v3.3.9-6Jan24

This release contains a fix to a security vulnerability - it is recommended that all users upgrade to this release

v3.3.9-5Oct21

Fix issue with Chrome security settings and deep linking
Fix issue with launching in a new window from Original Course View in Ultra
Fix line item issue when creating content item
Add missing default settings for new tools

v3.3.9

Disables HTML filtering of description fields for BasicLTI content items.

v3.3.8

Fixes issue when adding a mashup link which includes a launch URL at the time a content item is created.

v3.3.7

Fixes issue when adding a mashup link at the time of creating a content item.
Added allowfullscreen attribute to iframe used for static content returned with the content-item message.

v3.3.6

Fixed initialisation of default availability option on System Settings page.
Ensured that existing content menu options do not have their availability setting overridden.

v3.3.5

Added support for Course ID as the unique identifier when populating the context history parameter.

v3.3.4

Automatically inject custom parameters for service endpoints into messages
Fix bug when primary key not used as the context_id value for backward compatibility with context-based service endpoints

v3.3.3

Fixed bug with ToolProxyBinding Settings service when the database key is not used as the context ID value.
Removed option to disable signing of service requests

v3.3.2

Added check that service remains enabled when processing requests
Updated capabilities in profile (including withdrawing support for Context.label which was also returned as empty)
Fixed issue with service body hashes using signature methods other than SHA-1 and SHA-256