Show More
| @@ -1,143 +1,144 b'' | |||||
| 1 | |RCE| 4.12.0 |RNS| |
|
1 | |RCE| 4.12.0 |RNS| | |
| 2 | ------------------ |
|
2 | ------------------ | |
| 3 |
|
3 | |||
| 4 | Release Date |
|
4 | Release Date | |
| 5 | ^^^^^^^^^^^^ |
|
5 | ^^^^^^^^^^^^ | |
| 6 |
|
6 | |||
| 7 | - 2018-04-24 |
|
7 | - 2018-04-24 | |
| 8 |
|
8 | |||
| 9 |
|
9 | |||
| 10 | New Features |
|
10 | New Features | |
| 11 | ^^^^^^^^^^^^ |
|
11 | ^^^^^^^^^^^^ | |
| 12 |
|
12 | |||
| 13 | - Svn: added support for RhodeCode integration framework. All integrations like |
|
13 | - Svn: added support for RhodeCode integration framework. All integrations like | |
| 14 | slack, email, Jenkins now also fully work for SVN. |
|
14 | slack, email, Jenkins now also fully work for SVN. | |
| 15 | - Integrations: added new dedicated Jenkins integration with the support of |
|
15 | - Integrations: added new dedicated Jenkins integration with the support of | |
| 16 | CSRF authentication. Available in EE edition only. |
|
16 | CSRF authentication. Available in EE edition only. | |
| 17 | - Automation: added new bi-directional remote sync. RhodeCode instances can now |
|
17 | - Automation: added new bi-directional remote sync. RhodeCode instances can now | |
| 18 | automatically push or pull from/to remote locations. This feature is powered |
|
18 | automatically push or pull from/to remote locations. This feature is powered | |
| 19 | by the Scheduler of 4.11 release, and it is required to be enabled for this feature to work. |
|
19 | by the Scheduler of 4.11 release, and it is required to be enabled for this feature to work. | |
| 20 | Available in EE edition only. |
|
20 | Available in EE edition only. | |
| 21 | - Mercurial: path-based permissions. RhodeCode can now use Mercurials narrowhg |
|
21 | - Mercurial: path-based permissions. RhodeCode can now use Mercurials narrowhg | |
| 22 | to implement path-based permissions. All permissions are read from .hg/hgacl. |
|
22 | to implement path-based permissions. All permissions are read from .hg/hgacl. | |
| 23 | Thanks to the great contribution from Sandu Turcan. |
|
23 | Thanks to the great contribution from Sandu Turcan. | |
| 24 | - VCS: added new diff caches. Available as an option under vcs settings. |
|
24 | - VCS: added new diff caches. Available as an option under vcs settings. | |
| 25 | Diff caches work on pull-request, or individual commits for greater |
|
25 | Diff caches work on pull-request, or individual commits for greater | |
| 26 | performance and reduced memory usage. This feature increases speed of large |
|
26 | performance and reduced memory usage. This feature increases speed of large | |
| 27 | pull requests significantly. In addition for pull requests it will allow |
|
27 | pull requests significantly. In addition for pull requests it will allow | |
| 28 | showing old closed pull requests even if commits from source were removed, |
|
28 | showing old closed pull requests even if commits from source were removed, | |
| 29 | further enhancing auditing capabilities. |
|
29 | further enhancing auditing capabilities. | |
| 30 | - Audit: added few new audit log entries especially around changing permissions. |
|
30 | - Audit: added few new audit log entries especially around changing permissions. | |
| 31 | - LDAP: added connection pinning and timeout option to ldap plugin. This should |
|
31 | - LDAP: added connection pinning and timeout option to ldap plugin. This should | |
| 32 | prevent problems when connection to LDAP is not stable causing RhodeCode |
|
32 | prevent problems when connection to LDAP is not stable causing RhodeCode | |
| 33 | instances to freeze waiting on LDAP connections. |
|
33 | instances to freeze waiting on LDAP connections. | |
| 34 | - User groups: expose public user group profiles. Allows to see members of a user |
|
34 | - User groups: expose public user group profiles. Allows to see members of a user | |
| 35 |
group |
|
35 | group by other team members, if they have proper permissions. | |
| 36 | - UI: show pull request page in quick nav menu on my account for quicker access. |
|
36 | - UI: show pull request page in quick nav menu on my account for quicker access. | |
| 37 | - UI: hidden/outdated comments now have visible markers next to line numbers. |
|
37 | - UI: hidden/outdated comments now have visible markers next to line numbers. | |
| 38 | This allows access to them without showing all hidden comments. |
|
38 | This allows access to them without showing all hidden comments. | |
| 39 |
|
39 | |||
| 40 |
|
40 | |||
| 41 | General |
|
41 | General | |
| 42 | ^^^^^^^ |
|
42 | ^^^^^^^ | |
| 43 |
|
43 | |||
| 44 | - Ssh: show conflicting fingerprint when adding an already existing key. |
|
44 | - Ssh: show conflicting fingerprint when adding an already existing key. | |
| 45 | Helps to track why adding a key failed. |
|
45 | Helps to track why adding a key failed. | |
| 46 | - System info: added ulimit to system info. This is causing lots of problems |
|
46 | - System info: added ulimit to system info. This is causing lots of problems | |
| 47 | when we hit any of those limits, that is why it's important to show this. |
|
47 | when we hit any of those limits, that is why it's important to show this. | |
| 48 | - Repository settings: add hidden view to force re-install hooks. |
|
48 | - Repository settings: add hidden view to force re-install hooks. | |
| 49 | Available under /{repo_name}/settings/advanced/hooks |
|
49 | Available under /{repo_name}/settings/advanced/hooks | |
| 50 | - Integrations: Webhook now handles response errors and show response for |
|
50 | - Integrations: Webhook now handles response errors and show response for | |
| 51 | easier debugging. |
|
51 | easier debugging. | |
| 52 | - Cli: speed up CLI execution start by skipping auth plugin search/registry. |
|
52 | - Cli: speed up CLI execution start by skipping auth plugin search/registry. | |
| 53 | - SVN: added an example in the docs on how to enable path-based permissions. |
|
53 | - SVN: added an example in the docs on how to enable path-based permissions. | |
| 54 | - LDAP: enable connection recycling on LDAP plugin. |
|
54 | - LDAP: enable connection recycling on LDAP plugin. | |
| 55 | - Auth plugins: use a nicer visual display of auth plugins that would |
|
55 | - Auth plugins: use a nicer visual display of auth plugins that would | |
| 56 | highlight that order of enabled plugins does matter. |
|
56 | highlight that order of enabled plugins does matter. | |
| 57 | - Events: expose shadow repo build url. |
|
57 | - Events: expose shadow repo build url. | |
| 58 | - Events: expose pull request title and uid in event data. |
|
58 | - Events: expose pull request title and uid in event data. | |
| 59 | - API: enable setting sync flag for user groups on create/edit. |
|
59 | - API: enable setting sync flag for user groups on create/edit. | |
| 60 | - API: update pull method with a possible specification of the url |
|
60 | - API: update pull method with a possible specification of the url | |
| 61 | - Logging: improved consistency of auth plugins logs. |
|
61 | - Logging: improved consistency of auth plugins logs. | |
| 62 | - Logging: improved log for ssl required |
|
62 | - Logging: improved log for ssl required | |
| 63 | - Dependencies: bumped mercurial to 4.4 series |
|
63 | - Dependencies: bumped mercurial to 4.4 series | |
| 64 | - Dependencies: bumped zope.cachedescriptors==4.3.1 |
|
64 | - Dependencies: bumped zope.cachedescriptors==4.3.1 | |
| 65 | - Dependencies: bumped zope.deprecation==4.3.0 |
|
65 | - Dependencies: bumped zope.deprecation==4.3.0 | |
| 66 | - Dependencies: bumped zope.event==4.3.0 |
|
66 | - Dependencies: bumped zope.event==4.3.0 | |
| 67 | - Dependencies: bumped zope.interface==4.4.3 |
|
67 | - Dependencies: bumped zope.interface==4.4.3 | |
| 68 | - Dependencies: bumped graphviz 0.8.2 |
|
68 | - Dependencies: bumped graphviz 0.8.2 | |
| 69 | - Dependencies: bumped to ipaddress 0.1.19 |
|
69 | - Dependencies: bumped to ipaddress 0.1.19 | |
| 70 | - Dependencies: bumped pyexpect to 4.3.1 |
|
70 | - Dependencies: bumped pyexpect to 4.3.1 | |
| 71 | - Dependencies: bumped ws4py to 0.4.3 |
|
71 | - Dependencies: bumped ws4py to 0.4.3 | |
| 72 | - Dependencies: bumped bleach to 2.1.2 |
|
72 | - Dependencies: bumped bleach to 2.1.2 | |
| 73 | - Dependencies: bumped html5lib 1.0.1 |
|
73 | - Dependencies: bumped html5lib 1.0.1 | |
| 74 | - Dependencies: bumped greenlet to 0.4.13 |
|
74 | - Dependencies: bumped greenlet to 0.4.13 | |
| 75 | - Dependencies: bumped markdown to 2.6.11 |
|
75 | - Dependencies: bumped markdown to 2.6.11 | |
| 76 | - Dependencies: bumped psutil to 5.4.3 |
|
76 | - Dependencies: bumped psutil to 5.4.3 | |
| 77 | - Dependencies: bumped beaker to 1.9.1 |
|
77 | - Dependencies: bumped beaker to 1.9.1 | |
| 78 | - Dependencies: bumped alembic to 0.6.8 release. |
|
78 | - Dependencies: bumped alembic to 0.6.8 release. | |
| 79 | - Dependencies: bumped supervisor to 3.3.4 |
|
79 | - Dependencies: bumped supervisor to 3.3.4 | |
| 80 | - Dependencies: bumped pyexpect to 4.4.0 and scandir to 1.7 |
|
80 | - Dependencies: bumped pyexpect to 4.4.0 and scandir to 1.7 | |
| 81 | - Dependencies: bumped appenlight client to 0.6.25 |
|
81 | - Dependencies: bumped appenlight client to 0.6.25 | |
| 82 | - Dependencies: don't require full mysql lib for the db driver. |
|
82 | - Dependencies: don't require full mysql lib for the db driver. | |
| 83 | Reduces installation package size by around 100MB. |
|
83 | Reduces installation package size by around 100MB. | |
| 84 |
|
84 | |||
| 85 |
|
85 | |||
| 86 | Security |
|
86 | Security | |
| 87 | ^^^^^^^^ |
|
87 | ^^^^^^^^ | |
| 88 |
|
88 | |||
| 89 | - My account: changing email in my account now requires providing user |
|
89 | - My account: changing email in my account now requires providing user | |
| 90 | access password. This is a case for only RhodeCode built-in accounts. |
|
90 | access password. This is a case for only RhodeCode built-in accounts. | |
| 91 | Prevents adding recovery email by unauthorized users who gain |
|
91 | Prevents adding recovery email by unauthorized users who gain | |
| 92 | access to logged in session of user. |
|
92 | access to logged in session of user. | |
| 93 | - Logging: fix leaking of tokens to logging. |
|
93 | - Logging: fix leaking of tokens to logging. | |
| 94 | - General: serialize the repo name in repo checks to prevent potential |
|
94 | - General: serialize the repo name in repo checks to prevent potential | |
| 95 | html injections by providing a malformed url. |
|
95 | html injections by providing a malformed url. | |
| 96 |
|
96 | |||
| 97 |
|
97 | |||
| 98 | Performance |
|
98 | Performance | |
| 99 | ^^^^^^^^^^^ |
|
99 | ^^^^^^^^^^^ | |
| 100 |
|
100 | |||
| 101 | - Diffs: don't use recurred diffset attachment in diffs. This makes |
|
101 | - Diffs: don't use recurred diffset attachment in diffs. This makes | |
| 102 | this structure much harder to garbage collect. Reduces memory usage. |
|
102 | this structure much harder to garbage collect. Reduces memory usage. | |
| 103 | - Diff cache: added caching for better performance of large pull requests. |
|
103 | - Diff cache: added caching for better performance of large pull requests. | |
| 104 |
|
104 | |||
| 105 |
|
105 | |||
| 106 | Fixes |
|
106 | Fixes | |
| 107 | ^^^^^ |
|
107 | ^^^^^ | |
| 108 |
|
108 | |||
| 109 | - Age helper: fix issues with proper timezone detection for certain timezones. |
|
109 | - Age helper: fix issues with proper timezone detection for certain timezones. | |
| 110 | Fixes wrong age display in few cases. |
|
110 | Fixes wrong age display in few cases. | |
| 111 | - API: added audit logs for user group related calls that were |
|
111 | - API: added audit logs for user group related calls that were | |
| 112 | accidentally missing. |
|
112 | accidentally missing. | |
| 113 | - Diffs: fix and improve line selections and anchor links. |
|
113 | - Diffs: fix and improve line selections and anchor links. | |
| 114 | - Pull requests: fixed cases with default expected refs are closed or unavailable. |
|
114 | - Pull requests: fixed cases with default expected refs are closed or unavailable. | |
| 115 | For Mercurial with closed default branch a compare across forks could fail. |
|
115 | For Mercurial with closed default branch a compare across forks could fail. | |
| 116 | - Core: properly report 502 errors for gevent and gunicorn. |
|
116 | - Core: properly report 502 errors for gevent and gunicorn. | |
| 117 |
Gevent w |
|
117 | Gevent with Gunicorn doesn't raise normal pycurl errors. | |
| 118 | - Auth plugins: fixed problem with cache of settings in multi-worker mode. |
|
118 | - Auth plugins: fixed problem with cache of settings in multi-worker mode. | |
| 119 | The previous implementation had a bug that cached the settings in each class, |
|
119 | The previous implementation had a bug that cached the settings in each class, | |
| 120 | caused not refreshing the update of settings in multi-worker mode. |
|
120 | caused not refreshing the update of settings in multi-worker mode. | |
| 121 | Only restart of RhodeCode loaded new settings. |
|
121 | Only restart of RhodeCode loaded new settings. | |
| 122 | - Audit logs: properly handle query syntax in the search field. |
|
122 | - Audit logs: properly handle query syntax in the search field. | |
| 123 | - Repositories: better handling of missing requirements errors for repositories. |
|
123 | - Repositories: better handling of missing requirements errors for repositories. | |
| 124 | - API: fixed problems with repository fork/create using celery backend. |
|
124 | - API: fixed problems with repository fork/create using celery backend. | |
| 125 | - VCS settings: added missing flash message on validation errors to prevent |
|
125 | - VCS settings: added missing flash message on validation errors to prevent | |
| 126 | missing out some field input validation problems. |
|
126 | missing out some field input validation problems. | |
| 127 |
|
127 | |||
| 128 |
|
128 | |||
| 129 | Upgrade notes |
|
129 | Upgrade notes | |
| 130 | ^^^^^^^^^^^^^ |
|
130 | ^^^^^^^^^^^^^ | |
| 131 |
|
131 | |||
| 132 | - This release adds support for SVN hook. This required lots of changes on how we |
|
132 | - This release adds support for SVN hook. This required lots of changes on how we | |
| 133 | handle SVN protocol. We did thoughtful tests for SVN compatibility. |
|
133 | handle SVN protocol. We did thoughtful tests for SVN compatibility. | |
| 134 | Please be advised to check the behaviour of SVN repositories during this update. |
|
134 | Please be advised to check the behaviour of SVN repositories during this update. | |
| 135 |
|
135 | |||
| 136 | A check and migrate of SVN hooks is required. In order to do so, please execute |
|
136 | A check and migrate of SVN hooks is required. In order to do so, please execute | |
| 137 | `Rescan filesystem` from admin > settings > Remap and Rescan. This will migrate |
|
137 | `Rescan filesystem` from admin > settings > Remap and Rescan. This will migrate | |
| 138 | all SVN hook to latest available version. To migrate single repository only, |
|
138 | all SVN hook to latest available version. To migrate single repository only, | |
| 139 | please go to the following url: `your-rhodecode-server.com/REPO_NAME/settings/advanced/hooks` |
|
139 | please go to the following url: `your-rhodecode-server.com/REPO_NAME/settings/advanced/hooks` | |
| 140 |
|
140 | |||
| 141 |
- Diff caches are turned off by default for backward compatibility. |
|
141 | - Diff caches are turned off by default for backward compatibility. | |
| 142 | turning them on either individually for bigger repositories or globally for every repository. |
|
142 | We however recommend turning them on either individually for bigger | |
|
|
143 | repositories or globally for every repository. | |||
| 143 | This setting can be found in admin > settings > vcs, or repository > settings > vcs |
|
144 | This setting can be found in admin > settings > vcs, or repository > settings > vcs | |
General Comments 0
You need to be logged in to leave comments.
Login now