Permalink
Browse files

Updated changes. Version bump.

git-svn-id: http://code.elgg.org/elgg/branches/1.7@9130 36083f99-b078-4883-b0ff-0f9b5a30f544
  • Loading branch information...
1 parent b82fe17 commit 120384a3f27b41a7ee1d553e27d7bfa565563940 @brettp brettp committed Jun 2, 2011
Showing with 37 additions and 13 deletions.
  1. +36 −12 CHANGES.txt
  2. +1 −1 version.php
View
48 CHANGES.txt
@@ -1,3 +1,27 @@
+Version 1.7.9
+(June 1, 2011 from http://code.elgg.org/branches/1.7)
+
+ Security Enhancements:
+ * Blocking possible access to restricted pages if headers are output too early. Thanks to Vazco
+ for reporting!
+
+ Bugfixes:
+ * Admins can delete Pages again.
+ * TinyMCE upgraded to 3.4.2 to fix IE support.
+ * Autocomplete input works correctly.
+ * Fixed Message Board "all" posts.
+ * Fixed deleting internal messages on some non-English sites.
+ * Better feedback if an error occurs when saving widgets.
+ * Messages from deleted users no longer show the recipient's avatar.
+ * Https logins on fully https sites work correctly.
+
+ API Changes:
+ * Added "creating", "river" plugin hook.
+ * User metadata is registered as independent higher in the boot sequence.
+ * Group ACLs are updated correctly when joining a non-logged in user to a group.
+ * Can return 0 for plugin hook 'comments', 'count'.
+
+
Version 1.7.8
(April 4, 2011 from http://code.elgg.org/branches/1.7)
@@ -24,7 +48,7 @@ Version 1.7.7
(January 31, 2011 from http://code.elgg.org/branches/1.7)
Security Enhancements:
- * Only admins can view the unvalidated users page (Thanks to Manacim
+ * Only admins can view the unvalidated users page (Thanks to Manacim
Medriano for the report!)
Bugfixes:
@@ -62,17 +86,17 @@ Version 1.7.6
Version 1.7.5
(November 26, 2010 from http://code.elgg.org/branches/1.7)
-
+
Security Enhancements:
* Fixed a security flaw in the Bookmarks plugin that could
- allow an XSS attack using crafted URLs. Thanks to Akhilesh
+ allow an XSS attack using crafted URLs. Thanks to Akhilesh
Gupta for the bug report.
* Fixed a security flaw in the widgets system that could allow
an XSS attack using crafted URLs.
Bugfixes:
* Checking for mismatched passwords before creating user when
- manually adding users.
+ manually adding users.
* 'large' size profile icons created when cropped.
* Fixed menu entry for user's files link.
* Fixed caching issues with plugin-added view types.
@@ -90,7 +114,7 @@ Version 1.7.5
Bookmarks, Members, Pages, The Wire, Groups, Invite Friends,
and Messages.
* Added a page to view Wire posts by user.
-
+
API Changes:
* Added remove_group_tool_option().
* Wrapped Twitter Service's vendor's oAuth lib in class_exists().
@@ -119,12 +143,12 @@ Version 1.7.4
* CSS is correctly cached for newly enabled plugins.
* Can no longer add bookmarks without a title. Previous bookmarks with
out titles can now be deleted.
-
+
UI/UX Changes:
* Pages: Admin users can edit user-defined "Welcome page."
* Pages: Group "Welcome page" can be edited.
- * User Validation: Added an admin section for unvalidated users. An
- admin user can resend validation request, validate, or delete
+ * User Validation: Added an admin section for unvalidated users. An
+ admin user can resend validation request, validate, or delete
unvalidated users.
API Changes:
@@ -194,13 +218,13 @@ Version 1.7.1
* Tag search works in groups and members.
* Tag clouds correctly link to tag search.
* RSS views added to search.
- * Wrapper function for get_entities() correctly rewrites container_guid to
+ * Wrapper function for get_entities() correctly rewrites container_guid to
owner_guid.
* output/url correctly appends http:// again.
* full_url() urlencode()'s ' and " to avoid a security problem in IE.
-
+
API changes:
- * Moved admin flag to users_entity table and added ElggUser->isAdmin(),
+ * Moved admin flag to users_entity table and added ElggUser->isAdmin(),
->makeAdmin(), and ->removeAdmin() to replace the metadata.
* Plugin hook for reported content includes the report object.
* UTF8 upgrade checks server defaults before running to avoid
@@ -269,4 +293,4 @@ Version 1.7.0
* New plugin hook rest:init so plugins can configure authentication modules
* Moved auth.gettoken to POST for increased security
* Fixed REST POST bug #1114
- * Fixed #881, #1214, #1215, #1216, #1217, #1218, #1219, #1220, #1298, #1364
+ * Fixed #881, #1214, #1215, #1216, #1217, #1218, #1219, #1220, #1298, #1364
View
2 version.php
@@ -14,4 +14,4 @@
$version = 2011052801;
// Human-friendly version name
-$release = '1.7.8';
+$release = '1.7.9';

0 comments on commit 120384a

Please sign in to comment.