Show More
| @@ -0,0 +1,139 b'' | |||||
|
|
1 | |RCE| 4.12.0 |RNS| | |||
|
|
2 | ------------------ | |||
|
|
3 | ||||
|
|
4 | Release Date | |||
|
|
5 | ^^^^^^^^^^^^ | |||
|
|
6 | ||||
|
|
7 | - 2018-04-24 | |||
|
|
8 | ||||
|
|
9 | ||||
|
|
10 | New Features | |||
|
|
11 | ^^^^^^^^^^^^ | |||
|
|
12 | ||||
|
|
13 | - Svn: added support for RhodeCode integration framework. All integrations like | |||
|
|
14 | slack, email, Jenkins now also fully work for SVN. | |||
|
|
15 | - Integrations: added new dedicated Jenkins integration with the support of | |||
|
|
16 | CSRF authentication. Available in EE edition only. | |||
|
|
17 | - Automation: added new bi-directional remote sync. RhodeCode instances can now | |||
|
|
18 | automatically push or pull from/to remote locations. This feature is powered | |||
|
|
19 | by the Scheduler of 4.11 release, and it is required to be enabled for this feature to work. | |||
|
|
20 | Available in EE edition only. | |||
|
|
21 | - Mercurial: path-based permissions. RhodeCode can now use Mercurials narrowhg | |||
|
|
22 | to implement path-based permissions. All permissions are read from .hg/hgacl. | |||
|
|
23 | Thanks to the great contribution from Sandu Turcan. | |||
|
|
24 | - VCS: added new diff caches. Available as an option under vcs settings. | |||
|
|
25 | Diff caches work on pull-request, or individual commits for greater | |||
|
|
26 | performance and reduced memory usage. This feature increases speed of large | |||
|
|
27 | pull requests significantly. In addition for pull requests it will allow | |||
|
|
28 | showing old closed pull requests even if commits from source were removed, | |||
|
|
29 | further enhancing auditing capabilities. | |||
|
|
30 | - Audit: added few new audit log entries especially around changing permissions. | |||
|
|
31 | - LDAP: added connection pinning and timeout option to ldap plugin. This should | |||
|
|
32 | prevent problems when connection to LDAP is not stable causing RhodeCode | |||
|
|
33 | instances to freeze waiting on LDAP connections. | |||
|
|
34 | - User groups: expose public user group profiles. Allows to see members of a user | |||
|
|
35 | groups by other team members, if they have proper permissions. | |||
|
|
36 | - UI: show pull request page in quick nav menu on my account for quicker access. | |||
|
|
37 | - UI: hidden/outdated comments now have visible markers next to line numbers. | |||
|
|
38 | This allows access to them without showing all hidden comments. | |||
|
|
39 | ||||
|
|
40 | ||||
|
|
41 | General | |||
|
|
42 | ^^^^^^^ | |||
|
|
43 | ||||
|
|
44 | - Ssh: show conflicting fingerprint when adding an already existing key. | |||
|
|
45 | Helps to track why adding a key failed. | |||
|
|
46 | - System info: added ulimit to system info. This is causing lots of problems | |||
|
|
47 | when we hit any of those limits, that is why it's important to show this. | |||
|
|
48 | - Repository settings: add hidden view to force re-install hooks. | |||
|
|
49 | Available under /{repo_name}/settings/advanced/hooks | |||
|
|
50 | - Integrations: Webhook now handles response errors and show response for | |||
|
|
51 | easier debugging. | |||
|
|
52 | - Cli: speed up CLI execution start by skipping auth plugin search/registry. | |||
|
|
53 | - SVN: added an example in the docs on how to enable path-based permissions. | |||
|
|
54 | - LDAP: enable connection recycling on LDAP plugin. | |||
|
|
55 | - Auth plugins: use a nicer visual display of auth plugins that would | |||
|
|
56 | highlight that order of enabled plugins does matter. | |||
|
|
57 | - Events: expose shadow repo build url. | |||
|
|
58 | - Events: expose pull request title and uid in event data. | |||
|
|
59 | - API: enable setting sync flag for user groups on create/edit. | |||
|
|
60 | - API: update pull method with a possible specification of the url | |||
|
|
61 | - Logging: improved consistency of auth plugins logs. | |||
|
|
62 | - Logging: improved log for ssl required | |||
|
|
63 | - Dependencies: bumped mercurial to 4.4 series | |||
|
|
64 | - Dependencies: bumped zope.cachedescriptors==4.3.1 | |||
|
|
65 | - Dependencies: bumped zope.deprecation==4.3.0 | |||
|
|
66 | - Dependencies: bumped zope.event==4.3.0 | |||
|
|
67 | - Dependencies: bumped zope.interface==4.4.3 | |||
|
|
68 | - Dependencies: bumped graphviz 0.8.2 | |||
|
|
69 | - Dependencies: bumped to ipaddress 0.1.19 | |||
|
|
70 | - Dependencies: bumped pyexpect to 4.3.1 | |||
|
|
71 | - Dependencies: bumped ws4py to 0.4.3 | |||
|
|
72 | - Dependencies: bumped bleach to 2.1.2 | |||
|
|
73 | - Dependencies: bumped html5lib 1.0.1 | |||
|
|
74 | - Dependencies: bumped greenlet to 0.4.13 | |||
|
|
75 | - Dependencies: bumped markdown to 2.6.11 | |||
|
|
76 | - Dependencies: bumped psutil to 5.4.3 | |||
|
|
77 | - Dependencies: bumped beaker to 1.9.1 | |||
|
|
78 | - Dependencies: bumped alembic to 0.6.8 release. | |||
|
|
79 | - Dependencies: bumped supervisor to 3.3.4 | |||
|
|
80 | - Dependencies: bumped pyexpect to 4.4.0 and scandir to 1.7 | |||
|
|
81 | - Dependencies: bumped appenlight client to 0.6.25 | |||
|
|
82 | - Dependencies: don't require full mysql lib for the db driver. | |||
|
|
83 | Reduces installation package size by around 100MB. | |||
|
|
84 | ||||
|
|
85 | ||||
|
|
86 | Security | |||
|
|
87 | ^^^^^^^^ | |||
|
|
88 | ||||
|
|
89 | - My account: changing email in my account now requires providing user | |||
|
|
90 | access password. This is a case for only RhodeCode built-in accounts. | |||
|
|
91 | Prevents adding recovery email by unauthorized users who gain | |||
|
|
92 | access to logged in session of user. | |||
|
|
93 | - Logging: fix leaking of tokens to logging. | |||
|
|
94 | - General: serialize the repo name in repo checks to prevent potential | |||
|
|
95 | html injections by providing a malformed url. | |||
|
|
96 | ||||
|
|
97 | ||||
|
|
98 | Performance | |||
|
|
99 | ^^^^^^^^^^^ | |||
|
|
100 | ||||
|
|
101 | - Diffs: don't use recurred diffset attachment in diffs. This makes | |||
|
|
102 | this structure much harder to garbage collect. Reduces memory usage. | |||
|
|
103 | - Diff cache: added caching for better performance of large pull requests. | |||
|
|
104 | ||||
|
|
105 | ||||
|
|
106 | Fixes | |||
|
|
107 | ^^^^^ | |||
|
|
108 | ||||
|
|
109 | - Age helper: fix issues with proper timezone detection for certain timezones. | |||
|
|
110 | Fixes wrong age display in few cases. | |||
|
|
111 | - API: added audit logs for user group related calls that were | |||
|
|
112 | accidentally missing. | |||
|
|
113 | - Diffs: fix and improve line selections and anchor links. | |||
|
|
114 | - Pull requests: fixed cases with default expected refs are closed or unavailable. | |||
|
|
115 | For Mercurial with closed default branch a compare across forks could fail. | |||
|
|
116 | - Core: properly report 502 errors for gevent and gunicorn. | |||
|
|
117 | Gevent wtih Gunicorn doesn't raise normal pycurl errors. | |||
|
|
118 | - Auth plugins: fixed problem with cache of settings in multi-worker mode. | |||
|
|
119 | The previous implementation had a bug that cached the settings in each class, | |||
|
|
120 | caused not refreshing the update of settings in multi-worker mode. | |||
|
|
121 | Only restart of RhodeCode loaded new settings. | |||
|
|
122 | - Audit logs: properly handle query syntax in the search field. | |||
|
|
123 | - Repositories: better handling of missing requirements errors for repositories. | |||
|
|
124 | - API: fixed problems with repository fork/create using celery backend. | |||
|
|
125 | - VCS settings: added missing flash message on validation errors to prevent | |||
|
|
126 | missing out some field input validation problems. | |||
|
|
127 | ||||
|
|
128 | ||||
|
|
129 | Upgrade notes | |||
|
|
130 | ^^^^^^^^^^^^^ | |||
|
|
131 | ||||
|
|
132 | - This release adds support for SVN hook. This required lots of changes on how we | |||
|
|
133 | handle SVN protocol. We did thoughtful tests for SVN compatibility. | |||
|
|
134 | Please be advised to check the behaviour of SVN repositories during this update. | |||
|
|
135 | ||||
|
|
136 | - Diff caches are turned off by default for backward compatibility. We however recommend | |||
|
|
137 | turning them on either individually for bigger repositories or globally for every repository. | |||
|
|
138 | This setting can be found in admin > settings > vcs, or repository > settings > vcs | |||
|
|
139 | ||||
General Comments 0
You need to be logged in to leave comments.
Login now