CardScan Web Releases

CardScan Web - 1.4.0

This version introduces simultaneous login, forgot password and browser enrollment features.

Compatibility

  • GBDS 4.5.6 or later
  • Database: Compatible with the dump found in the release folder

MD5 Checksum: 4112967bab696e0cf9619e35157b43ea

Setup:

On sphinx.settings table:

Insert into sphinx.settings (NAME,TYPE,VAL) values ('checkDevice', 'APPS', 'false');
  • Name: checkDevice
  • Description: Enables browser enrollment feature (verifies if current browser is the one allowed previously)
  • Type/Range: Boolean
  • Path: settings table of sphinx.settings
  • Default: false
  • Required: No
Insert into sphinx.settings (NAME,TYPE,VAL) values ('forgotPasswordAllowed', 'APPS', 'false');
  • Name: forgotPasswordAllowed
  • Description: Enables forgot password feature (allows user to reset their password if forgotten)
  • Type/Range: Boolean
  • Path: settings table of sphinx.settings
  • Default: false
  • Required: No

On server’s config.properties:

gbds.etrUser=system
  • Name: gbds.etrUser
  • Description: Should receive the string “system” as value if the server works with keys mismatch exceptions. It’ll synchronize these types of exceptions after restarting or polling ETR server.
  • Type/Range: String
  • Default: null
  • Required: Yes
codeValidTime=10
  • Name: codeValidTime
  • Description: Maximum duration that the temporary code sent by e-mail is valid for forgot password and browser enrollment flows. The duration is represented in minutes and it’s validated only once, when server starts.
  • Type/Range: Integer
  • Default: 10
  • Required: No
deviceTime=6
  • Name: deviceTime
  • Description: Represents the period of months that a browser’s guid will be valid.
  • Type/Range: Integer
  • Default: 6
  • Required: No
email.host=null
  • Name: email.host
  • Description: E-mail server URL.
  • Type/Range: String (e.g smtp.gmail.com)
  • Default: null
  • Required: Yes
email.host.port=null
  • Name: email.host.port
  • Description: E-mail server port.
  • Type/Range: Integer (e.g 587)
  • Default: null
  • Required: Yes
email.from=null
  • Name: email.from
  • Description: E-mail address that will be used as sender.
  • Type/Range: String (e.g bravonotifier@gmail.com)
  • Default: null
  • Required: Yes
email.password=null
  • Name: email.password
  • Description: Encrypted sender e-mail address password.
  • Type/Range: String (e.g xed3HZAA3+7umD+YFUgz6/AXbqGnMY/oLSRu6355xdA=)
  • Default: null
  • Required: Yes
  • Observation: The encryption method should be the same used for database’s passwordjava -jar encrypt.jar PASSWORD_HERE
ldap.user=null
  • Name: ldap.user
  • Description: User to be used in LDAP service.
  • Type/Range: String (e.g bravoadm)
  • Default: null
  • Required: Yes
ldap.password=null
  • Name: ldap.user
  • Description: LDAP service user’s password.
  • Type/Range: String (e.g Griaule.123)
  • Default: null
  • Required: Yes

New Features

[NF-001][WEB-358][CNF][OPT] Simultaneous login.

With this feature it’s not possible to have the same profile logged more than once in the same application. If an user is already logged and another access happens, using its username and password, the user with the oldest access will be warned and logged out in their next action.

[NF-002][BESTW-1641][CNF][OPT] Forgot password.

Users now have a new option at login screen that they can reset their password if it was forgotten. After clicking on it, they must inform their username and they will receive an e-mail with a temporary code. After typing the code successfully, they can type a new password, following the rules described in the screen.

[NF-003][BESTW-1663][CNF][OPT] Browser enrollment.

Users now will be informed that they are attempting to access the application from a new browser if they change the browser they are accessing it. They must return to the previous browser or authenticate the new one, revoking the access from the previous browser. To authenticate the new browser, they must type a code received in their e-mail correctly.

Improvements

[IP-001][CNF][CHG] The maximum number of login attempts is now based in a database value.

Previously the maximum number of login attempts was fixed in 5. Now it uses the value from a database row. If the value does not exist, the fallback will be the previous value (5 attempts).

CardScan Web - 1.3.0

Added two factor authentication (2FA)

Compatibility

  • GBDS 4.2.0 or later
  • Database: Compatible with the dump found in the release folder

MD5 Checksum: bd9e2afe2c4d572a2049352666dbffe9

Setup

  • Insert into sphinx.settings values (twoFactorAuthentication, APPS, true):

    - Name: twoFactorAuthentication;
- Description: enable two factor authentication on CardScan;
- Range: boolean;
- Path: settings table of sphinx.settings
- Default: false
- Required: no

  • Insert into sphinx.settings values (maxNumberTries, APPS, 5):

    - Name: maxNumberTries;
- Description: set the maximum number of unsuccessful login attempts a user can make before having their account blocked;
- Range: integer;
- Path: settings table of sphinx.settings
- Default: 5
- Required: no

New Features

[NF-001][CS-672][CNF] Add two factor authentication;

CardScan Web 1.2.1

Adding configuration to turn off face ICAO analysis.

Compatibility

  • GBDS 4.2.0 or later
  • Database: Compatible with the dump found in the release folder

MD5 Checksum: 47858b21db4024e5b85795c82eb5462f

Improvements

  • [NF-001][CS-660] Adding configuration to turn off face ICAO analysis

    config.properties file: useICAO=true OR useICAO=false

CardScan Web 1.2.0

Adding organization label segregation and bus connection

Compatibility

  • GBDS 4.2.0 or later
  • Database: Compatible with the dump found in the release folder

MD5 Checksum: f060041b1ebb9bd6bf8b239765d55f8d

New Features

[NF-001][CS-654] Only profiles, processes and layouts that have the same organization label as the user are listed

[NF-002][CS-656] On login, server returns organization label and bus connection token inside permissions

[NF-003][CS-657] If bus connection configuration is on, the token returned from server is sent inside the header of every request

[NF-004][CS-658] Added ping request whenever the application changes views

CardScan Web - 1.1.0

Corrected new fields object format.

Compatibility

  • GBDS 4.2.0 or later
  • Database: Compatible with the sphinx dump found in the release folder

New tables:

  • sphinx.activity_log
  • sphinx.session

MD5 Checksum: 0e62163f303b1f761903adbd53921d45

CardScan Web - 1.0.0

Compatibility updates to handle fields database schemas changes

Compatibility

  • GBDS 4.0.0 or later
  • Database: Compatible with the dump found in the release folder

MD5 Checksum: e94fcf8d918f6534e4e283f7cc287b25

Improvements

  • [IP-001] Server updates to handle new fields schema on common servers

CardScan Web - 0.1.10

Fix in processed profiles display

Compatibility

  • Database: compatible with sql dump found with the release in the very same folder
  • CardScan server 2.7.13
  • Common Server 2.7.1

MD5 Checksum: 57cb64a553b4e994adaa4c6489ef4a89

Bug Fixes

[HBF-001][CS-640] Spanish strings translation corrections.

[HBF-002][CS-644] Fix palmprints preview after submitting profile for processing.

CardScan Web - 0.1.8

Fix in processed profiles display

Compatibility

  • Database: compatible with sql dump found with the release in the very same folder
  • CardScan server 2.7.12
  • Common Server 2.7.1

MD5 Checksum: 08cdfaecbed39c6fe0a254282754a527

Bug Fixes

[BF-001][CS-628] Improvement in the query to display processed profiles in List Profiles window

CardScan Web - 0.1.7

Face Quality

MD5 Checksum: eb8ba7c903864959e55b37fa40421678

Compatibility

  • Database: compatible with sql dump found with the release in the very same folder
  • CardScan server 2.7.12
  • Common Server 2.7.1

New Features

[NF-001][CS-616] Adding face quality verification

CardScan Web - 0.1.6

Compatibility

  • Database: compatible with sql dump found with the release in the very same folder.
  • ETR server 2.7.12

Bug fixes

[BF-001][CS-578] Fixes login error for users with uppercase usernames

[BF-002][CS-584] Fixes checkboxes behavior in profile selection

[BF-003][CS-604] Fixes keys and biographic being shown in label creation

Improvements

[IP-001][CS-542] Allows users to re send profiles that failed in GBDS in the first attempt

[IP-002][CS-539] Disables multiple signatures during layout creation and edition

[IP-003][CS-579] Saves layout info after edition cancelling

[IP-004][CS-577] Disables selection of fields already inserted in layout creation and edition

[IP-005][CS-603] Adds label option in the field creation screen

[IP-006][CS-605] Adds label list in profile edition and exhibition

[IP-007][CS-606] List keys sorted alphabetically