All notable changes to this project will be documented in this file.
This project adheres to Semantic Versioning where possible.
This file follows the best practices from keepachangelog.com.
7.3.1 - 2018-06-07
- Add soundcloud link support in custom landing page footer #3300
- Add checkbox for consent for receiving emails from admins to signup process #3318
- Add popup notification when giving admin rights to a new user #3329
- Add link to privacy policy in the signup page #3328
- Allow admins to disable end-user Analytics #3319
- Allow links in custom listing text fields #3297
- Add View reviews section in the admin panel #3267
- Add possibility to export transaction as CSV file #3245
- Improve user deletion to clear personal data more thoroughly #3325
- Delete automatically transactions that fail with Stripe #3326
- Prevent an admin from deleting their account if they are the only admin in the marketplace#3320
- Split first name and last name from Stripe account connection form #3317
- Remove feature flag for export transactions feature #3288
- Fix Dockerfile issue where bundler was trying to install binaries in root-owner directory #3321. Thanks, Nick Meiremans.
- Fix Stripe payout scheduler #3309
- Fix last 4 digits of SSN passing to Stripe for US bank accounts #3282
- [Critical] Fix several parameter validation bugs that opened the app to SQL injection
- Update sinatra dependency #3344
- Update multiple dependencies
- Present form auto-complete for Stripe secret keys #3338
7.3.0 - 2018-02-23
- Per hour availability 3166
- Support for NZ bank account with Stripe 3165
- "View conversations" section in admin panel 3173
- Account tokens for Stripe bank account connections 3234
- Made user confirmation form more secure 3170
- Confirmation days x after end time of the transaction 3205
7.2.0 - 2017-11-22
- Add rack-attack for request throttling #3078
- Stripe integration #3018
- Sending emails from admin to specified subset of users #3058
- Custom Scripts are now also enabled in Custom Landing Page #3080
- Allow admins to edit their Custom Outgoing Email and Sender Name #3106
- Allow admins to unban users 3108
- Ability to disable Stripe and PayPal 3112
- Allow admins to search users by name or email 3113
- Add an unsubscribe link to invitation emails 3136
- Add more information texts about holding funds with Stripe 3150
- Lowered daily limits for invitations from 50 to 10 3134
- Increased unsubscribe auth token validity from 1 week to 4 weeks 3138
- Fixed correct use of outgoing email address, if configured, when sending manual emails to users #3058
- Fixed sounds of videos in Custom Landing Pages not working #3101
- Fixed listing image reordering when some images were deleted #3107
- Fixed incorrect use of name of receipt email 3127
- Fixed many bugs related to Stripe integration
- Fixed many bugs related to code refactoring
7.1.0 - 2017-09-15
- Added configuration for trusted proxies #3040
- Currencies can now be formatted with translations #3043
- Transaction status is now named Completed everywhere instead of Confirmed #3028
- WebTranslateIt API keys were updated #3029
- Force meta tags content to be HTML escaped #3047
- Upgrade to latest ruby 2.3.4 with latest rubygems (2.6.13+) #3056
- Fixed image deletion in Android 3023
- Fixed changing the names of custom listing field options 3024
- Fixed image ordering usability in Android 3034
- Fixed not sending automatic emails to expired and deleted marketplaces 3044
- Fixed carousel black box rendering issue 3045
- Fixed datepicker issue with per night availability 3046
- Fixed listing checkbox layout issue on mobile 3048
- Fixed admin layout issue in Safari 3066
- Fixed error message layout placement when reviewing without grade 3067
- Fixed managing availability of rejected booking dates 3068
7.0.0 - 2017-08-08
- Updated Rails to 5.1.1 and Node to 7.8 #2976
6.4.0 - 2017-06-09
- New feature: User can reorder listing images #2970
- Change instructions how to compile assets. This reduces the JavaScript bundle size drastically. c613cac
- Fixed transaction button styles. Styles were broken in IE Edge. #2968
- Fixed admin UI language change. #2969
- Fix old mobile browser compatibility by removing dependency to Intl api. #2979
- Fixed cross-community security issues #2978
6.3.0 - 2017-04-24
- Migrate from database session store to cookie-based session store #2935
- Removed default twitter handle #2906
- Fix cropped cover photo in big screens #2895
- Add missing padding to homepage search field in mobile view #2895
- Fix unwanted scrolling in listing page by removing comment text area auto focus #2917
- Fix faulty feature flag dependency handling #2932
- Fix map bug where multiple listings close to each other caused the icon cluster to disapper when zoomed closed enough #2942
- Fix issue #2885: Landing page always shows Sign up button for private marketplace, even if the user is logged in #2944
- Fix issue with fetching correct node.js release signing keys in Dockerfile #2964
- Upgrade Nokogiri and rubyzip gems #2943
6.2.0 - 2017-03-09
- Add support for redis as cache store #2786
- Add support for using PayPal in fake mode for development purposes. Read more #2598
- Add support for linking to member invitation page in CLP #2859
- New feature: Hide irrelevant search filters when a category or subcategory is selected #2882
- Landing page Markdown support #2887
- Add instructions how to configure Harmony service #2892
- Add support for display name #2869
- Add support for customizing community description and slogan color #2898
- Fixed broken transaction button styles #2723
- Fixed number of issues in the Order Types form #2858
- Fixed an issue which caused sign up to fail partially if the Facebook profile picture upload failed #2886
6.1.0 - 2016-10-31
- Updated Node.js to the latest LTS (long term support) version 6.9 #2655
- Updated NPM packages #2655
- Update
react_on_railsgem #2655 - Upgrade Facebook SDK from v2.2 to v2.8 #2666
- Instruct crawlers not to follow auth paths, add crawling delay for bots that support the directive #2693
- Avoid redirect to correct S3 bucket endpoint when bucket is not in
us-east-1region #2605 - Added missing database indexes #2621, #2634, #2670
- Fix bug:
rake assets:precompilefails if MySQL is not available. Issue fixed by upgradingmoney-railsgem from 1.3 to 1.4 #2612 by @nicolaracco
- Fixed insecure gem urls in Gemfile #2635
6.0.0 - 2016-09-27
- Dropped official support for MySQL server version 5.6. Only MySQL 5.7 is officialy supported. This release contains no other changes.
5.12.0 - 2016-09-27
- Added date picker for "per night" listing unit type #2481
- SEO: Added
rel=nextandrel=prevlinks to give a hint to crawlers about the paginated content #2505 - Added New layout admin page where marketplace admins can enable new layout designs for the whole marketplace or just for themselves to try out #2338 and #2469
- Added functionality to edit Post a new listing button text #2448
- Sitemap #2492, thanks Dan Moore (@mooreds) for helping!
- Mocha test setup for new frontend architecture #2550
- Deprecated use of MySQL server version 5.6.x 2566
- Removed configuration for TravisCI (CircleCI now fully in use) #2489
- Updated React on Rails to 6.0.5 #2428 and #2472
- Updated React Storybook to version 2.13.0 #2528
- Changed ActiveRecord schema format to :sql #2531
- Upgraded Paperclip and Delayed::Paperclip, dropped deprecated AWS SDK v1 #2522
- Upgraded mysql2 dependency #2565
- Correctly add https or http to links generated in
community.rb#2459 - Transactions in
initiatedstate showed wrong total price in the transaction page if the item quantity was more than one #2452 - Fix bug in infinite scroll: The current page was not taken into account #2532
- Fix bug: Testimonial reminders were sent even if user had disabled them #2557
- Fix regression: Add quantity pickers to non-payment transactions #2568
5.11.0 - 2016-08-24
RAILS_ENV=productionenvironment added to therake assets:compilecommand in README #2440 by @pcm211
5.10.0 - 2016-08-23
- Disable Braintree payments #2423
5.9.0 - 2016-08-18
- Add support for using CDN for dynamic assets (uploaded images, custom compiled stylesheets) when S3 is otherwise in use #2314
- Add possibility to choose between light and dark background image filter for hero and info sections in custom landing pages #2310
- Add Pinterest link support in custom landing page footer #2356
-
Fix some asset links not respecting
asset_hostsetting on landing pages #2320 -
Fix JS errors in development by replacing
babel-polyfillwithes6-shim#2087
5.8.0 - 2016-07-15
- Add whitelabel_branding based on features #2052
- Onboarding topbar and wizard enabled for everyone #2250
- Ability to add Google Maps API key #2172
- Landing page. See the documentation
- Fix some React dependency issues caused startup timing/ordering #2046 and #2053
- Fix issue that caused Google Maps Geocoder to return wrong location if the listing address contained an ampersand (&) #2075
- Fix pluralization error for Turkish (tr-TR) #2292
5.7.1 - 2016-05-12
- Fix missing map icon #2032
- Add instructions for handling libv8 installation problems #2023
- Add React Storybook styleguide for React component development #2030
5.7.0 - 2016-05-11
- Add a new job queue (css_compile) for css compilations #1815
- Add a warning message which will be shown 15 minutes before the next scheduled maintenance #1835
- Expose used feature flags to Google Tag Manager #1856
- React on Rails development environment #1918.
- Add ability to create a new account with username or email which is already in use in another marketplace #1753 #1939
- Prevents cookies from leaking to subdomains, fixes #1992, adds a new configuration key:
cookie_session_key#1966
- Marketplace ID is removed from the Admin Settings URL #1839
- The application now depends on React components, which need to be built to run Sharetribe. Instructions here. This change is related to React on Rails environment #1918.
- Update Ruby to 2.3.1 #2020
- Google Analytics and Kissmetrics tracking snippets are deprecated in favor of Google Tag Manager #1857
- Delete duplicated memberships from the database #1838
- Remove ability to join other marketplaces with an existing account #1753 #1939
- Errors from Braintree API were ignored #1832 by @priviterag
- Fallback language handling was broken #1869
- Confirmation pending page redirects to homepage if the account is already confirmed #1976
- Fix bug: "Resend confirmation instructions" button didn't resend the confirmation email #1963
- Updated Paperclip gem #1836
- Unauthorized users were able to upload new listing images #1866
- Change session expiration time from one year to one month #1877
- Correctly reset old password and salt #1961
5.6.0 - 2016-03-11
- Add default queue name to jobs #1814
- Update Ruby to 2.2.4 #1774
- Wrong action was executed when radio buttons were clicked back and forth #1802
- Redirect to HTTPS (if configured) before requesting HTTP basic authentication: #1793
5.5.0 - 2016-03-02
- Migrate legacy passwords to Devise's Bcrypt hashing #1781
- Add listing id to option selections table: #1761 and #1762
- Support optional site-wide HTTP basic authentication: #1766
- Fixed broken FontAwesome asset path #1756
- Listing author wasn't able to give feedback if the transaction starter skipped the feedback #1767
- Update Rails to 4.2.5.2 #1786
5.4.0 - 2016-02-22
- Update Ruby to 2.1.8 #1750
- Update JSON Web Token gem #1723
- Configure Delayed Job queue adapter for ActiveJob #1749
5.3.0 - 2016-02-15
- Updated Rails to 4.2.5.1 #1691
5.2.2 - 2016-02-09
- Initial support for upcoming new search platform. #1404
- Save model attributes to cache instead of model instances #1714
5.2.1 - 2016-02-03
- Removed environment variable
devise_allow_insecure_token_lookup. #1675
- Fixed Mercury Editor image uploader #1694
- Updated Devise gem to version 3.5 #1675
- Updated Sprockets gem to version 2.12.4 #1692
- Remove HTTP end-point that let unauthorized caller to destroy images uploaded via Mercury Editor #1695
5.2.0 - 2016-01-29
- Added
secret_key_base#1671 - Added pessimistic version number for all the gems in Gemfile. Now we can safely run
bundle updateto update gems with patch level updates. #1663 - Added a new environment variable
delayed_job_max_run_timewhich controls the maximum time for a single Delayed Job job. #1668 - Added a new environment variable
devise_allow_insecure_token_lookupfor seamless migration from earlier versions. See UPGRADE.md for more information. #1672
- Gemfile clean up. Removed bunch of unused gems. #1625
- Removed ability to downgrade to Rails 3. #1669
- Updating a listing field changes the sorting order #1673
5.1.0 - 2016-01-21
- Marketplace admins can select if the custom field creates a search filter on the homepage #1653
- CHANGELOG, UPGRADE and RELEASE files #1658
5.0.0 - 2015-12-31
- Rails upgraded from 3.2 to 4.0
For older releases, see RELEASE_NOTES.md.