Aras DevOps

Password encryption for SaaS services now uses SHA-256 by default instead of MD5 for new customer SDEs. This update strengthens security, aligns with modern regulatory requirements, and provides enhanced protection for all new SaaS customers.
Existing customers who want to switch from MD5 to SHA-256 can contact Aras for assistance.

Instances deployed from a Standard Development Environment (SDE) that uses the Aras.DevOpsFramework.SaaS3 Aras DevOps package now support configuring CORS (Cross-Origin Resource Sharing). This enhancement enables secure integration with third-party web applications by allowing you to define which trusted domains can send requests to Aras Innovator.

In SDE with this package, you configure CORS through an environment-specific variable instead of adding the settings to transformations. Define the variable corsAllowOrigins in the appropriate variable group in Library for the target environment. After you deploy the updated configuration, Aras Innovator accepts requests from the specified third-party services.