v4.2.12 (2023-01-09)
- docs: fix request.rst by @kenjis in #7014
- fix:
link_tag()missingtype="application/rss+xml"by @kenjis in #7022 - fix: Request::getIPaddress() causes error on CLI by @kenjis in #7030
- docs: fix upgrade_database.rst by @kenjis in #7036
- fix:
spark migrate:statusshows incorrect filename when format isY_m_d_His_by @kenjis in #7038 - fix: Model::save() object when useAutoIncrement is disabled by @michalsn in #7042
- fix: define of STDOUT in CLI init() method by @jozefrebjak in #7052
- fix: change
getFile()function of \CodeIgniter\Events\Events to static. by @ping-yee in #7046 - fix: [Email] add fallback to use gethostname() by @kenjis in #7053
- Fixing bug with legacy autoRoute when testing by @baycik in #7060
- refactor: RequestTrait by rector by @kenjis in #7006
- refactor: update sass output by @kenjis in #7026
v4.2.11 (2022-12-21)
- Attackers may spoof IP address when using proxy was fixed. See the Security advisory for more information.
- Potential Session Handlers Vulnerability was fixed. See the Security advisory for more information.
- fix: Request::getIPAddress() by @kenjis in #6820
- fix: Model cannot insert when $useAutoIncrement is false by @kenjis in #6827
- fix: View Parser regexp does not support UTF-8 by @kenjis in #6835
- Handle key generation when key is not present in .env by @paulbalandan in #6839
- Fix: Controller Test withBody() by @MGatner in #6843
- fix: body assigned via options array in CURLRequest class by @michalsn in #6854
- Fix CreateDatabase leaving altered database config in connection by @paulbalandan in #6856
- fix: cast to string all values except arrays in Header class by @michalsn in #6862
- add missing @method Query grouping in Model by @paul45 in #6874
- fix:
composer updatemight cause error "Failed to open directory" by @LeMyst in #6833 - fix: required PHP extentions by @kenjis in #6897
- fix: Use Services for the FeatureTestTrait request. by @lonnieezell in #6966
- fix: FileLocator::locateFile() bug with a similar namespace name by @michalsn in #6964
- fix: socket connection in RedisHandler class by @michalsn in #6972
- fix:
spark namespacescannot show a namespace with mutilple paths by @kenjis in #6977 - fix: Undefined constant "CodeIgniter\Debug\VENDORPATH" by @kenjis in #6985
- fix: large HTTP input crashes framework by @kenjis in #6984
- fix: empty paths for
rewrite.phpby @datamweb in #6991 - fix:
PHPStan$cols not defined inCLIby @ddevsr in #6994 - Fix MigrationRunnerTest for Windows by @paulbalandan in #6855
- fix: turn off
Xdebugnote when running phpstan by @ddevsr in #6851 - Fix ShowTableInfoTest to pass on Windows by @paulbalandan in #6853
- Fix MigrateStatusTest for Windows by @paulbalandan in #6866
- Fix ShowTableInfoTest when migration records are numerous by @paulbalandan in #6868
- Fix CreateDatabaseTest to not leave database by @paulbalandan in #6867
- Fix coverage merge warning by @paulbalandan in #6885
- fix: replace tabs to spaces by @zl59503020 in #6898
- fix: slack links by @kenjis in #6907
- Fix typo in database/queries.rst by @philFernandez in #6920
- Fix testInsertWithSetAndEscape to make not time dependent by @sclubricants in #6974
- fix: remove unnecessary global variables in rewrite.php by @kenjis in #6973
v4.2.10 (2022-11-05)
- docs: fix PHPDoc types in Session by @kenjis in #6796
- fix: output "0" at the end of toolbar js when Kint::$enabled_mode is false by @kenjis in #6809
- Refactor assertHeaderEmitted and assertHeaderNotEmitted by @paulbalandan in #6806
- fix: variable types for PHPStan 1.9.0 by @kenjis in #6810
v4.2.9 (2022-10-30)
Hotfix release to fix PHPUnit errors (see #6794)
v4.2.8 (2022-10-30)
- Fix DotEnv class turning
exportto empty string by @paulbalandan in #6625 - Remove unneeded
$loggerproperty inSessionby @paulbalandan in #6647 - fix: Add missing CLIRequest::getCookie() by @sclubricants in #6646
- fix: routes registration bug by @kenjis in #6644
- Bug: showError in CLI/BaseCommand use hardcoded error view path by @fpoy in #6657
- fix: getGetPost() and getPostGet() when index is null by @michalsn in #6675
- fix: add missing methods to BaseConnection by @kenjis in #6712
- fix: bug that esc() accepts invalid context '0' by @kenjis in #6722
- fix: [Postgres] reset binds when replace() method is called multiple times in the context by @michalsn in #6728
- fix: [SQLSRV] _getResult() return object for preparedQuery class by @michalsn in #6718
- Fix error handler callback by @paulbalandan in #6724
- bug: Supply mixin for TestResponse by @MGatner in #6756
- fix: CodeIgniter::run() doesn't respect $returnResponse by @kenjis in #6737
- Bug: ResponseTest::testSetLastModifiedWithDateTimeObject depends on time by @fpoy in #6683
- fix: workaround for Faker deprecation errors in PHP 8.2 by @kenjis in #6758
- Add .gitattributes to framework by @totoprayogo1916 in #6774
- Delete admin/module directory by @paulbalandan in #6775
v4.2.7 (2022-10-06)
- Secure or HttpOnly flag set in Config\Cookie is not reflected in Cookies issued was fixed. See the Security advisory for more information.
- fix: make Time::__toString() database-compatible on any locale by @kenjis in #6461
- fix: set_cookie() does not use Config\Cookie values by @kenjis in #6544
- fix:
required_withoutrule logic inValidationclass. by @ping-yee in #6589
- fix: typos in messages in Language/en/Email.php by @kenjis in #6517
- fix: table attribute cannot applied on td element by @ddevsr in #6538
- add: set up "script_name" to handle every request by index.php file. by @ping-yee in #6522
- fix: CSP autoNonce = false by @kenjis in #6570
- fix: inconsistent new line view in
date_helperby @ddevsr in #6582 - fix: safe_mailto() does not work with CSP by @kenjis in #6604
- fix: script_tag() does not work with CSP by @kenjis in #6611
- fix:
$cleanValidationRulesdoes not work in Model updates by @kenjis in #6588 - Fixed a bug that URLs with trailing newlines do not become invalid in validation. by @ytetsuro in #6618
- fix: missing
valid_jsonin Validation Language by @ddevsr in #6624 - fix: default values for Session Redis Handler by @kenjis in #6614
- Update coding-standards version by @paulbalandan in #6537
- chore: update ThirdParty Kint to 4.2.2 by @kenjis in #6583
- Refactor: CodeIgniter::generateCacheName() by @iRedds in #6498
- refactor: replace
global $appwith Services by @ping-yee in #6524 - refactor: small refactoring in view() by @kenjis in #6546
- refactor: replace utf8_encode() with mb_convert_encoding() by @kenjis in #6564
- refactor: make $precision int in View Filter round by @kenjis in #6566
v4.2.6 (2022-09-04)
- fix: AssertionError occurs when using Validation in CLI by @daycry in #6452
- fix: [Validation] JSON data may cause "Array to string conversion" error by @kenjis in #6467
- Fix fatal error gets turned to
0severity on shutdown handler by @paulbalandan in #6472 - Fix redis cache increment/decrement methods by @paulbalandan in #6473
- Fix broken caching system when array of allowed parameters used by @JavaDeveloperKiev in #6475
- fix: Strict Validation Rules greater_than/less_than by @kenjis in #6492
- refactor: fix PHPStan errors by @kenjis in #6470
- Bump
friendsofphp/php-cs-fixerto~3.11.0by @paulbalandan in #6471 - Fix overlooked coding style violations by @paulbalandan in #6491
v4.2.5 (2022-08-28)
- Add $cached param to BaseConnection::tableExists() by @sclubricants in #6364
- Fix validation custom error asterisk field by @ping-yee in #6378
- fix: Email class may not log an error when it fails to send by @kenjis in #6362
- fix: Response::download() causes TypeError by @kenjis in #6361
- fix: command usages by @kenjis in #6402
- Fix: The subquery adds a prefix for the table alias. by @iRedds in #6390
- Fix Sqlite Table::createTable() by @sclubricants in #6396
- docs: add missing
@methodgroupBy()in Model by @kenjis in #6433 - fix: CLIRequest Erros in CLI by @kenjis in #6421
- fix: Call to undefined method CodeIgniter\HTTP\CLIRequest::getLocale() by @kenjis in #6442
- chore: update Kint to 4.2.0 by @kenjis in #6436
- refactor: add test for DownloadResponse by @kenjis in #6375
- refactor: ValidationTest by @kenjis in #6382
- refactor: remove unused
_parent_namein BaseBuilder::objectToArray() by @kenjis in #6427 - Remove unneeded abstract
handle()method by @paulbalandan in #6434
v4.2.4 (2022-08-13)
Hotfix release to fix download errors (see #6361)
v4.2.3 (2022-08-06)
- SECURITY: Improve CSRF protection (for Shield CSRF security fix)
v4.2.2 (2022-08-05)
- fix: when running on CLI, two Request objects were used in the system by @kenjis in #6089
- fix: Builder insert()/update() does not accept an object by @kenjis in #6216
- fix: create table if not exists when indexes already exist by @sclubricants in #6249
- fix: page cache saves Response data before running after filters by @kenjis in #6282
- fix: random_string('crypto') may return string less than $len or ErrorException by @kenjis in #6334
- Fixed: BaseBuilder increment/decrement do not reset state after a query by @iRedds in #6146
- fix: SQLite3\Connection\getIndexData() error by @kenjis in #6152
- fix:
is_imagecauses PHP 8.1 deprecated error by @kenjis in #6157 - fix: prepared query is executed when using QueryBuilder by @kenjis in #6164
- fix: Time::getAge() calculation by @kenjis in #6159
- fix: Session cookies are sent twice with Ajax by @kenjis in #6167
- fix: QueryBuilder breaks select when escape is false by @kenjis in #5118
- fix: PHPDoc return type in ControllerTestTrait methods by @iRedds in #6168
- fix:
$routes->group('/', ...)creates the routefoo///barby @kenjis in #6186 - fix: use lang('HTTP.pageNotFound') on production 404 page by @kenjis in #6202
- fix: BaseConnection may create dynamic property by @kenjis in #6198
- fix: Email SMTP may throw Uncaught ErrorException by @kenjis in #6184
- fix: CSP reportOnly behavior by @kenjis in #6201
- fix: lang() causes Error on CLI by @kenjis in #6209
- fix: multiple pagers with models do not work by @kenjis in #6211
- fix: tweak empty line output of
spark db:tableby @kenjis in #6215 - fix: custom validation error is cleared when calling setRule() twice by @kenjis in #6241
- Fix: Validation of fields with a leading asterisk. by @iRedds in #6243
- fix: Call to undefined method CodeIgniter\Pager\PagerRenderer::getDetails() by @kenjis in #6251
- fix: exceptionHandler may cause HTTPException: Unknown HTTP status code by @kenjis in #6254
- fix: invalid INSERT/DELETE query when Query Builder uses table alias by @kenjis in #5376
- fix: Add db port entry into env file. by @nalakapws in #6250
- fix: update
.gitattributesby @totoprayogo1916 in #6256 - fix: format_number() can't be used on CLI by @kenjis in #6263
- fix: add parameter checking for max_size by @kenjis in #6261
- fix: route name is not displayed in Exception message by @kenjis in #6269
- fix:
spark routesshows 404 error when using regex by @kenjis in #6279 - fix: Entity::hasChanged() returns wrong result to mapped property by @kenjis in #6285
- fix: unable to add more than one file to FileCollection constructor by @kenjis in #6291
- fix: Security::derandomize() may cause hex2bin() error by @kenjis in #6292
- fix: use getenv() instead of $_SERVER in detectEnvironment() by @fcosrno in #6257
- fix: OCI8 uses deprecated Entity by @kenjis in #6323
- fix: Parse error occurs before PHP version check by @kenjis in #6327
- fix: 404 page might display Exception message in production environment by @kenjis in #6333
- refactor: replace $e->getMessage() with $e in log_message() by @kenjis in #6182
- refactor: add CompleteDynamicPropertiesRector by @kenjis in #6187
- refactor: debug toolbar by @kenjis in #6272
- refactor: Exception exit code by @kenjis in #6286
- chore: Remove Vagrant by @kenjis in #6314
- refactor: CSRF protection by @kenjis in #6320
v4.2.1 (2022-06-16)
- Fix MIME guessing of extension from type by @paulbalandan in #6059
- fix: get_cookie() may not use the cookie prefix by @kenjis in #6082
- fix: get_cookie() does not take Config\Cookie::$prefix by @kenjis in #6080
- fix: session cookie name bug by @kenjis in #6091
- fix: Session Handlers do not take Config\Cookie by @kenjis in #6081
- fix: reverse routing does not work with full classname starting with
\by @kenjis in #6104 - fix: insert error message in QueryBuilder by @kenjis in #6108
- fix:
spark routesshows "ERROR: 404" by @kenjis in #6098 - fix: Time::setTestNow() does not work with fa Locale by @kenjis in #6116
- fix:
migrate --allcausesClass "SQLite3" not founderror by @kenjis in #6117 - fix: event DBQuery is not fired on failed query when DBDebug is true by @kenjis in #6127
- fix:
Time::humanize()causes error with ar locale by @kenjis in #6120 - Fix decorators by @lonnieezell in #6090
- Fix lost error message by test when after testInsertResultFail. by @ytetsuro in #6113
- test: fix forgetting to restore DBDebug value by @kenjis in #6115
- Apply AutoRouterImproved::translateURIDashes() by @pjsde in #6084
- Remove useless catch by @paulbalandan in #6095
- Move preload.php example to starter app by @samsonasik in #6088
- style: compile sass by @kenjis in #6099
v4.2.0 (2022-06-03)
- Validation: support placeholders for anything by @paulbalandan in #5545
- Fix: Validation. Error key for field with asterisk by @iRedds in #5609
- Improve exception logging by @paulbalandan in #5684
- fix: spark can't use options on PHP 7.4 by @kenjis in #5836
- fix: [Autoloader] Composer classmap usage by @kenjis in #5850
- fix: using multiple CLI::color() in CLI::write() outputs strings with wrong color by @kenjis in #5893
- refactor: [Router] extract a class for auto-routing by @kenjis in #5877
- feat: Debugbar request microtime by @kenjis in #5958
- refactor:
system/bootstrap.phponly loads files and registers autoloader by @kenjis in #5972 - fix:
dot_array_search()unexpected behavior by @kenjis in #5940 - feat: QueryBuilder join() raw SQL string support by @kenjis in #5875
- fix: change BaseService::reset() $initAutoloader to true by default by @kenjis in #6020
- chore: update admin/framework/composer.json Kint by @kenjis in #5531
- fix: BaseConnection::getConnectDuration() number_format(): Passing null to parameter by @kenjis in #5536
- Fix: Debug toolbar selectors by @iRedds in #5544
- Fix: Toolbar. ciDebugBar.showTab() context. by @iRedds in #5554
- Refactor Database Collector display by @paulbalandan in #5553
- fix: add missing Migration lang item by @kenjis in #5557
- feat: add Validation Strict Rules by @kenjis in #5445
- fix:
Time::createFromTimestamp()sets incorrect time when specifying timezone by @totoprayogo1916 in #5588 - fix: Entity's isset() and unset() by @kenjis in #5497
- Fix: Deletion timestamp of the Model is updated when a record that has been soft-deleted is deleted again by @iRedds in #5578
- Fix: Added alias escaping in subquery by @iRedds in #5601
- fix: spark migrate:status does not show status with different namespaces by @kenjis in #5605
- BaseService - Use lowercase key in resetSingle by @najdanovicivan in #5596
- Fix
array_flatten_with_dotsignores empty array values by @paulbalandan in #5606 - fix: debug toolbar Routes Params output by @kenjis in #5619
- fix: DownloadResponse memory leak by @kenjis in #5623
- fix: spark does not show Exception by @kenjis in #5638
- fix: Config CSRF $redirect does not work by @kenjis in #5665
- fix: do not call header() if headers have already been sent by @kenjis in #5680
- fix: $routes->setDefaultMethod() does not work by @kenjis in #5682
- fix: debug toolbar vars response headers includes request headers by @zl59503020 in #5701
- fix: 404 override controller does not output Response object body by @kenjis in #5703
- fix: auto routes incorrectly display route filters with GET method by @kenjis in #5712
- fix: Model::paginate() missing argument $group by @kenjis in #5699
- Fix options are not passed to Command $params by @kenjis in #5206
- fix: forceGlobalSecureRequests break URI schemes other than HTTP by @kenjis in #5730
- fix: TypeError when
$tokenRandomize = trueand no token posted by @kenjis in #5742 - fix: $builder->ignore()->insertBatch() only ignores on first iteration by @kenjis in #5672
- fix: app/Config/Routes.php is loaded twice on Windows by @kenjis in #5780
- fix: table name is double prefixed when LIKE clause by @kenjis in #5778
- fix: Publisher $restrictions regex to FCPATH by @kenjis in #5793
- fix: Timer::getElapsedTime() returns incorrect value by @kenjis in #5798
- bug: Publisher $restrictions regex typo by @MGatner in #5800
- fix: [Validation] valid_date ErrorException when the field is not sent by @kenjis in #5804
- fix: [Pager] can't get correct current page from segment by @kenjis in #5803
- fix: bug that allows dynamic controllers to be used by @kenjis in #5814
- config: remove App\ and Config\ in autoload.psr-4 in app starter composer.json by @kenjis in #5824
- fix: failover's DBPrefix not working by @kenjis in #5816
- fix: Validation returns incorrect errors after Redirect with Input by @kenjis in #5844
- feat: [Parser] add configs to change conditional delimiters by @kenjis in #5842
- fix: Commands::discoverCommands() loads incorrect classname by @kenjis in #5849
- fix: Publisher::discover() loads incorrect classname by @kenjis in #5858
- fix: validation errors in Model are not cleared when running validation again by @kenjis in #5861
- fix: Parser fails with
({variable})in loop by @kenjis in #5840 - fix: [BaseConfig] string value is set from environment variable even if it should be int/float by @kenjis in #5779
- fix: add Escaper Exception classes in $coreClassmap by @kenjis in #5891
- fix: Composer PSR-4 overwrites Config\Autoload::$psr4 by @kenjis in #5902
- fix: Reverse Routing does not take into account the default namespace by @kenjis in #5936
- fix: [Validation] Fields with an asterisk throws exception by @kenjis in #5938
- fix: GDHandler::convert() does not work by @kenjis in #5969
- fix: Images\Handlers\GDHandler Implicit conversion from float to int loses precision by @kenjis in #5965
- fix: GDHandler::save() removes transparency by @kenjis in #5971
- fix: route limit to subdomains does not work by @kenjis in #5961
- fix: Model::_call() static analysis by @kenjis in #5970
- fix: invalid css in error_404.php by @kenjis in #5978
- Fix: Route placeholder (:any) with {locale} by @iRedds in #6003
- Changing the subquery builder for the Oracle by @iRedds in #5999
- fix: CURLRequest request body is not reset on the next request by @kenjis in #6014
- Bug: The SQLSRV driver ignores the port value from the config. by @iRedds in #6036
- fix:
set_radio()not working as expected by @kenjis in #6037 - fix: add config for SQLite3 Foreign Keys by @kenjis in #6050
- fix: Ignore non-HTML responses in storePreviousURL by @tearoom6 in #6012
- fix: SQLite3\Table::copyData() does not escape column names by @kenjis in #6055
- Fix
slash_item()erroring when property fetched does not exist onConfig\Appby @paulbalandan in #6058
- Feature Add Oracle driver by @ytetsuro in #2487
- feat: new improved auto router by @kenjis in #5889
- feat: new improved auto router
spark routescommand by @kenjis in #5953 - feat:
db:tablecommand by @kenjis in #5979
- feat: CSP enhancements by @kenjis in #5516
- Feature: Subqueries in the FROM section by @iRedds in #5510
- Added new View Decorators. by @lonnieezell in #5567
- feat: auto routes listing by @kenjis in #5590
- Feature: "spark routes" command shows routes with closure. by @iRedds in #5651
- feat:
spark routesshows filters by @kenjis in #5628 - Allow calling getQuery() multiple times, and other improvements by @vlakoff in #5127
- feat: add Controller::validateData() by @kenjis in #5639
- feat: can add route handler as callable by @kenjis in #5713
- Checking if the subquery uses the same object as the main query by @iRedds in #5743
- Feature: Subquery for SELECT by @iRedds in #5736
- Extend Validation from BaseConfig so Registrars can add rules. by @lonnieezell in #5789
- config: add mime type for webp by @kenjis in #5838
- feat: add
$includeDiroption toget_filenames()by @kenjis in #5862 - feat: throws exception when controller name in routes contains
/by @kenjis in #5885 - [PHPStan] Prepare for PHPStan 1.6.x-dev by @samsonasik in #5876
- [Rector] Add back SimplifyUselessVariableRector by @samsonasik in #5911
- Redirecting Routes. Placeholders. by @iRedds in #5916
- script_tag(): cosmetic for value-less attributes by @xlii-chl in #5884
- feat: QueryBuilder raw SQL string support by @kenjis in #5817
- improve Router Exception message by @kenjis in #5984
- feat: DBForge::addField()
defaultvalue raw SQL string support by @kenjis in #5957 - Add sample file for preloading by @kenjis in #5974
- Feature. QueryBuilder. Query union. by @iRedds in #6015
- feat:
getFieldData()returns nullable data on PostgreSQL by @kenjis in #5981
- refactor: add Factories::models() to suppress PHPStan error by @kenjis in #5358
- Fixed style for PHP7.4 by @ytetsuro in #5581
- Fix Autoloader::initialize() by @kenjis in #5592
- refactor: CURLRequest and the slow tests by @kenjis in #5593
- Refactor
if_existvalidation with dot notation by @paulbalandan in #5607 - refactor: small changes in Filters and Router by @kenjis in #5627
- refactor: replace deprecated
getFilterForRoute()by @kenjis in #5624 - refactor: make BaseController abstract by @kenjis in #5647
- refactor: move logic to prevent access to initController by @kenjis in #5648
- refactor: remove migrations routes by @kenjis in #5652
- refactor: update Kint CSP nonce by @kenjis in #5657
- Deprecate object implementations of
clean_path()function by @paulbalandan in #5681 - refactor: Session does not use cookies() by @kenjis in #5656
- refactor: replace deprecated Response::getReason() with getReasonPhrase() by @kenjis in #5700
- refactor: isCLI() in CLIRequest and IncomingRequest by @kenjis in #5653
- refactor: CodeIgniter has context by @kenjis in #5650
- Forge use statement by @mostafakhudair in #5729
- refactor: remove
&before $db by @kenjis in #5726 - refactor: remove unneeded
&references in ContentSecurityPolicy.php by @kenjis in #5734 - Nonce replacement optimization. by @iRedds in #5733
- [Rector] Clean up skip config and re-run Rector by @samsonasik in #5813
- refactor: DB Session Handler by @kenjis in #5696
- Rename
AbstacttoAbstractby @paulbalandan in #5833 - refactor: extract RedirectResponse::withErrors() method by @kenjis in #5860
- Optimizing the RouteCollection::getRoutes() method by @iRedds in #5918
- refactor: add strtolower() to Request::getMethod() by @kenjis in #5963
- refactor: remove
$_SERVER['HTTP_HOST']in RouteCollection by @kenjis in #5962 - refactor: deprecate const
EVENT_PRIORITY_*by @kenjis in #6000 - fix: replace EVENT_PRIORITY_NORMAL with Events::PRIORITY_NORMAL by @kenjis in #6005
- Router class optimization. by @iRedds in #6004
- Prefer
is_file()by @MGatner in #6025 - refactor: use get_filenames() 4th param in FileLocator by @kenjis in #6026
- refactor: use get_filenames() 4th param by @kenjis in #6031
- refactor: CodeIgniter $context check by @kenjis in #6047
- Small change to improve code reading by @valmorflores in #6051
- refactor: remove
CodeIgniter\Servicesby @kenjis in #6053
See CHANGELOG_4.1.md