Magento Open Source 2.4.6 release notes
Magento Open Source 2.4.6 introduces support for PHP 8.2. PHP 8.1 remains fully supported, but support for PHP 7.4 has been removed. It includes significant performance and scalability enhancements. GraphQL operations for bulk cart operations and category tree rendering response have been optimized.
This release includes over quality fixes and enhancements. Core Composer dependencies and third-party libraries have been upgraded to the latest versions that are compatible with PHP 8.2.
Other release information
Although code for these features is bundled with releases of the Magento Open Source core code, several of these projects are also released independently. Bug fixes for these projects are documented in the separate, project-specific release information that is available in the documentation for each project.
Magento Open Source 2.4.6 highlights
Look for the following highlights in this release.
Security enhancements
This release includes eight security fix and platform security improvements.
No confirmed attacks related to these issues have occurred to date. However, certain vulnerabilities can potentially be exploited to access customer information or take over administrator sessions. Most of these issues require that an attacker first obtains access to the Admin. As a result, we remind you to take all necessary steps to protect your Admin, including but not limited to these efforts:
- IP allowlisting
- two-factor authentication
- use of a VPN
- use of a unique location rather than
/admin
- good password hygiene
See Adobe Security Bulletin for the latest discussion of these fixed issues.
Additional security enhancements
Security improvements for this release improve compliance with the latest security best practices, including:
-
Gaps in Admin action logs have been addressed with more specific auditing of actions within grid views, mass actions, and exports.
-
reCAPTCHA validation no longer fails during checkout when unexpected errors occur during payment processing. GitHub-35093
-
New system configuration for requiring email confirmation when an admin user changes their email. To reduce site vulnerability, a new system configuration setting (disabled by default) was added to require email confirmation when an admin user changes their email: Stores > Settings:Configuration > Customers > Customer Configuration > Account Information Options > Require email confirmation if an email has been changed. When this option is enabled, the application will request email confirmation every time the admin user changes their email address. The following module is affected by this change:
Magento_Customer
.
Platform enhancements
Magento Open Source 2.4.6 introduces support for PHP 8.2. PHP 8.1 remains fully supported.
PHP 7.4 support has been removed from this release. You cannot run Magento Open Source 2.4.6 on PHP 7.4.
Magento Open Source now supports:
-
Composer 2.2.x. Composer 1.x has been removed.
-
Redis 7.0.x. Although compatibility with Redis 6.2 remains, we recommend deploying this release with Redis 7.0.x because Redis 6.2 is expected to reach end of life in 2024.
-
OpenSearch is now supported as the default search engine for Magento Open Source on-premises and cloud deployments. It is supported as an independent search engine for Magento Open Source. This release supports OpenSearch v2.x and has been tested with OpenSearch 2.5. Although compatibility with OpenSearch 1.x remains, we recommend using this release with OpenSearch 2.x. You can install and run Magento Open Source and Magento Open Source 2.4.6 with OpenSearch 2.x on both Cloud and on-premises Search engine prerequisites.
-
Elasticsearch 8.x. See Upgrade Elasticsearch.
-
MariaDB 10.6 (LTS version). This release is still compatible with MariaDB 10.4, but we recommend upgrading to MariaDB 10.6.
Other upgrades and replacements
-
The DHL schema has been migrated from v6.2 to v10.0.
-
Outdated JavaScript libraries have been updated to their latest versions, and outdated dependencies have been removed. These changes are backward compatible.
-
PHP 7.4 compatibility has been removed from the Commerce and Magento Open Source code bases.
-
Symfony dependencies have been upgraded to the new LTS version. Dependencies include:
friendsofphp/php-cs-fixer
symfony/console
symfony/event-dispatcher
symfony/finder
symfony/process
web-token/jwt-framework
-
jquery-migrate
has been removed from the Commerce and Magento Open Source code bases. GitHub-21406 -
Upgraded
jQuery/fileUpload
library to v10.32. -
Zend framework (ZF1) components that have reached end of life have been removed from the codebase. See Backward-incompatible changes highlights.
-
Laminas dependencies have been updated to support PHP 8.2.
-
The
laminas/laminas-dependency-plugin
Composer plugin has been removed. GitHub-36515 -
Replaced
Zend_Filter
withlaminas/laminas-filter
. -
Upgraded
web-token/jwt-framework
to v3.0.5. (latest version) -
Upgraded
allure-framework/allure-phpunit
to v2.x. -
Upgraded the
Chart-js
library to v3.9.1
Accessibility updates
The focus of this release has been on creating a storefront experience on Venia (PWA) that is more perceivable, operable, understandable, and robust. These enhancements include:
- The visual text label for the Sign in button now matches its accessible name. (Best practice recommends that a UI element’s accessible name starts with the visible label text.)
- Descriptive accessible names have been added to buttons throughout the storefront.
- Verbal descriptive labels have been added to the Has Video checkboxes in search filters.
- Keyboard-only users can now access all page functionality on the storefront. Previously, shoppers could not access sub-navigation links using only keystrokes.
Adobe Commerce integration with Adobe IMS
The following Adobe IMS modules have been decoupled from the Adobe Commerce and Magento Open Source core code and are now packaged as a separate metapackage:
adobe-ims
adobe-ims-api
admin-adobe-ims
The new adobe-ims-metapackage
v2.2.0 is bundled with Adobe Commerce 2.4.6 and Magento Open Source 2.4.6. No functionality has changed in this release.
Braintree
- The Pay Later button and banners (messages) for Italy and Spain have been enabled for Braintree.
- PayLater messaging with PayPal Vault has been enabled.
- Added Fraud Protection and ACH web hooks. The Fraud Protection web hook is triggered when a risk decision has been made in Braintree. The ACH web hook is triggered when the status of an ACH payment is updated to
settled
orsettlement decline
.
- Added LPM (Local Payment Methods) web hook.
GraphQL
GraphQL performance enhancements include:
Improved response time when querying categories with category permissions enabled. Response times have improved when querying products in categories for which category permissions are enabled and that contain many customer groups or shared catalogs. Code changes that support this performance improvement include:
- GraphQL resolver operation has been optimized.
- The data provider no longer re-sets runtime-cached data for every new product being processed, which has improved performance.
- Product permission processing has been optimized in the GraphQL resolver. Product permissions are now applied to product collections instead now on a per-product basis.
- Optimized permissions read in shared catalogs in the
addProductsToCart
mutation. - Product permissions have been optimized with product inline fragments.
Optimized performance of category tree rendering. The categoryList
query has been optimized to support customers with a large number of categories. Merchants using this query to search more than 1500 categories with up to five levels of nested subcategories will notice a performance improvement. The loading of category children by refactoring code has been improved by removing unnecessary method calls, improving caching of the category tree, and loading category data recursively. Code changes that support this performance improvement include:
- Custom attributes metadata fetching for category models has been improved.
- Category ID fetching has been improved, and
getChildren
calls have been reduced. - Category children loading has been improved.
Reduced bulk cart operations query response times. The add product mutations have been optimized to improve query performance when adding up to 500 simple and configurable products. Bundle products are not affected. The optimized mutations include addProductsToCart
, addConfigurableProductsToCart
, addDownloadableProductsToCart
, addSimpleProductsToCart
, addVirtualProductsToCart
,addWishlistItemsToCart
, and updateCartItems
.
customer query now supports order sorting. The orders
output object of the customer
query now contains a sort field. You can now sort orders by order number or creation date and in ascending or descending order.
New mutations:
deleteCustomer
Page Builder
Page Builder v.1.7.3 is compatible with Magento Open Source 2.4.6.
PWA Studio
PWA Studio v.13.0.x is compatible with Magento Open Source 2.4.6. It includes multiple enhancements to improve accessibility. For information about bug fixes, see PWA Studio releases. See Version compatibility for a list of PWA Studio versions and their compatible Adobe Commerce core versions.
Known issue
Issue: New Relic is not currently compatible with PHP 8.2. Deployments running New Relic can run Adobe Commerce 2.4.6 on PHP 8.1 but not PHP 8.2. Workaround: Run Adobe Commerce 2.4.6 on PHP 8.1 until a new version of New Relic is released that supports PHP 8.2. This release is expected Summer 2023.
Fixed issues
We have fixed hundreds of issues in the Magento Open Source 2.4.6 core code.
Installation, upgrade, deployment
- Static content deployment no longer times out or fails during standard or compact deployments with multiple locales and websites.
- Compact strategy no longer causes an invalid reference to an external domain when running static content deployment (
bin/magento set:static-content:deploy -f --strategy compact
).
- Executing
bin/magento setup:di:compile -vvv
(or with the-v
or-vv
options) now returns an informative message on failure. GitHub-35391
- Magento Open Source no longer throws the following exception when you run the
bin/magento setup:upgrade
command in a deployment already running the data migration tool:PHP Fatal error: Declaration of Migration\Logger\Logger::addRecord(int $level, string $message, array $context = []): bool must be compatible with Monolog\Logger::addRecord(int $level, string $message, array $context = [], ?Monolog\DateTimeImmutable $datetime = null): bool in /var/www/html/vendor/magento/data-migration-tool/src/Migration/Logger/Logger.php on line 34
. GitHub-35604
- The
bin/magento setup:db:status
command no longer fails in environments running MySQL 8.0.29. Previously, command output stated erroneously that the declarative schema was outdated. GitHub-35671
- The
composer install
command no longer overwrites.gitignore
files. GitHub-32888
- Running
bin/magento sampledata:remove
to remove sample data after upgrade on Alpine Linux no longer fails with this error:Undefined constant "MagentoHackathon\Composer\Magento\Deploystrategy\GLOB_BRACE
. GitHub-36062
bin/magento setup:upgrade
now executes successfully after first executingcomposer install --no-dev
. GitHub-36351
- Exceptions and exception stack trace entries are now included in
var/log/exception.log
. GitHub-36054
Magento Open Source now throws a parameter validation error when you use the command line to set a Redis connection without a password.
Accessibility
- The Proceed to Checkout, Review Order, and Place Order buttons in the checkout workflow now work as expected with keyboard input.
- Visual indication of focus on buttons when using TAB or SHIFT + TAB to navigate through page controls now works as expected.
Screen readers
- The screen reader for the order history page now reads the correct image description.
Screen readers now announce:
- Total item count found in search results as expected
- Logged-in user’s name when a user successfully signs in using keyboard controls
- Product search result page header now reads the correct value for the
<title>
element - Whether input fields are required
- Correct current state of accordion elements (collapsed and expanded)
- When page content has been refreshed after the user has clicked the Create an account button
Bundle products
- Updating bundle product via API for a specific store view now does not override other store views data for the same bundle product. Previously, bundle product option titles were overridden with the first option title for other store views.
- Bundled products can now be filtered successfully from Admin Catalog > Products when using a Dutch locale. Previously, Magento Open Source displayed this error when you tried to filter on
Type: Bundle Product
:Something went wrong with processing the default view and we have restored the filter to its original state
. GitHub-35704
- The products grid no longer throws an exception when bundle products have a special price that exceeds 1000. Previously, when you either searched for the product by SKU or navigated to Catalog > Products, Magento Open Source threw this error:
Non Numeric value encountered
. GitHub-36284)
- Columns in credit memo and invoice PDFs for orders that contain a mix of bundle and simple products are now rendered correctly. Previously, columns were distorted or misaligned.
- In GraphQL queries that contain a
BundleProduct
fragment, theitems.options.product
object contains data as expected. Previously, the object could be null in some circumstances.
- Decimal quantities for bundle options are now rendered correctly when Quantity uses decimals is enabled. Previously, only the integer part of the quantity was rendered, not the fractional component. For example, a quantity of 1.5 was rendered as 1.0. GitHub-35964
- GraphQL product queries now return only bundle product options within the scope of the store being queried.
- Products that are not assigned to categories but that are product options for bundle or grouped products are now returned in responses when the Allow Category Browsing configuration setting is enabled for the customer sending the query.
Cache
- Full-page cache is no longer flushed after order fulfillment unless the ordered product is out of stock. Previously, the cache was purged for the category whenever a shipment was created.
- Data is now cached successfully when the L2 cache is configured and remote data is partially evicted. Previously, after flushing only the data cache without hashes of those data, the new cache was not saved while the data hashes existed.
- Corrected defects in
CatalogUrlResolverIdentity
andCmsUrlResolverIdentity
that prevented caching. This affected route query caching on multiple requests.
Cart and checkout
- Shoppers can now add an additional item to their cart when their cart contains the minimum quantity of the simple product.
- REST API calls to retrieve cart data now return the same
grand_total
andbase_grand_total
values when the store currency and base currency are the same. GitHub-34649
- The exported value of Maximum Qty Allowed in Shopping Cart now matches the default value set in the Admin configuration setting.
- Magento Open Source now correctly calculates the grand total for refunds of orders with a discount for shipping.
- Google reCAPTCHA now works as expected for storefront orders. Previously, Magento Open Source displayed these errors when Google ReCAPTCHA was not first selected before a shopper first attempted to place an order:
ReCaptcha validation failed, please try again
andNo such cart with id = ID
.
- CAPTCHA image refresh now honors the Admin configuration setting and is not triggered when the setting is disabled. Previously, the refresh was triggered whenever the payment method changed regardless of whether the setting was enabled or disabled. GitHub-34855
- Magento Open Source now displays a confirmation popup as expected before redirecting a shopper to the next page when the shopper changes product quantity on the cart page without updating the cart and then tries to navigate to the next page.
- Shoppers can now decrease a product’s quantity from their cart after it was decreased in the Admin. Previously, Magento Open Source threw the following error when a shopper tried to decrease product quantity:
The requested qty is not available
. GitHub-35780
- Magento Open Source no longer throws an error in the JavaScript console when product quantity exceeds the configured maximum during multi-shipping checkout. Instead, Magento Open Source now displays an informative error message. GitHub-36184
- Item quantity on the shopping cart page is no longer represented as a negative number when a shopper uses the down arrow key on their keyboard to change product quantity. GitHub-36299
- Shoppers can no longer add to the cart a product from a category that is now disallowed after changing the customer group to which the shopper belongs. Magento Open Source now checks customer group permission access for specific categories when the permission configuration settings have been changed.
- Customer shopping carts are no longer emptied before Admin order creation, and cart contents are now restored if the order is canceled or abandoned. Items are now removed from the cart only after order creation. Previously, whenever an admin user tried to create an order on the Admin Manage Shopping Cart page, the cart was emptied.
- The mini cart now displays correct product images after you run
bin/magento catalog:image:resize
. Previously, all images were replaced by the default product placeholder image. GitHub-35535
- Checkout can now complete successfully when the shipping address contains an extension attribute. Previously, Magento Open Source threw this error:
Object of class Magento\Quote\Api\Data\AddressExtension could not be converted to string
. GitHub-34202
- The
addBundleProductsToCart
mutation no longer adds products to a quote if a required product option has no value. GitHub-25676
- Magento Open Source now returns an informative message when an
addProductsToCart
mutation fails when adding a product to the cart with insufficient permissions.
- Magento Open Source no longer throws an error on the cart page when Quick Order is used to add a product in a quantity that exceeds available inventory.
Cart price rule
- Cart price rule free shipping options that are set during rule creation are now applied to orders as expected. Previously, free shipping options applied during rule created were ignored during checkout, and free shipping was not permitted when the rule was applied. GitHub-35013
- The
discount_percent
column of thesales_order_item
table for a product is now populated as expected with the discount percentage when the item discount quantity is not set or it is greater than or equal to order item quantity. Previously, this column was not populated when a cart price rule was applied to this product.
Catalog
- The product list widget no longer displays incorrect or cached prices for a logged-in shopper. The price displayed in the home page widget now matches the shopper’s address and is updated when the shopper updates the address. Previously, the browser cache did not update product prices on the home page based on customer group tax rules.
- The Compare Products list feature now works correctly in a multi-website deployment and is dependent on website.
- Magento Open Source no longer displays data from the previous page when you reload a product detail page. Previously, when the product detail page was reloaded, data from the first tab was merged with the newly loaded data for a split second.
- Categories with subcategories can now be expanded in the main menu on mobile devices as expected. Previously, shoppers could not open or expand categories with subcategories in mobile deployments. GitHub-35329
- Category listings are now updated as expected when a product is assigned to a new website or store. Previously, the product price indexer was not marked as invalid and subsequently re-triggered on a
cron
run as expected. As a result, the product’s price entry was missing from the price index table and was not displayed on the new store or website.
- The storefront inventory count is now accurate when the Display Out of Stock Products configuration setting is enabled. GitHub-35899
- The category page is no longer empty when the Allow All Products Per Page setting is enabled. GitHub-35900
- The Display Out of Stock Products configuration option now works as expected when enabled. Previously, all products were displayed as out-of-stock on the storefront when this option was enabled on the Admin. GitHub-35898
- Product sorting by Boolean attributes now works as expected. GitHub-36390
- Catalog price rule discounts are no longer applied to fixed price custom product options but are applied to only the product’s original price.
- Catalog price rules now take into account the selected scope and are applied to products only for the websites for which the attribute has an option value that matches the rule. Previously, the rule did not take into account the selected scope in multi-site deployments. GitHub-36049
- The swatch options color and size attributes are now pre-selected in the product detail page when a shopper modifies the configurable product from the My Cart page. (jQuery 3.x version now supports the
swatchRenderer
widget name, which is now camel case.) Previously, the swatch option is not pre-selected.
- Customers are now notified for product price drops when the customer is subscribed to the price drop alert. Previously, price drop notifications were not always sent due to application level caching.
- Catalog rules that are based on SKUs with the is not one of condition now work as expected.
- Magento Open Source no longer erroneously assumes that one category is the parent category of another based on category path. Previously, when two categories were adjacent and one category ID starts with another category’s category ID, Adobe Commerce assumed that the categories had the same parent category. GitHub-32464
Configurable products
- Magento Open Source no longer throws an error when an admin user adds products manually to a configurable product that already has many simple products assigned to it. Previously, Magento Open Source displayed this error:
Something went wrong with processing the default view and we have restored the filter to its original state
.
- Shoppers can no longer add configurable products with a salable quantity of 0 to their shopping cart in deployments with back orders disabled. Magento Open Source now indicates that the product is out of stock. GitHub-35319
- Creating a new product by importing a configurable product with many options from a different store view now results in an exact copy of the first product as expected. Previously, the sort order of the new product’s configurable options was incorrect, and titles were not translated to the new store view’s locale in deployments with multiple store views and locales. GitHub-35200
- Configurable products with all out-of-stock child products are now displayed as out of stock on the storefront.
- Configurable product SKUs and product names are now displayed accurately. Previously, name and SKUs were displayed as undefined after you moved an attribute group above the Product Details group on Stores > Attribute set. GitHub-36309
Coupons
- Validation logic has been added to the Manage Coupon Codes workflow to enforce the coupon code settings when generating coupons. Previously, coupon code generation ignored the Code Length setting when the Coupon Qty value was greater than 2500.
- Reward points are now added to a customer’s account as expected when a rewards coupon is applied during checkout with the PayPal Express payment method.
- You can now apply a coupon code during Admin order creation when the cart price rule has weight as a condition. Previously, coupon codes were not set if other fields were not selected for the product. GitHub-36271
- You can now filter coupon reports by multiple cart price rules. GitHub-36272
- Custom options are now applied and saved when an admin user presses Enter while configuring a product with custom options. Previously, you were able to select options and add the product to an order, but the options were not saved, and the admin user was prompted to re-select product options. GitHub-35284
- Coupon codes can now be successfully exported to Excel XML. Previously, the generated file did not contain all selected coupon codes but only as many items as were selected in the items per page selector.GitHub-36073
cron
- The
catalog_index_refresh_price
cron job now executes successfully. Previously, Magento Open Source logged this error during cron execution:report.ERROR: Cron Job catalog_index_refresh_price has an error: SQLSTATE[HY093]: Invalid parameter number: number of bound variables does not match number of tokens
.
Currency
- A missing space between custom currency symbols and prices has been added to both storefront and Admin product prices. The appropriate condition and regex expression has been added to allow a custom NBSP in currency symbols. For example, IDRx 105.00 was previously displayed as IDRx105.00.
- Magento Open Source no longer sends a customer duplicate emails after an order is created from the Admin.
- Admin order emails are no longer sent when the Email order confirmation setting is disabled. GitHub-36256
- Image options are no longer displayed as HTML markup in the credit memo, order confirmation, and invoice customer emails (default template) for products with custom options.
Frameworks
- Admin users can now successfully open the Admin Store > Configuration page when no country in the European Union Countries setting (Stores > Configuration > General > Country options > European Union Countries). Previously, when an admin user tried to open this page, Magento Open Source threw this error:
TypeError: explode(): Argument #2 ($string) must be of type string, null given in /var/www/php/folder/vendor/magento/module-config/ViewModel/CountryFilter.php:46
. GitHub-35901
jquery.cookie
dependencies now work as expected with JavaScript dependencies. Previously, you could not use aliases forjquery/jquery.cookie
. GitHub-35913
- The
bin/magento i18n:collect-phrases
command now includes<title>
text in the exported CSV file. GitHub-35462
Magento\Framework\Code\Reader\ArgumentsReader::getParentCall()
now supports named constructor arguments. You can now call a function by setting the parameters by their name.
- Errors are now logged as expected in the
exception.log
file. Previously, although errors were logged in thesystem.log
file, errors were not logged invar/log/exception.log
.
- Merchants now have the ability to specify a custom external SMTP provider. GitHub-26104
- OAuth integrations can now be re-authorized as expected on deployments running Magento Open Source 2.4.3-p2. Previously, re-authorization failed with this error:
The attempt to post data to consumer failed due to an unexpected error. Please try again later
. Magento Open Source also attempted to decrypt unencrypted values. GitHub-35313
- The correct
rowId
parameter is now passed when the categoryurlKey
is saved for categories that have child categories. Previously, the wrongcategoryId
was passed when saving the categoryURLKey
.
- The product attribute code
event
has been added to the list of reserved product attribute codes, which eliminates errors associated with using an attribute with this name on the storefront. Previously, the application threw this error on the product detail and search/product list pages whenevent
was used:report.CRITICAL: Error: Call to a member function getStatus() on string in /home/mer33515/public_html/ee24develop/magento2ee/app/code/Magento/CatalogEvent/Observer/ApplyIsSalableToProduct.php:23
.
- Storefront validation error messages that occur during order placement are now displayed consistently. Previously, messages appeared, collapsed, then re-appeared. GitHub-35651
- AMQP consumers no longer fail due to a deprecated
trim()
function on deployments running PHP 8.1. Previously, when the AMQP consumer started after installation, Magento Open Source threw this error:Deprecated Functionality: trim(): Passing null to parameter #1 ($string) of type string is deprecated in .../vendor/magento/framework-amqp/Config.php on line 143
. GitHub-35380
- The
getFilteredTimerIds
method now works as expected. ClassMagento\Framework\Profiler\Driver\Standard\Stat
is now compatible with PHP 8.1. Previously, Magento Open Source threw an exception when this method was called. GitHub-35307
- Removed dependency on the
imagemin-svgo
library.
- The minifying template process now successfully processes consecutive comments when the first comment begins with
//
. GitHub-34880
- Corrected a database query issued by the
BundleGraphQl
module that returned this error:"debugMessage": "Notice: Undefined offset: 16 in vendor/magento/module-bundle-graph-ql/Model/Resolver/Options/Collection.php on line 130"
.GitHub-34991
General fixes
- Magento Open Source now displays an accurate time range when an admin user selects the Last 24 Hours option from the Admin statistics dashboard. Previously, Magento Open Source displayed an incorrect time range. This occurred because the timezone of the database remained unchanged.
- Credit memos can now be generated for both integer and decimal quantities. Previously, only integer quantities were supported.
- The Customer Zip Code input validation rule for type numeric only now works as expected in the Edit Customer Address field (Store > Attribute > Customer Address). Previously, customer address information was saved without zip code validation.
- Globally shared customer accounts now have addresses that are validated against the list of allowed countries for the current website and saved successfully. Previously, these accounts were incorrectly validated against the allowed countries of the website where customer was registered.
- Breadcrumbs from the CMS page hierarchy are no longer displayed when Enable Hierarchy Functionality is disabled. Previously, breadcrumbs were displayed, and when shoppers clicked on them, a 404 page was displayed. GitHub-35513
- Removing a product from all websites via the Admin no longer causes the following error:
SQLSTATE[42000]: Syntax error or access violation
. GitHub-35133
- Customers who exceed the maximum login failed attempts can now log in after password reset. GitHub-34981
- The dynamic rows component now behaves as expected when an admin user adds a new element. Previously, the row component behaved incorrectly when a new simple product was added to a grouped product. GitHub-34850
- Corrected typos and incorrect grammar in the
app/code/Magento/Backend/etc/menu.xsd
file.
- The
app/code/Magento/Authorization/README.md
file has been updated to accurately describe table creation.
- The
recordLogin
method has been updated to set login values on the user model as well as preserving the correct values in thelogdate
andlognum
fields of theadmin_user
table. Previously, login attempts for updated Admin users were not recorded.
- GitHub issue templates have been converted to issue forms for developer experience issues and feature requests.
- The
Is required
customer attribute is now implemented properly per website scope for the Admin customer edit form.
- The Grid Filter Condition Type field of customer and customer address attributes is no longer visible on the attribute edit page when the Use in Filter Options setting is disabled.
- Magento Open Source now displays an informative error message if a merchant fails to enter an optional SKU attribute value when creating a product. Previously, the application threw this exception when the attribute was optional:
Deprecated Functionality: trim(): Passing null to parameter #1 ($string) of type string is deprecated in /var/www/html/mg244/project-community-edition/vendor/magento/module-eav/Model/Entity/AbstractEntity.php on line 932
. GitHub-35810
- The Show my quotes filter on the My Quotes page now works as expected. Previously, filter results included other admin users’s quotes.
GraphQL
Types
that implement multiple Interfaces in GraphQL code can now separated by an&
sign as well as,
in accordance with the GraphQL@doc
specification.
- The
setShippingAddressesOnCart
mutation now supports setting numeric region codes asregion
. Previously, this mutation worked incorrectly for numeric region code values.
- The
products
query now returns only reviews associated with the specified scope. Previously, queries returned reviews from all stores.
- Category permissions are now respected during GraphQL requests.
- The
customer
query now filters on orders with a specifiedfrom
andto
range correctly. GitHub-31537
- The
product
query now returns correct category data in aggregation. Previously,attribute_code.category_uid
returned the value ofcategory_id
instead ofcategory_uid
.
- The
customerOrders
query no longer throws an\"model\" value should be specified
error. GitHub-35852
- The
customer
query now filters orders based on scope. You can now specify whether the query should filter orders by store, website, or globally.
- The
categoryList
query now returns an accurate product count for both anchored and unanchored parent categories. The newis_anchor
attribute has been added to the category collection selected columns list. Previously, requests returned a 0 product count. GitHub-36300
- The
generateCustomerTokenAsAdmin
mutation now works as expected when creating a token to log in to a non-default store in a multi-store deployment. GitHub-35084
- The
createEmptyCart
mutation now throws an exception as expected when an expired token is used. GitHub-26112
- Cart query error messages have been made more informative. GitHub-34546
- Aggregation data in the response of a
products
query now includes correct values for price type attributeattribute_code
andlabel
. GitHub-28878
- The
products
query returns category information as expected when the database prefix has a non-null value. Previously, it returned anInternal server error
. GitHub-36117
- Corrected the return type for the
getCustomerIsGuest
method. GitHub-29529
- The
Magento\CatalogGraphQl\Plugin\DesignLoader
plugin as been refactored.
- Cart reload is now triggered once only as expected when the cart is initialized by GraphQL mutations. Previously, cart loading triggered unnecessary cart revalidation against stock inventory, which consumed significant resources every time the cart was loaded.
- Added the
gift_message
type to theOrderItemInterface
. GitHub-29418
- Product options returned in GraphQL responses now include only the products that are within the catalog to which the user belongs. If the user belongs to a shared catalog, then only products in shared catalogs are returned. If user is a guest or not part of a custom shared catalog, then only products in public catalog are returned.
Google ReCAPTCHA
- A reCAPTCHA error in the
var/log/exception.log
file for the Google V3 reCAPTCHA Admin login has been resolved, and no error messages are logged. Previously, the following error was thrown every few seconds when an admin user configured their Configuration > Security > Google reCAPTCHA Admin Panel settings:main.ERROR: Can not resolve reCAPTCHA parameter. {"exception":"[object] (Magento\Framework\Exception\InputException(code: 0): Can not resolve reCAPTCHA parameter. at /home/xxxxxxx/public_html/vendor/magento/module-re-captcha-ui/Model/CaptchaResponseResolver.php:25)"} []
. GitHub-34975
Image
- Updated the recommendations on the logo size for PDF Invoice slip.
Import/export
- Importing a product with the same numeric URL key as an existing product but without its terminal alphabetical character no longer causes a validation error when the Product URL Suffix is set to empty in the Admin.
- The
bin/magento app:config:import
command now successfully imports the contents of aconfig.php
file when it contains certaincron
expressions. Previously, import failed with this error:Import failed: Notice: Trying to access array offset on value of type null in [..]/vendor/magento/module-config/Model/Config/Backend/Currency/Cron.php on line 66
. GitHub-31428
- Full export now works correctly when AWS S3 is used as remote storage. Previously, export failed due to the uploaded file size.
- Product status is now imported correctly when inventory data columns in the CSV file are missing. Previously, after product import, default source was automatically assigned to the product, its quantity was set to zero, and its status was listed as out of stock when inventory data columns in the CSV file were missing.
- Importing advance pricing values now provides the correct count for new and updated records when the import includes more than 100 records. Previously, the import success message provided the wrong count.
- Exported CSV files now contain correct paths to category names that are saved in multiple languages. A store ID has been added for category collection. Previously, the exported files contained mixed paths with different languages instead of a category path derived from the default store view.
- Updating custom options for a product in a specific store view via import now completes successfully. Previously, an internal server error was thrown if a product-related rows were split into multiple batches.
- The
Fixer.io
import service now works as expected. Currency rates are now imported successfully. GitHub-36010
Index
- Price re-indexing now runs successfully when the catalog contains bundle products are not assigned to any website. Previously, the following error occurred when the product price index ran:
Warning: Undefined array key <bundel product id > in vendor/magento/module-bundle/Model/ResourceModel/Indexer/Price/DisabledProductOptionPriceModifier.php on line 117
. GitHub-35796
Infrastructure
- Issues with the third-party
colinmollenhour/php-redis-session-abstract
module and PHP 8.1 have been resolved. GitHub-35634
Order
- The order prefix that is passed in the installation script is now added correctly to the order ID.
- The order details page now successfully loads when the order contains a product with a long custom text value. Previously, the order details page did not load, and the value in the
sales_order_item.product_options
column was not stored properly if a product contained a long value for a text custom option.
- Storefront order status is now accurate for partially refunded orders. Previously, an order remained in the processing state after shipment when a partial refund was applied. GitHub-35528
- Customer group is now represented accurately as Not Logged in for an order created by a guest user. Previously, customer group was NULL in guest order summaries, which affected confirmation emails and order export. GitHub-35440
- A status of Closed is now assigned to virtual orders as expected after a credit memo has been issued and the customer is refunded. Previously, virtual products were displayed as Complete in the Status drop-down but Closed in the footer of the order comments when the comment was added from the Admin. GitHub-35283
- Guests can now place orders for products with a quantity of less than one, and product quantity is now strictly typed as
float
. Previously, because product quantity was strictly typed asint
, orders for a product quantity less than one failed with this message:Some of the products are disabled
. GitHub-36060
- Shipping refunds are now correctly calculated when the Apply discount on prices configuration option is set to including taxes.
- Invoice, shipment, and credit memo grids are now updated asynchronously after orders are archived.
- Duplicate orders no longer result from concurrent, identical GraphQL requests. Quotes are now locked for up to 10 seconds to prevent duplicate order creation, and the second request fails with these errors:
The cart isn't active
orThe order has already been placed and is currently processing
. This lock value can be configured through di for theMagento\Quote\Model\PlaceOrderMutex
classlockWaitTimeout
parameter. GitHub-36274
- Company attribute values are now displayed as expected in the billing and shipping address sections of the checkout workflow. Previously, company attributes were not displayed properly on the order detail page because stores were not set properly during order creation. Attribute values were stored correctly only when the Show Company property was set to optional for Main Website in multi-store deployments.
- The
customer_address_id
value is now set as expected for a new billing address when My billing and shipping address are the same checkbox is checked. An additional condition has been introduced to identify whether the billing address is same as shipping address before setting the customer address ID for the shipping address.
- Concurrency issues with order placement have been resolved. Previously, if two orders were placed from different browsers at the same, or nearly the same, time, both orders were assigned the same order ID. GitHub-35833
- Placing an auto-invoiced order for a free product when asynchronous indexing is enabled now works as expected. No entries are added to the
sales_order_grid or sales_invoice_grid
table for these orders. Previously, Magento Open Source threw an exception because the application tried to index the grids during order placement instead of relying oncron
. GitHub-36334
Payment methods
- The COD payment method is no longer rendered on the storefront checkout workflow when COD is exempted for the country specified in the shipping and billing addresses. Previously, Admin configuration settings for this feature were not implemented.
- Vault payment information is no longer shown in the Payment section of Admin order creation workflow if the shopper has not saved a token. GitHub-33954
- Custom prices are no longer doubled after a discount is applied by cart price rule. GitHub-35154
- New order pending status is now honored as expected when an order is placed using the Zero Subtotal Checkout payment method.
- Guest email settings are now respected during order creation for a guest shopper with PayPal Express via GraphQL. Previously, the email address set was overridden by the email address set in the PayPal account.
Braintree
- Order IDs are now added to settlement requests for payment transactions.
- Magento Open Source no longer throws the following error when a merchant clicks on Reports > Braintree Settlement:
Error: Undefined constant Braintree\PaymentInstrumentType::ANDROID_PAY_CARD in /var/www/html/vendor/paypal/module-braintree-core/Ui/Component/Report/Listing/Column/PaymentType.php:49
. GitHub-35434
- The
customerPaymentTokens
query no longer returns Braintree tokens when the vault is turned off on the Admin.
- The Pay Later button and banners have been enabled for Italy and Spain.
- Admin users can now create an order or reorder when the Braintree payment method is enabled. Previously, Magento Open Source threw this error:
report.CRITICAL: Error: Call to a member function getMethodInstance() on null in /app/vendor/paypal/module-braintree-core/Block/Form.php:174
.
- Checkout using Braintree payment method now completes successfully when Braintree PayPal is enabled and Enable Card Payments is disabled. Previously, the progress bar never resolved, and Magento Open Source displayed this console error:
adapter.js:66 Uncaught TypeError: Cannot read properties of undefined (reading 'clientToken')at Object.getClientToken (adapter.js:66:66)
. GitHub-35961
- Fraud protection, ACH payment, and local payment method web hooks have been implemented. The fraud protection web hook Is triggered only if a risk decision has been made in Braintree. The ACH web hook is triggered only after an ACH payment has updated to
settled
orsettlement decline
.
- The Tagline and Layout configuration fields have been removed from all PayPal buttons in the Admin Styling section.
- The Braintree Vault payment method option remains selected in the checkout workflow when a shopper updates their billing address. Previously, the payment method was deselected when the shopper deselected the My billing and shipping address are the same button.
- Line items are now passed for PayPal transactions when the Send Line Items configuration setting is enabled from the Admin.
- Validation logic on the ACH payment method Account Number field now supports four to 17 digit text.
- The
customerPaymentTokens
query no longer returns Braintree tokens when the vault is turned off from the Admin.
- Admin users can now create an order or reorder for customers when the Braintree payment method is enabled. Previously, Magento Open Source threw this error:
report.CRITICAL: Error: Call to a member function getMethodInstance() on null in /app/vendor/paypal/module-braintree-core/Block/Form.php:174
- Shoppers can now use the Braintree payment method in storefronts where Enable Card Payments has been disabled. Previously, Magento Open Source threw this JavaScript error:
_adapter.js:66 Uncaught TypeError: Cannot read properties of undefined (reading 'clientToken')at Object.getClientToken (adapter.js:66:66).
Performance
- The price indexer now deletes outdated data as expected after replacing records during partial re-indexing of large catalogs. Previously, the re-indexing process removed outdated records before replacing them, which caused products to occasionally disappear temporarily from the storefront. GitHub-35616
- The performance of the
bin/magento/setup:upgrade
command has been improved. Previously, this command recreated the database triggers, which caused significant downtime during command execution. Additionally, the indexers did not revert back to the scheduled mode and remained in save mode. GitHub-33386
- Updating tier prices by API now executes faster. Previously, updating tier prices generated unnecessary
SELECT
queries, which delayed execution when many customer groups were assigned to a product.
- Loading of pages that include the catalog widget product list has been optimized. Previously, non-global attributes were loaded directly from the database.
Reports
- The Order Total report from and to dates are now displayed properly after selection from the date picker.
- The
ANDROID_PAY_CARD
constant inBraintree/Ui/Component/Report/Listing/Column/PaymentType.php
has replacedGOOGLE_PAY_CARD
. This resolves issues with the Braintree report.
Reviews
- Admin users with restricted access to a specific scope can now delete product reviews as expected.
Roles
- Added a missing ACL for Stores > Configuration > Services > OAuth. Previously, you could not define access to this OAuth configuration setting when setting up role permissions.
Search
- Searches for strings within quotation marks now work as expected when the Minimum Terms to Match configuration setting is enabled. Previously, Magento Open Source threw this error:
{"error":{"root_cause":[{"type":"parsing_exception","reason":"[match_phrase] query does not support [minimum_should_match]' ...
.
- The Signed up point search filter for customer records on the sales order customer grids now works as expected during order creation.
- The quality of search suggestions has been improved for multi-word queries.
- Search results now include out-of-stock option outputs for all available products when Display Out Of Stock Products is enabled GitHub-36055
Shipping
- Shipping rates for FedEx, USPS, and UPS are calculated correctly when the Free Shipping Cart rule is set to match only a subset of items in the cart.
- The Admin shipping page no longer displays the free shipping option when the order total is less than the specified minimum order amount that is eligible for free shipping. GitHub-33697
- Magento Open Source now honors the Admin customer Show Company configuration setting when displaying shipping or customer address. When this setting is disabled, the shipping company is no longer included in the shipping, customer address, or in the database order record. Previously, the information was displayed despite setting disablement. GitHub-33729
- Removed a superfluous save operation on quotes when estimating shipping.
storeId
scope is now applied directly from$request->getStoreId()
to ensure that scope is not lost when a quote is created by an admin user. Previously, problems occasionally occurred with shipping methods when a quote was created from the Admin using third-party modules.
- SEO-friendly URLs are now generated for products whose
url_key
setting is overridden on the store-view level. Previously, category product URLs were not redirected to SEO-friendly URLs.
- Magento Open Source no longer throws a minimum order amount error when a discount is applied to shipping costs.
- Shipping refunds are now calculated correctly when tax is applied after a discount has been applied to shipping.
- All applicable promotions for a requested cart through GraphQL
cart
query are returned together. Promotions include line item discounts, cart rules/discounts, coupons, gift cards, and store credit. GitHub-35545
- Added the
price_excl_tax
andprice_excl_tax
types to the output of thesetShippingMethodsOnCart
mutation. GitHub-31206
- Unique shipping IDs are now passed in GraphQL responses as expected with shipping details for orders shipping to multiple addresses for GraphQL queries.
Tax
- The Display Zero Tax Subtotal configuration setting is now applied as expected for orders in deployments offering multiple shipping methods. Previously, the zero tax field was visible on the cart page during checkout before a shipping method was selected even when this setting was disabled. GitHub-35561
- Magento Open Source can now display grouped products with tax on the storefront category page in deployments running PHP 8.1. Previously, Magento Open Source did not display a list of products and threw this exception:
main.CRITICAL: Exception: Deprecated Functionality: ucfirst(): Passing null to parameter #1 ($string) of type string is deprecated in /var/www/m24/vendor/magento/module-tax/Pricing/Render/Adjustment.php on line 188 in /var/www/m24/vendor/magento/framework/App/ErrorHandler.php:61
. GitHub-35500
- Merchants can no longer move a scheduled update to another update that contains the same rule ID. Previously, schedule updates for cart price rules created duplicate schedules when an update was moved to another update that contained the same rule ID.
- Automatic customer group assignment now works when there is no VAT ID associated with the customer’s address. If the address does not contain a VAT ID, it is treated as belonging to a non-VAT registered customer, and Magento Open Source changes the customer group to a non-VAT group. Previously, when Enable Automatic Assignment to Customer Group was enabled, the customer account was not automatically assigned to the
customerGroup
when the VAT ID was deleted from the customer account.
- The correct dynamic blocks are now shown for staged catalog rules in staging preview mode. Previously, unrelated dynamic blocks were shown.
- Multiple taxes are now rendered correctly in the Tax Summary section of invoices and credit memos when multi-shipping is applied during checkout.
- Discounts are no longer applied when an order subtotal including tax along with Fixed Product Tax amount exceeds the cart rule condition on the cart page. Previously, discounts were applied even when the total exceeded the cart rule condition.
- You can now specify a
vat_id
when using GraphQL to add or update the address of a guest shopper.
Test
- Fixed unit tests errors for different versions of the
ICU
andlibxml
libraries.
- Developers can now instruct the system to execute a data fixture in a specific store view. The new optional parameter
scope
accepts astring
that corresponds to the store fixture alias.
- Added the ability to generate multiple instances of a data fixture using the optional
count
parameter.
- Removed non-native
array_first
function from dev dependencies in the MFTF framework.
Translations and locales
- Inline translation now works correctly with special characters including extended unicode characters in phrases located in SCRIPT tags. Previously, Japanese characters were rendered incorrectly in edited script when using inline translation.
- The
ñ
character in a product name is now converted ton
during URL key generation.
- The output of running
bin/magento i18n:collect-phrases
now includes mail template translations independ
constructs as expected. GitHub-35449
- Japanese characters can now be directly entered into the product page attribute set (combo box). Previously, directly inputting Japanese characters in this combo box resulted in changed or deleted characters when running the Firefox browser on MacOS. The
textInput
HTML attribute, which can better handle Japanese character conversion in all browsers, has replaced theValue
andvalueUpdate
attributes.
- The
getOptions
method now correctly fetchesprice
attribute label values based on store view. Previously, theprice
attribute was translated during GraphQL operations for the incorrect store view.
UI
- Website-specific currency is now used as expected for Special Price, Cost and MSRP columns in the Admin products grid. Previously, the correct currency symbol was not displayed in the Admin catalog product grid when filtering by the store view for a special price.
- The drag and drop functionality of product custom options now works as expected. You can now move a customizable option from one page to another when there are multiple pages available in the customizable option grid.
- Admin dashboard charts now display YTD time intervals from the beginning of the current calendar year to the current date as expected. Previously, date ranges included over 12 months.
- A missing default favicon on the storefront home page has been added. GitHub-35493
- The Admin now successfully displays the latest login date of each admin user. Previously, when an admin user logged in to the Admin for the first time, an empty login date value was displayed on the Admin user grid.
- The preview email template feature (Marketing > Communications > Email Templates) now displays templates correctly. Previously, the preview image was truncated. GitHub-35697
- Added the
new-shipping-address-modal
class to support styling of the new shipping address modal.
- Added informative text beneath the
Search Weight
attribute’sStorefront Properties
input field on Admin Stores > Attributes > Product.
- Email previews now open in a separate tab instead of a popup window, which provides a wider view of the email content. Previously, email content was truncated.
- The filter function for the user role grid (Admin System > Permissions > User roles > Administrators) now works as expected. The array value is now handled separately. Previously, when you tried to enter a query in this grid, Magento Open Source threw this console error, and the page did not load:
Uncaught TypeError: Cannot read properties of null
. GitHub-35993
- Validation for attribute values has been added when creating a customer through the REST API. The creation process now fails when invalid attributes values are provided. Previously, there was no validation for gender, which is not a required field. During customer creation, the value that was passed in for gender was saved in the
customer_entity
table.
- Addresses added during checkout now keep their expected format. Previously, blank lines were ignored.
- Changing the product grid’s columns grid view and selecting new columns for a custom view no longer triggers a Select All Grid Columns action. Previously, the column box disappeared, and products in the grid were selected or deselected. GitHub-36302
- Admin users can now clear the Admin completed tasks log successfully. Previously, the Admin displayed this error:
Something went wrong
. GitHub-36255
- The theme Header setting
Welcome Text
can now contain a single quote character. Previously, Magento Open Source threw this JavaScript error:Uncaught SyntaxError: Unable to process binding "ifnot: function(){return customer().fullname }"
.
URL rewrites
- Changing product visibility to Not Visible Individually in the global All Store Views scope now removes only URL rewrites for store views that have not overridden the visibility attribute. Changing product visibility in this way also generates URL rewrites for all store views including those that have overridden the URL key attribute (but not the visibility setting). Previously, URL-rewrite rules were not applied when visibility settings changed.
Web API framework
- The REST API
DELETE /rest/V1/products/:sku/media/:entryId
now returns an error message if the image is not removed from the product because it is assigned to a role in other store views. Previously, the API returned a successful response even when the image was not removed successfully.
- Merchants can now use the REST API to create a credit memo for an order with zero grand total. Previously, Magento Open Source displayed this error:
The order does not allow a credit memo to be created. The credit memo's total must be positive. We can't create a credit memo for the invoice/order
.
- The Admin product edit page now accurately reflects a product’s assignments after the product’s website assignment has been changed using the REST API. GitHub-36281
- Duplicate option IDs can no longer be included for multi-select attributes during bulk REST API requests to update products. Previously, you could set duplicate option IDs for multi-select attributes when sending a bulk API request to update a product. When that multi-select attribute was configured for inclusion in layered navigation, EAV indexing failed with a
Duplicate entry
error.
- Product names in shopping carts now use the specified store view’s values as expected. Previously, product names in the cart always returned the default store view value in REST API cart responses.
- Cart item custom option values can now be updated using the REST API. GitHub-35768
- Bulk API requests for more than 20
sourceItems
now complete successfully in deployments where Inventory is enabled.
- The Fixer currency service now works as expected with keys generated via ApiLayer, and currency rates are exported correctly. Previously, Magento Open Source threw an error when a merchant tried to import currency rates through the Admin.
- You can now use the REST API
/rest/V1/bulk?searchCriteria[filter_groups]
request to query bulk operations by search criteria. Previously, the following error was returned:report.CRITICAL: Report ID: webapi-624bbb1db96c4; Message: Item (Magento\AsynchronousOperations\Model\Operation) with the same ID "0" already exists.
- Product prices are now updated correctly on both the Admin and storefront catalog search pages using the Manage Base Price API. GitHub-33767
Wish list
- Shoppers can now add products to their wish list after logging in. Previously, due to issues with form key validation after log in, the form key submitted with the add-to-wishlist request was invalidated.
- Products are now added as expected to the wish list from product list and view pages after a guest customer confirms their account from a confirmation email. Previously, products were not added to the wish list after account confirmation.
- The
addProductsToWishlist
query now returns an informative error message when a shopper tries to add an item to a wish list with an invalid value for the productselect
custom option. Previously, server validation for the dropdown custom option value was missing, which lead to an invalid value in the database. As a result, the endpoint returned this internal server error:GraphQL endpoint returns Internal server error with "Call
.
Known issue
Issue: You cannot create a credit memo when free shipping is enabled (Stores > Configuration > Sales > Delivery Methods) and the displayed shipping price includes tax. When you try to create a credit memo, Adobe Commerce throws this exception: "Division by zero".vendor/magento/module-sales/Model/Order/Creditmemo/Total/Tax.phpLine 139
. GitHub-36800
Workaround: A hot fix for this issue is now available. Go to Quality Patches Tool: Search for patches and search for patch ACSD-50814.
Community contributions
We are grateful to the wider Magento Open Source community and would like to acknowledge their contributions to this release.
The Community Engineering team Magento Contributors maintains a list of top contributing individuals and partners by month, quarter, and year. From that Contributors page, you can follow links to their merged PRs on GitHub.
Partner contributions
The following table highlights contributions made by Partners. This table lists the Partner who contributed the pull request, the external pull request number, and the GitHub issue number associated with it (if available).
Individual contributor contributions
The following table identifies contributions from our community members. This table lists the community member who contributed the pull request, the external pull request number, and the GitHub issue number associated with it (if available).
System requirements
Our technology stack is built on PHP and MySQL. For more information, see System Requirements.
Installation and upgrade instructions
You can install Magento Open Source 2.4.6 using Composer.