Show More
@@ -1,143 +1,144 b'' | |||
|
1 | 1 | |RCE| 4.12.0 |RNS| |
|
2 | 2 | ------------------ |
|
3 | 3 | |
|
4 | 4 | Release Date |
|
5 | 5 | ^^^^^^^^^^^^ |
|
6 | 6 | |
|
7 | 7 | - 2018-04-24 |
|
8 | 8 | |
|
9 | 9 | |
|
10 | 10 | New Features |
|
11 | 11 | ^^^^^^^^^^^^ |
|
12 | 12 | |
|
13 | 13 | - Svn: added support for RhodeCode integration framework. All integrations like |
|
14 | 14 | slack, email, Jenkins now also fully work for SVN. |
|
15 | 15 | - Integrations: added new dedicated Jenkins integration with the support of |
|
16 | 16 | CSRF authentication. Available in EE edition only. |
|
17 | 17 | - Automation: added new bi-directional remote sync. RhodeCode instances can now |
|
18 | 18 | automatically push or pull from/to remote locations. This feature is powered |
|
19 | 19 | by the Scheduler of 4.11 release, and it is required to be enabled for this feature to work. |
|
20 | 20 | Available in EE edition only. |
|
21 | 21 | - Mercurial: path-based permissions. RhodeCode can now use Mercurials narrowhg |
|
22 | 22 | to implement path-based permissions. All permissions are read from .hg/hgacl. |
|
23 | 23 | Thanks to the great contribution from Sandu Turcan. |
|
24 | 24 | - VCS: added new diff caches. Available as an option under vcs settings. |
|
25 | 25 | Diff caches work on pull-request, or individual commits for greater |
|
26 | 26 | performance and reduced memory usage. This feature increases speed of large |
|
27 | 27 | pull requests significantly. In addition for pull requests it will allow |
|
28 | 28 | showing old closed pull requests even if commits from source were removed, |
|
29 | 29 | further enhancing auditing capabilities. |
|
30 | 30 | - Audit: added few new audit log entries especially around changing permissions. |
|
31 | 31 | - LDAP: added connection pinning and timeout option to ldap plugin. This should |
|
32 | 32 | prevent problems when connection to LDAP is not stable causing RhodeCode |
|
33 | 33 | instances to freeze waiting on LDAP connections. |
|
34 | 34 | - User groups: expose public user group profiles. Allows to see members of a user |
|
35 |
group |
|
|
35 | group by other team members, if they have proper permissions. | |
|
36 | 36 | - UI: show pull request page in quick nav menu on my account for quicker access. |
|
37 | 37 | - UI: hidden/outdated comments now have visible markers next to line numbers. |
|
38 | 38 | This allows access to them without showing all hidden comments. |
|
39 | 39 | |
|
40 | 40 | |
|
41 | 41 | General |
|
42 | 42 | ^^^^^^^ |
|
43 | 43 | |
|
44 | 44 | - Ssh: show conflicting fingerprint when adding an already existing key. |
|
45 | 45 | Helps to track why adding a key failed. |
|
46 | 46 | - System info: added ulimit to system info. This is causing lots of problems |
|
47 | 47 | when we hit any of those limits, that is why it's important to show this. |
|
48 | 48 | - Repository settings: add hidden view to force re-install hooks. |
|
49 | 49 | Available under /{repo_name}/settings/advanced/hooks |
|
50 | 50 | - Integrations: Webhook now handles response errors and show response for |
|
51 | 51 | easier debugging. |
|
52 | 52 | - Cli: speed up CLI execution start by skipping auth plugin search/registry. |
|
53 | 53 | - SVN: added an example in the docs on how to enable path-based permissions. |
|
54 | 54 | - LDAP: enable connection recycling on LDAP plugin. |
|
55 | 55 | - Auth plugins: use a nicer visual display of auth plugins that would |
|
56 | 56 | highlight that order of enabled plugins does matter. |
|
57 | 57 | - Events: expose shadow repo build url. |
|
58 | 58 | - Events: expose pull request title and uid in event data. |
|
59 | 59 | - API: enable setting sync flag for user groups on create/edit. |
|
60 | 60 | - API: update pull method with a possible specification of the url |
|
61 | 61 | - Logging: improved consistency of auth plugins logs. |
|
62 | 62 | - Logging: improved log for ssl required |
|
63 | 63 | - Dependencies: bumped mercurial to 4.4 series |
|
64 | 64 | - Dependencies: bumped zope.cachedescriptors==4.3.1 |
|
65 | 65 | - Dependencies: bumped zope.deprecation==4.3.0 |
|
66 | 66 | - Dependencies: bumped zope.event==4.3.0 |
|
67 | 67 | - Dependencies: bumped zope.interface==4.4.3 |
|
68 | 68 | - Dependencies: bumped graphviz 0.8.2 |
|
69 | 69 | - Dependencies: bumped to ipaddress 0.1.19 |
|
70 | 70 | - Dependencies: bumped pyexpect to 4.3.1 |
|
71 | 71 | - Dependencies: bumped ws4py to 0.4.3 |
|
72 | 72 | - Dependencies: bumped bleach to 2.1.2 |
|
73 | 73 | - Dependencies: bumped html5lib 1.0.1 |
|
74 | 74 | - Dependencies: bumped greenlet to 0.4.13 |
|
75 | 75 | - Dependencies: bumped markdown to 2.6.11 |
|
76 | 76 | - Dependencies: bumped psutil to 5.4.3 |
|
77 | 77 | - Dependencies: bumped beaker to 1.9.1 |
|
78 | 78 | - Dependencies: bumped alembic to 0.6.8 release. |
|
79 | 79 | - Dependencies: bumped supervisor to 3.3.4 |
|
80 | 80 | - Dependencies: bumped pyexpect to 4.4.0 and scandir to 1.7 |
|
81 | 81 | - Dependencies: bumped appenlight client to 0.6.25 |
|
82 | 82 | - Dependencies: don't require full mysql lib for the db driver. |
|
83 | 83 | Reduces installation package size by around 100MB. |
|
84 | 84 | |
|
85 | 85 | |
|
86 | 86 | Security |
|
87 | 87 | ^^^^^^^^ |
|
88 | 88 | |
|
89 | 89 | - My account: changing email in my account now requires providing user |
|
90 | 90 | access password. This is a case for only RhodeCode built-in accounts. |
|
91 | 91 | Prevents adding recovery email by unauthorized users who gain |
|
92 | 92 | access to logged in session of user. |
|
93 | 93 | - Logging: fix leaking of tokens to logging. |
|
94 | 94 | - General: serialize the repo name in repo checks to prevent potential |
|
95 | 95 | html injections by providing a malformed url. |
|
96 | 96 | |
|
97 | 97 | |
|
98 | 98 | Performance |
|
99 | 99 | ^^^^^^^^^^^ |
|
100 | 100 | |
|
101 | 101 | - Diffs: don't use recurred diffset attachment in diffs. This makes |
|
102 | 102 | this structure much harder to garbage collect. Reduces memory usage. |
|
103 | 103 | - Diff cache: added caching for better performance of large pull requests. |
|
104 | 104 | |
|
105 | 105 | |
|
106 | 106 | Fixes |
|
107 | 107 | ^^^^^ |
|
108 | 108 | |
|
109 | 109 | - Age helper: fix issues with proper timezone detection for certain timezones. |
|
110 | 110 | Fixes wrong age display in few cases. |
|
111 | 111 | - API: added audit logs for user group related calls that were |
|
112 | 112 | accidentally missing. |
|
113 | 113 | - Diffs: fix and improve line selections and anchor links. |
|
114 | 114 | - Pull requests: fixed cases with default expected refs are closed or unavailable. |
|
115 | 115 | For Mercurial with closed default branch a compare across forks could fail. |
|
116 | 116 | - Core: properly report 502 errors for gevent and gunicorn. |
|
117 |
Gevent w |
|
|
117 | Gevent with Gunicorn doesn't raise normal pycurl errors. | |
|
118 | 118 | - Auth plugins: fixed problem with cache of settings in multi-worker mode. |
|
119 | 119 | The previous implementation had a bug that cached the settings in each class, |
|
120 | 120 | caused not refreshing the update of settings in multi-worker mode. |
|
121 | 121 | Only restart of RhodeCode loaded new settings. |
|
122 | 122 | - Audit logs: properly handle query syntax in the search field. |
|
123 | 123 | - Repositories: better handling of missing requirements errors for repositories. |
|
124 | 124 | - API: fixed problems with repository fork/create using celery backend. |
|
125 | 125 | - VCS settings: added missing flash message on validation errors to prevent |
|
126 | 126 | missing out some field input validation problems. |
|
127 | 127 | |
|
128 | 128 | |
|
129 | 129 | Upgrade notes |
|
130 | 130 | ^^^^^^^^^^^^^ |
|
131 | 131 | |
|
132 | 132 | - This release adds support for SVN hook. This required lots of changes on how we |
|
133 | 133 | handle SVN protocol. We did thoughtful tests for SVN compatibility. |
|
134 | 134 | Please be advised to check the behaviour of SVN repositories during this update. |
|
135 | 135 | |
|
136 | 136 | A check and migrate of SVN hooks is required. In order to do so, please execute |
|
137 | 137 | `Rescan filesystem` from admin > settings > Remap and Rescan. This will migrate |
|
138 | 138 | all SVN hook to latest available version. To migrate single repository only, |
|
139 | 139 | please go to the following url: `your-rhodecode-server.com/REPO_NAME/settings/advanced/hooks` |
|
140 | 140 | |
|
141 |
- Diff caches are turned off by default for backward compatibility. |
|
|
142 | turning them on either individually for bigger repositories or globally for every repository. | |
|
141 | - Diff caches are turned off by default for backward compatibility. | |
|
142 | We however recommend turning them on either individually for bigger | |
|
143 | repositories or globally for every repository. | |
|
143 | 144 | This setting can be found in admin > settings > vcs, or repository > settings > vcs |
General Comments 0
You need to be logged in to leave comments.
Login now