Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Discussion

 Wesley Janssen (WesleyJ8)
Achmea Personeel BV

Achmea Personeel BV
NL
WesleyJ8 Member since 2018 1 post
Achmea Personeel BV
Posted: Mar 31, 2022
Last activity: May 18, 2022
Posted: 31 Mar 2022 12:07 EDT
Last activity: 18 May 2022 11:51 EDT
Closed

Product Enhancement: Pega ootb activity's by default secure

At this very moment not all the pega ootb activity's are secure by default. Because not all activity's require authentication to run and we think this should be enabled at all time. At least by default. This because of the hardening of the pega platform. On the other hand we see examples of activity's that Allow invocation from browser and where no authentication to run is required, that is always a No Go. We would like to see for all ootb pega activity's that allow invocation from browser is disabled by default and all the activity's require authentication to run by default. In this way we hardening our environments and reduce security risks.

***Edited by Moderator Marissa to change Content Type from Idea to Discussion due to Idea content type being deprecated; added Idea specialized tag***
To see attachments, please log in.
Pega Platform 8.7.1
Security
Insurance
Idea

Related content:

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice