Proposal Idea Often times while working on Cumulocity microservice which makes use of the Cumulocity platform API there is a need to be aware of the existing APIs that can be leveraged, signature of the APIs i.e. request object it takes and the re...
We are deploying devices in field that can cache the measurements and transfer them to the Cumulocity only at a predefined intervals. It means, that the measurements reach cumulocity with delay, which sometimes is more than 24 hours.
We need t...
Abuse of the password reset feature - Security Risk
A non-authenticated user can use the password reset functionality to send password reset emails toarbitrary addresses, even if they are not linked to any account of the Web application. The followingrequest and screenshot illustrate this vulnerabi...
Support of weak SSL/TLS encryption protocol - Security Risk
Environmentdormakabastaging.us.cumulocity.com DescriptionThe Web server supports the use of encryption protocols inferior to TLS1.2. Security vulnerabilities havebeen identified in these versions and / or they are no longer compliant with the PCI-...
Show application name exactly as they are configured
The application names are going through a "normalization process".
This means that application names like "MindSphere Launchpad", are normalized to:"mind sphere launchpad", which is not desired by the customer.
Reason is that changes to this mi...
Currently the SMS integration can be only configured by the Operations team. Integration for OpenIT can be configured through UI but is not supported anymore. sms77.io is supported but cannot be configured through UI. Telstra administrator needs t...
Use asterix wildcard in matching substring. It would work only when equals (=) operator is used. So if the search value would be: ca* it will match cat, ca, car but not replica.
As customer I want to have TLS 1.3 in order to have more secure connections
We need at least a roadmap to do this. "And as of August 2018, the final version of TLS 1.3 is now published (RFC 8446). Companies such as Cloudflare are already making TLS 1.3 available to their customers. ... In short, the major benefits of TLS ...
Redirect to SSO login without showing login screen
For a tenant with SSO enabled, there should be the option to disallow access through local accounts and the Cumulocity login screen should never be shown. Instead a redirect to the Login endpoint of the IAM should be used.