OneSpan Sign Release Notes

SaaS 2023-October: Release 23.R5 (11.54)

For information on our current and upcoming deployments for this release, please see the Releases and Maintenances Calendar section of our Trust Center.

These Release Notes were last updated on November 13th, 2023.

What's New

OneSpan Trust Vault (Compliance Vault)

Introducing OneSpan Trust Vault (Compliance Vault): OneSpan Trust Vault (Compliance Vault) enables organizations to securely store critical signed and completed digital agreements ensuring long-term viability and integrity that withstands the test of time.

Supported functionalities include:

Out of the box integration with OneSpan Sign
Granular user access management through OneSpan Sign Roles and Permissions functionality
Irrefutable Proof Certificate

To enable OneSpan Trust Vault (Compliance Vault) on your OneSpan Sign account, please contact our Support Team.

If sub-accounts are enabled, OneSpan Trust Vault (Compliance Vault) cannot be used.

Languages

Support for three more languages: We added support for the following languages: (1) Bulgarian; (2) Romanian; (3) Norwegian (Bokmål). Note: (1) Due to certain Canadian SMS guidelines, SMS messages sent in Romanian or Norwegian to Canadian phone numbers via Twilio's messaging service will be received in English. (2) Twilio does not support Bulgarian. Thus SMS messages sent in Bulgarian via Twilio's messaging service will be received in English.

If you have any customized email templates that you would like to use with these newly added languages, please contact our Support Team. If you do not contact our Support Team, the default OneSpan Sign email templates will be used.

Senders

Added support for tooltips on Fields: Senders can now add tooltips to Fields in a transaction, which will be displayed or read in the Signer Experience when a reader hovers over or tabs to that field. Tooltips can be used to add additional context or instructions to a field, thus improving the user experience.
Added checkbox to allow for transactions that do not expire: Previously, to create or edit a transaction so that it does not expire, or to set a default value for an account so that transactions associated with that account do not expire, Senders had to enter a value of '0' in the Expiration field. Now, Senders can simply use the checkbox to create transactions that do not expire.
Added ability to assign delegates from Users page: You can now assign delegates using the Users page.
Sender details can now be seen on the Users page: You can use the Users page to view additional information on a selected Sender.
Removed references to Opt out: References to the deprecated feature "Opt out" that appeared in the Usage Summary report have been replaced by "Decline to Sign".
Re-branded Activation and Expiration emails: The account activation and expiration email templates have been updated to reflect our latest corporate branding.
Improved Designer performance when using Conditional Logic: The performance of the Designer was significantly improved in situations where many fields with conditional logic had been applied to a document.

Admins

All blacklisted attachments are now displayed: When configuring your Upload Settings a complete list of blacklisted attachments is now displayed. This includes both the default blacklisted attachments, as well as any account specific blacklists.
Disabled features are no longer available when viewing using the Self Service Account Configuration: When using the Self Service Account Configuration page features that have been disabled because of a previously configured setting are no longer available to edit. For example, if the feature Enable document visibility is disabled, then the feature Allow configuring document visibility will be grayed out.
Self-service settings can now be configured using Java SDK: Integrators can now configure Self-service account settings using Java SDK.

User Authentication

Implemented callback and email notifications for LexisNexis failures: Callbacks and emails will now be sent when the following scenarios are met:
- Signer failed to authenticate.
- Signer not found in LexisNexis database.
- Signer does not have enough information associated with them and thus LexisNexis was not able to generate any authentication questions.
  For more information, see email.kba.failure
Enhanced SSN authentication with KBA with LexisNexis: When setting up KBA with LexisNexis, it is now possible to provide a Social Security Number for a Recipient in three ways:
- No SSN
- Full SSN
- Last four digits of SSN
Enhanced Identity Verification: Additional verification results can be included in the Evidence Summary. These are:
- Verification Results: Show the checks and matches used to determine if the verification should pass or fail.
- Personal Information: Show the data extracted from the document presented, about the identity. For example, Name, Date of Birth.
- Document Information: Show the data extracted from the document presented, about that document. For example, Country, Type, Issue Date.
  These features are enabled by default. To disable any of these features contact our Support Team.
Additional information available in the Evidence Summary and IDV Evidence Summary JSON: The following information is now available for viewing:
- The IDV Evidence Summary PDF now displays the Document_Authenticated matcher only.
- The IDV Evidence Summary now includes the signer ID in its JSON API.
- The IDV Evidence Summary now includes the number of verification attempts in the list of image URLs JSON and the JSON API.

Accessibility

Enhanced Document screen-readability: We have enhanced the screen-readability of documents in the Signer Experience. Screen readers can now read through a transaction's documents and fields without requiring the signer to switch to Accessibility Mode, and without requiring the Sender to create an accessible transaction. During this process, the screen reader will tell the signer if the document can be read by the screen reader.
If full accessibility is a requirement for your organization, then you must create accessible transactions using properly tagged documents.
Improved wording on document accessibility toggle: We have changed the label used to create an accessible transaction and improved the accompanying tool-tip for an enhanced user experience. The toggle now says Enforce document accessibility instead of Enable Accessibility.
Made the following Designer page icons 'bolder' to satisfy WCAG Accessibility standards for color contrast:
- Apply layout icon
- Document visibility icon
- Keyboard shortcuts icon
- Save layout icon
- Settings icon

Notarization & Virtual Room

RON supports three more U.S. States: We added the following States to the Jurisdiction drop-down list that the system presents to notaries when they register their Notary Commission: (1) Louisiana; (2) Rhode Island; (3) Kansas.
Added support for External Signer Verification for VR and RON Signers: It is now possible to setup External Signer Verification for Signers signing Virtual Room and RON transactions. Note that the account must be configured to use an external verification service. If configured, when signing and after clicking Confirm document, the Signer will be directed to the external verification service, which will open in a new browser tab.
In RON transactions, the State/Province field is now associated with the Country field: When creating a RON transaction the State/Province field will now display the regional jurisdiction that is relevant to the selected country. Thus, if USA is selected as the country, the State/Province field will show States. If Canada is selected, Provinces will be displayed. For other countries, users can enter the proper value themselves.
Notary field values are now visible on documents: When accessing the documents, notary fields will now be visible, even before confirmation. The following notary values are displayed:
- Notary Country
- Notary Jurisdiction
- Notary Commission Expiration Date
- Notary Commission Number
- Notary Name
New process for applying a Notarial seal: After a notary finishes signing a document an Apply Seal button will appear. Once clicked, the documents will be confirmed and the Notarial Seal will be applied and rendered on the document.
Enhanced user experience for in-person and in-person Notarized transactions: Adjusted the look and wording on affidavits for in-person, and in-person Notarized transactions.
New email template for in-person Notarized transactions: When a Signer is invited to a in-person Notarized transaction the email the Signer receives will allow them to review the documents in the transaction, but not begin the signing process. Signing can only take place in the presence of the notary. For more information see email.activate.ipen
Enhanced user experience for notaries initiating a Signer Experience. Notaries now:
- See a configuration screen that invites them to setup or configure their audio and video settings.
- See the status of signers in the transaction waiting room.
- See a transaction overview page that will aid them in running the Signer Experience.

eOriginal Integration

Added ability to use their own transaction type name when using vaulting: Vaulting customers can now pass their desired transaction type name to our system using the transactiontypename parameter. This allows users to distinguish the source of certain transactions when vaulting from multiple sources they want to track.
Enhance error handling for bad or incomplete vaulting data: Error handing has been improved to include more information for the customer use. This includes more information about the error, along with error callbacks and email notifications.
Enhanced vaulting robustness and reliability: The vaulting experience has been enhanced with the following:
- Retry time changed from 1 hour to 15 minutes
- New retry attempt callback
- Improved success, failure and retry callback verboseness
- Improved logs

External Archiving

Added a second connector for SFTP with the option of obtaining a NOM 151 certificate: In 11.52 we added Arkhineo as an integration connector. You can now use SFTP as an integration connector as well, while also having the option of obtaining a NOM 151 certificate. To enable this feature, contact our Support Team.

Bug Fixes

User Authentication

PB-97932: Fixed an issue where in certain scenarios the Signing logo did not display on the KBA authentication page.

Senders

PB-96825: Fixed an issue which was preventing users from updating a transaction's status to SENT via the API.
PB-97293: Fixed an issue where a user could not update a template's name. This occurred when attempting to change the case and only the case of any letter in the template (for example, from upper case to lower case).
PB-97435: Updated the wording in a confirmation message that appeared when deleting a transaction.
PB-97725: Fixed an issue where the maximum length of 64 characters was not being respected when multi-byte characters were used.
PB-98011: Fixed an issue where it was possible to retrieve attachments from a deleted transaction.
PB-98502: Fixed an issue where a blank screen would appear when attempting to reassign a recipient on a mobile device.
PB-98918: Fixed an issue where setting the Group Validation Range for some checkboxes to '0' resulted in a "Something went wrong" error message. Now, a warning message appears telling the Sender that you cannot set this range to zero.
PB-99039: Fixed an issue where attachment requirements could not be added for a recipient from the Designer.
PB-99190: Fixed an issue where it was possible to obtain a valid transaction ID when making an API request with faulty information.
PB-100585: Fixed an issue which was causing a security vulnerability in relation to one of our GET API calls.

Connectors

PB-97618: Fixed an issue in which the default banner did not appear if the Designer was integrated inside a Salesforce iFrame.
PB-98482:Fixed an issue which was preventing the creation of transactions from templates when using OneSpan Sign for Salesforceand OneSpan Sign for Microsoft Dynamics CRM connectors with Roles and Permissions enabled.

Signer Experience

PB-98089:Fixed an issue where default values defined by the Sender for list fields and their options do not appear in the Signer Experience. The fields appeared, but the default options did not.
PB-98146, PB-96342: Fixed an issue where the Accept bar no longer appeared on a short Electronic Consent Document if a session expiry message was dismissed, or if a cookie notification was dismissed.
PB-95888: Fixed an issue where the More Actions menu was not displayed when accessing the Signer Experience from the Rejected Attachment email.
PB-96288: Fixed an issue where the More Actions menu was not hidden in the Signer Experience when there are no options available to select.
PB-98382: Fixed an issue where the signer was not prevented from making changes to input fields on a document when a document was confirmed.

Admins

PB-96303: Fixed an issue which was causing a significant delay (lag) when adding a new role to a user. This occurred when Roles and Permissions was enabled and they attempted to do so using an Admin's API key.
PB-96909: Fixed an issue that where an Invalid JSON error occurred when setting certain properties to 'null' within packagesettings and then making changes using the Self Service Account Configuration.
PB-98288: Fixed an issue where the Senders page did not properly display column headers in certain languages, most notably Dansk, Nork, or Greek. In these situation, the last column (Actions) was sometimes truncated.
PB-99187: Updated the Add a checkbox to the top of the Consent document description in the Self-Service Account Configuration page.
PB-100060: Fixed an issue that was preventing Sub-Account enabled accounts from creating transactions using Bulk Send.

Vaulting

PB-98570: Fixed an issue where document vaulting was triggered multiple times.

Accessibility

PB-98223: Fixed an accessibility issue regarding the color contrast of icons displayed within the Transaction list.
PB-98283: Fixed an accessibility issue regarding the color contrast of the View all link on the Dashboard.
PB-98355: Fixed an accessibility issue regarding the color contrast of the links within the application footer.

Changed Behavior

PB-93756: The format for all date fields in exported CSVs are now set to yyyy-MM-dd HH:mm:ss.
PB-98015: The label for the PACKAGE_RESTORED callback in the Event Notification page has been changed from Transaction Unarchived to Transaction Restored.
As part of transaction expiry re-factoring, account settings are now checked when creating a transaction even if a previously created template was created with unlimited expiry.

Technology Updates

PB-100182: Added support for eOriginal cookies. This ensures that any integration with eOriginal is maintained during any infrastructure updates.

Known Issues

PB-100157: An error occurs when attempting to remove a field with conditional logic from a transaction that has already been sent. To resolve this issue, dismiss this error and then remove the field again. The field will be successfully removed.
PB-100050: The link to open the OneSpan Trust Vault (Compliance Vault) appears in English only, no matter what language is selected for the UI.
PB-100357: Administrators and Managers cannot assign delegates for locked or disabled users. This issue will be fixed in a future release.
PB-100235: Administrators and Managers that were created after Roles and Permissions have been activated cannot assign delegates from the Users page. This issue will be fixed in a future release.
PB-100635: Attempting to use the Users page to assign delegates to sub-account users results in a 404 error. This issue will be fixed in a future release.
PB-100497: An error occurs when users who have Customized Roles attempt to use the Users page to assign delegates for other users. In a future release the ability of users with customized roles to assign delegates for other users will be removed (though they will still have the ability to assign delegates for themselves).

SaaS 2023-September: Release 23.R4 (11.53)

What's New

Knowledge-Based Authentication

Equifax US replaced by LexisNexis: Equifax US has been replaced by LexisNexis. Any account that had Equifax US enabled will now have LexisNexis enabled by default. Senders will be notified of these changes if they try to do either of the following: (1) send transactions with Equifax US as an authentication method; (2) update signers who have Equifax US as their authentication method. Signers who try to authenticate themselves via Equifax US will now: (1) be notified that they cannot access the associated transaction; (2) be asked to contact the transaction's sender. Important: In this release: (1) signers’ authentication status is not available with LexisNexis; (2) failure callbacks and emails are not supported with LexisNexis.
Equifax Canada deprecated: Equifax Canada is no longer supported, and will not be replaced with another service.

ID Verification

New APIs for ID Verification: Three new API's download the following items, respectively: (1) an Evidence Summary in JSON format that contains detailed ID Verification information; (2) one specified ID Verification image; (3) multiple ID Verification images that have been specified in a list.

Languages

Support for three more languages: We added support for the following languages: (1) Polish; (2) Spanish (Spain); (3) English (United Kingdom). Note: (1) Due to certain Canadian SMS guidelines, SMS messages sent in Polish to Canadian phone numbers via Twilio's messaging service will be received in English. (2) Twilio does not support Spanish (Spain). Thus SMS messages sent in Spanish (Spain) via Twilio's messaging service will be received in Spanish (Latin America).

Senders

Senders can configure Designer settings: Self-Service Account Configuration now has a group of Designer Settings that determine the functionality of the Designer page.
Senders can configure upload settings: Self-Service Account Configuration now has Upload Settings that specify the file types that recipients can upload as attachments.
Senders can configure email reminders: Self-Service Account Configuration now has Email Reminders that specify a schedule for email reminders that will be sent to all recipients who have not yet finished signing.
Better Event Notification page: We redesigned the Event Notification page that senders use to configure event notifications for their listener services. The new design is more logical and less confusing.

Admins

Can customize Electronic Consent’s Accept button: Admins can now specify the text on the Accept button in the bottom bar of the Electronic Consent document. This button no longer needs to be the same as the Accept button for Accept Only recipients. To customize this text, Admins will need to work with our Support Team.

Remote Online Notarization

RON supports five more U.S. States: We added the following States to the Jurisdiction drop-down list that the system presents to notaries when they register their Notary Commission: (1) Michigan; (2) Missouri; (3) New Mexico; (4) Pennsylvania; (5) Wisconsin.
Two main authentication options: When senders configure the Authentication Method for a participant in a RON transaction, they are now presented with the following two options: (1) Unknown Signer — in this case, the sender must specify the methods KBA Authentication (via LexisNexis) and ID Verification; (2) Personally Known Signer — in this case, the sender can specify any Authentication Method (or none at all).
KBA respects the notary’s jurisdiction: The KBA Authentication Method used in a RON transaction is now customized to meet the requirements of the jurisdiction where the notary has their commission.
Better Locked Out error page: When a user is locked out after an unsuccessful authentication attempt, the Locked Out error page now shows how much time remains until the user will be permitted to make their next authentication attempt.
Notary Journal can record document dates: The Notary Journal now has a field that notaries can use to enter the date that appears on a document they are notarizing. This is useful because that date sometimes differs from the date when the notarization is performed.
Can require participants to sign Notary Journal: A new feature enables senders to require that a RON transaction’s participants sign the Notary Journal. If a sender makes this requirement, during the transaction the notary can: (1) make their journal entries; (2) then pass control to the participants so they can sign the journal. To enable this feature, please contact our Support Team.
New way to access the Thank You page: When a notary is reviewing a completed RON transaction, the Thank You page now opens after they click the Finish button on the last document. Note: That page has always opened — and it still does — when the notary clicks the Finish button in the Notary Journal.
Reminders about Notary Commission expiry: Notaries will now get emails to remind them of the approaching expiration of their Notary Commission. These emails will be sent 90, 60, 30 and 7 days before expiration.
Can set Notary Commission expiry to N/A: Notaries can now configure their commission’s expiration date as N/A (Not Applicable). This is useful because in some jurisdictions (e.g., Canada) commissions do not expire.

In-App Reporting

New column in Transaction Reports: We added a Transaction Description column to Transaction Reports. Note: (1) This column will appear only for ongoing and future reports; (2) for ongoing reports, the column will be populated only if the transaction has been updated.

Bug Fixes

Free Trial

PB-97466: Fixed an issue in which a link in the activation email for a Free Trial of OneSpan Sign failed to redirect users to the Account Registration page.

User Authentication

PB-96316: Fixed an issue in which completing an ID Verification process triggered an Internal Server Error. This error was caused by the fact that a Redis key/value had not expired.
PB-97838: Fixed the following issue. When a signer uses Client App credentials to generate a Signer Authentication Token, the system should not send an SMS OTP (one-time password) to their mobile phone. The problem was that the system did that.
PB-92243: Fixed an issue in which the signer's authentication page appeared in English, but should have appeared in the transaction's language (French). This occurred when: (1) the transaction was created via the SDK; (2) the signer’s language was not specified.

Senders

PB-97194: Fixed the following issue. In Self-Service Account Configuration, the transaction setting Allow document download for incomplete transactions was working with "reversed logic". In other words, the problem was that the functionality was allowed when unchecked, and not allowed when checked.
PB-97570: Fixed the following issue. An account’s default language was set to a language other than English. A sender on the account then created a transaction via the API, but did not specify a language. In this situation, the transaction's language should have defaulted to the account’s default language. Instead, it defaulted to English.
PB-94961: Fixed the following issue. In the Designer’s Apply Layout dialog box, if the toggle switch Show shared layouts is ON, the Select a layout drop-down list should display all shared layouts. The problem was that this list didn't display any of the existing shared layouts.
PB-96940: Fixed an issue in which trying to create a transaction via the API failed when: (1) the feature Allow Duplicate Signers was enabled; (2) the feature Allow Duplicate Signer Phone Number was disabled.
PB-94744: Fixed the following issue. The feature SSO Login was enabled, so senders had to log in to OneSpan Sign via Single Sign-On Authentication (SSO). The feature auto-provisioning was disabled, so an SSO login did not automatically create a new sender if one did yet not exist in the system. In this situation, after a user’s first successful SSO login, they were trapped in the state Pending. To fix this, we changed the API. Now, after a user’s first successful SSO login, their status is automatically set to Enabled (active). Note: This fix does not change anything for use cases where the Roles and Permissions feature is enabled.
PB-96189: Fixed an issue in which using a Fast Track link to create a template triggered an error when the following features were enabled and used: (1) Delegation; (2) Roles and Permissions; (3) Sub Accounts.

Signer Experience

PB-97932: Fixed an issue in which the logo failed to appear on the Signer Login page when the logo’s SVG file was missing the width attribute.
PB-97442: Fixed an issue in which a captured signature sometimes appeared too small or was not visible before being confirmed.
PB-96886: Fixed an issue in which the system failed to enforce a minimum length for captured signatures.
PB-95644: Fixed an issue in which an error message appeared in English, but should have appeared in French. The error message appeared after a signer tried to decline a completed transaction.
PB-93727: Fixed an issue that arose in the following situation. (1) Within a transaction, a signer delegated their signing responsibilities to a new signer (using More Actions > Reassign Recipient). (2) The original signer then finished reviewing the transaction’s documents, and clicked Finished. (3) The Thank You page that then appeared should have displayed the name of the original signer. Instead, it displayed the name of the new signer.

Admins

PB-96415: Fixed an issue that occurred when the Roles and Permissions feature was enabled, then disabled, then enabled again in OneSpan Sign BackOffice. By this point, the system had made the mistake of adding default roles to users.
PB-87067: Fixed a OneSpan Sign BackOffice issue in which trying to download an Electronic Consent document triggered an HTTP 500 error.

Remote Online Notarization

PB-96361: Fixed an issue in which notaries couldn't return to the Overview page after starting a RON transaction. We fixed it by restoring the left sidebar’s Home button.
PB-93258: Fixed an issue in which a RON transaction’s Thank You page did not display properly on certain mobile devices.
PB-97304: Fixed an issue in which KBA error pages in RON transactions failed to match RON’s current design.

Accessibility

PB-95925: Fixed an issue in which a Screen Reader failed to read the contents of a signed document's Date field.

Language

PB-97202: Fixed an issue in which Japanese email notifications displayed expiry dates in English.

Changed Behavior

When setting SMS authentication for a recipient, the country code will default to the country set for the Sender within their account profile. If their country is set to Other (which is the default), the SMS input country code will be set to International.
Equifax US and Equifax Canada are no longer supported.
When using LexisNexis KBA, signers are now authenticated each time they access the signing link, regardless of whether or not the signing has been completed.
If a signer fails to authenticate using LexisNexis KBA, the sender will need to create a new transaction if they want to re-attempt KBA authentication.
OneSpan Sign now supports only the latest stable version of its supported browsers (Chrome, Firefox, Edge, Safari). This applies to both the Signer Experience and the Sender part of the New User Experience.
PB-97114, PB-95121: The Evidence Summary now records if the selfies and documents submitted during ID Verification are authentic.
PB-97194: In Self-Service Account Configuration, the transaction setting Allow document download for incomplete transactions has been renamed Disable document download for incomplete transactions.
PB-97112: In Self-Service Account Configuration, the system setting Transaction expiry warning (days) has been removed.

Upcoming Changes

PB-93756: Starting in Release 23.R5 (11.54), the format of all Date fields in exported CSV files will be "yyyy-MM-dd HH:mm:ss". This applies to the following CSV files: (1) Notary Journal Export; (2) Transaction Usage Report; (3) Transactions Scheduled Report; (4) Account Scheduled Report.

SaaS 2023-July: Release 23.R3 (11.52)

Upcoming deprecation of Equifax Canada: After September 6, 2023, when Senders specify a KBA authentication method for a transaction recipient, they will no longer be able to select Equifax – CA as the KBA provider. If after that date users access an incomplete transaction with Equifax – CA selected, they may experience an error. To avoid such errors, we recommend that you: (1) change the authentication method for any such transaction that has been sent; (2) not select Equifax – CA for new transactions. If you have any questions, please contact our Support Team.

What's New

External Archiving

External Archiving: The documents from all of an account’s completed transactions can now be stored in the vaults of Arkhineo, a block-chain service for long-term document storage. To track this archival process, we’ve created the following statuses: (1) ARCHIVAL_PENDING; (2) ARCHIVAL_VALIDATING; (3) ARCHIVAL_INTERVENTION_REQUIRED; (4) ARCHIVAL_COMPLETE. To enable this feature, please contact our Support Team.

Senders

Senders can configure more transaction settings: Senders can now configure the following transaction settings using Self-Service Account Configuration: (1) Allow document download for incomplete transactions; (2) Display document name on each page of the document; (3) Display signing progress; (4) Allow recipient to navigate across actionable fields in the document; (5) Include optional fields in navigation; (6) Limit number of files per attachment; (7) Font size.
Senders can configure new system settings: Senders can now configure the following system settings using Self-Service Account Configuration: (1) Maximum login attempts for a sender; (2) Session expiry; (3) Session expiry warning.
Senders can configure Enable Recipient History: Senders can now configure the feature Enable Recipient History using Self-Service Account Configuration. This feature determines if an account’s Senders will be able to see the account’s recipient history.
Improved dependent settings: We improved the following aspect of the Self-Service Account Configuration’s User Experience. Previously, when one setting depended on another, a warning message appeared. Now, a dependent setting is: (1) indented under its parent; (2) automatically enabled or disabled based on the parent setting.
Can duplicate Imprint Fields: Senders can now duplicate Imprint Fields – i.e., fields that transaction recipients can see, but cannot interact with in any other way. The duplication procedure is the same as for other fields — i.e., within the Designer: (1) select one or more Imprint Fields; (2) open the Field Settings pane, and click Duplicate.
New types of Imprint Fields: Senders can now add the following types of Imprint Fields to documents: (1) TransactionID; (2) DocumentID. These fields are automatically populated, and their values cannot be changed.
Rebranded colors: To reflect OneSpan’s new colors, we rebranded: (1) the checkboxes in the Sender part of the New User Experience; (2) "selected" radio buttons in the Designer.

Signer Experience

Better placed Get Started button: We improved the visibility of the Get Started button on iPhones, so users wouldn’t think that they were "stuck" and thus unable to enter the Signer Experience.

More granular control of duplicate signers: Before Release 11.47, a transaction's recipients could have: (a) the same full name OR the same email address, but not both simultaneously; (b) the same phone number. We call this the system's "legacy behavior” regarding duplicate signers.

Release 11.47 introduced the BackOffice setting Allow Duplicate Signers. When enabled, this setting allowed a transaction's recipients to have: (a) the same full name AND the same email address simultaneously; (b) the same phone number.

This release provides more granular control of such duplicated information via the following BackOffice settings: (1) Allow Duplicate Signer Email Address — Determines if a transaction's external recipients can have identical email addresses (default = enabled). (2) Allow Duplicate Signer Name — Determines if a transaction's recipients (external and internal) can have identical full names (default = disabled). (3) Allow Duplicate Signer Phone Number — Determines if a transaction's recipients (external and internal) can have identical phone numbers (default = enabled). (4) Allow Duplicate Signers — This setting is now a master switch (default = disabled). If it’s enabled, the previous three settings are honored. If it’s disabled: (a) the previous three settings are ignored; (b) the setting’s "legacy behavior" is restored.

Caution: The "duplicate signers" feature does not work with Single Sign-On Authentication (SSO).

Note: OneSpan Sign uses phone numbers only for SMS authentication and ID Verification.

Account Owners & Admins

Can specify the language for redirect URLs: Account Owners and Account Admins can now specify the language of redirect URLs, so Senders and Signers can be redirected to pages in their preferred language. Such URLs include Sender Logout, Sender Session Timeout, and Signer Session Timeout. To configure this feature, please contact our Support Team.

Developers

SDK can configure more settings: The SDK can now be used to configure the feature Enable Recipient History, and the following transaction settings: (1) Allow document download for incomplete transactions; (2) Display document name on each page of the document; (3) Display signing progress; (4) Allow recipient to navigate across actionable fields in the document; (5) Include optional fields in navigation; (6) Limit number of files per attachment; (7) Font size.

Remote Online Notarization

RON supports five more U.S. States: We added the following States to the Jurisdiction drop-down list that the system presents to notaries when they register their Notary Commission: (1) Idaho; (2) New Hampshire; (3) New Jersey; (4) North Dakota; (5) Wyoming.
Reminder for Notary Seal & RON Statement A reminder now appears when a Sender tries to send a Remote Online Notarization transaction without having added a Notary Seal and RON Statement to the transaction’s documents. The popup reminds the Sender that some U.S. States require these additions.
System copies available signer information: This feature concerns Remote Online Notarization transactions in which a signer is assigned KBA authentication. To save Senders from having to enter a signer’s information twice, if the Sender enters Recipient Details about a signer when they create the transaction, the system now: (1) copies those details into the corresponding fields for KBA authentication; (2) permits Senders to edit the copied information (e.g., First Name, Last Name, City, State, Zip code).

Remote Online Notarization & Virtual Room

Better interface for failed authentication attempts: If the recipient of a RON or Virtual Room transaction is using an Authentication Method that limits the number of failed attempts, now when an authentication attempt fails: (1) the system displays the number of remaining attempts; (2) a Retry Authentication button appears. If the user clicks that button, they can try to authenticate themselves again without affecting the number of remaining attempts.

Evidence Summary

Enhanced Evidence Summary: To ensure compliance with KYC (Know Your Customer) regulations in multiple regions (Canada, EU, UK), we enhanced the Evidence Summary by making it include information about recipients’ attempts to authenticate themselves via ID Verification.

Bug Fixes

Senders

PB-92738: Fixed an issue in which an invitation email failed to be sent because the recipient’s email address contained an ampersand (&). To fix this problem, if a Sender enters an address with an ampersand, an Invalid Email Address message will now appear. Senders will thus be blocked from using addresses that contain an ampersand.
PB-93911: Fixed an issue in which Bulk Sending failed when Mutual TLS authentication (mTLS) was configured for the account.
PB-94226: Fixed an issue in which some required fields were not correctly labeled in the Designer;
PB-93669: Fixed an issue in which a Sender was able to create a transaction without an expiry date, even though default and maximum expiry values had been set at the account level.
PB-93660: Fixed an issue in which a Sender could not configure an unlimited expiry time for a transaction, even though the account-level settings allowed it.
PB-90113: Fixed an issue in which trying to configure a transaction’s expiry time in the Designer triggered an error.
PB-95000: Fixed the following issue on the Designer page. If a Sender clicked the Accept Only button before a document had finished loading, it triggered an error.
PB-94199: Fixed the following issue that occurred during transaction creation. When a Sender used the Chrome browser's Auto-fill feature, the transaction’s correct name was replaced by pre-filled user information.
PB-93616: Fixed an issue that arose in the following situation. (1) In BackOffice, the feature Allow Duplicate Signer Email Address was disabled. (2) In the Designer, a Sender tried to add a recipient to a transaction using an email address that was already in use by another recipient. (3) This triggered an error message. (4) The Sender responded by changing the new recipient’s email address to a unique address. (5) At this point, the system should have added the new recipient to the transaction. Instead, it displayed another error message.
PB-93805: Fixed an issue in which the banner Start your first transaction failed to extend to the edge of the page.
PB-92455: Fixed an issue in which the text in transactions' Status column wrapped across two lines, and the second line contained only the last character of the last word.
PB-94736: Fixed the following issue. Sometimes when delegates accessed their delegators’ Dashboard, it failed to indicate that their signature was required on a transaction.
PB-92675: Fixed an issue in which the Designer page became unresponsive when a Sender: (1) clicked and dragged a field to a new position; (2) did not let go of the left mouse button; (3) pressed the Delete key.
PB-94734: Fixed an issue in which accessing a trashed transaction from the Sender part of the New User Experience triggered an error.
PB-93348: Fixed the following issue. A transaction was created and sent, then interrupted (e.g., Edit Transaction), then sent again. Both signers and reviewers should then have received an email reminder about the transaction, but the reviewers did not.

Signer Experience

PB-94787: Fixed an issue that occurred after a Sender rejected a signer’s attachment, and sent the signer a notification about this. When the signer opened the notification email and clicked View documents, it triggered an error.
PB-95818: Fixed the following issue. After all signers have signed, and a signer refreshes their browser on the Summary page (aka the Thank You page), the system should redisplay that page. Instead, it displayed the last signed document.
PB-93797: Fixed an issue in which the system failed to display a proper error message when an account Sender tried to access the Signer Experience for a transaction in which they were not a recipient.
PB-94572: Fixed an issue in which Zoom controls disappeared from the More Actions menu when the browser window was re-sized to 800 x 950 pixels or smaller.

New User Experience

PB-91832, PB-88911: Fixed an issue in which: (1) fields were added to a document via the Designer; (2) in the signed document, those fields appeared two pixels away from their assigned positions.

PB-95822: Fixed an issue that arose when recipients began reviewing the documents of a completed transaction that did not contain an Electronic Consent document. The system should have responded by displaying the transaction’s first document, but instead displayed its last document.

Developers

PB-95776: Fixed an issue in which a PUT call to reorder a transaction’s documents created a blank placeholder, which in turn caused an Unhandled Server Error.
PB-94030: Fixed the following issue that occurred in a transaction created via the API. After the transaction was sent for signing, having included two successive backslashes (\\) in a recipient's name caused an Invalid JSON error.

Account Owners

PB-88113: Fixed an issue in which an error was triggered when an Account Owner clicked Admin on the top menu, and then selected Senders.

Accessibility

PB-93324: Fixed an issue in which a Screen Reader failed to introduce a Capture Signature panel.
PB-93326: Fixed an issue in which a user could not TAB into the signature-drawing part of a Capture Signature panel.
PB-94282: Fixed an issue in which transactions with Accessibility Mode enabled triggered DOCUMENT_NAVIGATION and DOCUMENT_VIEW events for each field accessed. Now: (1) a DOCUMENT_VIEW event is triggered only when a user has viewed a document; (2) a DOCUMENT_NAVIGATION event is triggered only when a user has navigated to a document.
PB-92456: Fixed an issue in which, upon opening the modal window Resend SMS?, the accessibility focus was on the Resend button rather than the Close[X] button.

Remote Online Notarization

PB-94037: Fixed an issue in which some iPhone devices failed to correctly display pages during a Remote Online Notarization session.
PB-93708: Fixed an issue in which the Thank You page for notaries displayed an incorrect message.

Virtual Room

PB-95729: Fixed an issue in which some elements in a Firefox browser were incorrectly highlighted during a Virtual Room session.

In-App Reporting

PB-92028: Fixed an issue in which exporting a Transaction Report to a CSV file caused issues if a transaction's name contained a comma. Each such comma is now replaced by a space.

Audit Trail

PB-93000: Fixed an issue in which the Audit Trail didn’t provide a reason why an ID Verification attempt had failed.

Changed Behavior

PB-92849: We improved the Signer Experience's validation of date-picker fields. For example, the system now: (1) automatically prepends a "0" if a single-digit value is input for the day or month; (2) instantly rejects out-of-bounds values (e.g., "13" for the month). These improvements resulted from upgrading the MUI X front-end library. For more information, click here.
PB-94397: We changed the labels of the following Notary fields within the Designer: (1) NotaryLicenseNumber became Notary Commission Number; (2) NotaryLicenseExpirationDate became Notary Commission Expiration Date.
PB-92028: When a Transaction Report is exported to a CSV file, any comma in a data field is now replaced by a space.
PB-92561: To prepare for Release 23.R4’s addition of new supported languages: (1) we changed the name of the existing English language to English (United States); (2) we changed the name of the existing Spanish language to Spanish (Latin America). Their associated language codes have not changed.
PB-95100: To reflect OneSpan’s new colors, we rebranded: (1) the checkboxes in the Sender part of the New User Experience; (2) "selected" radio buttons in the Designer.

Upcoming Changes

PB-95735: In Release 23.R4 (11.53)., the Signer Experience’s Session Timeout warning message will be modified to display the relevant number of hours.
Starting in Release 23.R4 (11.53), OneSpan Sign will support only the latest stable version of its supported browsers (Chrome, Firefox, Edge, Safari). This will apply to both the Signer Experience and the Sender part of the New User Experience.
PB-93756: Starting in Release 23.R5 (11.54), the format of all Date fields in exported CSV files will be "yyyy-MM-dd HH:mm:ss". This applies to the following CSV files: (1) Notary Journal Export; (2) Transaction Usage Report; (3) Transactions Scheduled Report; (4) Account Scheduled Report.

Known Issues

PB-95735: A known issue is affecting the Signer Experience’s Session Timeout warning message. If the parameter "esl.login.session.timeout.warning" is set to a value higher than 59 minutes, that message fails to display the number of hours. For example, if that parameter is set to 1 hour 2 minutes (3720000 milliseconds), that message incorrectly states that the timeout will occur in 2 minutes (instead of 1 hour 2 minutes). This issue will be fixed in Release 23.R4 (11.53).

PB-97194: In Self-Service Account Configuration, the transaction setting Allow document download for incomplete transactions currently works with "reversed logic" — i.e., the functionality is allowed when unchecked, and not allowed when checked. This issue will be fixed in Release 23.R4 (11.53).

PB-96940: When a transaction is being created via the API, a 500 error is thrown if Allow Duplicate Signers is enabled and Allow Duplicate Signer Phone Number is disabled. This issue will be fixed in Release 23.R4 (11.53).

PB-89508: The system setting Transaction expiry warning (days) is not functional via Self-Service Account Configuration. It will be removed in Release 23.R4 (11.53).

PB-95581: The BackOffice feature Allow Duplicate Signer Phone Number currently doesn’t work with “internal signers” (i.e., Senders who are also signers). This issue will be fixed in a future release.

PB-94961: In the Designer, when a Sender tries to Select a Layout or Show Shared Layouts, nothing appears in the list of layouts. This issue will be fixed in a future release.

SaaS 2023-May: Release 23.R2 (11.51)

What's New

Remote Online Notarization

Added ID Verification for RON: Remote Online Notarization now supports the ID Verification authentication method. During ID Verification, a picture of the signer’s ID is shown to the Notary so they can compare it with the signer’s video feed. Fields in the Notary’s Journal are changed to reflect the information that was used during ID Verification.
Added KBA for RON: Remote Online Notarization now supports the KBA authentication method. This feature must be enabled separately for each account that wants to use it.
Added a reminder to start recording: At the start of a Remote Online Notarization session, a note about recording the session is now displayed to the Notary.

Signer Experience

Improved Capture Signature: The Capture Signature panel has been improved in the following ways: (1) the panel now displays the instruction Draw your signature; (2) the signature area now has a background color and a border; (3) signers can now maximize or minimize the panel. Note: Drawing a signature and then resizing the panel will clear the signature. This is expected behavior.
Split Signature Box: To prevent overlaps among a signature, its timestamp, and its watermark logo, we enabled each of these elements to be displayed in a separate section of the Signature Box. Once enabled, this feature affects all signature types except Click-to-Initial. However, the feature is available only within new transactions.

Senders

Can add fields not tied to a participant: Senders can now add to a document fields that are not associated with a particular recipient. After a transaction is sent, its participants can see such fields in documents, but they cannot edit them. Note: (1) the values of such fields can be configured only in the Designer; (2) this feature must be enabled either by contacting our Support Team, or by using the Account Setting self-service in the Sender part of the New User Experience; (3) in the Account Setting self-service, this feature is called Imprint fields.
Conditional fields highlighted more often: In the Designer, fields to which conditional logic applies now display a conditional-logic icon even if the Sender is focusing on an unrelated field.
Sender UI rebranded: We rebranded the OneSpan Sign logo and colors in the Sender part of the New User Experience.
Can copy-paste multiple fields at once: In the Designer, Senders can now copy-paste multiple fields at once within the same document.
Can delete multiple fields at once: In the Designer, Senders can now delete multiple fields at once within the same document.
Better experience when trying to move fields between documents: Formerly, when a Sender tried to drag one or more fields from one document to another in the Designer, the fields were blocked at the document’s edge, but there was no indication as to why this was being done. Now: (1) a message at the border between the documents states that fields cannot be moved from one document to another; (2) the "blocked" document is grayed out.

Bug Fixes

Senders

PB-88953: Fixed the following issue. When a Sender used the API to upload a file with an unsupported file name, the system should have displayed a validation error. Instead, it displayed an internal error.
PB-90376: Fixed an issue in which the system failed to indicate that a transaction's language was the one configured when the transaction was created. This happened after the Sender added a recipient to the transaction from the Designer.
PB-91545: Fixed an issue in which the Unlock Recipient button mistakenly appeared disabled for a recipient who had been assigned SMS authentication within an in-person transaction.
PB-89371: Fixed an issue in which an error was triggered when a Sender tried to trash a transaction that had been created from a template with placeholder recipients. This occurred only when the Trash button was clicked from a page that had not been refreshed since the transaction was created.
PB-90671: Fixed an issue that was causing document pages to be duplicated in the Designer’s Documents panel.
PB-91637: Fixed a Designer issue in which fields appeared on documents to the left of their assigned positions.
PB-92211: Fixed the following issue. A Sender used the Designer to: (1) create a transaction; (2) flag one of its recipients as Accept Only. The Sender should not then have been able to add fields to a document for this recipient. However, the Sender could do this. Note: This issue occurred only when the feature No Signature Fields was enabled in OneSpan Sign BackOffice.
PB-91916: Fixed an issue that arose in the following situation. When a Sender resized a field in the Designer, they made the field extend outside the document (e.g., slightly above the top of the document). This action triggered the following error: Invalid position. Object placed outside of document page boundary. Now, the system performs the resizing without an error, and keeps the resized field within the document.
PB-72091: Fixed an issue that caused the Designer to crash when Senders uploaded documents whose pages were smaller than letter size.
PB-91876: Fixed an issue in which the Designer crashed after a Sender selected fields in different documents using Shift + Click.
PB-91675: Fixed an issue in which the Designer’s Document Preview panel flickered until the application crashed.
PB-91948: Fixed an issue in which fields on non-active documents in the Designer were not grayed out when fields on the active document were being dragged.
PB-91122: Fixed an incorrect translation into Portuguese of text about the Bulk Send feature. The correction uses text provided by a native Portuguese speaker.
PB-93008: Corrected a grammatical error in Japanese on the Transaction Details page.
PB-92932: Fixed the following issue. A Sender: (1) created an account that had a sub-account; (2) added a user to the parent account, and assigned them a customized role; (3) created a new account, and migrated it under the sub-account. At that point, the existing user should still have had only its assigned customized role. Instead, the existing user had acquired the role of Sender.
PB-90750: Added missing information in a warning message to Senders. Old Message: This document already contains signature fields. Setting the document as Accept Only will remove all the signatures and data fields that it currently contains. Do you want to continue? New Message: This document already contains signature fields. Setting the document as Accept Only will remove all the signatures and data fields that it currently contains tied to the selected recipient. Do you want to continue?

Signer Experience

PB-93747: Fixed an issue that occurred when a signer with more than two names (e.g., First, Middle, Last) signed using their initials. The Initials box in the Signer Experience should have displayed all the signer's initials. Instead, it displayed only two.
PB-91656: Fixed a Signer Experience issue in which a selected date could not be cleared from the Date field.
PB-91114: Fixed the following issue. When a drop-down list or a Text Field with a height less than 20 pixels was added to a document, it moved down a few pixels after signing was complete.
PB-91834: Fixed an issue in which a signer who had been assigned only optional signatures failed to receive an invitation email.

Accessibility

PB-92110: Fixed an issue in which Screen Readers failed to detect Zoom In and Zoom Out buttons in the Signer Experience.
PB-91405: Fixed the following issue. When users were being authenticated via SMS, Screen Readers failed to read error messages for an expired or incorrect SMS code.
PB-92358: Fixed an issue in which iPhone users could not enable Accessibility Mode.
PB-92213: Fixed the following issue. If a user enters a wrong answer when they are being authenticated, a banner notifies them that their response was incorrect . That’s also true in this issue. The problem was that the code accompanying the banner said: role="dialog". This could have confused the users of Screen Readers.

Remote Online Notarization

PB-90461: Fixed an issue in which a CLEAR button on the Notary Commission dialog box or a Signature Field failed to localize when the language was changed.
PB-90374: Fixed an issue in which a Notary who had been assigned an optional signature was prevented from confirming a user’s identity.
PB-90445: Fixed an issue in which a Notary was wrongly listed as a signer when a Journal Entry was downloaded as a PDF.

Delegation

PB-89895: Fixed the following issue. Before a document was confirmed, a signature failed to display the name of the delegate who applied the signature. Instead, it displayed the name of the original signer.
PB-89825: Fixed an issue in which the Evidence Summary displayed the name of the original signer for some events, instead of the name of that signer's delegate.

In-App Reporting

PB-89983: In the column titles of Spanish In-App Reports, we fixed some translation and letter-case issues.

Evidence Summary

PB-90899: Fixed an issue in which a Downloaded Document entry was mistakenly duplicated in the Evidence Summary.
PB-92402: Fixed an issue in which the size of Evidence Summary files in the Japanese language were too big (each file more than 8 MB).

Account Owners

PB-92124: Fixed a broken link on the Account Configuration page.

Developers

PB-94197: Fixed an issue that caused the sessions of customers using iFrames to expire prematurely. The problem was that the system was failing to fire iFrame Lifecycle Messages (aka iFrame JavaScript Events) in the correct order. To view an example of events fired in the correct order for a typical transaction, see the content under the table in the section Notification Event Types.

Changed Behavior

PB-89197: By default, the Capture Signature panel now opens in a minimized window. Users can maximize the window if they wish.
PB-91028: When a transaction’s last document is Accept Only, and the relevant recipient has accepted it (thus completing the transaction), that recipient is directed to the Thank You page. Refreshing that page now leaves the recipient on that page. It used to redirect the recipient to the last document.
Please note that as of this release (23.R2), you are no longer able to request the activation of the sub-accounts feature. For customers currently using sub-accounts, incidents related to undocumented use cases will be lowered to priority P3 or P4. For priority P1 or P2 incidents related to sub-accounts, we will use commercially reasonable efforts to provide workaround solutions if: (1) the account's use is being impacted operationally; (2) the customer cannot find a root cause of that impact within their own systems; and (3) we determine that a solution for the incident does not require new code. We made this decision to focus on creating enhanced account-management features that will result from an integration with our new OneSpan Transaction Cloud Platform. Please note that you can still request the creation of new OneSpan Sign accounts, and obtain help from our Support Team to configure your accounts.
PB-89265: We improved the performance of the Signer Experience by modifying the rules that govern the fetching of documents. In particular, in some situations the system will fetch an original PDF instead of a flattened PDF. Fetching an original PDF is faster because it’s stored in cache memory, whereas a flattened PDF is always regenerated when it’s fetched.

The following paragraphs describe further details.

Flattened PDFs: Flattened PDFs will be fetched for only the following activities: (1) viewing a signed document whose signatures have been confirmed; (2) viewing an Accept-only document after it has been accepted; (3) viewing a document that was signed or accepted by another recipient before the current recipient accessed the transaction.

Original PDFs: Original PDFs will be fetched for all these activities: (1) accessing a document (regardless of whether it has been designated for signing, Review-only or Accept-only); (2) viewing a signed document whose signatures have not been confirmed; (3) viewing an Electronic Consent document; (4) viewing a Review-Only document; (5) viewing a document for which: (a) the current recipient has completed all their actions; (b) another recipient still has pending actions (sign or accept).

Note: As we implemented these changes, we made efforts to preserve callback integrity – i.e., to ensure that customers’ callback integrations will continue to work without modification.

Known Issues

PB-88685: An error may sometimes appear when changes on the Account Configuration page are saved. If this occurs, refresh the page and try again. This issue will be resolved in a future release.
PB-91040: When a delegate tries to sign using a signature type other than Click-to-Sign, they may encounter a 403 error. This issue will be resolved in a future release.
It may require up to 2 minutes for changes on the Account Configuration page to take effect.

SaaS 2023-March: Release 23.R1 (11.50)

What's New

OneSpan Notary (Remote Online Notarization)

Introducing OneSpan Notary: OneSpan Notary enables both Remote Online Notarizations (RON) and in-person notarizations. The RON functionality enables a Notary and signers to join a remote online notary session in which the Notary: (1) acts as the session’s host; (2) permits users to sign documents; (3) confirms the signed documents with a Digital Notary Seal.

This RON functionality introduces the following new features: (1) Notary Commission; (2) eJournal; (3) a transaction type called Remote Online Notarization.

From the point of view of OneSpan Sign, a “Notary” is a Sender who has either been granted "Notary rights"., or who has been assigned the role Notary.

Once a Sender is a Notary in that sense, they must configure a “Notary Commission” by: (1) clicking My Account > Notary Commission; (2) providing commission information in the dialog box that appears.

When a Sender creates a remote online notary transaction, they must specify: (1) a valid Notary for the transaction; (2) a date and time for the transaction's signing session.

After the Notary enters a remote online notary session, they must confirm each signer’s identity. For this initial release, the only supported authentication method is that the Notary knows the signer personally.

A remote online notary session follows the same rules as a Virtual Room session.

After all documents have been signed by the signers and the Notary, the Notary can end the remote notarization session. The Notary will then be redirected to an eJournal. This is an electronic log in which the Notary must record information related to their notarization. The journal can be downloaded from the My Account > Journal link in the Sender part of the New User Experience.

For this initial release, only the following notary jurisdictions are supported: (1) Alaska; (2) Arizona; (3) Hawaii; (4) Minnesota; (5) Ohio; (6) Oklahoma; (7) Tennessee; (8) Texas; (9) Virginia; (10) Washington.

To enable OneSpan Notary, please contact our Sales Team.

Rebranding

Rebranded OneSpan Sign with new colors & logo: We've updated: (1) the logo and colors in the Electronic Consent document; (2) the watermark signing logo; (3) the logo in the Evidence Summary; (4) the colors in email templates.

Senders

Added transaction descriptions to transaction names: In the Sender part of the New User Experience, transaction descriptions now appear in any list or table that contains transaction names. These descriptions appear directly under the names, but use a smaller font. This will enable Senders to differentiate transactions that have the same name.
A document can be signed by some, and accepted by others: Formerly, Senders could assign only one of the following states to a transaction's document: (1) Signable; (2) Accept-Only. The assigned state applied to all transaction recipients. Senders now have the option of assigning another state to a document. The new state requires a document to be: (1) signed by some recipients; (2) accepted by other recipients. Note: The Transaction Owner (aka "Myself") cannot accept documents.
Can reposition multiple fields at once: Formerly, the multiple selection of fields within the Designer could be used only to align fields. Now, this multi-select functionality can also be used to reposition multiple fields at once within the same document. This will enable some transactions to be created faster.
ID Verification supports same email address: A transaction that uses ID Verification can now accommodate signers who have the same email address.

Developers

Added Document ID & Recipient ID to the Audit API: The Document ID and Recipient ID are now in the JSON returned by the call api/packages/<packageId>/audit. This information will enable developers to: (1) differentiate documents that have the same name; (2) differentiate recipients who have the same name. Note: The Recipient ID is not tracked for ID Verification events.

Bug Fixes

User Authentication

PB-87150: Fixed an issue concerning repeated authentication attempts via ID Verification's configuration called Document Verification Only. The system should have allowed only three failed attempts, but it allowed four.
PB-87989: Fixed the following issue. If a user employed a Signer Authentication Token to access the Signer Experience, the system failed to display its customized message for unauthorized OFAC access.

Signer Experience

PB-90661: Fixed an issue in which a signer who had just completed all their actions on a transaction was presented with the misleading message: Currently not your turn to sign.
PB-89223: Fixed an issue that arose in the left pane of the Signer Experience. The problem was that the word DOCUMENTS overlapped the number of documents, and the word UPLOADS overlapped the number of uploads.
PB-87913: Fixed an issue in which the Signer Experience's left pane displayed a document’s status as Signing completed, though the document still required actions.
PB-91298: Fixed a rare race condition that caused the text entered by a signer in a Text Area field not to appear in the document after the signer: (1) signed the document; (2) reopened the document.
PB-91711: Fixed an issue in which some Autofields were not getting populated if multiple signers had an Autofield with the same name.

Senders

PB-85790: Fixed an issue in which a Sender opened an expired transaction from the Drafts tab, and then resent it. The problem was that the system failed to resend the transaction.
PB-89092: Fixed an issue in which a transaction failed to be sent as expected. The root cause was that the transaction had been created from a template that used conditional logic on a field that no longer existed.
PB-87718: Fixed an issue in which it was possible to configure a transaction expiry date that exceeded the Designer’s maximum number of days before expiration.
PB-89186: Fixed an issue in which a user logged in to a Free Trial account, and then changed the language from the top-right menu. The problem was that the system failed to change the language of the Free Trial banner.
PB-76319: Fixed the following issue. By clicking the Org Accounts icon on the Dashboard, Senders viewed sub-accounts that they should not have been able to view. These were sub-accounts in which the Senders had no Role.
PB-83290: Fixed an issue in which sub-accounts failed to inherit the “theme” (e.g., branding colors) configured in the Sender part of the New User Experience.

New User Experience

PB-87999: Fixed an issue in which some text within PDFs was not rendering properly in the New User Experience. The issue affected both the Signer Experience and senders (e.g., the Designer). Note: This issue has been fixed for most use cases. However, it may still occur when specific hardware configurations are used with unconventional PDF documents. We will continue to monitor PDF.js documentation for any resolution.

Developers

PB-87868: Fixed the following issue. If OneSpan Sign BackOffice is used to change the value of the parameter email.from in the resource email.properties, the FROM email address in an email template's JSON should be updated automatically. The problem was that this update didn’t happen.
PB-88857: Fixed an issue in which the system failed to translate a parameter of the email template email.bulk.send.completed.

Virtual Room

PB-89453: Fixed an issue in which the Get started button was not visible to signers in a Virtual Room session if they were on a mobile device.
PB-89410: Fixed the following issue that arose during a Virtual Room session. When a signer repeatedly clicked the Signature Navigator’s Next button, the system iterated through the required fields of all the session’s participants. It should have iterated through only the required fields of the current signer.
PB-89278: Fixed an issue that arose during a Virtual Room session. The problem was that the system displayed an empty space in a signer's list of attachments.
PB-87215: Fixed an issue in which: (1) a participant joined a Virtual Room session after the session had started; (2) the system failed to inform the participant that a recording of the session was already in progress.

Delegation

PB-88863: Fixed an issue in which the delegation feature failed in sub-accounts.

Evidence Summary

PB-86851: Fixed an issue in which the Evidence Summary recorded that a Confirm Signatures event was followed by a View event. The problem was that the View event never occurred.

Accessibility

PB-89715: Fixed an issue in which Screen Readers failed to correctly read conditional logic that appeared in the Designer.
PB-91835, PB-91405: Fixed an issue in which Screen Readers on desktop or mobile devices failed to read error messages about invalid or expired SMS passcodes.

Changed Behavior

PB-88352: Within the Data Retention dialog box, we've changed how an Unlimited retention period is configured. A checkbox has been added.
PB-89362: If the Incomplete Evidence Summary feature is enabled for an account, that account’s Senders can now download the Evidence Summary no matter what state the transaction is in (including Draft).
PB-87819: The system will no longer display the popup window that was formerly used to identify recipients as acceptors or reviewers. Instead: (1) to make a recipient an acceptor, the transaction creator can merely select the Accept Only checkbox for that recipient; (2) to make a recipient a reviewer, the transaction creator can just: (a) leave the Accept Only checkbox clear for that recipient; (b) not add any fields to the document for that recipient.
PB-86346: Before signing is complete, Initials fields used to show the signer’s full name. Such fields now show just the signer’s initials (as they will appear in the flattened – i.e., completed – view of the document).
PB-88409: This change concerns the Signer Experience message which warns signers that their session will soon expire. Formerly, the time left before expiration was expressed as a decimal number (e.g., 4.83 minutes). That time is now expressed as whole numbers of minutes and seconds (e.g., 4 minutes and 50 seconds). The new format is more human-friendly.

Known Issues

PB-91083: Before OneSpan Sign can sign an externally signed document, normally both of the following conditions must be met: (1) the feature must be enabled in OneSpan Sign BackOffice; (2) the document must be identified using the externalSigned flag. However, the feature will currently work if only that second condition is met (and the transaction is in the state DRAFT). This issue will be resolved in a future release.
PB-91110: OneSpan Sign should confirm that a document uploaded with the externalSigned flag ON has: (1) at least one signature; (2) at least one signature applied by an external solution. In this release, the system does not perform these verifications. This issue will be resolved in a future release.
>PB-92124: Clicking Admin > Account Configuration > Transaction Settings in the Sender part of the New User Experience enables you to scroll down to a Sender setting called Enable screen-reader accessibility for all new transactions. The link at the end of that setting's description is currently broken.
PB-92211: Changes made to the Accept Only workflow are conflicting with the recently implemented feature No Signature Fields. For a recipient who’s been flagged to review a document on an Accept Only basis, fields should get disabled. The problem is that’s not happening.
PB-91876: When using the Designer, the application crashes if a user tries to simultaneously move fields that are in different documents.
PB-93281: Trying to sign with Swisscom QES (eIDAS) via a Chrome browser on a mobile device triggers a 4xx/internal error. The workaround is to sign in the browser’s incognito mode.

Upcoming Changes

As part of our Rebranding initiative, we will update the watermark logo that appears in signed Signature Blocks.
As of Release 23.R2 (11.51), you will not be able to activate Enterprise Administration’s sub-accounts feature. For customers who are currently using sub-accounts, incidents related to undocumented use cases will be lowered to priority P3 or P4. For priority P1 or P2 incidents related to sub-accounts, we will use commercially reasonable efforts to provide workaround solutions if: (1) the account's use is being impacted operationally; (2) the customer cannot find a root cause of that impact within their own systems; (3) we determine that a solution for the incident does not require new code. We made this decision to focus on creating enhanced account-management features that can be achieved by integrating OneSpan Sign with our new OneSpan Transaction Cloud Platform. Note: In Release 23.R2, customers will still be able to: (1) request the creation of new accounts; (2) obtain help from our Support Team to configure their accounts.
PB-89265: Release 23.R2 (11.51) will improve the performance of the Signer Experience by modifying the rules that govern the fetching of documents. In particular, in some situations the system will fetch an original PDF instead of a flattened PDF. Fetching an original PDF is faster because it’s stored in cache memory, whereas a flattened PDF is always regenerated when it’s fetched.

The following paragraphs describe further details.

Note: As we implemented these changes, we made efforts to preserve callback integrity – i.e., to ensure that customers’ callback integrations will continue to work without modification.

SaaS 2023-Jan: Release 22.R4 (11.49)

What's New

Free Trial

Free Trial of OneSpan Sign: People who are not yet customers can now try our world-class e-signature solution for FREE. The trial lasts 30 days, and permits up to 100 transactions.

Senders

Designer can configure fields numerically: In the Designer, a field’s position and dimensions can now be specified numerically. Using numerical values gives Senders more granular control over the fields they create. This functionality is in a new Layout section of the Designer's right pane.
Easier to distinguish optional vs required fields: In the Designer: (1) optional fields now show with dashed borders; (2) required fields remain with solid borders. This will enable transaction creators to see if a field is optional or required without clicking on it to view its properties.
Can easily identify default checkboxes and radio buttons: Before this release, the default value in a group of checkboxes or radio buttons was visually indistinguishable from the other objects in the group. Now, when a transaction creator slides the default value property to true for a particular checkbox or radio button, that object will appear in the Designer as "selected" (it will have a distinguishing checkmark or dot). Transaction creators can thus quickly identify the default value in such groups.
Easier to select the right fields for conditional logic: When a Sender is configuring conditional logic, and is hovering their mouse over the list of added fields: (1) the Designer now highlights the field being hovered over; (2) a highlighted field is added to the logic when the Sender clicks it.
Improved Keyboard Shortcuts menu: We improved the Designer's menu of keyboard shortcuts. Among other things, the list of available shortcut keys is now "OS-aware" — that is, it's customized to the user's Operating System (e.g., Mac, Windows).
TimeStamps displayed instantly as users sign: Before this release, a timestamp appeared on an applied signature only after the signer confirmed it. Now, a timestamp can appear on an applied signature both before and after the signature is confirmed. This feature is disabled by default. To enable it, please contact our Support Team (or use Admin > Account Configuration > Transaction Settings > Signature Settings).

Developers

Document Extraction supports Mobile Capture: Document Extraction now supports the Mobile Capture method of signing.

Bug Fixes

User Authentication

PB-87103: Fixed an issue in which the area code 948 (Virginia, USA) was not recognized as valid when a recipient entered it as part of their phone number for SMS authentication.

Signer Experience

PB-86077: Fixed an issue in which an inactive signer session expired later than the configured expiry time.
PB-87900: Fixed an issue that concerned PDFs in which signing was complete. The problem was that certain iPhone models displayed these PDFs as blank documents.
PB-85278: Fixed an issue that involved the following sequence of events. (1) A transaction's signing order was turned on. (2) The first signer began signing. (3) Before the first signer had finished signing, the second signer (who was also a Sender, but not the Transaction Owner) tried to accept an Accept Only document. (4) At this point, the system should have presented the second signer with the message: It's not your turn to sign. Instead, it presented them with an Access Denied screen.
PB-87470: Fixed an issue that involved the following sequence of events: (1) a transaction was created via the API; (2) signatures were applied in Accessibility Mode. The problem was that the signatures were not visible when the transaction's documents were reviewed in Accessibility Mode.
PB-87001: Fixed an issue that involved the following sequence of events. (1) Within the Signer Experience, a signer changed a document’s Zoom level to 175%. (2) The signer completed signing, and then reopened the document to review it. (3) The document’s magnification was still 175%, but the displayed Zoom level was 100% (the default value). The displayed Zoom level should have been 175%.
PB-86693: Fixed an issue that involved the following sequence of events: (1) the feature No Signature Fields was enabled in OneSpan Sign BackOffice; (2) a Sender on the account added some required fields to a transaction’s document. The problem was that when a recipient accessed the transaction and viewed the document, the Signer Experience displayed the wrong number of required fields.

Senders

PB-83788: Fixed an issue in which a transaction was cloned from a template that contained a signer with a required attachment. The problem was that the system failed to include the attachment in the new transaction.
PB-87095: Fixed an issue in which the Designer’s vertical scroll bar became "stuck" behind page controls, and was therefore inaccessible. This occurred when the scroll bar became very small because a transaction had many pages or documents.
PB-87556: Fixed an issue in which the ">" symbol in the Designer’s Recipients pane was misaligned.
PB-88183: Removed a deprecated layout option (Display Save) from the Account Setting self-service.
PB-88427: Fixed a grammatical error in the French text of the confirmation window for the action Send Transaction.
PB-87877: Fixed an issue that involved the following sequence of events. (1) A Sender created a transaction with a document that included a Form Field with conditional logic and a Signature Block. (2) The Sender clicked the Clear All button, which removed the Form Field and Signature Block. (3) The Sender added a new Signature Block, and sent the transaction. (4) At this point, the system should have sent the transaction without errors. Instead, it displayed the error message: The field specified in the conditional logic cannot be found.

Account Owners

PB-87916: Fixed an issue that involved the following sequence of events. (1) An Account Owner opened the Manage Delegation dialog box. (2) The owner searched for a Sender, but entered invalid data in the search field. (3) No Senders matched the search criteria. (4) The owner closed and then reopened the Manage Delegation dialog box. (5) At this point, that box should have displayed a list of Senders. Instead, it displayed the error message: There are no senders that match the search criteria.

Developers

PB-87992: Fixed an issue in which the API was used to create multiple roles with the same name. It should never be possible for multiple roles to have the same name.

Accessibility

PB-88060: Fixed an issue that arose if the Account Setting self-service feature was enabled in OneSpan Sign BackOffice. Screen Readers then failed to properly vocalize links that opened a new window.
PB-85832: Fixed an issue that involved the following sequence of events. (1) A Sender assigned the KBA authentication method to the recipient of an accessible transaction. (2) The recipient used a Chrome or Edge browser to access the transaction. (3) On the KBA login page, the recipient failed to answer all questions correctly. (4) The system displayed a suitable error message at the top of page. At this point, the focus should automatically have moved to the top of page. Instead, it scrolled down slightly.
PB-86541: Fixed an issue in which NVDA Screen Readers failed to read the banner beside the Accept button.
PB-86787: Fixed the following issue. When a user focused on the input field that displays the message "Value must be greater than 0", JAWS Screen Readers vocalized the message five times. They should have vocalized the message just once.
PB-87162: Fixed an issue that involved the Signer Experience panel used to upload attachments. The problem was that VoiceOver Screen Readers didn’t read the buttons Next upload and Go to documents separately. Instead, when a user focused on one of these buttons, the Screen Reader read a message that covered both buttons.

In-App Reporting

PB-89179: Fixed the following issue. When a user tried to download multiple In-App Reports, the system delivered a zip file that was empty.

Evidence Summary

PB-87529: Fixed an issue that arose when a PDF of the Evidence Summary was exported to a text file. The problem was that sometimes the text file contained errors (e.g., rogue characters).

Vulnerabilities

PB-76750: We removed an unused component that had formerly been used by our Fast Track feature. Removing that component eliminated potential attack vectors.
PB-87735: In the emails that OneSpan Sign sends recipients, we now escape/sanitize all email variables except $PACKAGE_MESSAGE and the email's Subject line. We've done this to prevent harmful links from being included in recipient-facing emails.

Changed Behavior

PB-87925: Before this release, we verified user-entered area codes against a Phone Number Validation Library. Because this library was seldom updated, our system often flagged new area codes as invalid. To prevent this, we now verify area codes in a more relaxed manner by simply checking their number of digits.
PB-88184: Within the Account Setting self-service, the string "Package Settings" has been renamed "Transaction Settings".

Known Issues

PB-87999, PB-86583: Some text within documents may appear 'broken' or 'pixelated' For example, customers using machines equipped with Intel Iris XE integrated GPU are experiencing these rendering issues when they view PDFs on Chromium-based browsers (Chrome, Edge).
PB-89742: Browsers on iOS 16+ have issues displaying any document whose contents are almost exclusively images (e.g., a PDF generated from a PowerPoint document). This problem is due to changes in the latest iOS 16+ version, so it will need to be resolved by Apple Inc.

Upcoming Changes

Beginning with Release 23.R1 (11.50): (1) Microsoft Windows 8 and Microsoft Windows 8.1 will no longer be supported; (2) Microsoft Windows 11 will be supported. For more information, see Minimum Software Requirements.

SaaS 2022-Oct: Release 22.R3 (11.48)

What's New

Classic Signing Ceremony

Classic Signing Ceremony is fully deprecated: The deprecation of the Classic Signing Ceremony began in Release 11.42. That ceremony's API endpoints have now been deactivated, so integrated users MUST now use the API of the Signer Experience. The Classic Signing Ceremony is now FULLY deprecated.

Signer Experience

Better Electronic Consent workflow: When Change Signer is used, both the original signer and the reassigned signer must now accept the Electronic Consent document. The only exceptions are users who sign via the Personal Certificate Client or a Trust Service Provider. In those cases: (1) if the original signer accepts the Electronic Consent document before changing signers, the reassigned signer will not see that document; (2) otherwise, the reassigned signer will see that document, and must accept it.
Better workflow for pending signatures: When a Sender is also a signer who has a pending signature in a transaction, a Sign icon now appears next to the name of the transaction. Clicking that icon brings the Sender directly into the Signer Experience for that transaction.
Can view full document name on each page: When a document is viewed in the Signer Experience, its name appears at the bottom of each page. When a long name exceeds its allocated space there, the name is truncated with an ellipsis. Thus the last part of such names is not displayed. We have mitigated this limitation by showing the full document name when users hover their mouse over the truncated name.
Can add watermarks to downloaded documents: If a recipient downloads a transaction's documents during the Signer Experience, those documents can be stamped with a customizable watermark that indicates the state of the transaction. The watermark's font, opacity, and position are also customizable. To enable this feature, please contact our Support Team.

Senders

Can override recipients' language specifications: It’s sometimes useful for a Sender to be able to specify the language of the emails and User Interface that a transaction’s recipients will see, even if the recipients have specified other languages. We’ve therefore created a new account-level flag in OneSpan Sign BackOffice and the self-serve settings for Senders. If that flag is enabled, an account’s Sender can specify a transaction's “recipient language” that will override the recipients’ language specifications. Note: This feature is supported in the New User Experience and the API.
Can add fields before Signature Blocks: After selecting a recipient, Senders can now add fields to a document without having added a Signature Block. Once a Signature Block is added, all previously added fields will be attached to it. Note: (1) The fields in question are Form-Building Fields (e.g., Text Fields, Text Areas, checkboxes, radio buttons, drop-down lists, labels); (2) This feature is supported in the New User Experience and the API.
Bulk Send can use large templates: The Bulk Send feature can now accommodate templates that have 300 fields.
More control over the "next document" button: Before this release, the button that takes a recipient to the next document during the Signer Experience might appear anywhere on a page of the current document. To enable more predictability, we’ve created a new account-level flag in OneSpan Sign BackOffice. When that flag is enabled: (1) that button always appears at the bottom of the page; (2) the button’s text can be customized using BackOffice.
Easier to deselect delegates: A delegator can now easily stop the delegation of any of their delegates via the Manage Delegation dialog box, which: (1) lists all the delegator’s delegates; (2) displays a Stop Management button that will stop the delegation of a selected delegate.

Account Owners & Managers

“Account Setting self-service” enabled by default: For all OneSpan Sign accounts (except those created or updated on OneSpan Sign 11.46.x or 11.47.x), Account Setting self-service is now enabled by default for Account Owners and Account Managers. This enables them to immediately configure many BackOffice settings directly from the Sender part of the New User Experience (under Admin > Account Configuration).

Evidence Summary

Evidence Summary records IP addresses from ID Verification: As a user’s identify is being authenticated via ID Verification, their device’s IP address changes. Starting with this release, the Evidence Summary records those addresses.
Better button labels: Before this release, the label for the button that downloads the Evidence Summary was causing confusion in some supported languages. For example, in French it resulted in two buttons with different functions presenting the same label – Télécharger (Download). We removed this confusion by ensuring that the button that downloads the Evidence Summary presents a unique label in every supported language.

Virtual Room

Better video feeds: We increased the size of the Virtual Room's video feed to make it more visible. We also ensured that the system presents only one video feed per participant – i.e., we no longer duplicate the video feed for the person controlling the screen.
Can select hosts from the Designer: From within the Designer, a Sender can now: (1) select the host of a Virtual Room transaction; (2) send the transaction to its participants. Formerly, if a Sender was in the Designer, they needed to return to the Transaction Edit page to do these things.

Accessibility

“Account Setting self-service” is accessible: Account Setting self-service is now accessible, so people with disabilities can configure many BackOffice settings directly from the Sender part of the New User Experience (under Admin > Account Configuration).

Better handling of fields in groups: When fields in a Checkbox Group or a Radio Button Group are added to a document in an Accessibility Enabled transaction, the drop-down list now displays the group name. Users must therefore add the entire group. They can’t add only some of the group’s fields. Similarly, when fields in a group are removed from a document, the entire group is removed.
Autofields are more readable: We enhanced the readability of pre-filled text in the autofields imported to an accessible transaction’s PDFs.

Bug Fixes

Signer Experience

PB-85685: Fixed an issue in which confirming a signature triggered a validation error.
PB-86368: Fixed an issue in which the Download ALL command failed. Such failures occurred because two or more documents had the same name. That situation no longer causes an issue.
PB-86420: Fixed an issue in which a template with conditional logic shared with other accounts could lead to the following error message when signing: Error: Signing order has been violated.
PB-85651: Fixed an issue in which the system failed to send a SIGNER_COMPLETE event notification for a transaction after all its required signatures had been applied.
PB-85044: Fixed an issue regarding signing on mobile devices. The problem was that signers were able to click the Done button before they added a Mobile Signature. This resulted in the system wrongly indicating that a signature had been applied.
PB-84646: Fixed an issue in which users with no Signature Fields in a document were nonetheless on the list of users “required to sign” the document.
PB-83078: Fixed the following issue. The Accept banner (prompt + button) for the Electronic Consent document should have appeared at the bottom of the document. Instead, it "floated" at the bottom of the screen.
PB-84199: Fixed an issue in which the Signature Navigator’s Next button skipped over a required Checkbox Group.
PB-80908: Fixed an in-person transaction issue in which: (1) Signing Order was turned on; (2) the Transaction Owner was the first signer (3) the next signer couldn’t access the transaction until they refreshed the page.
PB-85526: Fixed an issue in which the left-pane Navigation Menu failed to open automatically on touch-screen devices.
PB-87863: Fixed an issue in which an inactive signer session expired earlier than the configured expiry time.
PB-86027: Fixed the following issue. When a signer clicks the link in their invitation email after the associated transaction has been completed, they should be redirected to the Thank You page. Instead, they were redirected to the Overview page.
PB-86611: Fixed the following issue. A user signed all their required Signature Fields in a transaction, but subsequently declined the transaction when viewing the transaction's last document, which had no signatures/approvals for the user. At that point, the system presented the user with the following contradictory messages: (1) Please view attached image (decline.png); (2) The transaction has been successfully completed.

Senders

PB-83421: Fixed an issue in which Bulk Sending operations based on a template failed because the system miscalculated the template’s expiration date.
PB-80750: Addressed an issue in which the system’s email to a Sender failed to include an attachment containing the Evidence Summary and all signed documents. Now when the attachment’s size is more than 7 MB: (1) this type of email will not include the attachment; (2) the Sender can view the transaction’s documents by clicking a link in the email.
PB-82852: Fixed an issue in which a 400 error was thrown when an accessible transaction was being created with Text Anchor extraction.
PB-85547: Fixed an issue in which an error arose when a layout with conditional fields was applied to a transaction with fewer documents and fields.
PB-84954: Fixed an issue in which removing a signer from a transaction failed to remove the conditional logic related to them. This led to an Unhandled Server Error during signing.
PB-84692: Fixed an incorrect German translation of text about the Signing Order.
PB-83151: Fixed the following issue. An error was triggered when a Sender used a Firefox browser to add a Signature Field for a recipient in an accessible transaction.
PB-82888: Fixed the following issue. When the Designer page was viewed in Chromium/Edge browsers, it was missing the "3 dots" that enable the Documents tab to be opened.
PB-84990: Fixed the following issue. In a Word document’s embedded creation date, the month was spelled entirely in lower-case letters. When the document was uploaded to a OneSpan Sign transaction, it was converted into a PDF. The problem was that the first letter of the month's name in the PDF was upper-case (e.g., april became April).
PB-86492, PB-86583: Fixed an issue with the rendering of PDF documents within the application (WebUI). This issue was affecting all browsers.
PB-85034: Fixed the following issue. When users accessed the Manage Delegation screen on a mobile device, long email addresses on that screen failed to display properly.
PB-83439: Fixed an issue in which bounced email was recorded as a bounce not just for the email address in the To field, but also for the email address in Cc field.

Admins

PB-83520: Fixed an issue that was preventing the deletion of roles from sub-accounts.
PB-74822: Fixed an issue that arose when a role in a sub-account was assigned the permission Transaction visibility for delegates, but the parent account had no assigned roles or permissions. In this situation, the system wrongly allowed users without permissions to view the Transactions and Templates tabs.
PB-83936: Fixed the following issue. When a transaction’s JSON was viewed in OneSpan Sign BackOffice, it contained no page attributes.

New User Experience

PB-84926: Fixed an issue in which the Help option appeared in the More Options menu on the User Authentication page, despite the fact that the account-level flag showNseHelp was false.
PB-84289: Fixed a misleading error message that appeared when users who were required to log in via SSO tried to reset their password.
PB-85442: Fixed an issue in which the button Skip to main content didn’t work.
PB-85501: Fixed issues with translations into Chinese (Traditional and Simplified).

Accessibility

PB-70939: Fixed the following issue. WCAG 2.1 requires that the aria-label of a link or control must begin with the associated visual label. This requirement was not fully met.
PB-85782: Fixed an accessibility issue regarding font legibility in the Signer Experience.

PB-83921, PB-83996, PB-83919, PB-83808, PB-83676, PB-83365, PB-81732: Fixed seven issues involving accessible transactions.
PB-81576: Fixed the following issue involving an accessible transaction. After a signer left the Exit Signing Mode banner, the system focused on the wrong part of the screen.
PB-81571: Fixed the following issue. After clicking the Enable accessibility mode button, the focus automatically and wrongly moved to the Accept button.
PB-81562: Fixed the following issue. After a user clicked a Sign button, the Screen Reader failed to provide feedback.

In-App Reporting

PB-79325: Fixed an issue in which the filename of a transaction report changed from “Transaction_Report_2021_11.csv” before it was downloaded to "___________2021_11.csv" after it was downloaded.
PB-86024: Fixed an issue with retrieving the filename of an In-App Report via the API. The API input parameter fileName (with an upper-case “N”) did not work, so we changed the code to make it work.

Callbacks

PB-86972: Fixed an issue in which the system was not forwarding PACKAGE_DECLINED message strings to the Salesforce OAuth2 callback service. Now such messages are always forwarded.
PB-81969: Fixed the following issue that arose when the signer is also aOneSpan Sign Sender – a Callback Notification recorded the wrong ID in the sessionUser field.

Vaulting

PB-80732: Fixed an issue that was preventing documents from being registered via OneSpan’s e-Vault Manager Console.

Technology Updates

PB-85399: Before this release, OneSpan Sign used a Windows-based program to convert documents from one file format to another. To improve font substitutions, OneSpan Sign will now use a Linux-based converter for all supported languages. Note: Some fonts may convert differently in OneSpan Sign 11.48 than they did in OneSpan Sign 11.47.

Known Issues

PB-85089: Within the New User Experience, we are hiding the permission Manage users' transactions, templates, layouts (API). New clients will never see this permission. If a Sender has this permission today: (1) they can continue to use it; (2) they will no longer be able to see in the New User Experience if they or any other Sender has this permission. If a client wants to enable or disable this permission for a Sender, they must contact our Support Team.
PB-89179: When an authorized user tries to download multiple In-App Reports, the download is delivered as a zipped file. That file should contain those reports, but instead is empty. The workaround is to download each report individually. This issue will be resolved in Release 22.R4 (11.49).
PB-86077: An inactive signer session takes longer to expire than the configured time if that time is more than 1800000 ms (30 minutes). This issue will be resolved in Release 22.R4 (11.49).

SaaS 2022-Aug: Release 11.47

What's New

Senders

Can create standalone co-browsing sessions: When this new feature is enabled on a transaction, a signer can ask the sender to arrange a co-browsing session for the transaction. The signer must provide their telephone number and preferred contact time, and they may add a comment. The API then transmits this information to the sender via an event notification. The sender can then arrange a co-browsing session with the signer. Note: (1) This is a paid feature. To purchase it, please contact our Sales Team. (2) This feature must be activated for your account. To activate it, please contact our Support Team.
Standalone co-browsing requests have timezone labels: When a recipient makes a standalone co-browsing request, a timezone now appears for each "possible callback time" they select. Timezones are also displayed to the sender and other recipients of the transaction. Providing all participants with this information avoids misunderstandings about when the co-browsing session will take place.
Can configure many BackOffice settings: Before this release, many Account, Feature, Package and Signing settings had to be configured by our Support Team, using OneSpan Sign BackOffice. Senders can now configure these settings directly from the Sender part of the New User Experience. Note: (1) These "self-serve" settings include most of BackOffice's Account, Feature, Package and Signing settings that are Boolean and non-paid. (2) Senders can access these self-serve settings under Admin > Account Configuration. (3) This feature is enabled by default for Account Owners and Account Managers. To change this feature's configuration, please contact our Support Team.
Improved guidance on ID Verification: We improved our guidance to senders on how to configure ID Verification. In particular, senders now see the following message: The First Name and Last Name that you enter for the recipient must match those that appear on the ID document that the recipient will upload for ID Verification.

Signer Experience

External signers can have same name and email: Different external signers can now have the same first name, last name and email address. This possibility was developed to accommodate those rare cases in which relatives or spouses share the same name and email address. This option is disabled by default. It can be enabled by our Support Team using BackOffice, or by Senders using their Account Configuration page. Note: "External signers" are signers who do not have an email account attached to a Sender or other OneSpan Sign role. This feature applies only to external signers.

Accessibility

Enhanced zoom buttons: Formerly, tooltips for the zoom buttons in the Signer Experience did not specify if the buttons zoom in/out of the current document, or in/out of the entire screen. That ambiguity has been removed, since those tooltips now say Zoom into the document and Zoom out of the document. In addition, the button that zooms in now supports higher magnifications (up to 400%).

Evidence Summary

Transaction status more visible: A transaction's Evidence Summary now records the transaction's status.

SMART Docs

SMART Doc Audit Trail logs 'unpopulated' events: The Audit Trail for SMART Docs now logs unpopulated events. This functionality was required for Freddie Mac to consider OneSpan an authorized vendor of the eClosing process.

Bug Fixes

Signer Experience

PB-83384: Fixed the following issue. When trying to confirm signed documents (accessible or not), the Confirm button sometimes failed to respond when it was clicked. This occurred only if the name in one of the documents' Signature Fields contained a period (.).
PB-74520: Fixed an issue in which signers encountered the error message "The field’s value is too long", even if only one character was entered in a Text Field. This issue occurred only when the associated transaction was prepared via the API or an SDK. It occurred because the system was misinterpreting the meaning of the values 0 and NULL for the maxLength property of Text Fields. Going forward, 0 and NULL will mean 4000, which is a Text Field’s maximum permissible value.
PB-79425: Fixed the following issue. In an in-person transaction, the message "Please pass the controls back to the host of this transaction" was confusing when the host had just finished signing. We changed this message to "Click the button below to continue the transaction".
PB-83007: Fixed an issue in which a signer using the Uanataca Trusted Service Provider could not apply multiple signatures to a transaction's multiple documents.
PB-84021: Fixed an issue in which signing via the Uanataca Trusted Service Provider failed in the US1 Production environment.
PB-81257: We had received some complaints about the legibility of placeholder text in the Signer Experience. We fixed this issue by increasing the font size and weight of that text.

Senders

PB-79838: Fixed an issue that involved searching for a transaction by date in the sender part of the New User Experience. The sender entered a date in the From field, and then pressed TAB to place their cursor in the To field. The problem was that doing so cleared the sender's entry in the From field.
PB-78637: Fixed an issue involving the tooltip for the info icon on the Designer page. After a user collapses a tooltip by pressing the ESCAPE key, they should be able to expand it again by pressing the ENTER key or the Spacebar. The problem was that after the user collapsed this tooltip, expanding it again required navigating away from the icon and then back to it.
PB-82017: Fixed the following issue, which occurred when an account’s Roles and Permissions feature was enabled. A user encountered an "unauthorized access" error when they tried to access the Signer Experience as a sender via a Fast Track URL.
PB-80511: Fixed the following issue, which occurred when an account’s Roles and Permissions feature was enabled. A user encountered an "unauthorized access" error when they tried to access the Signer Experience as a sender via an email link.
PB-83688: Fixed an issue that arose when a signer repeatedly failed to authenticate themselves via ID Verification, and was locked out of a transaction. When the sender subsequently viewed that signer’s status in the New User Experience, they should have seen a “locked signer” icon. The sender could then interact with that icon to unlock the signer, and resend the transaction. The problem was that the icon was not appearing, so the signer could not be unlocked.

Developers

PB-81184: Fixed the following issue that involved our Digital Mortgage and Digital Lending solutions. Once the effort to store a document in an e-Original vault suffered a non-recoverable error, no email notification was sent to the transaction sender. Senders now receive emails about such failures.
PB-85688: Fixed the following issue. After the failure of a developer's request for a transaction, the system changed the transaction’s status from SENT to DRAFT.
PB-85045: Fixed the following issue. Between the 11.45 and 11.46 releases of OneSpan Sign, a change caused the font size of text inserted via Field Injection to shrink. The 11.47 release has restored the functionality of the 11.45 release. As a side effect of this fix, when a signed document is viewed in the application after signing is complete, some content in a Text Area might appear to be truncated. Note that this rendering behavior in our application does not affect the associated PDF’s actual content. The PDF contains the full text content, which displays properly when the PDF is viewed in a standard PDF viewer. We recommend that any problematic templates or layouts created in the 11.46 release be: (1) edited to adjust the font size to the Text Area; (2) saved again.

User Authentication

SAA-12609: Formerly, when a recipient was authenticating their identity via ID Verification, the following message appeared on the "Capture Image" page: If this page doesn't go away after you finish capturing your images, click NEXT. That message was wrong. It has now been replaced by the following message: If this page does not refresh after you have taken all requested pictures, click IMAGE CAPTURE COMPLETE.
PB-80302: Fixed an issue in which a sender configured Q&A Authentication so that the answers typed by the recipient would be visible to the recipient. The problem was that the typed answers were masked.
PB-79541: Fixed an issue in which the Phone Number page was displayed twice to a recipient during ID Verification.
PB-85687: Fixed the following issue, which occurred when the following features were enabled for an account: (1) Roles and Permissions; (2) SAML; (3) Auto-Provisioning. A new user in the account was assigned Single Sign-On Authentication (SSO), and their third-party Identity Provider assigned them a specific role. When that user subsequently logged into OneSpan Sign for the first time via SSO, they should automatically have been assigned that role. The problem was that this didn’t happen.

In-App Reporting

PB-82588: Fixed an issue in which downloaded Account Reports were empty. This issue occurred only in Sandbox environments.
PB-77375: Fixed an issue in which the Download button for Transaction Reports failed when only one report was selected for download. A single report can now be downloaded.
PB-85129: Fixed the following Transaction Reports issue. In rare cases, an erroneous value appeared in the Signer Status column (e.g., CURRENT_SIGNER or FUTURE_SIGNER appeared instead of COMPLETED).

Accessibility

PB-80643: Fixed the following issue involving an accessible transaction. Upon signing, a signer encountered an error message which correctly reported that the signer had failed to interact with a required field. The problem was that the link in that message did not take the signer to the required field.

Audit Trail

CAPA-111: Fixed a clock-synchronization issue that could cause events in an Audit Trail to appear out of order.

Performance

PB-81784: Fixed an issue in which certain race conditions were causing deadlocks.

Technology Updates

PB-78771: We have migrated the OneSpan Sign Document Converter from Windows Virtual Machines to Linux containers. For the next few releases, every environment will run two converters in parallel — one on a Windows VM, the other in a Linux container. The Windows VM will continue to convert documents, just as before. The Linux container will do "mock conversions" of the same documents, while simultaneously logging processing information in log files. This strategy will enable us to study those logs to determine when we should switch over to using Linux containers alone. TIP: We strongly recommend that during this evaluation period, customers embed in their documents any fonts that are not supported by OneSpan Sign. A list of the fonts supported by OneSpan Sign can be found in our Supported Fonts section. The procedure Using PDF/A Documents describes how to create a PDF with embedded fonts from a Word document.
PB-84027: On October 1, 2022, Microsoft will begin removing the ability to use Basic Authentication in Exchange Online. OneSpan Sign relies on Microsoft Exchange to send outgoing email messages to signers. Accordingly, we have modified our code to enable its Java Mail library to use OAuth 2.0 token-based authorization. For more information, including a description of actions we advise you to take, click here.

Known Issues

PB-83687: The following sequence of events has created an issue. (1) A transaction template is created that adds a placeholder recipient, and assigns that recipient ID Verification. (2) A sender creates a transaction from that template, but replaces ID Verification with SMS authentication for an actual recipient. (3) The sender adds KBA authentication for the recipient, and sends the transaction. When the recipient accesses the transaction, they should be assigned only two authentication methods (SMS, KBA). Instead, they’re assigned all three methods (ID Verification, SMS, KBA).
PB-86988: When a transaction’s multiple documents are viewed in a Chrome browser, the second document has no Signature Blocks. This is due to a recent change in how Chrome manages cookies. Effective workarounds include: (1) using another supported browser (e.g., Firefox); (2) closing and reopening the Signer Experience. This issue will be fixed in an upcoming release.
PB-83928: Swisscom AIS is failing to sign any document whose name contains one or more non-Latin characters. This impacts the following supported languages: Arabic, Greek, Japanese, Korean, Russian, Simplified Chinese, and Traditional Chinese.
PB-86778: When a user searches for a transaction in the Sender part of the New User Experience, the system mistakenly returns no results. The workaround is to: (1) press Clear; (2) search again. This issue will be resolved in Release 22.R3 (11.48).

SaaS 2022-Apr: Release 11.46

What's New

Senders

Can create conditional logic on optional signatures: It is now possible to create conditional logic rules based on optional signatures. Specifically, when a sender creates a transaction, they can specify certain rules to be triggered when a signer signs an optional signature.
Can set new rules for Checkbox Groups: Senders can now configure the following validation rules for a Checkbox Group: (1) At least (enforces a minimum number of boxes to be checked for the group); (2) At most (enforces a maximum number of boxes to be checked for the group); (3) Exactly (enforces an exact number of boxes to be checked for the group); (4) Range (enforces a minimum and maximum number of boxes to be checked for the group).
Can download Evidence Summary & documents together: Senders can now download a transaction’s documents and its Evidence Summary together in a zipped file. Formerly, they had to download the Evidence Summary and documents separately.
Can download Evidence Summary for incomplete transactions: Enabled the Evidence Summary to be downloaded from the sender part of the User Experience, even if the associated transaction is not completed. Note: This feature must be enabled per account, and is OFF by default. To activate it, please contact our Support Team.
Better handling of large download files: Formerly, senders couldn’t receive an email with a completed transaction’s documents and/or Evidence Summary if the associated attachment was larger than 10 MB. If the attachment exceeds 10 MB, the sender now receives an email with a download link that will direct them to the relevant Transaction Details page. There, they can download the transaction’s documents and Evidence Summary in the usual way.
Senders are warned of visibility issues: When a sender chooses a primary Branding color or an Alert color that has a low contrast ratio, the following warning message now appears: This color might cause visibility issues.

Signer Experience

Can apply QES with Swisscom: Qualified electronic signatures (QES) can now be applied via Swisscom within the jurisdictions of eIDAS and ZertES. This integration with Swisscom: (1) on-boards new signers quickly and easily; (2) improves the User Experience when documents are signed with QES. Limitation: This feature is not yet available in all supported languages.

Developers

SDK can add signature images: The SDK can now be used to add Image files as signatures in documents.
Enabled new rules for Checkbox Groups: New validation rules for Checkbox Groups are described in the What's New > Senders section above. To successfully implement these rules, we needed an RHF library (react-hook-form.com). This in turn required us to change the syntax of our Field IDs. Field IDs are now “sanitized” by replacing all special characters with alphanumeric characters. Please take this into account if you are testing OneSpan Sign’s User Experience through an automated UI test framework such as Selenium (www.selenium.dev).

Virtual Room

Host can extend a session indefinitely: The host can now extend a Virtual Room session any number of times. Before this release, a Virtual Room session could be extended only once.
Host can close a session: The host can now close a Virtual Room session via an option in the More actions menu.
Signers can review documents before a session: Signers can now review the documents associated with a Virtual Room transaction before a Virtual Room signing session. Specifically, signers can click a new Review button in the Virtual Room’s waiting room. Clicking it takes a signer to the documents, which can be reviewed but not yet signed. Once the host starts the Virtual Room session, the signers are admitted to the session, and documents can then be signed.
Notifications sent when videos are downloadable: Added an API Event notification that is sent when a Virtual Room video recording is ready for download.
Better mobile experience: We improved the mobile experience of Virtual Room sessions. Note: This is a work-in-progress that future releases will continue to improve.

Evidence Summary

Can store a signer's geolocation: Enabled the system to gather a signer’s geolocation from their browser information, and store that geolocation in the Evidence Summary document. Note: (1) signers can configure their browser to block it from providing their geolocation; (2) this feature is enabled via a setting in OneSpan Sign BackOffice.

eOriginal

Notification sent if an eDeposit fails: Customers are now notified if an attempt to eDeposit their documents in an eOriginal vault has failed.
Cannot download authoritative copies: Users are now prevented from downloading authoritative copies of documents that will be deposited in eOriginal vaults. If they try to do so, they will end up downloading non-authoritative copies that are watermarked and flattened.

Bug Fixes

Signer Experience

PB-80810: Fixed a Signer Experience issue in which Firefox 96 prevented signers from signing.
PB-80838: Fixed the following issue. If radio buttons were added as required fields, a bug affected the Required Actions counter in the upper-right corner of the Signer Experience. In particular, selecting a radio button failed to increment the "completed actions" counter of the Required Actions widget (i.e., the "x" in "Required Actions x of y").
PB-79623: Fixed an issue in which the system presented the Capture Signature dialog box to a signer multiple times, thus enabling them to apply different signatures in the same document. Instead, the system should have applied the signature it first captured to all the signer's Signature Boxes.
PB-80806: Fixed an issue in which the system truncated the image of a captured signature if the signature had been captured on a mobile device; and the image was retrieved via an API call.
PB-78788: Fixed an issue in which the user was getting a blank screen on their mobile device when they tried to access a transaction that required their Mobile Signature.
PB-80811: Fixed an issue in which Signature Fields appeared in wrong places when documents were previewed in the Web UI via the "eye" icon.
PB-82274: Fixed the following issue. When a signer had multiple Capture Signature fields in a document of an e-Notary transaction, an error occurred in the following situation. If the signer drew their signature in one of those Capture Signature fields, and then uploaded a signature image using the "Capture Signature from file" option, the system failed to place the drawn signature in all the signer’s Capture Signature fields.

Senders

PB-78448: Fixed an issue in which a shared template could not be seen by anyone except the sender who created it.
PB-76293: Fixed the following issue. After a sender deleted all transactions on the second page of listed transactions, they saw no transactions. Instead, the sender should still have seen the transactions on the first page.
PB-80510: Fixed an issue that sometimes triggered an error when a conditional logic rule was being created for a transaction in which the Transaction Owner was also a signer.
PB-78452: Fixed an issue that arose when the system imported fields from an accessible transaction’s PDF. The problem was that the names of fields in a drop-down list in the sender part of the User Experience had been changed from the fields' original names in the PDF.
PB-78481: Fixed an issue in which special characters (e.g., apostrophes, double quotes) were rendered with a "Z0" prefix in the Field Import drop-down list when accessible transactions were being created.
PB-78893: Fixed an issue in which the system failed to send email reminders that had been configured in a transaction template.
PB-78169: Fixed an issue in which reminder emails were sent after a transaction was complete, but optional signatures had not been signed.

User Experience

PB-78245: Fixed an issue in which the More actions menu was disabled for transactions, but subsequently appeared on user-authentication pages.
PB-78166: Fixed incorrect Japanese translations of text in the product's Terms and Conditions.
PB-78052: Fixed an issue in which the system presented a 403 error to a delegated user when they tried to view a delegated transaction.

Account Owners & Admins

PB-79434: Fixed an issue that prevented groups from being created when sub-accounts were enabled.
PB-61105: Fixed an issue in which the system threw an error when a user tried to create a group in a sub-account.
PB-60392: Fixed an issue in which a sub-account user could not be deleted.
PB-77955: Fixed an issue in which a 401 error appeared if a user requested an API token for a sender whose email address had the same suffix as the email address of another sender in the same account.

Developers

PB-80323: Fixed the following issue. When a developer injected text fields in a PDF document, the JSON payload specified a font size for the injected fields. The problem was that the system failed to apply the specified font size to those fields.

Evidence Summary

PB-79270: Fixed an issue in which the Evidence Summary failed to record a user’s remote signing of an in-person transaction.

Data Retention

PB-79004: Fixed an issue in which transactions sometimes failed to expire on their configured expiry dates.

Accessibilty

PB-75886: Fixed an accessibility issue in which Screen Readers read a banner about cookies every time they focused on a Close button or an OK, I agree button.

eOriginal

PB-79122, PB-78928: Fixed an issue in which our Digital Mortgage or Digital Lending workflow failed to trigger the eDeposit of documents in an eOriginal vault.

Vulnerabilities

PB-61589: Mitigated a vulnerability in which OneSpan Sign session cookies were set with a redundant "secure;" attribute.
PB-72042: Mitigated a vulnerability in which multiple Oracle patches were missing. We applied the latest Oracle patches to the affected areas.
PB-79609: Mitigated the CVE-2021-42575 vulnerability by upgrading the OWASP Java HTML Sanitizer library to version 20211018.2.
PB-80502: Mitigated log4j vulnerabilities by upgrading each affected library to version 2.17.1 of the Log4j Core library.
PB-79017: To remove vulnerabilities, we: (1) upgraded the libraries velocity-1.7.jar and jstl-1.2.jar; (2) removed the library plexus-utils-1.5.6.jar from the OneSpan Sign Application Backend.

Performance Improvements

PB-75685: Improved the Signer Experience’s performance by disabling image rendering. Image rendering has not been needed since we deprecated the Classic Signer Experience.
PB-79926: Improved the Signer Experience’s performance by improving Front End algorithms.
PB-75902: Improved the User Experience's performance by implementing document-caching techniques.

Changed Behavior

PB-79665: Changed the system’s Data Retention behavior so transactions are deleted the day after the date on which their retention is due to end.
PB-77813: We modified the behavior of groups of radio buttons. Now if a radio button from a group is marked as required, the entire group is marked as required. These requirements are nonetheless satisfied when a single button from the group is selected.
PB-78887: Changed the Evidence Summary's encoded hash for a Virtual Room video recording from a base-64-encoded hash to a plain-text MD5 hash. The latter is easier to decrypt.
PB-78682: To ensure compliance with ADA standards (WCAG 2.1), we now warn senders when their chosen primary Branding color or Alert color has a low contrast ratio. Such warnings also enable senders to prevent the disappearance of UI components due to a color conflict (e.g., white alerts on a white background).
MAIN-6598: When a signer session expires, in certain environments the signer used to be redirected to OneSpan Sign’s Login page. Now, in all environments the signer is redirected to an error page that states their session has expired.

Known Issues

PB-84003: An issue arises in the following circumstances: (1) Senders A and B are members of the same sub-account; (2) Senders A and B are each other’s delegates; (3) Sender A creates a template in the sub-account. When Sender B is subsequently in the sub-account, and is acting as a delegate for Sender A, they should be able to see the new template. However, they can’t. A workaround is for Sender B to re-select the sub-account from the Accounts menu. They can then see the new template.
PB-74520: Suppose an API user creates a transaction, and specifies the value '0' for the maxLength parameter on Text Fields. If a signer subsequently enters any amount of text into a Text Field, it will trigger the following error: The field's value is too long. This issue will be fixed in an upcoming release. Meanwhile, the workaround for API users is to exclude the maxLength parameter from the payload. This issue does not affect SDK users.
PB-80669: Sometimes an account owner with the User Management permission cannot delete other users from their account. Recent code changes mean that deleting other users now requires both the User Management permission and the Roles permission. A sufficient workaround is to assign the account owner the Admin role (via OneSpan Sign BackOffice).
PB-82567: Giving a group of checkboxes and a group of radio buttons the same name causes errors in the Signer Experience. The workaround is to ensure that these different kinds of groups have different names.
PB-82023: Windows Explorer is the default file-compression application for versions 10 and 11 of Microsoft Windows. A bug or limitation in Windows Explorer is preventing users from viewing the content of the EslTransactionsPIIReport file created by the Schedule Reports feature of OneSpan Sign BackOffice. This problem can easily be mitigated by using a third-party file-compression application such as 7zip or winrar.
PB-82852: When trying to create an accessible transaction, an "HTTP 400 Bad Request" error occurs if the parameters Stop Image Rendering and Extract Text Tags are both enabled in OneSpan Sign BackOffice. This issue will be fixed in an upcoming release.
PB-83384: When trying to confirm signed documents (accessible or not), the Confirm button sometimes fails to respond when it's clicked. This occurs only if the name in one of the documents' Signature Fields contains a period (.). The functionality of the Confirm button can easily be restored by refreshing the browser.
PB-83688: This issue arises when a signer repeatedly fails to authenticate themselves via ID Verification, and is locked out of a transaction. When the sender subsequently views that signer’s status in the User Experience, they should see a “locked signer” icon. The sender can then interact with that icon to unlock the signer, and resend the transaction. The problem is that the icon is not appearing, so the signer cannot be unlocked.
PB-83742: Signing a document on Windows 11 via PCC with a soft certificate sometimes causes a Personal Certificate Client Error. The document cannot be signed because the certificate selected for this purpose is invalid. If this happens, please select a different certificate and try again.
PB-83815: When signed documents are viewed using the PDF Preview feature of Firefox or a Chromium-based browser, the browser may fail to correctly render certain components (e.g., a cross in a checkbox). If this happens, please view the document using Adobe Reader/Acrobat Pro.
PB-84199: An issue arises when the Signature Navigator has been configured to iterate through a document’s checkboxes. The problem is that it skips over checkboxes if they are in a Checkbox Group.
PB-84341: If a signer has been assigned the SMS authentication method, using a Safari v13 browser with iOS 13 crashes the signing process. The error message that appears is Unhandled Server Error. As a workaround, signers can do any of the following: (1) use a different browser; (2) upgrade to a higher version of Safari; (3) upgrade to a higher version of iOS.
PB-84954: An issue arises in the following circumstances: (1)a template is created with multiple signers, one of whom is assigned Conditional Fields; (2) a transaction is created from the template, and the signer with the Conditional Fields is removed; (3) the transaction is distributed for signing; (4) a signer completes their portion, and clicks Confirm. At this point, an error message appears. This issue will be fixed in an upcoming release. Meanwhile, the workaround is to: (1) manually delete the relevant document from the transaction; (2) add the document to the transaction again; (3) redistribute the transaction for signing.

SaaS 2021-Dec: Release 11.45

What's New

Signing Ceremony

More user-friendly Cookie Policy: Signers who have accepted the Cookie Policy once will no longer be prompted to accept that policy when they access the Signing Ceremony again. Note: (1) the Cookie Policy Consent Agreement is browser-specific; (2) a prompt to accept the Cookie Policy will reappear if the signer clears their browser cache, or if they access their browser window in Incognito/Private mode.

Virtual Room

Delegates can host meetings: Delegates can now act as the host of a Virtual Room meeting.
Hosts can see attachment numbers: During a Virtual Room meeting, the host can now see how many attachments the sender asked each recipient to upload.
Senders reminded that videos will be deleted: Email notifications will now be sent to the sender of a completed Virtual Room transaction to remind them that the transaction’s Video Recordings will soon be deleted. These reminders will be sent: (1) three days before the recordings are deleted; (2) one day before the recordings are deleted.

In-App Reporting

Reports have more ID Verification info: Transaction Reports now contain more information about transactions that have ID Verification enabled. For each ID Verification attempt in a transaction, the reports now record: (1) if the attempt was for Document Verification Only or Document Verification with Facial Comparison; (2) if the attempt succeeded or failed ; (3) the signer's unique identification number (signer uid).

Developers

SDKs can manage Checkbox Groups: SDKs can now be used to manage (e.g., create, update) Checkbox Groups.

Bug Fixes

Signing Ceremony

Accessibility

PB-76252: Fixed an accessibility issue in which the NVDA Screen Reader failed to read the Enable accessibility mode button when signers tabbed to it.

PB-76623: Fixed the following issue. After using the keyboard’s arrow keys to navigate to the Next button on the Reassign Recipient screen, the NVDA Screen Reader read the text for two buttons (Next and Cancel).

PB-76625: Fixed the following issue. After using the keyboard’s arrow keys to navigate to a single button on the Signature Capture screen, the NVDA Screen Reader read the text for all that panel's buttons (Clear, Cancel and Done).

PB-77993: Fixed an issue in which an Unhandled Server Error occurred when a signer switched to Accessibility Mode.

In-Person Transactions

PB-77012: Fixed an issue in which the Enter key became disabled after an incorrect SMS passcode was entered for an in-person transaction.
PB-77018: Fixed an issue in which the Signer Locked Out page failed to appear after a signer repeatedly failed SMS authentication in an in-person transaction.

Other

PB-77728: Fixed an issue in which a document could not be accessed if it had a Checkbox Group whose name contained a period.
PB-77173: Fixed the following issue, which occurred when the Overview page was enabled. After External Signer Verification was successful, the system presented an unexpected signing flow.
PB-76567: Fixed the following issue. If a signer dismissed an error banner on a document during a Virtual Room session, the system automatically scrolled to the top of the document.
PB-76013: Fixed the following issue. If OFAC Blacklist was enabled on a sub-account, an error was thrown when a signer tried to access a transaction created in that sub-account.
PB-76086: Fixed the following issue. When a delegate tried to capture their signature from a file, the system failed to properly process their registered signature image.
PB-76670: Fixed an issue in which the feedback bar failed to minimize to the top bar when the signer scrolled down to other pages of a document. This occurred when the New Signer Experience was accessed within an iFrame from a mobile device.
PB-76690: Fixed an issue in which the feedback bar displayed incorrect information when the BackOffice settings for the relevant account: (1) enabled conditional fields; (2) configured the Signature Navigator to iterate through all the fields in a document (both required and optional).
PB-76830: Fixed an issue in which the signature button’s background color was changed to white, but the button’s font color did not respond to this change. The font color remained white, so the button’s caption became invisible.
PB-77359: Fixed an issue in which characters entered in very small Text Fields or Text Areas failed to appear in the New Signer Experience. Note: This problem has never occurred in the Classic Signing Ceremony.
PB-78194: Fixed the following issue. Signatures associated with an auto-field (e.g., signing date) were applied within a document. The problem was that these signatures were rendered invalid by the subsequent application of a Capture Signature in the document.
PB-77810: Fixed an issue in which the Signing Ceremony failed to reflect a label field’s specified font size.

Senders

Designer

PB-77843: Fixed an issue in which the following error message appeared when a sender tried to delete documents from the Designer: Something went wrong and your request could not be completed. Please try again.
PB-77069: Fixed an issue in which some uploaded PDF files could not be viewed in the Designer from a Chrome browser.

Other

PB-76530: Fixed an issue in which the Success message was displayed for a Bulk Sending operation, but the system failed to process the sent transactions.
PB-77639: Fixed the following issue, which occurred when an account’s Roles and Permissions feature was enabled. A sender's permissions were by-passed when they created a transaction. This occurred because the system validated the sender's access only by checking their user type, which was Manager.
PB-73499: Fixed an issue in which the system seemed unable to apply a layout to a transaction.
PB-72456: Fixed the following issue, which occurred when a transaction required the sender’s signature. The Info icon failed to appear next to the transaction in the Dashboard's Recent Transactions list.
PB-74349: Fixed the following issue. When a Transaction Owner previewed a document that was part of a transaction in the state SENT, a Document View callback notification was wrongly triggered, and a Document View audit event was wrongly logged.
PB-75294: Fixed an issue in which the Preview panel in the sender part of the New User Experience failed to display a logo that a sub-account had inherited from its parent account.
PB-77194: Fixed some Japanese translations that confused senders who were trying to create or manage transactions.

Developers

PB-76585: Fixed an issue in which the system failed to replace the variable $PACKAGE_OWNER_NAME with the name of the Transaction Owner in the Bulk Send Completed email (email.bulk.send.completed).

PB-77900: Fixed an issue in which the API was used to create a template with the same name as an existing template.

PB-64815: Fixed an issue in which customers were able to send our system an incorrect AccountUID via the API.

Account Owners & Admins

PB-77560: Fixed the following issue. After an account was canceled, the system failed to delete the associated CMK (Customer Master Key).

PB-77745: Fixed an issue in which SSO auto-provisioning would not work if the user attributes accountid and role were not specified.

Virtual Room

PB-77875: Fixed an issue in which the system failed to create a Video Recording file for a Virtual Room meeting if the meeting being recorded timed out.

In-App Reporting

PB-76524: Fixed an issue in which a user with the Reports permission could not access Transaction Reports or Account Reports about their account.

Changed Behavior

PB-77005: It is no longer possible to save layouts that have masked fields.
PB-77808: The new buttons Review, Sign and Join may now appear on the Transaction Details page for Virtual Room transactions. Clicking the Review button takes a reviewer to the transaction’s Signing Ceremony. Clicking the Sign button takes a signer to the transaction’s Signing Ceremony. Clicking the Join button takes the user to a Welcome page that provides an overview of the transaction.

Known Issues

PB-78762: When a “Make required” or “Make optional” condition has been configured for a Signature Field in a document, and that condition changes after a different signer has confirmed the same document, there is an issue with that Signature Field in the resultant PDF.
PB-79423: When a signer has enabled accessibility mode, and then views a document, some of the document’s fields (e.g., text boxes, checkboxes) may extend beyond the document’s right edge.
PB-79517: When senders view the Field Settings panel, they cannot see all of a checkbox’s settings at once if their computer’s display has been scaled to more than 125%. Until this issue is fixed, the workaround is to zoom out.
PB-82274: When a signer has multiple Capture Signature fields in a document of an e-Notary transaction, an error occurs in the following situation. If the signer draws their signature in one of those Capture Signature fields, and then uploads a signature image using the "Capture Signature from file" option, the system will fail to place the drawn signature in all the signer’s Capture Signature fields. This issue will be fixed in OneSpan Sign 11.46.

SaaS 2021-Oct: Release 11.44

What's New

Virtual Room

Added video recording: Video recording is now possible for Virtual Room transactions. Note: (1) Video recording is available only for Virtual Room transactions, and must be turned on for an account. To turn the feature on, please contact a Sales representative. (2) The transaction host can turn the recording on and off during signing sessions. If a recording is paused and then resumed during a single session, a single video will be created at the end. If there are multiple signing sessions, multiple videos will be created for the transaction. (3) Processing of the videos is done after the transaction is completed, and may take up to an hour. The recordings will be available on the Transaction Details page in the sender part of the New User Experience. (4) Each video will consist of composed audio and video tracks of all participants. (5) Recordings will be deleted seven days after their creation, so senders must download and store the recordings before then.
Added info in the Evidence Summary: If a transaction is a Virtual Room transaction, the Evidence Summary document now: (1) shows the Transaction Type; (2) stores Virtual Room actions.

Enterprise Administration

Sub-account actions for API users: An API user with suitable account and user permissions can now: (1) retrieve a given user’s roles in one or more sub-accounts; (2) assign one or more roles in a sub-account to a given user. Both these API procedures require the following prerequisites: (1) sub-accounts must be enabled for the account via BackOffice; (2) the API user must have access to the API via their own API key; (3) the API user must have the User-Management permission on the sub-account.

User Authentication

Support for a second authentication method: Formerly, if ID Verification was assigned to a recipient, another authentication method could not be assigned to that recipient at the same time. Starting with this release, ID Verification and KBA Authentication can both be assigned to a recipient. To access the relevant transaction, the recipient must pass both authentication methods.
Display of remaining ID Verification attempts: Each non-final time that a recipient tries and fails to authenticate themselves via ID Verification in order to access a transaction, a screen now shows them the number of remaining permitted authentication attempts they have.

Signing Ceremony

Added support for Arabic: Added support for the Arabic language in the New Signer Experience. This includes support for right-to-left word wrapping in Text Area fields. Arabic is not yet supported in the sender part of the New User Experience. Known issues: (1) watermarks in Arabic are not yet fully working; (2) new lines entered in Text Area fields appear as a "?" in the Evidence Summary document.
Improved accessibility flow: Enhanced accessibility flow by ensuring that navigation to a subsequent document takes the signer directly to the document instead of to the top menu.
Improved document accessibility: A Go to document shortcut is now available for all transactions (accessible and non-accessible). It redirects users to the transaction's main document.

Senders

Added support for groups of checkboxes: Senders can now create a group of checkboxes. If the sender sets any checkbox in a group as required, then during signing the signer must select at least one member of the group. Note: (1) Conditional logic on a group of checkboxes is not supported. (2) SDK support is not yet available. It will be added in a future release. (3) Extraction is not yet available. It will be added in a future release. (4) This feature is not yet 100% ADA compliant. This will be added in a future release. (5) Periods (".") are not currently supported in Checkbox Group names. This issue will be resolved in a future release.
Full display of long messages: The window on the Transaction Details page that contains the message sent to recipients now expands if the message exceeds that window's default size. This ensures that senders can see the entire message.

Bug Fixes

Signing Ceremony

In-Person Transactions

PB-75437: Fixed an in-person transaction issue in which a subsequent signer's Capture Signature was not reset after the signer clicked Undo, and tried to sign again.
PB-70667: Fixed an issue in which an in-person transaction host who was not the Transaction Owner could access the Transaction Edit page after the transaction was declined. Now for such hosts: (1) the Done button is hidden on the Transaction Declined page; (2) they must select Exit Signing to exit the Signing Ceremony, at which point they are redirected to the Dashboard.
PB-76187: Fixed an issue in which the Transaction Owner couldn’t access the in-person Thank You page when auto-redirect was enabled for the Handover URL.
PB-76795: Fixed an issue in which the SMS verification prompt failed to appear to a signer in an in-person transaction when the Second In-Person Affidavit was disabled.

Accessibility

PB-70964: Fixed an accessibility issue in which Screen Readers failed to automatically read the Cookie Policy screen.
PB-58816: Fixed an accessibility issue in which multiple tabs were required to reach the hidden Enable accessibility option. That option is now available right after the Cookie Policy screen.
PB-65060: Fixed an accessibility issue in which, upon signing a Signature Block, the Screen Reader mistakenly read the word Unavailable.
PB-75200: Fixed an accessibility issue in which there were two H1 headings on the Summary Complete page.
PB-72644: Fixed an accessibility issue in which Screen Readers failed to vocalize the correct total number of uploads for a Virtual Room transaction when the host expanded the Uploads list.

Conditional Fields

PB-76935: Fixed an issue in which transactions using Conditional Fields on radio buttons or checkboxes failed to show the correct transaction status in the Required Actions feedback bar.
PB-76573: Fixed an issue in which radio buttons and checkboxes in a document with Conditional Fields failed to appear as selected until the document was refreshed.
PB-76663: Fixed a performance issue that was triggered when documents with Conditional Fields were confirmed.

Other

PB-76845: Fixed an issue in which selecting or clearing a checkbox didn't work properly in certain scenarios.
PB-76834: Fixed an issue in which the document status was not properly updated in the Documents pane.
PB-76455: Fixed an issue in which the Summary Complete page was displayed to a signer in a transaction that was assigned to a group, though it was not yet that signer's turn to sign.
PB-75628: Fixed an issue in which the Reassign Recipient option (also known as Change Signer) was still present for Declined transactions.
PB-76354: Fixed the following issue. If Enforce Capture Signature was enabled, a hand-drawn signature was not reset after undoing the signature.
PB-76087: Fixed the following issue. A sender accessed a transaction for which they were not the Transaction Owner, and they declined to sign. The Transaction Declined screen appeared, on which the user clicked More Actions > Exit Signing Mode. The user should then have exited Signing Mode with no error messages, but an error message did appear. When the user closed the error message, they landed on an Access Denied page with no navigation options. The fix lets such users exit Signing Mode without an error message, and redirects them to the Dashboard.

Senders

Designer Page

PB-75242: Fixed an issue in which senders couldn’t go to the Designer page after they created a transaction from a shared template that had been created by another sender.
PB-76282: Fixed an issue in which senders could go to the Designer page when the relevant transaction had been created without a document via the API.
PB-72709: Fixed a Designer page issue in which certain conditions led to a failure to save the Is Required flag's value for Form Fields.

Other

PB-70909: Fixed the following issue. When users click the CANCELLED part of the Dashboard's pie chart, they should be redirected to view recent Declined transactions. Instead, they were redirected to view the status of trashed transactions.
PB-74870: Fixed an issue in which the Cookie Policy screen prevented senders from creating a handwritten signature on the Signature page (among the My Account set of pages).
PB-75387: Fixed an accessibility issue in which the aria-label attributes for radio buttons and checkboxes had unexpected values.
PB-76375: Fixed an issue in which Japanese translations for Access Delegation were not intuitive.

Account Owners & Admins

Accessibility

PB-75982: Fixed an accessibility issue in which the NVDA Screen Reader did not properly read a Close button.
PB-75918: Fixed an accessibility issue in which the NVDA Reader did not completely read several links.
PB-76095: Fixed the following accessibility issue. When a user navigated to the Reports link using the arrow keys, the NVDA Screen Reader should have read just the Reports link. Instead it read the Reports link and the Admin link.

Other

PB-74985: Fixed an issue in which a 504 Gateway Time-out error occurred while trying to enable sub-accounts.

Developers

PB-64787: Fixed an issue by ensuring that when the Roles and Permissions feature is enabled, only users with the Data management self-service permission can access our Data Retention feature via the API.

Changed Behavior

PB-74060: To improve accessibility, we converted the Exit Signing Mode pop-up window for senders into a notification that appears in the top bar of the New Signer Experience.

Known Issues

PB-77728: Periods (".") are not currently supported in Radio Group names or Checkbox Group names. This issue will be resolved in a future release.

PB-77822: A signer is auto-redirected to the Handover URL if the auto-redirect option is enabled, and the New Signer Experience is accessed from the sender interface. This should not happen for regular transactions. This issue will be resolved in a future release.

PB-78102: This issue arises when the API is used to add to a document: (1) a Checkbox Group; (2) other checkboxes for which validation rules have not been configured ("validation":null). If this happens, an error will appear when the recipients try to access the transaction in the New Signer Experience. This issue will be resolved in a future release.

PB-78194: This issue arises when signatures associated with an auto-field (e.g., signing date) are applied within a document. The problem is that these signatures are rendered invalid by the subsequent application of a Capture Signature in the document.

PB-78448: When a template is being created, the Share template toggle switch is not working properly. If clicked, the status is not saved visually. Nonetheless, the template is shared with other senders on the account. This issue will be resolved in a future release.
PB-77810: The Signing Ceremony is failing to reflect a label field’s specified font size. Instead, the field's text appears with the field's default font size. This issue will be resolved in the next release.

PB-78762: When a “Make required” or “Make optional” condition has been configured for a Signature Field in a document, and that condition changes after a different signer has confirmed the same document, there is an issue with that Signature Field in the resultant PDF.

SaaS 2021-Aug: Release 11.43

What's New

ID Verification

Introducing ID Verification: This release introduces the following new methods of authenticating a recipient's identity: (1) Document Verification Only validates the recipient's driver’s license, passport, or national identity card; (2) Document Verification with Facial Comparison examines one of those identity documents, and compares the recipient's photo on that document with the recipient's selfie. Collectively, these two methods are called ID Verification. To enable and configure ID Verification for your account, contact your Account Representative. Note: ID Verfication for OneSpan Sign is available only in the following environments: US1, US2 , CA and EU. It is not available in the US FedRAMP or AU environments.

New User Experience

Guidance on Fonts: New documentation tells users how to avoid problems with the fonts in documents that are created or uploaded for use in transactions — see Supported Fonts.

Signing Ceremony

Can sign via Uanataca without cookies: Signing via the Uanataca Trusted Service Provider no longer uses cookies to store session information. This complements similar Signing Ceremony functionality introduced in OneSpan Sign 11.42 and 11.38. Nonetheless, scenarios that have integration points with third-party entities such as Equifax or an IdP server may require the use of cookies — such requirements are beyond our control.
Bottom bar on Uploads page: As of this release, the informative bottom bar on the Uploads page will always appear if there are optional and/or required attachments to be uploaded by the signer.
Removed Sudan from OFAC list: Removed Sudan from the OFAC list, since OFAC no longer lists Sudan as an embargoed country.

Senders

Renamed transaction types: When a sender creates or edits a transaction or template in the New User Experience, the drop-down menu of transaction or template types now lists the following renamed options: (1) eSigning (a normal signing transaction that isn't an in-person, notarization or Virtual Room transaction); (2) In-Person eSigning; (3) In-Person Electronic Notarization ceremony (formerly called Notarization); (4) Virtual Room.
Virtual Room details on Transaction Details page: Virtual Room information now appears on the Transaction Details page of a Virtual Room transaction.
Can mask fields in the Virtual Room: Selected fields in a Virtual Room transaction can now be masked. When a sender adds a field to a document, they can slide its Mask field toggle switch to ON. If that has been done, during the Signing Ceremony that field will be visible only to: (1) the signer to whom the field is assigned; (2) the host.
Improved import of accessible documents: When a sender uses the New User Experience to import an accessible document, a radio-button group in the document will now be imported as an entire group (not as particular radio buttons).
Can send one transaction for all languages: When a document needs to be signed by signers who speak different supported languages, the sender can now send a single transaction to all the signers. The sender no longer needs to create a separate transaction for each language. A signed document will properly display the signers' Inputs in all the languages they used (regardless of the language specified for the transaction).

Developers

New Callback Notification for SDKs: SDKs can now be used to configure a Callback Notification called Document Viewed. This notification is triggered when a signer views a document.
New Event Notification: Created a JavaScript Event Notification that is triggered when the signer in an in-person or e-Notary transaction clicks the Done button on their Thank You page. Note: The signer Id is appended to the event: ESL:MESSAGE:SUCCESS:SIGNER_DONE:<signer id>
Improved Costa Rican signatures: Documents that are signed with a Costa Rican timestamp are now PAdES BL-T LTV enabled. This empowers them to pass the Banco Central de Costa Rica's validation tool (Central Directo portal).
SDKs can retrieve sub-account API keys in one call: Release 11.42 enabled a user to retrieve the API keys from all their sub-accounts via a single REST API call. This functionality is now available through the Java and .NET SDKs.

In-App Reporting

Added a loading spinner: A loading spinner now appears while users are waiting for the system to finish downloading reports.

Bug Fixes

Signing Ceremony

In-Person Transactions

PB-75491: Fixed an issue in which the hand-off between signers in an in-person transaction failed because the recipient had been assigned an unsupported language code.
PB-74075: Fixed an issue that arose when an external signer accessed an in-person transaction using their Signer Authentication Token. In this case, the Completion Summary page failed to appear when the signer finished signing.
PB-74140: Fixed an issue that arose when an in-person transaction was accessed using the Signer Authentication Token of a signer who could not host the session. For this signer, the Exit Signing option should not be available under the More Actions menu, but it was.
PB-74686: Fixed an issue that arose in in-person and e-Notary transactions. When a signer completes and exits signing, they should see the signer's Thank You page. However, the system failed to display it for these transactions.
PB-75247: Fixed an issue in which the host's Thank You page in an in-person transaction was missing the Download Documents button.
PB-74695: Fixed an issue in which an in-person transaction's Thank You page for the host failed to appear after all signers had completed signing . This happened when the transaction had been configured to be completed manually, and so was not yet complete.

Accessibility

PB-75409: Fixed an issue in which pre-filled text in a PDF's multi-line Text Field did not display properly in accessibility mode.
PB-72717: Fixed an accessibility issue in which certain Screen Reader instructions were not clear enough. Those instructions described how to use a mobile device to apply a Capture Signature.
Fixed multiple accessibility issues, mostly related to Screen Readers' failing to correctly read labels and other elements.

User Authentication

PB-75220: Fixed an issue that arose when a recipient typed a correct code for SMS Authentication or a correct answer for Q&A Authentication, and then pressed Enter. At that point, the system should have let the recipient into the associated transaction, but it didn't.
PB-70833: Fixed an issue in which a loading spinner continued to appear on a recipient's authentication page after the page was fully loaded.

Language

PB-75563: Fixed an issue in which variations in the language code for a supported language caused an error when users tried to access the New Signer Experience.
PB-74062: Corrected some translations into Japanese.

Other

PB-75957: Fixed an issue in which PDF documents that did not have embedded fonts would not render correctly in the Signing Ceremony. For more information, see Supported Fonts.
PB-75199: Fixed an issue in which signers experienced a lag when they tried to update a document's fields.
PB-75136: Fixed an issue in which a OneSpan Sign BackOffice setting failed to work. That setting should have prevented a signing progress bar from appearing during the Signing Ceremony, but it didn't.
PB-75565: Fixed an issue in which a signer couldn't access a transaction from an email link after the sender rejected one of the signer's attachments for that transaction.
PB-75132: Fixed an issue in which the Signature Navigator failed to appear for documents whose only signatures were optional.
PB-75573: Fixed the following issue. Two radio buttons from the same group were on different pages in a document. The signer selected the second button, so the focus should have been on it. Instead, the focus moved to the first button, which was on another page.
PB-73691: Fixed an issue in which lengthy text in the Electronic Consent Document's ACCEPT bar at the top of the New User Experience caused document pages to overlap.
PB-73317: Fixed the following issue. When using the Mobile Signature type, a signer was prompted to recapture their handwritten signature when they applied subsequent signatures.
PB-75240: Fixed the following issue. OneSpan Sign 11.42 enabled senders to upload a default image that will appear as their signature when they sign a Signature Field of type Capture Signature (with the From File attribute). The problem was that this signature image was not applied if the sender had accessed the transaction from a link.
PB-76388: Fixed an issue in which an error sometimes appeared after a recipient accepted a Disclosures Document from a mobile phone.
PB-76671: Fixed an issue in which an error sometimes appeared when a signer accepted (confirmed) a signature.

Senders

PB-69781: Fixed the following issue. When a sender clicked the Apply Layout window's outer scroll bar, that bar disappeared.
PB-75231: Fixed an issue in which the Opt Out button was still available to senders using the New User Experience.
PB-74527: Fixed an issue that arose after the following actions: (1) a signer only partly completed a transaction, then exited signing; (2) the sender subsequently accessed that transaction, which was In Progress. The sender should not have been able to edit that signer's email address, but they could.
PB-74478: Fixed the following issue for an in-person transaction that had a recipient who was a sender on a different account. When that recipient-sender accessed the Signing Ceremony from within the sender interface, the Exit Signing Mode option was not available to them.
PB-75264: Fixed an issue in which the wrong error message appeared after the following actions. A sender: (1) created a transaction with a recipient and a document; (2) navigated to the Designer page; (3) opened the Transaction Settings page; (4) changed the transaction type from eSigning to Virtual Room; (5) clicked the Configure button.
PB-75976: Fixed an issue in which PDFs without embedded fonts did not render correctly in the sender part of the New User Experience. For more information, see Supported Fonts.
PB-76253: Fixed an issue in which transactions could not be created from a Bulk Send template. When senders tried to do so, they could not upload the required CSV file.

Account Owners & Admins

PB-75078: Fixed the following issue. After the language was changed to Japanese on the Dashboard, some labels on the Data Retention page still appeared in English.
PB-74538: Fixed an accessibility issue in which an NVDA Screen Reader did not correctly read the Permanently Delete button when an Account Owner was deleting a template.
PB-75236: Fixed an issue in which the Capture Signature dialog box failed to display the customer's specified primary color.

Developers

PB-75446: Fixed an issue in which an EMAIL_BOUNCE callback event failed to be sent to the SalesforceOAuth2 callback service.
PB-74043: Fixed an issue in which the system failed to send the Transaction Owner an email with the Evidence Summary (email.evidencesummary) when a delegate user's expiry date was null.
PB-69233: Fixed an issue in which an email sent via the template email.transaction.complete failed to redirect certain senders to the completed transaction. The affected senders were those who used SSO Authentication.

Performance Improvements

PB-72391: Increased the speed with which documents are uploaded to transactions.
PB-75750: Increased the speed with which a list of templates appears after it's requested. This is a temporary fix that has the following limitations: (1) the Documents column of the Templates table no longer displays any content — the workaround is to view the Documents list on the Template Details page; (2) when it's the sender's turn to sign, they can no longer go directly to the Signing Ceremony from the Dashboard or Inbox — the workaround is for the sender to click the Sign button on the Transaction Details page. A more complete fix for this issue will be provided in a later release.

Changed Behavior

PB-74722: Updated OneSpan Sign's Consent and Disclosure document to reference the recording of Virtual Room sessions. Enabling the audio and/or video recording of such sessions is scheduled for the next release.
Starting with Release 11.43, users will no longer be able to access the sender part of the New User Experience from Internet Explorer. If they try to do so, an error message will inform them that this browser is not supported.

Known Issues

PB-76834: In the Signing Ceremony, the Documents pane does not properly display the document status until the page is refreshed. This issue will be resolved in OneSpan Sign 11.44.

SaaS 2021-Jun: Release 11.42

What's New

Classic Signing Ceremony

Classic Signing Ceremony deprecated: The Classic Signing Ceremony — i.e., the part of the Classic User Experience for Signers — is now deprecated. The part of the Classic User Experience for Senders and Admins was deprecated in OneSpan Sign 11.35. Thus as of this release: (1) no part of the Classic User Experience will be supported; (2) all accounts will be moved to the New User Experience.

Signing Ceremony

Prompt to start signing next transaction: When the New Signer Experience is accessed from the sender interface, senders will now be prompted to start signing their next transaction. This spares them from having to return to their Inbox to access the next transaction.
Sign via TSP without cookies: Signing with a Trust Service Provider will no longer use cookies to store session information (except the TSP integrations for Uanataca and Accesso). This complements similar Signing Ceremony functionality introduced in OneSpan Sign 11.38. Nonetheless, scenarios that have integration points with third-party entities such as Equifax or an IdP server may require the use of cookies — such requirements are beyond our control.
Customized iteration for the Navigator: The Signature Navigator can now iterate through all the fields in a document (both required and optional), or only the required fields. Formerly, the Navigator iterated only through the required fields. To configure this setting for your account, contact our Support Team.

Senders

Drop-down menu for transaction type: When a transaction or template is created or edited in the New User Experience, the sender now selects the desired transaction type from a drop-down menu. That menu's options are: (1) Remote signing; (2) In-Person Ceremony; (3) Virtual Signing Room; (4) Notarization. This menu will make it easier for senders to select the right transaction type.
Multi-language support in a single transaction: This feature's main use case is a sender who wants to send a transaction to multiple signers who prefer different languages. The sender wants to avoid having to send a separate transaction for each language. This feature: (1) enables the sender to send a single transaction; (2) enables the signers to sign and complete other single-line fields in their own language; (3) ensures that signers' inputs in all languages are properly displayed in the signed documents, regardless of the language selected for the transaction itself.
Can upload a default signature Image: A sender can now upload a default image that will appear as their signature when they sign a Signature Field of type Capture Signature (with the From File attribute). Having this default spares senders from having to upload an image each time they sign such fields. The default image file is configured in the Image as signature section of the Signature page among the My Account set of pages.

Account Owners & Admins

Can assign a different color to optional signatures: Admins can now customize the color of the Signature Block used by optional signatures. This visual differentiation will enable signers to readily distinguish optional signatures from required ones.

Can format the Feedback bar: The text in the New Signer Experience's Feedback bar can now be formatted using Markdown. To arrange this, contact our Support Team.
Can format the Accept Consent bar: The text in the Electronic Consent Document's ACCEPT bar at the top of the New Signer Experience can now be formatted using Markdown. To arrange this, contact our Support Team. Caution: Headers, lists, and text longer than two lines should be avoided, since they will cause document pages to overlap.
Can add Handover URLs to hosts' Thank You pages: Handover URLs can now be added to the Thank You pages presented to the hosts of in-person and e-Notary transactions. To enable this feature, contact our Support Team.

Developers

New Event Notification: Completed review and signing: Created a new JavaScript event that comes with two notification triggers. The first trigger occurs when the event starts (ESL:MESSAGE:STARTED:SIGNER_COMPLETE_REVIEWED ). The second trigger occurs when the event completes successfully (ESL:MESSAGE:SUCCESS:SIGNER_COMPLETE_REVIEWED) – i.e., when a signer successfully completes reviewing and signing all the documents in a transaction. Note: A signer is considered to have completed the review of a document if the document was displayed to the signer.
New Event Notification: Document viewed: Created a JavaScript Event Notification that is triggered when a signer views a document. Note: (1) a signer is considered to have viewed a document as soon as the document is displayed to the signer. (2) the document Id is appended to the event: ESL:MESSAGE:SUCCESS:DOCUMENT_VIEW:<document Id>
New Callback Notification: Document viewed: Created a Callback Notification (DOCUMENT_VIEWED) that is triggered when a document is viewed. Note: This feature cannot yet be configured via SDKs, but it will be in the next release.
Can retrieve all sub-account API keys in one call: A user can now use a single API call to retrieve the API keys from all their sub-accounts. They no longer have to access each sub-account separately.

Virtual Room

Can customize the session expiry time: The Virtual Room now has its own session expiry time. The default session length is 60 minutes. This interval can be changed when the transaction is created. Note: By default, a meeting host is presented with a prompt 15 minutes before their session is due to expire. If needed, the host can then extend the session.
Added calendar info to invitation emails: The email template that invites recipients to review or sign a transaction during a Virtual Room meeting is email.activate.virtual.room. This feature integrates that template with iCalendar applications via an *.ics file that contains the following meeting information: (1) Title = transaction name; (2) Summary and description = "Transaction name" hosted by "Host name"; (3) Start time and end time (end time = start time + session time); (4) Location = a link to the transaction; (5) Alert trigger = 30 minutes before the meeting. This information can now be integrated into participants' iCalendar applications.
Attachments are masked from other signers: When a signer uploads attachments during a Virtual Room meeting, the preview and thumbnails of the uploaded documents can now be viewed only by the signer and the host. The attachments are masked from the other participants.
Can resize the Control Panel: Meeting participants can now resize their teleconferencing Control Panel by sliding it left and right.
Can highlight documents during meetings: Signers can now highlight areas of a document for viewing by all participants in a Virtual Room meeting. The highlights are visible only during the meeting, and are not stored on the document. Signers enable this functionality by clicking a Highlighter icon on their teleconferencing Control Panel .
Network Quality indicator: If users are videoconferencing, an indicator on their Control Panel displays their network quality.
Host notified when participants disconnect: The meeting host will now be notified when a participant disconnects from the meeting.

In-App Reporting

Reports track Virtual Room transactions: Transaction Reports will now indicate if a transaction is a Virtual Room transaction.

Bug Fixes

Signing Ceremony

PB-73093: Fixed an issue in which the Guest Login page failed to load if an unsupported language code had been specified for the recipient.
PB-72621: Fixed an issue in which selecting text across two lines caused an overlapping shadow to appear across the selected text.
PB-73316: Fixed an issue in which the signing logo failed to display if the Signing Ceremony was accessed from an iOS device using Chrome.
PB-73300: Fixed an issue in which zooming in on a document page prevented the signer from using the page's Capture Signature dialog box.
PB-73259: Fixed an issue in which SMS authentication was unavailable for an in-person transaction if the Signing Ceremony was accessed using a Signer Authentication Token.
PB-73100: Fixed an issue in which the Accept button on Electronic Disclosures and Signatures Consent document appeared and then disappeared.
PB-72507: Fixed an issue in which the Mobile Capture dialog box appeared in English when first accessed by signers for whom another language had been specified.
PB-65994: Fixed an issue in which the Documents panel failed to display an accepted disclosures document in the system-configured color for 'Success' .
PB-71894: Fixed an accessibility issue in which Screen Readers failed on first-time access to read the title of the following pages: Thank You/Summary, Overview, and Auto-Redirect.
PB-59096: Fixed an issue in which using a mobile device to zoom in on a document, and then rotating the device caused the pages to display as thumbnails.
PB-72510: Fixed an issue in which signers could not download documents from an iOS device using the Chrome application. Note: Having made the fix, individually downloaded files must be opened in an application that can view PDFs, since all downloaded file types are converted to PDF.
PB-73000: Fixed an issue in which trying to upload a file as an attachment by clicking the Browse button: (1) failed to open the Upload File dialogs box; (2) instead scrolled to the top of the page.
PB-69751: Fixed an issue in which Capture Signature buttons did not appear in the signer's selected language.
PB-65879: Fixed an issue in which the text of the Thank You page displayed after applying a Mobile Capture signature was not vertically centered on the mobile device's screen.
PB-73987: Fixed an issue in which an Unsupported Browser error message regarding Internet Explorer failed to display in the recipient's language if the recipient had been assigned an Authentication Method.
PB-74290: Fixed an issue in which Japanese characters failed to appear in a PDF document uploaded to a transaction.
PB-73960: Fixed an issue in which a handwritten signature sometimes failed to appear on its signed document.

Senders

PB-73309: Fixed an issue in which the language names in the drop-down menus for the Transaction Language and Recipient Language failed to appear in the language of the logged-in sender. Instead, each language name appeared as it does in its own language.
PB-73445: Fixed an issue in which a transaction's signing order specified via the API was reset in the New User Experience once the transaction was sent.
PB-73843: Fixed an issue in which entering a long Message to all recipients: (1) triggered an error message; (2) overrode the transaction name; (3) prevented the transaction from being sent.
PB-41748: Fixed the following issue. (1) the Sub Accounts feature was enabled for Sender B, but not for Sender A; (2) Sender A created a transaction, and added Sender B as a signer; (3) Sender B logged into the US2 Sandbox environment to view the transaction, but the transaction failed to appear in their Inbox.
PB-74331: Fixed an issue in which the keyboard's shortcut keys did not work when the sender was viewing the New User Experience in a Firefox browser.

Developers

PB-13766: Fixed an issue in which API calls made during a maintenance window returned the wrong status code. Specifically, those calls returned the code HTTP 200 (for a successful HTTP request) instead of HTTP 503 (for "service unavailable").
PB-73711: Fixed an issue in which the event ESL:MESSAGE:SUCCESS:DOCUMENT_NAVIGATION was triggered as soon as the Documents panel was displayed, instead of after the document was loaded.
PB-73647: Fixed the following issue. Although an authentication method had been disabled at the account level (using OneSpan Sign BackOffice), it was nonetheless possible to assign that method to recipients using the API.

Account Owners & Admins

PB-72311: Fixed an issue in which moving transactions to the Trash reset their Data Retention policies.
PB-74536: Fixed an issue in which the list of Identity Providers on the SAML Admin page was sporadically empty.

Virtual Room

PB-72998: Fixed a Virtual Room issue in which the host's Delete button was not disabled when they viewed a document that had been uploaded by a signer.
PB-71121: Fixed an issue in which changes to a Virtual Room transaction made on the Designer page failed to be reflected on the Transaction Edit page.

Evidence Summary

PB-72298: Fixed an issue in which Japanese characters were displayed incorrectly in the Evidence Summary.
PB-71575: Fixed an issue in which the Evidence Summary in Japanese could not be downloaded from the API.

In-App Reporting

PB-73019: Removed empty columns from particular Transaction Reports.

Changed Behavior

PB-73848: The host of a Virtual Room meeting will now be prompted that they are passing control to a signer.
PB-72833: It is no longer possible to create a new transaction or template when acting as a delegate for a suspended account.

Known Issues

PB-74075: An issue has arisen when an external signer accesses an in-person transaction via a Signer Authentication Token. When the signer finishes signing, the Completion Summary page should appear. Instead, the system presents an interim Thank You page whose Done button is not functional. This issue will be addressed in the next release.

PB-75957: Some text inside transaction documents is not readable by New User Experience users. This is due to an incompatibility between OneSpan Sign 11.42 and certain browsers for certain fonts in certain documents. This issue will be fixed in an upcoming release. Meanwhile, you can avoid this issue by ensuring that your documents are in the PDF/A format (a PDF/A document embeds the fonts that it uses in the PDF file itself). Here is one way to create a PDF/A document from a Word document: (1) open the Word document; (2) click Save As, and select PDF; (3) click Options; (4) select the PDF/A compliant checkbox; (5) click OK; (6) enter a name for your PDF, and click Save.

SaaS 2021-May: Release 11.41

Deprecation of Classic Signing in 11.42: The Classic Signer Experience — i.e., the part of the Classic User Experience for Signers — will be deprecated in OneSpan Sign 11.42. The part of the Classic User Experience for Senders and Admins was deprecated in OneSpan Sign 11.35. Thus once OneSpan Sign 11.42 is released: (1) no part of the Classic User Experience will be supported; (2) all accounts will be moved to the New User Experience.

What's New

In-App Reporting

Introducing In-App Reporting: This release introduces a new feature called In-App Reporting. It enables users with sufficient permission to access two kinds of system-created reports directly from the New User Experience or the API: (1) Transaction Reports provide data about transactions on your account (e.g., information about senders, signers, and key events); (2) Account Reports provide information about actions on your account (e.g., when specific users joined the account). To obtain permission to use this feature, please contact our Support Team.

Virtual Room

Hosts without signatures can start meetings: A host can now start their Virtual Room meeting even if they do not need to sign any document in the associated transaction.
An overview page for hosts: We enabled the host of a Virtual Room meeting to view a Welcome page that provides an overview of the transaction (including a list of all documents, an indication of who must sign each document, etc.).
Only hosts determine the signing order: During a Virtual Room meeting, the signing order must be completely determined by the host. We therefore removed the ability of anyone else to specify the signing order for a Virtual Room transaction.
Hosts can enable/disable participants' sound/video: A Virtual Room host can now enable and disable the sound and video of their meeting's participants.
Wait for all participants to switch views when switching control: When control of the screen is passed to a Virtual Room participant, they will not be able to perform any action until the screens of all participants are loaded. This permits everyone to see what the other participants are doing.
Better indication of who's controlling the screen: We enhanced the Virtual Room's indication of who currently controls the screen by moving the controlling participant's video/audio feed to the top of the Control Panel.
Can upload attachments: Attachments can now be uploaded to a transaction during a Virtual Room meeting. If the transaction creator requested that participants upload attachments, the Uploads section of the screen lists the attachments assigned to each participant. Thus the host can navigate to that section, choose an attachment, and pass control of the screen to the associated participant. After that participant uploads all their attachments, control is automatically returned to the host. Note: In this release, all participants can see a preview and thumbnail of each uploaded attachment. Future releases will create functionality that can hide these items from other participants.

Signing Ceremony

WebViews support event notifications: WebViews now support event notifications.
Redesigned Completion Summary page: We've redesigned the Completion Summary page that a transaction's recipient sees when the transaction is complete (e.g., the page has new Documents and Uploads sections). To access this new functionality, please call our Support Team.

Senders

Senders can disable the IE warning: Senders who accessed the New User Experience from Internet Explorer during the previous release always saw a popup which warned them that IE is no longer supported. Senders can now select a checkbox on that popup to ensure that they won't see that warning again.

Developers

Can auto-redirect signers after signing: Enabled the automatic redirection of signers to a specified URL when they finish signing. This feature can be configured at the transaction level. Developers can choose to display none, some or all of the following parameters in the Handover URL: package ID, signer ID, status.

Account Owners & Admins

Can configure Data Retention for Sent transactions: It is now possible to configure a Data Retention policy for Sent transactions. In addition, it is possible to tell the system to regard Sent transactions as Incomplete transactions, so they will be purged according to the retention policy for Incomplete transactions. To implement this functionality, we revised the logic of transaction expiry — it is no longer possible to specify an expiry value greater than the retention policy for Sent transactions.

Evidence Summary

Better tracking of SMS phone numbers: The Evidence Summary now records the signer's phone number when an SMS authentication attempt succeeds or fails. Previously, the Evidence Summary recorded an SMS phone number only for SMS Sent events.

Bug Fixes

Signing Ceremony

PB-69992: Fixed a misalignment between the top bar and the navigation bar that occurred after a recipient was reassigned (Change Signer).
PB-72180: Fixed an issue in which the Signing Ceremony failed to recognize the software code names for some languages if they had been specified via the API.
PB-71336: Fixed an issue in which the Evidence Summary failed to record a Login event if a signer accessed the Signing Ceremony without being authenticated (authentication method = None).
PB-71326: Fixed an issue in which the Audit Trail recorded a failed SMS authentication event twice.
PB-71394: Fixed two issues that arose in connection with SMS authentication for an in-person transaction. Issue 1: A signer tried to log in with an expired passcode, but the Audit Trail failed to describe the failed authentication event as "SMS PIN is expired". Issue 2: A signer entered the wrong passcode, but the Audit Trail failed to describe the failed SMS authentication event as "Incorrect Passcode".
PB-70966: Fixed an issue in which a signer's hand-drawn signature was not stored correctly.
PB-38515: Fixed an issue in which a shadow always appeared behind a document's selected text.
PB-71619: Fixed an issue in which the input format was being validated for empty fields.
PB-72570: Fixed an issue in which required fields that had been filled in created an error if the document ID contained a period.
PB-72317: Fixed an issue in which the Signature Navigator sometimes didn't work properly in an iFrame.
PB-64581: Fixed an issue in which the Signature Navigator sometimes disappeared after the signer clicked Click to Sign.
PB-71101: Fixed an issue in which fields were not updated correctly after their state was changed by an imposed condition.
PB-71733: Fixed an issue in which handwritten signatures on an unconfirmed document failed to clear after the signer was reassigned (Change Signer).
PB-38459: Fixed an issue in which a handwritten signature failed to clear after it was undone.

Classic Signing Ceremony

PB-70162: Fixed an issue in which an error occurred when signers were switched during a notarized in-person transaction that was accessed within an iFrame.
PB-71325: Fixed an issue in which the Audit Trail mistakenly recorded an SMS authentication attempt as successful. In fact, it was an SMS authentication attempt that failed due to an expired passcode.

Senders

PB-70943: Fixed the following accessibility issue for New User Experience senders. Page titles were not unique, so they could not be used to distinguish different pages.
PB-70297: Fixed an issue in which a New User Experience sender could not delete a transaction they had created from a template.
PB-71305: Fixed the following issue. When a New User Experience sender populated an input field for a transaction with a value from their browser history, it caused the transaction to be renamed.
PB-72316: Fixed an issue in which a New User Experience sender: (1) selected a language other than English in the Dashboard; (2) created a new transaction; (3) selected an expiration date for the transaction. After this, the New User Experience calendar displayed dates incorrectly.
PB-70049: Fixed an issue in which a New User Experience sender could not select a Signing Method on a sub-account.
PB-72331: Fixed an issue for an integrated customer in which an error occurred when a sender used the Designer page to prepare a transaction that had been created via the API.
PB-69359: Fixed an issue in which the New User Experience failed to add a document to a transaction.

Developers

PB-60751: Fixed the following issue that involved the .NET SDK. When a transaction was created from a template that specified a signing order, and the transaction's placeholder recipients were replaced with actual signers, the system changed the signing order.
PB-69993: Fixed an issue in which the API returned the wrong signing status for signers.

Account Owners & Admins

PB-71723: Fixed an issue in which the Data Retention settings could not be changed on sub-accounts.
PB-64129: Addressed an issue in which Account Owners could not download the Evidence Summary for their senders from the Account Summary Report page. As of this release: (1) this inability will be regarded as proper if the Roles and Permissions feature is ON for the account; (2) such downloads will be possible if the Roles and Permissions feature is OFF for the account.
PB-73222: Fixed a New User Experience issue in which an error occurred after an Admin selected the Spanish language, and then tried to view Role details.

Error Messages

PB-71579: Fixed an issue in which the system failed to display an error message after required fields were left empty during KBA Authentication.
PB-72483: Added a verification that displays an informative error message if a document name is too long.

Changed Behavior

** VERY IMPORTANT ** PB-72348: This release changed the name of a particular value of the status parameter in the Handover URL used by the New Signer Experience. Specifically, the name COMPLETED has changed to SIGNER_COMPLETE. All New Signer Experience customers who have integrations with the COMPLETED status will need to update their integrations in time for this release. To avoid problems, existing code that references the COMPLETED status can be replaced with an OR statement that references both statuses. For example:
Existing Code: status.equals(“completed”)
New Code: status.equals(“completed”) OR status.equals(“signer_complete”)
PB-71327: The Evidence Summary now adds the word Successful to its record of each successful authentication event. Previously, only the authentication method was identified. Example: A successful SMS authentication event will no longer be recorded as SMS authentication, but rather as Successful SMS authentication.
PB-71429: The invitation email to attend a Virtual Room meeting is now sent to the host who is also the sender of the transaction.

Performance Improvements

PB-63985, PB-65601: By retrieving only the necessary data, we: (1) decreased the response time when New User Experience senders search for transactions; (2) increased the speed with which pages that list templates are displayed to New User Experience senders.

Known Issues

PB-72180: As noted in the Bug Fixes section above, this issue's erroneous behavior has been fixed in the Signing Ceremony. However, this issue still exists on the Signer Authentication page.
PB-63682: The best experience of our Virtual Room feature cannot be had on a mobile device. During a Virtual Room meeting, documents appear small on mobile devices, especially on mobile phones.

SaaS 2021-Apr: Release 11.40

What's New

Signing Ceremony

Added support for WebViews: WebViews are now supported as part of the New Signer Experience.
Can make Transaction Owners log in to sign: Transaction Owners can now be forced to log in to the Sender interface before they're permitted to access the Signing Ceremony. This enables Account Admins to ensure that the Transaction Owners' identity is authenticated. To enable this feature, please contact our Support Team.
Can access rejected attachments directly from email: When a sender rejects a signer's uploaded attachment, the email notification sent to the signer contains a link that now connects directly to the rejected attachment. Formerly, that link connected to the Signing Ceremony in general.

Virtual Room

Introducing the Virtual Room: This release introduces a new feature called the Virtual Room. This feature enables a host and signers to join a shared online session in which electronic agreements are signed remotely. The Virtual Room does so by leveraging the power of teleconferencing for co-browsing and video/audio. Because this is the feature's initial release, please bear in mind that it is still a work-in-progress. Not all planned functionality is available in this first release. We will keep working to add more functionality in future releases. We will soon share more information about how you can access this feature. Note: The Virtual Room is not currently available in the U.S. FedRAMP environment.

Developers

Can pass metadata to eOriginal: OneSpan Sign can now pass metadata to eOriginal.

Document types are validated for eOriginal: Before we start the Signing Ceremony for a mortgage transaction or a loan transaction, we now validate the transaction’s document types to ensure that they will be accepted by eOriginal.

Can specify eOriginal environment for mortgage docs: When our Digital Mortgage Solution stores documents from a mortgage transaction in an eOriginal vault, a field called endpoint can now specify the eOriginal environment in which the documents will be deposited.

Can specify eOriginal environment for loan docs: When our Digital Lending Solution stores loans or other related documents in an eOriginal vault, a field called endpoint can now specify the eOriginal environment in which the documents will be deposited.

Bug Fixes

Signing Ceremony

General

PB-70055: Fixed an issue in which the Whats new! link on OneSpan Sign’s login page failed to redirect to the Release Notes.
PB-70484: Fixed an issue in which configuring Conditional Fields threw an error.
PB-69251: Fixed an issue in which the Field Navigator skipped required Form Fields for the second signer in an in-person transaction.
PB-66366: Fixed an issue in which a Field Validation error message did not correctly display the field's name.
PB-69994: Fixed an issue in which document confirmation failed when External Signer Verification was used.
PB-70460: Fixed an issue in which the Role field on the Designer's Add Recipient dialog box needlessly: (1) appeared in red; (2) had an accompanying warning message.
PB-69690: Fixed an issue in which signers on mobile devices were returned to the top of a document after their handwritten signature was captured. The signers should have been left where they were.
PB-63820: Fixed an issue in which a suitable message was not provided to the signer when a document could not be confirmed because of a rare communication problem.

Authentication

PB-70009: Fixed an issue in which the configured logo was visible on the Authentication page when that page was displayed in an iFrame. The logo should not have been visible on that page.
PB-65196: Fixed an issue in which an incorrect warning message was displayed after a user entered invalid KBA information.

Document Visibility

PB-69260: Fixed a issue in which a document's first and second pages overlapped if a very long message appeared in the feedback bar.
PB-65508: Fixed an issue in which a document's left side was hidden when a user zoomed into the document (at more than 100%).
PB-69395: Fixed an issue in which a document's left side was hidden when a user minimized the size of the browser, and performed a maximum zoom (200%) into the document.
PB-70296: Fixed an issue in which clicking the Download All button on the Documents panel reduced the size of the displayed document.

Language

PB-66257: Fixed an issue in which the title of the Documents panel failed to change when the signer selected another language.
PB-70580: Fixed an issue in which a warning banner did not respond to a change of the Designer's language when that change was made by adding a parameter to the associated URL.
PB-66271: Fixed an issue in which an error was created by specifying the signer's language code as en-US. Now when the Signing Ceremony encounters the code of an unsupported language, it substitutes the English language code en.

Evidence Summary

PB-66373: Fixed an issue in which the Evidence Summary failed to record the display, acceptance and decline of affidavits within an in-person transaction (yet the hand-off between signers was recorded).
PB-70140: Fixed an issue in which the Evidence Summary recorded the viewing of documents by the host of an in-person transaction. Only an "Access in person signing" event should have been recorded.

Senders

PB-64269: Fixed an issue in which Bulk Send transactions were created under the wrong sub-account — i.e., they were created under a different sub-account from the one that initiated the Bulk Send operation.

PB-66152: Fixed an issue in which clearing the Expiry date during transaction creation did not work as expected.

PB-64889: Fixed the following issue. A user: (1) employed the Search box in the Add Delegates dialog box, producing a list of delegates that matched the user’s search criteria; (2) added delegates who met those search criteria; (3) performed a second search from the same Search box. The results of that second search should have listed those added delegates, but it didn’t.
PB-69861: Fixed an issue in which "pending senders" were sent an email to reset their password. Pending senders do not have a current password — they have been invited to register for a OneSpan Sign account, but they have not done so.

Developers

PB-69839: Fixed a bug in the /api/packages call, which is used to retrieve a list of transactions. Before the fix, this REST API call could not handle date/time parameters that included the <Z> Time Zone designator.
PB-70937: Fixed an issue in which the Sender interface of the New User Experience displayed the wrong order of signers when the transaction had been created via the REST API, and the Transaction Owner had been hidden (sendervisible=false).
PB-70522: Corrected some Japanese translations for email templates.
PB-71092: Fixed an issue in which senders and signers in the US FedRAMP Sandbox environment failed to receive email notifications from the templates email.complete and email.transaction.complete when that environment received a PACKAGE_COMPLETED event.

Admins

PB-65466: Fixed an issue in which an Archival Module process to purge transactions failed. This happened because the maximum value of an integer in the code was exceeded.
PB-70010: Fixed a OneSpan Sign BackOffice issue in which searching for a transaction by Sender and/or Signer didn't work.
PB-70629: Fixed a OneSpan Sign BackOffice issue in which the Search Features option failed to yield the right results.
PB-70522: Corrected some Japanese translations for OneSpan Sign BackOffice resources.
PB-65093: Fixed the following issue. If an Account Owner was changed (using OneSpan Sign BackOffice), any Manager on the account was able to lock out the new Account Owner.

Security

PB-71104: We learned that our Java SDK had a dependency on software that represented a potential security threat. We quickly removed this vulnerability by upgrading that software to a version that has no security issues.

Technology Update

PB-70692: Made KnowledgeBasedAuthenticationStatus public in our .NET SDK.

Customer Notice

Release 11.41 will change the name of a particular value of the status parameter in the Handover URL used by the New Signer Experience. Specifically, the name COMPLETED will change to SIGNER_COMPLETE. All New Signer Experience customers who have integrations with this status will need to update their integrations in time for Release 11.41. To avoid problems, existing code that references the COMPLETED status can be replaced with an OR statement that references both statuses. For example:

Existing Code: status.equals(“completed”)

New Code: status.equals(“completed”) OR status.equals(“signer_complete”)

Known Issues

If a Sender creates a Virtual Room transaction but does not enable the video recording of the associated Virtual Room meeting, the transaction will not work. This issue will be resolved in the next release.

A Sender who creates a Virtual Room transaction can request that a recipient add attachments to the transaction. However, attachments cannot yet be uploaded in a Virtual Room meeting. If the Sender requests a required attachment for a recipient, it will block the transaction from being completed. This issue will be resolved in an upcoming release.

SaaS 2021-Feb: Release 11.39

What's New

Signing Ceremony

General

Internet Explorer deprecated: The Signing Ceremony no longer supports Internet Explorer. Signers who access the Signing Ceremony from IE will be redirected to an error page.
More features enabled by default: For new accounts, the following features are now enabled by default: (1) Conditional Fields; (2) Optional Signature; (3) Send To Mobile; (4) Mobile Capture; (5) Delegation.
SMS authentication for in-person transactions: We now support SMS authentication for signers within in-person transactions. Note: This feature must be enabled for your account by our Support Team.
Signing Ceremony displayed as a full page: When the Signing Ceremony is accessed from the part of the New User Experience for senders, it now opens as a full page (it formerly opened inside an iFrame). Senders can return to the sender interface (specifically, to the Transaction Edit page) by selecting the Exit signing-mode option in the More Actions menu.
Can use an image as a signature: Signers can now apply their signature by uploading an image (e.g., the seal of a U.S. state). To enable an image to be uploaded as a signature, the Capture Signature type must be selected, and the From file toggle switch must be turned on. When a signer wants to upload an image as a signature, they must bring up the Capture Signature dialog box on the Signer page, and click Upload image on the bottom. A popup window then prompts the signer to select an image file. The image's size will be adjusted to fit the Signature box, but its aspect ratio will be preserved. For now, the only allowed files are JPEG files under 1 MB in size. Other file types are planned for feature releases. Note: This feature must be enabled for your account by our Support Team.
Can sign via PCC: OneSpan Sign’s Personal Certificate Client (PCC) enables users to sign with a digital certificate that resides on a Smart Card or hardware token. This feature is now available in the New Signer Experience. The only limitation is that if users try to use PCC on an in-person transaction, they will be redirected to the Classic Signing Ceremony.
Signers can return to the Overview page: Signers can now return to the Overview page at any point during signing, and view their progress there. To return to the Overview page, they simply click a Home button.
Signers can continue where they left off: When signers return to the Signing Ceremony, they are now taken to the next document they need to sign or review. Previously, they were always taken to the transaction's first document.

Senders

Internet Explorer deprecated: The sender part of the New User Experience no longer supports Internet Explorer. Senders who access that part from IE will see a popup that: (1) warns them that IE is not supported; (2) recommends using another browser.
Redesigned the Fast Track page: We redesigned the Fast Track page to make it match the look and feel of the New Signer Experience.
Can enforce Capture Signature at the signature level: Signers can now be required to capture their handwritten signature on a per-signature basis.

Developers

SDKs can configure the Overview page's visibility: We enabled the visibility of the Overview page to be configured via SDKs.
SDKs & API can configure signer.ui.options: We enabled SDKs and the API to configure layout settings for the Signing Ceremony.

Admins

Variables allowed in guest authentication instructions: Admins can now add <senderName> and <transactionName> variables to the text that appears on the login pages for SMS and Q&A authentication.
Moved the In Person Signing permission: On the list of possible permissions that Admins use to manage a Role in their account, the In Person Signing permission has been moved from the Sender Admin section to the Transaction section. This will ensure that: (1) if the Transaction permission is not selected, the In Person Signing permission will be disabled; (2) if the Transaction permission is selected, the In Person Signing permission will be enabled.

Mobile

Improved pinch and zoom on mobile devices: We improved the pinch and zoom features on mobile devices.

Accessibility

Keyboard shortcuts on the Designer Page: We added keyboard shortcuts to enable people with disabilities to go directly to the beginning of different panes on the Designer page.

Signing Ceremony & Classic Signing Ceremony

Improved the Electronic Consent document: We updated the wording of the default Electronic Consent document to make it compatible with the User Interfaces of both the New Signer Experience and the Classic Signing Ceremony.

A New Signing Method

Can sign via itsme: A new partnership between OneSpan Sign and itsme enables OneSpan Sign users to sign with Qualified Electronic Signatures (QES). QES is the highest guarantee of assurance, according to the EU‘s eIDAS standards.

Bug Fixes

Signing Ceremony

PB-65324: Fixed an issue in which the system displayed the Overview page to an in-person signer. This occurred when the transaction was accessed using the /access integration URL.
PB-64912: Fixed an issue in which subsequent signers in an in-person transaction could not enable accessibility mode.
PB-64506: Fixed the following issue. In accessibility mode, the text area on the Opt Out page failed to have a label.
PB-65224: Fixed an issue in which optional signatures were not taken into account when the document status was updated on the Overview page.
PB-64142: Fixed an issue in which the displayed signing logo was too small.
PB-65237: Fixed an issue in which signing logos larger than the maximum allowed size were not being scaled down.
PB-63567: Fixed an issue in which the signing logo appeared too much to the right when the Signing Ceremony was accessed on an iPad.
PB-64239, PB-36276: Fixed an issue in which customized Field Validation messages created in the SDKs or the API failed to appear in the User Interface.
PB-63433: Fixed an issue in which a Signature Box had been signed, and then reverted to undo the signature. When the user subsequently clicked the box to sign it again, the signature should have been applied after a single click. Instead, the user needed to click the box twice to reapply the signature.
PB-70138: Fixed an issue in which reviewers — recipients who do not sign — could check a box to accept the Electronic Disclosures and Signatures Consent document.
PB-64972: Fixed an issue in which the system failed to translate the content of the Declined transaction error message.
PB-66041: Fixed issues that arose with translations into Japanese.

Senders

PB-65975: Fixed an issue that occurred when a new sender selected their language as Chinese or Korean, and then entered a password with special characters as part of the procedure to register their account.

PB-65415: Fixed an issue in which signers were assigned a parallel signing order, but their order was updated when the transaction was sent for signing.
PB-63776: Fixed an issue in which the system incorrectly adjusted the signing order for signers after certain signers were removed or added.
PB-66334: Fixed an issue in which recipients with an email address in the .charity domain could not be added to a transaction.
PB-70313: Fixed an invalid Japanese translation of the Admin menu item in the Sender interface.

Developers

PB-65913: Fixed an issue that prevented the .NET SDK from being used to see when a transaction's attachments had been attached. This issue arose because the insertDate property was not being returned when information about attachments was requested.

PB-69203: Fixed an Unhandled Exception error that was caused by a missing User Agent header in the .NET SDK.
PB-63611: Fixed an issue with Japanese email templates that made some characters appear incorrectly.
PB-65996: Fixed an issue caused by the fact that the email.expire template used the variable $PACKAGE_OWNER_NAME for the name of the email’s recipient. This is not a valid variable in that template, so no recipient name appeared in the resultant email. This was fixed by replacing $PACKAGE_OWNER_NAME in the template with the valid variable $RECIPIENT_NAME.

Account Owners & Admins

PB-65149: Fixed an issue in which some customers with the Enterprise Plan could not change the following Data Retention settings: (1) Total Transaction Lifetime; (2) Incomplete Transactions.

SMS Authentication

PB-65751: Fixed an issue that arose when a user tried to authenticate themselves via SMS after their SMS passcode had expired. The error message that should have appeared is: The SMS passcode you have entered has expired. Instead, the following message appeared: Something went wrong. Please try again or contact support.

PB-65625: Fixed an SMS authentication issue in which the system sometimes failed to lock out a user after they had entered an incorrect passcode more than the maximum number of times.

Delegation

PB-65735: Fixed an issue in which delegates whose delegation period had expired were still able to access the account of the user who had delegated them. This occurred if the delegation was made before OneSpan Sign 11.38 was released.

PB-65682: Fixed an issue in which delegates failed to receive notifications about uploaded attachments, despite the toggle switch Send copy of all emails to delegates having been enabled.

Evidence Summary

PB-42849: Fixed an issue with Japanese characters in the Evidence Summary document.
PB-66119: Fixed an issue in which the Evidence Summary sometimes failed to register a signer's phone number.
PB-70881: Fixed an issue in which the sender's viewing documents in the Designer wrongly caused events to be added to the Evidence Summary.

Security

PB-63900: We learned that our Java SDK had a dependency on software that represented a potential security threat. We quickly removed this vulnerability by upgrading that software to a version that has no security issues.

Changed Behavior

PB-62867: Zooming in and zooming out are no longer available within the Signing Ceremony on the Upload Document page.

SaaS 2020-Dec: Release 11.38

What's New

Signing Ceremony

Can sign without cookies: Starting with this release, in most signing scenarios the New Signer Experience will no longer use cookies to store session information. Nonetheless: (1) signing with a Trust Service Provider still requires the use of cookies; (2) scenarios that have integration points with third-party entities such as Equifax or an IdP server may require the use of cookies — such requirements are beyond our control.
Maintain document pane's expand/collapse status: Release 11.36 enabled the New Signer Experience to automatically display to each signer the list of documents they need to review. This feature has been improved to maintain the document list's expanded or collapsed status when a user navigates across documents.
Overview page for signers: Introduced a new Overview page that appears when a signer accesses a transaction. This page: (1) provides a summary of the signer's required tasks in the transaction; (2) indicates the signer's progress in performing those tasks. By contacting our Support Team: (1) this page can be turned on or off (default = off); (2) the page's content can be customized (showing or hiding various fields and default text).
Form Field validation part of document confirmation: Added Form Field validation to the document-confirmation process. This will ensure that all Form Fields have been completed correctly before a document is signed.
Enhanced workflow for attachments: We enhanced the workflow for transactions that ask the signer to upload one or more attachments. After confirming all signed documents, the signer is asked to go to the Uploads page (done by clicking a Go to uploads button). On that page, the user can upload documents to the transaction. If the upload of a document is Required, the transaction cannot be finished without uploading the document. By contrast, the user can skip any document whose upload is Optional. If all remaining uploads are optional, the user can skip them all, and go directly to the Thank You page.
Documents and Downloads panes merged: To simplify the user's experience, the Documents and Downloads panes have been combined into a single pane.

New User Experience

Enhanced Access Delegation: We enhanced the Access Delegation page, partly by changing the dialog box used to add or edit delegates. When a new delegate is being added, it is now possible to specify both the Start and End of the delegation period. If no end is specified, the delegate will be able to manage transactions indefinitely.

Senders

Bulk Send accepts users with same email: The Bulk Send feature now supports sending transactions to multiple signers who share the same email address, but have different names.

Account Owners & Admins

New defaults for Data Retention: We introduced default values for the following Data Retention settings: (1) for Completed Transactions, newly created accounts have a default of 120 days (no change for existing customers); (2) for Incomplete Transactions, the default is 120 days for all customers. Note: In this context, "incomplete transactions" do not include transactions whose status is Sent (their storage life is determined by configuring a Sent Transactions Expiry Time on a separate page).
Can preview customizations: While an Admin is customizing the New Signer Experience, they can now preview how their changes will look. After they click Preview on the customization page , the New Signer Experience page will appear with all their changes applied (colors, logo etc.).

Redesigned Account Summary Report: We redesigned the Account Summary Report page to improve its usability (e.g., users can now expand or collapse transaction details; the page responds more quickly to user actions).

Bug Fixes

Signing Ceremony

PB-63374: Fixed an issue in which a signature captured in one document failed to be applied to the transaction's subsequent documents.
PB-63716: Fixed the following issue. Two recipients of a transaction had different names but the same email address. When one recipient declined to sign, the system wrongly recorded that the other signer had declined.
PB-64021, PB-64022: Fixed an issue in which improperly formatted documents caused severe slowdowns. Note: The implemented fix means that text from certain pages cannot be copied. That text would have been illegible anyway because of the original document's bad formatting.

PB-63961: Fixed an issue in which an error message failed to appear after a signer using Internet Explorer entered an incorrect SMS code.

PB-63917: Fixed an issue in which the customized text in an SMS authentication message failed to display properly.

PB-62586: Fixed an issue in which radio buttons configured with conditional logic failed to work as expected.
PB-60062: Fixed a performance issue that occurred when 200 or more fields were added to a document page.

Classic Signing Ceremony

PB-64146: Fixed an issue in which the system failed to load a particular accessible PDF into the Mobile Signing Ceremony.

Signing Ceremony

PB-62989: Fixed the following issue. When a signer who was also the transaction owner and a group member tried to confirm their signature, the message "Something went wrong" appeared.

PB-62344: Fixed an issue in which signers could not access a transaction if they shared the same email address, but had been assigned different authentication methods.

Senders

PB-64059: Fixed an issue in which Senders could not see the Back arrow after they sent a transaction, or after they navigated to a transaction whose status was In Progress. In thus became harder for them to return to the previous page.

PB-62267: Fixed the following issue. When a recipient marks a transaction email as spam, the system should send a Spam Complaint notification to the transaction's Sender. This notification was not received.

Account Owners

PB-63902: Fixed an issue in which an Account Owner had not specified an expiry date for a transaction/template, yet the system automatically put one in the Expiry date field.

Performance Improvements

PB-61059: We improved the performance of the New Signer Experience when it processes a document that has over 200 fields. We significantly reduced the times required to load such a document, to update its Form Fields, and to navigate between its Form Fields.
PB-62431: We improved the performance of our conditional logic feature in the following ways: (1) we increased the speed with which conditions that affect multiple fields are reflected in the User Interface; (2) if multiple fields are affected by a condition, we now group them together in the Evidence Summary so only one call is made.

Known Issues

When two signers participate in an in-person accessible transaction via the New User Experience, the first signer can enable screen-reader accessibility, but the second signer cannot. This issue will be resolved in an upcoming release. Until the issue is resolved, an effective workaround is to reload the Signing Ceremony.

If a Sender other than the Transaction Owner is designated as a transaction's notary, when they access the Signing Ceremony they will be presented with the Electronic Consent Document. The system should not present this document to them. If they click Accept, they will get an error (yet they can safely move to the next document without clicking Accept). This issue will be resolved in an upcoming release.

Some customers with the Enterprise Plan may not be able to change the following Data Retention settings: (1) Total Transaction Lifetime; (2) Incomplete Transactions. This issue will be resolved in the next release.

In the Designating a Delegate procedure, the Start Date and End Date fields may not work properly. For example, the delegate may be able to access transactions before the delegation period starts. This issue will be resolved in the next release.

Dropping IE browser support starting 11.39: Starting with OneSpan Sign 11.39, the New User Experience — including the Signing Ceremony — will no longer support version 11 of Internet Explorer. This has the following consequences. (1) if Signers access the New Signer Experience from IE, they will not be able to view any documents — they will be presented with an error message to use supported browsers instead. (2) Senders and Admins will nonetheless be able to access their part of the New User Experience from IE, but a prompt will: (a) inform them that IE is no longer supported; (b) recommend using supported browsers for the best experience. (3) the New User Experience — including the Signing Ceremony — will no longer support Microsoft Edge in IE mode. Note: The Classic Signing Ceremony — i.e., the part of the Classic User Experience for Signers — will continue to support Internet Explorer until it is deprecated in June 2021.

SaaS 2020-Nov: Release 11.37

What's New

Signing Ceremony

Zoom level is displayed: The zoom level of a viewed document is now displayed to signers.
Removed secondary color: The secondary color was dropped from the palette of branding options, since it didn't add much value. We replaced the secondary color with a shade of the primary color.
Improved performance: Formerly, when New User Experience was accessed from Internet Explorer, an input field's tooltip was dynamically positioned above or below the field. Now the tooltip is always displayed below the field. This change to a static position improved the performance on Internet Explorer.
Redesigned authentication pages: We redesigned the authentication pages in the New Signer Experience. These pages support: (1) the Q&A, SMS and KBA authentication methods; (2) multi-method authentication for an individual user. All strings in the New Signer Experience can be customized by contacting our Support Team. If you were already using customized strings on the authentication pages in the New Signer Experience, please contact our Support Team to ensure that those customizations are reflected on the redesigned authentication pages. Note: We did not change the authentication pages for Senders.
Change Signer accepts same email for a different recipient: Using the Change Signer feature, an external recipient can now change to a recipient who shares their email address, but has a different name.
Fast Track accepts users with same email: The Fast Track feature now supports adding to a transaction external recipients who share the same email address, but have different names.

Senders

Improved expiry dates: When the transaction-expiry feature is configured in a template for a number of days, the system no longer calculates an expiry date. Instead, the expiry date for a transaction created from such a template is calculated from: (1) the transaction's creation date; (2) the number of days before expiry that are specified in the template. To reflect this change, we removed the expiry date from the List page for such templates.
Configure in-person Welcome page: Enabled Senders to show or hide elements of the Welcome page for an in-person transaction.
Configure in-person Thank You page: Enabled Senders to show or hide elements of the Thank You page for an in-person transaction.
Configure e-Notary Welcome page: Enabled Senders to show or hide elements of the Welcome page for an e-Notary transaction.
Configure e-Notary Thank You page: Enabled Senders to show or hide elements of the Thank You page for an e-Notary transaction.
Removed product name from the application version: Formerly, the New User Experience displayed the application version as "OneSpan Sign <version #>". We changed this to "Version <version #>" in order to white-label the application, and thus avoid confusing Senders.

Developers

Multi-doc support for Digital Mortgages: If a mortgage transaction has one SMART Document and one or more PDFs: (1) an eOriginal vault can now store all those documents for the transaction; (2) eOriginal's Audit Trail now lists all events related to the transaction and its multiple documents.
Multi-doc support for Digital Lending: If a transaction has multiple loan documents: (1) an eOriginal vault can now store all those documents for the transaction; (2) eOriginal's Audit Trail now lists all events related to the transaction and its multiple documents.
Create reports about your account: The following new API calls create various reports about your account: (1) reports/sender-transaction-summary returns a list of Senders, with a summary count of their transactions by status (can be filtered by date range); (2) reports/transaction-summary returns a list of transactions, with summary information per status (can be filtered by date range and senderId); (3) reports/transaction-detail returns the details of a specific transaction (must pass the transactionId as a parameter).
Specify the Designer page's language: When the Designer is integrated into an iFrame, the Designer page's language can now be specified by adding a parameter at the end of the associated URL.

Account Owners & Admins

Enhanced Self-service Data Management: We improved the page that manages data retention. The four main settings on this page are now as follows. (1) Total Transaction Lifetime: This setting is new in this release. It specifies how long after its creation any transaction will be stored (e.g., if this lifetime is 30 days, a transaction created on January 1 will be deleted on January 31). (2) Archived: Specifies how long archived transactions will be stored. No other retention setting affects archived transactions. (3) Incomplete Transactions: Specifies how long incomplete transactions will be stored (their state is Draft, Declined or Expired). Note that the storage life of transactions in the state Sent is managed on a separate page called Sent Transactions Expiry Time. (4) Completed Transactions: Specifies how long completed transactions will be stored. The Data Retention page also has a section of Advanced Settings for Incomplete Transactions. This permits the specification of smaller retention values for incomplete transactions in particular states (Draft, Declined or Expired). If inconsistent deletion dates are specified, the date that occurs first takes effect. For example, suppose the Total Transaction Llifetime is 100 days, while Draft is 20 days. If a transaction is in the Draft state for 20 days, it will be deleted even though the Total Transaction Lifetime is 100 days. IMPORTANT: Customers with the Enterprise Plan can change all data-retention settings. Customers with the Professional Plan can change all the settings except Total Transaction Lifetime and Incomplete Transactions.
New permission: Transaction visibility for delegates: We added a new permission that enables a delegate to see all the transactions on the account they have been delegated to manage. Without this permission, a delegate can see only the transactions that are in draft, are in progress, or were completed during the period of their delegation.
Determine if notifications are sent to a delegate: When a delegate is added to an account, Admins can now determine if they will be sent copies of all future email notifications that concern that account.

Security

Private Encryption KMS supports sub-accounts: The Private Encryption Key Management Service (KMS) introduced in OneSpan Sign 11.36 now supports accounts with sub-accounts.

Bug Fixes

Signing Ceremony

General

PB-61124: Fixed an issue in which the Decline button failed to be disabled when the decline reason exceeded the maximum length (4000 characters).
PB-61168: Fixed the following issue. If a signer tries to sign without selecting a required radio button, the border around that button is highlighted in red. Once the signer selects that button, the red border is supposed to disappear. The problem here was that the red border failed to disappear after the signer selected the required button.
PB-60305: Fixed an issue in which input-field text on the Reassign Recipient panel was not vertically centered when the user's browser was Internet Explorer.
PB-61513: Fixed an issue in which a signer who accessed the Signing Ceremony when it was not their turn to sign incorrectly saw documents as "accepted" (instead of seeing the message: It is not your turn to sign).
PB-61515: Fixed an issue in which Signers A and B had correctly been assigned the same priority in the signing order. The problem was that Signer B could not even review their documents until Signer A had finished signing their documents.
PB-61527: Fixed an issue in which signers couldn't download documents that had either the same signing priority, or a non-sequential signing order.
PB-50742: Fixed an issue in which some countries or areas failed to be translated in the Country - Area list on the Reassign Recipient authentication panel.
PB-50743: Fixed an issue in which for some languages, some countries or areas in the Country - Area list on the Reassign Recipient authentication panel were not sorted in the correct order.
PB-62495: Fixed some issues with the Japanese translation of text in the New Signer Experience.
PB-61359: Fixed the following issue with the Capture Signature feature on mobile devices. Formerly, when a signature was captured on a mobile device, the signer was wrongly returned to the transaction's first document. Now the signer's position in the current document is maintained.

Accessibility

PB-61072: Fixed an issue in which NVDA screen readers failed to vocalize a warning message about blank e-Notary Journal entries.
PB-60445: Fixed the following issue. When a user focused on a required field that had been assigned a value, screen readers failed to vocalize that the field is required.
PB-60451: Fixed an issue in which screen readers on Safari failed to vocalize the errors that appeared below input fields on the Reassign Recipient panel.
PB-35476: Fixed an accessibility issue in which the Placeholder attribute in the Decline transaction panel sometimes led to confusion. We replaced it with a label over the Other Reason text area.

Senders

PB-62496: Fixed some issues with the Japanese translation of text for Senders in the New User Experience.
PB-61724: Fixed an issue with the Client Apps feature that requests a short-lived API Token to authenticate a Sender. The system failed to find the Sender if their submitted email address contained any upper-case letters.
PB-43722: Fixed an issue in which a template's specification of a notary failed to be inherited by transactions that were created from that template.
PB-61911: Fixed an issue in which the specified order for signers failed to work properly if the signers shared the same email address.
PB-61542: Fixed an issue in which the new British Columbia area code 672 was not recognized as valid when a recipient entered it as part of their phone number for SMS authentication.
PB-61681: Fixed an issue in which the controls Review before completion and Enable screen reader accessiblity were wrongly aligned on the Transaction details page.

Developers

PB-41878: Fixed a memory leak that caused the New User Experience to crash when it processed HTTP GET requests with the URL /uiux/dashboard.
PB-59066: Fixed the following issue. After a hand-drawn signature had been captured on a document, the JSON response on a GET call reported an invalid string for the value of the captured signature.

Account Owners & Admins

PB-61811: Fixed an issue in which a OneSpan Sign BackOffice Admin could not reactivate a canceled account.
PB-62443: Fixed an issue in which an Admin could not delete a Sender from an account, even after all the Sender's transactions, templates, and layouts had been permanently deleted.
PB-60817: Fixed an issue with the Japanese translation of text in the default email.complete template.
PB-41930: Fixed an issue in which roles could not be deleted.
PB-43425: Fixed an issue in which predefined roles could not be enabled or disabled.

Performance Improvement

Faster conditional logic: To improve the performance of our conditional logic feature, we refactored its code. It now takes 50% - 70% less time to configure conditional logic among a document's fields, depending on the number of affected fields and conditions.

Known Issues

When a signer tries to accept a signature, the system validates the fields associated with that signature (e.g., additional fields that the signer must sign). If any issues are found, an alert displays a list of errors. Previously, when the signer fixed an issue, the alert was updated to remove the associated error. In the 11.37 release, the system is not updating the error alert. This issue will be resolved in an upcoming release.
When two signers participate in an in-person accessible transaction via the New User Experience, the first signer can enable screen-reader accessibility, but the second signer cannot. This issue will be resolved in an upcoming release. Until the issue is resolved, an effective workaround is to reload the Signing Ceremony.

SaaS 2020-Sep: Release 11.36

What's New

Signing Ceremony

Improved authentication panel for Reassign Recipient: To prevent unnecessary information from appearing when a signer is being changed, if only one authentication method is available, the radio buttons will now be hidden on the authentication panel for Reassign Recipient (also known as Change Signer).
More Actions menu hidden when no options available: To prevent unnecessary information from being presented to signers, the More Actions menu will now be hidden if no options are available within the menu.
Enabled a Help option: Enabled the display of a Help option. Customers can customize the content and formatting of the text that appears when a signer clicks Help (e.g., the text could provide your contact information, so signers can reach out to you if they require assistance). To enable this option and customize its associated text, contact our Support Team.
Display document list to signers: Senders can now configure an option that automatically displays to each signer the list of documents they need to review. When this option is enabled, the signers' left menu is expanded by default. To configure this option, contact our Support Team.
External Signer Verification: Added support for External Signer Verification. Formerly, this feature was available only in the Classic Signing Ceremony.
Session expiry warning : The following warning can now be configured to appear to signers when their session is about to expire: Your session will expire in x minutes, press 'extend' to extend the session. To configure this option, contact our Support Team.

Senders

Multiple signers can have same email address: The same email address can now be used by different recipients — i.e., recipients whose first names and/or last names differ. When a single email address is shared by multiple recipients, the system: (1) sends a separate email for each recipient; (2) gives the recipients separate signatures. This feature can be configured via the REST API or the Sender part of the New User Experience. Note: (1) this feature is available only for external recipients — i.e., recipients who do not have a OneSpan Sign account; (2) this feature is not yet supported for Fast Track, Change Signer, or SSO login — that support will be added in future releases.

When using this feature, we strongly recommend that Senders enforce an Authentication Method other than Email Address to uniquely identify each signer. Using such a method will ensure the probative value of the contract.

Specify max # of files per attachment: The maximum number of files per attachment can now be specified for a given transaction or template. This can be done via the REST API or the Sender part of the New User Experience.
Senders redirected to Signing Ceremony on login: After clicking a signing link in an email, and then logging in to OneSpan Sign, Senders are now auto-redirected to the Signing Ceremony for the relevant transaction. This saves them from having to search for the transaction they want to sign.
Update recipient Role names from the UI: Senders can now view or update the Role names of recipients within the New User Experience, and they can use these names to perform ad hocText Tag Extractions and Document Extractions.

Developers

Email templates support local languages: Added support for "local" languages to all signer-facing email templates, which are: email.remind.signer, email.expire.warning, email.reassign.newSigner, email.notify.mobile, email.attachment.rejected, email.unlock.signer, email.complete.
Removed "user-agent" from callbacks: As anticipated in the Customer Notice of 11.35's Release Notes, the "user-agent" header has been removed from callbacks.

Account Owners & Admins

Customize the signature stamp for delegates: Enabled the stamp of signatures applied by delegates to reflect their role as delegates. For example, the customized stamp could say: E-SIGNED by <delegate> on behalf of <delegator> on <date>. To customize the signature stamp for delegates on your account, contact our Support Team.
Enable/disable recipient history: Account Admins can now configure either of the following: (1) enable Senders on their account to see the account's recipient history; (2) disable Senders on their account from seeing the account's recipient history. To configure this setting, contact our Support Team.

Security

More secure encryption of data "at rest": We have leveraged Amazon's Key Management Service (KMS) to encrypt all OneSpan Sign customer data that is stored on our servers. That service resides outside the application, and ensures a seamless one-year rotation of all cryptographic keys.
Attachments scanned for malware: Attachments added by signers are now immediately scanned for malware. If malware is detected, the system will not upload the infected document or attachment.

Bug Fixes

Signing Ceremony

PB-59174: Fixed an issue in which the user's inputs to a field were not saved if the user had : (1) failed to tab out of a previous field; (2) then scrolled through document pages.
PB-43412: Fixed an issue in which the position of the Recipient history drop-down menu shifted whenever a character was entered in the Recipient Email field.
PB-56602: Fixed an issue in which the Customize page crashed if a BackOffice Admin had specified an invalid language key in the signing.logo resource.
PB-59173: Fixed an issue in which the Signing page could not be accessed from the Admin menu.

PB-60292: Fixed an issue in which the Signature Sticky option failed to be hidden on the Signing Customization page.

PB-41710: Fixed an issue in which the Decline option was available for a recipient who was merely a Reviewer.

PB-60122: Fixed an issue in which the Date Picker field failed to appear with the exact dimensions it had been given in the Designer by the Sender.

PB-59845: Fixed an issue in which the List field failed to appear with the exact dimensions it had been given in the Designer by the Sender.

Senders

PB-59184: Fixed the following issue. Formerly, when a transaction was created from a template, the transaction inherited the template's expiry date. If that date was in the past, the transaction could not be created. Now the transaction's expiry date is its creation date plus the number of days specified in its source template. This more sensible expiry date never blocks the creation of a transaction from a template.
PB-50611: Fixed an issue in which an SMS authentication message was sent in the wrong language after a Reassign Recipient operation.
PB-42068: Fixed the following issue. When a Sender tried to download a file that a Signer attached and subsequently deleted, the application crashed. Now in that situation: (1) the error message "File was deleted by Signer" appears; (2) the file is no longer available for download.
PB-59973: Fixed an issue in which an incorrect error message appeared after the Sender tried to add an unsupported document type to a transaction.

Developers

PB-60185: Fixed an issue in which the Done button failed to be hidden when a template was loaded into an iFrame.
PB-59849: Fixed an issue in which the Java SDK threw an error when it tried to process users' email addresses that contained an apostrophe.
PB-43382: Fixed an issue in which a new transaction could not be created when Single Sign-On Authentication was added for a recipient via the REST API or SDKs.

Account Owners & Admins

PB-59715: Fixed an issue in which the User Interface failed to refresh after a Role was deleted.
PB-43425: Fixed an issue in which the system failed to enable/disable predefined Roles.
PB-38944: Fixed an issue in which selected Role checkboxes failed to refresh properly after the system successfully enabled or disabled those Roles.

Accessibility

PB-58815: Fixed the following issue that occurred with the JAWS screen reader on Chrome. The Country drop-down menu failed to expand within the Reassign Recipient authentication panel.
PB-37069: Fixed an issue in which the screen reader failed to read a field's tool tip when accessibility mode had been enabled in the New Signer Experience.
PB-59767: Fixed the following issue with the toggle button on the Reassign Recipient authentication panel. The focus on that button failed to comply with accessibility guidelines.

Enhancement

Starting with this release, all new PAdES B-B signatures applied in our European environment will be LTV-enabled.

Known Issues

The signing process does not work properly if multiple recipients share the same email address, and they have the same priority in the signing order (i.e., they share the same index in the signing order). This issue will be fixed in the next release.

SaaS 2020-Jul: Release 11.35

What's New

Classic User Experience

Deprecated the Sender interface: The part of the Classic User Experience for Senders and Administrators has been deprecated. If a Sender or Admin tries to use it, they will be redirected to the corresponding part of the New User Experience. Note: The Classic Signing Ceremony — i.e., the part of the Classic User Experience for Signers — is still supported.

Signing Ceremony

Added notarized signing: Added support for the e-Notary feature. This feature must be enabled for both the Sender and their account.
Added delegate signing: Added support for delegate signing. This feature is not yet accessible.
Can change signer: Added support for the feature called Reassign Recipient, also known as Change Signer.
Enhanced optional signatures: Enabled reassignment to a new signer when only the optional signatures of an original signer remain to be signed.
Added reminder about attachments: After a user confirms the last document in a transaction, but has not uploaded any attachments, a dialog box now asks if they want to upload any attachments. If they click Yes, they are redirected to the Uploads pane. If they click No, the document will be confirmed, and they will exit signing.
Added a calendar button: Added a helpful calendar button within the Date input field. This button is not yet accessible.
Localized Consent document name: Enabled the name of the default Electronic Consent Document to appear in the recipient's language.
More unified branding colors: Made the New Signer Experience's default branding colors match OneSpan's branding colors more closely.
Improved document zooming: Enhanced the clarity of the text that appears when users zoom into a document.

New User Experience

Convenient downloading: Enabled users to employ the More Actions menu to download signed documents. To download attachments and the Evidence Summary, see the Transaction Details page.
Can download specific attachments: Enabled Senders to download specific attachments that signers have uploaded. If Senders wish, they can still download all of a transaction's attachments at once.

Senders

Can manually resend invitation email: Enabled Admins, Senders, and Integrators to resend an invitation email to a user in the state Pending. That user can accept the invitation, and create a OneSpan Sign account. When that account is registered, the user is moved out of the state Pending.
Notification email to delegates: When a Sender adds a delegate to their account, the delegate is now notified about this change by email. This feature required a new email template called email.delegation.activate.
Enforce Authentication for SSO: The Enforce Authentication feature will now be applied to recipients if Single Sign-On Authentication is configured for the Sender's account.
Improved Send Reminder feature: Enhanced the command "Send reminder to recipients" so reminders are sent only to recipients who can access the Signing Ceremony (e.g., where a Signer Order has been imposed, perhaps a Reviewer and Signer 1 can currently access the ceremony, but Signer 2 cannot).
Enhanced Transaction Complete emails: Enabled a Personal Message to be included in Transaction Complete emails (both email.complete and email.transaction.complete).

Developers

Digital Mortgage Solution: We have created a Digital Mortgage Solution that can store an e-Note from a mortgage transaction in a digital vault. For a given transaction, OneSpan Sign vaults a single e-Note in SMART Document format. Certain REST API settings associated with a OneSpan Sign transaction can specify which document should be vaulted, and in which organization and vault it should be stored. After being vaulted, the original SMART document is deleted from OneSpan Sign's database.
Digital Lending Solution: We have created a Digital Lending Solution that can store a loan or other related document (e.g., a contract, chattel paper) in a digital vault. Certain REST API settings associated with a OneSpan Sign transaction can specify which document should be vaulted, and in which organization and vault it should be stored. After a document's authoritative copy is vaulted, it is replaced in OneSpan Sign's database by either a watermarked Non-Authoritative Copy (default) or a blank document.
Improved Bulk Signing: Improved the Bulk Sign feature by enabling it to skip already-signed signatures.
Configure Decline reasons: Enabled localized Decline reasons to be configured for the New Signer Experience via SDKs.
Configure Handover URL: Enabled a localized Handover URL to be configured for the New Signer Experience via SDKs.
Enhanced Out Of The Office emails: Added Server Response code to the email.ooto template. The template can be edited at the account level to remove or add that code.

Account Owners & Admins

Enterprise Administration

Roles & Permissions for integrators: Added the APIs for Roles and Permissions to the Java SDK and .NET SDK, and made these APIs publicly available via our interactive Open API Specification.
Sub-accounts for integrators: Added the API

SaaS 2024-January: Release 23.R5.1 (11.54.1)

Bug Fixes

SaaS 2023-October: Release 23.R5 (11.54)

What's New

OneSpan Trust Vault (Compliance Vault)

Languages

Senders

Admins

User Authentication

Accessibility

Notarization & Virtual Room

eOriginal Integration

External Archiving

Bug Fixes

User Authentication

Senders

Connectors

Signer Experience

Admins

Vaulting

Accessibility

Changed Behavior

Technology Updates

Known Issues

SaaS 2023-September: Release 23.R4.1 (11.53.1)

SaaS 2023-September: Release 23.R4 (11.53)

What's New

Knowledge-Based Authentication

ID Verification

Languages

Senders

Admins

Remote Online Notarization

In-App Reporting

Bug Fixes

Free Trial

User Authentication

Senders

Signer Experience

Admins

Remote Online Notarization

Accessibility

Language

Changed Behavior

Upcoming Changes

SaaS 2023-August: Release 23.R3.1 (11.52.1)

Bug Fixes

Accessibility

Printing

Upcoming Changes

SaaS 2023-July: Release 23.R3 (11.52)

What's New

External Archiving

Senders

Signer Experience

Account Owners & Admins

Developers

Remote Online Notarization

Remote Online Notarization & Virtual Room

Evidence Summary

Bug Fixes

Senders

Signer Experience

New User Experience

Developers

Account Owners

Accessibility

Remote Online Notarization

Virtual Room

In-App Reporting

Audit Trail

Changed Behavior

Upcoming Changes

Known Issues

SaaS 2023-June: Release 23.R2.1 (11.51.1)

SaaS 2023-May: Release 23.R2 (11.51)

What's New

Remote Online Notarization

Signer Experience

Senders