Use the Blue Cedar On-Premises Platform to manage users, secure apps, and enable BlackBerry Dynamics, BlackBerry Analytics, and BlackBerry AppConfig. After using the Blue Cedar Platform to integrate BlackBerry functionality into an app, use the BlackBerry Unified Endpoint Manager (UEM) to configure app-level controls.


What's new

What's new in On-Premises Platform 4.1.30

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.30 (Policy Console) integrates apps with Blue Cedar 4.12.0 Mobile Client technology and Blue Cedar Accelerator for BlackBerry.

What's new in Mobile Client 4.12.0

Bug fix release in the areas of OAuth, Ping Auth, and VPN connectivity. 

What's new in On-Premises Platform 4.1.29

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.29 (Policy Console) integrates apps with Blue Cedar 4.11.0 Mobile Client technology and Blue Cedar Accelerator for BlackBerry.

What's new in Mobile Client 4.11.0

iOS15 support

Blue Cedar includes support for the Apple iOS 15 release.  Apps that were previously integrated with Blue Cedar and that worked on iOS 14 are expected to work without issues when reintegrated with Blue Cedar. Apps that target new APIs and features for iOS 15 may have issues.  This release supports with the BlackBerry version 9.1 SDK.

iOS limitations

Limitations with this Blue Cedar release for iOS 15 apps include: 

  • Focus and system filter notifications and apps based on your activity
  • HLS HTTP Live Streaming adaptive bitrate communications protocol for HTTP live streaming
  • Photos picker: a way to access pictures from the Photo app without requesting direct library access
  • App Clips: small parts of an app designed for quick task completion
  • Widgets: small app instance that's updated in the background and refreshes information on your home screen
  • WKWebView for data persistence handling, such as HTML5, Web SQL
  • UIScene support for multiple app windows

What's new in On-Premises Platform 4.1.28

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.28 (Policy Console) integrates apps with Blue Cedar 4.10.16 Mobile Client technology and Blue Cedar Accelerator for BlackBerry.

What's new in Mobile Client 4.10.16

BlackBerry Dynamics hotfix

Applied the BlackBerry hotfix v9.1.0.440 to the BlackBerry Dynamics SDK release v9.1.0.122 for iOS.

What's new in On-Premises Platform 4.1.27

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.27 (Policy Console) integrates apps with Blue Cedar 4.10.15 Mobile Client technology and Blue Cedar Accelerator for BlackBerry.

What's new in Mobile Client 4.10.15

OpenSSL upgrade

Blue Cedar Mobile Client 4.10.15 is updated to include OpenSSL 1.1.1k, released on 25 March 2021. This update provides a stronger encryption key for Data at Rest protection.

What do I need to do?

You don't need to do anything to migrate DAR-protected apps and their files to the new version of OpenSSL and encryption key. Note that once those files are migrated, they cannot be used by previous versions if you want to downgrade the app for any reason.

Curl upgrade

Blue Cedar Mobile Client 4.10.15 is updated to include curl 7.76.1. This update picks up any security-related fixes curl has made. 

What do I need to do?

This curl update is transparent to platform users and mobile users; no action is needed.

What's new in On-Premises Platform 4.1.26

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.26 (Policy Console) integrates apps with Blue Cedar 4.10.14 Mobile Client technology and Blue Cedar Enforce security policies.

What's new in On-Premises Platform 4.1.25

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.25 (Policy Console) integrates apps with Blue Cedar 4.10.13 Mobile Client technology and the Blue Cedar Accelerator for BlackBerry.

BlackBerry Dynamics updates

A new BlackBerry SDK version is now available for integration through the Blue Cedar Platform.

  • The Blue Cedar Accelerator for BlackBerry integrates these SDKs: 
    • BlackBerry Dynamics SDK release v9.1.0.35  for iOS and Android.
    • BlackBerry Launcher Library v3.2.0.195. 
  • BlackBerry AppKinetics is now available for iOS as well as Android. 
  • The BlackBerry Persona feature is enabled by default and can be disabled in the BlackBerry policy.
  • BlackBerry Analytics support is no longer available, although the option still appears in the user interface. Customers can use BlackBerry Persona instead.

What's new in On-Premises Platform 4.1.24

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.24 (Policy Console) integrates apps with Blue Cedar 4.10.12 Mobile Client technology and the Blue Cedar Accelerator for BlackBerry.

New BlackBerry Dynamics features

The Blue Cedar Accelerator for BlackBerry now supports the BlackBerry Dynamics features listed below. For an overview of each feature including documentation links, see Integrating BlackBerry Dynamics features with Blue Cedar Platform.

Most of these features are automatically included when you integrate an app with the BlackBerry Dynamics SDK. After integration, you can configure and manage each feature via the BlackBerry UEM.

AppKinetics

(Android only)

BlackBerry AppKinetics is a method for securely exchanging data and commands between two BlackBerry Dynamics apps on the same device. AppKinetics support includes BlackBerry Data Loss Prevention (DLP) support for secure file viewing, URL opening, and sending email.

AppKinetics is also known as Inter-Container Communication (ICC).

Persona

BlackBerry Persona collects data from BlackBerry Dynamics apps and determines a user's current risk level. The service then takes action to adapt device and app behavior to that level of risk. For example, if a user's current risk level is high, BlackBerry Persona can limit the user's access to work apps and disable certain device features. BlackBerry Persona protects the integrity of work data by dynamically responding to a user's real-world context, adapting a security policy based on user geolocation, device, time, IP address and BlackBerry Dynamics app identifiers. Persona is available with BlackBerry Dynamics 8.0+

Prior to SDK 8.0, BlackBerry Persona was known as BlackBerry Intelligent Security and was part of BlackBerry Analytics; with SDK 8.0+, BlackBerry Analytics and Persona are included with the BlackBerry Dynamics SDK.

Licensing note: BlackBerry Persona requires a separate licensing agreement with BlackBerry in addition to BlackBerry Dynamics. 

BlackBerry Dynamics releases

The Blue Cedar Accelerator for BlackBerry integrates these BlackBerry Dynamics releases. 

  • iOS 
    • BlackBerry Dynamics SDK release v8.1.0.67  for iOS.
  • Android
    • BlackBerry Dynamics SDK release v8.1.0.37  for Android. Requires Android OS 7.0 or later, minimum API level 24. 

Notice of deprecation

Blue Cedar support for BlackBerry Analytics is deprecated. Please use BlackBerry Persona instead.

What's new in On-Premises Platform 4.1.23

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.23 (Policy Console) integrates apps with Blue Cedar 4.10.11 Mobile Client technology and the Blue Cedar Accelerator for BlackBerry.

What's new in On-Premises Platform 4.1.22

Mobile Client update

The Blue Cedar On-Premises Platform 4.1.22 (Policy Console) integrates apps with Blue Cedar 4.10.10 Mobile Client technology and the Blue Cedar Accelerator for BlackBerry.

BlackBerry Dynamics SDK update 

The Blue Cedar Accelerator for BlackBerry integrates these BlackBerry Dynamics releases. Note that BlackBerry has combined the Analytics SDK with the BlackBerry Dynamics SDK.

  • iOS 
    • BlackBerry Dynamics SDK release v8.1.0.37  for iOS.
  • Android
    • BlackBerry Dynamics SDK release v8.1.0.37 for Android. Requires Android OS 7.0 or later, minimum API level 24. 

What's new in On-Premises Platform 4.1.21

Mobile Client

The Blue Cedar On-Premises Platform 4.1.21 (Policy Console) integrates apps with Blue Cedar 4.10.9 Mobile Client technology and the Blue Cedar Accelerator for BlackBerry.

iOS 14 support 

Blue Cedar includes support for the Apple iOS 14 release. Apps that were previously integrated with Blue Cedar and that worked on iOS 13 are expected to work without issues when reintegrated with Blue Cedar. Apps that target new APIs and features for iOS 14 may have issues. See the Open issues/limitations list below.

Android 11 support (green star)

Blue Cedar includes support for the Android 11 release. Apps that were previously integrated with Blue Cedar and that worked on Android 10 are expected to work without issues when reintegrated with Blue Cedar. Apps that target new APIs and features for Android 11 may have issues. See the Open issues/limitations list below.

Open issues/limitations

BlackBerry Dynamics and BlackBerry Analytics SDKs

The Blue Cedar Accelerator for BlackBerry integrates these BlackBerry Dynamics and BlackBerry Analytics SDK releases: 

  • iOS 
    • BlackBerry Dynamics SDK release v7.0.0.93 for iOS.
    • BlackBerry Analytics SDK release v.2.1.0.28 for iOS. 
  • Android
    • BlackBerry Dynamics SDK release v7.0.0.85 for Android. Requires Android OS 7.0 or later, minimum API level 24.
    • BlackBerry Analytics SDK release v2.1.1.23 for Android. 

Other open issues/limitations

Limitations with this Blue Cedar release for iOS 14 include: 

  • Support for new iOS 14 features is not fully implemented in this release, including:
    • New Photos picker: a way to access pictures from the Photos app without requesting direct library access
    • HTTP Live Streaming (HLS) 
    • App Clips: small parts of an app designed for quick task completion

Limitations with this Blue Cedar release for Android 11 include: 

  • No support for Android Emulators running Android 11.


What's new in On-Premises Platform 4.1.20

Mobile Client

The Blue Cedar On-Premises Platform 4.1.20 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.8 technology and the Blue Cedar Accelerator for BlackBerry.

Python compatibility

Blue Cedar Mobile Client versions 4.10.8 and later are Python 3-based, as Python 2.x is no longer supported. Most of the implications of this upgrade are internal to Blue Cedar products. However, if you sign integrated apps with the Blue Cedar export for signing feature, the server where the signing scripts are executed must have Python 3 installed. 

For more information, see External app signing with Python 3.

What's new in On-Premises Platform 4.1.19

Mobile Client

The Blue Cedar On-Premises Platform 4.1.19 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.7 technology and the Blue Cedar Accelerator for BlackBerry.

What's new in On-Premises Platform 4.1.18

Mobile Client

The Blue Cedar On-Premises Platform 4.1.18 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.6 technology and the Blue Cedar Accelerator for BlackBerry.

What's new in On-Premises Platform 4.1.17

Mobile Client

The Blue Cedar On-Premises Platform 4.1.17 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.5 technology and the Blue Cedar Accelerator for BlackBerry.

What's new in On-Premises Platform 4.1.16

Mobile Client

The Blue Cedar On-Premises Platform 4.1.16 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.4 technology and the Blue Cedar Accelerator for BlackBerry.

Apache update

The on-premises platform is updated to use this Apache2 version (SPT-2277):

  • Apache2: 2.4.38-3+deb10u3

API-only user

Added a user role option for a user to have access only via the API to upload, integrate, and download apps, and not to use the UI. For more about user roles, see Adding users.

What's new in Blue Cedar Platform 4.1.15

Mobile Client

The Blue Cedar On-Premises Platform 4.1.15 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.3 technology and the Blue Cedar Accelerator for BlackBerry.

Platform user password requirements

Added complexity requirements for on-premises platform user passwords. See SPT-2319 below.

What's new in Blue Cedar Platform 4.1.14

Mobile Client

The Blue Cedar On-Premises Platform 4.1.14 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.2 technology and the Blue Cedar Accelerator for BlackBerry.

What's new in Blue Cedar Platform 4.1.13

Mobile Client

The Blue Cedar On-Premises Platform 4.1.13 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.1 technology and the Blue Cedar Accelerator for BlackBerry.

BlackBerry Analytics SDK upgrade for Android

The Blue Cedar Accelerator for BlackBerry integrates these BlackBerry Analytics SDK releases: 

  • Android updated to BlackBerry Analytics SDK release v2.1.1.23. 
  • iOS continues to use BlackBerry Analytics SDK release v.2.1.1.32. 

What's new in Blue Cedar Platform 4.1.12

The Blue Cedar On-Premises Platform 4.1.12 (Policy Console) integrates apps with Blue Cedar Mobile Client 4.10.0 technology and the Blue Cedar Accelerator for BlackBerry.

What's new in Mobile Client 4.9.6

Upgraded Android SDK build-tools to 29.0.2 for integrating apps. Current Android SDK support level is SDK version 28 and later. (MOB-718)

Resolved issues

Resolved in Mobile Client 4.12.0

Item

Mobile OS

Accelerator

Description

SPT-2606iOSEnforceFixed a bug with OAuth requests failing.
MOB-2865iOSBlackBerryFixed an issue with Mattermost not automatically updating new messages received.
SPT-2615Android, iOSMicrosoft

Fixed an issue where the client ID from MSAL configuration wasn't being honored for the connection to the Microsoft Tunnel Gateway.

SPT-2617Android, iOSMicrosoftFixed a bug with server certificate verification mismatch connecting to the Microsoft Tunnel Gateway.
MOB-2987Android, iOSEnforce, MicrosoftAdd support for using system trust stores for server certificate verification during VPN connections.
SPT-2613Android, iOSEnforceFixed a bug with Ping 2-factor running on the same device.

Known Issue in Mobile Client 4.12.0

Item

Mobile OS

Accelerator

Accelerator

MOB-2996AndroidEnforce, MicrosoftUser installed device certificates will not be used to verify trust.

Resolved in Mobile Client 4.11.0

Item

Mobile OS

Accelerator

Description

SPT-2580iOSMicrosoftFixed an issue with interactive MSAL authentication for tunnel re-connect, which can be required for Conditional Access policies like Multi-Factor Authentication.
BBY-123iOSBlackBerryFixed an issue for opening files using a temp directory.

Resolved in Mobile Client 4.10.16

Item

Mobile OS

Accelerator

Description

BBY-115, BBY-119, BBY-120iOSBlackBerryUpdated BlackBerry Dynamics to fix an issue using certain JavaScript based video players in WKWebView.

Resolved in On-Premises Platform 4.1.27

Item

Mobile OS

Accelerator/Service

Description

SPT-2532, SPT-2373AndroidEnforceFixed an issue with app upload and integration failures by increasing max allowed time to integrate app from 15 minutes to 30 minutes.

Resolved in Mobile Client 4.10.15

Item

Mobile OS

Accelerator/Service

Description

BBY-104AndroidBlackBerryImage and video capture on the device is now allowed even when App Kinetics with Data Loss Prevention is enabled.
BBY-105AndroidBlackBerryAdded support for javascript Navigator.sendBeacon() command.
BBY-106AndroidBlackBerryFixed an issue where WebView handling was not accessing the secure container correctly for downloaded files.
SPT-2347Android, iOSSigningFixed an issue where the signing script failed when run on apps with spaces in the filenames. 
SPT-2548iOSSigningResolved an issue with external code signing on iOS with Python 3.9 
SPT-2570iOSMicrosoftFixed a rare hang in an app integrated with Intune. 

Resolved in Mobile Client 4.10.14

Item

Mobile OS

Accelerator

Description

SPT-2546iOSEnforceImproved app exclusion behavior for Data Sharing policy.
SPT-2531iOSEnforceFixed an issue where sharing blocked DAR files could result in a crash.
SPT-2540iOS, AndroidMicrosoft Fixed an issue where an app failed to refresh its access token while running, thus preventing reconnections to the VPN Gateway.
SPT-2531iOSEnforce

Added support for specifying custom third party share extensions in Preferred Apps.

To specify a share extension, In the Preferred Apps section of the Data Sharing policy, click "Add App ID" in the iOS list. Choose Custom app and enter the activity type identifier.

Resolved in Mobile Client 4.10.13

ItemMobile OSAcceleratorDescription
SPT-2380, SPT-2455, SPT-2466AndroidBlue CedarFixed an issue where Android background notifications were not working in some scenarios where Secure Microtunnel policy was in use.

iOSBlue CedarResolved an issue sharing large files using Data At Rest.

BBY-93, BBY-102

iOSBlackBerryImproved support for apps that use multiple windows when integrated with BlackBerry Launcher.
BBY-96iOSBlackBerryResolved an issue where custom app icons were not correctly being presented for BlackBerry Launcher.

Resolved in Mobile Client 4.10.12

Item

Mobile OS

Accelerator

Description

SPT-2170iOSBlue CedarResolved issue with multiple "No such file or directory" errors.
SPT-2482iOSBlackBerryAdded support for UIScene apps with the BlackBerry accelerator.
MOB-1533AndroidBlackBerryImproved media playback handling in Android WebView.
MOB-1573AndroidMicrosoftFixed an issue with packageName parsing on Android.
SPT-2486iOSBlue CedarModified file handling to better support file writing.
SPT-2494iOSBlue CedarResolved an issue with NSURLSession where authentication challenges were not being handled correctly.
SPT-2493iOS Blue CedarResolved an issue where pages using mmap and custom signal handlers may not work correctly when using Data at Rest.
SPT-2507iOSBlue CedarResolved an issue where some portrait-only apps may display incorrectly if the device is held in landscape mode.
SPT-2512iOSBlackBerryResolved an issue where some React-native apps may get stuck on a white screen during enrollment.
SPT-2515iOSPolicy ConsoleFixed an issue with invalid Icon error when uploading iOS apps to the policy console.
BBY-73AndroidBlackBerryFixed an issue that was causing hangs during authorization when BlackBerry Dynamics root detection policy was enabled.
BBY-86Android, iOSBlackBerryResolved an issue where AppConfig values may not be successfully delivered to an app running on a device with MDM.

Resolved in Mobile Client 4.10.11

Item

Mobile OS

Accelerator

Description

SPT-2305AndroidAllImproved support for cut/copy/paste protection on Android, particularly on Samsung devices.
SPT-2399, BBY-37, BBY-50iOSBlackBerryAdded support for loading file URLs for videos.

MOB-1439

iOSAll

All Veracode flaws detected in iOS code were fixed or mitigated (in case they were false positives). See Veracode Scanning Results for current reports.

SPT-2424iOSAllFixed an issue where some React Native apps would display UI incorrectly after rotation on iOS devices with a notched display.
BBY-57iOSBlackBerryFixed an issue where App Config values configured via UEM were not accessible to iOS apps integrated with the Blue Cedar Accelerator for BlackBerry.
SPT-2331iOSAllAdded support for WKWebView in storyboards.
SPT-2170iOSAllResolved an issue with authentication challenge handling for iOS apps using platform networking APIs other than WKWebView (such as NSURLSession).
SPT-2480iOS, AndroidAllFixed an issue with apps hanging when reconnecting to a legacy gateway.
SPT-2365AndroidAllFixed an issue where a notification lock wasn't always being dismissed properly.
MOB-1634iOSEnforceFixed an issue where app groups were not always rewritten when integrated without Data at Rest policies enabled.
SPT-2484AndroidEnforceFixed an issue with the app groups feature combined with the Local App Authentication policy.
BBY-75AndroidBlackBerryFixed an issue with the handling of Android Intent attached extras.

Resolved in Mobile Client 4.10.10

Item

Mobile OS

Accelerator

Description

MOB-1444iOSBlackBerryBlackBerry Dynamics 8.1 does not support apps built with any version of Xcode before Xcode 11. During integration, the client detects the Xcode version and integrates older apps with Dynamics SDK 7.0. Apps built with Xcode 11+ will integrate with Dynamics SDK 8.1. This is a BlackBerry limitation.
SPT-2315AndroidEnforceFixed an issue where trying to email logs from an integrated app would either crash or send a zip file with no entries.
BBY-29, BBY-40Android, iOSBlackBerryFixed an issue around opening URLs after backgrounding an app.
BBY-37, SPT-2399iOSBlackBerryAdded support for loading file URLs.
BBY-51, SPT-2397AndroidBlackBerryFixed issues with file sharing intents and content URI handling.
BBY-47, SPT-2389AndroidBlackBerryFixed an issue with launching external apps.
BBY-31Android, iOSBlackBerryAddressed issues handling various media formats.
BBY-52iOSBlackBerryUpdated NSStreamSocket handling.
BBY-39AndroidBlackBerry cloud

Added a new option to configure the BlackBerry app security policy to rewrite app IDs when launching apps from integrated apps. 

This feature is only needed in certain circumstances. See BlackBerry Dynamics SDK options for details.

Resolved in Mobile Client 4.10.9

Item

Mobile OS

Accelerator

Description

SPT-2358AndroidEnforceFixed a crash that could occur when accessing data encrypted with an unrecognized DAR key after using the "Clear Secure Data" button.
SPT-2362iOSAllResolved an issue where apps implementing BGTaskScheduler may crash on launch.
SPT-2338iOSBlackBerry

Added automatic handling of iOS App Group IDs when an app is signed by Blue Cedar scripts with a Provisioning Profile containing exactly one App Group ID.

The App Group ID in the Provisioning Profile is used to replace any App Group IDs requested by the app at runtime. This can allow apps with hard-coded App Group IDs to continue to work if they must be re-signed using a different Apple Developer account (such as third-party apps), since App Group IDs are globally unique. 

SPT-2175AndroidAllFixed an issue where apps using illegal Android resource names starting with "$$" failed to integrate.
SPT-2372AndroidBlackBerryFixed a crash caused by apps using a sharedUserID.
MOB-1323AndroidAllFixed an icon overlay issue with apps that do not have round icons.

Resolved in Mobile Client 4.10.8

Item

Mobile OS

Accelerator

Description

BBY-29iOSEnforce, BlackBerryResolved an issue where apps opened via custom URL schemes may not launch or behave correctly.
SPT-2211AndroidEnforceFixed an issue where an app would crash when trying to prompt the user while in the background.
SPT-2321iOSEnforce

Apps that utilize WKHTTPCookieStore may not properly store/retrieve cookies. Some apps have been seen to have SSO issues related to this issue. This issue has been solved for Blue Cedar in-app security.

Note: This issue is still open for the Blue Cedar Accelerator for BlackBerry.

SPT-2354Android 10EnforceFixed a failure on Android 10 devices when DAR is enabled, causing a Fiori white screen to occur.
SPT-2361AndroidBlackBerryAdded support for Kony APK package name renaming.
SPT-2364iOS
Fixed an issue where an app could render pages incorrectly after handling a redirect. Updated cookie handling to better support WebKit cookies.

Resolved in Mobile Client 4.10.7

Item

Mobile OS

Accelerator

Description

BBY-27AndroidBlackBerryFixed BlackBerry SDK TextView string casting exception.
SPT-2286AndroidMicrosoft

Fixed an issue integrating Microsoft accelerator with  minified/obfuscated Android Support Libraries existing in an app. 

SPT-2293AndroidAllThe User Interaction lock notification now only appears on user devices if there are credentials requested. The app must be backgrounded or not running when the system started an app service or broadcast receiver. Previously the lock would always appear if Secure Connectivity or Local App Authentication was configured.
SPT-2286AndroidMicrosoftFixed an issue with trailing newlines in HTTP header values.
SPT-2307AndroidAllImproved handling of Android broadcast receiver notifications for apps that are not currently running. The integration setup time prior to app control will no longer be a factor in the timely handling of system notifications.
SPT-2345AndroidAllAddressed an issue in the formatting of the generated signing script.
SPT-2351AndroidBlue CedarFixed an issue where the Blue Cedar client would periodically re-take control briefly in an Enforce integrated app with no local auth policy
SPT-2352AndroidAllFixed an issue where some web requests would take a long time to complete on dual IPv4/IPv6 networks.
SPT-2354AndroidAllFixed an issue when accessing local authentication data in certain circumstances.
SPT-2359Android, iOSAllResolved an issue where non-standard authentication headers might not be provided correctly to an app.
SPT-2366iOSBlackBerryFixed an issue where some BlackBerry-integrated iOS apps were crashing when going into the background.
MOB-1029iOSEnforce

Enforce is now correctly prompting for auth in XamarinForms with WKWebView

MOB-1077iOSBlackBerryDOMAIN\user style passwords for NTLM authentication are now handled correctly for the BlackBerry Accelerator
MOB-1122AndroidAllIdentified potential security risks in certificate trust handling and corrected them.
MOB-1128AndroidAllResolved an issue where retrieving a cached ADAL token caused the app to hang  intermittently.

Resolved in Mobile Client 4.10.6

Item

Mobile OS

Accelerator

Description

SPT-2308, SPT-2338iOSAllResolved an issue with app initialization where apps relying on launch storyboards were crashing upon access.
SPT-2341Android, iOSAllFixed an IKEv2 deadlock that was causing app crashes, most frequently when foregrounding an iOS app.
SPT-2195iOSAllRemoved UIWebView references and push notifications that were triggering warnings for App Store Connect submissions.
SPT-2315AndroidAllFixed an issue where emailing logs from integrated app caused app to crash.
SPT-2292Android, iOSAllCorrected a color contrast issue for accessibility.
SPT-2002, SPT-2005, SPT-2007iOSAllAdded better support for voiceover and visibility impaired accessibility features.



Resolved in Mobile Client 4.10.5

Item

Mobile OS

Accelerator

Description

SPT-2318, SPT-2320Android, iOSAllImplemented several improvements for IPv6 connectivity around available DNS servers.

Resolved in On-Premises Platform 4.1.16

Item

Component

Accelerator

Description

SPT-2319On-premises platformAllFixed a CSRF vulnerability issue for the on-premises platform UI.
SPT-2333On-premises platformBlue CedarFixed an issue that prevented iOS apps from working properly when integrated with Web Authentication policy.

Resolved in Mobile Client 4.10.4

Item

Mobile OS

Accelerator

Description

SPT-2292AndroidAllFixed an issue with accessibility customization.
SPT-2305AndroidAllFixed an issue caused by cut/copy/paste interception on certain Samsung devices.
SPT-2307AndroidAllImproved handling of Android broadcast receivers. During launch, the integrated app was sometimes interfering with the timing of broadcast handling. The client now handles the message earlier in the setup process. 
SPT-2149AndroidBlackBerryFixed an issue with BlackBerry integration when full paths to SQLite databases were provided.
SPT-2318, SPT-2320Android, iOSGatewayFixed an issue with IPv6 connectivity.
SPT-2334Android
Fixed an issue where an accessibility reader was reading element names instead of contents.

Resolved in On-Premises Platform 4.1.15

Item

Component

Description

SPT-2319On-premises platform

Passwords for newly created platform users now require:

  • At least one lowercase alpha character
  • At least one uppercase alpha character
  • At least one numeric digit
  • At least one special character (@#$%^&+=)

The password for the default user is changed to Qwerty1@ to meet these new requirements.

Note:  Existing passwords (for users migrated from earlier releases) remain unchanged until updated. This requirements change only applies to password changes for existing users, and to passwords for new users.


Resolved in Mobile Client 4.10.3

Item

Mobile OS

Accelerator

Description

MOB-1004AndroidAllImproved handling of broadcasts received by background services in certain circumstances.
SPT-2209AndroidAllWeb SQL Databases will not be intercepted/encrypted for Android apps that use WebView.
SPT-2224AndroidAllRemoved unneeded manifest permission which was causing integrated apps to hang during login.
SPT-2307AndroidAllImproved handling of background services that require network access.
SPT-2312AndroidAllFixed an issue where the mobile client added an empty element with an ID of "legal" which caused the word "legal" to be read by an accessibility reader. An empty element is now handled appropriately.


Resolved in Mobile Client 4.10.2

Item

Mobile OS

Accelerator

Description

SPT-2306Android, iOSBlackBerryFixed a cookie-handling issue where single sign-on was not working with apps using WebView and integrated with the Blue Cedar Accelerator for BlackBerry. 
SPT-2305Android 9AllFixed an exception caused by cut/copy/paste interception on certain Samsung devices.
SPT-2302Android, iOSAllFixed an issue where starting the app for the first time with no internet connectivity on the device, allows access to the app without enrollment
SPT-2294AndroidAllFixed an issue where a connected app would lose connectivity and be unable to reconnect in certain circumstances when connectivity became available. 

Resolved in Mobile Client 4.10.1

Item

Mobile OS

Accelerator

Description

SPT-2266iOSAllFixed an issue where IPv6 system DNS servers were not being read on an iOS device.

Resolved in Mobile Client 4.10.0

Item

Mobile OS

Accelerator

Description

MOB-892AndroidEnforceCorrected vulnerabilities identified via security scanning tools.
MOB-886AndroidAllCorrected vulnerabilities identified via security scanning tools.
SPT-2254AndroidAllFixed an issue with interception of JobService.
SPT-2272AndroidAllFixed an issue when app wouldn't reconnect following background/foreground and Wi-Fi off/on transitions.

Resolved in Mobile Client 4.9.9

Item

Mobile OS

Accelerator

Description

MOB-647AndroidAllCorrected vulnerabilities identified via security scanning tools.
SPT-2243iOSAllFixed an issue occurring when a web server closed a connection before sending all its data.
SPT-2266

Android, iOS

AllFixed an issue where the Mobile Client was unable to fully establish an IKEv2 tunnel over IPv6 to the Blue Cedar Connect Gateway.
SPT-2261, SPT-2262Android, iOSAllFixed a DNS issue occurring when reconnecting to the Connect Gateway.

Resolved in Mobile Client 4.9.8

Item

Mobile OS

Accelerator

Description

MOB-835AndroidAllCorrected vulnerabilities identified via security scanning tools.
MOB-601Android 10All

Made improvements to relinking process. To take full advantage of the improvements, remove the app from devices, re-integrate the app, and re-deploy.

Note: This change may produce breaking errors in some apps. 

Resolved in Mobile Client 4.9.7

Item

Mobile OS

Accelerator

Description

MOB-691AndroidAllCorrected vulnerabilities identified via security scanning tools.
SPT-2211Android, iOSGatewayChanged handling of untrusted server certificates. Rather than allow the app user to proceed with an insecure session at launch and then later fail to reconnect, now the app cannot launch if the server certificates are untrusted.  
SPT-2141AndroidAllFixed an issue with apps integrated with the BlackBerry Accelerator using URLConnection. Such apps were not able to access content, but now the order of HTTP headers returned to the apps is consistent with other accelerators.

Resolved in Mobile Client 4.9.6

Item

Mobile OS

Accelerator

Description

MOB-690AndroidAllCorrect vulnerabilities identified via security scanning tools.
SPT-2226AndroidAllFixed an issue with apps hanging/crashing after authentication.

Resolved in Mobile Client 4.9.5

Item

Mobile OS

Accelerator

Description

SPT-2211Android, iOSEnforce

Fixed an issue with certificate authentication when certificate-only authentication is enabled on the Blue Cedar Connect Gateway: the client would not present the certificate it received from enrollment.

Resolved in Mobile Client 4.9.4

Item

Component

Description

SPT-2113, SPT-2167Android 10

Network requests made through Secure Web Stack now correctly use CA certificates specified for augmented trust on Android 10. This includes requests made via WebView, URLConnection, OkHttp, and Apache HTTP Client. 

Note that other trust verifications on Android 10 (such as direct calls to X509TrustManager) will  not  use the additional certificates at this time.

SPT-2171AndroidFixed app crashing on launch by increasing interception to properly align with app behavior and all supported accelerators.
SPT-2175AndroidFixed the way the client handles illegal Android resource names starting with "$$".
SPT-2204iOS, AndroidAddressed an issue preventing React Native local storage files from being encrypted.

Resolved in Mobile Client 4.9.3

Item

Component

Description

SPT-2196, SPT-2198iOSFixed an issue that prevented app group permissions from validating correctly.
SPT-2109AndroidFixed an issue where HTML5 apps could not store or retrieve data from local storage when the Data at Rest policy is enabled.
SPT-2180AndroidFixed an issue where incorrect URLs could be delivered to WebViewClient following redirects, resulting in undesirable behavior.
SPT-2133AndroidFixed an issue with unresponsive web views, related to a redirect issue with Secure Web Stack.
SPT-2147iOSFixed a crash that can occur when calling functions from memory address.
SPT-2083Android

Fixed handling of relative redirect URLs for BlackBerry-integrated apps that use WebView.

SPT-2141AndroidFixed inconsistent order of HTTP headers returned to BlackBerry-integrated apps using URLConnection.
SPT-2122AndroidFixed support library conflict between classes added for BlackBerry integration and dex-merged versions that were in the original app.

Resolved in Mobile Client 4.9.2

Item

Component

Description

SPT-2162AndroidFixed an integration failure where the client was adding OkHttp during integration when the app already had a copy. No longer adding OkHttp to support HttpUrlConnection traffic.
SPT-2148Android

Fixed apps integrated with the Blue Cedar Accelerator for BlackBerry that were crashing due to missing permissions.

BlackBerry requires these permissions for an app to run properly on all devices. If these permissions are not present in apps before integration, BlackBerry adds them during integration time. If you use maxSDKVersion for any of these permissions, Android removes the permission during installation on devices with an operating system above the maxSDKVersion: this removal makes the app crash. This fix removes maxSDKVersion for these permissions during integration:

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.USE_FINGERPRINT
android.permission.USE_BIOMETRIC

SPT-2163AndroidFixed data migration failure after a PIN reset.
SPT-2056iOSFixed an issue where body data was being incorrectly dropped for certain requests with relative URLs.

Resolved in Mobile Client 4.8.3

Item

Component

Description

SPT-2059AndroidOn first launch of an app, authorization with Blackberry Dynamics was getting initiated too early, causing some out of order processing. Subsequent launches were fine. Authorization on first launch is now handled correctly.


Documentation and technical support

This release includes online documentation. To access this documentation, including upgrade instructions, see the knowledge base at  apollo.bluecedar.com or this direct links: 

Technical support is provided online at success.bluecedar.com