Contents x
Corezoid 5.3.0
  • 15 Dec 2023
  • 3 Minutes to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF
Contents

Corezoid 5.3.0

  • Updated on 15 Dec 2023
  • 3 Minutes to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF
Article summary

20 July 2020

Corezoid.com

Features

  1. Added a user profile page. You can change the displayed name and avatar, turn on the two-factor authentication, view your logins.
    rn-53-1-single-account-profile

    You can reach the profile page from the menu:
    rn-53-2-enter-to-single-account

  2. Added two-factor authentication (2FA). That’s an additional protection for your account against unauthorized access.
    rn-53-3-2fa

  3. Added the “Send feedback” button in Corezoid editor interface. Share your suggestions for Corezoid improvement or report problems directly from the process editor.
    rn-53-4-send-feedback

  4. Added support of ECC certificates for signing requests in the API Call node.
    rn-53-5-ecc-certification

Improvements

  1. Released the updated component for the Code node. This will improve the stability of the component due to the introduction of new garbage collection algorithms. Backward compatibility of your code saved.
  2. Increased the maximum length of a regular expression for input task parameters from 50 to 255 characters.
  3. Added the default handler for "not_found_task" and "not_unical_ref" errors in escalation logic of Modify task and Copy task nodes.
  4. Removed forced masking of three-, four- and sixteen-digit values in the task parameters.
  5. Security:
    • Added mandatory origin and refererheaders. When sending POST requests to Corezoid API v2 that are not signed by the API key, you must pass the origin and referer headers. valid value - corezoid.com. Example:
    curl -v -XPOST https://admin.corezoid.com/api/2/json -d '{"ops":[{"id":"147", "title":"Corezoid", "description": null, "folder_id":11456, "company_id": "i7856235891", "obj":"conv", "type":"create", "obj_type":0, "conv_type":"process", "create_mode":"without_nodes", "status": "actived"}]}'  -H "Cookie:{single_account_cookie}; __Host_{single_account_cookie}" -H 'origin:corezoid.com' -H 'referer:corezoid.com'

    • Removed breadcrumbs in the folder list if the user does not have access to it. This will avoid tracking the structure of the folders of other users.
      rn-53-6-folder-disclousure

    • Removed the User not found error when you trying to reset the password ("Forgot my password"). This will prevent brute force class attacks.

Fixes

  1. Added the "user blocked, please contact support" error on opening the process of a blocked user.
  2. Removed the adding logic button on connecting lines in the View mode.
  3. Removed the buttons for copying and deleting the start node.
  4. Fixed a bug that led to hiding the process name in the editor when the cursor over the start node.
  5. Fixed an error of loading archive tasks that could occur after switching the view mode.
  6. Added error handling for "Key 'obj_type' is required or Key 'sort' is required" when loading the file.
  7. Fixed the bug that caused the process to disappear from search results after it was blocked.
  8. Changed the text color in the additional information panel in the dark theme.
  9. Fixed the shift of column names when importing tasks from a file.
  10. Fixed opening link to the imported process in the Upload master panel.
  11. Fixed a hint for copying the link to the task button.

Notes

  1. Added limit on the simultaneous import of tasks from csv files to corezoid.com - now it is three or less files. When you try to import files over the limit, you will see an error.
    rn-53-7-limit-uploading

We apologize for the inconvenience and ask you to repeat the import in a couple of minutes.

  1. Starting from Corezoid 5.3 release, the support of TLS versions 1.0 and 1.1 is deprecated. The current supported TLS version is 1.2.

  2. Starting from Corezoid 5.3 release, the support is discontinued for the https://admin.corezoid.com/api/2/json API method for copying objects. Please, use the https://admin.corezoid.com/api/2/json/copyinstead.

Private Cloud and On-premises Hosting type

Include all the features/improvements/fixes of Corezoid.com and:

Features

  1. Added to the http-worker application config the blocked_domains parameter that allows you to block outgoing traffic by IP address or URL. You'll receive the "403 Forbidden code" when trying to interact with them.

Improvements

  1. Added to the application config the cookie_expr_time parameter, that allows you to set the lifetime of the user cookie. If the user has not performed actions in the Corezoid interface within the specified time, he will be logged out of the platform.
    rn-53-8-admin
  2. Removed the OTP verification step when creating a new company with the flag {skip_otp, true} in the capi config.
  3. Restored access to all objects of the instance with View permission for the Servise_desk users group.
  4. Added search over the user’s ID, nick, and logins to the Shared session section of the SuperAdmin application.
  5. Added support for LDAP groups for authorization in Corezoid, allows you to configure access to an instance for users in a specific group.

Fixes

  1. Fixed locks of tasks in State Diagrams and Get from Queue nodes, which could result from the crash of the worker component when the task was changed.
Was this article helpful?
What's Next