Help Centre Forum

TOTECS Forums

TOTECS Platform Release 13.02

Author
Thread

Author moderator
21st May 2019

New Features





TOT-3857 - 2 Factor Authentication for user login using SMS codes



When a user logs into a TOTECS project from a User Login content managed web page area, there is now the ability to authenticate the user using both the login ID and password, as well as a separate 1-time-use code sent to their mobile phone via SMS. This two factor authentication code helps ensure that the user is in possession of an authorized mobile phone, reducing the ability for users to share account credentials which can allow others to easily gain access to the project's data.

To achieve this, TOTECS has integrated into the SMS service provider https://www.smsbroadcast.com.au to send out authentication codes. The platform now supports storing mobile numbers against users, as well as assigning mobile numbers to users generated in the Customer Accounts Connector data import. Additionally a user setting has been added to control whether or not a user requires two factor authentication. If two factor authentication is turned on, but the user does not have a mobile number, then the platform will ignore two factor authentication.

The new settings against a user can be seen by viewing the details of a user, which can be achieved by going to the Administration Centre, under the Users menu, navigate to the Search Users option. Within the Search Users interface, once a user has been searched for, click on the users' Login Id to view the User Details interface. Here you can set the Mobile Number for a user, and also tick the check box "Two Factor Authentication" to turn on this feature for a user.

Settings to control two factor authentication have been added within the Administration Centre, under the Users menu, within the Two Factor Authentication settings interface.

The new settings include:




  • SMS Broadcast Username and Password settings

     This is where you store the credentials to your SMS Broadcast service account

  • Sender Name/Number

     This setting determines the name of the sender that SMS messages will be sent from

  • Message Format

     It is important to note that you must include the $code$ hook within this setting to ensure that the authentication code is sent to the user

  • Code Validity Time

     This setting determines how many minutes an authentication code is valid for

  • Error messages

     The remaining settings are for customising the error messages that will be displayed to users when something goes wrong.



The login form web area format has been modified to allow users to enter the authentication code. This format can be found by going to the Administration Centre, within the Websites menu navigate to the Websites option, then for a given website expand the Web Area Formats Libraries section, expand the User Login/Logout section, expand the User Login section, expand the User Login Form section, now a format can be modified.The new hooks include:




  • two_factor_auth_code_field

     Input for entering the two factor authentication code.

  • two_factor_auth_resend_onclick

     Javascript function that requests another authentication code.

  • two_factor_auth_stage

     Used to hide/show two factor auth content. Returns Y when the user is at the two factor authentication stage, otherwise returns N.



The user registration form web area format has been modified to allow users to enter a mobile number upon registration. his format can be found by going to the Administration Centre, within the Websites menu navigate to the Websites option, then for a given website expand the Web Area Formats Libraries section, expand the User Registration section, expand the User Registration Form section, now a format can be modified.

The new hook includes:

mobile - Text field for the mobile number of the new user



NOTE:

If using two factor authentication within a Master Website Design project, ensure that the javascript is modified to cause the Login dialog to automatically pop up when a user is in the two factor authentication stage of the login process. This can be achieved by modifying the initWebpageElements function within the mwd scripts to ensure that the URL is being checked for both "login_failure_message" and "two_factor_auth_state".



Functionality Affected: User Login, User Login content managed web page area, User Detail Admin Centre interface, User Text File Data Import

Impact: Major



 



 





TOT-586 - Currency Exchange Rates Connector data import



Within the Administration Centre, under the Data menu, within the Data Imports interface, under the Connector Imports tab, a new data import labelled "Currency Exchange Rates" has been added.

This data import will call the project's configured Connector software to have its Currency Exchange Rates adaptor data export that will retrieve the currency exchange rates from its data source. The data import will then update the exchange rate for all currencies that have been provided in the data.

In order for a currency's exchange rate to update in the project the record data from the Connector must have the Sell Currency Code match the project's default currency, and the Buy Currency Code must match the 3 character currency code of a currency listed in the project's Currencies admin interface. Additionally both the buy and sell currencies must have the type set to "FIAT" in order for the exchange rate to update for a currency.

Use the Connector software's adaptor data export schedule to have currency exchange rates automatically update at a specified date/time interval, such as once hourly, daily, or weekly.



Functionality Affected: Currency Exchange Rates Connector data import

Impact: Normal



 





Improvements





TOT-3731 - Assign new users to project's default locale currency when created through New User Admin Centre interface and Customer Accounts Connector data import



Within the Administration Centre, under the Users menu, within the Create User interface, when a new user is created they will be assigned to the same currency as the project's default currency (as controlled by the "Currency" setting within the Stores setting's General tab, under the Locality section).

Additionally if a Customer Accounts Connector data import is run and it creates new users for an account, it too will set the currency for the new users the same as the project's currency setting.



Functionality Affected: Create User admin centre interface, Customer Accounts connector data import

Impact: Normal



 





TOT-3741 - User Search Rules to find users who have not placed orders based on a date period within the Administration Centre



Within the Administration Centre, under the Users menu, within the Search Users interface, as well as within Marketing menu under the Marketing User Groups interface, 2 new User Search Rules in the Order History search category have been added to find users that have not ordered products over a date range, or that have not ordered products in the last amount of days/months/years.



Functionality Affected: Users, Product Deals and Vouchers, Marketing User Groups admin centre interfaces

Impact: Normal



 





TOT-3871 - Alt HTML attribute to product flag images within Product Detail, Product Search Listing, Category Listing content managed web page areas



On a content managed website, when a product flag image is displayed in content managed web page areas that list products, the flag image now contains an alt attribute which contains the label of the product flag being used. This may help search engines and accessibility to the web pages where these images display.



Functionality Affected: Category Listing, Product Search Results Listing content managed web page areas

Impact: Minor



 





TOT-3874 - Basket Summary content managed web page area to refresh once order has successfully submitted in Order/Checkout Submission areas



On a content managed web page area displaying either an Order Checkout/Submission area, or a Guest Order Checkout/.Submission area, if a user proceeds through checkout and successfully submits an order, then any Basket Summary areas displayed on the web page will dynamically update to show that the basket has been cleared and has no products within it. This ensures users are not confused on whether the order successfully submitted and their basket was cleared.



Functionality Affected: Order Checkout/Submission, Guest Order Checkout/Submission content managed web page areas

Impact: Minor



 





TOT-3883 - Settings to control the number of decimal places for quantities and prices displayed in Customer Account Enquiry records



On a content managed webpage displaying any account enquiry areas, as well as within the Trade interface and Administration Centre's Account Enquiry feature, any pricing or quantity displayed from records retrieved from connected business systems are now able to display numbers with configurable number of decimal places, based on new settings that control the amount of rounding occurring.

Within the Administration Centre, under the Stores menu, within the Accounting settings interface, the following 2 settings have been added:




  • Account enquiry Record Price Decimal Places

     Set the number of decimal places that prices displayed within any customer account enquiry records are rounded to. Match this setting with the price rounding occurring in the connected system where records are being retrieved from.

  • Account enquiry Record Quantity Decimal Places

     Set the number of decimal places that quantities displayed within any customer account enquiry records are rounded to. Match this setting with the quantity rounding occurring in the connected system where records are being retrieved from.



These settings will control the rounding of pricing and quantities displayed in customer account enquiry content managed web page areas, as well within the records displayed in the Account Enquiry page within the Trade interface and the Administration Centre.



Functionality Affected:  Account Enquiry Trade interface/Administration Centre page, Stores Settings admin centre interface, Customer Account Enquiry Record content managed web page areas

Impact: Normal



 



 





TOT-3890 - Use price groups when Generate Contract Pricing process is run to reduce product account pricing records generated



Within the Administration Centre, under the Users menu, within the Customer Account Contracts interface, when the Generate Contract Pricing button is pressed, or when a Contract Products text file data import is run, the Generate Contract Pricing process will now create pricing-groups for each contract, and assign the accounts to each contract's pricing group. This generates product account pricing records once for each product assigned to the contract and will eliminate large amounts of pricing records being generated when many accounts accounts are assigned to the same contract.



Functionality Affected:  Customer Account Contract Pricing Generation process

Impact: Normal



 





TOT-3891 - Settings Administration Centre interfaces to load over secure https connection



Within all the Administration Centre's settings the links to the settings interfaces from within the Administration Centre menus now cause the settings interface to load of a https connection, ensuring data within the interfaces is only accessible between the end client browser and the TOTECS servers.



Functionality Affected:  Settings Administration Centre interfaces

Impact: Minor



 





TOT-3894 - User Registration Profile settings to control the Price Tax Format, 2 Factor Authentication and News/Blog Comment Notifications fields for new users



When a new user registers through the User Registration content managed web page area, the User Registration Profile that they register with is now able to control the values of the Price Tax Format, 2 Factor Authentication and News/Blog Comment Notification fields that are set for the new user initially.

Within the Administration Centre, under the Users menu, within the User Registration Profiles interface, when modifying a profile, under the Profile Details section the following fields have been added that allow the default values for new user's created through the User Registration content managed web page area:




  • Price Tax Format

     Controls if registered users sees pricing inclusive of or excluding tax

  • Two Factor Authentication

     Controls if the user must use 2 factor authentication to login (such as receiving a login code via SMS)

  • Receive News/Blog Notifications

     Controls if users are notified of news/blog item comments made against their posts or posts they have commented on



Functionality Affected: User Registration administration centre interface, User Registration content managed web page area

Impact: Normal



 



 





Bug Fixes





TOT-3868 - Primary product image incorrectly being changed to the last product image uploaded when Product Images data import runs



When a product images export is run from the Connector, if a product had multiple images uploaded against it then the last image to be uploaded would incorrectly be made the primary image, regardless of whether the product already had a primary product image set.

The Product Images data import has been modified to correctly not change the existing primary image of a product to a no longer be primary.



Functionality Affected: Product Image data import

Impact: Normal



 





TOT-3873 - When orders are submitted using ZipPay as a payment method, the payment method in the connector is unpaid



When an order was submitted by a user through either the Trade interface or via an Order Submission content managed web page are, if the order's payment type was set to ZipPay, then when the order was submitted into the connector the payment method incorrectly displayed is Unpaid.

Now when an order is submitted with the payment type set to Zippay, the payment method set within the Connector is now correctly displaying as PROPRIETARY.



Functionality Affected: Order submission

Impact: Major



 





TOT-3876 - Customer Account Contracts Admin Centre interface unable to load products of a contract when a product contains a newline character in its name



Within the Administration Centre, under the Users menu, within the Customer Account Contracts interface, upon right clicking on a the Edit context menu item, the Products tab was unable to load products when a product contains a newline character within its product name.

Now the Products tab is able to correctly load products when a product name contains a new line character.



Functionality Affected: Customer Account Contracts Admin Centre interface

Impact: Normal



 





TOT-3879 - User Performance Statistics Admin Centre interface incorrectly showing total ordered products count instead of order count



Within the Administration Centre, under the Statistics menu, in the User Performance Statistics interface the Total Orders displayed in both the summary and table rows was incorrectly displaying the total number of sales order product lines, not the total number of sales.

This figure has now correctly been fixed to show the total number of orders. Additionally the quantity column has been changed to show total number of unique products ordered for each user over the selected date range.

Lastly the User Performance and Product Performance statistics interfaces now initially load data into the data table when the interface initially displays.



Functionality Affected: User Performance and Product Performance statistics Admin Centre interfaces

Impact: Minor



 





TOT-3887 - Global News Group Blogs/Items Listing content managed website area incorrectly not displaying news/blog items when news/blog group visibility is set to display only on content managed websites



On a content managed web page that contained a News Group Blogs/Items Listing area, if the area was assigned to a global container then the area incorrectly did not display any news/blog items for a news/blog group if the group's visibility settings were set to be displayed only on a content managed website.

Now if the area is assigned to a global container and the group of the news/blog items being displayed only is visible from content managed websites, the area will now correctly allow the group's news/blog item's to appear.



Functionality Affected: News Group Blogs/Items Listing content managed web page area

Impact: Normal



 





TOT-3888 - Customer Account Selection content managed web page area Sort By dropdown defaults back to User Login ID if other sort by is selected



On a content managed web page containing a Customer Account Selection area the the Sort By dropdown incorrectly defaulted back to User Login ID if Company Name or any another sort by field was selected.

Now if the Sort By dropdown has a selection changed to Company Name then the area will correctly reload with customer accounts sorted by Company Name and the sort by drop down remembering the last selected option.



Functionality Affected: Customer Account Selection content managed web page area

Impact: Normal



 





TOT-3892 - Make Model Attributes and Products not all loading within the Model Details dialog of the trade interface when bottom most category has multiple products assigned to it



Within the Trade interface, after performing a Make/Model search, upon clicking a model row from the Model search results table, within the Model Detail dialog it failed to finish loading the product data, with the loading messages remain showing and no attribute data displaying.

Now within the Model Detail dialog, if the Model had multiple products assigned to the last category in the Make/Model category tree, the dialog has been modified to ensure that product and attribute data correctly loads when the model's last category contains multiple products assigned to it.



Functionality Affected: Make/Model Search Trade interface

Impact: Normal