1.0.0-alpha.3

Changed

• Update Javalin version to 5.6.3

0.6.6

This release contains security fixes for users who use HTTP/2 (you use this if you have https enabled with the viewer by giving it a cert), notably, CVE-2023-44487 & CVE-2023-36478. This isn't strictly a 'security' issue, as it can only result in a denial of service attack.
0.6.5 was skipped to avoid potential problems due to a mistaken tag push a while back.

Expect the next major release to require JDK 21

Changed

• Improve version parsing logic
• Bump Javalin to 5.6.3

Added

• Add naive Rate limiting to callback endpoint
• Add 403 error when a user who is not a member of the guild attempts to sign in

Fixed

• Ignore pre-releases when checking for new updates
• Correct parsing of timestamps without nanoseconds from MongoDB

1.0.0-alpha.2

[1.0.0-alpha.2] - 2023-8-18

Changed

• Move badges to their own line on smaller than xl displays

Added

• Add LOG_STATUS_NEW badge to list of logs.
• Add tooltip to NSFW badge

Removed

Fixed

• Fix dashboard ticket open/close line graph data displaying reflected across the x-axis
• Include data from the current date on dashboard ticket open/close line graph

1.0.0-alpha.1

[1.0.0-alpha.1] - 2023-8-18

Changed

• Migrate spoilers to a webcomponent
• Refactor search box for main logs page.
• Improve detection and handling of invalid Discord avatars.
• Rewrote config caching.
• Fix log searchbox sizing with large ticket quantities.
• Login state no longer has a set max age.
• Hide "license" link from footer.
• Bump Javalin from 5.4.2 to 5.6.1
• Bump flexmark from 0.64.0 to 0.64.2
• Bump jackson from 2.12.4 to 2.13.0
• Bump log4j2 from 2.19.0 to 2.20.0
• Bump java-jwt from 4.2.1 to 4.4.0
• Bump jte from 2.2.3 to 3.0.2
• Bump unpoly from 3.0.0-rc2 to 3.3.0
• Bump bootstrap from 5.3.0-alpha1 to 5.3.0

Added

• Add Dashboard page. (#92)
• Add naive rate limit for login attempts on /callback.
• Add Audit logging. ([#69)
• Add CSP policy.
• Add security headers
• Add automatic update checks and nag for admin users,
• Add message actions dropdown.
• Support for copying DM message links when enhanced support is present.
• Add selector for amount of tickets to show per page.

Removed

Fixed

• Fix MongoDB timestamp parsing issue. (#89)

0.6.4

What's Changed

• Better support for Discord Pomelo (username changes) #70

If you find any issues with the username transition, please mention them in issue #70

Full Changelog: 0.6.3...0.6.4

0.6.3

What's Changed

• Added MODMAIL_VIEWER_BOT_ID config variable.
• Fixes a bug where people who had multiple bots using the same mongoDB database (at once or in the past) would have modmail-viewer pull the wrong config. The application now logs a warning if it detects multiple modmail configs in mongodb. If you get this warning, you need to set MODMAIL_VIEWER_BOT_ID to the id of your modmail bot so the proper config will be used.
• Fix footer positioning using a flexbox for page content sizing.
• chore(deps): bump org.webjars.npm:bootstrap from 5.3.0-alpha1 to 5.3.0-alpha3 by @dependabot in #56
• Bump docker/setup-buildx-action from 2.4.1 to 2.5.0 by @dependabot in #43

Full Changelog: 0.6.2...0.6.3

Addendum

The next planned release (v0.6.4) will contain better support for the new discord username system. See #70 for tracking.

0.6.3-rc.2

What's Changed

• Added MODMAIL_VIEWER_BOT_ID config variable.
• Fixes a bug where people who had multiple bots using the same mongoDB database (at once or in the past) would have modmail-viewer pull the wrong config. The application now logs a warning if it detects multiple modmail configs in mongodb. If you get this warning, you need to set MODMAIL_VIEWER_BOT_ID to the id of your modmail bot so the proper config will be used.
• Fix footer positioning using a flexbox for page content sizing.

Full Changelog: 0.6.3-rc1...0.6.3-rc.2

0.6.3-rc1

What's Changed

• Change markdown parser settings to enable header #62
• fix(frontend): simplify footer styling and hide version text if version info is not available.
  
• chore(deps): bump org.webjars.npm:bootstrap from 5.3.0-alpha1 to 5.3.0-alpha3 by @dependabot in #56

Full Changelog: 0.6.2...0.6.3-rc1

0.6.2

You can now add an html snippet for analytics (or anything you want) with the environment variable MODMAIL_VIEWER_ANALYTICS or MODMAIL_VIEWER_ANALYTICS_B64 (expects base64 encoded string). If you choose to use analytics or any other third party js through this option, be warned that you will need to do additional configuration upon the release of v0.7 due to security changes.

What's Changed

• Fixes code block formatting when light theme was loaded first.
• Adds an option to add custom analytics code
• Changed 'Moderator' badge text to 'Staff' again because I missed some sections.
• Better theme selector padding on mobile (I know that area is still suboptimal on mobile, more changes are coming that fix it in 0.7)
• chore(deps): bump com.jaredsburrows.license from 0.9.0 to 0.9.2 by @dependabot in #52
• chore(deps): bump mikepenz/gradle-dependency-submission from 0.8.5 to 0.8.6 by @dependabot in #54

Full Changelog: 0.6.1...0.6.2

v0.6.1

Long TLDR

This release focused on fixing everything for running in PaaS platforms. For testing, the demo site has been deployed onto railway and will run the latest commit on the Master branch. If you want to run Modmail-Viewer on railway, you can use the template below to make it a bit easier (contains a referral code).

What's Changed

• Changed 'Moderator' badge text to 'Staff' upon feedback since this better reflects what it actually means (a message sent as staff)
• Added a root Dockerfile
• Fixed NPE when git properties weren't generated and the application attempted to load them.

Full Changelog: 0.6.0...0.6.1