Dalet is excited to present the release of Dalet Flex 2025.7.0
This release of Dalet Flex provides the new features, quality and security enhancements, bug fixes, and other changes listed below.
Dalet Flex
New Features
Flex Package Solution allows updates without breaking local configurations
In this version of Dalet Flex, the Flex Package Solution deployment scripts have been improved to create a file that holds the revision data for all objects in the source and target versions and use this to create a report that identifies non-equal objects in the solution package and the target environment. This information is used to skip the non-matching objects when applying the solution package registration to the target environment. This ensures that existing customized additional configurations are not broken on applying the solution package registration to the environment.
To deploy the default configurations, you run the bundle registration scripts with validateVersion: false. In this case, any changes that have been made locally will be overwritten.
NOTE: The validateVersion option defaults to `true` to enable version validation. This means that by default, the solution package generates the comparison report and deploys the bundles skipping any non-matching objects.
Known Issue for Solution Packages in 2025.7.0
In 2025.7.0, new/existing environment configurations where the Solution Package has already been applied, will not be updated when the solution package runs with the given version as part of the environment build.
- For new environment configuration: use `validateVersion:false`
- For existing environment (where solution package exists): `validateVersion:false` will overwrite existing local configurations
Improve ParameterValidationFilter error messages and logs
From this version of Dalet Flex, improvements have been made in the error message and logging for the ParameterValidationFilter. These improvements make it easier for users and for the support team to diagnose validation failures.
The new error message clarifies the rejection reason, shows invalid parameter and value, and includes a flex.request.id for support reference.

WARN-level logs record rejected parameter, regex pattern (post-whitelist), and guidance on relaxing rules for forbidden values using Consul KV whitelist.
The WARN message has the following text:
ParameterValidationFilter rule failure: parameter value:
<insert value here, on a line of its own>
was rejected by regular expression:
<whatever the regex pattern actually is, after having been modified by the existing KV whitelisting, if any)
This could reflect malicious usage. If after careful consideration the usage is deemed valid, then it is possible to relax of the filter rules by configuring the Consul KV `flex/enterprise/whiteListParamFromXSSFilter` to be a comma-separated whitelist of tags that should be taken out of the regex (e.g. `alert, meta`).
Changes in the JEF Http Message plugin
The JEF Http Message plugin has been improved as follows:
- Request Processing/Result Processing fields are not created/expanded by default
- Variable name in Request Processing/Result Processing fields is no longer mandatory. If no value is provided, the default value config is used.
Pre/Post scripts are only executed if they exist in the Source Control Script/Internal Script fields
If a variable is set in the action configuration and no scripts are provided, this warning is displayed in the Job History:
- Config field
"Request Preparation" should be removed as it does not contain either script path or an internal script to execute
- Config field
"Result Processing" should be removed as it does not contain either script path or an internal script to execute
Configure writing tcd files for MXF in Extract Technical Metadata actions
From this version of Dalet Flex, a new configuration option has been added to write timecode .tcd files when performing an Extract Technical Metadata action on an mxf file that has a proxy file associated to it. The new configuration supports creating a tcd file regardless of whether the proxy file was created by Dalet Flex or by a 3rd party, such as Vantage or AmberFin.

If this option is enabled and the asset does not have a proxy file associated with it, the job will fail. The tcd file is stored in the location of the Segmented Proxy asset and if no Segmented Proxy exists, it is created in the location of the first available Proxy asset.
NOTE: This setting replaces and overrides any Consul KVs or job properties that were used in earlier versions of Dalet Flex.
Improve API URL validation to improve performance
To prevent API calls for asset children causing high DB usage and talking a long time to complete, if the API URL has a double slash even if by mistake, it throws the following 400 response:
{
"errors" : [ "Invalid URL format: Double slashes (//) are not allowed in the path. Please use single slash to separate path segments. Use the provided flex.request.id to locate relevant logs in the system." ],
"flex.request.id" : "x_glBxCretZR9Hln9ZQjG"
}
An example of an incorrect call is https://cio.images-mam.org/api/assets//children.
Selection and Bulk Selection are Unsynched
From this version of Dalet Flex asset selection and bulk selection are no longer synched. When you select multiple items they are not automatically added to the Bulk Assets listing. You can ONLY add assets to the Bulk Assets listing by selecting the Bulk selection checkbox.
Standalone Run Wizard moved to Header bar
The standalone Run Wizard icon has been moved to the Header bar in FlexMAM and in FlexREVIEW. If you do not have rights to run wizards, this button is hidden.

Support publishing events by flex-fileaccess-service
Event publishing for flex-fileaccess-service has been implemented. Currently, an event is pushed only when an asset is downloaded.
Event publishing is available by default. If required, it is also configurable through consul KV or through Environment variable.
Consul KV: flex/flex-fileaccess-service/enableEventPublish (default=true)
Environment variable: EVENT_PUBLISH_ENABLE
Event name: DOWNLOADED
The environment variable takes precedence over the KV when both are specified.
Prevent disabling/deleting an asset that contains assets and user defined objects
To prevent ghost assets remaining in the system , from this version of Dalet Flex, you can no longer disable a workspace that has associated assets/user defined objects If a workspace contains assets/UDOs the Disable button is not displayed.
If you try and disable a workspace with associated assets/UDO via API or from FlexADMIN, this 400 invalid request response is thrown.
Unable to disable workspace. This workspace contains assets and user-defined objects that would become inaccessible if disabled. Please remove or relocate these items before disabling.
FlexXtend
New Features
Import an FCPXML project file when saving a project
It is now possible to import an FCPXML format file when saving a project to Dalet Flex through FlexXtend. To enable this, select the Create Project XML check box that has been added to the FlexXtend settings panel. The file is saved to the location stored in the Export FCPXML To field.

To provide information regarding the FCPXML Project imported into Dalet Flex, the variable `FCPXMLProject` is sent to the Save/Save as workflow if the FlexXtend panel is configured to create a Project XML and export it to Dalet Flex.

Changelog
2025.7.0
Enhancements DaletFlex
- Change main vertical dividers color to match the improved UI so vertical divider color is uniform across all the FlexMAM apps.
- Display clear access-denied pages for unauthorised application access in FlexMAM instead of a generic “not found” page.
- Enterprise API updated to have a new matrix param
`withType`, /api/workflows/110797/variables;withType=true, if it's true, it will return type and action (if present) together with the value of a variable. JAE is updated to use this new matrix param.
- Improve performance of indirect multipart write
- Use this Consul KV
flex/shared/vfs/multipartIndirectCopyEnabled=true to improve performance of indirect multipart write. Validated for:
- Copy from object storage (any) to local file
- Copy from local file to object storage (AZBS, S3)
- Copy from object storage (any) file to object storage (AZBS, S3 - different than source storage)
- Add support for tags for resource service to Flex scripting SDK.
- IndexElastic: Bulk update Users and Groups when a role’s type or name is updated.
- Create a new endpoint in web-transfer-app that provides the FlexMAM user settings.
- Create account metadata, attachment vfsLocation endpoint in Enterprise.
- Improves the layout of the right-hand Preview/Summary pane so that when it is resized in anyway the Player stays anchored to the top of the pane and maintains its aspect ratio and the controls and metadata remain directly under the Player.
- Enable org.apache.commons.csv library for JEF scripting stencil to enhance CSV parsing capabilities.
- Add new configuration parameter in Launch Vantage Workflow (JEF) action to configure the Variable name used to store the Vantage output response.
- Media Cortex: Make all jobs
auto language parameter for Speech-to-Text language recognition.
- Publish ACL events while removing all ACLs of a user with the JEF Remove all ACLs action. Events are published for both collection and object ACL removal.
- Remove usage of
children field of UserDefinedObject from all services. Create a new API for flex-fastobject-service to work with UDO children via API.
- Add a new configuration field parameter in Launch Vantage Workflow (JEF) action to capture the Media Output Location Name. The format of the name is
<variableName>-<fileIndex> and the path is resolved with SR folder mappings.
- Flex Core UI: Support uploading custom icons for Wizard. The icons are added in the Wizard creation page and are stored in the Account Storage in Account Metadata. The icons must be .png files and must be smaller than 2 MB. This is not implemented in FlexMAM/API.
- IndexElastic: Bulk update when collection content ACL is modified or an item is added or removed from collection.
- Flex Core API: Return icon URLs in the response of API wizards endpoint.
- Login App: Add E2E coverage for OIDC functionality of Okta, Auth0, Keycloak (OIDC/SAML).
- The
MODIFIED event generated by Enterprise includes before/after details of the asset hasProxy state.
- Fast Object Get Asset calls retrieve Extended Technical Metadata when
includeDetails matrix parameter=true.
- Flex (either JEF Extract Tech Metadata or on reading Enterprise/FO mapping) to support human readable values instead of raw information on fields.
- Fixed an issue where the
External Share badge was not added to type icons in Tile View.
- Added a restriction object cannot be created if the workspace is not set and the workspace supported is true for the respective object type.
- Support dynamic positions when opening modals in FlexMAM.
- Set hasProxy flag to true for assets with Segmented Proxy origin.
- Added support to generate thumbnails for annotations for assets with version < 4 and decoupleStartTimecodeEnabled= false.
- Add workflow launch-related info level logs in Enterprise and Hotfolder service to identify launch issues.
-
Migrate VFS to use AWS SDK V3 for JavaScript.
- Add support for still image sources in transcode profile.
- When performing transcode on an image (e.g. a static image video stream to accompany audio), the output video profile MUST have a frameRate value set.
- If there is no accompanying audio stream then the input must include a clip specification with a duration or end value.
- Add support for flattening Un-TAR output instead of unpacking to relative paths for pack implementation. To flatten the output, set the Consul KV
flex/flex-fileprocessor-service/enableDefaultUnpackDiscardRelativePaths to true. Default behavior is Consul KV to unpack to the directory structure of the TAR file when flex/flex-fileprocessor-service/enableDefaultUnpackDiscardRelativePaths = false or is not specified.
- Support passing start timecode to DMT for transcode or render (clipping) for growing MXF without Dalet Cut project.
Fixed Issues DaletFlex
- Fixed an issue where UHD ingest in cloud is very slow. Issue resolved by improving resource allocation and using an internal network endpoint for storage resources.
- [JEF Plugin] Fixed an issue where JEF HTTP Message action is not working after upgrade.
- [FSP] Fixed an issue where thumbnails were not being extracted for existing markers.
- Fixed an issue where the Launch Vantage Workflow (JEF) plugin does not support configuring the
Variable Name of the media output and all otputs are stored in the vantage-media-output complex so that when a workflow has two vantage outputs the first vantage-output-media output variable value is rewritten by the second output value.
- Fixed an issue where in the Launch Vantage Workflow (JEF) plugin all vantage output information is being captured in the single vantage-output-media context using a JSON file containing all the outputs unlike in the legacy launch Vantage plugin. Issue resolved by adding a new configuration field in this format
<variableName>-<fileIndex> to capture the output path.
- Fixed an issue with in-place metadata merge failures caused by not saving changes to the Name field in Single option value field properly.
- Fixed an issue where Subtitle file with asset origin
Caption is not searchable in FMP.
- Fixed an issue where a 403Forbidden response was received from MAM api calling from
http://localhost:3000 eventhough this domain is set as as a CORSTrustedDomain via a Consul KV. Issue solved by readding support for the consul KV flex/enterprise/CORSTrustedDomains which controls allowed CORS origins in flex-enterprise.
- [Extract] Fixed an issue where this error was thrown
Invalid SRT file eventhough the file seems to be good. Issue solved by enforcing strict ID and timestamp validation.
- Fixed a Metadata Update issue where the value of the Asset Status was reverting back to the previous value. Issue caused when metadata values are updated whilst a metadata merge is in process. After the merge completes, the metadata reverts to the prvious value. Issue fixed by not merging metadata that has already been merged. To perform this check use this Consul KV f
lex/flex-metadatamerge-service/performMergeCheck set to true.
- Fixed an issue when rendering from a growing file, the output is missing a few frames at the start of the clip.
- [Job] Fixed an issue where workflows were failing to get workflow variables.
- Fixed an issue where untar jobs were causing issues when unpacking to relative directories. Issue fixed by introducing a Consul KV to flatten untar jobs.
- Fixed an issue where an incorrect GET asset children call over the B2B api (with double slashes) results in high DB usage and slow retrieval of results. Issue fixed by adding a URL validation filter.
- [Profiles] Fixed an issue where validation actions are failing because the Video Codec is being saved in Uppercase and the validation expects lower case.
- Fixed an issue where scripted jobs to add attachment are failing with the error
Virus or malware scanning for file is failed with error code: 400. Issue caused because of the siz eof the attached files. Issue solved by increasing flex-filescan-service and clamav memory limit settings to support attaching larger files.
-
Fixed an issue where VFS copy/move hangs when S3 source is deep-archive or the output credentials are incorrect.
-
Update pending translations in French, arabic, Japanes, Italian, Hebrew, Spanish, German.
- Ensure DMT is used for transcode on growing MXF files regardless of output profile using implicit or explicit streams.
- Avoid merging metadata of an object if it has already been merged with the latest metadata definition.
- [Purge] Fixed an issue where Purge jobs on image assets fails throwing this hibernate error
Found shared references to a collection eventhough the file has actually been purged. Issue caused because image extended technical metadata was not being fully deleted;".
- Fixed an issue where the Single option
value field is not properly updated in a modified metadata definition. Issue fixed by making saving changes in the Single option value field itself mandatory before continuing.
- Update Enterprise Subtitle API query to Support
IMPORT Origin Subtitles as well as CAPTION Origin Subtitles so that they are available for Playback in FlexMAM and are fully searchable.
- Fixed an issue so that s3 region determination logic can handle vpce.amazonaws.com hostnames.
- Fixed an issue caused by the upgrade to AWS SDK V3. Issue fixed by explicitly setting the hostname when configuring S3 clients for VPCE endpoints.
- Fixed range loop issue with forced engine image sequence asset info extraction on any image sequence with more than 1000 images that was causing jobs to take a very long time to complete.
- Prevent truncation of growing files (M3U8 and MPD) due to reporting of earlier smaller file size in content length header. Read the whole file before setting the Content-Length.
- Fixed an issue where saving metadata is failing when the metadata form contains drilldown and tag fields.
- [FlexMAM] Fixed an issue with the Player buttons and Played dropdowns when the GUI is in an RTL language (Arabic & Hebrew).
- Operations Dashboard: Fixed an issue where Workflow Tab failed to load and threw an invalid limit parameter error.
- Fixed an issue in Metadata Designer where an Error message is displayed when expanding a Timeline object that has no icon defined for it.
- Fixed an issue with UI alignment for certain languages.
- Fixed an issue where the Add\Remove (+ icon) icon is hidden behind the vertical scroll bar on action execution page.
- Third-Party User Access Token: Fixed an issue where it was possible to generate an access token for a disabled third party user.
- Fixed an issue in the Custom Marker tab where the item count is not updated after editing marker metadata without clicking the refresh icon.
- Fixed padding issues in FlexMAM GUI.
- Fixed a number of issues where Player was not showing correct values when switching between assets or making in and out selections.
- Fixed an issue where adding access to a group in the Permissions > Internal tab does not add access to the Group and removes already assigned internal\external user access from the table.
- IndexElastic: Fixed an issue in IndexElastic where the hasProxy value was not updated when child asset's origin is changed.
- Fixed an issue FSP and FFP operations are not working when performed on S3 storage using http and not https, for example minio storage.
- Fixed an issue where pagination is not working properly in FlexREVIEW.
- Third-party sharing indicator and shared information should be displayed on
Access tab of all assets.
- Fixed log in JAE to use correct KV path for the
waveformNewLocation.
- Fixed an issue where the Add\Remove (+ icon) icon is partially overlapped by the scrollbar in FlexADMIN > Account Management and in FlexMOVE metadata.
- [FlexREVIEW] Fixed a synch issue where label text is not visible for Comments and User Assigned tabs till hovering the mouse on tabs.
- Fixed an issue where disabled workspace are listed in the workspace switching dropdown list.
- Add a validation to ensure that a Third-party role cannot be converted to a Standard role once it has already been configured in the Third-party access section in the Account Metadata.
- Fixed UI alignment issues in various screens in FlexMAM.
- Fixed an issue where it was not possible to preview and download documents attached to an asset from the assets relationship tab in FlexMAM.
List of Services upgraded between 2025.6.X (LTS) and 2025.7.0
For the new 2025.7.0 release, most services have changed.
Comments
0 comments
Please sign in to leave a comment.