Releases: corowne/lorekeeper
v2.1.7
This is a hotfix for today's earlier release addressing a security issue in v2. Once again, it is highly recommended to update as soon as possible.
No actions are needed after pulling the changes.
What's Changed
- Add numeric check to parse to prevent dropdowns from being parsed by @Ne-wt in #976
Full Changelog: v2.1.6...v2.1.7
v2.1.6
This is a hotfix release addressing a security issue in v2. It is highly recommended to update as soon as possible.
No actions are needed after pulling the changes.
What's Changed
- hotfix(security|requests): add middleware that parses post fields by @Ne-wt in #974
Full Changelog: v2.1.5...v2.1.6
v2.1.5
This is a hotfix release addressing a standing bug in v2.
No actions are needed after pulling the changes.
What's Changed
- fix(shops): validate quantity against purchase limit by @itinerare in #833
Full Changelog: v.2.1.4...v2.1.5
v2.1.4
v3.0.0-pre1
This is a pre-release version of v3.0.0. There are liable to be bugs. There will be significant conflicts for many sites. Please test, but test with due caution, and be ready to report any bugs that you encounter.
Required steps before updating:
- Ensure that you are using PHP 8.1 or later
- Install Imagemagick and related PHP extension (on Linux systems, usually
imagemagick
andphp-imagick
or similar)
Potential problem areas (manual intervention may be needed):
- Linters for the project's PHP and blade files were introduced during this version's development. This has resulted in many conflicts from formatting changes in addition to those from function changes, so this update is more demanding to merge than most. Please be careful, especially with highly modified sites.
- Composer's lock file is now tracked; if you do not use any additional packages tracked by composer, always use
composer install
to install packages now. If you do, usecomposer update
first to update the lock file and make sure to commit it; this helps keep your local and production environments similar and reduces the risk of odd bugs due to dependency updates. After, if you make no changes to these dependencies, you should just usecomposer install
. CharacterManager
was deemed too large and some of its functions moved toDesignUpdateManager
. If code relating to the moved functions was modified, you will need to relocate those changes to the new file when updating.- LootSelect has been modified to be more extensible; possible options are now gathered within the view itself. This is not liable to require manual intervention as older methods should still work.
- The extension tracker's format has been updated. Rather than reading a single config file, it now reads one file per extension in
config/lorekeeper/ext-tracker
. Existing extension tracker information will need to be migrated to the new format. - The bulk of user profile content has been moved to
resources/views/user/_profile_content.blade.php
; any pre-existing changes will need to be relocated there. - New, more specific staff powers for existing site functions have been added. In your site's admin panel, be sure to add these powers to any ranks which need them.
$dates
on models was deprecated previously and, with the change to Laravel 10, has been fully removed; any models still using that property need to be updated to use casts.- Some arrangements of
orderByRaw()
now error with the update to Laravel 10 and will need to be updated. See #746 for an example.
Additionally, various new functionality has been added. It's recommended to review the following config files:
config/lorekeeper/settings.php
config/lorekeeper/extensions.php
config/lorekeeper/sites.php
...as well as site settings in your site's admin panel.
Commands to run:
composer install #or equivalent
php artisan update-lorekeeper-v3
After resolving merge conflicts and installing packages via Composer, it's also recommended to run composer lint
to keep your code in line with the styling used for the core project.
If you encounter a bug:
Please report it either as an Issue here (preferred), or via the support Discord! Release branches like this exist to work out bugs before a version is fully released.
Please also ensure that you are using the most up-to-date version of release/v3.0.0
, especially before reporting any bugs.
Once again, this is a pre-release version. There are liable to be bugs. Test at your own discretion and be ready to report any bugs that you encounter.
The following is a full log of changes:
- Show deleted comments and children of deleted comments by @Wormbie in #105
- Bump url-parse from 1.4.4 to 1.5.1 by @dependabot in #106
- Bump lodash from 4.17.19 to 4.17.21 by @dependabot in #107
- Bump browserslist from 4.4.2 to 4.16.6 by @dependabot in #116
- Bump dns-packet from 1.3.1 to 1.3.4 by @dependabot in #117
- Adding Discord Authentication by @Ne-wt in #118
- fixing regex for discord by @Ne-wt in #119
- fix undefined offset: 0 error by @Ne-wt in #121
- multiple file upload PR by @Ne-wt in #129
- Fix bug that occurs on items page in cases where the artist_url column is null by @Ne-wt in #131
- fix: syntax error by @itinerare in #138
- Bump tar from 4.4.8 to 4.4.15 by @dependabot in #141
- Bump path-parse from 1.0.6 to 1.0.7 by @dependabot in #142
- Feature: Scroll to top by @preimpression in #143
- Bump tar from 4.4.8 to 4.4.19 by @dependabot in #147
- Bump sass-loader from 7.1.0 to 12.1.0 by @dependabot in #154
- Update laravel/framework requirement from 8.0 to 8.58.0 by @dependabot in #156
- Bump jquery from 3.5.0 to 3.6.0 by @dependabot in #152
- Update spatie/laravel-honeypot requirement from ^2.3.0 to ^3.0.1 by @dependabot in #151
- Bump popper.js from 1.14.7 to 1.16.1 by @dependabot in #158
- Bump color-string from 1.5.3 to 1.6.0 by @dependabot in #148
- Bump vue from 2.6.7 to 2.6.14 by @dependabot in #153
- Bump url-parse from 1.4.4 to 1.5.3 by @dependabot in #150
- Bump laravel-mix from 4.0.14 to 5.0.9 by @dependabot in #157
- Bump tar from 4.4.8 to 4.4.19 by @dependabot in #149
- feat: Extension/admin logs (also merging of latest release/release-2.0.0) by @Ne-wt in #135
- Bump sass from 1.17.2 to 1.39.0 by @dependabot in #164
- feat(raffles): improve ticket entry form by @itinerare in #159
- Bump axios from 0.21.1 to 0.21.2 by @dependabot in #165
- Bump resolve-url-loader from 2.3.2 to 4.0.0 by @dependabot in #161
- Bump cross-env from 5.2.0 to 7.0.3 by @dependabot in #160
- Bump bootstrap from 4.3.1 to 4.6.0 by @dependabot in #162
- fix variable and add log to rejecting submission by @Ne-wt in #167
- Bump axios from 0.21.2 to 0.21.4 by @dependabot in #172
- Bump sass from 1.39.0 to 1.39.2 by @dependabot in #171
- Update laravel/framework requirement from 8.58.0 to 8.60.0 by @dependabot in #170
- Merge recaptcha (v3) by @itinerare in #169
- Bump sass from 1.39.2 to 1.41.1 by @dependabot in #177
- Update laravel/framework requirement from 8.60.0 to 8.61.0 by @dependabot in #176
- Bump sass from 1.41.1 to 1.42.1 by @dependabot in #180
- Bump axios from 0.21.4 to 0.22.0 by @dependabot in #190
- Update laravel/framework requirement from 8.61.0 to 8.62.0 by @dependabot in #189
- refactor(characters): move design update functions to own service by @itinerare in #188
- refactor: squash migrations by @itinerare in #186
- feat(raffles): optional ticket cap per individual by @itinerare in #184
- Update laravel/framework requirement from 8.62.0 to 8.63.0 by @dependabot in #195
- add queries/sorting to Sales by @JuniJwi in #193
- feat: implement news/sales rss feeds by @itinerare in #166
- refactor: move loot_select info fetching to views by @itinerare in #192
- Update laravel/framework requirement from 8.63.0 to 8.64.0 by @dependabot in #201
- Bump sass-loader from 12.1.0 to 12.2.0 by @dependabot in #200
- Bump axios from 0.22.0 to 0.23.0 by @dependabot in #198
- Bump sass from 1.42.1 to 1.43.2 by @dependabot in #199
- Minor fixes and updates by @corowne in #197
- chore(deps-dev): bump sass from 1.43.2 to 1.43.3 by @dependabot in #204
- chore(deps): update laravel/framework requirement from 8.64.0 to 8.67.0 by @dependabot in #203
- chore(deps-dev): bump bootstrap from 4.6.0 to 4.6.1 by @dependabot in #209
- chore(deps): update laravel/framework requirement from 8.67.0 to 8.68.1 by @dependabot in #208
- chore(deps-dev): bump sass from 1....
v2.1.3
This is a hotfix release addressing a small collection of standing bugs in v2.
After pulling the changes, run php artisan update-comment-types
.
What's Changed
- fix(characters): use only public_path() in CharacterManager by @SpeedyD in #703
- fix(items): disable box button on submit by @Ne-wt in #710
- fix(sales): allow setting minimum for ota and xta by @SpeedyD in #702
- fix(comments): more robust handling for non user-user comments by @itinerare in #708
Full Changelog: v2.1.2...v2.1.3
v2.1.2
This is a hotfix for an issue affecting reports and comments. No action is necessary beyond pulling the changes.
What's Changed
- hotfix: Fixing error with lowercase "auth" by @preimpression in #523
Full Changelog: v2.1.1...v2.1.2
v2.1.1
This is a maintenance release updating the project to both support and require PHP 8.1.
- Update PHP on your web host
- Run
composer update
You might also need to:
- Update your bash profile
- Ensure that your site's cron job is using the correct version of PHP
What's Changed
- chore(deps): bump loader-utils from 1.2.3 to 1.4.2 by @dependabot in #444
- chore(deps-dev): bump axios from 0.21.1 to 0.21.2 by @dependabot in #455
- chore(deps): bump minimatch from 3.0.4 to 3.1.2 by @dependabot in #454
- chore(deps): bump express from 4.16.4 to 4.18.2 by @dependabot in #461
- chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2 by @dependabot in #456
- chore(deps): bump json5 from 1.0.1 to 1.0.2 by @dependabot in #485
- PHP 8.1 upgrade by @itinerare in #535
Full Changelog: v2.1.0...v2.1.1
v2.1.0
This is an interim release primarily for the purposes of backporting Toyhou.se authentication from develop
. Note that it is enabled and allowed for primary aliases by default, but must still be set up! For instructions, see here.
What's Changed
- Add deviantART's noai and noimageai directives by @corowne in #445
- Prioritised merge of TH OAuth2 compatibility from develop by @corowne in #443
Full Changelog: v2.0.0...v2.1.0
v2.0.0
The following is a full log of changes. For a summary, as well as update instructions, see the update notes here.
What's Changed
- Add open/closed toggle, delayed comments, and bumping to sales posts by @itinerare in #35
- Merge Reports into modified main by @Ne-wt in #36
- modified-main - Extension Additions by @itinerare in #39
- Merge modified-main into core by @itinerare in #42
- Minor bugfixes by @itinerare in #43
- Feature/Toggle prompt submission visibility by @itinerare in #45
- Automate image process to make images and thumbnails square by @SpeedyD in #48
- Fix character inventory edits leading to a 404 by @DeeP-ci in #50
- Extension Tracker by @preimpression in #52
- User Transfer reasons by @snupsplus in #51
- Misc small bugfixes by @itinerare in #53
- Feature/auth rework by @itinerare in #44
- Misc tweaks and fixes by @itinerare in #54
- Feature/galleries by @itinerare in #55
- Fix redirection to 'home' when visiting '/register' while logged in by @preimpression in #59
- Update Laravel version to 8.0 by @corowne in #61
- Misc Bugfixes by @itinerare in #60
- Bump ini from 1.3.5 to 1.3.8 by @dependabot in #62
- Misc bugfixes by @itinerare in #63
- Add 'user_reason' to MyoController for postTransfer. by @preimpression in #64
- Bump axios from 0.19.0 to 0.21.1 by @dependabot in #65
- Add an "is released" toggle to item editing (w/ extra fields enabled) by @itinerare in #66
- Feature/item search by @itinerare in #67
- Develop Issues fix PR by @Ne-wt in #68
- Hotfix to prevent 500 error when trying to view myo slots as non-admin by @Ne-wt in #69
- Adding service to give-back any user items used in a draft by @Ne-wt in #70
- Character Items Bugfix by @preimpression in #73
- Adding search by url / alias and jpg to mimes by @Ne-wt in #75
- Bug cleanup by @itinerare in #74
- add visible indicator to sublist by @Ne-wt in #78
- Toggleable - Group Traits by Category on Character Profiles by @preimpression in #81
- Adding missing 404 to Permalinks by @preimpression in #82
- Changed all name variables to have a maximum of 100 characters, as opposed to 25. by @SpeedyD in #84
- Update currency grants to handle users in the same way as item grants… by @DeeP-ci in #85
- Misc QoL features and tweaks by @itinerare in #86
- Bump dot-prop from 4.2.0 to 4.2.1 by @dependabot in #77
- Bump elliptic from 6.5.3 to 6.5.4 by @dependabot in #83
- Character Reward Expansion by @preimpression in #87
- add new site settings with one line instead of multiple. by @DeeP-ci in #89
- Fixing +CURRENCY count when it should be -CURRENCY by @preimpression in #90
- Bump ssri from 6.0.1 to 6.0.2 by @dependabot in #92
- Add User Birthdays by @Ne-wt in #97
- Misc Fixes/Tweaks by @itinerare in #94
- Add item categories, rarity conditions to loot table options by @itinerare in #88
- Add the ability to attach characters to sales posts by @itinerare in #95
- Bugfix for site being angry there's no rarity by @preimpression in #99
- Edits to new Birthday functionality + User settings forms by @preimpression in #98
- Fix processCharacters bug when creating sales by @itinerare in #101
- Fix Setup-Amin-User command by @Ne-wt in #102
- Feature/expand account authentication by @corowne in #100
- Opt out of FLoC by @itinerare in #103
- Fix displaying uncategorized traits on characters attached to sales posts by @itinerare in #109
- Fix creating/updating sales without characters by @itinerare in #110
- Clean up commands going toward v2 by @itinerare in #111
- doctrine/dbal fix and birthday fixes by @Ne-wt in #112
- Re-reduce dA request scope to only username by @itinerare in #115
- Fix very occasional bug searching items sitewide by @itinerare in #120
- Fix error viewing design update draft addons by @itinerare in #122
- Fix reported bugs by @itinerare in #125
- Fix bug with galleries being (incorrectly) visible by @itinerare in #127
- Small fixes/tweaks by @itinerare in #128
- Final -> Last by @preimpression in #132
- Add contribution info by @itinerare in #130
- Make character sale value use currency symbol from config file by @itinerare in #133
- fix: will now log to the correct user by @preimpression in #134
- Fix to gallery submissions + "View Page" button addition by @preimpression in #136
- fix: incorrect permission to edit users by @Ne-wt in #139
- fix: art bonuses no longer error when 'multiple' is set to false by @Draginraptor in #137
- Remove/untrack composer.phar by @itinerare in #140
- chore: setup dependabot config by @itinerare in #146
- fix(sales): 'is open' for chars even when only one by @itinerare in #145
- docs: update readme for 2.0.0 by @itinerare in #144
- Fix for errored inventory addon forms not refilling the old data by @Draginraptor in #126
- fix: adds alt tags to images by @preimpression in #168
- fix: 'invalid quantity' when attaching items by @itinerare in #173
- fix: inventory filters, quantity error by @itinerare in #175
- fix(characters): issue with .jpg files by @itinerare in #178
- Add flex-wrap to pagination to keep it from breaking mobile view. by @JuniJwi in #183
- Small fixes by @itinerare in #187
- More misc fixes/tweaks by @itinerare in #191
- Fix for inventory select visible button by @Draginraptor in #194
Full Changelog: v1.7.2...v2.0.0