- Normalize paths to always have a leading slash when comparing against the CSRF blacklist (#775) (possible breaking change for some environments - please see updated docs at https://learn.userfrosting.com/routes-and-controllers/client-input/csrf-guard#blacklisting-routes)
- Set
display_errorstotruefor development configs (#762), move php settings into a commonphpsubkey in config files ShutdownHandlerno longer responsible for logging fatal errors- Set up PHP config values in
Core.phpinstead of inside theconfigservice definition. - Reimplement
Builder::excludeto maintain a list of excluded columns, and then automatically update list of columns to fetch inget() - Deprecate
Model::queryBuilderandModel::export - Update nginx config file from spdy to http2
- Add Pagespeed block (commented out) to nginx config file
- Make fpm-php7.0 the default CGI nginx config file
- Add the
withTernarymethod to theUniquetrait to allow loading nested child models on ternary relationships. - Add skip, take, limit, offset and deprecate withLimit and withOffset in
Uniquetrait - Support for
withPivotonUniquerelationships (in tertiary models) - Factor out common code from
PermissionUserSprunjeintoUserSprunje - Rework internals of
Sprunjeto make it more testable. Filters, sorts, and paginations are now applied to a clone of the original queriable object. DeprecatedgetResultsand addedgetArrayandgetModels. Result keys can now be customized. - Table of user permissions on user info page
- Simplify by combining
permission-users.html.twiginto options onusers.html.twig - Add Chinese translations
- Deprecate User::exists() (#771)
- Add 'password' to hidden fields for User model
- Replace hardcoded
Builderwith classMapper reference
- Fix missing permission check when
uri_account_settingsis not in role (#768) - Add
getLastRowmethod andtransformDropdownSelectionoption toufCollection - Fix missing slug for permissions in "manage permissions" dropdown
- Add "manage permissions" to role page menu
- Factor out custom relation methods into
HasRelationshipstrait onModel - Add
withoutGlobalScopestoSyncable::sync - Add option to use
forceCreateinSyncable::sync - Add option to use custom key in
Syncable::sync - Complete redesign of
BelongsToManyThrough- possible BC for a few people, as you now need to load the "via" models explicitly usingwithVia. This fixes a lot of issues withBelongsToManyThrough. - Deprecate
BelongsToManyConstrained - Add
MorphToManyUnique - Integration tests now use an in-memory sqlite database (
test_integration) by default
- Spanish language support (#770)
- Show current filter in select-menu filters (#744)
- Cursor styling for ufCopy
- Transition overlay for ufTables
- Minor fix to ufTable.cleanHash
- Correctly target pager container in Tablesorter options
- Add table of users to role pages
- Fix issue with links in permission users table
- Permissions rows get duplicated when upgrading from 4.0 to 4.1 (fix #759)
- Fix migrate:rollback not running down the migration in the correct order
- Updated type in
composer.jsonfor default sprinkles - Added missing french translations & more default validation messages
- Bump Fortress version (fix #766)
- Support SQLite in Bakery setup
- Fix for PostgreSQL charset in Bakery (#745)
- Add Italian translations
- Add
data-priorityattributes to built-in tables (#752) - Use
this.slugto avoid conflict with helper names (#748) - Add block
table_searchtotable-paginated.html.twig
- Remove call to setFilters that was causing problems with pagination (#688)
- Update German translations and factor out some hardcoded text (#725)
- Update French translations
- Update Arabic translations (#733, #734, #735)
- Fixed missing template in ExceptionHandler and
notFoundHandler - Migration rollback will throw a warning if a class is not found instead of aborting
- Temporary fix for trouble with
npm installin Windows (#742)
- Switch from pagination "plugin" to "widget" for Tablesorter. Allows us to update to the latest version of TS (fix #688, #715)
- Implement
WhoopsRendererfor pretty debug pages. See (#674) - Refactor error handling. Move responsibility for displayErrorDetails to handlers, and factor our ErrorRenderers. Addresses (#702)
- Move
composer.jsonto root directory to allow installing UF via composer create-project - Move
sprinkles.jsonto app directory to make it easier to find - Eliminate the
roottheme Sprinkle. Custom styling for the root user is now handled with some Twig logic in theadminSprinkle (#726) - Rename bundle.config.json -> asset-bundles.json (#726)
- Reorganize assets (#726)
- Heavily reorganize templates (#726)
- Move request schema from
schema/toschema/requests/(#726) - Factor out "system" classes from core Sprinkle
- Refactor overall application lifecycle; move main lifecycle into UserFrosting\System\UserFrosting
- SprinkleManager now better focused on a single responsibility
- Sprinkle initializer classes now use events to hook into application lifecycle
- Support for allowing Sprinkles to register middleware (#617)
- Automatically load Sprinkle service providers (see #636)
- Get rid of "implicit loading" for core Sprinkle - core is now just an ordinary Sprinkle like any other.
- The
sprinkles://stream now represents a virtual filesystem for the root directory of each loaded sprinkle, rather than thesprinkles/directory itself. - Separate out
localePathBuilderfrom thetranslatorservice. Makes it easier to add/remove paths before actually loading the translations. - Only present locale options with non-null names.
- Rebased ufTable and ufModal with new jQuery plugin template. (part of #646)
- Removed the search bar from the Dashboard layout
- Added Tablesorter pagination translation
- New Translator Facade
- New CLI tool (Bakery).
- New migration system based on bakery CLI
- Listable sprunjing
- Refactor groups and user routes (Fix #721)
- Added the
configalert stream to save ufAlerts to the cache instead of sessions. Fix #633. The oldsessionis still the default alertStream in 4.1. - Added support for the Redis cache driver and refactored the cache config values.
- Added user and session cache.
- Common log file for db queries, auth checks, smtp, errors, and debug messages (#709).
- Use YAML as default format for request schema (#690)
See [http://learn.userfrosting.com/upgrading/40-to-41](Upgrading 4.0.x to 4.1.x documentation) for complete list of changes and breaking changes.
- Fixes to nginx config file, and add location block for LE acme challenge
- Fix JS errors when
#alerts-pageis not present on a page - Fix hardcoded User class in AdminController (#753)
- Update message PASSWORD.FORGET.REQUEST_SENT (#749)
- Set module dependency versions to ~4.0.0 instead of ^4.0.0 (since 4.1.x will introduce breaking changes)
- Fix bug in ufCollection
- Fix issue where 'Change User Password' popup form couldn't handle specifying a new password.
- Display message when there are no results in
ufTable
- Implement reflow and column selector for tables (#670)
- Overhauled ufAlerts, improving efficiency, reliability, and fixed a discovered edge case that caused
renderto never complete. (part of #646) - ufAlerts will only auto-scroll when outside the viewport (even if only partially). Can be overriden with
scrollWhenVisible: true. (#714) - Rebased ufCollection, and ufForm with new jQuery plugin template. (part of #646)
- Misc UI update
- Added Twig blocks
- Fix issue with duplicate query logs when using multiple databases
- Remove pivot columns from pagination subquery in BelongsToManyThrough, to deal with MySQL's
only_full_group_bywarning
- Explicit column names in new user permissions relations
- Permission info page (#638)
- New custom relationships 'BelongsToManyThrough', 'BelongsToManyUnique', 'BelongsToManyConstrained', 'HasManySyncable', 'MorphManySyncable'
- Change implementation of User::permissions() to use BelongsToManyThrough
- New ufForm options: setting reqParams, encType, submittingText
- ufCollection now triggers a check for virgin rows when any control is touched
- Fix issue with Sprunje when generating CSV with empty child collections (#697)
- Authorizer now correctly interprets string literals (#482)
- Authorizer now correctly interprets numeric types in access conditions. Caution: this causes the
equals()callback to return true in situations where it would have (incorrectly) returned false before. For example,equals(self.group_id,2)would have returned false for users in group 2, because it was interpreting2as a string and then performing its strict comparison. It now (correctly) returns true. Notice thatequals(self.group_id,'2'), on the other hand, will now returnfalse. - User object caches permissions loaded from DB to reduce number of queries (#612)
- Type declarations in authorization classes (#652)
- Fix issue with Twig debug (#356)
- Show disabled/unactivated badges on user info page
- Add IIS config file (#371)
- New ufCollection now supports free text input mode
- New design and layout for user, group, and role summary boxes (also fixes #703)
- Registration page returns 404 when registration disabled (#705)
- Add Docker configuration files
- Begin work on Bakery, the command-line debug tool
- Lock version of tablesorter due to breaking changes
- Fix bugs in GroupController and RoleController
- Fix bug in URLs for redirect-on-login
- Added UTF-8 as default mail charset
- Prevent mixed content on demo pages
- Fixed some missing translations
- Fixed error in ufAlerts push method
- Fixed usage of hard coded path
- Fixed default OS option in migration script
- Prevents empty locale's from displaying as empty options in profile form
- Unignore .gitkeeps of directories that need to exist
- Fix ajax.delay in ufCollection
- Fix missing translations
- Minor fix in French translation
- Fix alert margin when displayed inside a modal
- Update to RememberMe 2.0 (userfrosting#635)
- Remove database checks, as they are apparently no longer needed (userfrosting#655)
- Bump dependencies
- Separate out the registration and sign-in pages (userfrosting#657) BC
- Slightly change behavior of form validation icons
- Sprunje input validation (userfrosting#640)
- Sprunje sort/filter fields now must be explicitly listed in a whitelist (userfrosting#640) BC
- Errors from tablesorter now get displayed
- Support for OR expressions using
||in Sprunje filters (userfrosting#647)
- Fix #663
- Adding more Twig
blocks - ufAlerts now scroll to alert location, if and only if alerts are output.
- Updated Dutch locale
- Minor update in French locale
- Added comments in
.env.example
- Move suggestion button outta-da-way
- Add email to registration success message
- Separate out some page content into smaller blocks
- Factor out select2 options in ufCollection, into the 'dropdown' key so that any select2 option can be set
- Oops,
existsneeds to be static
- Autogenerate and suggestion features for usernames during account registration (partially addresses userfrosting#569)
- Restrict username characters to a-z0-9.-_
- Require first name by default
- Throttle registration attempts
- Implement User::exists method
- keyupDelay option in ufForm
- More logging of group and role CRUD
- Implement extra:// stream
- Lots of missing translation keys
- Separate "profile settings" from "account settings"
- Fix throttling issue #656
- Other miscellaneous fixes
- Allow nulling out of throttle rules (to disable)
- Disable Google Analytics by default (but enabled in production)
- Other miscellaneous fixes
- UfAlert style customization (See #634)
- Translation function can now display raw placeholder using the
|rawfilter in the placeholder name. Other Twig filters are also avaiable. Requires latest version of the i18n component (See #621). - Fix the "Root account" message breaking the UI on smaller screens (See #641) - Thanks @brunomnsilva !
- Added
DB_DRIVERandDB_PORTas environment variables to allow better out-of-box database configuration support, and to provide additional protection by obscurity. - Normalised default values to
nullfor environment variables in configuration. - Added
getCallbackspublic method toAuthorizationManagerto enable drop-in extensions toAuthorizationManager. - Fixed broken links in generated asset bundles.
- Introduced
cleangulp task to act as a shotcut for removing all frontend vendor packages, all generated asset bundles, and copied assets. Accessible vianpm run uf-clean. - Merged
copytask withbundle-build. - Fixed missing translations
- Added Thai translation - Thanks @popiazaza !
- Add config file for nginx (userfrosting#373)
- Add Portuguese translations (thanks to @brunomnsilva!)
- Add Arabic (MSA) translations (thanks to @abdullah.seba!)
- Add Dispatcher to db service to allow registering model events.
- Specify foreign keys explicitly in all relationships.
- Use classMapper for admin Sprunjes.
- Specify foreign key explicitly in
User::activities()relationship. - Database checks in installer and Authenticator now respect custom database ports. (See #628)
- Fixed edge case where
5%Cwould appear in generated urls. - Improved stability and added php version check in
migrations/intall.php - Update ClassMapper to throw exception when class is not found
- Fix minor errors in French locale
- Fix translation error on the Legal page
- Bump min version of PHP to 5.6
- Added German translation (See #625) - Thanks @X-Anonymous-Y
- Improved Gulp Build task
- Remove site-dev from example sprinkles.json
- Fix some styling issues on the Dashboard and footer
- Display group link in menu for group admins
- Keep dashboard sidebar collapsed across page load (See #616)
- Fixed missing translation keys inside Handlebar tables (See #624)
- Admin panel link style in main dropdown menu (See #627)
- Implement AuthGuard middleware
- Handling of redirect after login (See #627#issuecomment-275607492)
- Directly check database in installer using PDO
- Refactor installer and how version are displayed in system info panel. Added notice when a migration is available for a sprinkle
- Etc.
- Initial release of UserFrosting V4