Help
Product Ideas
Submit and vote for your favorite ideas on how to improve SS&C Blue Prism products.
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Suggest an idea

Eliminate unnecessary transitions to the login screen in Hub/Interact SSO login

Status: Not Planned Submitted on ‎05-06-23 07:56 AM Submitted by on ‎05-06-23 07:56 AM
1 Comment (1 New)
When logging in to Hub using SSO, the login screen is displayed even though ID/Pass is not required. End users have said that it is a small thing, but if they use it frequently, unnecessary screen transitions can be stressful. Could you please consider changing the specification so that it transitions directly to the Hub/Interct selection screen instead of the login screen? ----------------------------- SSOを使用してHubにログインする際に、ID/Passの入力は不要なのにもかかわらず、ログイン画面が表示されます。 エンドユーザより、ちょっとしたことだが頻繁に使用していると無駄な画面遷移がストレスに感じられるという声がありました。 ログイン画面ではなくダイレクトにHub/Interctの選択画面に遷移するよう、仕様の変更を検討いただけないでしょうか。 ... View more

Interact - Option for Customization in Auto mail going via inbox option

Status: New Submitted on ‎24-10-24 04:30 PM Submitted by on ‎24-10-24 04:30 PM
Currently, When we select inbox option in interact form [ version 4.7]- Auto mail is getting delivered . there is no option to customize this email. i am looking for this feature to add in interact form so that our business partner can receive customized mail. BP ticket  reference - 297330 ... View more

Authentication Landing page - Allow customization

Status: New Submitted on ‎02-10-24 03:30 PM Submitted by on ‎02-10-24 03:30 PM
This idea is related to feedback received by our executive staff regarding the HUB/Interact authentication landing page.  Users are finding the authentication landing screen confusing specifically the picture of the doorway.  In many cases, we have been advised that users were unsure where they landed and if they were in the correct website for Interact.  We would like the ability to add branding to clearly communicate that the site is for HUB/Interact and allow customer/company branding to prevent user confusion. ... View more

Hub API key gen using credential manager and rabbitmq to distribute key

Status: New Submitted 2 weeks ago Submitted by 2 weeks ago
With BluePrism Hub there is a need to store and distribute the API key. If this could be automated so users can request this and rabbitmq could distribute the key. It would probably need to have an approval or HITL stage gate. Moderator note: Changed the title of this idea to sentence case.     ... View more
0 Likes

id_token_hint parameter in HUB/Interact and Decipher URL

Status: New Submitted a month ago Submitted by a month ago
The application passes sensitive parameters in the URL line of many of the requests. BUSINESS IMPACT: Sensitive data could be disclosed unintentionally through transmission in the URL. Description The application uses the URL to pass sensitive data from the client to the server. Data passed in the URL can be exposed because data passed in this manner ends up in unintended locations. These locations can include server logs, local browser history, and proxy logs. Reproduction Steps Using Burp Suite, navigate through the application. The application passes sensitive parameters in the URL line of many of the requests  Affected Locations HUB v4.7 and Interact 4.7 Decipher v2.3 Recommendation When sensitive data is sent, it should be ensured that POST requests are used instead of GET requests. POST data is not treated the same way as URL data is when requests are sent through systems and do not typically get cached or logged. If there are technical constraints that require data to be sent in the URL then strong encryption should be used to encrypt values. It should be ensured that part of this encryption scheme contains protection against data replay so that captured cryptographic values cannot be replayed back to the server.  References Information exposure through query strings in url | OWASP Foundation A02 Cryptographic Failures - OWASP Top 10:2021   ... View more
0 Likes
li.common.scroll-to.top