Release Notes for Oracle Health Insurance Value-Based Payments Patch 4.25.1.0.1

This document contains the release notes for Oracle Health Insurance Value-Based Payments Patch 4.25.1.0.1.

Version compatibility: Oracle Health Insurance Value-Based Payments Release 4.25.1.x is only compatible with other Oracle Health Insurance applications release version 4.25.1.x unless explicitly stated otherwise.

In accordance with the OHI error correction policy (Document 1494031.1 on My Oracle Support), error correction support will be provided for this release and the previous two releases.

As per the Service Description, you are obligated to request a service upgrade within 90 days of this release being generally available (GA). In line with the Oracle Cloud Services Pillar document, Section 4.2.2 End of Life, this release will be EOL in 12 months.

Enhancements

ID Summary Patch

CPN-3641

Enhanced PHI logs access using base views

In SaaS deployments, PHI access logs are stored in the database for 60 days in the PHI_LOG_EVENTS table. Logs older than 60 days are moved to OCI Object Storage by a daily database scheduler job. Prior to this release, customers could query recent logs (≤ 60 days) using the logphievents generic API, but accessing older logs required raising an SR with the AMS team to retrieve files from OCI Object Storage.

This enhancement improves the customer experience by enabling PHI access logs to be extracted directly through base view generation. The PHI_LOG_EVENTS table is now included in base view generation, allowing customers to schedule a daily extract of the PHI_LOG_EVENTS_BV base view and load the extracted data into their own data warehouse for analysis and reporting.

An access restriction is created for PHI_LOG_EVENTS_BV, but it is not automatically granted to the ALL_VIEW_ACCESS_ROLE.

Documentation Links:
Administration Guide - Accessing PHI Logs in Oracle Health Insurance Cloud Services (OHI CS)
Developer Guide - Base Views Access Restrictions

CPN-3799

Operational Reports and Data Transfer

The following changes are made in Operational Reports and Data Transfer:

In the previous release, the CSV files generated by the Data Transfer IP did not include a header row. In this release, CSV files include the header.
In the previous release, when a query returned no records, the Data Transfer IP responded with HTTP 200 with an empty response body. This behavior is changed to return HTTP 204 (No Content).
Two new error messages are introduced in the Operational Reporting IP. The IP returns an HTTP 422 response with one of the following error messages:
- OHI-IP-ORV-008: View {0} does not exist
- OHI-IP-ORV-009: Access restriction grant is missing to query the view {0}
The following issues specific to On-Prem deployments are fixed:
- Incomplete or truncated responses when querying very large data.

Documentation Links:
Developer Guide - Data Transfer Integration Point - Response File Format
Developer Guide - Data Transfer Integration Point - CSV
Developer Guide - Data Transfer Integration Point - Response
Developer Guide - Operational Reporting Integration Point - Error Messages

CPN-4025

Security logs retrieval via API and data transfer

Prior to this release, security logs were written only to the file system and were not accessible through any API. With this enhancement, SaaS customers can now retrieve security logs using a dedicated API as well as through the data transfer feature.

A new API, logsecurityevents, is introduced, backed by the new table LOG_SECURITY_EVENTS. A corresponding base view, PHI_LOG_SECURITY_EVENTS_BV, is now available to support extraction of security logs via the data transfer feature. This allows customers to schedule regular extracts (e.g., daily) and load the data into their own analytics or SIEM systems.

Access to security logs is controlled:

The access restriction for PHI_LOG_SECURITY_EVENTS_BV is created but not granted automatically to ALL_VIEW_ACCESS_ROLE.
A dedicated access role must be explicitly granted to users who are allowed to extract security logs.

The table LOG_SECURITY_EVENTS is included in auto-purge with a default retention period of 7 days.

Documentation Links:
Administration Guide - Auto Purge
Administration Guide - Fetch Security Logs through API

NXT-31011

Access Restriction on Download Feature

This enhancement links the ability to download data from the JET user interface to a user role. Only users with access to the Download Data restriction grant can download data from JET UI using the download action.

Documentation Links:
Security Guide - User Access - Data Access Restriction Types - Download Data Restriction

NXT-31023

Search Result Download in CSV Format

This enhancement addresses the issue of referenced fields being downloaded in one column as JSON data in the CSV exports from UI. With this enhancement all the displayed data of a reference field will be downloaded into separate columns.

Documentation Links:
Developer Guide - JET User Interface - References - Properties - Common Custom Jet Properties

NXT-32524

Table component improvements - Usability with editable row

Introduced check (Apply) icon as a table row-level action in edit mode. Clicking the check icon returns the row from edit mode to view mode. Actions in other rows will be disabled until the user clicks on the check icon of the current row being edited. Editable row remains in edit mode and persists the data when the user clicks outside the table or switches to another browser tab.

Documentation Links:
Developer Guide - JET User Interface - Floor Plan Templates - View and Edit Object - List
Developer Guide - JET User Interface - References - Components - Table

NXT-32617

UI: Ability to exclude trailing wildcard with like search

This enhancement allows excluding the automatic inclusion of the trailing wildcard for like search in quick search, advanced search, and lookups by setting the application property ohi.ui.likesearch.wildcard.enabled to false.

The system also auto-truncates the leading and trailing white space for searches.

Documentation Links:
Installation Guide - Application Properties

NXT-32621

UI: Additional Features Quick Search

With this enhancement, the quick search component is extended, and it will be possible:

To include all types of fields in the quick search.
To have query operators like between, less than, greater than, etc, configurable in quick search.
To set specific search criteria flagged as mandatory.

Documentation Links:
Developer Guide - JET User Interface - References - Components - Quick Search

NXT-32629

UI: Expandable "more" section in tables

With this enhancement, the overflow region for the table ("More" link) is now expandable to a two-column layout, allowing more information to be viewed at once.

Documentation Links:
Developer Guide - JET User Interface - References - Components - Table

POL-16056

Store Long Addresses

The character limit for the "Additional Address" fields has been increased from 60 to 250 characters. This change applies to the following fields:

ADDITIONAL PART 1
ADDITIONAL PART 2
ADDITIONAL PART 3

This update affects Relation Entities.

POL-17575

Reset a value using floorplan conditions

With this enhancement, a new optional floorplan property resetValue is introduced, which can be used within the condition block to reset the value for a field.

Documentation Links:
Developer Guide - JET User Interface - References - Components - Condition

Configuration Properties

Ref	Action	Description
NXT-32617	Added	ohi.ui.likesearch.wildcard.enabled This property enables or disables the trailing '%' sign from quick, advanced search, and lookup (LOV) with the query operators like and likeic.

Ref

Action

Description

NXT-32617

Added

ohi.ui.likesearch.wildcard.enabled

This property enables or disables the trailing '%' sign from quick, advanced search, and lookup (LOV) with the query operators like and likeic.

Web Services

Ref Action Description

Ref	Action	Description
CPN-3799	Modified	Data Transfer IP CSV files generated by the Data Transfer IP includes the header. When the query returned no records, the Data Transfer IP responds with HTTP 204 (No Content).
CPN-3799	Modified	Operational Reporting IP Two new error messages are introduced in the Operational Reporting IP. The IP returns an HTTP 422 response with one of the following error messages: OHI-IP-ORV-008: View `{0}` does not exist OHI-IP-ORV-009: Access restriction grant is missing to query the view `{0}`

CPN-3799

Modified

Data Transfer IP

CSV files generated by the Data Transfer IP includes the header.
When the query returned no records, the Data Transfer IP responds with HTTP 204 (No Content).

CPN-3799

Modified

Operational Reporting IP

Two new error messages are introduced in the Operational Reporting IP. The IP returns an HTTP 422 response with one of the following error messages:

OHI-IP-ORV-008: View {0} does not exist
OHI-IP-ORV-009: Access restriction grant is missing to query the view {0}

Data Conversion

Ref	Action	Description
NXT-31011	Added	OHI_ACCESS_RESTRICTION_GRANTS The new access restriction will be provided to all non system active roles (with retrieve flag as Y), having at least a system function access grant with retrieve flag as Y

Ref

Action

Description

NXT-31011

Added

OHI_ACCESS_RESTRICTION_GRANTS

The new access restriction will be provided to all non system active roles (with retrieve flag as Y), having at least a system function access grant with retrieve flag as Y

Dynamic Logic

This section intentionally left blank.

UI Changes

This section intentionally left blank.

Breaking Changes

Ref	Action	Description
NXT-31011	Added	OHI_ACCESS_RESTRICTION_GRANTS JET (UI) will implement a new access restriction called "Download 'Data'" to manage the visibility of the Download button. Users who are not granted this access restriction will no longer see the download action, making this a breaking change.

Ref

Action

Description

NXT-31011

Added

OHI_ACCESS_RESTRICTION_GRANTS

JET (UI) will implement a new access restriction called "Download 'Data'" to manage the visibility of the Download button. Users who are not granted this access restriction will no longer see the download action, making this a breaking change.

Access Restrictions

Ref	Action	Description
CPN-4019	Modified	CO0019 keyboardshortcuts API and floorplans.enhance IP added to CO0019 function code
NXT-31011	Added	OHI_ACCESS_RESTRICTIONS_B A new access restriction of type DWDATA and code as UI_DATA_DOWNLOAD has been added. The same has been assigned to ALL_FUNCTIONS_ACCESS_ROLE

Ref

Action

Description

CPN-4019

Modified

CO0019

keyboardshortcuts API and floorplans.enhance IP added to CO0019 function code

NXT-31011

Added

OHI_ACCESS_RESTRICTIONS_B

A new access restriction of type DWDATA and code as UI_DATA_DOWNLOAD has been added. The same has been assigned to ALL_FUNCTIONS_ACCESS_ROLE

Bug Fixes

BugDB	SR	Internal	Summary
38227012		CPN-3902	Tracking/Tracing of requests should not be sent to external systems
Description:	Tracing headers (such as B3 headers) are being sent to external systems. This leads to a 500 error response. However, when the spanId header is removed, the request goes through successfully with a 201 response
Resolution:	B3 Tracing headers will be added when the host of the request and the application are identical.
38471399		CPN-4019	keyboardshortcuts API should be part of CO0019 function code
Description:	keyboardshortcuts API and floorplans.enhance IP should be added to CO0019 function code
Resolution:	keyboardshortcuts API and floorplans.enhance IP added to CO0019 function code and also removed duplicate access from setup access role
38350741		CPN-3956	eventDate attribute in logapplicationevents and logdynamiclogicevents resources ignores time component
Description:	The eventDate attribute in both logapplicationevents and logdynamiclogicevents resources ignores time component in Query API. So, the query criteria including a time component (e.g., 2025-06-15T14:30:00 are not honored. The system defaults to 00:00:00 as the time, effectively filtering by date only. Also, the response payload includes only the date portion, omitting time entirely.
Resolution:	The eventDate attribute is updated to honor the time component in Query API criteria. The response now also includes the time component (hours, minutes, and seconds). Fractional seconds (e.g., milliseconds) are not included in the response.
38309268		CPN-3942	Add error handling for duplicate columns in base view generation
Description:	Throw a clear and descriptive error message when duplicate columns are detected in views during base view generation. Currently, if a table has duplicate columns in its view, the base view generation fails silently without any error message, causing confusion and making it difficult to identify the root cause.
Resolution:	Added a duplicate columns check in base view generation process and throwing descriptive error message to user.
38176456		CPN-3893	Performance degradation in activity processing due to the overhead caused by the heartbeat query
Description:	The cleanup_act_status activity monitoring heart-beat query, which performs a SELECT on the ACT_ACTIVITIES table to fetch records with status 'IP', is experiencing performance issues. The query is currently executing a full table scan as the status field is not indexed, resulting in increased execution time.
Resolution:	The query was optimized by using the VIRTUAL_UNPROCESSED_STATUS column, which is indexed and offers better performance.
38352690		CPN-3959	Duplicate entries in OHI_TABLE_COLUMNS
Description:	The table OHI_TABLE_COLUMNS keeps track of database columns which are marked as PII, but also if a column is subject to diacritics search options. Currently there are duplicate entries. As a result, when generating base views the system could throw a Null Pointer Exception.
Resolution:	The duplicate entries as merged into a single entry with PII on subtype 'PERS' and diacritic search enabled. A similar action is taken on the duplicate DATA_FILE entry from the Data Files table.

BugDB

Internal

Summary

38227012

CPN-3902

Tracking/Tracing of requests should not be sent to external systems

Description:

Tracing headers (such as B3 headers) are being sent to external systems. This leads to a 500 error response. However, when the spanId header is removed, the request goes through successfully with a 201 response

Resolution:

B3 Tracing headers will be added when the host of the request and the application are identical.

38471399

CPN-4019

keyboardshortcuts API should be part of CO0019 function code

Description:

keyboardshortcuts API and floorplans.enhance IP should be added to CO0019 function code

Resolution:

keyboardshortcuts API and floorplans.enhance IP added to CO0019 function code and also removed duplicate access from setup access role

38350741

CPN-3956

eventDate attribute in logapplicationevents and logdynamiclogicevents resources ignores time component

Description:

The eventDate attribute in both logapplicationevents and logdynamiclogicevents resources ignores time component in Query API. So, the query criteria including a time component (e.g., 2025-06-15T14:30:00 are not honored. The system defaults to 00:00:00 as the time, effectively filtering by date only. Also, the response payload includes only the date portion, omitting time entirely.

Resolution:

The eventDate attribute is updated to honor the time component in Query API criteria. The response now also includes the time component (hours, minutes, and seconds). Fractional seconds (e.g., milliseconds) are not included in the response.

38309268

CPN-3942

Add error handling for duplicate columns in base view generation

Description:

Throw a clear and descriptive error message when duplicate columns are detected in views during base view generation. Currently, if a table has duplicate columns in its view, the base view generation fails silently without any error message, causing confusion and making it difficult to identify the root cause.

Resolution:

Added a duplicate columns check in base view generation process and throwing descriptive error message to user.

38176456

CPN-3893

Performance degradation in activity processing due to the overhead caused by the heartbeat query

Description:

The cleanup_act_status activity monitoring heart-beat query, which performs a SELECT on the ACT_ACTIVITIES table to fetch records with status 'IP', is experiencing performance issues. The query is currently executing a full table scan as the status field is not indexed, resulting in increased execution time.

Resolution:

The query was optimized by using the VIRTUAL_UNPROCESSED_STATUS column, which is indexed and offers better performance.

38352690

CPN-3959

Duplicate entries in OHI_TABLE_COLUMNS

Description:

The table OHI_TABLE_COLUMNS keeps track of database columns which are marked as PII, but also if a column is subject to diacritics search options. Currently there are duplicate entries. As a result, when generating base views the system could throw a Null Pointer Exception.

Resolution:

The duplicate entries as merged into a single entry with PII on subtype 'PERS' and diacritic search enabled. A similar action is taken on the duplicate DATA_FILE entry from the Data Files table.

Issues that were backported in previous Release / Patch

No backports.