Create audit logging for enabling Opti ID with Configured Commerce and make the change reversible.
This request is from Bunzl. Bunzl had an incident where their Configured Commerce Opti ID was enabled without permission to do so. This created an interuption with their ability to access the Admin Console on the production instance. 2 things are needed. We need to determine which user enable Opti ID and have the ability to disable the setting.
Matt Koch
shared this idea
-
Thank you for bringing this to our attention. I’ve created a ticket to investigate this issue and improve the experience. We’ll also explore the ability to reverse Opti ID enablement in case it is accidentally enabled.
-
Audit logging within the Opti ID Admin Center has been added to the backlog.
-
Matt Koch
commented
I also would like to add that the Opti ID enabled can be switched back so that it looks disabled. It doesn't consistently reflect the true status of the OptiID enabled value in the database. This led to confusiong when trying to determine if or why the OptiID was enabled.
-
Hi Matt, thanks for sharing this idea. Adding logs to our Opti ID infrastructure that allows us to track the history of changes would be beneficial for all clients. I have passed on this feedback to our Platform team for consideration in our Opti ID roadmap.
