v5.1.0

Longitudinal export modifications

• Limit no of rows that can be exported via longitudinal exports #605 and avniproject/avni-webapp#1076
• New longitudinal export not working when registration form has repeatable observations avniproject/avni-webapp#1051
• New longitudinal fails for program encounter with no cancellation form avniproject/avni-webapp#1056

Performance enhancements

• Fix Slow bundle upload #626
• Fix High response time on avni-server #607

Minor bug fixes

• Add unique constraint on FormMapping table #628
• Remove lookup by lowest address level during subject csv upload #627
• Duplicate identifiers assigned to beneficiaries #594
• Fix duplicate images with respect to data #634

** Important update regarding bundle upload **
Bundle downloads from before the release will not work correctly for the form mappings. (more precisely, if bundle has some form mapping voided from before the release the when applied on new release, it would give error). Recommended - download the new bundle after the release.

Full Changelog: avniproject/avni-webapp@v5.1.0...v5.1.0

v5.0.1

Security enhancements

• Add server-side validations for question group(repeatable and non-repeatable), image and text #625, avniproject/avni-security#54
• Introduce invalid character validations for specific fields avniproject/avni-security#54
• Fetch and show last login time based on keycloak events api results. avniproject/avni-security#51
• Handle X-Forwarded headers when preventing host header poisoning avniproject/avni-security#55

Performance enhancements

• Introduce second level cache for User, Concept, ConceptAnswer, AddressLevel and VirtualCatchment #608

Major bug fixes

avniproject/avni-product#624 Fixed subject migration issues that was causing sync errors

Minor bug fixes

• Add ability to create superadmins on cognito and keycloak. For the case when multiple IDPs are configured, super-admins will be created in cognito IDP #566
• Db script for one time deletion of duplicate subject migrations #618

Full Changelog: v5.0.0...v5.0.1

v5.0.0

Avni-Server

Security features

• Enhanced Validation - If enhanced_validation is set to true on the application.properties file, then several new validations will happen on save of entities - avniproject/avni-security#16, avniproject/avni-security#6
• Content Security Policy - Content Security Policy can be specified using the csp.enabled and csp.allowed.hosts property in application.properties
• Check to make address_level_type mandatory - avniproject/avni-security#22
• Configurable Anti-csrf protection on all resources
• Add CORS support to avni-server
• Ability to blacklist urls using a avni.blacklisted.urls-file file specified in application.properties
• Remove save/delete/post calls exposed via Spring Data-Rest endpoints
• Remove java stack trace from responses
• Parameterization of queries for Search
• Ability to set password policies in Keycloak
• Modify cookie attributes to add SameSite attribute to enhance security - avniproject/avni-security#17

Others

• Voided Relationship types can now be exported and imported in the bundle #584
• Prevention of sync problems when using direct assignment in conjunction with group subjects - avniproject/avni-client#1058
• Ensure subject migration syncs only to devices that belong to the catchment of the user - avniproject/avni-client#1115
• Prevent overlapping identifier assignments - avniproject/avni-webapp#1022 Documentation

Full Changelog: v4.0.1...v5.0.0

v4.0.1

What's Changed

• Added support to update few values of encounter and subject via API without the need to send values of all its fields.
• Added support to use values of question group(repeatable and non-repeatable) in message rule, schedule rule, and any other rules where they were not supported before.

Full Changelog: v4.0.0...v4.0.1

v4.0.0

What's Changed

We have done major refactoring work with the way Privileges and Access-control works as part of EPIC avniproject/avni-product#1206

Other new features introduced as part of this release are

• Handle SubjectMigration in CSV uploads
• Longitudinal Export should support Repeatable QuesitonGroups
• Add GroupMembership while creating Users via CSV uploads
• EntityApprovalStatus not getting saved from webapp
• Add migration to insert org_config for sample org by @ashusvnath in #558
• audit fields added to sync telemetry by @ak2502 in #583
• Add. Catchments name in the subject API response by @mohan-13 in #569

In-addition it includes several bug fixes and code changes for features in other components as well.

New Contributors

• @ashusvnath made their first contribution in #558
• @ak2502 made their first contribution in #583
• @mohan-13 made their first contribution in #569

Full Changelog: v3.40.0...v4.0.0

v3.40.0

Changes done as part of this release:

• Support Location type concepts in Longitudinal Export
• Setup Sync settings as part of Individual CSV import
• Other Minor bug fixes
  Full Changelog: v3.39.1...v3.40.0

v3.39.1

Full Changelog: v3.39.0...v3.39.1

v3.39.0

Features
Dashboard filters for Custom Dashboards
Allow upload of media via External POST APIs
Sync Performance improvements

Full Changelog: 3.38.2...v3.39.0

v3.38.1

Minor code changes to:

• Fix create/update EntityApprovalStatus api invoked without entityTypeUUID
• Support PhoneNumber concept type for Glific messaging
• Prevent creation of duplicate entries due to multiple background sync in same avni-client

Full Changelog: v3.38.0...v3.38.1

v3.38.0

Changes done as part of this release:

• Support enhancement of Glific functionalities in Webapp and Android client
• Secure the Reset password API call
• Add a manual_update_history column to all transactional tables
• Ensure that change in Registration sync attribute values flows through to all related entities
• Miscellaneous bug fixes

Full Changelog: v3.37.16...v3.38.0