Skip to main content

- Get Started with Community
  
  Tools and knowledge to help you succeed.
- Get Inspired
- Get Involved
- Roles
- Products
- Concepts
- What's New
- Browse Documentation
- Visit Pega Documentation
- Learn
  - My Training
    - My Dashboard
  - Find Training
- Certifications
  - Get Certified
  - Find Certifications
    - Verify a Certification
    - Find Pega Certified Professionals
- About
  - Learning
  - Programs
- Visit Pega Academy
- Get Support
- Support Resources
- Working with Support
- EXPERT INSIGHTS
  
  Master Pega products and capabilities with advice from our experts.
- Browse the Marketplace
- Get Involved
- Visit Pega Marketplace

- Pega.com
  
  Explore solutions, events, and customers
  
  PegaWorld iNspire
  
  Register for our flagship event
  
  Partners
  
  Discover program benefits and enablement resources
  
  Marketplace
  
  Extend Pega with components and apps
  
  My Pega
  
  Manage your organization's relationship with Pega
  
  Pega Community
  
  Drive success with centralized content and resources
  
  Documentation
  
  Find product guides and reference docs
  
  Academy
  
  Complete missions, earn badges, and stay current
  
  Pega Constellation Design System
  
  Browse library of UI/UX templates, patterns, and components
  
  Careers
  
  Pega Support

- Log in or sign up to set up user profile.
- Log in or sign up to set up personalized notifications.

Resolved Issues

View the resolved issues for a specific Platform release.

Download resolved issues

Go to download resolved issues by patch release.

See Platform Release Notes

Browse release notes for a selected Pega Version.

NOTE: Enter just the Case ID number (SR or INC) in order to find the associated Support Request.

Please note: beginning with the Pega Platform 8.7.4 Patch, the Resolved Issues have moved to the Support Center.

Platform Version

Capability

Data Integration (63)

Decision Management (26)

Low-Code App Development (17)

Case Management (17)

Conversational Channels (12)

System Administration (6)

Project Delivery (1)

Search

(Clear filters)

INC-118838 · Issue 560691

OKTA receives parameters on logout

Resolved in Pega Version 8.2.7

When using an OIDC logout endpoint with a parameter set as a data page value, the data page retrieved the ID Token from the DB, but when logout was clicked the datapage name was being displayed in the browser instead of the IDToken. To resolve this, code has been added to support sending ID token parameters for logoff endpoint for OKTA logoff using OpeniD connect.

SR-D95148 · Issue 557483

Port validation updated for redirect URI

Resolved in Pega Version 8.2.7

When an offline app for windows client was generated, trying to login via SSO resulted in the error "invalid redirect_uri". This was traced to the system validating the whole loopback redirection URL, e.g. "http://127.0.0.1:1234/redirection", including the port number. To enhance flexibility, an update has been made so that the port number will not be validated, allowing the client to establish it based on availability at the moment of the request to the authorization service. NOTE: As a best practice, a loopback URL should not be configured as a redirect URI. If a loopback URL is configured, then at run time the port number will not be validated, and the client application can use any available port on the system including ports that may not be intended for use.

INC-169186 · Issue 655536

Disconnect button availability extended

Resolved in Pega Version 8.5.5

A case was not refreshing when the disconnect button was selected while using the standard section for authorization grant type authentication. This was traced to a query executed to find a div with attribute pzInsHandle, but that attribute was not applicable in the user portal. To support this use, the query has been extended to be applicable for user portal (attribute data-ui-meta) and Dev Studio landing page.

INC-171875 · Issue 653891

Skip restored for browser request CSRF token

Resolved in Pega Version 8.5.5

Many SECU0008 alerts were seen in the production logs. This was the result of a CSRF token check on requests without pyActivity or pyStream, and has been resolved by restoring a conditional skip of the check as those other browser requests do not contain a CSRF token.

INC-174321 · Issue 664237

SSLContext created using protocol from REST connector rule form

Resolved in Pega Version 8.5.5

After upgrading to IBM websphere v9.0.5.6 or higher, API calls Like REST, Connect-HTTP etc were failing to connect to endpoints using TLSv1.2. Investigation showed that although the connector was configured to send TLSv1.2, the ClientHello handshake was triggered for TLSv1.3. Because the SSLContext was created with highest version supported by protocol in the WAS container, this has been resolved by modifying the code to create SSLContext based on the the protocol selected in the REST connector rule form. Additionally, please note that the Connect-HTTP connector has been deprecated and the Connect-REST capabilities in the platform should be used instead.

INC-175058 · Issue 660935

SSLContext created using protocol from REST connector rule form

Resolved in Pega Version 8.5.5

After upgrading to IBM websphere v9.0.5.6 or higher, API calls Like REST, Connect-HTTP etc were failing to connect to endpoints using TLSv1.2. Investigation showed that although the connector was configured to send TLSv1.2, the ClientHello handshake was triggered for TLSv1.3. Because the SSLContext was created with highest version supported by protocol in the WAS container, this has been resolved by modifying the code to create SSLContext based on the the protocol selected in the REST connector rule form. Additionally, please note that the Connect-HTTP connector has been deprecated and the Connect-REST capabilities in the platform should be used instead.

INC-175706 · Issue 659529

SSLContext created using protocol from REST connector rule form

Resolved in Pega Version 8.5.5

After upgrading to IBM websphere v9.0.5.6 or higher, API calls Like REST, Connect-HTTP etc were failing to connect to endpoints using TLSv1.2. Investigation showed that although the connector was configured to send TLSv1.2, the ClientHello handshake was triggered for TLSv1.3. Because the SSLContext was created with highest version supported by protocol in the WAS container, this has been resolved by modifying the code to create SSLContext based on the the protocol selected in the REST connector rule form. Additionally, please note that the Connect-HTTP connector has been deprecated and the Connect-REST capabilities in the platform should be used instead.

INC-179188 · Issue 661955

SSLContext created using protocol from REST connector rule form

Resolved in Pega Version 8.5.5

After upgrading to IBM websphere v9.0.5.6 or higher, API calls Like REST, Connect-HTTP etc were failing to connect to endpoints using TLSv1.2. Investigation showed that although the connector was configured to send TLSv1.2, the ClientHello handshake was triggered for TLSv1.3. Because the SSLContext was created with highest version supported by protocol in the WAS container, this has been resolved by modifying the code to create SSLContext based on the the protocol selected in the REST connector rule form. Additionally, please note that the Connect-HTTP connector has been deprecated and the Connect-REST capabilities in the platform should be used instead.

INC-179360 · Issue 662180

Check added for allowed editing with CSRF

Resolved in Pega Version 8.5.5

After enabling CSRF, it was not possible to edit a data table used to define ACL rules due to security preventing the adding/editing of rows and user group entitlements. This has been resolved by using browser FingerPrint validation to check whether an activity is in a secured list and skipping validation for allowed activities.

INC-180858 · Issue 660801

SSLContext created using protocol from REST connector rule form

Resolved in Pega Version 8.5.5

After upgrading to IBM websphere v9.0.5.6 or higher, API calls Like REST, Connect-HTTP etc were failing to connect to endpoints using TLSv1.2. Investigation showed that although the connector was configured to send TLSv1.2, the ClientHello handshake was triggered for TLSv1.3. Because the SSLContext was created with highest version supported by protocol in the WAS container, this has been resolved by modifying the code to create SSLContext based on the the protocol selected in the REST connector rule form. Additionally, please note that the Connect-HTTP connector has been deprecated and the Connect-REST capabilities in the platform should be used instead.

About Pegasystems

Pegasystems is the leader in cloud software for customer engagement and operational excellence. If you’ve driven a car, used a credit card, called a company for service, opened an account, flown on a plane, submitted a claim, or performed countless other everyday tasks, chances are you’ve interacted with Pega. For the past 30 years, our technology – CRM, digital process automation, robotics, AI, and more – has empowered the world’s leading companies to achieve breakthrough results.

Join the conversation

X (Twitter)
Facebook
Linkedin
Youtube

Company

About Pega
Office Locations
Careers
Contact Us

Pega Sites

Pega Community
Pega Academy
PegaWorld
Pega Blog
Product Design

Resources

Get Started with Pega
Documentation
Training
Support
Marketplace

Legal

Terms of Use
Support
Glossary
Privacy
Your Privacy Choices
Trademarks

©2024 Pegasystems Inc.

Open in new window

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

Join Now

Log in

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Google Chrome
Mozilla Firefox
Microsoft Edge

Close Deprecation Notice Close Deprecation Notice

Contact us