What's New

Version 2.3.2

Changed

Removed dependency on Active Support
Replaced eval() calls with JSON.parse() for improved security
Small spec alignment changes (risk_api and block activities)

Version 2.3.1

Released 2022-04-11

Fixed

URLs with query params did not render properly on new block page

Version 2.3.0

Released 2022-04-10

Added

Custom logo in block JSON response

Changed

Updated block page to use new template

Version 2.2.1

Released 2020-09-27

Fixed

bypass_monitor_header type validation

Version 2.2.0

Released 2020-09-15

Added

First Party

Version 2.1.0

Released 2020-09-01

Added

Added option to set a different human configuration on each request
Added types validation on configuration fields

Fixed

New cookie logic for mobile requests
Renamed api_connect_timeout to api_timeout_conncection on default configuration
Removed unsapported configuration fields: max_buffer_len and local_proxy
Send cookie_origin only if there is a cookie

Version 2.0.0

Released 2020-07-24

Added

Fields to Block Activity: simulated_block, http_version, http_method, risk_rtt, px_orig_cookie
Fields to page_requested activity: pass_reason, risk_rtt, px_orig_cookie
px_orig_cookie field to risk_api in case of cookie_decryption_failed
Support for captcha v2
Support for Advanced Blocking Response
Support for whitelise routes
Support for bypass monitor header
Support for extracting vid from _pxvid cookie
Support for rate limit
risk_cookie_max_iterations configuration

Fixed

Updated dependencies
Updated sample site dockerfile
Fixed monitor mode
Fixed send_page_activities and send_block_activities configurations
Updated risk to v3
Refactored ip header extraction
Renamed block_uuid field to client_uuid
Renamed perimeterx_server_host configuration to backend_url
Updated risk_response handling: pass the request if risk_response.status is -1
Forcing http header values to be utf8

Version 1.4.0]

Released 2018-03-18

Fixed

Incorrect assignment for s2s_call_reason
Fixed empty token result correct s2s reason

Added

Added support to captcha api v2
Mobile sdk support for special tokens 1/2/3

Version 1.3.0

Released 2017-07-27

Added

Sending client_uuid on page_requested activities
Supporting mobile sdk

Fixed

Using request.env instead of env

Version 1.2.0

Released 2017-06-04

Fixed
- Default timeouts for post api requests
- Fixed Dockerfile

Changed
- Removed httpclient and instead using typheous

Added
- Using concurrent-ruby for async post requests

Version 1.1.0

Released 2017-06-04

Added
- Added support for sensitive routes

Version 1.0.5

Released 2017-05-07

Fixed

Added request format into context for custom callbacks

Version 1.0.4

Released 2017-04-27

Fixed

Constants on px_constants
Cookie Validation flow when cookie score was over the configured threshold
Using symbols instead of strings for requests body

Version 2.3.2

Changed

Removed dependency on Active Support
Replaced eval() calls with JSON.parse() for improved security
Small spec alignment changes (risk_api and block activities)

Version 2.3.1

Released 2022-04-11

Fixed

URLs with query params did not render properly on new block page

Version 2.3.0

Released 2022-04-10

Added

Custom logo in block JSON response

Changed

Updated block page to use new template

Version 2.2.1

Released 2020-09-27

Fixed

bypass_monitor_header type validation

Version 2.2.0

Released 2020-09-15

Added

First Party

Version 2.1.0

Released 2020-09-01

Added

Added option to set a different human configuration on each request
Added types validation on configuration fields

Fixed

New cookie logic for mobile requests
Renamed api_connect_timeout to api_timeout_conncection on default configuration
Removed unsapported configuration fields: max_buffer_len and local_proxy
Send cookie_origin only if there is a cookie

Version 2.0.0

Released 2020-07-24

Added

Fields to Block Activity: simulated_block, http_version, http_method, risk_rtt, px_orig_cookie
Fields to page_requested activity: pass_reason, risk_rtt, px_orig_cookie
px_orig_cookie field to risk_api in case of cookie_decryption_failed
Support for captcha v2
Support for Advanced Blocking Response
Support for whitelise routes
Support for bypass monitor header
Support for extracting vid from _pxvid cookie
Support for rate limit
risk_cookie_max_iterations configuration

Fixed

Updated dependencies
Updated sample site dockerfile
Fixed monitor mode
Fixed send_page_activities and send_block_activities configurations
Updated risk to v3
Refactored ip header extraction
Renamed block_uuid field to client_uuid
Renamed perimeterx_server_host configuration to backend_url
Updated risk_response handling: pass the request if risk_response.status is -1
Forcing http header values to be utf8

Version 1.4.0]

Released 2018-03-18

Fixed

Incorrect assignment for s2s_call_reason
Fixed empty token result correct s2s reason

Added

Added support to captcha api v2
Mobile sdk support for special tokens 1/2/3

Version 1.3.0

Released 2017-07-27

Added

Sending client_uuid on page_requested activities
Supporting mobile sdk

Fixed

Using request.env instead of env

Version 1.2.0

Released 2017-06-04

Fixed
- Default timeouts for post api requests
- Fixed Dockerfile

Changed
- Removed httpclient and instead using typheous

Added
- Using concurrent-ruby for async post requests

Version 1.1.0

Released 2017-06-04

Added
- Added support for sensitive routes

Version 1.0.5

Released 2017-05-07

Fixed

Added request format into context for custom callbacks

Version 1.0.4

Released 2017-04-27

Fixed

Constants on px_constants
Cookie Validation flow when cookie score was over the configured threshold
Using symbols instead of strings for requests body