1. Issues

• Resolved problem with exporting reports for pages containing comments not attributed to an account (e.g. anonymous).

2. Security

• XSS hardening

Changes

• Resolved problem with signature checksum verification (falsely) reporting a page was modified on certain long duration signature pages.

• Improved notification message when a signature page with many signatures (e.g. > 70) exceeded the maximum size permitted by the Atlassian API.

• PDF Signature Archive now only includes comments from after the current signature page was started to support customers that need to sign/archive multiple times on the same page.

Security

• 2022-07-06 - Various hardening and security improvements applied

Released March 12, 2022

1. Signature Search highlights updated content

To assist with signature verification, Search has been enhanced to highlight Confluence pages reported as updated by Confluence after the first signature was captured. This is an indication that the content may have been changed and should be reviewed and Signatures re-verified.

It is recommended to enable the automatic content locking after Signing (available in the Start Signatures dialog and via eSign Configuration) to prevent unintentional content edits after signing.

2. Signature Verification now displayed in dialog frame

For improved usability the signature verification report is now displayed within a dialog frame on the content page, instead of navigating to a new tab page. Save/Print is still available from the frame.

3. Faster Finalize with PDF Archiving

PDF Signature Archiving has been moved to background processing so that users do not have to wait for the archive to complete before receiving confirmation of Finalize. The completed Signature Archive report will be automatically attached to the Confluence page within ~30 seconds.

4. Additional Items

4.1 eSign for Confluence has achieved Atlassian Cloud Fortified Satus.

See details here: https://www.atlassian.com/trust/marketplace?source=app-listing-badge

4.2 eSign Support Documentation has moved

With this update eSign online documentation has moved to https://support.esign-app.com. All help links within the app now direct users to this new site.

1. Signature Search

This update adds comprehensive search capabilities; search for pages globally, by space or by user.

• Search can be accessed from Apps > eSign Search, User Profile > My Signatures, Space Settings > Signatures, and/or the eSign Signatures Dialog.

• The Search view displays Status (of Signatures), # of Signees, Invite Counts, as well as the users who have signed and the users who are waiting to sign.

• Filter by Content text, Status (Open, Pending, Final) and User Role (Signed, Pending, or Owner).

2. eSign Search Macro

Search reports can now be embedded in any page to provide customized and reusable management reports. The search macro has additional options and can even include custom CQL clauses for advanced filtering.

3. Signing Pins can now be turned off

For customers that do not require the secondary authentication of a signing pin for regulatory compliance, the Pin Required feature can now be turned off.

• Signature Pin is required by default; configure this setting under Manage Apps >
  eSign > Configure.

• With the Pin feature off, users will no longer be prompted to enter a pin to Execute Signatures.

4. Additional Items

4.1 eSign is FREE for Small Teams

eSign is happy to announce that eSign is now free to use for teams of up to 10 users.

4.2 Security Hardening

As part of our continuous efforts to maintain a robust and secure app, the eSign for Confluence team completed a comprehensive security review with updates applied where possible.

Note that eSign does not store any customer, user or signature data. All persistent Signature data is stored within the Confluence cloud infrastructure. These signature records are cryptographically signed to prevent/detect unauthorized modification.

4.3 Pending Signatures

The Signatures Dialog now displays the PENDING label if there are active invites waiting to be signed.