What's New

Version 2.3.2

Changed

• Removed dependency on Active Support
• Replaced eval() calls with JSON.parse() for improved security
• Small spec alignment changes (risk_api and block activities)

Version 2.3.1

Released 2022-04-11

Fixed

• URLs with query params did not render properly on new block page

Version 2.3.0

Released 2022-04-10

Added

• Custom logo in block JSON response

Changed

• Updated block page to use new template

Version 2.2.1

Released 2020-09-27

Fixed

• bypass_monitor_header type validation

Version 2.2.0

Released 2020-09-15

Added

• First Party

Version 2.1.0

Released 2020-09-01

Added

• Added option to set a different human configuration on each request
• Added types validation on configuration fields

Fixed

• New cookie logic for mobile requests
• Renamed api_connect_timeout to api_timeout_conncection on default configuration
• Removed unsapported configuration fields: max_buffer_len and local_proxy
• Send cookie_origin only if there is a cookie

Version 2.0.0

Released 2020-07-24

Added

• Fields to Block Activity: simulated_block, http_version, http_method, risk_rtt, px_orig_cookie
• Fields to page_requested activity: pass_reason, risk_rtt, px_orig_cookie
• px_orig_cookie field to risk_api in case of cookie_decryption_failed
• Support for captcha v2
• Support for Advanced Blocking Response
• Support for whitelise routes
• Support for bypass monitor header
• Support for extracting vid from _pxvid cookie
• Support for rate limit
• risk_cookie_max_iterations configuration

Fixed

• Updated dependencies
• Updated sample site dockerfile
• Fixed monitor mode
• Fixed send_page_activities and send_block_activities configurations
• Updated risk to v3
• Refactored ip header extraction
• Renamed block_uuid field to client_uuid
• Renamed perimeterx_server_host configuration to backend_url
• Updated risk_response handling: pass the request if risk_response.status is -1
• Forcing http header values to be utf8

Version 1.4.0]

Released 2018-03-18

Fixed

• Incorrect assigment for s2s_call_reason
• Fixed empty token result correct s2s reason

Added

• Added support to captcha api v2
• Mobile sdk support for special tokens 1/2/3

Version 1.3.0

Released 2017-07-27

Added

• Sending client_uuid on page_requested activities
• Supporting mobile sdk

Fixed

• Using request.env instead of env

Version 1.2.0

Released 2017-06-04

Fixed
- Default timeouts for post api requests
- Fixed Dockerfile

Changed
- Removed httpclient and instead using typheous

Added
- Using concurrent-ruby for async post requests

Version 1.1.0

Released 2017-06-04

Added
- Added support for sensitive routes

Version 1.0.5

Released 2017-05-07

Fixed

• Added request format into context for custom callbacks

Version 1.0.4

Released 2017-04-27

Fixed

• Constants on px_constants
• Cookie Validation flow when cookie score was over the configured threshold
• Using symbols instead of strings for requests body