Skip to Main Content
Customer Feedback

We love feedback from you on our products and the problems in your daily work that you would like us to solve. Please describe the challenge you're encountering and your desired outcome. Be as detailed as possible.

For technical issues or bugs please head to Support or our Developer Community. You can assign up to 20 votes in total. Thank you for your feedback.

Status explanation: 'Future Consideration' = Continuing to collect further feedback, not planned at this time. 'Investigating' = Prioritized for deeper customer and feasibility investigations ahead of planning development.

ADD FEEDBACK

Roles and Security

Showing 14

Potential security risk in <Import Data> feature

The file upload used in the [Import Data] feature in the Settings interface does not limit the file extensions to .episerverdata only. Other file extensions can be uploaded (including files in a zipped file), which may pose security threat to the ...

Hipaa Compliance

We need to be hippa compliant. Loosing way to many deals and now our partners are not even bringing us into deals because Acquia and Sitecore are compliant.
almost 2 years ago in Content Management / Roles and Security 0

SynchronizingRolesSecurityEntityProvider is slow when tblSynchedUser has many users

We are using an external identity provider for sign in for users on our site using OpenID Connect. When the user has successfully logged in, we sync the role claims via the ISynchronizingUserService like stated in the documentation(https://docs.de...
12 months ago in Content Management / Roles and Security 0

Enhancements to current base security with DXP for users

While many of these features can be added programmatically or with a third party authentication server, these to me and multiple clients seem like they should be our base level security. Push a forced password reset to all users on our instance as...
almost 3 years ago in Content Management / Roles and Security 0

Access Rights: "Inherit settings from parent item" checkbox value should also be applied to subitems

Product: CMS. Can be replicated in any plain vanilla Alloy site out-of-the-box. Version: All, as far as I know this feature has remained unchanged for decades. Issue description: In the Admin > Access Rights screen, we can set access levels for...
6 months ago in Content Management / Roles and Security 0

Add CMS login auditing

Add historical logging of CMS user logins, including IP address and date and time.This will allow admins to view and track information about possible login hacking attempts and to mitigate these issues.
about 4 years ago in Content Management / Roles and Security 0 Future consideration

Built-in support for SAML2

SAML2 is a popular protocol for federating users and roles from an enterprise identity store to enable SSO. It would be very helpful if it was possible to setup a trust relationship to a SAML2 IdP either through simple configuration or ideally usi...
over 3 years ago in Content Management / Roles and Security 0 Will not implement

User creation - assign multiple user groups

When setting up a new user, I want to be able to select more than one user role and assign them to the user in one click. In EPI DXP, I need to use the drop down menu and assign one user role at the time (which is very time consuming).Attached are...
about 1 year ago in Content Management / Roles and Security 0

Ability to show/hide API key in Episerver.Labs.LanguageManager

When opening the configuration for the addon Episerver.Labs.LanguageManager in Optimizely CMS Admin mode the API key is fully visible. This mean that I cannot demo the (quite amazing) addon without updating my API key afterwards. Please make it no...
about 1 year ago in Content Management / Roles and Security 0

Restrict moving pages in tree structure

We have found that it's possible for a web editor (without Admin right) to move pages around in the tree structure freely - even if the page/the move impacts pages that are restricted for Admins, e.g. Site settings. There are several issues here: ...
almost 2 years ago in Content Management / Roles and Security 0