the complete list as a whole.
5377-1255869743753Historical BugIssue: Few fields do not show data for the contingent staffs which are not yet registered.
Root Cause: There are some contractors who are on order but CS registration is still not complete so CS do not have entry in "users" table and cannot been searched from UI.
In a CS "View" queries these types of CS are filtered out by a join condition because those do not have entry "user" tables.
Fix: Changed the view definition. Added outer join so even if CS is not registered and do not have entry in "users" table still it would not get filtered out in those "View" queries.
5377-1235954638650Historical BugIssue: Supplier ID field can also allow only alphabets and validation need bold red colour.
Root Cause: The plain error message shown on invoice page not having "Red color" and "Bold font".
Fix: Added "Red color" and "Bold font" to error message shown on invoice page.
?"

[{"Business Unit":{"code":"BU051","label":"N\/A"},"Product":{"code":"SUPPORT","label":"IBM Worldwide Support"},"Component":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions","Edition":"","Line of Business":{"code":"LOB33","label":"N\/A"}}]

Document Information

Modified date:
02 November 2020

UID

ibm10786705

Page Feedback