·
5 commits
to main
since this release
f5e73ef
This commit was signed with the committer’s verified signature.
bennothommo
Ben Thomson
Security fixes
- The stub user controller that the Dusk plugin uses to act as logged in users has been moved. Its routes are also now only loaded when the app environment is specifically
dusk. This prevents inadvertent access to these actions under very specific circumstances that could potentially allow someone to sidestep user authentication. - The automatic configuration provided by Dusk no longer accepts environment variables (except for
APP_URLandAPP_KEY) to prevent external environment variables from overriding the defaults.
New features
- Added the ability to dump HTML source in Dusk tests.
Changes
- Ensure that the cache is cleared on each Dusk test to prevent cache bleeding between tests.
Bug fixes
- Fixed SMTP connection being established in default Dusk config when using the Mailer, due to the upgraded mail config in Winter core not being applied in Dusk.
- Fixed stub user controller routing.
Documentation
New Contributors
Full Changelog: v2.0.0...v2.0.1
Contributors
jaxwilko