Skip to main content

- Get Started with Community
  
  Tools and knowledge to help you succeed.
- Get Inspired
- Get Involved
- Roles
- Products
- Concepts
- What's New
- Browse Documentation
- Visit Pega Documentation
- Learn
  - My Training
    - My Dashboard
  - Find Training
- Certifications
  - Get Certified
  - Find Certifications
    - Verify a Certification
    - Find Pega Certified Professionals
- About
  - Learning
  - Programs
- Visit Pega Academy
- Get Support
- Support Resources
- Working with Support
- EXPERT INSIGHTS
  
  Master Pega products and capabilities with advice from our experts.
- Browse the Marketplace
- Get Involved
- Visit Pega Marketplace

- Pega.com
  
  Explore solutions, events, and customers
  
  PegaWorld iNspire
  
  Register for our flagship event
  
  Partners
  
  Discover program benefits and enablement resources
  
  Marketplace
  
  Extend Pega with components and apps
  
  My Pega
  
  Manage your organization's relationship with Pega
  
  Pega Community
  
  Drive success with centralized content and resources
  
  Documentation
  
  Find product guides and reference docs
  
  Academy
  
  Complete missions, earn badges, and stay current
  
  Pega Constellation Design System
  
  Browse library of UI/UX templates, patterns, and components
  
  Careers
  
  Pega Support

- Log in or sign up to set up user profile.
- Log in or sign up to set up personalized notifications.

Resolved Issues

View the resolved issues for a specific Platform release.

Download resolved issues

Go to download resolved issues by patch release.

See Platform Release Notes

Browse release notes for a selected Pega Version.

NOTE: Enter just the Case ID number (SR or INC) in order to find the associated Support Request.

Please note: beginning with the Pega Platform 8.7.4 Patch, the Resolved Issues have moved to the Support Center.

Platform Version

Capability

User Experience (115)

Data Integration (93)

Case Management (73)

Low-Code App Development (56)

Decision Management (31)

System Administration (15)

Conversational Channels (10)

Search

(Clear filters)

INC-134808 · Issue 590713

Property check handling updated for Ajax requestor

Resolved in Pega Version 8.3.5

SECU0001 alerts were seen when submitting a case in the interaction portal. Logging indicated the errors were related to the 'pxRequestor.pyLatitude' and 'pxRequestor.pyLongitude' properties which are included in an Ajax request when they exist in the DOM and the 'pyGeolocationTrackingIsEnabled' when rule is true. The error was traced to a condition where a new thread request results in an unexpected property check that encounters a clipboard which doesn't have any pages created for that thread. To resolve this, the 'pxRequestor.pyLatitude' and 'pxRequestor.pyLongitude' properties have been added to an allow list to handle the unexpected properties check.

INC-140101 · Issue 597636

System will attempt to decrypt data ending in "+"

Resolved in Pega Version 8.3.5

Encrypting and decrypting one specific email address was not working properly when showing on the UI. It was possible to force a decryption using decryptproperty, but Pega generated an error. This was due to the actual encrypted value ending with '+', which conflicted with a system check that skips decryption if the encrypted property value ends with + . To resolve this, the system will attempt to decrypt the property even when encryptedText ends with + .

INC-137874 · Issue 599130

Cross-site scripting update for Dev Studio

Resolved in Pega Version 8.3.5

Cross Site Scripting (Cross-site scripting) protections have been added to Developer Studio.

INC-139705 · Issue 595169

Documentation update for Security Settings for DX API

Resolved in Pega Version 8.3.5

Information on the pyDXAPIEncodeValues application setting has been added to the Security Settings for DX API article under the Application settings sub-section. The Pega Platform version that supports the pyDXAPIEncodeValues application setting is mentioned in the Supported UI capabilities article.

INC-157095 · Issue 638807

Enhancement added for tenant-level authentication

Resolved in Pega Version 8.5.4

In a multi-tenant PDC with a few tenants that utilize their own custom SSO, a pre-authentication activity inside a tenant that should block community access was also affecting tenants that did not have that pre-auth activity set. This was a missed use case and has been resolved by adding a tenantId hash in SchemePRAuth.makeUniqueSchemeName() to create the authServiceName.

INC-161260 · Issue 634051

Enhanced logging for CBAC policies

Resolved in Pega Version 8.5.4

Additional logs have been added to assist in easier debugging of any configuration issues with CBAC policies.

INC-161660 · Issue 633030

Authorization token handling and cleanup improved

Resolved in Pega Version 8.5.4

When using a mobile app configured with default authentication, clicking on the "Trouble logging in?" link opened a new window and displayed the message "please contact your system administrator" along with the error "Only authenticated client may start this activity: RULE-OBJ-ACTIVITY CODE-SECURITY PZGETAUTHORIZATIONCODE". This has been resolved. In addition, the OAuth token generation and handling has been improved, and the purge agent has been updated to accept a DSS setting for the max number of expired records to purge each time it is run. The default value is 5000.

INC-162434 · Issue 640052

LookUpList correctly executes during SSO login with model operator

Resolved in Pega Version 8.5.4

After configuring SSO to create operators on fly using a model operator, a new user logging in for the very first time had their operator ID created using the model operator, but after upgrade new users logging in to the system received the error "Only authenticated client may start this activity: RULE-OBJ-ACTIVITY @BASECLASS LOOKUPLIST". This was due to the methods used for additional security on the activity @baseclass LookUpList which allows it to only be run by authenticated users, and has been resolved.

INC-163201 · Issue 646911

BrowserFingerprint updated

Resolved in Pega Version 8.5.4

Security improvements have been added to the browser fingerprint process.

INC-168837 · Issue 646973

CSRF token updated for use with OKTA login

Resolved in Pega Version 8.5.4

An issue seen while connecting via OKTA has been resolved by updating the CSRF token validation for use with IDP initiated SSO login.

Previous Navigate to page 1 You are currently on page 2 Navigate to page 3 Next

About Pegasystems

Pegasystems is the leader in cloud software for customer engagement and operational excellence. If you’ve driven a car, used a credit card, called a company for service, opened an account, flown on a plane, submitted a claim, or performed countless other everyday tasks, chances are you’ve interacted with Pega. For the past 30 years, our technology – CRM, digital process automation, robotics, AI, and more – has empowered the world’s leading companies to achieve breakthrough results.

Join the conversation

X (Twitter)
Facebook
Linkedin
Youtube

Company

About Pega
Office Locations
Careers
Contact Us

Pega Sites

Pega Community
Pega Academy
PegaWorld
Pega Blog
Product Design

Resources

Get Started with Pega
Documentation
Training
Support
Marketplace

Legal

Terms of Use
Support
Glossary
Privacy
Your Privacy Choices
Trademarks

©2024 Pegasystems Inc.

Open in new window

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

Join Now

Log in

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Google Chrome
Mozilla Firefox
Microsoft Edge

Close Deprecation Notice Close Deprecation Notice

Contact us