Being the major release of our favorite e-commerce platform, Magento 2.4 comes with lots of performance and security updates that can better your site in various ways. Magento 2.4 gives you the ability to access the most cutting-edge innovations within the industry as well as provide the best features for your website.
In this blog, we will go through some of the key Magento 2.4 updates for Magento Commerce that merchants should look into.
- Approval workflows that benefit both B2B sellers and buyers
- The flexibility for users to accept purchasing policies regardless of payment method
- Personalized shipping methods
- Faster requisition list creation
- New GraphQL APIs to improve B2B headless capabilities
- Google reCAPTCHA on the new company request form to reduce the creation of fraudulent accounts
Site-wide Analysis Tool (SWAT)
This is another great feature included in Magento 2.4 updates. In September 2020, Adobe launched automated monthly delivery of Site-Wide Analysis Tool reports to Magento Commerce Cloud users. Currently, The SWAT Portal is fully integrated with the Magento Admin Panel. Therefore, Commerce Cloud users can have real-time access to the Site-Wide Analysis Tool dashboard that shows:
- Site performance
- Site health
- Suggestions to fix issues encountered
While Magento is a safe platform, they’ve still taken the opportunity to boost their protection by closing remote code execution (RCE) and cross-site scripting (XSS) weaknesses. There are about 30 other security enhancements, 226 GitHub issues that have been resolved and more than 100 core code fixes. Plus, Magento has added CAPTCHA to order placement and WEB API endpoints related to the information of payments.
Other security highlights are as follows:
- Enable obligatory Two-Factor Authentication (2FA) for Admin accounts and optional 2FA for Magento accounts, as well as Multi-Factor Authentication for Cloud SSH access
- Provide support for security.txt file
Agile content creation & enhanced storefront experience
The new Media Gallery allows bulk image operations, duplicate detection, and custom metadata. Magento also reduces the cost and time to market for headless storefronts as they continue to build out PWA Studio components and expand GraphQL coverage for key Magento capabilities, including product reviews, gift options, and rewards.
Magento 2.3.5-p2 Security-Only Patch
Magento 2.4 updates also come with a Security-Only Patch, Magento 2.3.5-p2, to fix some security and performance problems with the last version. It is recommended that users download the most updated version of the program to stay ahead of the curve.
Planning for PHP 7.3 end of support
In December, PHP 7.3 will reach its end of support. To ensure compatibility and compliance for the 2.3 release line, Magento will add support for PHP 7.4 to Magento 2.3.7 release in May. This Magento 2.4 update will bring backward-incompatible changes into 2.3.7 that may affect users’ websites and extensions. To avoid interruptions, all merchants are encouraged to adopt Magento’s latest minor release 2.4.x, which supports PHP 7.4, or update to 2.3.7 once it’s available.
To sum up
That’s all about the key security and performance updates in Magento Commerce 2.4. Let us know your point of view on these Magento 2.4 updates in the comments!