157 results found
-
Attribute filters
We would like the Attribute filters to have more form factors than simply a check box. Some attributes have to many options for this to be useful. we would like the option to use sliders when there are many number values, swatches to display colors, etc.
2 votes -
Manage email suppression list
Allow the management of the email suppression list to which email addresses are added after multiple failure to send email.
Currently there is no visibility to this list.1 vote -
Make Wishlist Item Line Note Searchable within the Wishlist Search Bar
Problem Statement:
As a frequent user of Lists within the site, I need to find items based on custom information I have added to the Line Note within the List so that I can be sure I am ordering the proper item.Proposed Solution:
Allow for the user to use the existing search field within Lists to find text within the Line Notes of items in the list. Customers will often put Ordering Details, Stocking Data, or even Custom Part Numbers within that field so they can be clear about what is ordered. But, those notes are not searchable, so…1 vote -
Reintroduce or Provide Alternative Method to Restrict Access to the Admin Console in Configured Commerce (V3)
As part of our recent internal security audit, we identified a vulnerability related to unrestricted access to the Optimizely Configured Commerce Admin Console.
In the legacy V1 architecture, administrators could restrict Admin Console access by domain or IP range using configuration updates (as described in the Optimizely documentation: https://docs.developers.optimizely.com/configured-commerce/docs/restricting-access-to-admin). However, in the V3 architecture, this capability is no longer supported or configurable within the managed environment.
Our support engagement (Ticket #1788512) confirmed that this feature was not migrated to V3 due to complications with the impersonation feature and has since been deprecated. As a result, customers currently have no…
1 vote -
Disable Weak TLS Cipher Suites (CBC-mode Ciphers) in Managed Commerce Environments
As part of a recent internal and third-party security assessment (conducted by Optiv Security), our organization identified that our Optimizely Configured Commerce production environment (www.whitecap.com) currently supports weak TLS cipher suites, including CBC-mode ciphers.
These ciphers are considered outdated and potentially vulnerable to known cryptographic attacks (e.g., Lucky 13 and BEAST). Security best practices and compliance frameworks (such as PCI DSS, NIST SP 800-52r2, and OWASP guidelines) recommend disabling weak or deprecated cipher suites and enforcing stronger ones such as AES-GCM or CHACHA20_POLY1305 with TLS 1.2+ only.
During our support engagement (Ticket #1789304), the SRE team confirmed that…
1 vote -
Export product list from a category
In PIM: I want to export all products that are assigned in a certain category. For example, I have category A with 300 products, and I want to export these 300 products in category A. As for now, when I'm in category A in PIM and click on "products" I get the listed products assigned to category A, BUT I can't export them in a excel list or other files types.
1 vote -
PIM - History details not shown for latest changes on produts
I'm not able to see the latest change history details for some products.
There are two panels with history lists, one to the left and one in the middle under the "history" tab.The list to the left only shows the latest change on the products but I'm not able to click on it to see the actual change that has been made. I can only see the product status and the date of the change.
On the other hand, the history list in the middle has a drop down where I can click on the different history versions and…
0 votes -
Whitelist AzureKeyVault nuget package
Whitelist this nuget package: https://www.nuget.org/packages/Azure.Security.KeyVault.Secrets
We have a need to leverage AzureKeyVault to pull configuration settings from client Infrastructure, hence the need for it. So if they were to change the secret key on their end, the site will not be impacted as we just pull it directly from the source.1 vote -
When searching by Brand, attributes and filters cannot be sorted
When searching by the Brand on the website, the Filters need to be sorted and ordered. Where do we go to do that?
1 vote -
Website Security - WAS Scan Report - Vulnerabilities
150004 Predictable Resource Location Via Forced Browsing:
Access controls prevent unauthorized use of both examples.
150112 Sensitive form field has not disabled autocomplete
Can be addressed via customization. A feature request could change base code.
150123 Cookie Does Not Contain The "HTTPOnly" Attribute
These cookies are used by JavaScript to influence front-end behaviors and cannot be marked HTTPOnly. A feature request could redesign this functionality to not be cookie based to prevent this finding.
150476 Cookies Issued Without User Consent
The listed cookies are currently essential for proper site functionality and do not contain PII. I'm not qualified to say…1 vote -
Visual Indicator to show more features within the Content Block of Rich Text
The Content Block within the Rich Text widget, should have a visual indicator to show there are additional options, i.e. add images, on the collapsed view.
1 vote -
Unable to Run Sql Scripts During Off-Hours
We typically deploy new code to production during off-hours to minimize downtime on our website during our customers business hours. We recently have made a bugfix that requires a code change and a slq database script to be deployed/ran hand-in-hand since doing one but not the other breaks our search. We requested those both to be done at 7am central and were told that while a deploy could be done then a database script was a different team and could only be done 9-5 central which is not when we want to be doing a deployment. We'd like to request…
1 vote -
Support SAP Connector DLL's
Hi,
I'd like to ensure the SAP Connector DLL's are supported in Configured Commerce. Otherwise, calling a BAPI directly on SAP won't be possible and will need to be on the WIS, resulting in poor performance for real-time calls like price/inventory.
Thanks!1 vote -
SSO Authentication - Admin user attributes mapping
Admin user (Console user creation via SSO authentication allows us to map email, givenname and familyname but we are not able to map User Name, Company, Position, Phone, Extension, Fax attributes.
Company: We have multiple segments/branches available within our company and we need to be able to map company with segment/branch name.
Position: We need to be able to map admin user role/position
Phone: We need to be able to map admin user's phone number
Extension and Fax attributes: Other user attributes
We understand that currently, only OpenID standard attributes are mapped to Optimizely user attributes. However, OpenID…1 vote -
Separate the "build email" step from the "send email" step for easier extensibility
As a partner developer
I want to have a point of extension between building an email and sending an email
So that I can modify the email properties (ie. To, CC, Body without overriding the code responsible for sending the email.
The following files have this issue, but there may be others:
* C:\projects.insitesoft\insite-commerce\Src\Backend\Plugins\Insite.Plugins\Emails\ShipmentConfirmationEmail.cs
* C:\projects.insitesoft\insite-commerce\Src\Backend\Modules\Insite.Modules\Rfq\Services\Handlers\UpdateQuoteHandler\900SendEmail.cs
* C:\projects.insitesoft\insite-commerce\Src\Backend\Modules\Insite.Modules\Cart\Services\Handlers\UpdateCartHandler\3200SendConfirmationEmail.cs1 vote -
Sandbox IP Restriction
A nice enhancement that could be added to your native offer will be the be able to restrict per IP the sandbox environment.
By doing this, we will be able to provide a list of IP when configuring the environment and hide it from the public area.1 vote -
Salesperson View
The salesperson should have a seperate view. They should be able to see every account assigned to them, pending orders for each customer, pending quotes, etc. In addition, as some sales people take orders over the phone, they should be able to input orders on behalf of their customers.
The ISC_User role comes close, but it does not meet the needs mentioned above.1 vote -
Running Total Inventory Report
Using the real-time inventory option and would like an option to generate a running total report for a product over a specified time frame.
1 vote -
Requisition and order requests feature needed on the app
Would like the requisition and order requests feature that is on desktop v. to also be available on the app. For some of our customers they're not at a desktop often and would like the option to approve orders while they are on the go. Piggybacking off of this, when that feature does become available, the app should have a push notification or an app icon notification when there is a pending request to be approved.
1 vote -
Request to whitelist the Coveo.Connectors.Utilities.PlatformSdk to allowedLibraries list
Hello Team Optimizely, we are working on the Coveo integration for one of our projects and having Coveo.Connectors.Utilities.PlatformSdk -Version 11.2.0 added to allowedLibraries would be of great help for this integration.
As additional information Coveo.Connectors.Utilities.PlatformSdk (https://www.nuget.org/packages/Coveo.Connectors.Utilities.PlatformSdk/ library allows you to communicate with the Coveo Cloud Platform public APIs and the Push API.1 vote
- Don't see your idea?