166 results found
-
Captcha functionality
Please note: this idea required splitting so that various points may be addressed as information becomes available.
New request:
Captcha functionality - when users initially come into the site or users are starting an order or users are entering credit card information
Original request:
Please help with implementing below security features ASAP. There are so many frequent attacks on the website that causes the websites to go down.
- Geographical Rate Limiting - Add rules with rate limiting for traffic outside of specific countries (Challenge beyond the primary range/limit and block beyond the secondary range/limit)
- Basic Rate Limiting - Can we…
10 votesThank you for submitting this request! Our team is currently reviewing if and how we may implement this feature, particularly with consideration of our wide client base. We will provide an update once we have completed this investigation.
-
Bot prevention measures
Please note: this idea required splitting so that various points may be addressed as information becomes available.
New request:
- Bot Protection - Challenge suspected bots to confirm user authenticity
- Bot detection with javascript to identify headless browsers
- Any other WAF rules to protect the website from anonymous usage and attacks
Original request:
Please help with implementing below security features ASAP. There are so many frequent attacks on the website that causes the websites to go down.
- Geographical Rate Limiting - Add rules with rate limiting for traffic outside of specific countries (Challenge beyond the primary range/limit and block beyond the…
11 votes -
Promotions - BOGO Improvement
We are having an issue with a Buy One Get One Free Promo.
[It requires too many promotions to be setup to be able to support this type of promotion.]This promo does work when you just order 1 of the MILW 3697-22 and you get a free MILW 48-11-1865
BUT if a customer were to order more than 1 lets say 4 for example, it's only still giving them 1 free MILW 48-11-1865 when it should give them 4 free MILW 48-11-1865, since it is a Buy one Get one.[Multiple promotions are required to set this up which…
3 votesThank you for submitting this request! We have added this item to our backlog for future consideration and prioritization.
-
We need to be either notified or be able to see the Password re-set e-mails being suppressed in at Optimizely
We need to be either notified or be able to see the Password re-set e-mails being suppressed in at Optimizely
4 votes -
Quote Workflows for Console and Website Users
Configured Commerce quotes are ok at gathering a quote request, but are terrible beyond that.
There needs to be the ability for the sales representative or for an admin console user to edit the quote. We often have regional substitutions that are functionally the same item, but we cannot make substitutions to the quote. We also cannot remove a quoted item from the quote. If we were to quote other items but not that one and Propose a quote, the customer cannot remove the unquoted item and can check out with an item with an invalid price. The sales person…
4 votes -
Website User 'Approver' shows GUID value, not readable ID/name
Website Users>Details show GUID in 'Approver' field, however, export of users correctly shows ID/name of the 'Approver'. As an administrator of user accounts, I need ability to see 'Approver' ID/Name on the user Details page, instead of requiring export of all users to view the identity of the Approver.
17 votes -
Website Stability via Rate Limiting
Please note: this idea required splitting so that various points may be addressed as information becomes available.
New request:
- Geographical Rate Limiting - Add rules with rate limiting for traffic outside of specific countries (Challenge beyond the primary range/limit and block beyond the secondary range/limit)
- Basic Rate Limiting - Can we add a rule with rate limiting to block DoS attacks
Original request:
Please help with implementing below security features ASAP. There are so many frequent attacks on the website that causes the websites to go down.
- Geographical Rate Limiting - Add rules with rate limiting for traffic outside of…
6 votes -
MFA/2FA for Admin Console Access Across All Domains
Hi Team,
Referring to tickets #1676413, #1498526, #1492633 and #1721382 —
The Brasseler client is looking to enable multi-factor authentication (MFA) specifically for the admin account. Could you please confirm if this is supported by Optimizely?
We reviewed the documentation provided for Set up multi-factor authentication, but it appears to apply at the Opti ID level, whereas the client is specifically looking for MFA enforcement at the admin account level and at Admin site. This request has come from their internal security team.
We would appreciate your guidance on this.
Thanks for your support.
11 votes -
Enable Cloudflare's leaked credentials detection
Please note: this idea required splitting so that various points may be addressed as information becomes available.
New request:
- WAF compromised credentials check
Original request:
Please help with implementing below security features ASAP. There are so many frequent attacks on the website that causes the websites to go down.
- Geographical Rate Limiting - Add rules with rate limiting for traffic outside of specific countries (Challenge beyond the primary range/limit and block beyond the secondary range/limit)
- Basic Rate Limiting - Can we add a rule with rate limiting to block DoS attacks
- Bot Protection - Challenge suspected bots to confirm user…
5 votes -
VMI - Add optional fields for display on labels
Please add optional fields for display when printing labels for Vendor Managed Inventory:
- Min/Max
- Bin Location2 votesThank you for submitting this request! We have added this item to our backlog for future consideration and prioritization.
If there are related requirements such as specific locations where these fields would be expected in relation to existing values please make sure to add to this request.
-
Allow Shared Lists / Transfer Owners
Ability to transfer a list from one user to another, or have multiple owners of a list (for when B2B User leaves company the lists shared by them are no longer 'abandoned')
2 votes -
Whitelist/Allow Polly library usage for Retry/Circuit Breaker usage
Polly is a great library to implement retry policies for api, it's already available as a transient reference in the insite packages.
Would love to be able to use it instead of having to copy code to do the exact same thing.
1 vote -
Allow admin to disable hidden lists
Provide the ability to toggle on/off "Hide List" on the My Lists and List Details. We have customers who are reporting "missing" lists, when in fact they are hidden and it's become a burden for our customer care teams, based on the number of reports we are getting.
2 votesThank you for submitting this request! We have added this item to our backlog for future consideration and prioritization.
Can you advise if you are desiring this ability at the website, or customer level?
-
Enhancement Request: OOTB Support for Additional Payment Gateways
Description: We would like to request an enhancement to include "Robot Payment" and "GMO" as the OOTB payment gateway. Currently, these payment gateways are not available OOTB. Providing OOTB support for these gateways would significantly benefit customers operating in regions where these payment providers are widely adopted.
Business Justification : These payment gateways are actively used by our client and are critical for their regional payment requirements. Not available OOTB.
Native or supported integrations would improve adoption of Optimizely Configured Commerce in regions where these gateways are common.Requested Enhancement: Include the mentioned payment gateways as the OOTB supported option.
…
1 vote -
Improve the processing time of Restriction Group Rebuild step
I’m seeing only one CPU core was utilized during the execution of the job Rebuild Search Index. As a result the Restriction Group Rebuild step is very slow, even though there are less than 100 items.
2 votes -
Fraud prevention
We are working to resolve ongoing issues with fraudulent ecommerce orders. Frequently, bots have placed orders using stolen credit card information with valid bill-to addresses but random ship-to addresses. Unfortunately, these orders were shipped before we received dispute requests, which forced us to issue credits to customers and resulted in unrecoverable product losses.
We attempted to implement the DataDome solution; however, it was not compatible with Optimizely. I also understand that Optimizely currently uses the Spreedly gateway for credit card processing, and I’m aware that Spreedly provides a fraud prevention solution that is not included with Optimizely.
Could you please…
6 votes -
Prevent bot spamming logs
We often see a lot of errors in the application logs related to bots spamming the website with URL requests that do not even exist, quite often these end in .php extension; example: https://[ConfiguredCommerceURL]/admin/function.php. These seem to be attacks that try to find vulnerabilities on the website. While often times these are harmless, they do pollute the application logs, making it harder for developers to find actual errors that are worth reporting. This feature request is to simply capture that kind of spam requests and simply block them, without processing anything else (these often come with errors such as 'Unity.Exceptions.InvalidRegistrationException'…
15 votes -
website users filteraccessible fields
We need to show assigned customers and roles as column/exportable fields from the admin console. these fields could be delimited as possible multi value but currently cant access those fields at all without going into each individually
3 votes -
Avoid duplicate url segment in the brands page
Based on this support ticket: https://support.optimizely.com/hc/en-us/requests/1804446, We’ve identified an issue with multilingual sites where the URLs returned by the api/v2/content/PageByUrl endpoint include an extra /fr/ segment.
Example:
English URL:
/brands/kalas/catalog/wire-and-cable/automotive-wire-and-cable
French URL returned by API:
/fr/brands/kalas/fr/catalog/wire-and-cable/automotive-wire-and-cableAs you can see, the fr segment is duplicated.
Translation Dictionary Configuration:
CatalogUrlRoot = fr/catalog
BrandUrlRoot = fr/brandsObserved behavior:
When navigating to a catalog under a brand, the system adds the language segment twice.Analysis:
We reviewed the source code and found that the issue seems to be in the PathBuilderUtilities.cs class, specifically in the GetCatalogRootPath method:var languageId =…
1 vote -
Don't show archived websites in CMS editor popup window
In the admin toolbar, if you click on the icon to "View Website", you will see archived websites when going into CMS Editor.
We believe those should be either hidden or have a collapsible to now view it.
In our case it's our old classic websites and we don't want them to show to confuse the client.
1 vote
- Don't see your idea?