Release Notes

List of fixed issues and improvements

• OroPlatform and OroCRM have been updated to 2.6.32 version
• Improved Single Page Checkout performance
• Fixed removal of one shopping list line item removes all line items with the same product
• Added on-demand Guest Shopping Lists
• Added filter product attribute options on the product catalog pages
• Fixed customer user roles page in the backoffice always shows roles from all organizations
• Fixed Translatable Contact Reasons
• Fixed incorrect exception handling in PriceListProcessor
• Improved Promotions checkout performance
• Fixed "Totals" block uploads slower than user switches between shipping/payment methods
• Fixed validation messages are duplicated on single page checkout
• Fixed Customer User name changes if new Customer User name create during single page checkout
• Fixed Guest/Shipping method is not match if "use billing address"=true
• Fixed Mobile/Single page checkout/Billing & Shipping popups - not available elements in popup and Incorrect display of popups
• Fixed Single Page Checkout - "Submit" button is not clickable if focus still in text area of input fields
• Fixed Shipping rule is not applying correctly after switching to real address
• Fixed Single page checkout/Shipping method is not match if active checkbox "use billing address" and choose shipping address

Release Notes

List of fixed issues and improvements

• OroPlatform and OroCRM have been updated to 2.6.31 version
• Fixed product slugs change is not applied at frontend
• Implemented on-demand Guest Shopping Lists
• Fixed customer address and customer user address are not validated correctly in the backoffice
• Fixed Product save freezes if many prices
• Fixed bogus price validation errors prevent product saving
• Fixed Single Page Checkout - wrong behavior of "Submit order" button if changed addresses, Checkout cannot be completed without reload the page
• Deprecated I press "button" and replaced to I click "button"

Release Notes

This release is a release candidate of an upcoming 3.1 version of OroCommerce. In this release we focused on application stability and security.

Email templates

We have added variables for all order totals so the order confirmation email may now include all the data displayed to the customer during checkout. Variables may also display totals in different currencies, allowing the customer to see their order details in checkout currency if it differs from the base currency.

Websocket security

SSL/TLS connections

OroCommerce may now connect to websocket server via SSL/TLS connection and pass SSL connect options if necessary. To enable this connection, use the following parameters in the application configuration:

• websocket_backend_transport defines the transport to be used for connection. This option may be set to any registered transport returned by [stream_get_transports](http://php.net/manual/en/function.stream-get-transports.php); the default value is tcp.
• websocket_backend_ssl_options specifies the SSL context options that will be passed when establishing the connection.
  These configuration options are not exposed on the UI and should be set during the installation or changed in config/parameters.yml file.

Connection origin check

To further improve the security of websocket connection and eliminate Cross-Site WebSocket Hijacking (CSWSH) attacks, Origin headers will be checked against the list of allowed origins after the websocket connection is established. This feature utilizes the existing OriginCheck functionality of GoS WebSocket bundle.

Administration

New Case-Insensitive Email Addresses configuration option allows the system configurator to restrict user email addresses acceptable for registration of both customer users and back-office users. When this option is turned on, all different capitalizations of a same email (e.g. [email protected] and [email protected]) will be treated as the same address so only one of them could be used to register a user. This option is off by default, as prescribed by RFC 5321 2.4.

API

• JSON API is now the default REST API sandbox
• API filters are now enabled by default for one-to-many relations
• We created developer documentation for API filters
• We added data flow diagrams to API action documentation to clarify the use of API processors in customizations

Other improvements

• Checkout performance was improved significantly
• ACL security model is now extendable with custom data access rules
• New ACL rule restricts visitors from accessing checkouts (frontend-checkouts-grid) that do not belong to them

Known issues

Due to deprecations of Elasticsearch 6 the following changes were introduced:

• Fulltext search will match words only from the beginning of the word – e.g. Foldable Wheelchair will be found by wheel, but not by eel
• In case of multiple words, AND strategy will be used in the admin panel search

Release Notes

List of fixed issues and improvements

• OroPlatform and OroCRM have been updated to 2.6.30 version
• Fixed some product data is linked to the original product after duplication
• Fixed impossible to upload image for the new product together with the workflow assigned
• Fixed impossible to save "One to many" product attribute relation
• Fixed coupons are not searchable and search results are empty

Release Notes

List of fixed issues and improvements

• OroPlatform and OroCRM have been updated to 2.6.29
• Fixed Product unit name not translated in RFQ confirmation email
• Fixed Order Confirmation Email
• Fixed storefront uses wrong locale
• Fixed single price list deletion causes rebuild of all CPLs
• Fixed slow Price List recalculation schedule command
• Fixed space before comma in attribute_multiselect_widget
• Fixed Single Page Checkout for Guest and Registered User - wrong behavior if you restrict the shipping method to a specific country

Release Notes

List of fixed issues and improvements

• OroPlatform and OroCRM have been updated to 2.6.28
• Fixed Product prices are not covered with ACL
• Fixed case Insensitive emails
• Fixed Product attributes: no "too short/long" validations during the product attribute import
• Fixed No password reset link in welcome email when creating customer user from backend
• Fixed image preview does not work after moving the attribute into another attribute group
• Fixed Product name is not localized in order confirmation email
• Fixed PayPal Express payload does not include taxes
• Fixed DNSLT date and other fields are not saved in single page checkout
• Fixed Customer visitor permissions are not checked for checkouts grid

Release Notes

List of fixed issues and improvements

• Fixed unknown Entity namespace alias 'OroSegmentBundle' during import
• Fixed slow initialization of field conditions editor
• Fixed Wrong Name in grid headers on the Shopping List.
• Fixed read permission allow to edit, disable and recalculate price lists
• Fixed clear expired shopping lists if there are too many of them
• Fixed single page checkout submit order button hint overlayed by separator

Release Notes

List of fixed issues and improvements

• Fixed Single Page Checkout performance
• Fixed unnecessary SQL queries on product view page in the backoffice
• Fixed brand name is not translated on storefront
• Fixed slow product save process

Release Notes

List of fixed issues and improvements

• Reverted Config Expression “blank condition” changes to prevent backward incompatible issue
• Fixed zero price is not imported
• Fixed low performance of ProductPriceRepository::deleteInvalidPrices on huge amount of data

Release Notes

List of fixed issues and improvements

• Fixed country names are not translated
• Fixed slow Top Selling data provider