Version 3.5.2 provides the ability to define security headers in HTTP responses, but enabling this feature requires changes to
web.xml is not distributed with upgrades, those users upgrading from previous versions should add the following configuration to
web.xml file above the filter tag for the Character Encoding Filter:
<filter> <filter-name>Security Headers Filter</filter-name> <filter-class>com.softslate.commerce.customer.core.SecurityHeadersFilter</filter-class> </filter>
And also the following configuration directly above the <filter-mapping> tag for the Character Encoding Filter:
<filter-mapping> <filter-name>Security Headers Filter</filter-name> <url-pattern>/*</url-pattern> </filter-mapping>
If you are using a prior version of SoftSlate, Administrators that have TinyMCE enabled for editing rich text fields will start to see a message stating that TinyMCE is expiring. Version 3.5.2 allows you to fix this by entering your TinyMCE API Key into the application which should remove the warning. You must first visit the TinyMCE site, register, and then save your TinyMCE API Key into the SoftSlate Administrator.
In the SoftSlate Administrator, paste your TinyMCE API Key into the "TinyMCE API Key" field under Store Settings -> Advanced System Settings. You can also turn TinyMCE on or off on that same screen with the "Use TinyMCE Rich Text Editor?" field.