Showing 137 result(s) for Security, and Article. (Clear filters)
Support Article
Nov 27, 2018

Summary Users are trying to eliminate cross-site scripting vulnerability by using the URL encryption configuration option. However, when doing so, they see the HTTP 400 errors when  they try to open the portal after logging in. Error Messages HTTP Status 400 - Invalid URL used in request…

Support Article
Oct 12, 2018

Summary Error message displays when user logs out of the system and clicks back button in the browser. Error Messages Unable to update browser requestor details. Failure on ajax. Steps to Reproduce   Click Log out in Designer Studio. Click Back button in the browser. Root Cause A defect in…

Support Article
Aug 22, 2018

Summary Cross-Site Scripting (XSS) vulnerability detected in the Full Description field in the Summary view. Error Messages Not Applicable Steps to Reproduce Create a Summary view. Add any HTML or JavaScript code in the Full Description field in the History tab. Execute the rule. HTML or JavaScript…

Support Article
Jun 13, 2018

Summary Unable to access any rules in the application and the login screen renders incorrectly. This occurs after adding custom response headers. Error Messages Not Applicable. Steps to Reproduce Launch the application Add custom response header, Content-Security-Policy with Value=default- src…

Support Article
Apr 12, 2018

Summary With URL encryption enabled, certain work types cannot be loaded. Error Messages 2014-06-09 13:50:09,300 [ WebContainer : 10] (ngineinterface.service.HttpAPI) ERROR <xxxx> com.pega.pegarules.pub.PRRuntimeError com.pega.pegarules.pub.PRRuntimeError: PRRuntimeError at com.pega.pegarules…

Support Article
Mar 21, 2018

Summary User is having IDP initiated SSO and when user tries to log in they are getting Missing Relaystate error. User added the RelayState parameter into or POST consumer URL but did not work Error Messages Missing Relaystate information in IDP Response Steps to Reproduce 1- Log in into top level…

Support Article
Aug 22, 2017

Summary Multiple timeout warning modal dialog boxes pop up and users cannot click OK to continue. Error Messages Not Applicable Steps to Reproduce Configure the Timeout warning using pxSessionTimer. Wait for the Timeout warning to display. Notice that there are multiple Timeout warnings displayed…

Support Article
Apr 12, 2017

Summary User want to know if there is any foolproof mechanism available to prevent concurrent logins to the application. One of the solutions is setting pyConcurrentSessions to "none" but this works only in single node environment and however if the browser is closed accidentally(or if it…

Support Article
Apr 11, 2017

Summary In the review screen, when a case has subcase, completed, in some cases the property .pxIsCompleted in the D_NavugationSummary data page is not set correctly. It remains set to "False", so we see in the review harness the status New instead of Complete. This prevents us to close…

Support Article
Mar 16, 2017

Summary MIME sniffing has not been disabled for HTTP responses which is a possible security threat. Error Messages Not Applicable Steps to Reproduce Not Applicable Root Cause Each type of file delivered from a web server has an associated MIME type (also called a “content-type”) that describes the…