Tosca Server patch notes for version 2024.2

This topic is all about patches for the 2024.2 version of Tosca Server.

Keep in mind that Tosca Server patches are cumulative: the latest patch always contains the latest fixes and those of previous patches. This means you only need to install the latest patch to get all fixes for this Tosca Server version.

Installation

Tosca Server 2024.2 patches support implicit installations and automatically transfer your configurations and settings to the patched version. The only exceptions to this are Exploratory Testing and Interactive Testing, where you need to back up and repopulate configuration files manually.

To install a Tosca Server patch, follow these steps:

Download Tosca Server 2024.2.7 (opens in new tab) from the Tricentis Support Hub. Please note that you must be signed in with your Tricentis Support Hub credentials to see the download.
If you use Exploratory Testing and/or Interactive Testing, back up their configuration files.
Unzip the download package. Then, trigger the patch process:
- For attended installation, run the executable file.
- For unattended installation, run the command "Tricentis Tosca Server 2024.2.7.exe" /s /qn.
Depending on your system environment, you may need to run as an administrator.
If you use Exploratory Testing and/or Interactive Testing, update the new version's configuration files.
Open Tricentis Service Configuration and verify your settings. Then, select Save in any tab. This is an important step to finalize your patch.

New features

This section lists new features that we've added.

Authentication Service: session cookie policies (since patch 3)

Whenever you sign in to Tosca Server, Tosca Server creates session cookies. We raised the minimum security policy for the session cookie property SameSite. This adds an extra layer of security for highly controlled environments that require strict policies.

If you're using an SSO integration with Tosca Server, this change might interfere with some of your identity provider's own configurations. In this case, we recommend you turn off the new policy. To do so, follow these steps:

Open the Authentication Service appsettings.json file. After a default installation of Tosca Server, you can find it in C:\Program Files (x86)\TRICENTIS\Tosca Server\AuthenticationService.
In the AppFeaturesSettings section, set the setting IsSecureCookiePolicyEnabled to false.
Save and close the file.

Bug fixes

This section lists all issues we've resolved.

Fixed in	Component	Issue	Description
Patch 7	Gateway	TOSCA-29293	Fixes an issue where outdated Consul agents could affect system stability.
Patch 6	Gateway	TOSCA-26166	Fixes an issue by setting antiforgery cookies to ‘Secure’ in License Administration.
Patch 6	Tosca Server	TOSCA-27794	Updated to the latest .NET redistributable to ensure compliance.
Patch 6	User Administration	TOSCA-16501	Fixes an issue that prevented the availability of licenses when running as a system or network user.
Patch 5	Distributed Execution	TOSCA-22368	Fixes an issue where agent doesn't come up back to the agent view even after reconnection when restart agent is called.
Patch 5	Exploratory Testing	TOSCA-24265	Fixes an issue where the recorded session path contains the file name.
Patch 5	Exploratory Testing	TOSCA-24558	Security Vulnerability: Microsoft.Extensions.Caching.Memory
Patch 5	REST API	TOSCA-21507	Fixes an issue with headers that could result in a 500 Internal Server Error.
Patch 5	Tricentis Tosca	TOSCA-25396	Updated .NET 8 runtimes to 8.0.16.
Patch 3	Distributed Execution	TOSCA-20187	Fixes an issue where the Event Monitor View would be polluted with many Failed Execution when executing Events weren't found or without any execution lists.
Patch 3	Distributed Execution	TOSCA-19703	Fixes an error in the results.xml generation when a TestEvent has a TestCase with an error.
Patch 3	Distributed Execution	TOSCA-21231	Fixes an issue with an incorrect IsResultImported property in the Status endpoint.
Patch 3	Distributed Execution	TOSCA-22187	Test case overview with exact start and end times.
Patch 3	Notification Service	TOSCA-21115	Improves resilience of the Notification Service.
Patch 3	Test Data Service	TOSCA-20240	Fixes a bug, where Test Data Service doesn't start on machines without a ProcesserId.
Patch 3	Test Data Service	TOSCA-19032	Improves performance on large exports.
Patch 4	Tosca Server	TOSCA-23015	Updated .NET 8 runtimes to 8.0.15.
Patch 2	Administration Console	TOSCA-16237	Fixes an issue where some HTTP calls might show some connection strings in plain text.
Patch 2	Administration Console	TOSCA-18869	Fixes an issue where API responses that users might access in developer consoles contained unnecessary details that might - in certain circumstances - cause vulnerabilities.
Patch 2	Distributed Execution	TOSCA-19048	Fixes an issue where the DEX monitor doesn't display the default number of successful TestEvents when using legacy mode.
Patch 2	Tosca Server Setup	TOSCA-19435	Improves runtime security.
Patch 1	Licensing	TOSCA-13803	Upgraded JS libraries and DataTables.
Patch 1	User Administration	TOSCA-8826	Security updates.
Patch 1	User Administration	TOSCA-17966	Fixes an issue where the authentication service identity server database might cause issues after an upgrade.
Patch 1	Notification Service	TOSCA-17779	Fixes an issue where Notification Service might send leftover logs twice to qTest after a Tosca Server restart.
Patch 1	Distributed Execution	TOSCA-16700	Improves speed and performance when logs are imported to the workspace before test execution.
Patch 1	Distributed Execution	TOSCA-17357	Fixes an issue where the Event View displays an incorrect start time for ExecutionLists run with parallel execution enabled.
Patch 1	Distributed Execution	TOSCA-17520	Resolves an issue with running TestEvents via AOS while using the Elastic Execution Grid integration.