SR-A2361 · Issue 212842
XSS fix updated for IAC with CSRF tokens
Resolved in Pega Version 7.2
After updating to address a potential XSS security issue, some problems were found with using IAC with CSRF tokens in the pathinfo. Additional checks have been added to handle this scenario.
SR-A2361 · Issue 210192
XSS fix updated for IAC with CSRF tokens
Resolved in Pega Version 7.2
After updating to address a potential XSS security issue, some problems were found with using IAC with CSRF tokens in the pathinfo. Additional checks have been added to handle this scenario.
SR-A7513 · Issue 219783
Corrected timing of OnMessage firing on restart
Resolved in Pega Version 7.2
MDB Listeners that have been processing incoming messages successfully were becoming problematic when the JVM was restarted. At that time, PRJMSListener's onMessage() started to process JMS messages from the queue even when the PegaRULES engine had not successfully initialized, resulting in large numbers of repeating error messages in the log file. In order to resolve this, the PRJMSListener.java has been updated to check the node initialization in OnMessage() itself instead of invoke() of JMSListenerServant.
SR-A6449 · Issue 214540
Clarified page handling for Idle Processing activity
Resolved in Pega Version 7.2
The Idle Processing activity in file listener was throwing a NullPointerException(NPE) when it had the Obj-Browse/RDB-Open method in it. This has been corrected by modifying the code to send the primary page and a parameter page if null page values are encountered.
SR-A7298 · Issue 215177
Clarified page handling for Idle Processing activity
Resolved in Pega Version 7.2
The Idle Processing activity in file listener was throwing a NullPointerException(NPE) when it had the Obj-Browse/RDB-Open method in it. This has been corrected by modifying the code to send the primary page and a parameter page if null page values are encountered.