Latest release

v0.9.7

@virtualtam virtualtam released this Jun 20, 2018 · 159 commits to master since this release

Changed

  • Build the Docker images from the local Git sources

v0.8.7

@virtualtam virtualtam released this Jun 20, 2018

Changed

  • Build the Docker image from the local Git sources

Removed

  • Disable PHP 5.3 Travis build (unsupported)

v0.9.6

@virtualtam virtualtam released this Mar 25, 2018 · 159 commits to master since this release

Changed

  • htaccess: prevent accessing resources not managed by SCM
  • htaccess: always forward the 'Authorization' HTTP header

v0.8.6

@virtualtam virtualtam released this Feb 19, 2018 · 638 commits to master since this release

Changed

  • Run version check tests against the 'stable' branch

v0.9.5

@ArthurHoaro ArthurHoaro released this Feb 2, 2018 · 159 commits to master since this release

Fixed

  • Fix a warning happening when php-intl is not installed on the system
  • Fix warnings happening when updating from legacy SebSauvage version

v0.9.4

@virtualtam virtualtam released this Jan 30, 2018 · 24 commits to v0.9 since this release

Added

  • Enable translations: Shaarli is now also available in French. Other language translations are welcome!
  • Add EditorConfig configuration
  • Add favicons for mobile devices
  • Add Alpine Linux arm32v7 Dockerfiles (master, latest)

Changed

  • Do not write bookmark edition history during file imports (performance)
  • Migrate Docker images (master, latest) to Alpine Linux
  • Improve unitary tests and code coverage
  • Improve thumbnail display
  • Improve theme ergonomics
  • Improve messages if there is no plugin or parameter available in the admin page
  • Increase buffer size for cURL download
  • Force HTTPS if the original port is 443 behind a reverse proxy (workaround)
  • Improve page title retrieval performances

Removed

  • Remove redirector setting from Configure page

Fixed

  • Fix broken links in the documentation
  • Enable access to data/user.css (Apache 2.2 & 2.4)
  • Don't URL encode description links if parameter redirector.encode_url is set to false
  • Fix an issue preventing the Save button to appear for plugin parameters

Security

v0.9.3

@virtualtam virtualtam released this Jan 4, 2018 · 281 commits to master since this release

XSS vulnerability fixed. Please update.

Security

  • Fix an XSS (cross-site-scripting) vulnerability in index.php - CVE-2018-5249

v0.8.5

@virtualtam virtualtam released this Jan 4, 2018 · 638 commits to master since this release

XSS vulnerability fixed. Please update.

Security

  • Fix an XSS (cross-site-scripting) vulnerability in index.php - CVE-2018-5249

v0.9.2

@virtualtam virtualtam released this Oct 7, 2017 · 281 commits to master since this release

Major security issue fixed. Please update.

Added

  • Tag search now supports wildcards *
  • New setting privacy.force_login which can be used with privacy.hide_public_links to redirect anonymous users to the login page.
  • New setting general.default_note_title used to override default Note: title prefix for notes.
  • Add a version hash for asset loading to prevent browser's cache issue

Changed

  • The "Remember me" checkbox is unchecked by default
  • The default value of the "Remember me" checkbox can be configured under data/config.json.php

Removed

  • Remove obsolete PHP magic quote support

Fixed

  • Generates a permalink URL if the URL is set to blank
  • Replace links to the old GitHub wiki with ReadTheDocs URIs
  • Use single quotes in the note bookmarklet
  • Daily page if there is no link
  • Bulk link deletion with a single link
  • HTTPS detection behind a reverse proxy
  • Travis tests environment and localization
  • Improve template paths robustness (trailing slash)
  • Robustness: safer gzinflate/zlib usage
  • Description links parsing with parenthesis (without Markdown)
  • Templates:
    • Sort the tag cloud alphabetically
    • Firefox social title
    • Improved visited link color
    • Fix jumpy textarea with long content in post edit

Security

  • Vulnerability introduced in v0.9.1 fixed.

v0.9.1

@virtualtam virtualtam released this Aug 22, 2017 · 195 commits to v0.9 since this release

The documentation has been migrated to ReadTheDocs:

Added

  • Allow bulk link deletion
  • Display subtags in the tag cloud
  • Add an endpoint to refresh the token
  • Add a token on every page
  • Add a tag list view for management
  • Add Note bookmarklet
  • Add creation date when editing a link

Changed

  • Documentation:
    • Generate static HTML documentation with mkdocs
    • Host documentation on ReadTheDocs
    • Update documentation structure
    • Update Makefile targets to:
      • Build the docs locally
      • Include the generated docs in the release archives
  • Theme:
    • Use the new theme as the default
    • Rename the tag cloud template to tag.cloud.html
    • Display visited links in grey
    • Use only one search form in linklist.html
    • Hide the "search links with these tags" option when an empty searchtags is passed to tag.list.html
  • Improve HTTP header handling when hosting Shaarli with Docker behind a reverse proxy
  • Searching for tags with an empty value returns untagged links only
  • Set Travis environment to precise until the new trusty environment is ready

Removed

  • Remove dead Pubsubhubbub code
  • Disable the GitHub wiki (see changed/documentation)
  • Remove Docker dev image and resources
  • Theme:
    • Remove the bottom "Sort by" menu in tag.list.html

Fixed

  • Fix file existence check for user.css
  • Limit selection to 2k characters when using the bookmarklet
  • Fix JS error uncaught type error
  • Fix Firefox Social button
  • Use pinned PHP dependencies when generating release archives
  • Make sure that the tag exists before altering/removing it

Security

  • Add a whitelist for protocols for URLs