Product guides

What's New

Suggest Edits

Version 0.3.1

Released 2023-07-26

  • Changed so that async activities are built in the Preflow-Enforce flow and enriched with the response in the Postflow-Enforce flow

Version 0.3.0

Released 2023-07-13

  • Added Credential Intelligence, with support for:
    • Credential path matching via exact route or regular expression
    • Extracting credentials from body, header, or query-param
    • Single-step (v2) and multistep (multistep_sso) hashing protocols
    • Reporting on login successful via status code, body regex, or header
    • Sending additional S2S activity automatically or transfer via request headers
    • Sending the raw username on the additional S2S activity if configured
  • Fixed an issue where third-party URLs in block responses were missing "https://"

Version 0.2.0

Released 2023-07-06

  • Added CORS, with support for:
    • Preflight request filtering
    • Default or customized block page CORS headers
  • Added Account Defender, including support for:
    • Reporting of the cross tab session cookie
    • Extracting user ID and additional fields from cookie- or header-based JWT
  • Minor bug fixes and compatibility improvements.

Changed

  • Replaced non-ES5 functions (e.g., Object.assign, Array.prototype.includes, String.prototype.startsWith) for compatibility
  • Modified shared flow configuration version to be 4.0 (the only supported version)

Version 0.1.0

Released 2023-06-16

  • Initial version with support for a variety of basic and advanced features including:
    • Additional activity handler
    • Advanced blocking response
    • Block activity
    • Block page captcha
    • Block page rate limit
    • Bypass monitor header
    • Client IP extraction
    • Cookie v2
    • Custom cookie header
    • CSS ref
    • Custom logo
    • Custom parameters
    • Custom first party endpoints
    • Filter by extension
    • Filter by IP
    • Filter by HTTP method
    • Filter by route
    • Filter by user agent
    • First party
    • JS ref
    • Logger
    • Mobile support
    • Module enable
    • Module mode
    • Monitored routes
    • Page requested activity
    • PXDE
    • PXHD
    • Risk API
    • Sensitive headers
    • Sensitive routes
    • Telemetry command
    • VID extraction

Updated 12 days ago