# 0.3.6 Not yet released. ### 🚀 New features - [Java applications](/docs/articles/user-experience/how-to-setup-springboot-java-applicaiton-on-openpanel) can now be run from the 'OpenPanel > AutoInstaller' page. - Administrators can now use self-hosted API's with custom domains for [temporary preview links](/docs/articles/dev-experience/selfhosted-temporary-links-api/) and [website screenshots](/docs/articles/dev-experience/selfhosted-screenshots-api/) on 'OpenPanel > SiteManager'. ### ️🚨 Security fixes ### 🐛 Bug fixes - Fixed bug with domain validation on 'OpenPanel > Domains > Add New' form. - [files-fix_permissions should set 5000:5000 for /home/USERNAME/mail/* #187](https://github.com/stefanpejcic/OpenPanel/issues/187) - [opencli admin notification not working #263](https://github.com/stefanpejcic/OpenPanel/issues/263) - [Resizing EXT4 storage file for user on Overlay2 docker storage driver #275](https://github.com/stefanpejcic/OpenPanel/issues/275) - [ERROR: Cannot uninstall typing_extensions The package was installed by debian](https://community.openpanel.org/d/113-error-cannot-uninstall-typing-extensions-the-package-was-installed-by-debian) - [user files missing from their /home directory in container](https://community.openpanel.org/d/116-solved-user-files-missing-from-their-home-directory-in-container) - [Could not check if docker-default AppArmor profile was loaded](https://community.openpanel.org/d/115-solved-could-not-check-if-docker-default-apparmor-profile-was-loaded) ### 💅 Polish - Addded [weakpass](https://dev.openpanel.com/cli/config.html#weakpass) setting to enable or disable checking passwords against [weakpass.com dictionaries](https://weakpass.com/wordlists). - Adding domain is now logged in the user activity log. - Warnign messages when adding domain if syntax errors are detected in templates. - [Compressed file extraction progress bar #270](https://github.com/stefanpejcic/OpenPanel/issues/270) - 'OpenAdmin > Settings > OpenPanel' now allows Administrators to set: login_ratelimit, login_blocklimit, session_duration and session_lifetime. - 'OpenAdmin > Settings > OpenAdmin' now allows Administrators to set: impersonate, login_ratelimit, login_blocklimit, basic_auth, basic_auth_username and basic_auth_password. - Any modification on 'OpenPanel > Emails > Accounts' will now refresh cached emails data for the user. - 'OpenPanel > AutoInstaller > PM2' will now validate file extensions before checking if file exists. - WordPress install, detach and uninstall are now also recorded as actions on 'OpenPanel > Account > Activity'. - UID`1000` and GID`1000` will now be used for mail files of users, so that ftp sub-accounts can access them if needed.