Changelog

Several changes have been made to provide clarity about each setting, and promote discoverability of settings that could serve your needs. These settings can be found in Workspace admin > Settings.

• Renaming of Profile tab to General
  • Addition of Workspace email display
  • Migrated Session timeout duration from personal profile to workspace settings
• Renaming of Authentication provisioning tab to Authentication, with new subsections of Login methods and SCIM provisioning
• Renaming of Project notifications tab to Error alerts
• Separation of Debugging into Network trace and Log streaming tabs
• Renaming of Key management tab to Encryption keys
• Renaming of Secrets management to External secrets manager
• Renaming of Advanced settings to Amazon Web Services IAM
• Introduction of environment tags (Dev, Test, Prod) on environment-specific settings

Available features vary depending on purchased add-ons and privilege levels determined by role-based access control.

• On-prem secrets management: Connect Conjur to a running on-prem group (Conjur Enterprise / Conjur Open Source) for a full on-prem configuration
• Credential rotation: Call the clear_cache API to retrieve the latest secret versions if credential rotation is enabled on Conjur

In the event Workato is unable to stream a log to the specified destination, Workato will retry sending the log repeatedly using an exponential backoff formula. To enable this, logs are kept in a persistent cache until:

1. The audit log reaches its destination successfully, or
2. Seven (7) days have passed.

Each retry attempt is logged in the Workato Logs service for visibility into the process.

Our latest update introduces a new Deployment permission for deploying project across environments. Effective December 12, 2023, users need this permission in both Development and target environments in order to deploy, replacing the Recipe lifecycle management requirement.

The Deployment permission is enabled for system roles and custom roles as follows:

• Admin: Enabled
• Analyst: Enabled
• Operator: Disabled
• Custom: Disabled until an admin manually enables it

This security enhancement provides better control over who can deploy to production or test environments by separating deployment permissions from recipe lifecycle management permissions.

The developer API just got more powerful with the addition of the user resource. This new set of endpoints allows you to perform the following actions:

• Get details of the authenticated user
• Get a list of members in your workspace
• Get details about a user you specify
• Get the role and privileges for a workspace user you specify

Starting today, we're allowing our users to opt in remove access to their collaborator's personal Workato workspaces so that they'll only be able to build inside of pre-approved  workspace. For companies with strict security and compliance protocols, we highly recommend opting in to this security update as this leaves no action taken by your collaborators unlogged and unauditable. This change is compatible with both direct and embed customer accounts.

For maximum activity logging, we recommend setting up audit log streaming too!

Native webhook triggers configured for JSON payloads will now return a 400 bad request status code if the payload wasn't valid JSON. Additionally, to ensure consistency, starting from 6th November 2023, we will also start validating webhook triggers within the same workspace using the event name and webhook URL. If they have different configurations, we will prevent the recipe from starting.

These updates allow senders to see when events are not accepted so they can intervene and investigate immediately.

Logging Service has been updated to allow user access based on project permissions. Now, users will only be able to see log entries for projects they have access to. This enhancement both makes logs easier to parse for users by making sure they only see relevant logs, and improves security by limiting access to logs based on user permissions.

Exciting news — we’ve launched an Australia data center to enhance data control and performance for our customers in the region. This expansion caters to our growing customer base in Australia and New Zealand, offering them the power to choose the hosting location for their Workato account, alongside our existing centers in the US, Europe, Singapore, and Japan.

With Audit Log Streaming Notifications, breakages in streaming connections will be detected and an email will be sent to users with troubleshooting steps. This allows users to immediately detect both voluntary and involuntary breakages so that it can be resolved in a timely manner.