Buyience NovaCore B2B Quote Engine

1.2.5

• Compliance: Removed remaining admin/dashboard iframe embedding references and standardized external-link card flow.
• Compliance: Confirmed Plugin URI (https://buyience.com/wordpress-plugin) is publicly accessible.
• Security: Ensured all REST routes include permission callbacks with admin capability checks.
• Security: Added/standardized capability checks for all plugin AJAX handlers.
• Security: Standardized remote API calls with explicit timeout and error handling patterns.
• Security: Ensured Buyience password is never stored and token-related options use autoload disabled.
• Documentation: Updated service integration disclosure to align with actual authorization flow.

1.2.4

• Security: Added explicit consent prompt before direct Buyience API authorization.
• Security: Improved origin validation using URL parsing to enforce HTTPS protocol.
• Security: Removed legacy session token from cross-origin postMessage payloads (uses ssoToken instead).
• Security: Removed REST nonce from cross-origin postMessage payloads.
• Security: Removed hardcoded origin URLs from API authorization receiver.
• Code quality: Refactored activation/deactivation hooks into class-based static methods.
• Code quality: Updated Plugin URI to point to documentation page.
• Code quality: Removed debug logging statements from production JavaScript.
• Code quality: Replaced deprecated synchronous AJAX with async pattern.
• Added explicit security disclosure for Buyience API authorization in admin settings.

1.2.3

• Added filterable opt-out for auto page creation on activation (buyncbqe2_allow_auto_page_creation filter).
• Added filter to control auto-created page status (buyncbqe2_auto_page_status filter).
• Documented auto-created “Create Store” page in readme.

1.2.2

• Preserved WooCommerce consumer secret values when saved via Settings API and during product migration.
• Escaped WooCommerce button color when generating inline CSS.
• Removed development-only API authorization check script from the distributed plugin.

1.2.1

• Version alignment with plugin header and code
• Added WooCommerce integration with customizable quote buttons
• Added product sync from WooCommerce to Buyience
• Added scheduled daily product sync with logging
• Added dashboard button shortcode for public pages
• Added navbar integration for dashboard access
• Added Test Mode for switching between production and testing environments
• Added Developer Mode with development server URL support
• Improved API authorization and session management
• Enhanced modal functionality with minimize/fullscreen
• Added support for product SKU and quantity in quote requests
• Improved error handling and user feedback
• Enhanced security with proper nonce verification

1.0.0

• Initial release with basic quote builder integration
• Admin dashboard access
• Public storefront shortcode
• Basic API authorization