1
0
mirror of https://github.com/LaCasemate/fab-manager.git synced 2024-11-29 10:24:20 +01:00
fab-manager/CHANGELOG.md

2457 lines
134 KiB
Markdown
Raw Normal View History

2020-03-02 08:59:43 +01:00
# Changelog Fab-manager
2023-02-03 12:50:18 +01:00
## next deploy
- Fix a bug: for project categories, if there is no category : do not show categories panel in show view, do not show categories input field in edit view
- Fix a bug: unable to update status to paid for latest payment schedule item
2023-08-30 18:49:26 +02:00
- Fix a bug: unable to generate statistic
- Feature: add a filter in members list (admin) to show only "not validated" members
2023-09-01 12:43:36 +02:00
- Concerning statistics:
- removes age and type column from all statistics tabs (only in web, not in xlsx export file)
- index:
- renames user column header for projects tab and projects xlsx export
- adds group name of user for every tab except projects tab
- adds status and project users names for projects tab
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] `rails fablab:es:build_stats`
2023-08-30 18:49:26 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2014,1]`
2023-08-28 19:07:27 +02:00
## v6.0.13 2023 August 28
- Fix a bug: unable to cancel a payment schedule
2023-07-21 11:44:33 +02:00
- adds reservation context feature (for machine, training, space)
- adds coupon in statistic export (for subscription, machine, training, space, event, order)
2023-07-21 13:48:50 +02:00
- [TODO DEPLOY] `rails db:seed`
2023-07-21 11:44:33 +02:00
- [TODO DEPLOY] `rails fablab:es:build_stats`
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2014,1]`
2023-08-14 16:10:03 +02:00
## v6.0.12 2023 August 14
- Fix a bug: event reserved places compute error
2023-07-26 16:10:05 +02:00
- Fix a bug: event canceled places error
- Fix a bug: 403 error when manager edit an event
- Fix a bug: unable to show projects next page button
- [TODO DEPLOY] `rails fablab:setup:build_places_cache`
2023-07-21 17:19:45 +02:00
## v6.0.11 2023 July 21
2023-07-19 08:53:59 +02:00
- Fix a bug: incorrect date range in statistics
- Fix a bug: hide project categories filter if there is no project categories
- Improvement : dialog confirm to remove a project category
2023-07-19 08:53:59 +02:00
2023-07-13 15:18:03 +02:00
## v6.0.10 2023 July 13
- Fix a bug: unable to confirm payment of store for admin
- Fix a bug: unable to update payment schedule item
- Fix a bug: event reserved places compute error
- [TODO DEPLOY] `rails fablab:setup:build_places_cache`
2023-07-07 16:39:22 +02:00
## v6.0.9 2023 July 07
- Fix a bug: unable to show project step image in markdown file
- Fix a bug: unable to update Store Order sub type in statistics
- Fix a bug: unable to create plan with plan limitation
- Ability to show all availabilities in calender for admin
- Improved performance when marking all notifications as read
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2014,1]`
2023-07-03 18:40:29 +02:00
## v6.0.8 2023 July 03
2023-07-03 18:18:00 +02:00
- Improved projects list filter
- Fix a bug: unable to refresh machine/space/training calender after pay an reservation
2023-07-03 17:43:27 +02:00
- Fix a bug: Accouning Line in duplicate
2023-07-03 17:45:59 +02:00
- Fix a bug: displays "my orders" link only if store module is active
2023-07-03 17:43:27 +02:00
- [TODO DEPLOY] `rails fablab:setup:build_accounting_lines`
2023-06-20 15:27:23 +02:00
## v6.0.7 2023 June 20
- Fix a bug: OpenAPI accounting gateway_object_id missing error
- Fix a bug: unable to modify the price of prepaid pack
2023-06-15 19:08:17 +02:00
- Fix a bug: notification type missing
- Fix critical bug: Incorrect amount calculation when paying monthly subcription with a wallet for PayZen
2023-05-04 14:26:15 +02:00
## v6.0.6 2023 May 4
- Fix a bug: invalid duration for machine/spaces reservations in statistics, when using slots of not 1 hour
- [TODO DEPLOY] `rails fablab:es:build_stats` THEN `rails fablab:maintenance:regenerate_statistics[2014,1]`
2023-05-02 18:15:49 +02:00
## v6.0.5 2023 May 2
- Fix a bug: unable to show calendar for Firefox and Safari
- Improved error message for event reservation
2023-04-25 16:00:18 +02:00
## v6.0.4 2023 April 25
2023-04-17 11:29:36 +02:00
- Fix a bug: notification is broken when delete a project
2023-04-24 19:17:07 +02:00
- Fix a bug: broken notifications email
2023-04-25 15:11:46 +02:00
- Fix a bug: unable to show calendar
2023-04-25 15:29:22 +02:00
- Update translations from Crowdin
- [TODO DEPLOY] `rails fablab:maintenance:clean_abuse_notifications`
2023-04-17 11:29:36 +02:00
## v6.0.3 2023 April 12
- Fix a bug: unable to install Fab-manager by setup.sh
- Update translations from Crowdin
2023-04-12 15:18:20 +02:00
- Fix a security issue: updated Ruby to 3.2.2 to fix [CVE-2023-28755](https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/)
- Fix a security issue: updated Ruby to 3.2.2 to fix [CVE-2023-28756](https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/)
2023-04-05 11:35:03 +02:00
## v6.0.2 2023 April 05
2023-04-04 15:35:07 +02:00
- Italian language support (credits to https://crowdin.com/profile/olazzari)
- Improved error message on payzen misconfigured currency
- Improved reporting error messages in UI, from ruby exceptions
- Fix a bug: unable to subscribe with a payment schedule using PayZen
- Fix a bug: unable to list supporting documents types for a deleted group
- Fix a bug: notification is broken when updating payzen currency
2023-04-05 11:31:38 +02:00
- Fix a bug: broken notifications
2023-04-04 17:40:53 +02:00
- Fix a bug: unable to bulk update settings
2023-04-04 15:35:07 +02:00
2023-04-03 15:32:31 +02:00
## v6.0.1 2023 April 03
- Fix a bug: unable to write the configuration of the auth provider
2023-04-03 11:43:00 +02:00
## v6.0.0 2023 April 03
2023-03-24 10:45:47 +01:00
- Updated ruby to 3.2
2023-03-28 12:44:00 +02:00
- Updated rails to 7.0
2023-02-24 17:26:55 +01:00
- Updated puma to 6.1
- Updated responders to 3.0
- Updated devise to 4.9
2023-03-24 10:45:47 +01:00
- Updated sassc to 2.4
- Updated sentry to 5.8
- Updated web-console to 4.2
2023-03-24 10:45:47 +01:00
- Updated shakapacker to 6.6
- Updated bootsnap to 1.16
- Updated pg to 1.4
- Updated nodejs to 18.15
2023-03-24 17:21:44 +01:00
- Updated oj to 3.14
- Updated multi_json to 1.15
2023-03-28 12:44:00 +02:00
- Updated spring to 4.0
- Updated spring-watcher-listen to 2.1
2023-03-28 14:25:39 +02:00
- Updated omniauth to 2.1
- Updated omniauth-rails_csrf_protection to 1.0
- Updated omniauth_openid_connect to 0.6
2023-03-28 12:44:00 +02:00
- Updated the invoices chaining method with a more flexible model
2023-03-30 10:02:40 +02:00
- Fill the holes in the logical sequence of invoices references with nil invoices
2023-04-03 10:48:36 +02:00
- Use a cached configuration file to read the authentication provider settings
2023-03-30 10:02:40 +02:00
- Order numbers are now saved in database instead of generated on-the-fly
2023-03-30 13:22:36 +02:00
- OpenAPI availabilities endpoint
- Ability to filter OpenAPI reservations endpoint by availability_id
2023-03-30 10:02:40 +02:00
- Support for ARM64 CPU architecture
- Fix a bug: by default, invoices should be ordered by date descending
- Fix a bug: broken display after a plan category was deleted
2023-03-27 12:44:55 +02:00
- Fix a bug: unable to update recurring event
2023-03-28 12:51:53 +02:00
- Fix a security issue: updated json5 to 2.2.2 to fix [CVE-2022-46175](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46175)
2023-03-30 10:55:52 +02:00
- Fix a security issue: updated terser to 5.16.8 to fix [CVE-2022-25858](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-25858)
2023-03-29 18:01:16 +02:00
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/mount-auth-provider.sh | bash`
- [TODO DEPLOY] `rails fablab:auth:write_provider`
- [TODO DEPLOY] `rails fablab:restore_order_number` THEN `rails fablab:fix_references`
2023-03-27 12:44:55 +02:00
2023-03-22 09:20:31 +01:00
## v5.9.1 2023 March 22
- Fix a bug: logical sequence of invoices references has duplicates
2023-03-20 14:57:15 +01:00
- Fix a bug: in some cases, unable to export to excel files
2023-03-20 16:16:32 +01:00
- Fix a security issue: updated rack to 2.2.6.4 to fix [CVE-2023-27539](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27539)
2023-03-20 14:57:15 +01:00
2023-03-20 11:48:36 +01:00
## v5.9.0 2023 March 20
2023-03-15 15:07:48 +01:00
- Ability to restrict machine reservations per plan
- Ability to restrict machine availabilities per plan
- Ability to configure a prior period for each reservation type to prevent booking (#440)
2023-03-16 17:17:00 +01:00
- Admins cannot select the date when creating a refund invoice anymore
- Fix a bug: JS date is initalialized 1 day before in negative timezones (#445)
2023-03-20 10:16:42 +01:00
- Fix a bug: user's profile field gender is now marked as required
2023-03-16 17:17:00 +01:00
- Fix a bug: logical sequence of invoices references is broken, when using the store module or the payments schedules
- Fix a bug: refund invoices may generate duplicates in invoices references
2023-03-15 15:07:48 +01:00
- Fix a security issue: updated webpack to 5.76.0 to fix [CVE-2023-28154](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28154)
2023-03-14 16:45:01 +01:00
- [TODO DEPLOY] `rails db:seed`
2023-03-14 17:37:45 +01:00
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2023-03-14 16:45:01 +01:00
2023-03-13 14:06:15 +01:00
## v5.8.2 2023 March 13
2023-03-06 14:33:37 +01:00
- Improved upgrade script
2023-03-09 13:23:42 +01:00
- Keep usage history of prepaid packs
2023-03-06 16:35:50 +01:00
- OpenAPI reservation endpoint can be filtered by date
2023-03-08 09:43:12 +01:00
- OpenAPI users endpoint now returns the ID of the InvoicingProfile
2023-03-13 11:29:47 +01:00
- Fix a bug: URL validation regex was wrong
- Fix a bug: privileged users cannot order free carts for themselves in the store
- Fix a bug: unable to select a new machine for an existing category
- Fix a bug: wrong counting of minutes used when using a prepaid pack
2023-03-06 13:05:33 +01:00
- Fix a bug: empty advanced accounting code is not defaulted to the general setting
- Fix a bug: invalid style in accounting codes settings
- Fix a bug: wrong namespace for task cart_operator
- Fix a security issue: updated rack to 2.2.6.3 to fix [CVE-2023-27530](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27530)
- [TODO DEPLOY] `rails fablab:fix:cart_operator`
2023-03-06 13:14:30 +01:00
- [TODO DEPLOY] `rails fablab:setup:build_accounting_lines`
- [TODO DEPLOY] `rails fablab:fix:pack_minutes_used`
2023-03-06 13:05:33 +01:00
2023-03-03 16:38:32 +01:00
## v5.8.1 2023 March 03
2023-03-03 16:37:14 +01:00
- Fix a bug: unable to reserve an event
2023-03-03 15:48:02 +01:00
## v5.8.0 2023 March 03
2023-03-03 10:09:07 +01:00
- OpenAPI events endpoint returns category, theme and age_range
- OpenAPI reservation endpoint will return details for the reserved slots
- Display info messages if the user cannot buy prepaid packs
2023-03-03 10:09:07 +01:00
- Fix a bug: some OpenAPI endpoints struggle and expire with timeout
- Fix a bug: OpenAPI events endpoint documentation does not refect the returned data
- Fix a bug: members can't change/cancel their reservations
- Fix a bug: admin events view should default to the list tab
- Fix a bug: event creation form should not allow setting multiple times the same price category
- Fix a bug: MAX_SIZE env varibles should not be quoted (#438)
- Fix a bug: unable to add OIDC scopes without discovery
2023-03-03 10:09:07 +01:00
- [BREAKING CHANGE] GET `open_api/v1/events` will necessarily be paginated
- [BREAKING CHANGE] GET `open_api/v1/invoices` will necessarily be paginated
- [BREAKING CHANGE] GET `open_api/v1/reservations` will necessarily be paginated
- [BREAKING CHANGE] GET `open_api/v1/users` will necessarily be paginated
- [BREAKING CHANGE] GET `open_api/v1/subscriptions` won't return `total_count`, `total_pages`, `page` or `page_siez` anymore. RFC-5988 headers (*Link*, *Total* and *Per-Page*) will continue to provide these same data.
- [BREAKING CHANGE] GET `open_api/v1/subscriptions` will return a `subscriptions` array instead of a `data` array.
2023-02-24 16:49:19 +01:00
## v5.7.2 2023 February 24
- Fix a bug: unable to update recurrent events
2023-02-24 15:16:57 +01:00
- Fix a bug: invalid border color for slots
- Fix a bug: members can't change/cancel their reservations
2023-02-20 17:20:08 +01:00
## v5.7.1 2023 February 20
- Fix a bug: timezone is ignored while configuring calendar opening/closing time
- Fix a bug: unable to configure RAILS_LOCALE to fr-CA
- Fix a bug: unable to fix availabilities for events
- Fix a bug: unable to start Fab-manager with message: maximum must be a nonnegative Integer
2023-02-20 15:37:51 +01:00
- Fix a bug: unable to export orders statistics
- Fix a bug: invalid shell coloring during setup
- [TODO DEPLOY] `fablab:maintenance:clean_availabilities`
2023-02-17 17:09:25 +01:00
## v5.7.0 2023 February 17
- Report user's prepaid packs in the dashboard
2023-02-03 12:50:18 +01:00
- Export external ID and private notes in the members excel export
- Ability to buy a new prepaid pack from the user's dashboard
2023-02-16 11:22:42 +01:00
- Improved calendars loading time
- Admin notification when an order was placed
- Management of notifications preferences for admins
- Display custom banners in machines/trainings/events lists
- Filter projects by status
- Maximum validity period for trainings authorizations
- Automatically cancel trainings with insufficient attendees
- Check SCSS syntax before saving home page style
2023-02-17 17:09:25 +01:00
- Use Time instead of DateTime objects
- Fix a bug: missing statististics subtypes
- Fix a bug: wrong times in admin/event monitoring
- Fix a bug: daylight saving time is ignored and result in wrong dates and/or times when dealing around the DST day
- Fix a bug: date shift in event creation/update
- Fix a bug: unable to run `rails db:seed` when first setup Fab-manager
- Fix a bug: cannot cancel a subscription after offering free days
2023-02-15 16:30:21 +01:00
- Fix a bug: event image updates are not reflected unless the browser's cache is purged
2023-02-03 11:51:23 +01:00
- Fix a bug: schedules jobs are not launched at the right time
- Fix a bug: unable to update the title of a training
- Fix a bug: members cannot update their cards for payment schedules
- [TODO DEPLOY] `rails fablab:fix_availabilities` THEN `rails fablab:setup:build_places_cache`
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/rename-supporting-document.sh | bash`
2023-02-14 17:07:03 +01:00
- [TODO DEPLOY] `rails db:seed`
2023-02-07 19:40:04 +01:00
## v5.6.11 2023 February 07
- OpenAPI endpoint to fetch subscription data
- Fix a bug: invalid date display in negative timezones
- Fix a bug: unable to get the latest payment_gateway_object for plan/machine/training/space
2023-02-02 15:54:34 +01:00
## v5.6.10 2023 February 02
- Optimized memory consumption in statistics fetcher service
- Fix a bug: private method `create_statistic_subtype'
- [TODO DEPLOY] `rails db:seed`
2023-02-02 11:22:57 +01:00
## v5.6.9 2023 February 02
2023-01-30 16:18:51 +01:00
- Updated shakapaker to 6.5.5
2023-02-01 17:56:14 +01:00
- Fix a bug: unable to filter statistics by slot date
- Fix a bug: unable to create a recurrent event
- Fix a bug: unable to create a non-rolling plan
2023-01-31 17:10:07 +01:00
- Fix a bug: invalid duration for machine/spaces reservations in statistics, when using slots of not 1 hour
- Fix a bug: invalid month in date format
- Fix a bug: do not show theme and age-range fields in event form if no options were set
- Fix a bug: do not show catgory select in plan form if no options were set
2023-01-31 09:43:57 +01:00
- Fix a bug: new setups doesn't log
2023-02-01 17:56:14 +01:00
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] `rails fablab:es:build_stats` THEN `rails fablab:maintenance:regenerate_statistics[2014,1]`
2023-01-30 16:18:51 +01:00
2023-01-26 10:09:10 +01:00
## v5.6.8 2023 January 26
2023-01-26 09:39:27 +01:00
- Fix a bug: plan prices are not reported correctly in the interface
2023-01-25 12:59:50 +01:00
## v5.6.7 2023 January 25
2023-01-25 12:01:48 +01:00
- Fix a bug: updating plan prices
- Fix a bug: admin cannot book an event for himself
2023-01-25 12:01:48 +01:00
2023-01-23 09:31:03 +01:00
## v5.6.6 2023 January 23
2023-01-10 12:07:46 +01:00
- Add more context data to sentry reports
2023-01-10 14:00:59 +01:00
- Improved SSO testing
2023-01-19 17:33:48 +01:00
- Ability to map the external ID from the SSO
2023-01-19 17:41:21 +01:00
- Ability to soft-destroy a reserved event
- Fix a bug: unable to run task fix_invoice_item when some invoice items are associated with errors
- Fix a bug: invalid event date reported when the timezone in before UTC
- Fix a bug: unable to run accounting export if a line label was not defined
- Fix a security issue: updated rack to 2.2.6.2 to fix [CVE-2022-44571](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-44571)
- Fix a security issue: updated globalid to 1.0.1 to fix [CVE-2023-22799](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22799)
- [TODO DEPLOY] `rails fablab:fix:invoice_items_in_error` THEN `rails fablab:fix_invoice_items` THEN `rails db:migrate`
2023-01-09 15:14:30 +01:00
## v5.6.5 2023 January 9
2023-01-09 15:12:36 +01:00
- Moved the buttons to create a new machine or availability to the admin section
- Fix a bug: unable to create/update machines/spaces/trainings/events/...
2023-01-09 14:38:15 +01:00
## v5.6.4 2023 January 9
2023-01-09 14:09:56 +01:00
- Fix a bug: unable to build the docker image (yarn error extracting tar content of undefined failed)
2023-01-09 13:41:52 +01:00
## v5.6.3 2023 January 9
2023-01-09 13:38:18 +01:00
- Fix a bug: unable to build the docker image (yarn error extracting tar content of undefined failed)
- Fix a security issue: logged users but non-admins can access to analytics data throught the API
2023-01-09 12:33:58 +01:00
## v5.6.2 2023 January 9
2023-01-06 15:38:39 +01:00
- Improved fix_invoice_item task
2023-01-09 12:33:58 +01:00
- Improved test coverage
2023-01-09 12:26:43 +01:00
- Fix a bug: unable to set some dates for the events if user is in negative timezone
2023-01-09 11:37:58 +01:00
- Fix a bug: events are shown as over and unbookable, starting from midnight at the event end's day
- Fix a bug: updating a space/machine/event/training removes the image
- Fix a bug: cryptic error message when failed to create a manager
2023-01-06 17:15:39 +01:00
- Fix a bug: unable to restore accounting periods closed by a deleted admin
2023-01-09 10:54:36 +01:00
- Fix a bug: unable to build an accounting archive if the operator was deleted
- Fix a bug: unable to update an event category
2023-01-06 13:10:05 +01:00
## v5.6.1 2023 January 6
2023-01-06 13:05:51 +01:00
- Fix a bug: allow decimal values for VAT rates
- Fix a bug: canceled reservations/slots not shown as it in the reservations dashboard
2023-01-06 10:31:20 +01:00
- Fix a bug: no main item on some invoices
- Fix a bug: unable to build accounting lines if no invoices
- Fix a bug: unable to apply rounding correction on accounting lines
- Fix a bug: empty object for some invoice item
- Fix a bug: unable to filter Show only slots with reservations in public calendar for admin
2023-01-05 14:43:42 +01:00
- Fix a security issue: updated json5 to 1.0.2 to fix [CVE-2022-46175](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46175)
- [TODO DEPLOY] `rails fablab:fix_invoice_items` => run this script BEFORE running the migrations
2023-01-05 14:43:42 +01:00
2023-01-05 12:32:05 +01:00
## v5.6.0 2023 January 5
2022-12-27 13:50:31 +01:00
- Ability to group machines by categories
2022-12-27 16:14:29 +01:00
- Ability to mark a machine as reservable or not
2023-01-03 11:19:49 +01:00
- Ability to filter the admin's calendar
2022-12-20 14:45:01 +01:00
- Private note on member's profile
2022-12-06 16:08:38 +01:00
- Optional external identifier for users
2022-12-23 14:22:46 +01:00
- Ability to disable generation of invoices at zero
- Accounting data is now built each night and saved in database
- Ability to define multiple accounting journal codes
2023-01-26 10:09:10 +01:00
- Ability to define accounting codes per resources (aka. advanced accounting)
2022-12-23 15:52:10 +01:00
- Ability to change the name of the VAT
2023-01-03 17:17:39 +01:00
- Ability to cancel a running subscription from the member edition view for admin/managers
- OpenAPI endpoint to fetch accounting data
2022-12-21 14:25:15 +01:00
- Add reservation deadline parameter (#414)
- Verify current password at server side when changing password
- Password strengh indicator
2022-12-07 10:15:15 +01:00
- Updated OpenAPI documentation
- Updated OpenID Connect documentation
- OpenAPI users endpoint offer ability to filter by created_after
2022-12-07 13:31:32 +01:00
- OpenAPI users endpoint return first name, last name, gender, organization and address
- Default accounting codes and labels if not set
- Active serving static files from the `/public` folder by default from rails
- Display custom error message if the PDF invoice is not found
- Report subsription mismatch with user's group
2023-01-04 16:03:52 +01:00
- Added sentry for error reporting
- Report details of the due for invoices related to a payment schedule
2023-01-26 10:09:10 +01:00
- Migrated plan/machine/space/event forms to react
2022-12-21 14:25:15 +01:00
- Fix a bug: unable to run test in negative timezones (#425)
- Fix a bug: providing an array of attributes to filter OpenApi data, results in error
- Fix a bug: unable to manage stocks on new products
- Fix a bug: unsupported param[] syntax in OpenAPI
- Fix a bug: unable to access in-system notifications if a slot was cancelled
- Fix a bug: feature tour in admin/settings is broken
- Fix a bug: clearing the new expiration date field in the offer days modal result in errors
2022-12-28 11:01:05 +01:00
- Fix a bug: low stock notification is always sent if one of the stocks has reached the threshold
- Fix a bug: unable to update title of availability after admin remove a machine/plan in calendar
- Fix a bug: unable to access files from the public folder (like example.csv)
- Fix a bug: unable to return to the statistics tab
2023-01-05 11:45:23 +01:00
- Fix a bug: payment schedule by check result in error if payment mean was not changed
- Fix a security issue: updated httparty to 0.21.0 to fix [GHSA-5pq7-52mg-hr42](https://github.com/advisories/GHSA-5pq7-52mg-hr42)
- Updated react-modal to 3.16.1
2022-11-28 16:24:29 +01:00
- Updated tiptap editor and its dependencies to 2.0.0-beta.204
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] `rails fablab:setup:build_accounting_lines`
- [TODO DEPLOY] `rails fablab:fix:cart_operator`
2022-12-16 18:50:20 +01:00
## v5.5.8 2022 December 16
2022-12-14 13:33:26 +01:00
- Fix a bug: wrong reservations count for spaces in availabilities export (#415)
2022-12-16 15:35:02 +01:00
- Fix a bug: phone or address required are not marked as it, in create manager/admin form
- Fix a security issue: updated express to 4.18.2 to fix [CVE-2022-24999](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24999)
- Fix a security issue: updated @claviska/jquery-minicolors to 2.3.6 to fix [CVE-2021-4243](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4243)
- Fix a security issue: updated loofah to 2.19.1 to fix [CVE-2022-23514](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23514), [CVE-2022-23515](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23515) and [CVE-2022-23516](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23516)
- Fix a security issue: updated rails-html-sanitizer to 1.4.4 to fix [CVE-2022-23517](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23517), [CVE-2022-23518](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23518), [CVE-2022-23519](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23519), [CVE-2022-23520](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23520) and [CVE-2022-32209](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32209)
2022-12-14 14:36:30 +01:00
- Removed gem rails_12factor
- [TODO DEPLOY] add the `RAILS_LOG_TO_STDOUT=true` environment variable (see [doc/environment.md](doc/environment.md#RAILS_LOG_TO_STDOUT) for configuration details)
2022-12-14 13:33:26 +01:00
2022-12-13 10:00:44 +01:00
## v5.5.7 2022 December 13
- Fix a bug: unable to update/delete a space
- Fix a bug: unable to credit wallet
- Fix a security issue: updated nokogiri to 1.13.10 to fix [CVE-2022-23476](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23476)
2022-12-05 17:03:24 +01:00
## v5.5.6 2022 December 05
- Updated FabAnalytics reports to include new features
2022-12-01 15:43:16 +01:00
- Fix a bug: setting somes decimal amounts (e.g. 4,85) result in another amount (e.g. 4,84)
2022-12-01 13:03:19 +01:00
- Fix a bug: unable to export statistics
- Fix a bug: soft destroyed machines and spaces are still reported in the OpenAPI
2022-11-22 17:19:58 +01:00
## v5.5.5 2022 November 22
2020-11-25 09:38:27 +01:00
2022-11-22 14:17:25 +01:00
- Soft destroy of spaces and machines
- Fix a bug: in upgrade script, the error "the input device is not a TTY" is thrown when migrating the database
2022-11-21 15:22:23 +01:00
- Fix a bug: broken display of machines pages
2022-11-17 16:59:33 +01:00
- Fix a bug: some automated tests were randomly failing because ElasticSearch was not synced
2022-11-21 16:56:28 +01:00
- Fix a bug: payment related objects are not synced on Stripe when enabling the online payment module
- Fix a bug: unable set a main image of product and remove an image of product
2022-11-17 16:59:33 +01:00
2022-11-17 16:41:58 +01:00
## v5.5.4 2022 November 17
- Fix a bug: unable to download an existing export of the statistics
- Fix a security issue: updated loader-utils to 2.0.4 to fix [CVE-2022-37601](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37601), [CVE-2022-37603](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37603) and [CVE-2022-37599](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37599)
2022-11-17 12:15:23 +01:00
## v5.5.3 2022 November 17
2022-11-17 11:20:49 +01:00
- By default, sort invoices by date in the admin list
- Fix a bug: unable to reserve a machine with payment on site
- Fix a security issue: updated loader-utils to 1.4.2 to fix [CVE-2022-37601](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37601), [CVE-2022-37603](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37603) and [CVE-2022-37599](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37599)
2022-11-16 16:59:40 +01:00
## v5.5.2 2022 November 16
2022-11-16 16:55:56 +01:00
- Fix a bug: unable to export statistics
2022-11-15 15:22:30 +01:00
## v5.5.1 2022 November 15
- Fix a bug: free disk space not verified in some cases
- Fix a bug: unable to merge an SSO account with an existing account
2022-11-14 09:37:35 +01:00
- Fix a security issue: updated loader-utils to 1.4.1 to fix [CVE-2022-37601](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37601)
2022-11-14 09:46:18 +01:00
- Fix a security issue: updated minimatch to 3.1.2 to fix [CVE-2022-3517](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3517)
2022-11-08 10:39:44 +01:00
## v5.5.0 2022 November 08
- Feature Fablab Store
- Feature Allow admin to reserve for himself
2022-10-24 10:52:26 +02:00
- Allow searching by username (#401)
- Fix a bug: adding a new event without updating the dates results in internal server error (undefined method `div' for nil)
2022-10-24 10:52:26 +02:00
- Fix a bug: portuguese time formatting (#405)
- Fix a bug: admin users groups being overriden by SSO group_id (#404)
- Fix a bug: no statistics on trainings and spaces reservations
- Fix a bug: invalid ventilation for amount coupons
- Fix a bug: invalid VAT for invoices using amount coupons
- Fix a bug: invalid 1 cent rounding for invoices using coupons
2022-11-04 09:58:32 +01:00
- Fix a bug: plans list error when there was no plan for the user's group
2022-10-24 10:50:54 +02:00
- Fix a security issue: updated nokogiri to 1.13.9 to fix [GHSA-2qc6-mcvw-92cw](https://github.com/advisories/GHSA-2qc6-mcvw-92cw)
2022-10-24 12:14:10 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2021,6]`
- [TODO DEPLOY] `rails fablab:setup:set_admins_group`
2022-10-24 10:50:54 +02:00
2022-10-19 18:20:00 +02:00
## v5.4.25 2022 October 19
- Fix a bug: unable apply a coupon if this coupon has used by an user removed
2022-10-19 18:20:00 +02:00
- Improved automated test on prepaid pack
2022-10-14 17:26:44 +02:00
## v5.4.24 2022 October 14
- Fix a bug: unable debit hours of prepaid pack after a reservation of machine
2022-10-12 19:08:32 +02:00
## v5.4.23 2022 October 12
- Fix a bug: unable to build docker image
2022-09-27 11:14:27 +02:00
- Fablab's store module
- Fix a bug: missing translations in PayZen configuration screens
- Fix a bug: wrong translation key prevents the display of the schedule deadline's payment mean
2022-09-27 11:14:27 +02:00
- [TODO DEPLOY] `rails db:seed`
2022-10-12 19:08:32 +02:00
2022-10-10 15:43:21 +02:00
## v5.4.22 2022 October 10
- Fix a bug: erroneous statistics
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2021,6]`
2022-10-05 13:24:17 +02:00
## v5.4.21 2022 October 05
- Ability to dismiss a user to a lower privileged role
- Fix a bug: unable to generate statistics
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2022,08]`
2022-09-27 17:22:39 +02:00
## v5.4.20 2022 September 27
- Fix a bug: unable to show the daily view of the public agenda, if it contains trainings or events
- Fix a bug: plan's categories descriptions are not shown
- Fix a bug: groups without plans are shown but empty
- Fix a bug: unable to display the payment schedules management interface
2022-09-13 14:08:16 +02:00
## v5.4.19 2022 September 13
2022-09-27 17:22:39 +02:00
- Fix a bug: computing the wallet amount to debit ignores the applied coupon
2022-09-13 14:08:16 +02:00
2022-09-12 13:02:21 +02:00
## v5.4.18 2022 September 12
- Script to download translations from Crowdin
- Fix a bug: admin and managers can't cancel or move event reservations
- Fix a bug: phone numbers with hyphens and spaces prevent profile completion when the data is provided by an SSO
- Fix a bug: unable to complete profile from SSO when the account validation is enabled
2022-09-06 14:14:05 +02:00
## v5.4.17 2022 September 06
- OpenAPI spaces endpoints (index/show)
- OpenAPI plans endpoints (index/show)
- OpenAPI plans categories index endpoint
2022-08-30 14:16:49 +02:00
- OpenAPI prices index endpoint
2022-09-05 11:39:23 +02:00
- Export used coupon (if any), in the reservations export
2022-08-29 17:34:09 +02:00
- Improved automated test on statistics generation
- Refactored statistics generation
- Refactored test helpers
2022-09-06 14:09:02 +02:00
- Script to upload translations sources to Crowdin
2022-08-29 17:34:09 +02:00
- Fix a bug: unable to generate statistics
- Fix a bug: the automated test on statistics generation was not running
- Fix a bug: the events times are not displayed
- Fix a security issue: disable log4j format message lookup by default for new installations
2022-09-06 14:34:52 +02:00
- Fix a security issue: updated omniauth to 1.9.2 to fix [CVE-2020-36599](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36599)
- Fix a security issue: updated moment-timezone to 0.5.35 to fix [GHSA-v78c-4p63-2j6c](https://github.com/advisories/GHSA-v78c-4p63-2j6c) and [GHSA-56x4-j7p9-fcf9](https://github.com/advisories/GHSA-56x4-j7p9-fcf9)
2022-08-29 17:34:09 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2022,07]`
2022-08-24 17:10:00 +02:00
## v5.4.16 2022 August 24
2022-08-24 17:31:07 +02:00
- Updated user's manual for v5.4 (fr)
2022-08-22 13:35:36 +02:00
- Updated portuguese translations
- Added automatic RuboCop validation on pre-commit
- Use union type instead of enum for SettingName
- Clarified documentation about default values for environment variables
2022-08-24 11:13:41 +02:00
- Updated documentation about the minimum RAM required (#385)
2022-08-22 13:35:36 +02:00
- Fix a bug: wrong variable reference in `SingleSignOnConcern:Merge_form_sso`
2022-08-22 15:25:00 +02:00
- Fix a bug: wrong focus behavior on text editor
- Fix a bug: trainings monitoring is not available
- Fix a bug: invalid password length verification in profile edition form
- Fix a bug: invalid password verification in setup script
- Fix a bug: during setup, unable to chown the installation folder, if the current user does not have a self-named group
2022-08-24 11:05:36 +02:00
- Fix a bug: during setup, the current value in config/env is not shown
- Fix a bug: disabling/removing a group has side effects on other groups
2022-08-22 13:35:36 +02:00
2022-08-01 20:03:43 +02:00
## v5.4.15 2022 August 1
- Improved security: adds redis-session-store to store session
- Improved security: makes rmagick, minimagick and mime types less explicit
- Improved security: add complexity check of the user password
- Improved security: prevents users enumeration attacks by not giving any info about the validity of the email
2022-08-01 18:25:06 +02:00
## v5.4.14 2022 August 1
- Added a test for multiple reservations on the same space slot
- Display the tag and theme field on the detail view of a project
2022-08-01 18:25:06 +02:00
- Improved file validation, validation is now based on content of the file in addition of the validation of the extension
- Fix a security issue: xss vulnerability in projects
- Fix a security issue: updated moment to 2.29.4 to fix [CVE-2022-31129](https://cve.mitre.org/cgi-bin/cvename.cgi?CVE-2022-31129)
2022-07-27 16:00:11 +02:00
## v5.4.13 2022 July 27
- Improved calendars loading time
- Refactored and documented the availability-slot-reservation data model
- Display bookers names to connected users now apply to all resources
2022-07-25 15:13:28 +02:00
- Updated rails locales files
- Usage of the rails logger instead of printing to standard output
- Optionnaly add a username column to the member list (#375)
- Improved attached ICS file texts, in reservations emails
- Fix a bug: user validation required alert is displayed and disappears instantly
- Fix a bug: canceled trainings are still shown on the public profile page
- Fix a bug: prevent same slot booking feature ignores canceled reservations
2022-07-25 15:13:28 +02:00
- Fix a bug: wrong currency on invoices files
- Fix a bug: unable to reserve if user's subscription plan is disabled
- Fix a bug: for admins and managers, the current password is not requested before changing their own password
2022-07-20 15:27:01 +02:00
- Fix a bug: missing translations
- Fix a bug: unable to book a space's slot with an existing reservation
- Fix a bug: Unable to import accounts from SSO when the transformation modal was opened but leaved empty
- Fix a bug: Unable to change the group of a user
- Fix a bug: As admin, unable to create a new member (#374)
- Fix a bug: profile completion form is not shown is T&C were not filled
- Fix a bug: Erroneous "cancelation failed" message if elasticsearch was disabled
2022-07-27 10:05:47 +02:00
- Fix a bug: admin group being replaced in SSO authentication (#376)
2022-07-27 10:09:05 +02:00
- Fix a bug: SSO data being overridden when it is empty and the user can change it (#377)
- Fix a security issue: updated terser to 4.8.1 to fix [CVE-2022-25858](https://cve.mitre.org/cgi-bin/cvename.cgi?CVE-2022-25858)
- Fix a security issue: updated tzinfo to 1.2.10 to fix [CVE-2022-31163](https://cve.mitre.org/cgi-bin/cvename.cgi?CVE-2022-31163)
2022-07-27 09:31:41 +02:00
- Fix a security issue: updated rails to 5.2.8.1 to fix [CVE-2022-32224](https://cve.mitre.org/cgi-bin/cvename.cgi?CVE-2022-32224)
2022-07-06 16:00:04 +02:00
## v5.4.12 2022 July 06
- Fix a bug: Gender, Address and Birthday are not mapped properly from SSO (#365)
- Fix a bug: unable to import a new account from an SSO provider
- Fix a security issue: updated rails-html-sanitizer to 1.4.3 to fix [CVE-2022-32209](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32209)
2022-07-06 14:37:34 +02:00
## v5.4.11 2022 July 06
- Fix a bug: social networks icons not shown in firefox
- Fix a bug: Gender, Address and Birthday are not mapped properly from SSO (#365)
- Fix a bug: OIDC scopes are not shown in the configuration form select
2022-07-06 13:16:09 +02:00
- Fix a bug: OIDC scopes are not saved
2022-07-05 16:22:43 +02:00
## v5.4.10 2022 July 05
2022-07-05 16:19:02 +02:00
- Increased About page title's size
- Fix a bug: script mount-proof-of-identity-files creates a volume with an invalid path
- Fix a bug: unable to access the new OIDC provider form
2022-06-29 20:00:41 +02:00
## v5.4.9 2022 June 29
- Fix a bug: validator of reservation can't find if slot has reserved by reservable type
2022-06-29 17:36:05 +02:00
## v5.4.8 2022 June 29
2022-06-29 11:04:33 +02:00
- My reservations dashboard
- Display reservations credits in the dashboard
2022-06-29 11:02:21 +02:00
- Added a test case for space reservation
2022-06-29 16:06:26 +02:00
- Updated Portugueses translations (thanks to [@ghabreu](https://github.com/ghabreu))
2022-06-29 16:51:05 +02:00
- Improved explanations about members CSV imports
- Fix a bug: unable to reserve a space
- Fix a bug: invalid users are reported in search
2022-06-29 16:06:26 +02:00
2022-06-29 09:55:03 +02:00
## v5.4.7 2022 June 29
- Removed the admins' button to scroll to the featured event
2022-06-27 16:07:33 +02:00
## v5.4.6 2022 June 27
- Fix a bug: unable to run yq in deployment scripts
2022-06-27 15:25:46 +02:00
## v5.4.5 2022 June 27
- Feature the next event in the event page
2022-06-13 15:22:01 +02:00
- Documentation for installing behind a proxy
- Ability to install behind a proxy
- Improved docker image building time
- Use relative paths in mount scripts
- Run the docker image with the system user
- During the setup, autoconfigure the main domain
- During the setup, ask to set ALLOW_INSECURE_HTTP if DEFAULT_PROTOCOL was set to http
- Override angular currency filter, use Intl.NumberFormat to format amount
2022-06-22 15:32:44 +02:00
- Added some eslint rules to validate react components code style
- Fixed all react components code according to eslint rules
- Renamed proof-of-identity to supporting-documents in react components and in end-user strings
- Use bat to display coloured documentation of environment variables during setup
- Check the minimum docker version (20.10) during setup and upgrade
- Fix a bug: when email was mapped from SSO provided as empty string -> unable to merge account
- Fix a bug: when an empty data was retured by the SSO, unable to edit it
- Fix a bug: user can change his group in the profile completion page, even if mapped from the SSO
- Fix a bug: the birthdate was not marked as required, in the profile edition form
- Fix a bug: when the phone or the address were required, they were not marked as this, in the profile edition form
- Fix a bug: the birthday was not shown in user edition form
2022-06-22 14:19:37 +02:00
- Fix a bug: canceled event label's translation
2022-06-15 13:37:07 +02:00
- Fix a bug: unable to set the twitter input empty
2022-06-15 09:42:39 +02:00
- Fix a bug: unable to edit an event
- Fix a bug: times are not shown in admin/events monitoring page
- Fix a bug: unable to generate the secret key base during the setup
- Fix a bug: error message during the setup: the input device is not a TTY
2022-06-14 16:22:42 +02:00
- Fix a bug: when Fab-manager was installed as non-root user, unable to compile the assets during the upgrade
- Fix a bug: unable to remove an SSO data mapping field once saved
- Fix a bug: unable to update the user profile after toggling the organization switch twice
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/set-docker-user.sh | bash`
2022-06-08 10:03:17 +02:00
## v5.4.4 2022 June 8
- Check shopping cart items are valid before online payment
- Updated sidekiq-unique-jobs to 7.1.23 to get rid of Sidekiq's default_worker_options deprecation warning
- Allow moving with arrows in the setup script's inputs
- Ability to ignore assets compilation errors in the upgrade script
2022-06-08 10:03:17 +02:00
- Fix a bug: admins are shown in select member for reservation by admin
- Fix a bug: unable to show tours in machines and spaces page
2022-06-07 15:23:11 +02:00
- Fix a bug: unable to connect with OAuth2
- Fix a bug: when installing fab-manager as non-root user, most of the resulting installation directories were owned by root
2022-06-06 11:40:53 +02:00
- Fix a bug: unable to edit OIDC provider
- Fix a bug: list of OIDC scopes are loading indefinitely
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/use-relative-paths.sh | bash`
2022-06-06 10:42:47 +02:00
## v5.4.3 2022 June 6
2022-06-06 10:24:11 +02:00
- Updated translations
- Fix a bug: deprecated bundler arguments (#362)
- Fix a bug: unable to compile the assets when OIDC is enabled but the scopes were not set
2022-06-01 12:48:43 +02:00
## v5.4.2 2022 June 1
2022-05-30 16:52:51 +02:00
- Updated react-select to 5.3.2
- Moved the calendar navigation buttons to the left side
- Fix a bug: unable to remove the last training or the last tag to a member
2022-06-01 09:32:44 +02:00
- Fix a bug: unable to run scripts on systems with legacy version of docker-compose
- Fix a bug: unable to sign up if admin actived organization's additional fields with required
- Fix a bug: undefined error in new member page
2022-05-30 12:56:22 +02:00
- Fix a bug: OIDC scopes are separated by spaces, not commas
- Fix a bug: unable to create OIDC custom scopes
- Fix a bug: enable admins to be invited to collaborate on projects
- Fix a bug: hide some links to create an account if public registrations is disabled
- Fix a bug: unable to save user validation if admin click save user profile button after switch user valitation
- Fix a bug: if multi VAT no value is filled in, the general rate can't apply
- Fix a security issue: updated rack to 2.2.3.1 to fix [CVE-2022-30123](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30123) and [CVE-2022-30122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30122)
2022-05-23 17:03:34 +02:00
## v5.4.1 2022 May 23
- Disable to clicking outside or pressing escape to close sign up modal
- Ability to disable colorize logging (#345)
- Detect assets compilation issue during the initial setup
- Fix a bug: when machines module disabled, Associated machines is still shown in trainings list
- Fix a bug: script mount-proof-of-identity-files unable to modify docker-compose.yml
- Fix a bug: Event reservation calendar encoding in mail
- Fix a bug: Missing of description of PlanCategory migration
- Fix a bug: Unable to create plans for all group
- Fix a bug: backPrevLocation button on Notification Center opens reset password page (#348)
- Fix a bug: compatibility with the new docker-compose CLI (#355)
- Fix a security issue: updated moment.js to 2.29.2. to fix [CVE-2022-24785](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24785)
- Fix a security issue: updated nokogiri to 1.13.6 to fix [CVE-2022-298240](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-298240)
- Fix a security issue: updated async to 2.6.4 to fix [CVE-2021-43138](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43138)
2022-05-12 16:53:02 +02:00
## v5.4.0 2022 May 12
- Option to disable the 'machines' module
- Option to prevent users from changing their group
- Ability to define social networks for the FabLab "about page"
2022-06-01 12:09:34 +02:00
- Plan categories can have rich-text descriptions
- Improved security when changing passwords
2022-05-11 16:47:34 +02:00
- Support for OpenID Connect in Single-Sign-On authentication providers
- ICS file attached to the reservation notification email
- Refactored the user profile edition form
- Improved the profile completion page
2022-05-11 16:47:34 +02:00
- When generating an avoir, the option "by_wallet" is not present anymore if wallet module is disabled
- No longer needed to recompile the assets when switching the authentication provider
2022-03-30 15:26:07 +02:00
- Updated the documentation about the minimum docker version
2022-03-30 12:22:20 +02:00
- Updated nodejs version to 16.13.2 for dev environment, to reflect production version
- Changed the apparence of the modal dialogs (React): no more logo and the close button appears in full-text in the top right corner.
2022-04-04 11:16:52 +02:00
- Use react-hook-form to manage and validate forms
- Use of CSS variables for main and secondary colors in react components styles
2022-04-04 11:16:52 +02:00
- New text editor
- Change font family to "Work Sans"
2022-04-01 17:48:32 +02:00
- Updated eslint to v8 and eslint related packages to their latest versions
- Updated typescript to v4.6.3
- Updated react-select to v5.2.2
- Updated sidekiq-scheduler to v4.0.0
- Updated icalendar to 2.7.1
2022-04-01 17:48:32 +02:00
- Webpack overlay will now report eslint issues
- Linted all code according to eslint rules
- Fix a bug: when enabled, the statistics module is still not shown in the menu
2022-05-11 16:31:55 +02:00
- Feature User validation, an option for allow admin validate account of user to active/disable the reservation
- Feature Proof of identity by group, allow user upload his proof of identity and admin can check it for validate the account of user
- Feature Organization custom fields
- Fix a bug: Refused to connect to 'wss://localhost:3035/ws' when using a https tunnel in development mode
- Fix a bug: edge case of birthday in the future in seeds.rb, we should use Date.current instead of DateTime.current since birthday is a date (see https://github.com/sleede/fab-manager/issues/344)
2022-05-04 10:36:57 +02:00
- Fix a security issue: updated ruby to 2.6.10 to fix [CVE-2022-28739](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28739)
2022-05-04 11:05:37 +02:00
- Fix a security issue: updated rails to 5.2.7.1 to fix [CVE-2022-22577](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22577) and [CVE-2022-27777](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27777)
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
- [TODO DEPLOY] add the `MAX_PROOF_OF_IDENTITY_FILE_SIZE` environment variable (see [doc/environment.md](doc/environment.md#MAX_PROOF_OF_IDENTITY_FILE_SIZE) for configuration details)
2022-05-11 16:31:55 +02:00
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/mount-proof-of-identity-files.sh | bash`
- [TODO DEPLOY] `rails db:migrate`
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] -> (only dev) `bundle install`
2022-05-02 10:54:26 +02:00
## v5.3.13 2022 May 02
2022-05-02 10:57:22 +02:00
- Fix a bug: With PayZen, when there was more than one transaction (for ex: 1 failed atempt + 1 successful atemp), the order was not considered PAID because only the first transaction was checked
2022-04-20 18:48:49 +02:00
## v5.3.12 2022 April 20
- Auto sync projects to OpenLab if set openlab_app_id and openlab_app_secret
- Fix a bug: back bouton can't return to previously page in projects page (list/new/show/edit)
2022-04-20 18:48:49 +02:00
- Fix a bug: OpenLab duplicate projects, if you are using OpenLab Projects, please follow the following TODO DEPLOY
- Fix a security issue: updated async to 2.6.4 to fix [CVE-2021-43138](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-43138)
- [TODO DEPLOY] `rails fablab:openlab:bulk_export`
- [TODO DEPLOY] wait 1 minute
- [TODO DEPLOY] `rails fablab:openlab:bulk_update`
2022-04-15 13:45:47 +02:00
## v5.3.11 2022 April 15
- Fix a bug: unable to send notification mail if no set a logo
- Fix a bug: unable to switch OpenLab projets
- Fix a bug: miss smtp tls in secrets.yml
- Fix a bug: unable to show projets whom user take part in
- Fix a security issue: updated puma to 4.3.12 to fix [CVE-2022-24790](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24790)
- Fix a security issue: updated moment to 2.29.2 to fix [CVE-2022-24785](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24785)
- Fix a security issue: updated nokogiri to 1.13.4 to fix [CVE-2022-24839](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24839), [CVE-2018-25032](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032), [CVE-2022-24836](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24836) and [CVE-2022-23437](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23437)
2022-04-12 17:45:33 +02:00
## v5.3.10 2022 April 12
- Updated generate invoice reference method
2022-04-12 17:17:39 +02:00
- Set invoice reference is required
- Fix a bug: unable to show machine availability slot for admin
- Fix a bug: unable to confirm modification of reservation for client
- Fix a bug: unable to show deleted user in reservation slot
- Fix a bug: race condition on invoice after payment (concerning payment schedules) https://app.clickup.com/t/25zpmn1
- Fix a bug: form maxlength count to exclude spaces and newline
2022-04-01 16:40:19 +02:00
## v5.3.9 2022 April 01
2022-04-01 16:32:43 +02:00
- Optimise sql query, avoid to N+1
2022-03-30 10:47:02 +02:00
- Fix a security issue: updated ansi-regex to 4.1.1 to fix [CVE-2021-3807](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3807)
2022-04-01 16:32:43 +02:00
- Fix a bug: unable to show payment modal for stripe
2022-03-30 10:47:02 +02:00
2022-03-29 17:18:51 +02:00
## v5.3.8 2022 March 29
- Fix a bug: unable to show payment schedules list if active PayZen
- Fix a bug: unable to set user's invoicing profile names and email if active address required in create user form
- Fix a security issue: updated ruby to 2.6.9 to fix [CVE-2021-31810](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31810), [CVE-2021-32066](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32066) , [CVE-2021-31799](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41817), [CVE-2021-31799](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41817) and [CVE-2021-41819](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41819)
- [TODO DEPLOY] `rails fablab:fix:invoices_without_names_and_email`
2022-03-28 09:57:00 +02:00
## v5.3.7 2022 March 28
2022-03-28 09:54:01 +02:00
- Updated Spanish translations (thanks to [@altieriranedo](https://crowdin.com/profile/altieriranedo))
2022-03-28 09:47:58 +02:00
- Fix a security issue: updated minimist to 1.2.6 to fix [CVE-2021-44906](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44906)
- Fix a security issue: updated node-forge to 1.3.0 to fix [CVE-2022-24771](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24771), [CVE-2022-24772](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24772) and [CVE-2022-24773](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24773)
2022-03-24 10:48:03 +01:00
## v5.3.6 2022 March 24
- Support for Google Analytics V4
- OAuth2 scopes are now configurable from the interface
- Prepaid-packs purchases are exported to the accounting CSV file
2022-03-08 15:53:28 +01:00
- Updated environment documentation
- Updated react-i18next to 11.15.6
- Updated i18next to 21.6.13
- Updated i18next-icu to 2.0.3
2022-03-09 11:29:30 +01:00
- Updated sidekiq-unique-jobs to 7.1.15
2022-03-15 17:10:33 +01:00
- Updated @uirouter/angularjs to 1.0.30
- Updated bootstrap-sass to 3.4.3
- Removed unmaintained gem sidekiq-cron and replaced it with sidekiq-scheduler
- Removed unmaintained @rails/webpacker v5 and replaced it with shakapacker v6.2.0
- Removed dependency to auto-ngtemplate-loader
- Updated deprecated division operators in sass
- Fix a bug: prepaid-packs purchases are reported as subscriptions in the statistics
- Fix a bug: error Couldn't find the binary git during assets compilation
2022-03-09 09:43:43 +01:00
- Fix a bug: a sentence was not linked to a translation key
- Fix a bug: the version check may be scheduled at an invalid time
- Fix a bug: the moment-timezone relied on an outdated version of moment with a case-sensitive locale file
- Fix a bug: unable to delete an administrator who had closed an accounting period
- Fix a bug: captcha keys are not shown in the admin panel, once configured
- Fix a bug: help message in upgrade script has a bogus format
- Fix a security issue: removed message format in elasticsearch's log4j to fix [CVE-2021-44228](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44228)
2022-03-09 09:43:43 +01:00
- Fix a security issue: updated image_processing to 1.12.2 to fix [CVE-2022-24720](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24720)
2022-03-09 09:49:14 +01:00
- Fix a security issue: updated url-parse to 1.5.10 to fix [CVE-2022-0686](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0686), [CVE-2022-0691](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0691), [CVE-2022-0639](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0639) and [CVE-2022-0512](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0512)
2022-03-09 09:52:46 +01:00
- Fix a security issue: updated rails to 5.2.6.3 to fix [CVE-2022-21831](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-21831), [CVE-2022-23633](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23633)
- Fix a security issue: updated sidekiq to 6.4.1 to fix [CVE-2022-23837](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23837)
2022-03-09 10:02:49 +01:00
- Fix a security issue: updated nokogiri to 1.13.3 to fix [CVE-2021-30560](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30560) and [CVE-2022-23308](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23308)
2022-03-09 10:05:01 +01:00
- Fix a security issue: updated puma to 4.3.11 to fix [CVE-2022-23634](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23634)
- Fix a security issue: updated i18next-http-backend to 1.3.2 to fix [CVE-2022-0235](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0235)
2022-03-09 14:38:24 +01:00
- Fix a security issue: updated follow-redirects to 1.18.8 to fix [CVE-2022-0536](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0536)
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2021,07]`
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/cve-2021-44228.sh | bash`
- [TODO DEPLOY] update your oAuth2 provider configuration with the scopes previously defined in the OAUTH2_SCOPE environment variable
2022-03-02 18:03:02 +01:00
## v5.3.5 2022 March 02
- Added [an option](doc/environment.md#OPENLAB_SSL_VERIFY) to allow set verify ssl option for OpenLab
2022-03-01 18:51:08 +01:00
## v5.3.4 2022 March 01
2022-02-10 15:07:57 +01:00
- Fix line break on home events' cards
- Fix typo "projets" => "projects"
- Removes dead code about OpenAPI (open_api_calls_count_tracings)
- Fix a bug: unable to modify OpenLab url for production
2022-02-10 15:07:57 +01:00
2022-02-08 12:01:55 +01:00
## v5.3.3 2022 February 08
- Updated german translations
2022-02-07 11:43:00 +01:00
- Fix a bug: unable to rebuild the statistics
2022-02-07 16:25:13 +01:00
- Fix a bug/regresion: $sce.getTrustedHtml removes all dangerous html like iframe (youtube players, ect), replaced by $sce.trustAsHtml which trusts the content, it creates a security breach but all contents are created by users to we trust them
- Fix a bug: in SubscriptionPolicy#show?, was causing an error notice, making user think that the payment was not done, but it was
- Fix a bug: destroying a project was impossible
- Fix a bug: fix non-blocking js error when there was not payment gateway set
2022-02-08 12:01:55 +01:00
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2020,04]`
2022-02-07 11:43:00 +01:00
2022-02-08 12:01:55 +01:00
## v5.3.2 2022 January 19
2022-01-19 15:39:12 +01:00
2022-01-18 15:34:21 +01:00
- Add a test for statistics generation
2022-01-18 16:07:23 +01:00
- Fix a bug: missing the Other payment method
- Fix a bug: do not display an untranslated string if a prepaid pack has no maximum validity
- Fix a bug: statistics not built for instances with plans created before v4.3.3
- Fix a bug: when requesting to send the sso migration code, the email was case-sensitive
- Fix a bug: the adminsys email was case-sensitive
- Fix a bug: members are unable to buy prepaid-packs by wallet
- Fix a bug: prepaid-packs without expiration date do not work
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2020,04]`
2022-02-08 12:01:55 +01:00
## v5.3.1 2022 January 17
2022-01-17 16:09:38 +01:00
2022-01-17 15:44:26 +01:00
- Definition of extended prices for spaces is now made in hours (previously in minutes)
2021-12-20 14:20:57 +01:00
- Support for JSONPath syntax in OAuth2 SSO fields mapping
2022-01-17 12:52:48 +01:00
- Basic support for OAuth2 scopes through an environment variable
- Ability to enable debug logs for the SSO authentication process using `SSO_DEBUG=true`
2022-01-17 12:52:48 +01:00
- Remove case sensitivity for the SSO account mapping process
- Ability to cancel a payement schedule from the interface
2022-01-04 10:28:43 +01:00
- Ability to create slots in the past
- Ability to disable public account creation
- Ability to select "bank transfer" as the payment mean for a payment schedule
2022-01-11 14:20:27 +01:00
- When a payment schedule was canceled by the payment gateway, alert the users
- When a payment schedule is in error, alert the users
- When a payment schedule is in error or canceled, ability to re-enable it with another payment method
2022-01-10 15:48:38 +01:00
- Fix card image ratio
- Update events heading style
- Update some icons
- Optimized the load time of the payment schedules list
2022-01-11 16:04:14 +01:00
- Optimized multiple DB queries
- Updated caniuse db
- Fix a bug: do not load Stripe if no keys were defined
- Fix a bug: some links redirect to the home page instead of triggering the requested action
2022-01-10 16:53:18 +01:00
- Fix a bug: exports to Excel are corrupted (#49)
- Fix a bug: if a specialized VAT rate was defined when the VAT was disabled, the resulting VAT rate is wrong
- Fix a bug: unable to rebuild the PDF for invoices without subscriptions
- Fix a bug: the switch to enable/disable the VAT does not reflect the current state of the VAT
2022-01-17 12:52:48 +01:00
- Fix a bug: SSO configuration interface has a misnamed field (Common URL)
- Fix a bug: unable to bind Profile.birthday and Profile.gender from an SSO
2022-01-17 15:50:29 +01:00
- Fix a security issue: updated follow-redirects to 1.14.7 to fix [CVE-2022-0155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0155)
- [TODO DEPLOY] `rails db:seed`
2022-01-03 10:15:58 +01:00
2022-02-08 12:01:55 +01:00
## v5.3.0 2021 December 29
2021-12-29 22:26:11 +01:00
2021-12-29 21:25:24 +01:00
- Ability to configure multiple VAT rates, per kind of invoiced item
2022-01-03 10:17:33 +01:00
- Ability to export the collected VAT, by rates, to a CSV file
2022-01-04 09:52:34 +01:00
- Refactored the extended prices' frontend code to allow future customization
- Fix a bug: the amount label in not correctly shown in the extended prices modal
2022-01-04 09:52:34 +01:00
- Fix a bug: `extended_prices_in_same_day` apply the extended prices to each day
2021-12-29 21:25:24 +01:00
2021-12-23 09:57:01 +01:00
## v5.2.0 2021 December 23
2021-12-21 18:19:13 +01:00
2022-01-04 09:52:34 +01:00
- Ability to configure prices for spaces, by time slots different from the default hourly rate
2021-12-20 14:28:59 +01:00
- Updated portuguese translation
- Refactored the ReserveButton component to use the same user's data across all the component
2021-12-21 17:28:57 +01:00
- First optimization the load time of the payment schedules list
2021-12-20 14:28:59 +01:00
2021-11-16 17:19:23 +01:00
## v5.1.13 2021 November 16
- Fix a bug: unable to run the setup/upgrade scripts as root
2021-11-10 17:08:29 +01:00
## v5.1.12 2021 November 10
2021-11-10 17:06:21 +01:00
- Added an automated test on the plan creation endpoint
- Fix a bug: unable to create a plan
2021-10-22 17:54:31 +02:00
## v5.1.11 2021 October 22
- Refactored subscription new/renew/free extend interfaces and API
2022-01-04 09:52:34 +01:00
- Ability to configure the data sources of the booking prevention on overlapping slots
- Updated the production documentation
- Updated the SSO documentation
- Improved the stripe subscription process with better error handling
2021-10-04 16:45:54 +02:00
- The upgrade script will check and report the ability to access the hub API
2022-01-04 09:52:34 +01:00
- Fix a bug: canceled training reservation is not marked as this in admin > edit members > trainings
2021-10-21 09:28:41 +02:00
- Fix a bug: users can set their birthdate in the future
2022-01-04 09:52:34 +01:00
- Fix a bug: the upgrade script won't add anymore the environment variables that are already present
- Fix a bug: admin cannot take or renew a subscription for a member from member/edit interface
2021-10-04 17:07:33 +02:00
- Fix a bug: missing translations
- Fix a bug: the upgrade script report an invalid version to upgrade to
2022-01-04 09:52:34 +01:00
- Fix a bug: invalid amount provided to the PayZen payment gateway, when using a 0-decimal or a 3-decimal currency
- Fix a bug: incorrect behavior for the setting "email confirmation required"
- Fix a bug: invalid text shown when a member confirms a free cart
2022-01-04 09:52:34 +01:00
- Fix a bug: 3DS confirmation is not asked when an admin is subscribing a user through a payment schedule, using PayZen
2021-10-04 17:41:10 +02:00
- Updated @rails/webpacker to 5.4.3
- Updated react-refresh-webpack-plugin to 0.5.1
- Updated react-refresh to 0.10.0
2021-10-04 16:45:54 +02:00
- Fix a security issue: updated tar to 6.1.11 to fix [CVE-2021-37712](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37712), [CVE-2021-37701](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37701) and [CVE-2021-37713](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37713)
2021-10-04 16:55:25 +02:00
- Fix a security issue: updated immer to 9.0.6 to fix [CVE-2021-3757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3757) and [CVE-2021-23436](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23436)
- Fix a security issue: updated url-parse to 1.5.3 to fix [CVE-2021-3664](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3664)
- Fix a security issue: updated axios to 0.21.2 to fix [CVE-2021-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3749)
- Fix a security issue: updated nokogiri to 1.12.5 to fix [CVE-2021-41098](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41098)
2021-10-19 10:25:19 +02:00
- Fix a security issue: updated puma to 4.3.9 to fix [CVE-2021-41136](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41136)
- Fix a security issue: updated sidekiq to 6.2.1 to fix [CVE-2021-30151](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30151)
- [TODO DEPLOY] `rails db:seed`
2021-10-04 11:52:00 +02:00
## v5.1.10 2021 October 04
2022-01-04 09:52:34 +01:00
- Fix a bug: the image of the about page is not using the image set in the backoffice
2021-10-04 10:57:17 +02:00
- Fix a bug: updated sassc to 2.4.0 to fix ruby runtime error on some CPU architectures (#270)
2021-10-04 09:48:58 +02:00
- Fix a security issue: prevent HTML code edition in projects, to prevent XSS vulnerability (#293)
2022-01-04 09:52:34 +01:00
- Fix a bug: cover image doesn't display in profile
- Fix a bug: fab-manager redirects to the home page when we delete a machine photo
2021-09-22 15:31:26 +02:00
2021-09-21 18:13:02 +02:00
## v5.1.9 2021 September 21
2022-01-04 09:52:34 +01:00
- Add a setting to restrict the purchase and use of a prepaid pack to users with a valid subscription
- Fix a bug: unable to view the plans names in the reservation calendar
- Fix a bug: label name of the book overlapping slot setting
2021-09-21 18:13:02 +02:00
2021-09-13 16:33:32 +02:00
## v5.1.8 2021 September 13
- Improved stripe 3D secure payment on payment schedules
- Disable monthly payment for the subscription with interval 1 month
- Fix a bug: unable to show statistics module in nav menu after login
2021-10-04 09:48:58 +02:00
- Fix a bug: plans page show an error if admin don't create any plans
2021-09-13 16:33:32 +02:00
2021-08-24 11:04:22 +02:00
## v5.1.7 2021 August 24
- Updated Norwegian language
- Fix a bug: unable to show plans list page
2021-08-06 12:01:19 +02:00
## v5.1.6 2021 August 6
2021-10-04 09:48:58 +02:00
- Adjust packs pricing popover position
2021-08-06 12:01:19 +02:00
- Updated Norwegian language
- Updated addressable from 2.7.0 to 2.8.0
- Updated tar from 6.1.0 to 6.1.4
- Fix a bug: unable to generate avoir of wallet
2021-10-04 09:48:58 +02:00
- Fix a bug: managers can't reserve trainings for users
2021-08-06 12:01:19 +02:00
2021-08-02 18:28:12 +02:00
## v5.1.5 2021 August 2
- Fix a bug: unable to show statistics
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2021,6]`
2021-07-09 18:08:07 +02:00
## v5.1.4 2021 July 9
- Fix a bug: stripe 3D Secure payment
2021-07-02 16:03:48 +02:00
## v5.1.3 2021 July 2
- Fix a bug: missing hour format for norwegian
- Fix a bug: missing invoice watermark for norwegian
- Fix a bug: prepaid hours not used if bought slot is longer than remaining prepaid time
- Fix a bug: cookies modal buttons are too small
- Fix a bug: do not include fully used packs in user's packs
2021-07-02 10:09:25 +02:00
## v5.1.2 2021 July 2
- Fix a bug: invalid rails locale for Norwegian
2021-07-01 16:20:28 +02:00
## v5.1.1 2021 July 1st
2021-07-01 12:35:09 +02:00
- Set up the linter for Typescript files
2021-07-01 16:17:37 +02:00
- Disable SQL format for the schema
2021-07-01 16:00:20 +02:00
- Fix a bug: config norwegian locale
2021-07-01 12:35:09 +02:00
2021-07-01 10:06:57 +02:00
## v5.1.0 2021 July 1st
2021-06-30 17:16:41 +02:00
- Prepaid packs of hours for the machines
- Tests for OpenAPI user trainings
- Norwegian language
- Fix a bug: unable to filter by multiple user IDs in OpenAPI
- Fix a bug: do not display two empty categories in the plan creation form
- Fix a bug: do not return to the home page when clicking on previous in the machine description page
- Fix a bug: public list of plans fails to render if a group has no plans
2021-06-28 11:49:51 +02:00
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2021-06-25 17:24:34 +02:00
2021-10-04 09:50:28 +02:00
## v5.0.14 2021 September 30
- Fix a bug: unable to show plan name in calendar reservations
- Fix a bug: book overlapping slot setting labal name
## v5.0.13 2021 September 13
- Improved stripe 3D secure payment on payment schedules
- Disable monthly payment for the subscription with interval 1 month
- Fix a bug: unable to show statistics module in nav menu after login
2022-10-10 15:40:22 +02:00
- Fix a bug: plans page show an error if admin don't create any plans
2021-10-04 09:50:28 +02:00
## v5.0.12 2021 August 24
- Fix a bug: unable to show plans page
2021-08-06 12:01:19 +02:00
## v5.0.11 2021 August 6
- Fix a bug: unable to generate avoir of wallet
2022-10-10 15:40:22 +02:00
- Fix a bug: manager can't reserve any training for users
2021-08-06 12:01:19 +02:00
2021-08-02 18:28:12 +02:00
## v5.0.10 2021 August 2
- Fix a bug: unable to show statistics
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_statistics[2021,6]`
2021-07-09 18:08:07 +02:00
## v5.0.9 2021 July 9
- Fix a bug: stripe 3D Secure payment
2021-06-28 09:51:35 +02:00
## v5.0.8 2021 June 28
2021-06-28 08:38:48 +02:00
- Ability to run `fablab:chain:all` non interactively
- Full test coverage of the OpenAPI
- Fix a bug: unable to get the Events without images from the OpenAPI
- Fix a bug: unable to get the Space reservations from the OpenAPI
- Fix a bug: unable to get invoices from the OpenAPI
2021-06-28 08:38:48 +02:00
2021-06-24 16:55:48 +02:00
## v5.0.7 2021 June 24
- Fix a bug: unable to export members list if no subscriptions was taken
- Fix a bug: most OpenAPI endpoints were dysfunctional
- Fix a bug: unable to open some modals when the logo was undefined
- Fix a bug: stripe subscription generation fails if the user already has a subscription
2021-06-21 10:51:13 +02:00
## v5.0.6 2021 June 21
2021-06-21 10:37:07 +02:00
- Updated babel and its dependencies to 7.14.5 / 7.14.6
- Updated @stripe/stripe-js to 1.15.1
- Updated @types/node to 15.12.2
- Updated @types/react-dom to 17.0.6
- Updated @types/react to 17.0.11
- Updated chokidar to 3.5.2
- Updated codemirror to 5.62.0
- Updated convert-source-map to 1.8.0
2021-07-01 16:00:20 +02:00
- Updated core-js-compat to 3.15.0
2021-06-21 10:37:07 +02:00
- Updated electron-to-chromium to 1.3.752
- Updated immer to 9.0.3
- Updated jquery-ujs to 1.2.3
- Updated react-i18next to 11.11.0
- Updated react-modal to 3.14.3
- Updated readdirp to 3.6.0
Updated regexpp to 3.2.0
2021-06-21 10:15:46 +02:00
- Updated resolve-url-loader to 4.0.0
2021-06-21 10:37:07 +02:00
- Updated sass to 1.35.1
- Updated tslib to 2.3.0
- Updated typescript to 4.3.4
2021-06-21 10:10:55 +02:00
- Fix a bug: unable to sync coupons on stripe
2021-06-21 10:37:07 +02:00
- Fix a security issue: updated postcss to 7.0.36 to fix [CVE-2021-23368](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23368)
2021-06-21 10:10:55 +02:00
2021-06-18 17:43:06 +02:00
## v5.0.5 2021 June 18
- Fix a bug: during the upgrade, unable to detect the target when not explicitly specified
- Fix a bug: unable to sync users on stripe if one of them have an invalid email address
2021-06-16 11:44:53 +02:00
- Fix a bug: unable to book a free event
- Fix a bug: can't see the dates for the next booked training session, when the user is reserving a machine without the appropriate training
- Fix a bug: invalid link to the user's manual
2021-06-16 15:48:45 +02:00
- Fix a bug: unable to sync coupons on stripe
- Fix a bug: ignored coupon when booking an event with card payment
- Fix a bug: deleting a coupon displays an error message
2021-06-15 12:23:39 +02:00
## v5.0.4 2021 June 15
2021-06-15 11:57:43 +02:00
- Ability to disable the public agenda
- Display the category in the plans list
- Do not display the type in the plans list
- Updated medium-editor to v5 and angular-medium-editor accordingly
- Fix a bug: a message tells that creating a new plan fails, but it worked
2021-07-01 16:00:20 +02:00
- Fix a bug: unable to select no category in plan creation/edition after a category selection
- Fix a bug: the training validation modal shows cancelled trainings
2021-06-15 11:57:43 +02:00
- [TODO DEPLOY] `rails db:seed`
2021-06-14 16:09:48 +02:00
## v5.0.3 2021 June 14
2021-06-14 13:49:38 +02:00
- Updated user's manual for v5
2021-06-14 16:09:48 +02:00
- Improved test coverage on payment schedules
- Fix a bug: unable to process stripe payments with 3DS authentication
2021-06-14 14:22:23 +02:00
- Fix a bug: unable to book an event
- Fix a bug: unable to list user's payment schedules in the dashboard
2021-06-11 15:23:35 +02:00
## v5.0.2 2021 June 11
- Ability to upgrade to a specific version with the script
- Improved display when no plan-categories exists
- Updated VCR to 6.0.0
- Updated cassettes
- Automated stripe secrets filtering in cassettes
2021-06-11 15:17:59 +02:00
- Updated documentation diagrams
2021-06-10 17:26:37 +02:00
## v5.0.1 2021 June 10
2021-06-10 17:09:09 +02:00
- Updated upgrade instructions
- Fix a bug: unable to run interactive rails commands during the upgrade
2021-06-10 17:09:09 +02:00
2021-06-10 16:19:34 +02:00
## v5.0.0 2021 June 10
2021-06-10 16:45:47 +02:00
- Ability to use PayZen as the payment gateway
2021-06-10 15:10:14 +02:00
- Ability to organize plans in categories
- Ability to configure the prefix of the payment-schedules' files
- Filter plans by group and by duration
2021-06-04 18:26:20 +02:00
- For payment schedules, ability to update the related payment card before the deadline
- Refactored data architecture to a more generic shopping cart model
2021-05-31 17:17:00 +02:00
- Redesigned the data structure to allow buying multiple and various objects
2021-04-02 16:02:50 +02:00
- Updated React and its dependencies to 17.0.3 and matching
- Updated the dependencies of: webpack, lodash, eslint, webpack-dev-server, react2angular, auto-ngtemplate-loader, angular-bootstrap-switch, react-refresh-webpack-plugin and eslint-plugin-react
- Improved error handling in upgrade script
2021-06-08 09:44:34 +02:00
- Improved documentations
- Improved the style of the titles of the subscription page
- Check the status of the assets' compilation during the upgrade
2021-06-10 14:06:53 +02:00
- Generate footprints in a more reproductible way
- Task to reset the stripe payment methods in test mode
- Validate on server side the reservation of slots restricted to subscribers
- Unified and documented upgrade exit codes
2021-06-07 15:45:58 +02:00
- During setup, ask for the name of the external network and create it, if it does not already exists
- Fix a bug: cannot select the recurrence end date on Safari or Internet Explorer
2021-04-27 11:00:49 +02:00
- Fix a bug: build status badge is not working
- Fix a bug: unable to set date formats during installation
- Fix a bug: unable to cancel the upgrade before it begins
- Fix a bug: in the admin calendar, the trainings' info panel shows "duration: null minutes"
- Fix a bug: on the subscriptions page, not logged-in users do not see the action button
- Fix a bug: unable to map a new setup to the db network
- Fix a bug: do not allow users to register with an invalid email address
2021-06-04 19:03:23 +02:00
- Fix a security issue: updated dns-packet to 1.3.4 to fix [CVE-2021-23386](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23386)
2021-06-10 15:08:01 +02:00
- Fix a security issue: updated ws to 6.2.2 to fix [CVE-2021-32640](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32640)
- `SUPERADMIN_EMAIL` renamed to `ADMINSYS_EMAIL`
- `scripts/run-tests.sh` renamed to `scripts/tests.sh`
2021-05-17 15:07:41 +02:00
- [BREAKING CHANGE] GET `open_api/v1/invoices` won't return `stp_invoice_id` OR `stp_payment_intent_id` anymore. The new field `payment_gateway_object` will contain some similar data if the invoice was paid online by card.
2021-05-27 15:58:55 +02:00
- [BREAKING CHANGE] GET `open_api/v1/invoices` won't return `invoiced_id`, `invoiced_type` OR `invoiced.created_at` anymore. The new field `main_object` will contain the equivalent data.
- [TODO DEPLOY] before running the database migration (db:migrate), run: `rails fablab:chain:all`
2021-03-03 15:28:56 +01:00
- [TODO DEPLOY] `rails fablab:stripe:set_gateway`
2021-03-31 16:03:51 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/rename-adminsys.sh | bash`
2021-03-03 15:28:56 +01:00
2022-01-04 09:43:32 +01:00
## v4.7.14 2021 September 30
2021-09-30 14:38:46 +02:00
- Fix a bug: update sassc to 2.4.0 to try to fix #270 (ruby runtime error on some CPU architectures)
2022-01-04 09:43:32 +01:00
2022-01-04 09:52:34 +01:00
## v4.7.13 2021 June 11
- Fix a bug: unable to process stripe payments with 3DS authentication
2021-06-09 19:33:15 +02:00
## v4.7.12 2021 June 09
- Fix a bug: unable to process stripe payments
2021-05-26 13:42:17 +02:00
## v4.7.11 2021 May 26
2021-05-26 10:04:56 +02:00
- Updated ffi to 1.15.1
- Updated GitHub issue templates
- Fix a bug: zero-decimal currencies were charged multiplied by 100
- Fix a bug: fablab:fix_invoices task fails to recreate the data if the date is in english
2021-05-26 10:04:56 +02:00
2021-05-25 13:31:35 +02:00
## v4.7.10 2021 May 25
- CAD lists of types and extensions are now ordered alphabetically
- Fix a bug: reservation of slots restricted to subscribers leads to invoices without invoiced_id
- Fix a bug: new installation with mapping to an external network does not connect fab-manager to elasticsearch
- Fix a bug: typo in allow/prevent booking overlapping slots
2021-05-17 15:25:05 +02:00
- Fix a bug: unable to use run.fab.mn
- Fix a bug: parse error while compiling the assets
2021-05-25 11:10:17 +02:00
- Fix a security issue: updated @rails/webpacker to 5.4.0 to fix [CVE-2021-28092](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28092) and [CVE-2021-23368](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23368)
- Fix a security issue: updated ruby to 2.6.7 to fix [CVE-2020-25613](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25613) and [CVE-2021-28965](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28965)
- Fix a security issue: updated puma to 4.3.8 to fix [CVE-2019-16770](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16770)
- Fix a security issue: updated nokogiri to 1.11.4 to fix [GHSA-7rrm-v45f-jp64](https://github.com/advisories/GHSA-7rrm-v45f-jp64)
- [TODO DEPLOY] `rails fablab:fix_invoices`
2021-05-24 16:34:27 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:regenerate_invoices[year,month]` Depending on the status of the above command, you'll need to run that one for the months with erroneous invoices
2021-05-17 14:13:31 +02:00
## v4.7.9 2021 May 17
- Updated dependency to OpenLab
2021-05-12 10:26:52 +02:00
- Updated i18next to 19.9.3
- Prevent the worker from crashing if OpenLab is not reachable in dev
2021-05-12 15:00:19 +02:00
- Allow setting multiple themes for a single event
- Increased the width of the input field for the prices of the events
- Script to run a rails command with ease in production (`run.fab.mn`)
- Fix a bug: invalid currency in notifications for locales with region (eg. fr-CM)
- Fix a bug: the notification sent to the project author when a collaborator has confirmed his participation is not sent
- Fix a bug: the event themes are not kept when editing the event again
- Fix a bug: the count of successfully updated events was not correct
2021-05-12 16:55:25 +02:00
- Fix a bug: german watermark was missing
- Fix a bug: invoices are not generated in test/development for locale with region (eg. fr-CA)
2021-05-14 14:29:36 +02:00
- Fix a bug: cannot access to "about" page on small devices
- Fix a bug: "about" page shows a non-functional menu icon
- Fix a bug: responsiveness of the "about" page title
Fix a bug: unable to change the slots durations for a new availability
- Fix a bug: some invoices does not have the name of the user
- Fix a bug: unable to sort invoices by date
2021-05-12 09:03:05 +02:00
- Fix a security issue: updated underscore to 1.12.1 to fix [CVE-2021-23358](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23358)
- Fix a security issue: updated lodash to 4.17.21 to fix [CVE-2021-23337](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23337)
- Fix a security issue: updated url-parse to 1.5.1 to fix [CVE-2021-27515](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27515)
- Fix a security issue: updated hosted-git-info to 2.8.9 to fix [CVE-2021-23362](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23362)
- Fix a security issue: updated codemirror to 5.58.2 to fix [CVE-2020-7760](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7760)
2021-05-12 10:01:29 +02:00
- Fix a security issue: updated rails to 5.2.6 to fix [CVE-2021-22904](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22904)
2021-05-12 10:26:52 +02:00
- Fix a security issue: updated react-i18next to 11.8.15 to fix [CVE-2021-23346](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23346)
- [TODO DEPLOY] `rails fablab:fix:invoices_without_names`
2021-04-02 11:02:40 +02:00
## v4.7.8 2021 April 02
- Updated mimemagic to 0.3.10 to fix [a build issue](https://github.com/mimemagicrb/mimemagic/issues/139)
2021-04-02 10:30:06 +02:00
## v4.7.7 2021 April 02
- Enforced validation on required input fields
2021-03-29 17:05:17 +02:00
- Updated babeljs and its dependencies
2021-04-02 10:22:20 +02:00
- Updated german translations (thanks to [@Piapat](https://crowdin.com/profile/piapat))
- Fix a bug: the view is not refreshed when deleting a recurring slot
- Fix a bug: unable to add a new authorized file type for project's CAD files
2021-03-29 10:19:06 +02:00
- Fix a bug: unable to update a coupon
- Fix a bug: create a training availability with calendar in month view result in wrong dates
2021-04-02 10:22:20 +02:00
- Fix a security issue: updated y18n to 4.0.1 to fix [CVE-2020-7774](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7774)
2021-03-24 11:19:10 +01:00
## v4.7.6 2021 March 24
- Ability to disable the trainings module
- Ability to set the address as a mandatory field
- The address is now requested when creating an account
- The profile completion page is less fuzzy for people landing on it without enabled SSO
2021-03-09 09:25:27 +01:00
- Prevent showing error message when testing for old versions during upgrade
- In the email notification, sent to admins on account creation, show the group of the user
- More explanations in the setup script
- Send pre-compressed assets to the browsers instead of the regular ones
- Links created using "medium editor" opens in new tabs
2021-03-22 13:13:51 +01:00
- Improved style of public plans page
2021-03-24 11:19:10 +01:00
- Improved the upgrade script
- Fix a bug: subscriptions tab is selected by default in statistics, even if the module is disabled
- Fix a bug: select all plans for slot restriction (through the dedicated button) also selects the disabled plans
- Fix a bug: recurring availabilities are not restricted to subscribers
- Fix a bug: accounting exports may ignore some invoices for the first and last days
- Fix a bug: accounting export caching is not working
- Fix a bug: unable to run the setup script if sudoers belong to another group than sudo
2021-03-10 14:46:03 +01:00
- Fix a security issue: updated elliptic to 6.5.4 to fix [CVE-2020-28498](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28498)
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/nginx-packs-directive.sh | bash`
- [TODO DEPLOY] `rails db:seed`
2021-03-22 13:13:51 +01:00
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2021-03-09 09:25:27 +01:00
2021-03-08 17:43:52 +01:00
## v4.7.5 2021 March 08
- Fix a bug: unable to compile the assets during the upgrade, if the env file has some whitespaces around the equal sign
2021-03-08 15:40:26 +01:00
## v4.7.4 2021 March 08
- Show remaining training credits in the dashboard
- Allow writing short rich descriptions for each subscription plan
- Allow inserting hyperlinks in customized info messages
- Use the primary color to display plans' price in the public view
- Do not close login modal when clicking on the backdrop
- Improved scripts for mounting volumes
- Increased verbosity of upgrade script
- Fix a bug: mounting the payment-schedules volume in the docker-compose file results in an invalid file
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2021-03-03 09:54:54 +01:00
## v4.7.3 2021 March 03
- Improved the setup script
- Fix a bug: unable to install a new instance with an external reverse proxy
- Fix a bug: do not display "powered by disqus" if Disqus is disabled
- Fix a bug: do not send notifications each hour for payment schedules deadlines
2021-03-03 09:12:05 +01:00
- Fix a security issue: updated rails to 5.2.4.5 to fix [CVE-2021-22880](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22880)
- [TODO DEPLOY] -> (only dev) `bundle install`
2021-03-01 12:21:41 +01:00
## v4.7.2 2021 March 1st
2021-03-01 12:18:20 +01:00
- Updated yq to v4
- Fix a bug: unable to upgrade using the easy upgrade command
2021-02-24 11:03:36 +01:00
- Fix a security issue: possible SQL injection when dropping the database
- Fix a security issue: restrict allowed keys when creating/updating credits
2021-03-03 15:28:56 +01:00
- [TODO DEPLOY] `rails fablab:openlab:bulk_export` if you have enabled OpenLab (projects sharing)
2021-02-24 11:03:36 +01:00
2021-02-24 08:59:29 +01:00
## v4.7.1 2021 February 24
2021-02-24 08:56:37 +01:00
- Fix a security issue: updated axios to 0.21.1 to fix [CVE-2020-28168](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28168)
2021-02-23 14:42:48 +01:00
## v4.7.0 2021 February 23
2021-02-10 11:52:32 +01:00
- Payment schedules on subscriptions
2020-10-29 16:00:46 +01:00
- Refactored theme builder to use scss files
2021-02-09 12:09:26 +01:00
- Updated stripe gem to 5.29.0
2020-12-29 13:13:48 +01:00
- Architecture documentation
- Improved coupon creation/deletion workflow
2020-12-30 15:37:15 +01:00
- Default texts for the login modal
2021-02-22 09:42:51 +01:00
- Updated caniuse to 1.0.30001191
2021-02-23 12:20:38 +01:00
- Fix a bug: updated ffi to 1.14.2 to fix a segmentation fault with ruby 2.6.6
- Fix a bug: unable to access embedded plan views
- Fix a bug: warning message overflow in credit wallet modal
- Fix a bug: when using a cash coupon, the amount shown in the statistics is invalid
- Fix a bug: unable to create a coupon on stripe
2021-02-22 09:42:51 +01:00
- Fix a bug: no notifications for refunds generated on wallet credit
2021-02-23 09:27:36 +01:00
- Fix a bug: in staging environments, emails are not sent
2021-06-30 17:16:41 +02:00
- Fix a bug: unable to configure the app to use a german locale
2021-02-23 12:20:38 +01:00
- Fix a security issue: updated carrierwave to 2.1.1 to fix [CVE-2021-21305](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21305)
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
- [TODO DEPLOY] `rails fablab:stripe:set_product_id`
2021-02-23 14:42:48 +01:00
- [TODO DEPLOY] `rails fablab:stripe:sync_coupons`
2020-11-16 16:50:31 +01:00
- [TODO DEPLOY] `rails fablab:setup:add_schedule_reference`
- [TODO DEPLOY] `rails db:seed`
- [TODO DEPLOY] add the `INTL_LOCALE` environment variable (see [doc/environment.md](doc/environment.md#INTL_LOCALE) for configuration details)
- [TODO DEPLOY] add the `INTL_CURRENCY` environment variable (see [doc/environment.md](doc/environment.md#INTL_CURRENCY) for configuration details)
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/mount-payment-schedules.sh | bash`
2021-02-23 12:20:38 +01:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2021-02-02 16:49:55 +01:00
## v4.6.6 2021 February 02
- Full German translation (thanks to [@korrupt](https://crowdin.com/profile/korrupt))
- OpenAPI endpoints to create/update/show/delete machines
- Updated environment documentation
- Removed useless locales' configuration files
- OpenAPI's endpoints will now return more detailed error messages when something wrong occurs
- Fix a bug: when an event is modified, the member's reservations does not reflect the new event date
2021-02-01 11:39:32 +01:00
- Fix a security issue: updated ini to 1.3.8 to fix [CVE-2020-7788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7788)
2021-02-02 17:01:41 +01:00
- Fix a security issue: updated nokogiri to 1.11.1 to fix [CVE-2020-26247](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26247)
2021-02-01 11:47:47 +01:00
- Updated caxlsx to 3.0.4, and the dependencies of caxlsx_rail
2021-02-02 16:49:55 +01:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2020-12-07 10:20:45 +01:00
## v4.6.5 2020 December 07
- Fix a bug: unable to run the upgrade script with docker-compose >= v1.19
2020-11-25 09:38:27 +01:00
2020-12-01 12:41:28 +01:00
## v4.6.4 2020 December 1st
- Full Portuguese translation (thanks to [@gusabr](https://crowdin.com/profile/gusabr))
- Updated the version of ruby to 2.6.6
- Add the configuration of the postgreSQL username in environment variables
- Fix a bug: unable to build homepage custom stylesheet
2020-11-25 11:39:53 +01:00
- Fix some security issues: [CVE-2020-10663](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10663) and [CVE-2020-10933](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10933)
2020-11-25 09:38:27 +01:00
- [TODO DEPLOY] add `POSTGRES_USERNAME=postgres` to the environment variables (see [doc/environment.md](doc/environment.md#POSTGRES_USERNAME) for configuration details)
2020-10-28 13:38:49 +01:00
## v4.6.3 2020 October 28
2020-10-27 09:58:08 +01:00
- Enabled Typescript
- Enabled Hot module replacement
- Enlarged privacy policy display and edition zones
- Removed fab-manager email address from the seeds
- Initialize new plans with default prices for machines & spaces
- Display a message when no plans are available
- Fix a bug: in the settings' area, boolean switches are always shown as false
- Fix a bug: public cards presenting the plans in the public area, have bogus style
- Fix a bug: theme primary color is ignored on links
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2020-10-23 16:06:37 +02:00
## v4.6.2 2020 October 23
- Add intermediate step version for upgrades: v4.4.6. This will prevent issues with FootprintDebug if a regeneration is needed
- Check postgreSQL status before compiling assets
- Improved the documentation about the upgrade process
- Fix a bug: unable to set libraries locales to their default values (en-us)
- Fix a bug: unable to display details about a closed period
- Fix a bug: members cannot view available trainings slots
2020-10-23 16:06:37 +02:00
- Fix a bug: availabilities not created at the same DST than the target date may be shifted in time
2020-10-21 15:42:54 +02:00
## v4.6.1 2020 October 21
- Reduced downtime during upgrades
- Architecture changes to allow including React.js components into the application
- Allow running upgrade scripts from dev ranch
- Fix a bug: script mount-webpack.sh was not updating the docker-compose.yml file
- Fix a security issue: updated resolve-url-loader to 3.1.2 to fix [CVE-2020-15256](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15256)
- Fix a security issue: updated selfsigned to 1.10.8 to fix [CVE-2020-7720](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7720)
2020-10-20 16:44:35 +02:00
## v4.6.0 2020 October 20
2020-10-05 17:55:12 +02:00
- Migrated the assets build pipeline from Sprockets to Webpack
2020-10-06 14:18:35 +02:00
- Version check during the upgrade
2020-10-05 17:55:12 +02:00
- Fix a bug: changing the date of a training session does not prevent the selection of a different type of training
- Fix a bug: unable to change the date formats using the setup script
2020-10-20 10:19:18 +02:00
- Fix a bug: missing translation for projets drafts in public profile
- Fix a bug: email notification after reservation update have wrong previous date (#234)
- Fix a bug: unable to rename a group containing users
- Updated contribution guidelines
2020-10-05 17:55:12 +02:00
- Updated summernote to 0.8.18
- Updated angular-summernote to 0.8.1
- Updated FontAwesome from v4 to v5
- Updated jquery-minicolors to 2.3.5
- Updated angular-bootstrap-switch to 0.5.2
- Updated bootstrap-switch to 3.4.0
- Updated fullCalendar to 3.10.2
2020-10-06 12:29:22 +02:00
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/mount-webpack.sh | bash`
2020-10-05 17:55:12 +02:00
2020-09-29 12:15:30 +02:00
## v4.5.9 2020 September 29
- Ability to configure until when the events are shown on the home page
- Alert before cancelling a reservation that credits will be lost
- Improved documentation about upgrade process
- Fix a bug: managers cannot see passed events
- [TODO DEPLOY] `rails db:seed`
2020-09-29 12:15:30 +02:00
## v4.5.8 2020 September 28
2020-09-28 09:55:41 +02:00
- Fix a bug: unable to run the elastic-upgrade script
- Fix a security issue: updated rails to 5.2.4.4 to fix [CVE-2020-15169](https://nvd.nist.gov/vuln/detail/CVE-2020-15169)
2020-09-23 15:47:10 +02:00
## v4.5.7 2020 September 23
- Fix a bug: unable to run tests suite with run-tests.sh
- Fix a bug: unable to search for projects (#230)
- Fix a bug: wallet tab is not shown in members dashboard
- Fix a bug: slots duration is not shown when looking at a new availability
- Fix a bug: user's manual URL is not up-to-date
- Fix a bug: unable to create a subscription plan for only one group
- Fix a bug: removed unexpected character in coupon form
- Updated coveralls gem to a supported version
2020-09-01 09:10:57 +02:00
## v4.5.6 2020 September 1st
- Fix a bug: unable to pay by card for events reservation
- Fix a bug: unable to run task find_incoherent_invoices
2020-08-26 10:16:02 +02:00
## v4.5.5 2020 August 26
2020-08-24 16:50:13 +02:00
- Improved portuguese translations
- Fix a bug: unable to search for projects on OpenLab
- Fix a bug: erroneous translations in english (#226)
2020-07-29 15:17:09 +02:00
## v4.5.4 2020 July 29
2020-07-21 18:04:20 +02:00
- Display an asterisk on the phone input field, in the admin creation form, if the phone is configured as required
2020-07-21 19:25:21 +02:00
- Keep the history of footprints data for verification purposes
- Enhanced rake task to create fixtures for test cases
2020-07-22 13:02:21 +02:00
- Automated tests for exports
2020-07-21 17:25:19 +02:00
- Fix a bug: unable to export reservations
2020-07-22 12:29:54 +02:00
- Fix a bug: unable to export subscriptions
- Fix a bug: unable to receive mails in development
- Fix a security issue: updated json to 2.3.1 to fix [CVE-2020-10663](https://nvd.nist.gov/vuln/detail/CVE-2020-10663)
2020-07-29 15:17:09 +02:00
- [TODO DEPLOY] `rails db:migrate`
2020-07-21 19:25:21 +02:00
- [TODO DEPLOY] `rails fablab:maintenance:save_footprint_data`
2020-07-21 17:25:19 +02:00
2020-07-21 09:52:03 +02:00
## v4.5.3 2020 July 21
- Documentation of the easy upgrade procedure
2020-07-13 17:27:18 +02:00
- Fix a bug: unable to seed the database
2020-07-21 09:13:20 +02:00
- Fix a security issue: updated lodash to 4.17.19 to fix [lodash#4744](https://github.com/lodash/lodash/issues/4744)
2020-07-01 10:54:57 +02:00
## v4.5.2 2020 July 1st
- Fix a bug: unable to set stripe public key in production
- Fix a bug: health API is broken if ElasticSearch is not present
- Fix a bug: unable to sync members with stripe
- Fix a bug: version check is not working
- Fix a bug: enabling auth_provider from the tests happens twice in coverall context
- [TODO DEPLOY] `rails fablab:maintenance:clean_workers`
## v4.5.1 2020 July 1st
- Ability to run the upgrade without interactions
- Fix a bug: Unable to access the invoices section if no stripe key was set or incorrect
- Fix a bug: task env_to_db overrides the values set in the UI, even if the corresponding variable was not defined in the env file
2020-06-30 16:24:00 +02:00
## v4.5.0 2020 June 30
- Search in the projets directly from PostgreSQL
2020-06-15 13:22:11 +02:00
- Ability to configure most of the settings from the admin's UI
- Ability to lock some settings from the environment
- Improved display of the icons alerting about an outdated version
2020-06-03 10:21:13 +02:00
- Improved mime-type checking (back & front)
- Dependency to ElasticSearch is now optional, if you disable the statistics
2020-06-03 10:21:13 +02:00
- Updated CarrierWave to 2.1.0
2020-06-09 16:23:07 +02:00
- Updated redis to v6, with alpine image
- Updated Sidekiq to 6.0.7
- Updated documentation
2020-06-30 16:11:12 +02:00
- Beta preview of the upgrade script
- Fix a bug: managers do not see the name of the user who reserved a slot
2020-06-15 17:46:35 +02:00
- Fix a bug: OpenAPI documentation is not available
- Fix a bug: summary of create training availability shows incorrect alert about slot splitting
- Fix a bug: invalid URL redirection for SSO login
2020-06-16 11:14:17 +02:00
- Fix a security issue: updated websocket-extensions to 0.1.5 to fix [CVE-2020-7663](https://nvd.nist.gov/vuln/detail/CVE-2020-7663)
2020-06-24 09:55:10 +02:00
- Fix a security issue: updated angular.js to 1.8 to fix [CVE-2020-7676](https://nvd.nist.gov/vuln/detail/CVE-2020-7676)
2020-06-29 08:03:59 +02:00
- Fix a security issue: updated rack to 2.2.3 to fix [CVE-2020-8184](https://nvd.nist.gov/vuln/detail/CVE-2020-8184)
- [TODO DEPLOY] add the `POSTGRESQL_LANGUAGE_ANALYZER` environment variable (see [doc/environment.md](doc/environment.md#POSTGRESQL_LANGUAGE_ANALYZER) for configuration details)
- [TODO DEPLOY] `rails fablab:setup:env_to_db`
- [TODO DEPLOY] `rails db:seed`
2020-06-09 16:23:07 +02:00
- [TODO DEPLOY] `\curl -sSL https://raw.githubusercontent.com/sleede/fab-manager/master/scripts/redis-upgrade.sh | bash`
2020-06-29 12:00:01 +02:00
- [TODO DEPLOY] -> (only dev) upgrade redis to v6, you may be able to use the script above, depending on your installation
2020-06-01 09:51:13 +02:00
## v4.4.6 2020 June 01
2020-06-01 09:23:42 +02:00
- Fix a security issue: updated kaminari from 1.2.0 to 1.2.1 to fix [CVE-2020-11082](https://nvd.nist.gov/vuln/detail/CVE-2020-11082)
2020-05-27 10:17:16 +02:00
## v4.4.5 2020 May 27
2020-05-27 09:43:50 +02:00
- Fix a security issue: updated rails to 5.2.4.2 to fix [CVE-2020-8162](https://nvd.nist.gov/vuln/detail/CVE-2020-8162), [CVE-2020-8165](https://nvd.nist.gov/vuln/detail/CVE-2020-8165) and [CVE-2020-8166](https://nvd.nist.gov/vuln/detail/CVE-2020-8166)
2020-05-25 12:28:31 +02:00
## v4.4.4 2020 May 25
2020-05-25 11:48:25 +02:00
- Fix a security issue: updated puma from 3.12.4 to 3.12.6 to fix [CVE-2020-11077](https://nvd.nist.gov/vuln/detail/CVE-2020-11077) and [CVE-2020-11076](https://nvd.nist.gov/vuln/detail/CVE-2020-11076)
2020-05-25 11:37:44 +02:00
2020-05-25 11:23:39 +02:00
## v4.4.3 2020 May 25
- Fix a bug: recurrent availabilities do not keep the custom duration
- [TODO DEPLOY] `rails fablab:fix:availabilities_duration`
2020-05-19 13:51:59 +02:00
## v4.4.2 2020 May 19
2020-05-18 11:23:20 +02:00
- Upgraded to ruby 2.6.5
- Prevent admins from leaving their dedicated group
- Faraday was downgraded from 1.0 to 0.17 for better compatibility with elasticsearch-ruby 5 (#205 #196)
- Added [an option](doc/environment.md#ALLOW_INSECURE_HTTP) to allow usage in production without HTTPS
- Now using node.js instead of therubyracer for building javascript assets
- Removed dependency to has_secure_token to fix warnings about already initialized constant
- Fix a bug: when an admin logs on the subscription page, his view is broken
- Fix a bug: admin's members list shows the same members multiple times
- Fix a bug: when a new account is created through the sign-up modal, the role is not reported in the StatisticProfile (#196)
- Fix a bug: openAPI clients interface has a bugged behavior when creating/editing a client
- Fix a security issue: updated actionpack-page_caching from 1.1.0 to 1.2.2 to fix [CVE-2020-8159](https://nvd.nist.gov/vuln/detail/CVE-2020-8159)
- [TODO DEPLOY] `rails fablab:fix:role_in_statistic_profile`
- [TODO DEPLOY] `rails fablab:es:generate_stats[2019-06-13]` (run after the command above!)
2020-05-19 13:51:59 +02:00
- [TODO DEPLOY] -> (only dev) `rvm use && bundle install`
2020-05-12 20:31:53 +02:00
## v4.4.1 2020 May 12
- Prevent VersionCheckWorker from polluting the sidekiq stack in development
- Fix a bug: the subscription page is not available
- Fix a bug: users promoted to the administrator role are not in the admin group
2020-05-12 15:32:34 +02:00
- Fix a bug: menu separators are not visible
- [TODO DEPLOY] `rails fablab:maintenance:rebuild_stylesheet`
2020-05-12 11:13:47 +02:00
## v4.4.0 2020 May 12
- Manager: a new role between the member and the administrator
- The invoices list displays the operator in case of offline payment
2020-04-21 16:47:35 +02:00
- Interface to manage partners
- Ability to define, per availability, a custom duration for the reservation slots
- Ability to promote a user to a higher role (member > manager > admin)
- Ask for confirmation before booking a slot for a member without the required tag
- Corrected the documentation about BOOK_SLOT_AT_SAME_TIME
- Auto-adjusts text colors based on the selected theme colors
- Check password length during installation
- Fix a bug: accounting periods totals are wrong for periods closed after 2019-08-01
- Fix a bug: unable to change group if the previous was deactivated
- Fix a bug: unable to create events or trainings that are not multiples of SLOT_DURATION
- Fix a bug: unable to delete an unreserved event
- Fix a bug: "Free entry" label for events without reservation
- Fix a bug: updating a setting without any changes triggers an error
- Fix a bug: plan edition does not show the associated group
- Fix a bug: subscription page shows the groups without any active plans
- Fix a bug: cart price inconsistently updated after a subscription
- Fix a bug: background image of the profile is not shown and wrong menu hover color
- Fix a bug: do not show disabled groups and plans during availability creation
- Fix a security issue: updated jquery to fix [CVE-2020-11023](https://nvd.nist.gov/vuln/detail/CVE-2020-11023)
- [TODO DEPLOY] `rails db:migrate`
2020-04-14 16:33:54 +02:00
## v4.3.4 2020 April 14
- Improved version check
- Improved setup script for installations without nginx
- Changed some default values for new installations
- Database is now compatible with Fab-manager v1, to allow upgrades
2020-04-06 15:53:20 +02:00
- Updated documentation
- Changed In-Context pseudo-language to Zulu instead of Acholi
- Allow removing contacts from the about page
- Maintenance task to migrate notifications for Fab-manager v1
- Maintenance task to display the current version
- Now using MailCatcher with docker
- Fix a bug: installation without nginx does not remove the service from the docker-compose file
2020-04-06 16:59:28 +02:00
- Fix a bug: default twitter feed is invalid
- Fix a bug: default nginx configuration does not allows secure cookies
- Fix a bug: in-context translation is loading invalid locale for MessageFormat
- Fix a bug: invalid link to upgrade procedure
2020-04-07 15:19:41 +02:00
- Fix a bug: unable to access health endpoint
- Fix a bug: migration 20160704095606 cannot run due to GDPR refactoring
- Fix a bug: in-context translation is not working
- [TODO DEPLOY] -> (only dev) add mailcatcher to your [docker-compose.yml](docker/development/docker-compose.yml)
2020-04-01 18:05:05 +02:00
## v4.3.3 2020 April 1st
- Docker build will no longer embed development dependencies
- Updated instructions to set up a development environment
2020-03-11 14:45:58 +01:00
- Updated translations
- Removed `MESSAGEFORMAT_LOCALE` as it is now handled by make-plural
2020-03-31 16:12:32 +02:00
- Updated rails framework to v5.2
2020-03-23 15:57:40 +01:00
- Updated angular-translate
- Updated eslint
- Updated compass-rails & compass-core
2020-03-24 11:23:56 +01:00
- Renamed production documentation
2020-03-24 18:17:26 +01:00
- Syntax improvements in scss files
- Fix a bug: crediting a wallet w/ refund invoice prevent statistics generation (#196)
- Fix a bug: no statistics for subscriptions (#196)
- Fix a bug: invalid translation keys in closing accounting period interface
- Fix a bug: since PostgreSQL release 9.6.17, the new installations will fail to start complaining for missing password (#194)
- Fix a bug: missing translations for some error messages
- Fix a bug: invalid footprints in invoices fixtures
- Fix a bug: unable to export accounting data to ACD
- Fix a bug: report error on invalid encoding in members import
- Fix a bug: missing translation for subscriptions statistics > duration
- Fix a security issue: updated mkdirp to fix [CVE-2020-7598](https://nvd.nist.gov/vuln/detail/CVE-2020-7598)
2020-03-23 15:24:30 +01:00
- Fix a security issue: updated acorn to fix [CVE-2020-7598](https://nvd.nist.gov/vuln/detail/CVE-2020-7598)
2020-03-31 16:12:32 +02:00
- Fix a security issue: updated actionview to fix [CVE-2020-5267](https://nvd.nist.gov/vuln/detail/CVE-2020-5267)
- [TODO DEPLOY] `rails fablab:fix:avoirs_wallet_transaction`
- [TODO DEPLOY] `rails fablab:es:generate_stats[289]` only if you had missing statistics since some date ago (here 289 days)
2020-03-11 14:45:58 +01:00
2020-03-11 12:37:55 +01:00
## v4.3.2 2020 March 11
2020-03-09 12:12:42 +01:00
- Secure the session cookie
- Improved contextual help with a modal dialog
2020-03-09 15:36:44 +01:00
- Updated translations
2020-03-09 12:12:42 +01:00
- Refactored translations to help merging Crowdin PR
2020-03-11 12:24:53 +01:00
- Updated translation documentation
- Fix a bug: unable to create new availabilities if SLOT_DURATION is not defined
2020-03-09 12:12:42 +01:00
2020-03-04 17:58:25 +01:00
## v4.3.1 2020 March 04
2020-03-04 17:23:55 +01:00
- Updated user's manual for v4.3 (fr)
- Display user's manual when asking for help, if no tour is available
- Change style and pluralize the text of the slot division alert in new availability assistant
- Fix a bug: in feature tours, next and previous arrows may be broken on some systems
- Fix a bug: in the user's menu, two links to the personal wallet
- Fix a bug: spaces item is not at the correct position in the admin navigation menu
2020-03-04 12:24:01 +01:00
## v4.3.0 2020 March 04
2020-02-11 11:46:40 +01:00
- Ability to configure reservation slot restricted for plan subscribers
2020-02-11 10:48:29 +01:00
- Ability to configure the policy (allow or prevent) for members booking a machine/formation/event slot, if they already have a reservation the same day at the same time
- Ability to create and delete periodic calendar availabilities (recurrence)
2020-01-22 13:27:16 +01:00
- Ability to fully customize the home page
2020-01-06 17:11:38 +01:00
- Automated setup assistant
2019-10-29 09:59:21 +01:00
- An administrator can delete a member
2020-01-07 16:06:13 +01:00
- An event reservation can be cancelled, if reservation cancellation is enabled
2020-02-11 15:46:00 +01:00
- Delete multiple recurring events at one time
- Edit multiple recurring events at one time
2019-12-03 15:50:08 +01:00
- Ability to import iCalendar agendas in the public calendar, through URLs to ICS files (RFC 5545)
- Ability to configure the duration of a reservation slot, using `SLOT_DURATION`. Previously, only 60 minutes slots were allowed
2020-01-07 10:34:12 +01:00
- Ability to force the email validation when a new user registers. This is optionally configured with `USER_CONFIRMATION_NEEDED_TO_SIGN_IN`
2019-12-03 15:50:08 +01:00
- Display the scheduled events in the admin calendar, depending on `EVENTS_IN_CALENDAR` configuration.
- Display indications on required fields in new administrator form
2020-01-21 11:45:49 +01:00
- Administrators can to book machine/space/training slots, until 1 month in the past
2020-01-07 10:46:12 +01:00
- Filter members by non-validated emails or by inactive for 3 years
- Ability to customize the title of the link to the about page
- Feature tours for administrators that provides contextual help
2020-01-14 18:09:42 +01:00
- Automatic version check with security alerts
2020-01-15 10:52:18 +01:00
- Public endpoint to check the system health
- Configuration of phone number in members registration forms: can be required or optional, depending on `PHONE_REQUIRED` configuration
- Improved user experience in defining slots in the calendar management
- Improved notification email to the member when a rolling subscription is taken
- Notify all admins on the creation of a refund invoice
2020-03-02 09:13:00 +01:00
- Helper links between admin sections of the scheduling process
- Calendar management: improved legend display and visual behavior
2020-03-02 09:13:00 +01:00
- Reorganized left menu
- Create machine availabilities: select all/none in a click
2019-12-10 12:16:26 +01:00
- Prevent event reservation in the past [Taiga#127]
2020-01-15 13:01:43 +01:00
- Removed the need of twitter API keys to display the last tweet on the home page
- Various helper links to help newcomers creating their first items
2019-10-23 10:20:07 +02:00
- Handle Ctrl^C in upgrade scripts
- Updated moment-timezone
- Updated angular-ui-bootstrap from v0.14 to v1.2
2020-02-19 16:22:02 +01:00
- Updated caxlsx to 3.0.1 and rails_axlsx to rails_caxlsx
- Updated sidekiq to 5.2.8
2020-01-15 10:52:18 +01:00
- Option to disable developers analytics
- Added the a "cron" tab in Sidekiq web-ui to watch scheduled tasks
2020-01-06 17:11:38 +01:00
- Integration of Crowdin "in-context" translation management system
- Added freeCAD files as default allowed extensions
2019-12-03 16:32:59 +01:00
- Rake task to sync local users with Stripe
2019-12-16 10:39:48 +01:00
- Unified translations syntax to use ICU MessageFormat
2019-12-18 15:57:13 +01:00
- Refactored front-end translations keys with unified paths
- Updated and refactored README and documentations
2020-03-02 08:59:43 +01:00
- Harmonized Fab-manager typography and case
- Updated seeds file
- Fix a bug: unable to remove the picture from a training
2019-12-03 15:50:08 +01:00
- Fix a bug: no alerts on errors during admin creation
2019-12-02 12:35:01 +01:00
- Fix a bug: replaces all Time.now by DateTime.current to prevent time zones issues [Taiga#134]
2019-12-24 15:19:29 +01:00
- Fix a bug: logs are not printed in staging environment
2020-03-02 09:13:00 +01:00
- Fix a bug: theme colors must be selected twice before the changes became effective
- Fix a bug: datepicker does not work in profile completion screen
- Fix a bug: unable to select a group in profile completion screen
- Fix a bug: in some cases, bogus admin notification on profile completed
- Fix a bug: with Firefox browser, the texts in date inputs are shifted to the bottom
2020-03-02 08:53:44 +01:00
- Fix a bug: sometimes when browsing the invoices section, the translations are missing
- Fix a bug: first day of week is ignored in agendas (#169)
- Fix a bug: statistics page is bogus before the creation of the first plan
- Fix a bug: default invoice logo is broken and prevent invoice generation
2020-03-02 08:53:44 +01:00
- Fix a security issue: updated loofah to fix [CVE-2019-15587](https://nvd.nist.gov/vuln/detail/CVE-2019-15587)
- Fix a security issue: updated angular to 1.7.9 to fix [CVE-2019-10768](https://nvd.nist.gov/vuln/detail/CVE-2019-10768)
2020-03-04 12:12:44 +01:00
- Fix a security issue: updated puma to 3.12.4 to fix [GHSA-7xx3-m584-x994](https://github.com/advisories/GHSA-7xx3-m584-x994), [CVE-2020-5247](https://nvd.nist.gov/vuln/detail/CVE-2020-5247) and [CVE-2019-16254](https://nvd.nist.gov/vuln/detail/CVE-2020-5247)
2020-03-02 08:53:44 +01:00
- Fix a security issue: updated nokogiri to 1.10.8 to fix [CVE-2020-7595](https://nvd.nist.gov/vuln/detail/CVE-2020-7595)
- Fix a security issue: updated rack to 1.6.12 to fix [CVE-2019-16782](https://nvd.nist.gov/vuln/detail/CVE-2019-16782)
2019-10-30 15:39:30 +01:00
- [TODO DEPLOY] add the `SLOT_DURATION` environment variable (see [doc/environment.md](doc/environment.md#SLOT_DURATION) for configuration details)
- [TODO DEPLOY] add the `PHONE_REQUIRED` environment variable (see [doc/environment.md](doc/environment.md#PHONE_REQUIRED) for configuration details)
- [TODO DEPLOY] add the `EVENTS_IN_CALENDAR` environment variable (see [doc/environment.md](doc/environment.md#EVENTS_IN_CALENDAR) for configuration details)
2020-01-07 10:34:12 +01:00
- [TODO DEPLOY] add the `USER_CONFIRMATION_NEEDED_TO_SIGN_IN` environment variable (see [doc/environment.md](doc/environment.md#USER_CONFIRMATION_NEEDED_TO_SIGN_IN) for configuration details)
- [TODO DEPLOY] add the `BOOK_SLOT_AT_SAME_TIME` environment variable (see [doc/environment.md](doc/environment.md#BOOK_SLOT_AT_SAME_TIME) for configuration details)
2019-11-25 11:26:35 +01:00
- [TODO DEPLOY] -> (only dev) `bundle install && yarn install`
2020-01-15 11:40:08 +01:00
- [TODO DEPLOY] `rake db:migrate && rake db:seed`
2020-01-27 17:10:29 +01:00
- [TODO DEPLOY] `rake fablab:fix:name_stylesheet`
2019-10-30 16:36:30 +01:00
2019-10-30 15:58:50 +01:00
## v4.2.4 2019 October 30
2019-10-30 15:44:00 +01:00
- Fix a bug: in some cases, the invoices were not generated after deploying v4.2.0+. This can occurs if VAT was changed/enabled during the application life (#156)
2019-10-30 15:45:54 +01:00
- [TODO DEPLOY] `rake fablab:maintenance:regenerate_invoices[2019,10]` only if you had download issues with your last invoices
2019-10-23 10:20:07 +02:00
2019-10-22 14:46:18 +02:00
## v4.2.3 2019 October 22
- Ability to set the default view in project gallery: openLab or local
- Fix a bug: admins can't edit members projects
- [TODO DEPLOY] add the `OPENLAB_DEFAULT` environment variable (see [doc/environment.md](doc/environment.md#OPENLAB_DEFAULT) for configuration details)
2019-10-22 12:51:56 +02:00
## v4.2.2 2019 October 22
- Fix a bug: PostgreSQL upgrade script won't run on some systems
2019-10-21 16:13:56 +02:00
## v4.2.1 2019 October 21
- Updated axlsx gem to caxlsx 3.0
2019-10-21 16:13:56 +02:00
- Updated axlsx_rails to 0.6.0
- Fix a security issue: updated rubyzip to 1.3.0 to fix [CVE-2019-16892](https://nvd.nist.gov/vuln/detail/CVE-2019-16892)
2019-10-21 15:30:39 +02:00
## v4.2.0 2019 October 21
2019-10-09 09:52:58 +02:00
- Upgraded PostgreSQL from 9.4 to 9.6
- Optional reCaptcha checkbox in sign-up form
- Ability to configure and export the accounting data to the ACD accounting software
- Compute the VAT per item in each invoices, instead of globally
2019-09-19 16:26:32 +02:00
- Use Alpine Linux to build the Docker image (#147)
2019-10-02 16:08:25 +02:00
- Updated omniauth & omniauth-oauth2 gems
- Ability to set project's CAO attachement maximum upload size
- Ability to bulk-import members from a CSV file
- Ability to disable invoices generation and interfaces
- Added a known issue to the README (#152)
- Ability to fully rebuild the projets index in ElasticSearch with `rake fablab:es:build_projects_index`
- Ability to configure SMTP connection to use SMTP/TLS
2019-10-21 11:55:58 +02:00
- Updated user's manual for v4.2 (fr)
- Fix a bug: invoices with total = 0, are marked as paid on site even if paid by card
- Fix a bug: after disabling a group, its associated plans are hidden from the interface
- Fix a bug: in case of unexpected server error during stripe payment process, the confirm button is not unlocked
- Fix a bug: create a plan does not set its name
- Fix a bug: unable to dissociate the last machine from a formation
- Fix a bug: in profile_complete form, the user's group is not selected by default
2019-10-21 16:13:56 +02:00
- Fix a bug: missing asterisks on some required fields in profile_complete form
- Fix a bug: public calendar won't show anything if the current date range include a reserved space availability (#151)
- Fix a bug: invoices list is not shown by default in "manage invoices" section
- Fix a bug: unable to run rake `fablab:es:*` tasks due to an issue with gem faraday 0.16.x (was updated to 0.17)
- Fix a bug: unauthorized user can see the edit project form
2019-10-21 16:13:56 +02:00
- Fix a bug: do not display each days in invoices for multiple days event reservation
2019-10-02 16:08:25 +02:00
- Fix a security issue: fixed [CVE-2015-9284](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9284)
- [TODO DEPLOY] -> (only dev) `yarn install` and `bundle install`
2019-10-02 16:10:54 +02:00
- [TODO DEPLOY] -> (only dev) configure `DEFAULT_HOST: 'localhost:5000'` and `DEFAULT_PROTOCOL: http` in [application.yml](config/application.yml.default)
2019-10-22 12:51:56 +02:00
- [TODO DEPLOY] `rake db:migrate`
- [TODO DEPLOY] add `- ${PWD}/imports:/usr/src/app/imports` in the volumes list of your fabmanager service in [docker-compose.yml](docker/docker-compose.yml)
2019-10-22 12:51:56 +02:00
- [TODO DEPLOY] add the `RECAPTCHA_SITE_KEY` and `RECAPTCHA_SECRET_KEY` environment variables (see [doc/environment.md](doc/environment.md#RECAPTCHA_SITE_KEY) for configuration details)
- [TODO DEPLOY] add the `MAX_CAO_SIZE` environment variable (see [doc/environment.md](doc/environment.md#MAX_CAO_SIZE) for configuration details)
- [TODO DEPLOY] add the `MAX_IMPORT_SIZE` environment variable (see [doc/environment.md](doc/environment.md#MAX_IMPORT_SIZE) for configuration details)
- [TODO DEPLOY] add the `FABLAB_WITHOUT_INVOICES` environment variable (see [doc/environment.md](doc/environment.md#FABLAB_WITHOUT_INVOICES) for configuration details)
- [TODO DEPLOY] add the `SMTP_TLS` environment variable (see [doc/environment.md](doc/environment.md#SMTP_TLS) for configuration details)
2020-02-12 18:15:44 +01:00
- [TODO DEPLOY] add the `FABLAB_WITHOUT_WALLET` environment variable (see [doc/environment.md](doc/environment.md#FABLAB_WITHOUT_WALLET) for configuration details)
2019-10-22 12:51:56 +02:00
- [TODO DEPLOY] **IMPORTANT** Please read [postgres_upgrade.md](doc/postgres_upgrade.md) for instructions on upgrading PostgreSQL.
2019-08-01 13:07:05 +02:00
2019-10-21 15:30:39 +02:00
## v4.1.1 2019 September 20
2019-09-20 15:52:16 +02:00
- Fix a bug: api/reservations#index was using user_id instead of statistic_profile_id
- Fix a bug: event_service#date_range method, test on all_day was never truthy
- Fix a bug: sidekiq 5 does not have delay_for method anymore, uses perform_in instead
2019-09-20 15:52:16 +02:00
2019-09-12 12:37:02 +02:00
## v4.1.0 2019 September 12
2019-09-12 11:55:53 +02:00
- Handling the Strong-Customer Authentication (SCA) for online payments
- Ability to disable online payments though an environment variable
- Log changes in Invoices or InvoiceItems records for better handling of accounting certification issues
2019-09-12 12:31:15 +02:00
- Updated virtual development environment (#142)
- Upgrade dev environments from ruby 2.3.6 to 2.3.8 (#143)
2019-09-12 11:55:53 +02:00
- Upgraded the stripe API from 2015-10-16 to 2019-08-14
- Upgraded stripe-js from v2 to v3
- Fix a bug: Users with role 'member' cannot download their invoices
- Fix a bug: Wallet credit inputs does not allow to put zeros at the end of the decimal part of the amount
- Fix a bug: unable to create the first user because role member was missing
- Fix a bug: disabled groups still appears as available in sign-up modal
2019-09-12 12:31:15 +02:00
- Fix a bug: extend a current subscription for a member, does not reset his credits (#145)
- Fix a bug: once a reservation was made, the reminder of the paid price is always 0 if a coupon was used
- Fix a security issue: updated nokogiri to 1.10.4 to fix [CVE-2019-5477](https://nvd.nist.gov/vuln/detail/CVE-2019-5477)
- Fix a security issue: updated eslint-utils to 1.4.2 to fix [GHSA-3gx7-xhv7-5mx3](https://github.com/mysticatea/eslint-utils/security/advisories/GHSA-3gx7-xhv7-5mx3)
- Fix a security issue: updated devise to 4.7.1 to fix [CVE-2019-16109](https://nvd.nist.gov/vuln/detail/CVE-2019-16109)
- [TODO DEPLOY] `rake db:migrate`
- [TODO DEPLOY] add the `FABLAB_WITHOUT_ONLINE_PAYMENT` environment variable (see [doc/environment.md](doc/environment.md) for configuration details)
- [TODO DEPLOY] -> (only dev) `rvm install ruby-2.3.8 && rvm use && bundle install`
2019-08-14 15:34:12 +02:00
## v4.0.4 2019 August 14
2019-09-12 12:37:02 +02:00
2019-09-04 09:39:04 +02:00
- Fix a bug: #140 VAT rate is erroneous in invoices.
2021-07-01 16:00:20 +02:00
Note: this bug was introduced in v4.0.3 and requires (if you are on v4.0.3) to regenerate the invoices since August 1st
2019-08-14 15:34:12 +02:00
- [TODO DEPLOY] `rake fablab:maintenance:regenerate_invoices[2019,8]`
2019-08-01 12:50:14 +02:00
## v4.0.3 2019 August 01
- Fix a bug: no user can be created after the last member was deleted
2019-07-29 12:07:22 +02:00
- Fix a bug: unable to generate a refund (Avoir)
- Fix a bug: a newly generated refund is displayed as broken (unchained record) even if it is correctly chained
2019-08-01 11:31:56 +02:00
- Fix a bug: when regenerating invoices PDF, VAT history is ignored
- Fix a security issue: updated lodash to 4.17.14 to fix [CVE-2019-10744](https://github.com/lodash/lodash/pull/4336)
- Fix a security issue: updated mini_magick to 4.9.4 to fix [CVE-2019-13574](https://nvd.nist.gov/vuln/detail/CVE-2019-13574)
- Fix some security issues: updated bootstrap to 3.4.1 to fix [CVE-2019-8331](https://nvd.nist.gov/vuln/detail/CVE-2019-8331), [CVE-2019-14041](https://nvd.nist.gov/vuln/detail/CVE-2018-14041), and 3 other low severity CVE
- Fix some security issues: updated sidekiq to 5.2.7 to fix XSS and CRSF issues
- Removed dependency to jQuery UI
- Updated angular-xeditable, to remove dependency to jquery 1.11.1
2019-08-01 11:31:56 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2019-07-10 12:26:33 +02:00
## v4.0.2 2019 July 10
- Fix a bug: unable to export members list
- Fix a bug: unable to export reservations or subscriptions to excel
- Fix a bug: projects RSS feed fails to render
- Fix a bug: abuses reports are not notified to admins
- Fix a bug: SubscriptionExpireWorker cannot run due to wrong expiration column in SQL query
- Fix a bug: OpenlabWorker is crashing with message undefined method `profile' for StatisticProfile
- Prevent invalid invoice logo from crashing the InvoiceWorker
2019-06-26 12:58:53 +02:00
- Updated user's manual for v4 (fr)
- Optimized Dockerfile to speed up build time
2019-06-17 15:32:46 +02:00
## v4.0.1 2019 June 17
- Fix a bug: migration 20190523140823 may not run if an admin was deleted
- Fix a bug: cookie consent modal is not shown
- Fix a bug: prevent task migrate_pdf_invoices_folders from raising an error when run with no invoices
- Documentation about dumping the database
2019-06-17 12:34:12 +02:00
## v4.0.0 2019 June 17
- Configurable privacy policy and data protection officer
- Alert users on privacy policy update
2019-05-21 12:25:30 +02:00
- Abuses reports management panel
2019-06-03 14:26:53 +02:00
- Refactored user's profile to keep invoicing data after an user was deleted
2019-06-13 12:56:04 +02:00
- Refactored user's profile to keep statistical data after an user was deleted
- Ability to delete an user (fixes #129 and #120)
2020-02-12 18:15:44 +01:00
- Ask user acceptance before deposing analytics cookies
2019-04-18 11:35:09 +02:00
- Fix a bug: (spanish) some translations are not loaded correctly
- Fix a bug: some users may not appear in the admin's general listing
2019-05-07 15:56:23 +02:00
- Fix a bug: Availabilities export report an erroneous number of reservations for machine availabilities (#131)
- Fix a bug: close period reminder is sent before the first invoice's first anniversary
- Fix a bug: Canceled reservations are not removed from statistics (#133)
2019-04-18 11:35:09 +02:00
- Improved translations syntax according to YML specifications
- Refactored some Ruby code to match style guide
- [TODO DEPLOY] `rake fablab:fix:users_group_ids`
- [TODO DEPLOY] `rake db:migrate`
2019-06-12 14:37:05 +02:00
- [TODO DEPLOY] `rake db:seed`
2019-06-12 16:06:30 +02:00
- [TODO DEPLOY] `rake fablab:setup:migrate_pdf_invoices_folders`
- [TODO DEPLOY] `rake fablab:maintenance:delete_inactive_users` (will prompt for confirmation)
2019-06-13 11:28:55 +02:00
- [TODO DEPLOY] `rake fablab:maintenance:rebuild_stylesheet`
2019-05-27 12:50:19 +02:00
2019-05-27 12:43:26 +02:00
## v3.1.2 2019 May 27
- Fix a bug: when generating an Avoir at a previous date, the resulting checksum may be invalid
- Fix a bug: updating a setting does not chain new values
2019-05-06 16:56:21 +02:00
- Fix a security issue: updated to jquery 3.4.1 to fix [CVE-2019-11358](https://nvd.nist.gov/vuln/detail/CVE-2019-11358)
- [TODO DEPLOY] `rake fablab:setup:chain_invoices_items_records`
- [TODO DEPLOY] `rake fablab:setup:chain_invoices_records`
- [TODO DEPLOY] `rake fablab:setup:chain_history_values_records`
- [TODO DEPLOY] -> (only dev) yarn install
2019-04-08 17:06:43 +02:00
## v3.1.1 2019 April 8
- Fix a bug: when paying a reservation with wallet, the invoice footprint is not correctly updated
2019-04-08 12:40:52 +02:00
## v3.1.0 2019 April 8
2019-04-04 11:38:34 +02:00
- Asynchronously generate accounting archives
2019-04-03 16:56:47 +02:00
- Improved end-user message when closing an accounting period
- Improved date checks before closing an accounting period
2019-04-04 17:28:29 +02:00
- Paginate list of coupons
2019-04-04 18:00:19 +02:00
- Allow filtering coupons list
2020-02-26 10:19:43 +01:00
- Fix a bug: when VAT has changed during Fab-manager's lifecycle, this may not be reflected in archives
- Fix a bug: using a quote in event category's name results in angular $parse:syntax Error
2019-04-01 16:06:13 +02:00
## v3.0.1 2019 April 1st
- Insert archive generation datetime in chained.sha256
- Updated documentation and diagrams
2016-05-02 17:14:21 +02:00
2019-03-28 11:33:11 +01:00
## v3.0.0 2019 March 28
2019-03-26 15:41:45 +01:00
- (France) Compliance with Article 88 of Law No. 2015-1785 and BOI-TVA-DECLA-30-10-30-20160803 : Certification of cash systems
- Ability for an admin to view and close accounting periods
2019-03-28 12:31:08 +01:00
- Secured archives for closed accounting periods
- Securely chained invoices records with visual control of data integrity
- Notify an user if the available disk space reaches a configured threshold
- Invoices generated outside of production environment will be watermarked
- Keep track of currently logged user on each generated invoice
- Fix a bug: unable to add a file attachment to an event
- Fix a security issue: updated to devise 4.6.0 to fix [CVE-2019-5421](https://github.com/plataformatec/devise/issues/4981)
- Fix a security issue: updated Rails to 4.2.11.1 to fix [CVE-2019-5418](https://groups.google.com/forum/#!topic/rubyonrails-security/pFRKI96Sm8Q) and [CVE-2019-5419](https://groups.google.com/forum/#!topic/rubyonrails-security/GN7w9fFAQeI)
2019-03-26 15:41:45 +01:00
- Removed deprecated Capistrano deployment system
- Rebranded product from "La Casemate"
- Refactored some pieces of Ruby code, according to style guide
2019-03-26 17:23:12 +01:00
- Added asterisks on required fields in sign-up form
2019-04-08 12:33:22 +02:00
- [TODO DEPLOY] /!\ Before deploying, you must check (and eventually) correct your VAT history using the rails console. Missing rates can be added later but dates and rates (including date of activation, disabling) MUST be correct. These values are very likely wrong if your installation was made prior to 2.8.0 with VAT enabled. Other cases must be checked too.
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) if applicable, you must first downgrade bundler to v1 `gem uninstall bundler --version=2.0.1 && gem install bundler --version=1.7.3 && bundle install`
- [TODO DEPLOY] if you have changed your VAT rate in the past, add its history into database. You can use a rate of "0" to disable VAT. Eg. `rake fablab:setup:add_vat_rate[20,2017-01-01]`
2019-06-17 12:29:15 +02:00
- [TODO DEPLOY] `rake db:migrate`
2019-03-26 15:41:45 +01:00
- [TODO DEPLOY] `rake fablab:setup:set_environment_to_invoices`
- [TODO DEPLOY] `rake fablab:setup:chain_invoices_items_records`
- [TODO DEPLOY] `rake fablab:setup:chain_invoices_records`
- [TODO DEPLOY] `rake fablab:setup:chain_history_values_records`
- [TODO DEPLOY] add `DISK_SPACE_MB_ALERT` and `SUPERADMIN_EMAIL` environment variables (see [doc/environment.md](doc/environment.md) for configuration details)
2020-02-26 10:19:43 +01:00
- [TODO DEPLOY] add the `accounting` volume to the Fab-manager's image in [docker-compose.yml](docker/docker-compose.yml)
2019-03-18 16:35:03 +01:00
## v2.8.4 2019 March 18
- Limit members search to 50 results to speed up queries
- Refactored rake tasks to use namespaces and descriptions
- Fix a bug: unable to create a new oAuth 2.0 provider
- Fix a bug: application in unavailable if a SSO is active
2019-02-25 10:07:49 +01:00
- Fix a security issue: dependency bootstrap < 4.3.1 has an XSS vulnerability as described in [CVE-2019-8331](https://blog.getbootstrap.com/2019/02/13/bootstrap-4-3-1-and-3-4-1/)
- Fixed missing translations in authentication providers form
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2019-01-29 11:50:54 +01:00
## v2.8.3 2019 January 29
- Added user's manual (fr)
2019-01-22 11:24:00 +01:00
- Fix a bug: unable to run rails console
- Fix a bug: some reservation slots are not shown on the user calendars (#127)
2019-01-22 11:24:00 +01:00
2019-01-22 10:03:35 +01:00
## v2.8.2 2019 January 22
2019-01-17 09:53:28 +01:00
- Removed ability to disable invoicing for an user
2019-01-29 11:50:54 +01:00
- Improved user autocompletion when using multiple words
- Refactored API controllers
2019-01-17 09:53:28 +01:00
- Fixed a missing translation in plan form
- Fix a bug: error handling on password recovery
- Fix a bug: error handling on machine attachment upload
- Fix a bug: first day of week is ignored in statistics custom filter
2019-01-08 17:34:12 +01:00
- Fix a bug: rails DSB locale is invalid
- Fix a bug: unable to delete an admin who has changed a setting
- Fix a bug: unable to create/edit a plan of 12 months or 52 weeks
- Fix a bug: Unable to search in user autocomplete fields
- Fix a bug: Invalid translation in new partner modal
- Refactored frontend invoices translations
- Updated RailRoady 1.4.0 to 1.5.3
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2019-01-02 15:53:51 +01:00
## v2.8.1 2019 January 02
- Fix ES upgrade: when docker-compose file is using ${PWD}, the ES config volume is attached to the wrong container
- Fixed environment documentation references for external locales
2019-01-02 17:14:53 +01:00
- Fixed missing translations (EN & ES) and improved others (ES)
- Fix a bug: unable to fetch projects from OpenProjects (#126)
2019-01-02 16:49:09 +01:00
- Fix a bug: unable to create or edit a plan
2018-12-27 15:02:22 +01:00
## v2.8.0 2018 December 27
2018-12-12 13:49:14 +01:00
- Refactored subscriptions to keep track of the previous ones
- Refactored settings to keep track of the previous values (notably VAT rate)
2018-12-12 13:49:14 +01:00
- Improved automated tests suite
- Added Rubocop gem to the Gemfile (ruby syntax checking)
2018-12-18 10:55:28 +01:00
- Added badges to README
2019-02-25 10:07:49 +01:00
- Fix a security issue: dependency ActiveJob < 4.2.11 has a vulnerability as described in [CVE-2018-16476](https://nvd.nist.gov/vuln/detail/CVE-2018-16476)
2018-12-12 13:49:14 +01:00
- [TODO DEPLOY] `rake db:migrate`
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2018-12-12 13:49:14 +01:00
2019-04-08 17:06:43 +02:00
## v2.7.4 2018 December 04
2018-12-04 09:38:39 +01:00
- Applied Rubocop rules to some ruby files
- Prevent running elastic-upgrade script with wrong awk version
- Fix ElasticSearch upgrade script
- Setup ElasticSearch configuration files for new installations
2018-12-03 16:15:34 +01:00
- Improved ES upgrade documentation
2019-04-08 17:06:43 +02:00
## v2.7.3 2018 December 03
2018-12-03 11:44:26 +01:00
- Updated Uglifier gem to support ES6 syntax
2019-02-13 12:59:28 +01:00
- Fix rake task `fablab:es:build_projects_index` for ElasticSearch > 1.7
2018-11-29 18:19:59 +01:00
- Fix Dockerfile: yarn was not setup correctly
2018-12-03 11:44:26 +01:00
- Fix: unable to build assets
2018-11-29 18:06:54 +01:00
2019-04-08 17:06:43 +02:00
## v2.7.2 2018 November 29
2018-11-29 16:56:16 +01:00
- Allow running the ElasticSearch upgrade script while being root
- Fix an issue with ES upgrade script, preventing reindexing in some cases
- Improved ES upgrade documentation
2019-04-08 17:06:43 +02:00
## v2.7.1 2018 November 27
2018-11-27 17:27:49 +01:00
- Updated angular.js to 1.6
- Fix a security issue: dependency jQuery < 3.0.0 has a vulnerability as described in [CVE-2015-9251](https://nvd.nist.gov/vuln/detail/CVE-2015-9251)
- Fix a security issue: dependency moment < 2.11.2 has a vulnerability as described in [CVE-2016-4055](https://nvd.nist.gov/vuln/detail/CVE-2016-4055)
- Fix a security issue: dependency moment < 2.19.3 has a vulnerability as described in [CVE-2017-18214](https://nvd.nist.gov/vuln/detail/CVE-2017-18214)
- Fix a security issue: dependency RubyZip < 1.1.2 has a vulnerability as described in [CVE-2018-1000544](https://nvd.nist.gov/vuln/detail/CVE-2018-1000544)
- Fix a security issue: dependency ffi < 1.9.24 has a vulnerability as described in [CVE-2018-1000201](https://nvd.nist.gov/vuln/detail/CVE-2018-1000201)
2019-04-08 17:06:43 +02:00
## v2.7.0 2018 November 27
2018-11-27 10:14:46 +01:00
- Nom using standard [package.json](package.json) file to save application version number
2018-11-22 17:09:14 +01:00
- Now using Yarn instead of deprecated Bower as the front-end dependencies manager
2018-11-21 15:48:45 +01:00
- Migrated front-end application from CoffeeScript to ECMAScript 6 (JS)
- Integration of Eslint and Rubocop coding rules
2018-11-26 09:44:40 +01:00
- Fix a bug: on small screens, display of button "change group" overflows
- Fix a bug: creating a transverse plan, create one for the hidden admins group
2018-11-26 16:50:47 +01:00
- Fix a bug: on some classical docker installations, the elastic-upgrade.sh script won't run successfully
- Fix a security issue: dependency rack has a vulnerability as described in [CVE-2018-16471](https://nvd.nist.gov/vuln/detail/CVE-2018-16471)
- Fix a security issue: dependency loofah has a vulnerability as described in [CVE-2018-16468](https://github.com/flavorjones/loofah/issues/154)
- Updated documentation
2018-10-15 16:51:44 +02:00
2018-10-04 12:04:47 +02:00
## v2.6.7 2018 October 4
2018-10-04 12:02:16 +02:00
- Ability to configure SMTP more precisely
- Typo correction in README (#121)
- [TODO DEPLOY] add the following environment variables: `SMTP_AUTHENTICATION, SMTP_ENABLE_STARTTLS_AUTO, SMTP_OPENSSL_VERIFY_MODE`
2018-09-18 16:45:07 +02:00
## v2.6.6 2018 September 18
2018-09-06 11:22:23 +02:00
- Ability to parametrize machines order on the booking page
- Ability to set a neutral gender for the fablab's title (#108)
2019-02-13 12:59:28 +01:00
- Fix a bug: rake task `fablab:fix:categories_slugs` bash interpretation error
2018-09-18 14:38:43 +02:00
- Fix a bug: file inputs filled with long filenames render improperly with an overflow
- Fix a bug: title concordance radio buttons render improperly on smaller screens
2018-09-18 16:45:07 +02:00
- Improved verifications in ElasticSearch upgrade script
2018-09-06 11:22:23 +02:00
- [TODO DEPLOY] `rake fablab:fix:categories_slugs`
- [TODO DEPLOY] `rake db:seed`
2018-09-06 11:22:23 +02:00
2018-07-24 14:44:14 +02:00
## v2.6.5 2018 July 24
2018-06-04 12:03:46 +02:00
- Upgraded ElasticSearch from 1.7 to 5.6
- Ability to display the name of the user who booked a machine slot to other members
2018-03-27 10:17:41 +02:00
- Updated OmniAuth to fix Hashie warnings [omniauth#872](https://github.com/omniauth/omniauth/issues/872)
- Fix a bug: unable to filter statistics from age 0
- Fix a bug: events categories are not reported correctly in statistics
2018-03-27 10:17:41 +02:00
- Fix a security issue: dependency loofah has a vulnerability as described in [CVE-2018-8048](https://github.com/flavorjones/loofah/issues/144)
2018-04-30 07:57:21 +02:00
- Fix a security issue: rails-html-sanitizer < 1.0.3 has a security vulnerability described in [CVE-2018-3741](https://nvd.nist.gov/vuln/detail/CVE-2018-3741)
2018-07-12 14:26:21 +02:00
- Fix a security issue: nokogiri < 1.8.2 has a security vulnerability as described in [CVE-2017-18258](https://nvd.nist.gov/vuln/detail/CVE-2017-18258)
2018-07-12 14:34:20 +02:00
- Fix a security issue: sprockets < 2.12.5 has a security vulnerability as described in [CVE-2018-3760](https://nvd.nist.gov/vuln/detail/CVE-2018-3760)
- Ensure elasticSearch indices are started with green status on new installations
2018-07-24 11:13:05 +02:00
- Refactored User.to_json to remove code duplication
2020-02-12 18:15:44 +01:00
- Fixed syntax and typos in README
- [TODO DEPLOY] **IMPORTANT** Please read [elastic_upgrade.md](doc/elastic_upgrade.md) for instructions on upgrading ElasticSearch.
- [TODO DEPLOY] `rake fablab:fix:categories_slugs`
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
- [TODO DEPLOY] `rake db:seed`
2018-03-15 15:07:03 +01:00
## v2.6.4 2018 March 15
- Ability to share trainings on social medias
- Fix a bug: a reminder notification were sent for canceled reservations
- Fix a bug: sharing an event on facebook has HTML tags in the description
2020-02-26 10:19:43 +01:00
- Set Stripe API version, all Fab-managers has to use this version because codebase relies on it
2018-03-27 10:17:41 +02:00
- Fix a security issue: OmniAuth < 1.3.2 has a security vulnerability described in [CVE-2017-18076](https://nvd.nist.gov/vuln/detail/CVE-2017-18076)
- Fix a security issue: rack-protection < 1.5.5 has a security vulnerability described in [CVE-2018-1000119](https://nvd.nist.gov/vuln/detail/CVE-2018-1000119)
2020-02-12 18:15:44 +01:00
- Fix a security issue: http gem < 0.7.3 has a security vulnerability described in [CVE-2015-1828](https://nvd.nist.gov/vuln/detail/CVE-2015-1828), updates twitter gem as a dependency
2018-01-02 10:26:04 +01:00
## v2.6.3 2018 January 2
- Fix a bug: wrong docker-compose url in setup script (#98)
- Typo correction in docker README (#97)
2017-12-21 11:32:13 +01:00
## v2.6.2 2017 December 21
- Support for internet explorer 11
- Fix a bug: events order in public list
2017-12-21 11:49:51 +01:00
- Fix a bug: unable to create a training credit
2017-12-21 11:32:13 +01:00
- Corrected typos in documentation (#96)
2017-12-21 12:00:11 +01:00
- Improved test suite coverage
2017-12-21 11:32:13 +01:00
2017-12-14 16:46:10 +01:00
## v2.6.1 2017 December 14
2017-11-15 10:20:23 +01:00
- Updated Portuguese translations (#91)
- Added Spanish translations (#87)
- Added Central Africa & Cameroon currency symbol (#90)
- Fix nginx configuration to allow initial Let's Encrypt configuration (#92)
- Events: open api and monitor improvement (#79)
- Fix a bug: refund an invoice with a subscription and disabling it a the same time cause the resulting PDF to display the wrong dates
2017-12-14 16:46:10 +01:00
- Fix a bug: unable to successfully run the test suite after wednesday
2017-12-13 15:28:57 +01:00
- Fix a security issue: in development environments, web-console has a vulnerability as described in CVE-2015-3224
2017-11-15 10:20:23 +01:00
- Fixed deploy instructions with docker-compose
2017-12-14 14:33:49 +01:00
- Updated docker installation instructions
2017-11-15 10:20:23 +01:00
2017-11-13 13:16:24 +01:00
## v2.6.0 2017 November 13
2017-09-18 11:02:27 +02:00
- Additional button to delete a slot, allowing to delete slots masked by others
- Removed cross hack in full-calendar
- Confirmation before slot delete
- Confirmation and error handling while deleting an event
2017-10-11 16:10:18 +02:00
- Ability to disable groups, machines, plans, spaces and trainings
- Improved responsiveness of machines and spaces lists
2017-11-02 15:33:56 +01:00
- Allow setting of decimal prices
2017-09-18 11:02:27 +02:00
- Fix a typo: error message while creating a machine slot
2017-09-25 15:48:21 +02:00
- Fix a bug: events pagination is bogus in admin's monitoring when selecting non default filter
- Fix a bug: social sharing failed for projects with an underscore in their name
- Fix a bug: html tags of events description not stripped when sharing on social network
2017-09-26 16:32:55 +02:00
- Fix a bug: event, space, training or machine main image on description page is deformed on small devices
2017-11-13 13:16:24 +01:00
- Fix a bug: profile completion of non-SSO imported users trigger a fuzzy email
2017-10-11 16:10:18 +02:00
- Fix a bug: creation of negative credits
- Fix a bug: unable to display profiles of users whom any reservation is associated with a deleted object
2017-09-18 11:02:27 +02:00
- Updated test data to allow passing test suite
2017-11-13 12:22:33 +01:00
- Upgraded rails minor version
2017-10-11 16:52:46 +02:00
- [TODO DEPLOY] `rake db:migrate`
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
2017-09-18 11:02:27 +02:00
2017-09-12 08:43:28 +02:00
## v2.5.14 2017 September 12
- Fix a bug: Error message in fix:recursive_events_over_DST failed and does not report events to check
2017-09-11 16:39:00 +02:00
## v2.5.13 2017 September 11
2017-09-11 16:37:21 +02:00
2020-02-12 18:15:44 +01:00
- Fix a bug: ActiveRecord::RecordNotFound when running rake task fix:recursive_events_over_DST with recursive events which the initial event was deleted
2017-09-11 16:37:21 +02:00
2017-09-11 14:17:26 +02:00
## v2.5.12 2017 September 11
2017-09-11 14:10:52 +02:00
- Fix a bug: Long words overflow from homepage's events blocks
2020-02-12 18:15:44 +01:00
- Fix a bug: ActiveRecord::RecordNotFound when running rake task fix:recursive_events_over_DST with non-recursive events
2017-09-07 15:02:10 +02:00
## v2.5.11 2017 September 7
2017-08-24 12:47:51 +02:00
- Added tooltip concerning images insertion while configuring the about page
- Ability for admins to configure the maximum visibility for availabilities reservation
2017-08-30 14:57:06 +02:00
- Administrators isolation in a special group
- In login modal, displays an alert if Caps lock key is pressed
- Prevent creation of irregular yearly plans (eg. 12 months)
2017-09-07 10:54:42 +02:00
- Ability to lock machine, space or training availability slots, to prevent new reservations on them
- Fix a bug: admins cannot see all availabilities for spaces in reservation calendar when a user is selected
2017-08-24 12:47:51 +02:00
- Fix a bug: missing translation after payment in english and portuguese
- Fix a bug: invalid notification when sending monetary coupon to users
2017-08-30 14:57:06 +02:00
- Fix a bug: unable to delete group "standard"
- Fix a bug: recursive events crossing Daylight Saving Time period changes are shifted by 1 hour
- Fix a bug: unable to see availabilities in the public calendar when browsing as a visitor (non-connected)
- Updated puma for compatibility with openSSL > 1.0
2017-08-24 16:08:42 +02:00
- Documented installation on ArchLinux
2017-09-11 12:29:22 +02:00
- [TODO DEPLOY] `rake db:migrate`
2017-08-30 14:57:06 +02:00
- [TODO DEPLOY] `rake db:seed` then `rake fablab:fix:migrate_admins_group`
2017-09-07 15:02:10 +02:00
- [TODO DEPLOY] `rake fablab:fix:recursive_events_over_DST`
2017-08-24 12:47:51 +02:00
2017-08-16 12:07:08 +02:00
## v2.5.10 2017 August 16
- Updated axlsx gem for excel files generation, possible fix for #489
- Fix a bug: on some linux hosts, a filename too long error is triggered when accessing the following API: trainings, groups, events, prices
- update docker/README.md
2017-07-13 10:11:19 +02:00
## v2.5.9 2017 July 13
2017-07-12 15:56:12 +02:00
- Fixed invalid syntax for configuration file application.yml.default
2017-07-13 10:11:19 +02:00
- db:seed improves test if there is already an admin, not failing anymore if role 'admin' doesn't exist
2017-07-12 15:56:12 +02:00
2017-07-12 11:47:24 +02:00
## v2.5.8 2017 July 12
- Fix a bug: when upgrading from version < 2.5.0, `db:seed` will throw an error if ADMIN_EMAIL does not match any admin in database
- Fix a bug: hide spaces in public calendar when module is disabled
- Fix a bug: confirmation message not shown after admin creation
- Fix a bug: invoices generation failed for subscription days offered
- add task `rake fablab:get_incoherent_invoice` allow find the invoices incoherent
2017-06-08 20:19:32 +02:00
## v2.5.7 2017 June 8
2017-06-07 16:39:24 +02:00
- Portuguese and Brazilian support
2017-06-08 20:19:32 +02:00
- Fix a bug: reservation amount total isnt equal stripe invoice amount that be paid by customer
2017-06-07 16:39:24 +02:00
2017-05-18 10:37:41 +02:00
## v2.5.6 2017 May 18
- Ability for admins to create users as organizations
- Invoices object will contain the organization name if any (#64)
- RSS feeds will return more data about events and projects, especially images
2017-05-18 10:37:41 +02:00
- Improved Docker documentation (#65)
2017-05-15 16:46:58 +02:00
## v2.5.5 2017 May 15
2017-05-09 09:30:16 +02:00
- Fix a bug: New groups does not have their spaces prices initialized
- Fix a bug: Unable to delete a group when its space prices are set
- [TODO DEPLOY] `rake fablab:fix:new_group_space_prices` only if module 'Spaces' is/was enabled
2017-05-09 09:30:16 +02:00
2017-05-04 12:59:04 +02:00
## v2.5.4 2017 May 4
- Fix a bug: Unable to define application locale other than `fr` or `en`.
- [TODO DEPLOY] add `APP_LOCALE` environment variable (see README.md for configuration details)
2017-04-27 14:23:06 +02:00
## v2.5.3 2017 April 27
2017-04-13 14:27:11 +02:00
- Project view: added responsive support on external images
- Include rails localization support for 115 new locations
## v2.5.2 2017 April 12
2017-04-13 14:27:11 +02:00
2017-04-03 17:08:47 +02:00
- Extracts first admin created email and password into environment variables
2017-04-12 20:31:52 +02:00
- [OPTIONAL: Only for a new installation] add `ADMIN_EMAIL` and `ADMIN_PASSWORD` environment variable in `application.yml` or `env` file (with docker)
2017-04-03 17:08:47 +02:00
2017-03-28 20:26:32 +02:00
## v2.5.1 2017 March 28
2017-03-28 20:26:32 +02:00
- hide spaces in admin's credit management if spaces are disabled
- Fix a bug: Can not display training tracking (this bug was introduced in version 2.5.0)
2017-03-28 20:26:32 +02:00
- [TODO DEPLOY] `rake assets:precompile`
2017-03-28 13:44:02 +02:00
## v2.5.0 2017 March 28
- Ability to remove an unused custom price for an event (#61)
2017-03-02 16:52:20 +01:00
- Prevent polling notifications when the application is in background
- Ability to export the availabilities and their reservation rate from the admin calendar
2017-03-01 15:52:42 +01:00
- Ability to create, manage and reserve spaces
2017-02-22 17:55:31 +01:00
- Improved admin's interface to create availabilities
2017-03-01 15:52:42 +01:00
- Complete rewrote of the reservation cart functionality with improved stability, performance and sustainability
2017-03-02 10:29:17 +01:00
- Replaced letter_opener by MailCatcher to preview e-mails in development environments
2017-03-21 15:55:41 +01:00
- Ability to create plans with durations based on weeks
2017-03-28 13:44:02 +02:00
- Ease installations with docker-compose, in any directory (#63)
2017-02-22 17:55:31 +01:00
- Fix a bug: trainings reservations are not shown in the admin's calendar
- Fix a bug: unable to delete an administrator from the system
- Fix a bug: unable to delete an event with a linked custom price (#61)
- Fix a bug: navigation in client calendar is bogus when browsing months (#59)
- Fix a bug: subscription name is not shown in invoices
2017-03-28 13:44:02 +02:00
- Fix a bug: new plans statistics are not shown
- [TODO DEPLOY] `rake db:migrate`, then `rake db:seed`
- [TODO DEPLOY] add the `FABLAB_WITHOUT_SPACES` environment variable
2019-02-13 12:59:28 +01:00
- [TODO DEPLOY] `rake fablab:es:add_spaces`
- [TODO DEPLOY] `rake fablab:fix:new_plans_statistics` if you have created plans from v2.4.10
## v2.4.11 2017 March 15
2017-03-21 15:48:13 +01:00
- Fix a bug: editing and saving a plan, result in removing the rolling attribute
- [TODO DEPLOY] `rake fablab:fix:rolling_plans`
2017-01-09 10:57:46 +01:00
## v2.4.10 2017 January 9
- Optimized notifications system
- Fix a bug: when many users with too many unread notifications are connected at the same time, the system kill the application due to memory overflow
- Fix a bug: ReservationReminderWorker crash with undefined method find_by
- Fix a bug: navigation to about page duplicates admin's links in left menu
2017-01-09 10:54:30 +01:00
- Fix a bug: changing the price of a plan lost its past statistics
2017-01-09 15:13:28 +01:00
- [TODO DEPLOY] `rake db:migrate`
2019-02-13 12:59:28 +01:00
- [TODO DEPLOY] `rake fablab:fix:set_plans_slugs`
2017-01-04 15:30:21 +01:00
## v2.4.9 2017 January 4
- Mask new notifications alerts when more than 3
- Added an asterisk on group select in admin's member form
- Statistics custom aggregations can handle custom filtering
- Statistics about hours available for machine reservations and tickets available for training reservations, now handle custom filtering on date and type
- Fix a bug: display more than 15 unread notifications (number on the bell icon & full list)
2017-01-02 11:08:40 +01:00
- Fix a bug: in invoice configuration panel, VAT amount and total excl. taxes are inverted
- Fix a bug: unable to compute user's age when they were born on february 29th and current year is not a leap year
- Fix a bug: wrong statistics about hours available for machines reservation. Fix requires user action (1)
2017-01-04 15:30:21 +01:00
- Fix a bug: when regenerating statistics, previous values are not fully removed (only 10 firsts), resulting in wrong statistics generation (2)
- Fix a bug: when deleting an availability just after its creation, the indexer workers crash and retries for a month
2017-01-03 11:27:58 +01:00
- [TODO DEPLOY] remove possible value `application/` in `ALLOWED_MIME_TYPES` list, in environment variable
2019-02-13 12:59:28 +01:00
- [TODO DEPLOY] `rails runner StatisticCustomAggregation.destroy_all`, then `rake db:seed`, then `rake fablab:es:build_availabilities_index` (1)
2022-10-10 15:40:22 +02:00
- [TODO DEPLOY] `rake fablab:es:generate_stats[1095]` if you already had regenerated the statistics in the past, then they are very likely corrupted. Run this task to fix (2)
2016-12-15 17:12:07 +01:00
## v2.4.8 2016 December 15
2016-12-15 14:19:55 +01:00
- Added asterisks on mandatory fields in member's form
- Fixed wording on SSO screens
- Ability to send again the auth-system migration token by email
- Fix a bug: notification email about refund invoice tells about subscription while concerning wallet credit
2016-12-15 14:19:55 +01:00
2016-12-14 10:41:17 +01:00
## v2.4.7 2016 December 14
2016-12-12 11:22:37 +01:00
- Improved automated testing
- Added an information notice about the processing time of deleting an administrator
- Ability to change the expiration date of a coupon after its creation
2016-12-14 10:41:17 +01:00
- Ability to generate a refund invoice when crediting user's wallet
2016-12-12 11:22:37 +01:00
- Fix a bug: unable to run rake db:migrate on first install
- Fix a bug: unable to create or edit a coupon of type 'percentage'
2016-12-12 11:22:37 +01:00
2016-12-14 10:41:17 +01:00
## v2.4.6 2016 November 30
2016-11-30 17:28:51 +01:00
- Change display of message about coupon application status
2016-12-12 11:22:37 +01:00
- Fix a bug: compute price API return error 500 if reservable_id is not provided
2016-11-30 17:28:51 +01:00
2016-11-29 17:06:56 +01:00
## v2.4.5 2016 November 29
2016-11-28 10:11:52 +01:00
- Ability to create coupons with cash amounts (previously only percentages were allowed)
2016-11-29 12:03:38 +01:00
- Improved error messages when something wrong append when paying a machine reservation by stripe
- Ability to display optional information message on event reservation page
2016-11-24 09:50:56 +01:00
- Fix a bug: misconfigured Twitter's ENV variables results in HTTP error 500
2016-11-29 11:54:56 +01:00
- Fix a bug: wallet is not debited when paying locally with a user who have invoices disabled
- Fix a bug: wrong error message about rounding inconsistency is logged on invoice generation
- Fix a bug: reservation calendar of a specific training shows availabilities for all trainings
2016-11-29 17:56:41 +01:00
- [TODO DEPLOY] `rake db:migrate`
2016-11-23 15:10:07 +01:00
2016-11-24 16:48:05 +01:00
## v2.4.4 2016 November 24
2016-11-23 15:10:07 +01:00
- Fix a bug: unable to rollback migration 20160906145713
- Fix a bug: Title's translation for plan's forms is not loaded in French
- Fix a bug: invoice of reservation show payment by debit card when user pay with wallet
2016-11-21 14:16:55 +01:00
## v2.4.3 2016 November 21
2016-11-09 13:14:53 +01:00
- Export user's invoicing status in members' excel export
2016-12-12 11:22:37 +01:00
- Fix a bug: Next events descriptions, shown on the home page, display raw html
- Fix a bug: number of reserved seats for an event is always of 1 in the excel export of reservations
2016-11-09 14:36:28 +01:00
- Fix a bug: conflict between similar translations around "reservations"
2016-11-09 13:14:53 +01:00
- Fix a bug: later occurrences of recurrent events does not have the initially configured theme and age range
2016-11-21 12:00:03 +01:00
- Fix a bug: some graphs do not display: events, users, trainings and machine hours
- [TODO DEPLOY] delete the `exports/users/reservations` folder to prevent the usage of old invalid exports
2016-11-09 13:14:53 +01:00
2016-11-08 16:24:34 +01:00
## v2.4.2 2016 November 8
2016-10-24 09:33:46 +02:00
2016-11-08 16:24:34 +01:00
- Image max size is configurable, default size is 2 megabytes
- Allow add more pictures for project step
2016-10-26 16:33:21 +02:00
- Ability to use HTML in event's descriptions using a WYSIWYG editor
- Fix a bug: statistics graphs were not showing
2016-11-08 16:24:34 +01:00
- Fix a bug: On invoices, only starting date is shown for multi-days events
- Fix a bug: In the sign-up modal, the translation for 'i_accept_to_receive_information_from_the_fablab' was not loaded
- [TODO DEPLOY] add `MAX_IMAGE_SIZE` environment variable in `application.yml` and docker env
2016-10-24 09:33:46 +02:00
2016-10-11 16:11:20 +02:00
## v2.4.1 2016 October 11
2016-12-12 11:22:37 +01:00
- Fix a bug: unable to share a project/event without image on social networks
2016-10-05 11:12:14 +02:00
- Fix a bug: after creating an element in the admin calendar, browsing through the calendar and coming back cause the element to appear duplicated
- Fix a bug: after deleting an element in the admin calendar, the confirmation message is wrong and an error is logged in the console
- Fix a bug: erroneous syntax in docker env example file
2016-10-04 16:39:10 +02:00
## v2.4.0 2016 October 4
2016-12-12 11:22:37 +01:00
2016-09-29 12:07:18 +02:00
- RSS feeds to follow new projects and events published
- Use slugs in projects URL opened from notifications
2016-09-27 15:34:30 +02:00
- Ask for confirmation on machine deletion from the public view
- Ability to delete a training from the public view for an admin
2016-12-12 11:22:37 +01:00
- Project images will show in full-size on a click
- Add a checkbox "I accept to receive informations from the FabLab" on Sign-up dialog and user's profile
- Share project with Facebook/Twitter
2020-02-26 10:19:43 +01:00
- Display Fab-manager's version in "Powered by" label, when logged as admin
2016-09-06 17:22:49 +02:00
- Load translation locales from subdirectories
2016-07-21 16:29:39 +02:00
- Add wallet to user, client can pay total/partial reservation or subscription by wallet
2016-07-18 18:16:54 +02:00
- Public calendar for show all trainings/machines/events
2016-07-13 16:02:29 +02:00
- Display 'draft' badge on drafts in project galleries
- Add a 'new project' button in dashboard/my projects
2016-07-13 16:05:13 +02:00
- Open Projects: show the platform of origin even for local projects
- Ability to use HTML in machine specs and description
2016-07-13 16:11:31 +02:00
- Ability to manage project steps order
2016-07-13 18:29:34 +02:00
- Trainings are associated with a picture and an HTML textual description
- Public gallery of trainings with ability to view details or to book a training on its own calendar
- Ability to switch back to all trainings booking view
2016-12-12 11:22:37 +01:00
- Rename "Courses and Workshops" to "Events"
2016-06-30 14:20:17 +02:00
- Admin: Events can be associated with a theme and an age range
- Admin: Event categories, themes and age ranges can be customized
- Filter events by category, theme and age range in public view
2016-08-31 15:50:05 +02:00
- Ability to customise price's categories for the events
- Events can be associated with many custom price's categories, instead of only one "reduced price"
2016-09-06 17:22:49 +02:00
- Statistics views can trigger and display custom aggregations from ElasticSearch
2016-12-12 11:22:37 +01:00
- Machine hours/Trainings statistics: display number of tickets/hours available for booking
2016-06-30 14:20:17 +02:00
- Statistics will include informations abouts events category, theme and age range
2016-07-27 12:05:58 +02:00
- Ability to export the current statistics table to an Excel file
- Ability to export every statistics on a given dates range to an Excel file
2016-08-02 16:50:03 +02:00
- More fields in members exports
- Unified members, subscriptions and reservations exports with the new statistics exports
- Excel exports are now asynchronously generated and cached on the server for future identical requests
- Users have the ability to create an organizational profile when creating an account
- Organization informations will be used in invoices generation, if present
- Admins can create and enable/disable coupons. They can also notify an user about details of a coupon
- Users and admins can apply coupons's discounts to their shopping cart
2016-08-23 10:49:02 +02:00
- Send an email reminder and system notification some hours before a reservation happens
- Admins can toggle reminders on/off and customize the delay
2016-09-07 15:58:41 +02:00
- More file types allowed as project CAD attachements
- Project CAD attachements are now checked by MIME type in addition of extension check
- Project CAD attachement allowed are now configured in environment variables
2016-12-12 11:22:37 +01:00
- Project CAD attachement extensions allowed are shown next to input field
2016-09-13 13:05:36 +02:00
- Display strategy's name in SSO providers list
2016-09-15 17:45:59 +02:00
- SSO: documentation improved with an usage example
- SSO: mapped fields display their data type. Integers, booleans and dates allow some transformations.
2016-07-13 18:41:08 +02:00
- Fix a bug: project drafts are shown on public profiles
- Fix a bug: event category disappear when editing the event
2016-12-12 11:22:37 +01:00
- Fix a bug: machine name is not shown in plan edition
2016-09-07 16:07:07 +02:00
- Fix a bug: machine slots with tags are not displayed correctly on reservation calendar
2016-09-13 13:05:36 +02:00
- Fix a bug: avatar, address and organization details mapping from SSO were broken
2016-12-12 11:22:37 +01:00
- Fix a bug: in SSO configuration some valid endpoints were recognized as erroneous
- Fix a bug: clicking on the text in stripe's payment modal, does not validate the checkbox
- Fix a bug: move event reservation is not limited by admin settings (prior-delay & disable)
- Fix a bug: UI issues on small devices (dashboard + admin views)
2016-09-27 10:45:53 +02:00
- Fix a bug: embedded video not working in training/machine description
- Fix a bug: reordering project's steps trigger the unsaved-warning dialog
2016-09-28 11:37:36 +02:00
- Fix a bug: unable to compile assets in Docker with CoffeeScript error
2016-09-29 10:04:37 +02:00
- Fix a bug: do not force HTTPS for URLs in production environments
2019-02-13 12:59:28 +01:00
- [TODO DEPLOY] `rake fablab:es:build_availabilities_index`
- [TODO DEPLOY] `rake fablab:es:add_event_filters`
2016-07-13 16:15:50 +02:00
- [TODO DEPLOY] `rake db:migrate`
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install`
- [TODO DEPLOY] add `EXCEL_DATE_FORMAT`, `ALLOWED_EXTENSIONS` and `ALLOWED_MIME_TYPES` environment variable in `application.yml`
2016-08-23 10:49:02 +02:00
- [OPTIONAL] `rake fablab:fix:assign_category_to_uncategorized_events` (will put every non-categorized events into a new category called "No Category", to ease re-categorization)
2016-07-13 16:02:29 +02:00
## v2.3.1 2016 September 26
- Fix a bug: group cache filename too long
2016-06-28 10:23:39 +02:00
## v2.3.0 2016 June 28
2016-06-27 12:42:57 +02:00
2016-06-28 10:23:39 +02:00
- Public API with access management and online documentation
2016-06-27 16:42:27 +02:00
- Add json cache for machines, events, trainings
- Optimise sql query, avoid to N+1
2016-06-28 10:23:39 +02:00
- Projects URL are always composed with slug instead of ID
- Confirmation on project deletion
- Fix a bug: unable to deploy 2.2.0+ when PostgreSQL 'unaccent' extension was already active
- Fix a bug: some reservations was referencing reservables not present in database (#patch)
2016-06-27 16:42:27 +02:00
- [TODO DEPLOY] `bundle exec rake fablab:fix:reservations_not_existing_reservable` to apply #patch
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install` then (all) `rake db:migrate`
2016-06-27 12:41:54 +02:00
2016-06-23 11:49:48 +02:00
## v2.2.2 2016 June 23
2016-12-12 11:22:37 +01:00
- Fix some bugs: users with uncompleted account (sso imported) won't appear in statistics, in listings and in searches. Moreover, they won't block statistics generation
2016-06-23 11:49:48 +02:00
- Fix a bug: unable to display next results in statistics tables
2016-06-28 11:42:20 +02:00
- Admin: Category is mandatory when creating an event
2016-06-23 11:49:48 +02:00
2016-06-22 09:19:40 +02:00
## v2.2.1 2016 June 22
2016-06-21 15:24:25 +02:00
- Fix a bug: field User.merged_at should not be allowed to be mapped in SSO
- Fix a bug: integration test "user reservation without plan"
- Fix a bug: can't click for some seconds in Chrome 51
- Admin: statistics tables were paginated and optimized to improve load times.
2016-06-16 17:22:44 +02:00
## v2.2.0 2016 June 16
- Built-in support for extensions plug-ins
- User profile form: social networks links, personal website link, job and change profile visibility (public / private)
- User public profile: UI re-design with possible admin's customization
- Admin: Invoices list and users list are now loaded per 10 items to improve pages load time
- Admin: select member (eg. to buy a subscription for a member) is now loading the user's list dynamically when you type
2016-12-12 11:22:37 +01:00
- Project collaborators selection is now using a list dynamically loaded as you type
2016-06-15 12:05:04 +02:00
- Admin: select a training before monitoring its reservations -> improves page load time
- API: GET /api/trainings do not load nor send the associated availabilities until they are requested
- List of members is now loaded 10 members by 10, to improve page load time
2016-05-18 17:30:33 +02:00
- [TODO DEPLOY] Regenerate the theme stylesheet (easy way: Customization/General/Main colour -> "Save")
2019-05-06 16:56:21 +02:00
- [TODO DEPLOY] -> (only dev) `bundle install` then (all) `rake db:migrate`
2016-05-18 17:30:33 +02:00
2016-05-24 14:56:58 +02:00
## v2.1.2 2016 May 24
- Fix a bug: Google Analytics was not loaded and did not report any stats
2016-05-03 16:33:06 +02:00
## v2.1.1 2016 May 3
- Fix a bug concerning openlab projects initialization in production env
- Fix a bug: user is not redirected after changing is duplicated e-mail on the SSO provider
## v2.1.0 2016 May 2
2019-03-26 14:04:45 +01:00
- Add search feature on openlab projects : [Openlab-projects](https://github.com/sleede/openlab-projects)
2016-05-02 17:14:21 +02:00
- Add integration tests for main features
2016-05-03 16:33:06 +02:00
- Credits logic has been extracted into a microservice
- Improved UI list of projects
2016-05-02 17:14:21 +02:00
- Refactor interface for SSO profile completion
- Change interface for SSO/email already used
2016-05-03 16:33:06 +02:00
- Fix a bug: custom asset favicon-file favicon file is not set
- Fix a security issue: stripe card token is now checked on server side on new/renew subscription
- Translated notification e-mails into english language
2016-06-27 12:41:54 +02:00
- Subscription extension logic has been extracted into a microservice