General Technical Updates

A new property has been introduced to enable persistent Gradle project naming in SAP Commerce Cloud, streamlining workflow for developers managing multiple versions.

A new property has been introduced that allows you to define a name of the root Gradle projects that are generated with ant gradle:

12
gradle.project.name=<project-name>

The default value of this property is platform.

The value of this property is used as a name for a Gradle root project only when there's no explicit name provided in the ant gradle call. This means that if you generate a Gradle project with the following command, the myCustomProjectName value is used regardless of the value provided with the gradle.project.name property:

12
ant gradle -DprojectName=myCustomProjectName

The value of the purchasable field for a product is determined collaboratively by multiple populators.

Multiple populators can collaborate to determine the value of the purchasable field for a product. However, the final value of the purchasable field is not determined based on the sequence of populators. For instance, the productPricePopulator sets the purchasable field to false if no price data is found for the product. This value will not be switched to true even if the productBasicPopulator runs after the productPricePopulator.

Experience improved IP address handling in the /applyVoucher OCC API. Now, customers' real IP addresses are used for brute force protection instead of proxy addresses.

Brute force protection limits the number of coupon applications within a specified time period per IP address. Previously, the /applyVoucher OCC API uses the request.getRemoteAddr() method. When customers use a proxy, the system uses the proxy address in brute force protection instead of their real IP address. If multiple customers share a single proxy, they also share the coupon usage limitation.

To use customers' real IP addresses in brute force protection, a new toggle named toggle.useXForwardedForForIp.enabled is added to de.hybris.platform.commercewebservices.core.v2.controller.BaseCommerceController under the commercewebservices extension.

The toggle prioritizes the X-FORWARDED-FOR header over the request.getRemoteAddr() method. It ensures that the brute force handler receives the customers’ real IP address, whether they're using a proxy or not.

• When customers are using a proxy, the X-FORWARDED-FOR header contains their real IP address, while the request.getRemoteAddr() method holds the proxy IP information. The system prioritizes the X-FORWARDED-FOR header and sends the real IP address to the brute force handler instead of the proxy IP.
• When customers aren't using a proxy, the X-FORWARDED-FOR header remains empty, and the request.getRemoteAddr() method contains their real IP address. This real IP information is sent to the brute force handler.

SAP Commerce Cloud now supports Solr 9.8.

The Solr application that comes with this release's SAP Commerce Cloud ZIP uses Solr 9.8 as its default version. For information on configuring the Solr version, see Selecting Solr Server Version.

Upgrading to Solr 9.8 ensures compatibility and access to the latest features and improvements in Solr. For more information, see Advancing to Solr 9.8.

For more details, see the following resources:

• Support Minor Solr Version
• Upgrading to Solr 9.x

You can now use new classes from the ServiceLayer i18N package to localize exceptions thrown in SAP Commerce Cloud.

The ServiceLayer i18N package now contains classes that you can use to implement localization for SAP Commerce Cloud exceptions. For more information, see Support for Localizable Exceptions.

There's a new safeguard in place to protect media with associated data against direct changes to the media folder. The protection is enabled by default, ensuring the integrity of file locations and preventing abandoned files in the media storage. For operations that require direct folder changes, a session-based override option is available.