Skip to content

@snipe snipe released this Sep 8, 2021

⚠️ IMPORTANT: Later versions of Snipe-IT will require PHP 7.3 or greater. It is highly recommended you upgrade your version of PHP NOW.

(This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.)

This release contains a ton of bug-fixes and improvements/additions to the API - but perhaps more importantly, we have introduced official support for Google Secure LDAP for User Listings.

Google Secure LDAP Support for User Listings

You'll find two new fields in the Admin Settings > LDAP configuration of the UI, LDAP Client-Side TLS key and LDAP Client-Side TLS Certificate. If you are NOT using Google Secure LDAP, you do not need to change anything in your settings and these fields are not required. Note that since Google Secure LDAP does not currently support logging in via Secure LDAP, you'll want to configure your Snipe-IT instance to work with Google's SAML setup instead. (This is a limitation in Google, not with Snipe-IT.) More details in the docs.

We're still updating the API documentation, so hang tight - those parts in the documentation should be up shortly.

Added

  • Added image upload capabilities to API (Fixes #9594, #9483, #9413, #5007) [#9767]
  • Added Components checkin/checkout via API
  • Added cookie option to assets Bootstrap Table to save the state of the maintenances table [#9808]
  • Added the field model_number to Accessory importer mappable fields [#9856]
  • Added restore functionalty to asset API [#9931]
  • Added additional fields to users API search: activated, country, manager_id, first_name, last_name, employee_num, state, zip
  • Added depreciation report endpoint and ajax-ified the depreciation report table, to prevent page timeouts on databases with tens of thousands of assets [#10034]
  • Updated language translations from CrowdIn
  • Added better debugging output, and remove non-PHP-7.3-compatible option for RestoreFromBackup.php artisan command [#9774]

Fixed

  • Fixed #9745 - added searchable, sortable notes field to status labels
  • Fixed APP_ENV/APP_DEBUG typo overwriting the APP_ENV in Vagrant Playbook [#9768]
  • Fixed a department bug in the User Importer when the department doesn't exist [#9778]
  • Fixed Vue issue with the importer [#9778]
  • Fixed potential for bad linefeeds in custom settings section of SAML [#9809]
  • Fixed some CSS zebra-striping on non-default skins [#9765]
  • Updated demo photos of iPhones to be more modern [#9837]
  • Fixed issue updating departments if Full Company Support is enabled [#9880]
  • Fixed Integrity constraint violation when emailing password reset (#9881)
  • Fixed #9909 and #9714 - applies v6 currency formatter to v5 [ch16628]
  • Fixed weird layout on bulk audit [ch17146]
  • Fixed an issue where the pie chart colors did not match admin settings [#9950]
  • Fixed sum total calculation on Bootstrap Table pages [#9953]
  • Fixed issue where consumables model number was not searchable
  • Fixed issue where custom fields with quotes were not holding value [#9980]
  • Fixed issue where when using API CheckIn assets, there will be two CheckIn records in the Activity Report log for each asset
  • Fixed condition to return the actual max upload size allowed to files
  • Fixed issue with action_date was not displayed if overwritten by created_at in activity log
  • Fixed - Delete checkout acceptances when an asset is checked in without response
  • Fixed value of column 'checkout type' in CSV file to lowercase [#10059]
  • Fixed issue where sidebar showed total from assets in all companies if using Full Multiple Company Support [#9709]
  • Fixed #9853 - Consumables/Accessories not correctly displayed via Locations [#9861]

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Jun 28, 2021

⚠️ IMPORTANT: Later versions of Snipe-IT will require PHP 7.4 or greater. It is highly recommended you upgrade your version of PHP NOW.

This release corrects a bug that was introduced in v5.1.7 where the Vue.js screens would not load (API keys, importer, default custom field values in asset models).

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Jun 24, 2021

⚠️ IMPORTANT: Later versions of Snipe-IT will require PHP 7.4 or greater. It is highly recommended you upgrade your version of PHP NOW.

(This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.)

This is a security release that fixes a Time-of-check Time-of-use (TOCTOU) Race Condition in league/flysystem. While we do not believe this particular security issue impacts Snipe-IT due to the way we implement this package, we also take security very seriously and always try to make security fixes available ASAP.

More information is available here.

Fixed

  • Fixed an issue when tried to upload a file to an user without actually selecting a file. [ch16471] #9640
  • Fixed #9680: Use Eloquent’s withCount() method to count Statuslabel assets
  • Fixed #9705 Prevent syntax error in startup.sh
  • Allow to bulk update min_amt in Accessory API
  • Disable company select if full company support is activated #9720
  • Fixed #9666 Asset checkin via api doesn't send notification. #9676
  • Updated league/flysystem to 1.1.4 for critical security update

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2
Jun 23, 2021
Merge remote-tracking branch 'origin/develop'

@snipe snipe released this Jun 11, 2021

⚠️ IMPORTANT: 5.2.x versions of Snipe-IT will require PHP 7.4 or greater.

(This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.)

This is a bug fix release that adds some indexes to make things speedier, handles some Docker build stuff, and

Fixed

  • Use 24-hour date format for audit
  • Fixed #9531 - highlight search box when filled, add clear button (#9534)
  • Fixed #9157 Update .env to API_TOKEN_EXPIRATION_YEARS=15 (reapplies #9524) - this solves an 401 unauthorized issue on 32-bit systems
  • Fixed #9422 - pivot ID was being used as a user_id (#9512)
  • Fixed Dockerfile.alpine build error and snipeit runtime permission error (#9520)
  • Fixed the orderBy clause inside the custom reports function that forms the CSV to be 'id' so making it a unique value and does not cause dupes. [ch14587]
  • Fixed location printing when relationships are missing/invalid, per #9521
  • Fixed CSP Always being Enabled unless in debug mode. (#9543)
  • Upgrade the Alpine docker image to v3.13 for PHP 7.4 (#9550)
  • Fixed HTML causing two backup headers to appear
  • Fixed support for Label Logos in Labels (#9552)
  • Fixed incorrect case of ldap sync status string (#9563)
  • Fixed parse error in user print view
  • Improvements to the snipeit:restore Artisan command
  • Accept .webp in uploads (not just image files)
  • Fixed #8486: Add index for asset serial number
  • Fixed #9682: Add indexes for company_id

Added

  • Added #3088 Print labels from asset detail page (#9559)
  • Added allowing password reset from user profile

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Apr 27, 2021

⚠️ IMPORTANT: 5.2.x versions of Snipe-IT will require PHP 7.4 or greater.

(This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.)

This is largely a bug fix release that tries to catch us up on older PRs. (We started v5.1.4 with over 60 PRs, we now have about 9.) There are some minor docker fixes here, some UI improvements, and some LDAP improvements.

New in v5.1.5

  • Enable use of custom file based SAML certificate/private key
  • Updated languages
  • Set docker user as owner of key symbolic links (#7924)
  • Fixed typo that doesn't accept textarea as custom field type element
  • Fixed label name for field_values in custom fields edit
  • Increases DPI of barcode for small lables (#9344)
  • Extended #6229 to include superuser permission check (#6772)
  • Fix Ubuntu Vagrant Development VMs (#6909)
  • Use environmental variables in memory limits
  • Improvement for auditing feature on mobile [ch14328] (#9181)
  • Fixed #9404 - include note in accessory API
  • Removed deprecated Input:: facade
  • Fixed an issue with CSS when the 'skin' value in settings table is empty
  • Fixed logic to handle when a cloned user is imported via LDAP. (#9429)
  • Fixed Sum of purchase cost of components not taking quantity into account in Asset View > Components tab
  • Updated snipeit.sh php version from 7.1 to 7.4 (#9407)
  • Fixed #9372 - Error getting users from LDAP directory, error: ldap_search(): Search: Can't contact LDAP server
  • Handle regex format for custom fields when assigned from API (#9443)
  • Fixed #9447 change route parameter name in locations view (#9456)
  • Fix for css when running Snipe-IT in subdirectory (#9445)
  • (Maybe?) Fixes the problem where we always need the php-ldap extension enabled (implements deferred service provider) (#9321)
  • Changed “Asset Categories” to “Categories” since there are more than asset categories now
  • Fixed #9424: import history adds asset model to assigned user and respects checkin date (#9350)
  • Fixed ldap ad authentication filter query mechanism (#7441)
  • Fixed the controller signature error people are getting with LDAP logins (#9466)
  • Restore LOG_CHANNEL environment variable regression. (#9464)

Added

  • Added sanity check to determine if a bind user account is set. (#9340)
  • Added a way for a user to override the site skin setting
  • Added #6695: add API endpoint for license seats (#8058)
  • Added created_at and updated_at to Asset Model presenter
  • Added additional LDAP fields to sync (#9318) - resolves #7211, #9197, #7864, [ch15504]
  • Added support for Debian 10 (#7414)
  • Added #5977: permission to view files attached to licenses (#9264)
  • Added option to force TLS connection (#9327)
  • Added ID columns to tables that don’t have them - reproduces #9363
  • Added check for valid category name on user's view-assets page
  • Added #9355: include Accessories and Consumables on the location reports
  • Added show() redirect for CustomFields::show() - this is mostly to prevent junking up Rollbar when people are experimenting
  • Added help text to custom fields headline
  • Added #9313: Add new fpm-alpine docker image and docker secrets support
  • Added a docker-compose with helper services (#9105)
  • Added clearer reporting on import when the mime type is incorrect
  • Improved UI for importer file listing
  • Adding text/x-Algol68 to import because WTF
  • Added user locale to REST API GET /api/users response (#9486)

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Apr 7, 2021

⚠️ IMPORTANT: 5.2.x versions of Snipe-IT will require PHP 7.4 or greater

This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.

New in v5.1.4

  • Fixed Undefined class constant 'EM_AES_256' in spatie/laravel-backup
  • Fixed #9266 - set a colors_array variable even if other conditions are not met
  • Fixed #9299: Use correct SVG MIME type for uploads (#9300)
  • Changed debug level on bad LDAP connection (#9314)
  • Removed unnecessary apt-get clean in Dockerfile (#9201)
  • Try/catch barcodes so they don’t flood the logs when the barcode type selected isn't compatible with the barcodes themselves
  • Set SAML errors to warning instead of error so they don't flood the logs
  • Fixed custom field validation to include textarea
  • Fixed #9370 - listbox custom fields not decrypted on edit
  • Misc Docker fixes

Added

  • Added discard changes in composer (for those weird cases where it says something changed in a vendor directory)
  • Added default logos to setting seeder
  • Add new StorageHelper and use it where it makes sense (#9276)
  • Added nunomaduro/collision because it's awesome
  • Add support for overriding the Time and Memory Limits (#8389)

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Mar 10, 2021

⚠️ IMPORTANT: 5.2.x versions of Snipe-IT will require PHP 7.4 or greater

This is a requirement in order for us to be able to pull forward the dependencies that will allow us to support PHP8 and beyond moving forward.

New in v5.1.3

This bug fix release handles a bunch of small but annoying bugs, including some issues with dark skins, an issue with pagination on locations and a few other issues.

Fixed

  • Fixed #9036, #9225, #9085 - corrected ternary that sets the offset to 0 when the offset passed to the API for the user is greater than total locations which was causing pagination to break for location listings. (#9210)
  • Fixed a few blade templates for relative URLs, specifically to resolve JS/CSS files not loading for Snipe-IT installations that are in subdirectories (#9170)
  • Added a condition to ensure that only assets checked out to a user that is being deleted are updating their status (#9233)
  • Fixed links in Models Actions, and to view the fieldset assigned to that Asset Model. (#9232)
  • Updated rollbar package
  • Fixed #9216 - Deleting users affects locations with the same ID

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

Assets 2

@snipe snipe released this Feb 26, 2021

New in v5.1.2

I know we tend to release on Fridays (not by design, that just tends to be how it is), but it's been a long week for everyone everywhere, and we thought we'd give you something early this week.

This bug fix release handles a bunch of small but super annoying bugs, including one where the list boxes in the "create new" modals wouldn't load properly, some validation rule fixes on Manufacturer names, some weird markdown stuff in the expected checkin report, and more.

Fixed

  • Fixed #9129 - added missing function formatDatalistSafe to snipeit_modal.js that prevented ajax select lists from loading
  • Fixed #8918 - corrected validation rules on Manufacturer Model where 'name' attribute was incorrect
  • Fixed #9145 - color of asset selection in bulk checkout
  • Fixed #9115 - Duplicate column name 'provider' in some upgrades/installs
  • Fixed weird markdown table formatting in expected checkin report email
  • Fixed #9116 - incorrect parameter name sent to hardware.show in expected assets report
  • Fixed funky layout in asset model modal window (broken HTML)
  • Fixed "Mail could not be sent. Error: undefined" on test email on Quickstart so it doesn't use the Settings record that doesn't exist yet (#9092)
  • Fixed #9198 - added stdout as a log driver
  • Fixed #9085 - asset models not showing proper pagination

Added

  • Added saml custom setting retrieveParametersFromServer to enable fixing SLO issues with Azure AD (#9187)

If you encounter an error when trying to generate an API token, specifically an error saying the provider column is not found, you should apply this update.

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

After completing the upgrade process, be sure to clear your browser cookies.

Upgrading from v3

Please see the upgrade instructions here.

Assets 2

@snipe snipe released this Feb 5, 2021

⚠️ BREAKING CHANGE: This release requires PHP 7.2.5 or greater. ⚠️

Previous versions required PHP 7.2.0 or later, but a security upgrade to the Laravel framework forces the minimum requirement to PHP 7.2.5 in this release.

New in v5.1.1

This is a small patch release that adds the provider field to the oauth_clients table, due to a change in later versions of Passport.

If you encounter an error when trying to generate an API token, specifically an error saying the provider column is not found, you should apply this update.

For a full list of changes, see the complete changelog.

Upgrading

For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

After completing the upgrade process, be sure to clear your browser cookies.

Upgrading from v3

Please see the upgrade instructions here.

Assets 2