##// END OF EJS Templates
docs: added release notes for 4.10.0
marcink -
r2207:da34877f default
parent child Browse files
Show More
@@ -0,0 +1,178 b''
1 |RCE| 4.10.0 |RNS|
2 ------------------
3
4 Release Date
5 ^^^^^^^^^^^^
6
7 - 2017-11-02
8
9
10 New Features
11 ^^^^^^^^^^^^
12
13 - SSH (Beta): added support for authentication via SSH keys. It's possible
14 to use SSH key based authentication instead of HTTP. Users are allowed to
15 store multiple keys and use them to push/pull code via SSH.
16 - Pull requests: store and show a merge strategy. Pull request strategy will
17 be also now shown in the UI.
18 Close/delete branch are shown if that option is selected.
19 - Pull requests: Add option to close a branch before merging for Mercurial.
20 - Processes page. RhodeCode will show a list of all current workers with
21 CPU and Memory usage.
22 It's also possible to restart each worker from the web interface.
23 - Auth tokens: allow specifying a custom expiration date from UI.
24 - Integrations: webhook, allow to set a custom header.
25 - Integrations: webhook, add possibility to specify username and password.
26 - UI: added copy-to-clipboard for commits, file paths, gist/clone urls.
27 - UI: improve support for meta-tags in repository description:
28 Tags are extracted to the beginning of the description during rendering.
29 Show helpers in proper places in groups/repos/forks with all available tags.
30 Add a new deprecated tag.
31 - UI: commits page, hide evolve commits.
32 Now optionally it's possible to show them via a new link on changelog page.
33 - Audit logs: allow showing individual entries for audit log.
34 - Audit logs: expose repo related audit logs in repository view.
35 - User sessions: get ability to count memcached sessions.
36 - Core: added support for REDIS based user sessions and cache backend.
37 - Core: added support for Golang go-import functionality.
38 - SVN: allow specifying alternative template file for mod_dav config.
39 - Markup: make relative links pin to raw files for images/files as links.
40 Allows building relative MD/RST links that go to rendered content
41 - Auth: allow binding the whitelist views to specific auth tokens. This allows
42 to access only specific pages via given auth token. E.g possible to expose
43 raw diff/raw file content only for specific single token.
44 The new format is `viewName@TOKEN`
45 - Channelstream: push events with comments on single commits. Users will get
46 live notification for events on single commits too.
47
48
49 General
50 ^^^^^^^
51
52 - License: add helper to show alternative application method for license via
53 ishell.
54 - http: set REMOTE_USER and REMOTE_HOST http variables in order for more
55 Mercurial extensions compatibility.
56 - User/User groups: show if users or user groups are a part of review rules.
57 - Permissions: new improved visual permissions summary. Show exactly how
58 permissions were inherited, and which rule overwrote the other.
59 - Permissions: added new JSON endpoint to extract permissions as JSON data
60 for 3rd party processing. This allows access for reporting tools without
61 giving any ADMIN API access to fetch permissions.
62 - Pyramid: ported all controllers to Pyramid, with python3 compatible code.
63 - Gunicorn: allow custom logger to be set for a consistent formatting of
64 Gunicorn logs with RhodeCode logs.
65 - Search: per-repo search shouldn't require admin permissions. Read is enough
66 because we access the repo data only.
67 - Git: updated to 2.13.5 release
68 - Mercurial: updated to 4.2.3 release.
69 - Mercurial Evolve: updated to 6.6.0 release.
70 - Dependencies: bumped pysqlite to Mako to 1.0.7
71 - Dependencies: bumped pysqlite to 2.8.3
72 - Dependencies: bumped psycopg2 to 2.7.1
73 - Dependencies: bumped docutils to 0.13.1
74 - Dependencies: bumped simplejson to 3.11.1
75 - Dependencies: bumped alembic to 0.9.2
76 - Dependencies: bumped Beaker to 1.9.0
77 - Dependencies: bumped Markdown to 2.6.8
78 - Dependencies: bumped dogpile.cache to 0.6.4
79 - Dependencies: bumped colander to 1.3.3
80 - Dependencies: bumped appenlight_client to 0.6.21
81 - Dependencies: bumped cprofileV to 1.0.7
82 - Dependencies: bumped ipdb to 0.10.3
83 - Dependencies: bumped supervisor to 3.3.2
84 - Dependencies: bumped subprocess32 to 3.2.7
85 - Dependencies: bumped pathlib2 to 2.3.0.
86 - Dependencies: bumped gunicorn==19.7.1
87 - Dependencies: bumped gevent to 1.2.2 together with greenlet to 0.4.12
88 - Dependencies: bumped venusian to 1.1.0
89 - Dependencies: bumped ptyprocess to 0.5.2
90 - Dependencies: bumped testpath to 0.3.1
91 - Dependencies: bumped Pyramid to 1.9.1
92 - Dependencies: bumped supervisor to 3.3.3
93 - Dependencies: bumped sqlalchemy to version 1.1.11
94
95
96 Security
97 ^^^^^^^^
98
99 - Security: use no-referrer for outside link to stop leaking potential
100 parameters such as auth token stored inside GET flags.
101 - Auth tokens: always check permissions to scope tokens to prevent resource
102 discovery of private repos.
103 - Strip: fix XSS in repo strip view.
104 - Files: prevent XSS in fake errors message on filenodes.
105 - Files: remove right-to-left override character for display in files.
106 This allows faking the name a bit, we in this particular place want to
107 skip the override for enhanced security.
108 - Repo forks: security, check for access to fork_id parameter to prevent
109 resource discovery.
110 - Pull requests: security double check permissions on injected forms of
111 source and target repositories. Fixes resource discovery.
112 - Pull requests: security, prevent from injecting comments to other pull
113 requests for users don't have access to.
114
115
116 Performance
117 ^^^^^^^^^^^
118
119 - Goto-switcher: use special commit: prefix to explicitly search for commits.
120 previous solution could make the go-to switcher slow in case of larger search
121 index present.
122 - Goto-switcher: optimized performance and query capabilities.
123 - Diffs: use whole chunk diff to calculate if it's oversized or not.
124 This fixes an issue if a file is added that has very large number of small
125 lines. In this case the time to detect if the diff should be limited was
126 very long and CPU intensive.
127 - Markup: use cached version of http pattern for urlify_text. This
128 increases performance because we don't have to compile the pattern each time
129 we execute this commonly used function.
130 - Changelog: fix and optimize loading of chunks for file history.
131 - Vcs: reduce sql queries used during pull/push operations.
132 - Auth: use cache_ttl from a plugin to also cache calculated permissions.
133 This gives a 30% speed increase in operations like svn commit.
134
135
136 Fixes
137 ^^^^^
138
139 - Initial-gravatars: fix case of dot being present before @domain.
140 - Vcs: report 404 for shadow repos that are not existing anymore.
141 - RSS/Atom Feeds: generate entries with proper unique ids.
142 - DB: use LONGTEXT for mysql in user_logs. Fixes problem with mysql rejecting
143 insert because of too long json data.
144 - Pull request: add missing audit data for pull_request.close action.
145 - User groups: properly set add/delete members for usage in audit data.
146 - Repo, auth-tokens: UX, set VCS scope if repo scopped token is selected.
147 - Changelog: fix and optimize loading of chunks for file history.
148 - Error reporting: improve handling of exception that are non-standard.
149 Inject traceback information into unhandled exceptions.
150 - Users: add additional information why user with pending reviews
151 shouldn't be deleted.
152 - Auth ldap: improve messages when users failed to authenticate via LDAP.
153 - Sqlalchemy: enabled connection ping.
154 should fix potential issues with Mysql server has gone away issues.
155 - License page: fix usage of url() that could prevent from using convert license.
156 - Permissions: use same way of sorting of user_group permissions like user ones.
157
158
159 Upgrade notes
160 ^^^^^^^^^^^^^
161
162 - Searching for commits in goto-switcher must be now prefixed with
163 commit:<hash>
164 - Because of pyramid porting view names have changed, and we made a backward
165 compatibility mapping for most common ones only.
166 We recommend reviewing your whitelist view access list.
167 There's a new dedicated page with ALL views listed under admin > permissions
168 Please take a look in there to port any non-standard views for whitelist access.
169
170 - SSH support is implemented via combination of internal, and installed hooks.
171 A file called `hgrc_rhodecode` is added to each repository that was used with
172 SSH access. This file is then imported inside main hgrc file, it contains
173 some Mercurial hooks for ACL checks.
174 This breaks full backward compatibility with releases prior to 4.10.0.
175 If you install 4.10+, enable SSH module and use SSH with a Mercurial repo, then
176 rollback used version to 4.9.1. In such case one additional actions is required.
177 Remove following line from `hgrc` file stored inside the repository:
178 `%include hgrc_rhodecode`
@@ -9,6 +9,7 b' Release Notes'
9 .. toctree::
9 .. toctree::
10 :maxdepth: 1
10 :maxdepth: 1
11
11
12 release-notes-4.10.0.rst
12 release-notes-4.9.1.rst
13 release-notes-4.9.1.rst
13 release-notes-4.9.0.rst
14 release-notes-4.9.0.rst
14 release-notes-4.8.0.rst
15 release-notes-4.8.0.rst
General Comments 0
You need to be logged in to leave comments. Login now