Blue Prism 6.3: August 2018
Database: |
255 |
The release requires the Blue Prism database to be this version. |
Login Agent: |
6.3 |
The login agent has been updated for this release. |
Browser extension: |
1.0.6.3 |
For the latest compatibility information, see Browser extension compatibility. |
Important notices
A number of new security mechanisms are introduced with this version – the upgrade notices must be reviewed before applying this release.
This release includes all of the improvements introduced in 6.2.1.
Release notes
This release has been verified as complying with the below standards by Veracode – an independent application security organization.
Static Code Analysis |
VL4. Veracode Score: 100/100. Further information |
PCI DSS |
PCI DSS Version 3.2 compliant in sections 6.1, 6.3.2, 6.5, 6.6, and 11.3.2 |
PCI PA-DSS |
PCI PA-DSS Version 3.2 Sections 5.1.4, 5.2, 7.1.1, 7.1.2, and 7.1.3. |
OWASP |
|
SANS Top 25 |
|
CERT Secure Coding |
A compliance highlight summary report is available upon request via Product Support.
The following new features and enhancements are introduced in this version of Blue Prism.
Description of change |
Reference |
---|---|
Multi-team Environments enable organizations to model increasingly complex security configurations within Blue Prism by extending the existing role-based access controls to enable more granular configurations. These capabilities better enable organizations to share Blue Prism assets, such as business objects and runtime resources, with multiple teams within a given Blue Prism environment. For example, users who are members of a team may have full access to some business objects but may only have the ability to view or execute others, as may be appropriate for assets that are shared by multiple teams. Multi-Team Environments introduces the following key highlights to Blue Prism:
|
ep-56 |
Native support for automating web pages and applications in Chrome is provided within Blue Prism through the use of a Blue Prism Chrome extension. This allows Blue Prism to interact with web pages and applications, presented in Chrome, so that business processes that rely on applications presented in this browser can easily be modelled. The Application Modeller wizard has been updated with a new additional Browser-based Application (Chrome) application mode that enables Chrome elements to be spied and used within business objects. As part of this feature, the Blue Prism installer has been updated to enable the installation and removal of the extension. |
ep-110 |
The Blue Prism installer has been updated to provide the optional installation of:
|
us-2612 us-2534 |
A number of improvements have been applied which improve the usability of child or nested collections:
|
us-1778 us-1779 |
A new Web Service Consumer role has been created to simplify the ability to apply the correct permissions to user accounts that will be used to consume Blue Prism processes and objects exposed as Web Services. This role grants the necessary execute permissions without providing access to areas of the interface, such as Control Room. The role can be used in conjunction with the capabilities of Multi-Team Environments to restrict which exposed objects and processes can be accessed by user accounts assigned to this role. |
us-2401 |
A number of session management commands (create, start, delete) no longer work by default. They have been superseded by createas, startas, and deleteas which require the use of the getauthtoken method. While not recommended, the previous methods can be re-enabled by disabling the new setting that enforces permissions of controlling users when carrying out session management actions. |
us-2561 |
When selecting to override the session logging level on the runtime resource (via Resource Management) it is now possible to select Errors Only logging. When a runtime resource is configured with this override, session logging will be reduced to only log stages which result in an error being reported. |
us-1811 |
The status message shown in the Blue Prism client when connected directly to a database has been updated. It now presents the reported SQL version number instead of “Unknown” for situations where the friendly name for the SQL version is not known. |
us-2078 |
The way that pools and their members are displayed within System > Resource Management has been updated so that resources appear under their pool rather than separately. |
us-2152 |
A number of improvements have been made to the Session Management pane in Control Room:
|
us-2527 bg-1819 us-2796 bg-1927 |
When users manually change or set the value of a Session variable via Control Room, the action is now recorded with the session log. |
us-2214 |
It is now possible to alter the process behavior when applying updates to a collection that was copied from an inner, or nested collection. When this optional change is applied, the relationship between the original and nested collection is affected and is passed by value, rather than by reference. When the data is passed by value, changes are not reflected in the original collection. This is implemented on a per process basis and requires a manual update to the process XML via export and re-import. For advice on applying this change see the knowledge base article: How do I update a copy of an inner collection or nested collection, without affecting the original? |
bg-1321 |
The attribute named Match Index is now available when modelling elements using UI Automation. |
bg-1440 |
The action of manually releasing a lock in System > Workflow > Environment Locks now results in an entry being made into the audit log. |
bg-1412 |
All relevant Blue Prism user interface controls have had their scale mode updated to improve the presentation of the interface when installed on Japanese operating systems. |
us-1903 |
All log messages written to the console window of BPServer.exe are now timestamped to improve analysis and troubleshooting. |
us-2746 |
The following fixes and minor improvements are introduced with this version.
Description of change |
Reference |
---|---|
A number of security enhancements have been to revalidate actions taken within the Blue Prism client against the user’s permissions on the server (where deployed). This includes:
|
us-2150 |
The manage credentials functionality has been updated so that the password and property values, which are not required, are no longer included in the underlying data object. This reduces the likelihood of sensitive information from being discovered. Additionally, the user interface now clarifies that blank or duplicate property names cannot be used. |
us-2160 |
Within Credential Manager, the access rights tabs for each credential have been reordered to give prominence to the recommended “Security Roles” capabilities. New descriptions on each of the tabs that allow restrictions by Security Role, process and resource have been added to clarify the nature of the restriction that the respective settings enable. |
us-2525 |
A number of reconnection issues have been addressed:
|
bg-1438 bg-1513 bg-1555 bg-1350 |
A number of improvements have been made to improve the performance and responsiveness of the platform when version 6.0, 6.1, 6.2 or 6.2.1 is deployed. Primarily, albeit not exclusively, these changes benefit situations where a WCF server connection mode is in use:
|
bg-1740 bg-1798 bg-1843 us-2599 us-2620 us-2623 us-2630 us-2632 us-2656 us-2658 us-2678 |
A number of fixes have been applied to active queues to address issues experienced in Version 6, including:
|
bg-1801 bg-1802 bg-1803 bg-1812 bg-1824 bg-1846 bg-1848 bg-1849 bg-1850 bg-1864 |
An issue that caused Control Room to crash when selecting the Scheduler node if the schedule had more than 2000 log entries, has been addressed. |
bg-1304 |
An issue that prevented screen captures if Preserve the type and detail of the current exception was selected in the exception action, has been addressed so screen captures occur irrespective of the option to preserve the type. |
bg-1696 |
The following issues have been addressed:
|
bg-128 bg-126 bg-1804 |
An intermittent issue that resulted in extended login times in environments with large numbers of runtime resources has been addressed. |
bg-1891 |
An improvement has been made to address the issue where, after cloning a published process using Save As, if the user selects to publish the process, this is not saved until the new process is closed and reopened. |
bg-1847 |
An issue has been addressed whereby the action of encrypting or decrypting a data using an encryption scheme incorrectly required full Credential Management privileges. The mechanism used for these actions now applies the correct permissions, which improves the behavior when using the Blue Prism Encryption VBO to encrypt and decrypt data. |
bg-1628 |
The messages presented when carrying out an import of a release have been clarified to address an issue where, in some situations, when a user selected not to import a business object or process because it already exists, they were informed that it had been imported. |
bg-1326 |
An improvement has been applied that addresses a scenario where pressing enter when a group or folder was selected resulted in unexpected behavior. |
bg-581 |
It is no longer possible to rename a group to have the same name as another group at the same level in the hierarchy. This addresses the scenario where a group with a duplicate name, at the same level in the hierarchy, would be hidden from view. This affects groups of queues, processes, objects, tiles, users, and resources. |
bg-630 |
The scenario where an unexpected error was presented when deleting a process that had not been run, but for which process alerts had been configured, has been addressed. |
bg-424 |
An issue has been fixed to address scenarios where process alert users incorrectly received the message Alert Received but cannot be displayed, because this machine is not registered. |
bg-771 |
The Export current view as report option in Control > Queue Management is no longer available if there are no queues in the Queue Contents section of the screen. Previously, the option was available and would produce and error as no queues were available. |
bg-536 |
Runtime resources now restart as expected from the resources system tray context menu when the restart action is selected and when instructed using the /resourcepc switch. Previously, an unhandled exception was generated. |
bg-705 |
An improvement to the session log viewing functionality has been applied to ensure meaningful information arising from errors is not hidden. |
bg-940 |
The scenario where an unhandled exception is thrown when the scheduler attempts to start sessions across multiple runtime resources if one or more of the runtime resources is offline has been addressed. |
bg-1134 |
The following improvements/fixes have been applied when using WCF server connection modes:
|
bg-1109 bg-1482 bg-1630 |
A redundant server method has been removed to prevent it being exploited by a malicious actor. |
us-2529 |
An update has been made to reduce the occurrence of an error that reports that the machine name parameter has been set to null. |
bg-1753 |
When parsing XML from an HTTP response, a static encoding format was used resulting in scenarios where responses that contained multi-byte characters produced an error. The encoding format specified in the SOAP HTTP response is now used when consuming third-party web services. |
bg-1166 |
A usability improvement has been made within region editor. Users are now directed to first select a Location Method, and in situations where the Coordinates options is selected, the incompatible Position option named Anywhere is no longer available. |
bg-1627 |
An issue has been addressed whereby an error was encountered when attempting to use Check JAB Attribute condition in a Wait stage while automating a Java application. The data type set in the condition now uses the correct case and the Wait stage no longer produces errors. |
bg-1188 |
In Audit > Design > Control, the automatic validation settings when opening, resetting, and saving processes were not applied when using the X button to close Process or Object Studio. With the appropriate settings applied, the Save button correctly allowed unvalidated changes to be saved but pressing the X button carried out unexpected validation and prevented the window from closing. The close button now matches the behavior of the Save button with respect to observing the validation settings. |
bg-1221 |
Adding or removing a breakpoint within the definition of a business object or process is now a recognized change and users are prompted to save changes when exiting the designer. |
bg-1309 |
Validation has been added that displays an error when an invalid Data stage is referenced as an element parameter in a Wait stage. Previously, the error would only be highlighted when the stage was executed. |
bg-1289 |
The RemoveRow action has been updated to correctly iterate through the rows when removing duplicates. The previous mechanism caused items to be skipped during processing as the loop stage did not update correctly. |
bg-1283 |
When using Active Accessibility, it is now possible to select any item from a combo box drop-down list, irrespective of whether the item is currently visible due to being presented within a scroll list. Prior to this fix, if scrolling through the drop-down was required to locate an item, an error occurred. |
bg-1315 |
A small number of incorrect hard coded database schema references within the upgrade scripts have been removed to address an issue where the database upgrade may fail on deployments which do not use the default dbo schema. These references were incorrectly introduced in the 6.2 upgrade scripts. For scenarios where the default schema was not used but the upgrade succeeded, the incorrectly specified schemas are addressed by this fix. |
bg-1327 |
A stored procedure (usp_addPermission) that incorrectly remained in the database following an upgrade has been removed. | bg-1719 |
When configuring a connection to the Blue Prism SQL Server database, it is now possible to specify parameters that include special characters such as + $ and ‘. When configuring a connection that uses SQL authentication, this enables use of these characters within the password. | bg-1383 |
An issue has been addressed where copying a group (using CTRL + drag) caused an error when the client was connected to the database via an application server. | bg-1157 |
The encryption scheme settings applied to a queue are no longer impacted if the queue is overwritten when importing a release. | bg-1676 |
An issue has been addressed where sessions that took place on debug runtime resource (i.e. one started automatically when logging into the client) incorrectly recorded the session end time in British Standard Time (BST). | bg-1511 |
Processes accessed using the View selected process option from a different object or process are now correctly read-only. Previously, a scenario existed where a user attempting to add an item to a collection within the process would be presented with an error. | bg-1111 |
An issue has been addressed for scenarios where an error occurs when closing the Application Modeller while a spy-mode is active, i.e. the user has selected to use a spy-mode and subsequently shuts the Application Modeller without selecting an element. | bg-1301 |
An issue has been addressed where it was possible to make changes to the permissions associated with the following system roles: System Administrator, runtime resource. | bg-1305 |
The AutomateC run method has been updated to support the new system settings that validate the calling user when carrying out session management actions. | us-2792 |
An issue has been addressed where the AutomateC.exe export queue action incorrectly clears all completed work items if a queue is specified, but the specified queue contains no completed items. The behavior of clearing all completed queue items should only occur if no queue is specified. | bg-1663 |
When making changes to previously configured Startup Parameters within Control Room, pressing Cancel incorrectly resulted in the changes being saved. This issue has been fixed and pressing Cancel correctly disregards any changes. |
bg-1667 |
View-only (read-only) mode of the object or process designer correctly prevented any changes from being saved. It has now been updated to prevent changes from being made to the process flow when using View-only mode to avoid a situation where users believe they are making changes that will be saved. |
bg-1218 |
The process/object validation logic has been updated to correctly present an error when a reference to an action is present, but the action has been deleted. |
bg-1516 |
The pools management screen has been updated to correctly reflect whether a resource within a pool has been retired. |
bg-1600 |
The API Documentation help option is now only available once a user has authenticated with the environment. This addresses an issue where an error was presented because the items within the environment could not be queried prior to the login taking place. |
bg-1946 |
A number of improvements or fixes have been applied when Exposing Blue Prism objects or processes as Web Services:
|
bg-1706 bg-1709 bg-1865 |
The mechanism that presents error messages in situations where a connection to the server cannot be established has been improved so that where error messages are available, they are now presented to the user. |
bg-1685 |
The list of third party webservices available within the System area is now presented using a different user interface control. This removes the ability to inadvertently disable all Web Services when accidently highlighting multiple rows. |
bg-533 |
The following changes have been applied:
|
bg-1534 bg-1618 |
In the Application Modeller wizard, an option has been renamed from Restrict to non-invasive techniques to Disable invasive techniques (hooking). |
bg-1200 |
A minor change has been applied to the XML, provided when exporting an object or process that featured a single row collection, to remove a duplication of the <singlerow/> attribute. |
bg-1479 |
The Choice stage form has been updated to improve the scaling behavior when resizing. |
bg-1415 |
The mechanism used to transport exceptions to the server that are raised on the client using a WCF connection has been improved. |
bg-1910 |
A fix has been applied to correct the capitalization of messages presented while validating or stepping through a process or object. |
bg-1234 |
The icon presented as part of the loading graphic has been updated |
us-1779 |
The installers for the latest version of Login Agent, at the time that this Blue Prism release was made available, are provided within the Installers folder within the Blue Prism install location.
Fixes and minor improvements
Description of change |
Reference |
---|---|
The mechanism used to create the named pipe to the Credential Provider has been improved to better cater for scenarios where Logout and Login actions occur within quick succession. | us-2665 |
When logging is enabled, the status and sub-status are now captured to enable additional diagnostics. |
us-2196 |
When the Login Agent encounters invalid commands, details of those commands are now logged. |
bg-1547 |
A number of Visual Business Objects (VBOs) are provided within the Blue Prism – new or updated VBOs are listed below. Changes within VBOs are only applied when a VBO is explicitly imported into the environment.
Any use of these VBOs should be re-verified following an import to ensure compatibility with any change of behavior.
Utility – JSON
Description of change |
Reference |
---|---|
A new action called JSON to Collection (skipping JArray) has been added that simplifies the structure of the returned collection if the JSON contains a property which is an array of objects. The original JSON to Collection action remains available for use. | us-1782 |
Object – MS Outlook Email
Description of change |
Reference |
---|---|
A new MS Outlook Email VBO is now available that provides a number of actions for processing emails within Outlook such as sending, deleting, retrieving, and saving emails and attachments. The VBO has been validated against Outlook 2016 and requires each device where it operates to be configured with a Microsoft Outlook Interop DLL within the Blue Prism installation directory. The Blue Prism installer has been updated to optionally place the DLL in the correct location. |
us-2192 |
Browser extension versions
The table below shows when each Blue Prism extension, compatible with this release was introduced. For details of the latest browser versions Blue Prism is tested against, see the Browser extension compatibility matrix.
Browser | Blue Prism extension versions |
---|---|
Chrome |
1.0.6.3 |