Neptune DXP - Open Edition 24.14.2 release notes

April 1, 2026

This patch release resolves issues in authentication flows, API Designer configuration, server scripting, and introduces runtime optimizations to improve stability and reduce database load during high traffic.

Upgrade notes

Starting with Neptune DXP - Open Edition version 24.14.1, a new environment variable SESSION_SECRET may be set. When upgrading from earlier versions (that is to say, versions before 24.14.1), you must explicitly set this environment variable during setup and ensure it is identical across all instances in multi-instance or scaled deployments. If not configured consistently, each instance will generate its own secret, which can lead to authentication failures (for example, users being unable to log in due to mismatched session cookies).

  • Upgraded Node.js binary to Node.js 22.22.2 to stay aligned with current development and security enhancements of Node.js

    Node.js upgrade from version 18 to version 22.22.2 in Neptune DXP - Open Edition

    The following information applies only when upgrading from Neptune DXP - Open Edition versions 24.11.0 or earlier. If you are already on Neptune DXP - Open Edition version 24.12.0, or above (that is to say, a Neptune DXP - Open Edition instance with a Node.js version higher than Node.js 18), these notes do not apply.

    • Remove node_sqlite3.node from the root directory before running the Neptune DXP - Open Edition executable. If not removed, Neptune DXP - Open Edition will not start.

    • Test your server script code in a QA system before upgrading your production system, as this patch might introduce breaking changes.

    • Follow the migration checklist here.

    While you can run any Node.js 22 version, Neptune recommends running the same version as your Neptune DXP - Open Edition instance.

  • Fixed an issue where upgrades from Neptune DXP - Open Edition 23.10.x or earlier to Neptune DXP - Open Edition 24.14.x could fail during database migration due to a schema mismatch in the api_authentication table. This issue previously required upgrading via 24.12.x as a workaround.

    For earlier releases, Neptune recommends upgrading your Neptune DXP - Open Edition sequentially through each major version to maintain compatibility with intermediate changes and avoid migration issues.

Bug fixes

API Designer

  • OpenAPI import now accepts any data type in example fields, resolving validation errors that previously blocked API definitions from being saved.

  • The API Designer now allows configuring endpoints with the Local system role.

Authentication

  • OpenID Connect login popups now use BroadcastChannel instead of WindowProxy polling, resolving intermittent failures caused by cross-origin restrictions that broke popup communication.

  • Neptune DXP - SAP Edition login now clears the busy indicator correctly when an incorrect username or password is entered, fixing a hang caused by a runtime error in the error-handling code.

  • Neptune DXP - SAP Edition launchpad no longer clears necessary SAP cookies on startup, preventing authentication failures with remote SAP servers while still clearing cookies on logout, lock screen, PIN, and passcode events.

Roles/Admin

  • Role loading now handles large admin roles correctly, preventing Node.js worker crashes caused by excessive relation data being loaded during Role/Get.

    The fix limits full entity data loaded per related artifact, avoiding heap exhaustion for roles with many assigned apps and users.

Server scripts

  • Server scripting now correctly detects internal modules and allows local modules when the npm directory is unavailable.

UI5 Theme Generator

  • Color changes in the UI5 Theme Generator now compile successfully in both light and dark modes, resolving a missing theme file reference that previously caused compilation errors and blocked theme generation.

Stability and performance improvements

Runtime stability

  • Unauthenticated requests are now handled more efficiently to prevent database connection pool exhaustion under high traffic. Session creation for unauthenticated users has been reduced, launchpad authentication checks optimized, and repeated customization queries cached, significantly lowering database load during bursts of concurrent access.

User launchpad experience

  • Offline page loads now correctly render the UI for users by improving cache matching to ignore search parameters, resolving persistent layout corruption that occurred when applications were opened without an active internet connection.

  • Progressive Web App (PWA) login now supports Remember me to persist sessions across page refreshes.

  • The Forgot Password functionality in the login process for end-user launchpads now works for both local and external users by removing local-only validation.

More information

Are you looking for more information? To access full details of the technical changelog for Neptune DXP - Open Edition 24.14.2, please contact lloyd.trevarthen@neptune-software.com.

If you experience any problems with this patch, please contact Neptune Support.

Related topics