Latest release

CakePHP 2.10.3 Released

@markstory markstory released this Sep 19, 2017 · 16213 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 2.10.3. This is a maintenance release for the 2.10 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 2.10.3. See the changelog for every commit.

  • Fix flash message stacking in SessionComponent fixing regressions introduced in earlier releases.
  • Improved API documentation.

Contributors to 2.10.3

Thank you to all the contributors that helped make this release happen:

  • Jeremy Harris
  • LustyRain
  • Mark Story

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

CakePHP 3.5.2 released

@markstory markstory released this Sep 12, 2017 · 32 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.5.2. This is a maintenance release for the 3.5 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 3.5.2. See the changelog for every commit.

  • Improved API documentation.
  • Http\Client no longer fails to parse cookies with non-standard properties.
  • CookieComponent configuration is more backwards compatible with previous versions.
  • PO file parsing now handles po files that have the same message id defined as both a singular and a plural when the singular message is defined after the plural one.
  • Helper::addClass() no longer emits warnings when class attributes are arrays.
  • View setter methods now return $this instead of void.
  • RedisEngine increment/decrement now work with infinite timeout keys again.
  • HtmlHelper::link() now supports the fullBase option.
  • Text::uuid() will now use random_int if that function is defined.
  • Debugger::highlight() is no longer off by one line.
  • Cookies added via Http\Client::addCookie() now require a path and domain.

Contributors to 3.5.2

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Florian Krämer
  • Huw Jones
  • José Lorenzo Rodríguez
  • Mark Scherer
  • Mark Story
  • Robert Pustułka
  • batopa
  • inoas
  • ndm2
  • supermanner

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

CakePHP 2.10.2 Released

@markstory markstory released this Aug 30, 2017 · 16213 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 2.10.2. This is a maintenance release for the 2.10 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 2.10.2. See the changelog for every commit.

  • Improved performance of test suites by not truncating tables that were just created.
  • Web test runner now works with PHPUnit > 4.
  • The hiddenField option on radio buttons now works as documented.
  • SQLServer driver now emits exceptions when the persistent option is used. This option does not work properly with SQLServer.
  • SessionHelper now handles stacked flash messages created by FlashComponent.

Contributors to 2.10.2

Thank you to all the contributors that helped make this release happen:

  • Jeremy Harris
  • Luis Cano
  • Mark Story
  • Mike Fellows
  • Val Bancer

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

CakePHP 3.5.1 released

@markstory markstory released this Aug 29, 2017 · 80 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.5.1. This is a maintenance release for the 3.5 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 3.5.1. See the changelog for every commit.

  • Warnings are now logged when active connections are destroyed with pending transactions.
  • Hash::remove() correctly handles 0 in path strings now.
  • Improved API documentation.
  • Query::notMatching() now works with BelongsToMany associations that use composite primary keys.
  • DSN string parsing was restored for SqlLocalDB.
  • Fixed compatibility issues between Collection and Traversable.
  • Response headers set in view templates using the immutable methods are now output correctly.
  • Request::clientIp() now reads IPs from the end of the IP chain when trustProxy is enabled.
  • Xml::build() now default the parseHuge option to false. Previously it was documented as defaulting to false, but was defaulted to true. Disabling this option by default prevents arbitrarily large XML documents from consuming too much memory.
  • Hash comparisons in Authentication classes now use constant time comparison functions.
  • FormAuthenticate hashes passwords even when the user is not found as documented. This helps to protect against timing attacks.
  • The non-PSR7 Dispatcher can send cookies once again.
  • AssetDispatcher no longer serves files starting with ..
  • The bundled root certificates have been updated to the latest bundle from mozilla. This removes a few untrusted certificate authorities like StartSSL.
  • Form::setErrors() was added.
  • ConsoleIntegrationTestCase has new methods added for ensuring stdout/stderr are empty.
  • HtmlHelper now HTML encodes string URLs for css/javascript/images in case user data is supplied to them.

Contributors to 3.5.1

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Ceeram
  • José Lorenzo Rodríguez
  • Mark Scherer
  • Mark Story
  • Tadahisa MOTOOKA
  • chinpei215
  • inoas

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

CakePHP 3.5.0 released

@markstory markstory released this Aug 19, 2017 · 165 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.5.0. This is the first stable release of 3.5.0. 3.5.0 provides a number improvements both large and small to CakePHP. It also deprecates several features that will be removed in 4.0.0.

In following with our previously announced roadmap work will now begin on 3.6. This work will take place in the 3.next branch, while the master branch now contains 3.5.x.

Upgrading to 3.5.0

You can use composer to upgrade to CakePHP 3.5.0::

php composer.phar require "cakephp/cakephp:3.5.0"

Deprecations

3.5.0 deprecates a number of methods as we continue to transition away from combined get/set methods in favour of separate get/set methods. The migration guide has the full list of deprecated methods and their replacements. Deprecated features will continue to exist and behave as they always have until 4.0.0

What's new in 3.5.0?

The migration guide has a complete list of what's new in 3.5.0. We recommend you give that page a read when upgrading.

  • Scoped Middleware - Middleware can now be conditionally applied to routes in specific URL scopes. This allows you to build specific stacks of middleware for different parts of your application without having to write URL checking code in your middleware.
  • New Middleware - New middleware was added to apply CSRF tokens, and encrypted cookies.
  • Improved Console Environment - A new console dispatcher has been added, integrating the Application class into the CLI environment. Integration testing helpers have been added making testing console commands simpler.
  • Helpful Console Errors - Missing options & subcommands now make suggestions of valid options instead of just erroring out.
  • Cache Engine Fallbacks - Cache engines can now be configured with a fallback key that defines a cache configuration to fall back to if the engine is misconfigured (or unavailable).
  • Cookie Objects - New Cookie & CookieCollection classes have been added. These classes allow you to work with cookies in an object-orientated way.
  • dotenv Support added to Application Skeleton - The application skeleton now features a 'dotenv' integration making it easier to use environment variables to configure your application.

As always, a huge thanks to all the community members that helped make this release happen by reporting issues and sending pull requests. 3.5.0 is a large release and would not have been possible without the community support and feedback.

Downloads

CakePHP 3.4.13 released

@markstory markstory released this Aug 17, 2017 · 944 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP
3.4.13. This is a maintenance release for the 3.4 branch that fixes several
community reported issues.

Bugfixes & New Features

You can expect the following changes in 3.4.13. See the changelog for every commit.

  • Empty MO files are no longer ignored by I18n message collections.
  • Missing Controller error messages were improved when routing parameters were not correctly inflected.
  • Improved compatibility with PHP7.2.
  • The hiddenField option for radio buttons now works as documented.
  • Nested fields and multi-record forms using the ArrayContext are easier to define as default values and schema options fallback root level entities.
  • Cake\Datasouce\EntityTrait::setDirty() now returns $this as documented.
  • Improved database URI parsing making it possible to use usernames/passwords with # in them.
  • Improved compatibility with Memcached 3.x by removing check for use_sasl ini setting.
  • Improved API documentation.
  • Sqlserver connections now raise an error when the persistent flag is used. This option never worked correctly, and should not be used.
  • Connections no longer unset their driver on destruction fixing use after free issues.

Contributors to 3.4.13

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Bernat Arlandis
  • Bryan Crowe
  • David Yell
  • José Lorenzo Rodríguez
  • Mark Scherer
  • Mark Story
  • Michael Hoffmann
  • Mike Fellows
  • antograssiot
  • chinpei215
  • inoas
  • lilHermit
  • saeideng

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

Pre-release

CakePHP 3.5.0-RC2 released

@markstory markstory released this Aug 12, 2017 · 219 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.5.0-RC2. This is a release candidate for 3.5.0. 3.5.0 provides a number improvements both large and small to CakePHP. It also deprecates several features that will be removed in 4.0.0.

Upgrading to this Version

You can use composer to upgrade to the RC version of CakePHP 3.5.0:

php composer.phar require "cakephp/cakephp:3.5.0-RC2"

Changes since 3.5.0-RC1

The following changes have been made to 3.5 since 3.5.0-RC1.

  • Cake\Collection\Collection::avg() and median() were added.
  • Cake\Http\Client now raises a 504 HttpException when a timeout occurs.
  • Improved deprecation comments in API doc blocks.
  • Cake\Http\Client response bodies can be read with the PSR7 interface once again.
  • Cake\Http\Client no longer emits an empty cookie header when there are no cookies.
  • Improved SQLServer 2008 pagination shims to work when results are ordered by a computed field.
  • Cake\Auth\DefaultPasswordHasher now includes the hashCost option as a factor into whether or not a password needs to be rehashed.
  • IntegrationTestCase now correctly generates form-tampering prevention tokens for requests with query string arguments in the URL string.
  • Empty translation messages now return the key for messages with no context.
  • Cake\Validation\Validator::scalar() was added.
  • Cake\TestSuite\TestCase::loadFixtures() now loads all fixtures if no arguments are provided.
  • CommandRunner now outputs a command list if no arguments are provided.
  • Unknown subcommands, options and arguments now output more helpful error messages with suggestions of what you may have wanted to do.
  • Empty MO files are no longer ignored by I18n message collections.
  • Missing Controller error messages were improved when routing parameters were not correctly inflected.
  • RoutingMiddleware now preserves keys in the params attribute defined earlier in the request.
  • Improved compatibility with PHP7.2.
  • Cake\Core\InstanceConfigTrait::getConfig() now has a default value parameter.
  • Cake\Datasouce\EntityTrait::setDirty() now returns $this as documented.
  • The hiddenField option for radio buttons now works as documented.

The migration guide has a complete list of what's new in 3.5.0, and what has been deprecated. We recommend you give that page a read when upgrading.

Contributors to 3.5.0-RC2

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Bernat Arlandis
  • Ian den Hartog
  • Jeremy Harris
  • Joris Vaesen
  • José Lorenzo Rodríguez
  • Marc Würth
  • Mark Scherer
  • Mark Story
  • Michael Hoffmann
  • Mike Fellows
  • Yves P
  • antograssiot
  • chinpei215
  • inoas
  • saeid

As always, a huge thanks to all the community members that helped make this release happen by reporting issues and sending pull requests.

Downloads

CakePHP 2.10.1 Released

@markstory markstory released this Aug 8, 2017 · 16213 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 2.10.1. This is a maintenance release for the 2.10 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 2.10.1. See the changelog for every commit.

  • Added backwards compatibility shim for getMock() on CakeTestCase. This makes upgrading to newer versions of PHPUnit easier.
  • Model::deleteAll() once again uses recursive=0 by default. This reverts a change done in 2.10.0 that attempted to improve performance of deleteAll().
  • CakeEmail once again attachs files that define the data key, but no mimetype.

Contributors to 2.10.1

Thank you to all the contributors that helped make this release happen:

  • Mark Story
  • Val Bancer
  • bclay

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

CakePHP 3.4.12 released

@markstory markstory released this Aug 2, 2017 · 1001 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.4.12. This is a maintenance release for the 3.4 branch that fixes several community reported issues.

Bugfixes & New Features

You can expect the following changes in 3.4.12. See the changelog for every commit.

  • Shell::out() and similar methods once again handle array inputs.
  • Cake\Http\Client now raises a 504 HttpException when a timeout occurs.
  • Improved deprecation comments in API doc blocks.
  • Cake\Http\Client response bodies can be read with the PSR7 interface once again.
  • Improved SQLServer 2008 pagination shims to work when results are ordered by a computed field.
  • DefaultPasswordHasher now includes the hashCost option as a factor into whether or not a password needs to be rehashed.
  • IntegrationTestCase now correctly generates form-tampering prevention tokens for requests with query string arguments in the URL string.
  • Empty translation messages now return the key for messages with no context.

Contributors to 3.4.12

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Bernat Arlandis
  • David Yell
  • Jeremy Harris
  • Joris Vaesen
  • José Lorenzo Rodríguez
  • Marc Würth
  • Mark Scherer
  • Mark Story
  • Mike Fellows
  • Owen Gerrard
  • antograssiot
  • saeid

As always, we would like to thank all the contributors that opened issues, created pull requests or updated the documentation.

Downloads

Pre-release

CakePHP 3.5.0-RC1 released

@markstory markstory released this Jul 27, 2017 · 331 commits to master since this release

The CakePHP core team is happy to announce the immediate availability of CakePHP 3.5.0-RC1. This is a release candidate for 3.5.0. 3.5.0 provides a number improvements both large and small to CakePHP. It also deprecates several features that will be removed in 4.0.0.

Upgrading to this Version

You can use composer to upgrade to the RC version of CakePHP 3.5.0:

php composer.phar require "cakephp/cakephp:3.5.0-RC1"

What's new in 3.5.0?

The migration guide has a complete list of what's new in 3.5.0, and what has been deprecated. We recommend you give that page a read when upgrading.

Contributors to 3.5.0-RC1

Thank you to all the contributors that helped make this release happen:

  • ADmad
  • Albert Cansado Solà
  • Bryan Crowe
  • Chris Hickingbottom
  • David Yell
  • Erwane Breton
  • Florian Krämer
  • Ian den Hartog
  • Iftekhar Eather
  • Jeremy Harris
  • Jorge González
  • José Lorenzo Rodríguez
  • Marc Würth
  • Mark Scherer
  • Mark Story
  • Michael Hoffmann
  • Owen Gerrard
  • Rachman Chavik
  • Robert Pustułka
  • Thomas von Hassel
  • Val Bancer
  • Viraj Khatavkar
  • antograssiot
  • chinpei215
  • dwilbanks
  • h-moriya
  • inoas
  • lilHermit
  • ndm2

As always, a huge thanks to all the community members that helped make this release happen by reporting issues and sending pull requests.

Downloads