The bin/magento config:set graphql/session/disable 1 command allows merchants to completely disable the creation of session cookies for all GraphQL operations. Shoppers also experience significantly faster page load speeds when the GraphQL schema must be rebuilt for any reason.Īdded capability to consume the expiration date/time of the authorization token through the use of JSON Web Tokens (JWT) in the GraphQL API. GraphQL performance enhancements include:ĭevelopers and administrators experience faster rebuilding of the unified storefront GraphQL schema on deployment or when changing attributes in production. In this release, we have re-implemented this integration using the GTag approach. See Migrate from analytics.js to gtag.js (Universal Analytics). Adobe Commerce has a set of built-in modules including Google AdWords, Analytics, Optimizer, and TagManager that leverage the former API for integration with Google services. This integration of Google functionality into website pages extends opportunities to track and manage content through Google Services.
Google has updated the tracking and integration mechanisms of AdWords and Analytics in web applications through integration with GTag.
#The visitor returns walkthrough mutation code#
The php-cs-fixer and phpcs static code analysis tools are now compatible with PHP 8.x. The jQuery Storage libraries have been replaced with julien-maurel/js-storage. The grunt-eslint (NPM) library has been upgraded to the latest version. The Froogaloop library has been replaced with the Vimeo Player.js library (2.16.4). The default Gateway URL for USPS shipping has been updated to use https instead of http. The DHL Integration schema has been updated from v6.0 to v6.2. The laminas/laminas-session, laminas/laminas-text, and laminas/laminas-view dependencies have been removed.
#The visitor returns walkthrough mutation upgrade#
This upgrade will not result in a change in product behavior. PHPStan (^1.5.7 with constraint) GitHub-35315 Earlier versions of TinyMCE (v5.9.2 or earlier) allowed arbitrary JavaScript execution when a specially crafted URL or an image with a specially crafted URL was updated. The MaliciousCode filter has been upgraded to use the HtmlPurifier library. Inventory template security has been enhanced. ReCAPTCHA support has been added to the Wish List Sharing, Create New Customer Account, and Gift Card forms.ĪCL resources have been added to Inventory. Security improvements for this release improve compliance with the latest security best practices, including: See Adobe Security Bulletin for the latest discussion of these fixed issues. use of a unique location rather than /admin.As a result, we remind you to take all necessary steps to protect your Admin, including but not limited to these efforts: Most of these issues require that an attacker first obtains access to the Admin. However, certain vulnerabilities can potentially be exploited to access customer information or take over administrator sessions. No confirmed attacks related to these issues have occurred to date. This security fix has been backported to Magento Open Source 2.4.4-p1 and Magento Open Source 2.3.7-p4. This release includes 20 security fix and platform security improvements. Look for the following highlights in this release. Bug fixes for these projects are documented in the separate, project-specific release information that is available in the documentation for each project. Other release informationĪlthough code for these features is bundled with quarterly releases of the Magento Open Source core code, several of these projects are also released independently.
Major backward-incompatible issues are described in BIC highlights. To review backward-incompatible changes, see BIC reference. Adobe Commerce and Magento Open Source releases may contain backward-incompatible changes (BICs).
0 kommentar(er)
