NXLog Platform changelog

[Added]
- [7191] Added support for installing NXLog Platform on Debian 13.
- [7416] Added link expiry time to NXLog Platform emails containing time-sensitive links (such as signup, invite, and password reset), so recipients know how long they have to complete the action.
- [7813] Added detailed log entries for issuing certificates, recording the purpose, CN, agent ID, and key type, to make certificate-related issues easier to troubleshoot.

[Changed]
- [3979] Removed the "Delete Account" option from the Manage Account section on Customer Portal and on-premises to avoid leaving single-user organizations with no users.
- [7058] Added bot protection to the NXLog Platform signup page to block automated registrations.
- [7444] Updated the third-party components Vault, PostgreSQL, ClickHouse, and NGINX to address critical security vulnerabilities.
- [7675] Premium Trial accounts now have the same log source limit as Premium accounts.

[Fixed]
- [7110] Fixed an issue that would result in the  block being removed from om_googlelogging upon saving a configuration.
- [7220] Fixed duplicate roles being displayed in the Manage Account section for users who belong to multiple organizations.
- [7272] Fixed user sessions expiring despite activity. Sessions are now extended while the user is active and refreshed immediately upon returning after a period of inactivity. If the session expires, users are now logged out cleanly instead of getting stuck.
- [7311] Fixed a case where the ChronicleVersion and ChronicleKey directives were not retained for om_chronicle.
- [7359] Fixed agent management ignoring HTTPS_PROXY and https_proxy environment variables, which prevented configuration templates from being fetched in proxy environments.
- [7494] Fixed inconsistent and missing error messages when users with the role "Agent Management - read only" attempt write actions. All permission errors now display the uniform message "You don't have permission to make changes. Contact your administrator to request access."
- [7552] Fixed the Log types management page failing to load on large databases.
- [7634] Fixed the Agent Management page failing to load after upgrades due to database inconsistencies left by certain agent states.
- [7639] Fixed agent connectivity instability caused by agent management crashing on configuration files containing non-UTF-8 characters, which caused all connected agents to repeatedly transition between Online and Offline.
- [7818] Fixed ClickHouse backups timing out on large databases by increasing the backup timeout from 5 minutes to 12 hours.

[Added]
- [6408] Introduced versioned agent configurations with rollback and comparison features.

[Changed]
- [6096] Removed the parent organization field from the organization forms and detail pages on Customer Portal.
- [6692] The agent list now displays stale data for offline agents, grayed out for clarity.
- [6728] Removed the Basic subscription plan.
- [6816] Redesigned and simplified the Customer Portal onboarding and navigation.
- [6870] Updated links to the Customer Portal to reflect the redesigned interface, and users can now request a plan upgrade quote directly from the NXLog Platform sidebar.

[Fixed]
- [6617] Fixed a false configuration builder warning for InputType directives set to bsm_parser.
- [6667] Fixed an issue where users with User and Role Management role could invite new users with Admin or Superadmin roles.
- [6746] Improved configuration builder performance for configurations containing a large number of im_msvistalog modules.
- [6834] License expiry notifications are suppressed for customers with a future order.
- [6879] NXLog Platform now accepts im_etw input modules with Provider specified as a single directive.
- [6899] Dashboard widgets now display user-friendly error messages instead of raw ClickHouse exceptions.
- [7298] Fixed Minder database consistency check failures during NXLog Platform upgrades.
- [7299] Resolved 504 errors and loading issues on the agent list page caused by database inconsistencies.

[Added]
- [5534] It's now possible to monitor the volume of inbound and outbound data flowing through your agents in the agent statistics or using the data flow visualization.
- [5689] Introduced organization-wide 2FA enforcement so administrators can require all users to activate 2FA the next time they sign in.
- [6361] NXLog Platform installation and upgrade logs are now written to disk and included in debug bundles.

[Changed]
- [6485] Reduced the default idle user session timeout from 2880 minutes to 60 minutes.
- [6562] Improved registration feedback so users trying to sign up with an existing email see a clear message and guidance to sign in or accept an invitation.

[Fixed]
- [6049] Fixed template deletion logic so templates that appear "unassigned" but are stuck on invisible or stale agents can now be deleted correctly.
- [6056] Resolved an issue where the NXLog Platform UI would freeze when adding a configuration to an auto-enrollment rule, preventing the creation of new rules.
- [6238] Fixed a parsing issue where multi-line Define directives using the backslash continuation character could cause a blank statistics page for the agent.
- [6307] Ensured  blocks added to xm_multiline via the "View configuration as text" editor are preserved and correctly pushed to agents.
- [6374] The configuration builder now correctly supports configurations that use pm_filter.
- [6435] Corrected calculation for subscriptions with multiple orders so feature quantities are aggregated consistently across subscription elements.
- [6575] Fixed an issue that caused some agent configurations to fail being uploaded via the Agent Management API with a parsing error.
- [6592] Avoided inconsistent states of the Agent Management database in some edge cases by adding consistency checks.
- [6640] Fixed configuration editor parsing of certain regex patterns.