Changelog.md 141 KB
Newer Older
Benjamin Neff's avatar
Benjamin Neff committed
1 2 3 4 5 6 7 8
# 0.8.0.0

## Refactor

## Bug fixes

## Features

Benjamin Neff's avatar
Benjamin Neff committed
9 10 11
# 0.7.1.0

## Refactor
12
* Remove title from profile photo upload button [#7551](https://github.com/diaspora/diaspora/pull/7551)
13
* Remove Internet Explorer workarounds [#7557](https://github.com/diaspora/diaspora/pull/7557)
14
* Sort notifications by last interaction [#7568](https://github.com/diaspora/diaspora/pull/7568)
15
* Remove tiff support from photos [#7576](https://github.com/diaspora/diaspora/pull/7576)
16
* Remove reference from reshares when original post is deleted [#7578](https://github.com/diaspora/diaspora/pull/7578)
17
* Merge migrations from before 0.6.0.0 to CreateSchema [#7580](https://github.com/diaspora/diaspora/pull/7580)
18
* Remove auto detection of languages with highlightjs [#7591](https://github.com/diaspora/diaspora/pull/7591)
19
* Move enable/disable notification icon [#7592](https://github.com/diaspora/diaspora/pull/7592)
20
* Use Bootstrap 3 progress-bar for polls [#7600](https://github.com/diaspora/diaspora/pull/7600)
Benjamin Neff's avatar
Benjamin Neff committed
21
* Enable frozen string literals [#7595](https://github.com/diaspora/diaspora/pull/7595)
22
* Remove `rails_admin_histories` table [#7597](https://github.com/diaspora/diaspora/pull/7597)
Benjamin Neff's avatar
Benjamin Neff committed
23 24

## Bug fixes
25 26
* Fix displaying polls with long answers [#7579](https://github.com/diaspora/diaspora/pull/7579)
* Fix S3 support [#7566](https://github.com/diaspora/diaspora/pull/7566)
27
* Fix mixed username and timestamp with LTR/RTL scripts [#7575](https://github.com/diaspora/diaspora/pull/7575)
28
* Prevent users from zooming in IE Mobile [#7589](https://github.com/diaspora/diaspora/pull/7589)
29
* Fix recipient prefill on contacts and profile page [#7599](https://github.com/diaspora/diaspora/pull/7599)
30
* Display likes and reshares without login [#7583](https://github.com/diaspora/diaspora/pull/7583)
31
* Fix invalid data in the database for user data export [#7614](https://github.com/diaspora/diaspora/pull/7614)
Benjamin Neff's avatar
Benjamin Neff committed
32 33

## Features
34
* Ask for confirmation when leaving a submittable comment field [#7530](https://github.com/diaspora/diaspora/pull/7530)
Rete2's avatar
Rete2 committed
35
* Show users vote in polls [#7550](https://github.com/diaspora/diaspora/pull/7550)
36
* Add explanation of ignore function to in-app help section [#7585](https://github.com/diaspora/diaspora/pull/7585)
Benjamin Neff's avatar
Benjamin Neff committed
37

38 39 40 41
# 0.7.0.1

Update nokogiri to fix [multiple libxml2 vulnerabilities](https://usn.ubuntu.com/usn/usn-3424-1/).

Dennis Schubert's avatar
Dennis Schubert committed
42 43
# 0.7.0.0

flaburgan's avatar
flaburgan committed
44 45 46 47 48
## Supported Ruby versions

This release recommends using Ruby 2.4, while retaining Ruby 2.3 as an officially supported version.
Ruby 2.1 is no longer officially supported.

49 50 51 52 53
## Delete public/.well-known/

Before upgrading, please check if your `public/` folder contains a hidden `.well-known/` folder.
If so, please delete it since it will prevent the federation from working properly.

Dennis Schubert's avatar
Dennis Schubert committed
54 55
## Refactor

56
* Make the mention syntax more flexible [#7305](https://github.com/diaspora/diaspora/pull/7305)
57
* Display @ before mentions [#7324](https://github.com/diaspora/diaspora/pull/7324)
58
* Simplify mentions in the publisher [#7302](https://github.com/diaspora/diaspora/pull/7302)
59
* Remove chartbeat and mixpanel support [#7280](https://github.com/diaspora/diaspora/pull/7280)
60
* Upgrade to jQuery 3 [#7303](https://github.com/diaspora/diaspora/pull/7303)
61
* Add i18n for color themes [#7369](https://github.com/diaspora/diaspora/pull/7369)
62
* Remove deprecated statistics.json [#7399](https://github.com/diaspora/diaspora/pull/7399)
63 64
* Always link comment count text on mobile [#7483](https://github.com/diaspora/diaspora/pull/7483)
* Switch to new federation protocol [#7436](https://github.com/diaspora/diaspora/pull/7436)
65
* Send public profiles publicly [#7501](https://github.com/diaspora/diaspora/pull/7501)
66
* Change sender for mails [#7495](https://github.com/diaspora/diaspora/pull/7495)
67
* Move back to top to the right to avoid misclicks [#7516](https://github.com/diaspora/diaspora/pull/7516)
68
* Include count in mobile post action link [#7520](https://github.com/diaspora/diaspora/pull/7520)
69
* Update the user data export archive format [#6726](https://github.com/diaspora/diaspora/pull/6726)
70 71
* Use id as fallback when sorting posts [#7523](https://github.com/diaspora/diaspora/pull/7523)
* Remove no-posts-info when adding posts to the stream [#7523](https://github.com/diaspora/diaspora/pull/7523)
72
* Upgrade to rails 5.1 [#7514](https://github.com/diaspora/diaspora/pull/7514)
73
* Refactoring single post view interactions [#7182](https://github.com/diaspora/diaspora/pull/7182)
74
* Update help pages [#7528](https://github.com/diaspora/diaspora/pull/7528)
75
* Disable rendering logging in production [#7529](https://github.com/diaspora/diaspora/pull/7529)
76
* Add some missing indexes and cleanup the database if needed [#7533](https://github.com/diaspora/diaspora/pull/7533)
77
* Remove avatar, name, timestamp and interactions from publisher preview [#7536](https://github.com/diaspora/diaspora/pull/7536)
78

Dennis Schubert's avatar
Dennis Schubert committed
79 80
## Bug fixes

81
* Fix height too high on mobile SPV [#7480](https://github.com/diaspora/diaspora/pull/7480)
82
* Improve stream when ignoring a person who posts a lot of tagged posts [#7503](https://github.com/diaspora/diaspora/pull/7503)
83
* Fix order of comments across pods [#7436](https://github.com/diaspora/diaspora/pull/7436)
84
* Prevent publisher from closing in preview mode [#7518](https://github.com/diaspora/diaspora/pull/7518)
85
* Increase reshare counter after reshare on mobile [#7520](https://github.com/diaspora/diaspora/pull/7520)
86
* Reset stuck exports and handle errors [#7535](https://github.com/diaspora/diaspora/pull/7535)
87

Dennis Schubert's avatar
Dennis Schubert committed
88
## Features
89
* Add support for mentions in comments to the backend [#6818](https://github.com/diaspora/diaspora/pull/6818)
90
* Add support for new mention syntax [#7300](https://github.com/diaspora/diaspora/pull/7300) [#7394](https://github.com/diaspora/diaspora/pull/7394)
91
* Render mentions as links in comments [#7327](https://github.com/diaspora/diaspora/pull/7327)
92
* Add support for mentions in comments to the front-end [#7386](https://github.com/diaspora/diaspora/pull/7386)
93
* Support direct links to comments on mobile [#7508](https://github.com/diaspora/diaspora/pull/7508)
flaburgan's avatar
flaburgan committed
94
* Add inviter first and last name in the invitation e-mail [#7484](https://github.com/diaspora/diaspora/pull/7484)
95
* Add markdown editor for comments and conversations [#7482](https://github.com/diaspora/diaspora/pull/7482)
flaburgan's avatar
flaburgan committed
96
* Improve responsive header in desktop version [#7509](https://github.com/diaspora/diaspora/pull/7509)
97
* Support cmd+enter to submit posts, comments and conversations [#7524](https://github.com/diaspora/diaspora/pull/7524)
98
* Add markdown editor for posts, comments and conversations on mobile [#7235](https://github.com/diaspora/diaspora/pull/7235)
99
* Mark as "Mobile Web App Capable" on Android [#7534](https://github.com/diaspora/diaspora/pull/7534)
100
* Add support for receiving account migrations [#6750](https://github.com/diaspora/diaspora/pull/6750)
Dennis Schubert's avatar
Dennis Schubert committed
101

Benjamin Neff's avatar
Benjamin Neff committed
102 103 104
# 0.6.7.0

## Refactor
105
* Cleanup some translations [#7465](https://github.com/diaspora/diaspora/pull/7465)
Benjamin Neff's avatar
Benjamin Neff committed
106 107

## Features
108
* Change email without confirmation when mail is disabled [#7455](https://github.com/diaspora/diaspora/pull/7455)
109
* Warn users if they leave the profile editing page with unsaved changes [#7473](https://github.com/diaspora/diaspora/pull/7473)
flaburgan's avatar
flaburgan committed
110
* Add admin pages to the mobile interface [#7295](https://github.com/diaspora/diaspora/pull/7295)
111
* Add links to discourse to footer and sidebar [#7446](https://github.com/diaspora/diaspora/pull/7446)
Benjamin Neff's avatar
Benjamin Neff committed
112

Dennis Schubert's avatar
Dennis Schubert committed
113 114 115
# 0.6.6.0

## Refactor
Benjamin Neff's avatar
Benjamin Neff committed
116
* Remove rails\_admin [#7440](https://github.com/diaspora/diaspora/pull/7440)
117
* Use guid instead of id at permalink and in SPV [#7453](https://github.com/diaspora/diaspora/pull/7453)
Dennis Schubert's avatar
Dennis Schubert committed
118 119

## Bug fixes
120
* Make photo upload button hover text translatable [#7429](https://github.com/diaspora/diaspora/pull/7429)
121
* Fix first comment in mobile view with french locale [#7441](https://github.com/diaspora/diaspora/pull/7441)
122
* Use post page title and post author in atom feed [#7420](https://github.com/diaspora/diaspora/pull/7420)
123
* Handle broken public keys when receiving posts [#7448](https://github.com/diaspora/diaspora/pull/7448)
124
* Fix welcome message when podmin is set to an invalid username [#7452](https://github.com/diaspora/diaspora/pull/7452)
Dennis Schubert's avatar
Dennis Schubert committed
125 126

## Features
127 128
* Add support for Nodeinfo 2.0 [#7447](https://github.com/diaspora/diaspora/pull/7447)

Benjamin Neff's avatar
Benjamin Neff committed
129 130 131
# 0.6.5.0

## Refactor
132
* Remove unused setPreload function [#7354](https://github.com/diaspora/diaspora/pull/7354)
133
* Remove jQuery deprecations [#7356](https://github.com/diaspora/diaspora/pull/7356)
134
* Use empty selector where "#" was used as a selector before (prepare jQuery 3 upgrade) [#7372](https://github.com/diaspora/diaspora/pull/7372)
135
* Increase maximal height of large thumbnail on mobile [#7383](https://github.com/diaspora/diaspora/pull/7383)
136
* Reduce conversation recipient size [#7376](https://github.com/diaspora/diaspora/pull/7376)
137
* Cleanup rtl css [#7374](https://github.com/diaspora/diaspora/pull/7374)
138
* Increase visual spacing between list items [#7401](https://github.com/diaspora/diaspora/pull/7401)
cmrd Senya's avatar
cmrd Senya committed
139
* Remove unused gem and cucumber step [#7410](https://github.com/diaspora/diaspora/pull/7410)
140
* Disable CSP header when `report_only` and no `report_uri` is set [#7367](https://github.com/diaspora/diaspora/pull/7367)
Benjamin Neff's avatar
Benjamin Neff committed
141 142

## Bug fixes
143
* Don't hide posts when blocking someone from the profile [#7379](https://github.com/diaspora/diaspora/pull/7379)
144
* Disable autocomplete for the conversation form recipient input [#7375](https://github.com/diaspora/diaspora/pull/7375)
145
* Fix sharing indicator on profile page for blocked users [#7382](https://github.com/diaspora/diaspora/pull/7382)
146
* Remove post only after a successful deletion on the server [#7385](https://github.com/diaspora/diaspora/pull/7385)
147
* Fix an issue where pod admins could get logged out when using sidekiq-web [#7395](https://github.com/diaspora/diaspora/pull/7395)
148
* Add avatar fallback for typeahead and conversations [#7414](https://github.com/diaspora/diaspora/pull/7414)
Benjamin Neff's avatar
Benjamin Neff committed
149 150

## Features
151
* Add links to liked and commented pages [#5502](https://github.com/diaspora/diaspora/pull/5502)
Benjamin Neff's avatar
Benjamin Neff committed
152

153 154 155 156
# 0.6.4.1

Fixes a possible Remote Code Execution ([CVE-2016-4658](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4658)) and a possible DoS ([CVE-2016-5131](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5131)) by updating Nokogiri, which in turn updates libxml2.

Benjamin Neff's avatar
Benjamin Neff committed
157 158 159
# 0.6.4.0

## Refactor
160
* Unify link colors [#7318](https://github.com/diaspora/diaspora/pull/7318)
161
* Increase time to wait before showing the hovercard [#7319](https://github.com/diaspora/diaspora/pull/7319)
162
* Remove some unused color-theme overrides [#7325](https://github.com/diaspora/diaspora/pull/7325)
163
* Change color of author-name on hover [#7326](https://github.com/diaspora/diaspora/pull/7326)
164
* Add like and reshare services [#7337](https://github.com/diaspora/diaspora/pull/7337)
Benjamin Neff's avatar
Benjamin Neff committed
165 166

## Bug fixes
167
* Fix path to `bundle` in `script/server` [#7281](https://github.com/diaspora/diaspora/pull/7281)
168
* Update comment in database example config [#7282](https://github.com/diaspora/diaspora/pull/7282)
169
* Make the \#newhere post public again [#7311](https://github.com/diaspora/diaspora/pull/7311)
170
* Remove whitespace from author link [#7330](https://github.com/diaspora/diaspora/pull/7330)
171
* Fix autosize in modals [#7339](https://github.com/diaspora/diaspora/pull/7339)
172
* Only display invite link on contacts page if invitations are enabled [#7342](https://github.com/diaspora/diaspora/pull/7342)
173
* Fix regex for hashtags for some languages [#7350](https://github.com/diaspora/diaspora/pull/7350)
174
* Create asterisk.png without digest after precompile [#7322](https://github.com/diaspora/diaspora/pull/7322)
Benjamin Neff's avatar
Benjamin Neff committed
175 176

## Features
177
* Add support for [Liberapay](https://liberapay.com) donations [#7290](https://github.com/diaspora/diaspora/pull/7290)
178
* Added a link to the community guidelines :) [#7298](https://github.com/diaspora/diaspora/pull/7298)
Benjamin Neff's avatar
Benjamin Neff committed
179

Dennis Schubert's avatar
Dennis Schubert committed
180 181 182
# 0.6.3.0

## Refactor
183
* Increase the spacing above and below post contents [#7267](https://github.com/diaspora/diaspora/pull/7267)
184
* Replace fileuploader-custom with FineUploader [#7083](https://github.com/diaspora/diaspora/pull/7083)
185
* Always show mobile reaction counts [#7207](https://github.com/diaspora/diaspora/pull/7207)
186
* Refactor mobile alerts for error responses [#7227](https://github.com/diaspora/diaspora/pull/7227)
187
* Switch content and given reason in the reports overview [#7180](https://github.com/diaspora/diaspora/pull/7180)
Dennis Schubert's avatar
Dennis Schubert committed
188 189

## Bug fixes
190
* Fix background color of year on notifications page with dark theme [#7263](https://github.com/diaspora/diaspora/pull/7263)
191
* Fix jasmine tests in firefox [#7246](https://github.com/diaspora/diaspora/pull/7246)
192
* Prevent scroll to top when clicking 'mark all as read' in the notification dropdown [#7253](https://github.com/diaspora/diaspora/pull/7253)
193
* Update existing notifications in dropdown on fetch [#7270](https://github.com/diaspora/diaspora/pull/7270)
194
* Fix link to post on mobile photo page [#7274](https://github.com/diaspora/diaspora/pull/7274)
195
* Fix some background issues on dark mobile themes [#7278](https://github.com/diaspora/diaspora/pull/7278)
Dennis Schubert's avatar
Dennis Schubert committed
196 197

## Features
198
* Add links to the aspects and followed tags pages on mobile [#7265](https://github.com/diaspora/diaspora/pull/7265)
199
* diaspora\* is now available in Gàidhlig, Occitan, and Schwiizerdütsch
Dennis Schubert's avatar
Dennis Schubert committed
200

Dennis Schubert's avatar
Dennis Schubert committed
201 202 203
# 0.6.2.0

## Refactor
204
* Use string-direction gem for rtl detection [#7181](https://github.com/diaspora/diaspora/pull/7181)
205
* Reduce i18n.load side effects [#7184](https://github.com/diaspora/diaspora/pull/7184)
206
* Force jasmine fails on syntax errors [#7185](https://github.com/diaspora/diaspora/pull/7185)
207
* Don't display mail-related view content if it is disabled in the pod's config [#7190](https://github.com/diaspora/diaspora/pull/7190)
208
* Use typeahead.js from rails-assets.org [#7192](https://github.com/diaspora/diaspora/pull/7192)
209
* Refactor ShareVisibilitesController to use PostService [#7196](https://github.com/diaspora/diaspora/pull/7196)
210
* Unify desktop and mobile head elements [#7194](https://github.com/diaspora/diaspora/pull/7194) [#7209](https://github.com/diaspora/diaspora/pull/7209)
211
* Refactor flash messages on ajax errors for comments, likes, reshares and aspect memberships [#7202](https://github.com/diaspora/diaspora/pull/7202)
Justin Ramos's avatar
Justin Ramos committed
212
* Only require AWS-module for fog [#7201](https://github.com/diaspora/diaspora/pull/7201)
213
* Only show community spotlight links on the contacts page if community spotlight is enabled [#7213](https://github.com/diaspora/diaspora/pull/7213)
214
* Require spec\_helper in .rspec [#7223](https://github.com/diaspora/diaspora/pull/7223)
Flaburgan's avatar
Flaburgan committed
215
* Make the CSRF mail a bit more friendly [#7238](https://github.com/diaspora/diaspora/pull/7238) [#7241](https://github.com/diaspora/diaspora/pull/7241)
Dennis Schubert's avatar
Dennis Schubert committed
216 217

## Bug fixes
218
* Fix fetching comments after fetching likes [#7167](https://github.com/diaspora/diaspora/pull/7167)
219
* Hide 'reshare' button on already reshared posts [#7169](https://github.com/diaspora/diaspora/pull/7169)
220
* Only reload profile header when changing aspect memberships [#7183](https://github.com/diaspora/diaspora/pull/7183)
221
* Fix visiblity on invitation modal when opening it from the stream [#7191](https://github.com/diaspora/diaspora/pull/7191)
222
* Add avatar fallback on tags page [#7198](https://github.com/diaspora/diaspora/pull/7198)
223
* Update notifications when changing the stream [#7199](https://github.com/diaspora/diaspora/pull/7199)
224
* Fix 500 on mobile commented and liked streams [#7219](https://github.com/diaspora/diaspora/pull/7219)
Dennis Schubert's avatar
Dennis Schubert committed
225 226

## Features
227
* Show spinner when loading comments in the stream [#7170](https://github.com/diaspora/diaspora/pull/7170)
Benjamin Neff's avatar
Benjamin Neff committed
228
* Add a dark color theme [#7152](https://github.com/diaspora/diaspora/pull/7152)
229
* Added setting for custom changelog URL [#7166](https://github.com/diaspora/diaspora/pull/7166)
230
* Show more information of recipients on conversation creation [#7129](https://github.com/diaspora/diaspora/pull/7129)
231 232
* Update notifications every 5 minutes and when opening the notification dropdown [#6952](https://github.com/diaspora/diaspora/pull/6952)
* Show browser notifications when receiving new unread notifications [#6952](https://github.com/diaspora/diaspora/pull/6952)
233
* Only clear comment textarea when comment submission was successful [#7186](https://github.com/diaspora/diaspora/pull/7186)
234
* Add support for graceful unicorn restarts [#7217](https://github.com/diaspora/diaspora/pull/7217)
Dennis Schubert's avatar
Dennis Schubert committed
235

Dennis Schubert's avatar
Dennis Schubert committed
236 237
# 0.6.1.0

Benjamin Neff's avatar
Benjamin Neff committed
238 239
Note: Although this is a minor release, the configuration file changed because the old Mapbox implementation is no longer valid, and the current implementation requires additional fields. Chances are high that if you're using the old integration, it will be broken anyway. If you do use Mapbox, please check out the `diaspora.yml.example` for new parameters.

Dennis Schubert's avatar
Dennis Schubert committed
240
## Refactor
241
* Indicate proper way to report bugs in the sidebar [#7039](https://github.com/diaspora/diaspora/pull/7039)
242
* Remove text color from notification mails and fix sender avatar [#7054](https://github.com/diaspora/diaspora/pull/7054)
243
* Make the session cookies HttpOnly again [#7041](https://github.com/diaspora/diaspora/pull/7041)
244
* Invalidate sessions with invalid CSRF tokens [#7050](https://github.com/diaspora/diaspora/pull/7050)
245
* Liking a post will no longer update its interacted timestamp [#7030](https://github.com/diaspora/diaspora/pull/7030)
246
* Improve W3C compliance [#7068](https://github.com/diaspora/diaspora/pull/7068) [#7082](https://github.com/diaspora/diaspora/pull/7082) [#7091](https://github.com/diaspora/diaspora/pull/7091) [#7092](https://github.com/diaspora/diaspora/pull/7092)
247
* Load jQuery in the head on mobile [#7086](https://github.com/diaspora/diaspora/pull/7086)
248
* Use translation for NodeInfo services [#7102](https://github.com/diaspora/diaspora/pull/7102)
Benjamin Neff's avatar
Benjamin Neff committed
249
* Adopt new Mapbox tile URIs [#7066](https://github.com/diaspora/diaspora/pull/7066)
250
* Refactored post interactions on the single post view [#7089](https://github.com/diaspora/diaspora/pull/7089)
251
* Extract inline JavaScript [#7113](https://github.com/diaspora/diaspora/pull/7113)
252
* Port conversations inbox to backbone.js [#7108](https://github.com/diaspora/diaspora/pull/7108)
253
* Refactored stream shortcuts for more flexibility [#7127](https://github.com/diaspora/diaspora/pull/7127)
254
* Link to admin dashboard instead of admin panel from the podmin landing page [#7130](https://github.com/diaspora/diaspora/pull/7130)
Dennis Schubert's avatar
Dennis Schubert committed
255 256

## Bug fixes
257
* Post comments no longer get collapsed when interacting with a post [#7040](https://github.com/diaspora/diaspora/pull/7040)
258
* Closed accounts will no longer show up in the account search [#7042](https://github.com/diaspora/diaspora/pull/7042)
259
* Code blocks in conversations no longer overflow the content [#7055](https://github.com/diaspora/diaspora/pull/7055)
260
* More buttons in mobile streams are fixed [#7036](https://github.com/diaspora/diaspora/pull/7036)
cmrd Senya's avatar
cmrd Senya committed
261 262
* Fixed missing sidebar background in the contacts tab [#7064](https://github.com/diaspora/diaspora/pull/7064)
* Fix tags URLs in hovercards [#7075](https://github.com/diaspora/diaspora/pull/7075)
263
* Fix 500 in html requests for post interactions [#7085](https://github.com/diaspora/diaspora/pull/7085)
264
* Remove whitespaces next to like link in stream [#7088](https://github.com/diaspora/diaspora/pull/7088)
265
* Prevent overflow of interaction avatars in the single post view [#7070](https://github.com/diaspora/diaspora/pull/7070)
266
* Fix moving publisher on first click after page load [#7094](https://github.com/diaspora/diaspora/pull/7094)
267
* Fix link to comment on report page [#7105](https://github.com/diaspora/diaspora/pull/7105)
268
* Fix duplicate flash message on mobile profile edit [#7107](https://github.com/diaspora/diaspora/pull/7107)
269
* Clicking photos on mobile should no longer cause 404s [#7071](https://github.com/diaspora/diaspora/pull/7071)
270
* Fix avatar size on mobile privacy page for ignored people [#7148](https://github.com/diaspora/diaspora/pull/7148)
271
* Don't display tag following button when logged out [#7155](https://github.com/diaspora/diaspora/pull/7155)
272 273
* Fix message modal on profile page [#7137](https://github.com/diaspora/diaspora/pull/7137)
* Display error message when aspect membership changes fail [#7132](https://github.com/diaspora/diaspora/pull/7132)
Benjamin Neff's avatar
Benjamin Neff committed
274
* Avoid the creation of pod that are none [#7145](https://github.com/diaspora/diaspora/pull/7145)
275
* Fixed tag pages with alternate default aspect settings [#7262](https://github.com/diaspora/diaspora/pull/7162)
276
* Suppressed CSP related deprecation warnings [#7263](https://github.com/diaspora/diaspora/pull/7163)
Dennis Schubert's avatar
Dennis Schubert committed
277 278

## Features
279 280
* Deleted comments will be removed when loading more comments [#7045](https://github.com/diaspora/diaspora/pull/7045)
* The "subscribe" indicator on a post now gets toggled when you like or rehsare a post [#7040](https://github.com/diaspora/diaspora/pull/7040)
281
* Add OpenGraph video support [#7043](https://github.com/diaspora/diaspora/pull/7043)
282
* You'll now get redirected to the invites page if you follow an invitation but you're already logged in [#7061](https://github.com/diaspora/diaspora/pull/7061)
283
* Add support for setting BOSH access protocol via chat configuration [#7100](https://github.com/diaspora/diaspora/pull/7100)
284
* Add number of unreviewed reports to admin dashboard and admin sidebar [#7109](https://github.com/diaspora/diaspora/pull/7109)
285
* Don't federate to pods that have been offline for an extended period of time [#7120](https://github.com/diaspora/diaspora/pull/7120)
286
* Add In-Reply-To and References headers to notification mails [#7122](https://github.com/diaspora/diaspora/pull/7122)
287
* Directly link to a comment in commented notification mails [#7124](https://github.com/diaspora/diaspora/pull/7124)
288
* Add optional `Content-Security-Policy` header [#7128](https://github.com/diaspora/diaspora/pull/7128)
289
* Add links to main stream and public stream to the mobile drawer [#7144](https://github.com/diaspora/diaspora/pull/7144)
290
* Allow opening search results from the dropdown in a new tab [#7021](https://github.com/diaspora/diaspora/issues/7021)
291
* Add user setting for default post visibility [#7118](https://github.com/diaspora/diaspora/issues/7118)
Dennis Schubert's avatar
Dennis Schubert committed
292

293 294 295 296
# 0.6.0.1

Fixes an issue with installing an running diaspora\*, caused by a recent bundler update that fixes a bundler bug on which we depended on.

297 298
# 0.6.0.0

299 300 301 302
## Warning: This release contains long migrations

This diaspora\* releases comes with a few database cleanup migrations and they could possible take a while. While you should always do that, it is especially important this time to make sure you run the migrations inside a detachable environment like `screen` or `tmux`. A interrupted SSH session could possibly harm your database. Also, please make a backup.

303 304 305 306 307 308 309 310 311 312 313 314 315 316
## The DB environment variable is gone

With Bundler 1.10 supporting optional groups, we removed the DB environment variable. When updating to this release, please update
bundler and select the database support you want:

```sh
gem install bundler
bundle install --with mysql # For MySQL and MariaDB
bundle install --with postgresql # For PostgreSQL
```

For production setups we now additionally recommend adding the `--deployment` flag.
If you set the DB environment variable anywhere, that's no longer necessary.

317 318
## Supported Ruby versions

319
This release recommends using Ruby 2.3, while retaining Ruby 2.1 as an officially supported version.
320 321
Ruby 2.0 is no longer officially supported.

322 323 324 325 326 327 328
## Configuration changes

Please note that the default listen parameter for production setups got
changed. diaspora\* will no longer listen on `0.0.0.0:3000` as it will now
bind to an UNIX socket at `unix:tmp/diaspora.sock`. Please change your local
`diaspora.yml` if necessary.

329 330 331 332 333 334 335 336
## Redis namespace support dropped

We dropped support for Redis namespaces in this release. If you previously set
a custom namespace, please note that diaspora\* will no longer use the
configured value. By default, Redis supports up to 8 databases which can be
selected via the Redis URL in `diaspora.yml`. Please check the examples
provided in our configuration example file.

337 338
## Terms of Use design changes

339
With the port to Bootstrap 3, app/views/terms/default.haml has a new structure. If you have created a customised app/views/terms/terms.haml or app/views/terms/terms.erb file, you will need to edit those files to base your customisations on the new default.haml file.
340

341 342 343
## API authentication

This release makes diaspora\* a OpenID Connect provider. This means you can authenticate to third parties with your diaspora\* account and let
344
them act as your diaspora\* account on your behalf. This feature is still considered in early development, we still expect edge cases and advanced
345 346 347 348 349
features of the specificiation to not be handled correctly or be missing. But we expect a basic OpenID Connect compliant client to work. Please submit issues!
We will also most likely still change the authorization scopes we offer and started with a very minimal set.
Most work still required is on documentation as well as designing and implementing the data API for all of Diaspora's functionality.
Contributions are very welcome, the hard work is done!

350 351 352 353 354 355 356 357
## Vines got replaced by Prosody

Due to many issues with Vines, we decided to remove Vines and offer a Prosody
example configuration instead. [Check the
wiki](https://wiki.diasporafoundation.org/Integration/Chat#Vines_to_Prosody)
for more information on how to migrate to Prosody if you've been using Vines
before.

358 359 360 361 362 363 364 365 366 367
## Sidekiq queue changes

We've decreased the amount of sidekiq queues from 13 to 5 in PR [#6950](https://github.com/diaspora/diaspora/pull/6950).
The new queues are organized according to priority for the jobs they will process. When upgrading please make sure to
empty the sidekiq queues before shutting down the server for an update.

If you run your sidekiq with a custom queue configuration, please make sure to update that for the new queues.

The new queues are: `urgent, high, medium, low, default`.

368 369 370
When you upgrade to the new version, some jobs may persist in the old queues. To move them to the default queue,
so they're processed, run:

371
```
372
bin/rake migrations:legacy_queues
373 374
```

375 376
Note that this will retry all dead jobs, if you want to prevent that empty the dead queue first.

377 378
The command will report queues that still have jobs and launch sidekiq process for that queues.

379
## Refactor
380
* Improve bookmarklet [#5904](https://github.com/diaspora/diaspora/pull/5904)
381
* Update listen configuration to listen on unix sockets by default [#5974](https://github.com/diaspora/diaspora/pull/5974)
382
* Port to Bootstrap 3 [#6015](https://github.com/diaspora/diaspora/pull/6015)
383
* Use a fixed width for the mobile drawer [#6057](https://github.com/diaspora/diaspora/pull/6057)
384
* Replace jquery.autoresize with autosize [#6104](https://github.com/diaspora/diaspora/pull/6104)
385
* Improve mobile conversation design [#6087](https://github.com/diaspora/diaspora/pull/6087)
386
* Replace remaining faceboxes with Bootstrap modals [#6106](https://github.com/diaspora/diaspora/pull/6106) [#6161](https://github.com/diaspora/diaspora/pull/6161)
387
* Rewrite header using Bootstrap 3 [#6109](https://github.com/diaspora/diaspora/pull/6109) [#6130](https://github.com/diaspora/diaspora/pull/6130) [#6132](https://github.com/diaspora/diaspora/pull/6132)
388
* Use upstream CSS mappings for Entypo [#6158](https://github.com/diaspora/diaspora/pull/6158)
389
* Replace some mobile icons with Entypo [#6218](https://github.com/diaspora/diaspora/pull/6218)
390
* Refactor publisher backbone view [#6228](https://github.com/diaspora/diaspora/pull/6228)
391
* Replace MBP.autogrow with autosize on mobile [#6261](https://github.com/diaspora/diaspora/pull/6261)
392
* Improve mobile drawer transition [#6233](https://github.com/diaspora/diaspora/pull/6233)
393
* Remove unused header icons and an unused favicon  [#6283](https://github.com/diaspora/diaspora/pull/6283)
394
* Replace mobile icons for post interactions with Entypo icons [#6291](https://github.com/diaspora/diaspora/pull/6291)
395
* Replace jquery.autocomplete with typeahead.js [#6293](https://github.com/diaspora/diaspora/pull/6293)
396
* Redesign sidebars on stream pages [#6309](https://github.com/diaspora/diaspora/pull/6309)
397
* Improve ignored users styling [#6349](https://github.com/diaspora/diaspora/pull/6349)
398 399 400 401 402
* Use Blueimp image gallery instead of lightbox [#6301](https://github.com/diaspora/diaspora/pull/6301)
* Unify mobile and desktop header design [#6285](https://github.com/diaspora/diaspora/pull/6285)
* Add white background and box-shadow to stream elements [#6324](https://github.com/diaspora/diaspora/pull/6324)
* Override Bootstrap list group design [#6345](https://github.com/diaspora/diaspora/pull/6345)
* Clean up publisher code [#6336](https://github.com/diaspora/diaspora/pull/6336)
403
* Port conversations to new design [#6431](https://github.com/diaspora/diaspora/pull/6431)
404
* Hide cancel button in publisher on small screens [#6435](https://github.com/diaspora/diaspora/pull/6435)
405
* Replace mobile background with color [#6415](https://github.com/diaspora/diaspora/pull/6415)
406
* Port flash messages to backbone [#6395](https://github.com/diaspora/diaspora/pull/6395)
407
* Change login/registration/forgot password button color [#6504](https://github.com/diaspora/diaspora/pull/6504)
408
* A note regarding ignoring users was added to the failure messages on commenting/liking [#6646](https://github.com/diaspora/diaspora/pull/6646)
409
* Replace sidetiq with sidekiq-cron [#6616](https://github.com/diaspora/diaspora/pull/6616)
410
* Refactor mobile comment section [#6509](https://github.com/diaspora/diaspora/pull/6509)
411
* Set vertical resize as default for all textareas [#6654](https://github.com/diaspora/diaspora/pull/6654)
412
* Unifiy max-widths and page layouts [#6675](https://github.com/diaspora/diaspora/pull/6675)
413
* Enable autosizing for all textareas [#6674](https://github.com/diaspora/diaspora/pull/6674)
414
* Stream faces are gone [#6686](https://github.com/diaspora/diaspora/pull/6686)
415
* Refactor mobile javascript and add tests [#6394](https://github.com/diaspora/diaspora/pull/6394)
416
* Dropped `parent_author_signature` from relayables [#6586](https://github.com/diaspora/diaspora/pull/6586)
417
* Attached ShareVisibilities to the User, not the Contact [#6723](https://github.com/diaspora/diaspora/pull/6723)
418
* Refactor mentions input, now based on typeahead.js [#6728](https://github.com/diaspora/diaspora/pull/6728)
419
* Optimized the pod up checks [#6727](https://github.com/diaspora/diaspora/pull/6727)
420
* Prune and do not create aspect visibilities for public posts [#6732](https://github.com/diaspora/diaspora/pull/6732)
421
* Optimized mobile login and registration forms [#6764](https://github.com/diaspora/diaspora/pull/6764)
422
* Redesign stream pages [#6535](https://github.com/diaspora/diaspora/pull/6535)
423
* Improve search and mentions suggestions [#6788](https://github.com/diaspora/diaspora/pull/6788)
424
* Redesign back to top button [#6782](https://github.com/diaspora/diaspora/pull/6782)
425
* Adjusted Facebook integration for a successful review [#6778](https://github.com/diaspora/diaspora/pull/6778)
426
* Redirect to the sign-in page instead of the stream on account deletion [#6784](https://github.com/diaspora/diaspora/pull/6784)
427
* Removed own unicorn killer by a maintained third-party gem [#6792](https://github.com/diaspora/diaspora/pull/6792)
428
* Removed deprecated `REDISTOGO_URL` environment variable [#6863](https://github.com/diaspora/diaspora/pull/6863)
429
* Use Poltergeist instead of Selenium [#6768](https://github.com/diaspora/diaspora/pull/6768)
430
* Redesigned the landing page and added dedicated notes for podmins [#6268](https://github.com/diaspora/diaspora/pull/6268)
431
* Moved the entire federation implementation into its own gem. 🎉 [#6873](https://github.com/diaspora/diaspora/pull/6873)
432
* Remove `StatusMessage#raw_message` [#6921](https://github.com/diaspora/diaspora/pull/6921)
433
* Extract photo export into a service class [#6922](https://github.com/diaspora/diaspora/pull/6922)
434
* Use handlebars template for aspect membership dropdown [#6864](https://github.com/diaspora/diaspora/pull/6864)
435
* Extract relayable signatures into their own tables [#6932](https://github.com/diaspora/diaspora/pull/6932)
436
* Remove outdated columns from posts table [#6940](https://github.com/diaspora/diaspora/pull/6940)
Denys Kurets's avatar
Denys Kurets committed
437
* Remove some unused routes [#6781](https://github.com/diaspora/diaspora/pull/6781)
438
* Consolidate sidekiq queues [#6950](https://github.com/diaspora/diaspora/pull/6950)
439
* Don't re-render the whole comment stream when adding comments [#6406](https://github.com/diaspora/diaspora/pull/6406)
440
* Drop legacy invitation system [#6976](https://github.com/diaspora/diaspora/pull/6976)
441
* More consistent and updated meta tags throughout [#6998](https://github.com/diaspora/diaspora/pull/6998)
442 443 444

## Bug fixes
* Destroy Participation when removing interactions with a post [#5852](https://github.com/diaspora/diaspora/pull/5852)
445
* Improve accessibility of a couple pages [#6227](https://github.com/diaspora/diaspora/pull/6227)
446
* Capitalize "Powered by diaspora" [#6254](https://github.com/diaspora/diaspora/pull/6254)
447
* Display username and avatar for NSFW posts in mobile view [#6245](https://github.com/diaspora/diaspora/pull/6245)
448
* Prevent multiple comment boxes on mobile [#6363](https://github.com/diaspora/diaspora/pull/6363)
449
* Correctly display location in post preview [#6429](https://github.com/diaspora/diaspora/pull/6429)
450
* Do not fail when submitting an empty comment in the mobile view [#6543](https://github.com/diaspora/diaspora/pull/6543)
451
* Limit flash message width on small devices [#6529](https://github.com/diaspora/diaspora/pull/6529)
452
* Add navbar on mobile when not logged in [#6483](https://github.com/diaspora/diaspora/pull/6483)
453
* Fix timeago tooltips for reshares [#6648](https://github.com/diaspora/diaspora/pull/6648)
454
* "Getting started" is now turned off after first visit on mobile [#6681](https://github.com/diaspora/diaspora/pull/6681)
455
* Fixed a 500 when liking on mobile without JS enabled [#6683](https://github.com/diaspora/diaspora/pull/6683)
456
* Fixed profile image upload in the mobile UI [#6684](https://github.com/diaspora/diaspora/pull/6684)
457
* Fixed eye not stopping all processes when trying to exit `script/server` [#6693](https://github.com/diaspora/diaspora/pull/6693)
458
* Do not change contacts count when marking notifications on the contacts page as read [#6718](https://github.com/diaspora/diaspora/pull/6718)
459
* Fix typeahead for non-latin characters [#6741](https://github.com/diaspora/diaspora/pull/6741)
460
* Fix upload size error on mobile [#6803](https://github.com/diaspora/diaspora/pull/6803)
Jonne Haß's avatar
Jonne Haß committed
461
* Connection tester handles invalid NodeInfo implementations [#6890](https://github.com/diaspora/diaspora/pull/6890)
462
* Do not allow to change email to an already used one [#6905](https://github.com/diaspora/diaspora/pull/6905)
463
* Correctly filter mentions on the server side [#6902](https://github.com/diaspora/diaspora/pull/6902)
464
* Add aspects to the aspect membership dropdown when creating them on the getting started page [#6864](https://github.com/diaspora/diaspora/pull/6864)
465
* Strip markdown from message preview in conversations list [#6923](https://github.com/diaspora/diaspora/pull/6923)
466
* Improve tag stream performance [#6903](https://github.com/diaspora/diaspora/pull/6903)
467
* Only show mutual contacts in conversations auto suggestions [#7001](https://github.com/diaspora/diaspora/pull/7001)
468 469

## Features
470
* Support color themes [#6033](https://github.com/diaspora/diaspora/pull/6033)
471
* Add mobile services and privacy settings pages [#6086](https://github.com/diaspora/diaspora/pull/6086)
472
* Optionally make your extended profile details public [#6162](https://github.com/diaspora/diaspora/pull/6162)
473
* Add admin dashboard showing latest diaspora\* version [#6216](https://github.com/diaspora/diaspora/pull/6216)
474
* Display poll & location on mobile [#6238](https://github.com/diaspora/diaspora/pull/6238)
475
* Update counts on contacts page dynamically [#6240](https://github.com/diaspora/diaspora/pull/6240)
476
* Add support for relay based public post federation [#6207](https://github.com/diaspora/diaspora/pull/6207)
477
* Bigger mobile publisher [#6261](https://github.com/diaspora/diaspora/pull/6261)
478
* Backend information panel & health checks for known pods [#6290](https://github.com/diaspora/diaspora/pull/6290)
479
* Allow users to view a posts locations on an OpenStreetMap [#6256](https://github.com/diaspora/diaspora/pull/6256)
480
* Redesign and unify error pages [#6428](https://github.com/diaspora/diaspora/pull/6428)
481
* Redesign and refactor report admin interface [#6378](https://github.com/diaspora/diaspora/pull/6378)
482
* Add permalink icon to stream elements [#6457](https://github.com/diaspora/diaspora/pull/6457)
483
* Move reshare count to interactions for stream elements [#6487](https://github.com/diaspora/diaspora/pull/6487)
484
* Posts of ignored users are now visible on that profile page [#6617](https://github.com/diaspora/diaspora/pull/6617)
485
* Add white color theme [#6631](https://github.com/diaspora/diaspora/pull/6631)
486
* Add answer counts to poll [#6641](https://github.com/diaspora/diaspora/pull/6641)
487
* Check for collapsible posts after images in posts have loaded [#6671](https://github.com/diaspora/diaspora/pull/6671)
488
* Add reason for post report to email sent to admins [#6679](https://github.com/diaspora/diaspora/pull/6679)
489
* Add links to the single post view of the related post to photos in the photo stream [#6621](https://github.com/diaspora/diaspora/pull/6621)
490
* Add a note for people with disabled JavaScript [#6777](https://github.com/diaspora/diaspora/pull/6777)
491
* Do not include conversation subject in notification mail [#6910](https://github.com/diaspora/diaspora/pull/6910)
492
* Add 'Be excellent to each other!' to the sidebar [#6914](https://github.com/diaspora/diaspora/pull/6914)
493
* Expose Sidekiq dead queue configuration options
494
* Properly support pluralization in timeago strings [#6926](https://github.com/diaspora/diaspora/pull/6926)
495
* Return all contacts in people search [#6951](https://github.com/diaspora/diaspora/pull/6951)
496
* Make screenreaders read alerts [#6973](https://github.com/diaspora/diaspora/pull/6973)
497
* Display message when there are no posts in a stream [#6974](https://github.com/diaspora/diaspora/pull/6974)
498
* Add bootstrap-markdown editor to the publisher [#6551](https://github.com/diaspora/diaspora/pull/6551)
499
* Don't create notifications for ignored users [#6984](https://github.com/diaspora/diaspora/pull/6984)
500
* Fetch missing persons when receiving a mention for them [#6992](https://github.com/diaspora/diaspora/pull/6992)
501

Jonne Haß's avatar
Jonne Haß committed
502
# 0.5.10.2
Dennis Schubert's avatar
Dennis Schubert committed
503

Jonne Haß's avatar
Jonne Haß committed
504
Update to Rails 4.2.7.1 which fixes [CVE-2016-6316](https://groups.google.com/forum/#!topic/ruby-security-ann/8B2iV2tPRSE) and [CVE-2016-6317](https://groups.google.com/forum/#!topic/ruby-security-ann/WccgKSKiPZA).
Dennis Schubert's avatar
Dennis Schubert committed
505

506 507 508 509
# 0.5.10.1

We made a mistake and removed `mysql2` from the `Gemfile.lock` in a recent gem update. Since this could cause some issues for some installations, we decided to release a hotfix.

Dennis Schubert's avatar
Dennis Schubert committed
510 511 512 513
# 0.5.10.0

## Refactor

514
* Removed the publisher from a user's photo stream due to various issues [#6851](https://github.com/diaspora/diaspora/pull/6851)
515
* Don't implicitly ignore missing templateName in app.views.Base [#6877](https://github.com/diaspora/diaspora/pull/6877)
516

Jonne Haß's avatar
Jonne Haß committed
517 518 519 520 521 522
# 0.5.9.1

Update Nokogiri to 1.6.8, which in turn updates libxml2 to 2.9.4 and libxslt to 1.1.29,
addressing a range of security issues. See https://groups.google.com/forum/#!topic/ruby-security-ann/RCHyF5K9Lbc
for more details.

Dennis Schubert's avatar
Dennis Schubert committed
523 524 525
# 0.5.9.0

## Refactor
Senya's avatar
Senya committed
526
* Remove unused mentions regex [#6810](https://github.com/diaspora/diaspora/pull/6810)
Dennis Schubert's avatar
Dennis Schubert committed
527 528

## Bug fixes
529
* Fix back to top button not appearing on Webkit browsers [#6782](https://github.com/diaspora/diaspora/pull/6782)
530
* Don't reset the notification timestamp when marking them as read [#6821](https://github.com/diaspora/diaspora/pull/6821)
Dennis Schubert's avatar
Dennis Schubert committed
531 532 533

## Features

534 535
* The sender's diaspora-ID is now shown in invitation mails [#6817](https://github.com/diaspora/diaspora/pull/6817)

536 537 538
# 0.5.8.0

## Refactor
539
* Sort tag autocompletion by tag name [#6734](https://github.com/diaspora/diaspora/pull/6734)
540
* Make account deletions faster by adding an index [#6771](https://github.com/diaspora/diaspora/pull/6771)
541 542

## Bug fixes
543 544
* Fix empty name field when editing aspect names [#6706](https://github.com/diaspora/diaspora/pull/6706)
* Fix internal server error when trying to log out of an expired session [#6707](https://github.com/diaspora/diaspora/pull/6707)
545
* Only mark unread notifications as read [#6711](https://github.com/diaspora/diaspora/pull/6711)
546
* Use https for OEmbeds [#6748](https://github.com/diaspora/diaspora/pull/6748)
547
* Fix birthday issues on leap days [#6738](https://github.com/diaspora/diaspora/pull/6738)
548 549

## Features
550
* Added the footer to conversation pages [#6710](https://github.com/diaspora/diaspora/pull/6710)
Benjamin Neff's avatar
Benjamin Neff committed
551
* Drop ChromeFrame and display an error page on old IE versions instead [#6751](https://github.com/diaspora/diaspora/pull/6751)
552

Dennis Schubert's avatar
Dennis Schubert committed
553 554
# 0.5.7.1

555 556 557 558
This security release disables post fetching for relayables. Due to an insecure implementation, fetching of root posts for relayables could allow an attacker to distribute malicious/spoofed/modified posts for any person.

Disabling the fetching will make the current federation a bit less reliable, but for a hotfix, this is the best solution. We will re-enable the fetching in 0.6.0.0 when we moved out the federation into its own library and are able to implement further validation during fetches.

559 560
# 0.5.7.0

561 562
## Refactor
* Internationalize controller rescue\_from text [#6554](https://github.com/diaspora/diaspora/pull/6554)
563
* Make mention parsing a bit more robust [#6658](https://github.com/diaspora/diaspora/pull/6658)
564
* Remove unlicensed images [#6673](https://github.com/diaspora/diaspora/pull/6673)
565
* Removed unused contacts\_title [#6687](https://github.com/diaspora/diaspora/pull/6687)
566

567
## Bug fixes
568
* Fix plural rules handling more than wanted as "one" [#6630](https://github.com/diaspora/diaspora/pull/6630)
569
* Fix `suppress_annoying_errors` eating too much errors [#6653](https://github.com/diaspora/diaspora/pull/6653)
570
* Ensure the rubyzip gem is properly loaded [#6659](https://github.com/diaspora/diaspora/pull/6659)
571
* Fix mobile registration layout after failed registration [#6677](https://github.com/diaspora/diaspora/pull/6677)
572
* Fix mirrored names when using a RTL language [#6680](https://github.com/diaspora/diaspora/pull/6680)
573
* Disable submitting a post multiple times in the mobile UI [#6682](https://github.com/diaspora/diaspora/pull/6682)
574

575
## Features
576
* Keyboard shortcuts now do work on profile pages as well [#6647](https://github.com/diaspora/diaspora/pull/6647/files)
577
* Add the podmin email address to 500 errors [#6652](https://github.com/diaspora/diaspora/pull/6652)
578

579 580
# 0.5.6.3

581 582 583
Fix evil regression caused by Active Model no longer exposing
`include_root_in_json` in instances.

Dennis Schubert's avatar
Dennis Schubert committed
584 585
# 0.5.6.2

Dennis Schubert's avatar
Dennis Schubert committed
586 587 588 589 590 591 592 593 594
* Fix [CVE-2016-0751](https://groups.google.com/forum/#!topic/rubyonrails-security/9oLY_FCzvoc) - Possible Object Leak and Denial of Service attack in Action Pack
* Fix [CVE-2015-7581](https://groups.google.com/forum/#!topic/rubyonrails-security/dthJ5wL69JE) - Object leak vulnerability for wildcard controller routes in Action Pack
* Fix [CVE-2015-7576](https://groups.google.com/forum/#!topic/rubyonrails-security/ANv0HDHEC3k) - Timing attack vulnerability in basic authentication in Action Controller
* Fix [CVE-2016-0752](https://groups.google.com/forum/#!topic/rubyonrails-security/335P1DcLG00) - Possible Information Leak Vulnerability in Action View
* Fix [CVE-2016-0753](https://groups.google.com/forum/#!topic/rubyonrails-security/6jQVC1geukQ) - Possible Input Validation Circumvention in Active Model
* Fix [CVE-2015-7577](https://groups.google.com/forum/#!topic/rubyonrails-security/cawsWcQ6c8g) - Nested attributes rejection proc bypass in Active Record
* Fix [CVE-2015-7579](https://groups.google.com/forum/#!topic/rubyonrails-security/OU9ugTZcbjc) - XSS vulnerability in rails-html-sanitizer
* Fix [CVE-2015-7578](https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI) - Possible XSS vulnerability in rails-html-sanitizer

Dennis Schubert's avatar
Dennis Schubert committed
595 596
# 0.5.6.1

Dennis Schubert's avatar
Dennis Schubert committed
597
* Fix Nokogiri CVE-2015-7499
Dennis Schubert's avatar
Dennis Schubert committed
598
* Fix unsafe "Remember me" cookies in Devise
Dennis Schubert's avatar
Dennis Schubert committed
599

Jonne Haß's avatar
Jonne Haß committed
600
# 0.5.6.0
601 602

## Refactor
603
* Add more integration tests with the help of the new diaspora-federation gem [#6539](https://github.com/diaspora/diaspora/pull/6539)
604

Jonne Haß's avatar
Jonne Haß committed
605
## Bug fixes
606
* Fix mention autocomplete when pasting the username [#6510](https://github.com/diaspora/diaspora/pull/6510)
607
* Use and update updated\_at for notifications [#6573](https://github.com/diaspora/diaspora/pull/6573)
608 609
* Ensure the author signature is checked when receiving a relayable [#6539](https://github.com/diaspora/diaspora/pull/6539)
* Do not try to display hovercards when logged out [#6587](https://github.com/diaspora/diaspora/pull/6587)
Jonne Haß's avatar
Jonne Haß committed
610 611 612

## Features

613 614
* Display hovercards without aspect dropdown when logged out [#6603](https://github.com/diaspora/diaspora/pull/6603)
* Add media.ccc.de as a trusted oEmbed endpoint
615

616 617 618
# 0.5.5.1

* Fix XSS on profile pages
Dennis Schubert's avatar
Dennis Schubert committed
619
* Bump nokogiri to fix several libxml2 CVEs, see http://www.ubuntu.com/usn/usn-2834-1/
620

621 622 623
# 0.5.5.0

## Bug fixes
624
* Redirect to sign in page when a background request fails with 401 [#6496](https://github.com/diaspora/diaspora/pull/6496)
625
* Correctly skip setting sidekiq logfile on Heroku [#6500](https://github.com/diaspora/diaspora/pull/6500)
626
* Fix notifications for interactions by non-contacts [#6498](https://github.com/diaspora/diaspora/pull/6498)
627
* Fix issue where the publisher was broken on profile pages [#6503](https://github.com/diaspora/diaspora/pull/6503)
628
* Prevent participations being created for invalid interactions [#6552](https://github.com/diaspora/diaspora/pull/6552)
629
* Improve federation for reshare related interactions [#6481](https://github.com/diaspora/diaspora/pull/6481)
630

631 632 633
# 0.5.4.0

## Refactor
634
*  Improve infinite scroll triggering [#6451](https://github.com/diaspora/diaspora/pull/6451)
635 636

## Bug fixes
637
* Skip first getting started step if it looks done already [#6456](https://github.com/diaspora/diaspora/pull/6456)
638
* Normalize new followed tags and insert them alphabetically [#6454](https://github.com/diaspora/diaspora/pull/6454)
639
* Add avatar fallback for notification dropdown [#6463](https://github.com/diaspora/diaspora/pull/6463)
640
* Improve handling of j/k hotkeys [#6462](https://github.com/diaspora/diaspora/pull/6462)
641
* Fix JS error caused by hovercards [6480](https://github.com/diaspora/diaspora/pull/6480)
642 643 644

## Features
* Show spinner on initial stream load [#6384](https://github.com/diaspora/diaspora/pull/6384)
645
* Add new moderator role. Moderators can view and act on reported posts [#6351](https://github.com/diaspora/diaspora/pull/6351)
646
* Only post to the primary tumblr blog [#6386](https://github.com/diaspora/diaspora/pull/6386)
647
* Always show public photos on profile page [#6398](https://github.com/diaspora/diaspora/pull/6398)
648
* Expose Unicorn's pid option to our configuration system [#6411](https://github.com/diaspora/diaspora/pull/6411)
Steffen van Bergerem's avatar
Steffen van Bergerem committed
649
* Add stream of all public posts [#6465](https://github.com/diaspora/diaspora/pull/6465)
650
* Reload stream when clicking on already active one [#6466](https://github.com/diaspora/diaspora/pull/6466)
651
* Sign in user before evaluating post visibility [#6490](https://github.com/diaspora/diaspora/pull/6490)
652

Jonne Haß's avatar
Jonne Haß committed
653 654 655 656 657
# 0.5.3.1

Fix a leak of potentially private profile data to unauthorized users who were sharing with the person
and on a pod that received that data.

658 659 660
# 0.5.3.0

## Refactor
661
* Drop broken correlations from the admin pages [#6223](https://github.com/diaspora/diaspora/pull/6223)
662
* Extract PostService from PostsController [#6208](https://github.com/diaspora/diaspora/pull/6208)
663
* Drop outdated/unused mbp-respond.min.js and mbp-modernizr-custom.js [#6257](https://github.com/diaspora/diaspora/pull/6257)
664
* Refactor ApplicationController#after\_sign\_out\_path\_for [#6258](https://github.com/diaspora/diaspora/pull/6258)
665
* Extract StatusMessageService from StatusMessagesController [#6280](https://github.com/diaspora/diaspora/pull/6280)
666
* Refactor HomeController#toggle\_mobile [#6260](https://github.com/diaspora/diaspora/pull/6260)
667
* Extract CommentService from CommentsController [#6307](https://github.com/diaspora/diaspora/pull/6307)
668
* Extract user/profile discovery into the diaspora\_federation-rails gem [#6310](https://github.com/diaspora/diaspora/pull/6310)
669
* Refactor PostPresenter [#6315](https://github.com/diaspora/diaspora/pull/6315)
670
* Convert BackToTop to a backbone view [#6279](https://github.com/diaspora/diaspora/pull/6279) and [#6360](https://github.com/diaspora/diaspora/pull/6360)
671
* Automatically follow the new HQ-Account [#6369](https://github.com/diaspora/diaspora/pull/6369)
672 673

## Bug fixes
674
* Fix indentation and a link title on the default home page [#6212](https://github.com/diaspora/diaspora/pull/6212)
675
* Bring peeping Tom on the 404 page back [#6226](https://github.com/diaspora/diaspora/pull/6226)
676
* Fix mobile photos index page [#6243](https://github.com/diaspora/diaspora/pull/6243)
677
* Fix conversations view with no contacts [#6266](https://github.com/diaspora/diaspora/pull/6266)
678
* Links in the left sidebar are now clickable on full width [#6267](https://github.com/diaspora/diaspora/pull/6267)
679
* Guard against passing nil into person\_image\_tag [#6286](https://github.com/diaspora/diaspora/pull/6286)
680
* Prevent Handlebars from messing up indentation of pre tags [#6339](https://github.com/diaspora/diaspora/pull/6339)
681
* Fix pagination design on notifications page [#6364](https://github.com/diaspora/diaspora/pull/6364)
682 683 684

## Features

685
* Implement NodeInfo [#6239](https://github.com/diaspora/diaspora/pull/6239)
686
* Display original author on reshares of NSFW posts [#6270](https://github.com/diaspora/diaspora/pull/6270)
687
* Use avatars in hovercards as links to the profile [#6297](https://github.com/diaspora/diaspora/pull/6297)
688
* Remove avatars of ignored users from stream faces [#6320](https://github.com/diaspora/diaspora/pull/6320)
augier's avatar
augier committed
689
* New /m route to force the mobile view [#6354](https://github.com/diaspora/diaspora/pull/6354)
690

691 692
# 0.5.2.0

693
## Refactor
694
* Update perfect-scrollbar [#6085](https://github.com/diaspora/diaspora/pull/6085)
695
* Remove top margin for first heading in a post [#6110](https://github.com/diaspora/diaspora/pull/6110)
696
* Add link to pod statistics in right navigation [#6117](https://github.com/diaspora/diaspora/pull/6117)
Jonne Haß's avatar
Jonne Haß committed
697
* Update to Rails 4.2.3 [#6140](https://github.com/diaspora/diaspora/pull/6140)
Benjamin Neff's avatar
Benjamin Neff committed
698
* Refactor person related URL generation [#6168](https://github.com/diaspora/diaspora/pull/6168)
699
* Move webfinger and HCard generation out of the core and embed the `diaspora_federation-rails` gem [#6151](https://github.com/diaspora/diaspora/pull/6151/)
700
* Refactor rspec tests to to use `let` instead of before blocks [#6199](https://github.com/diaspora/diaspora/pull/6199)
701
* Refactor tests for EXIF stripping [#6183](https://github.com/diaspora/diaspora/pull/6183)
702

703 704
## Bug fixes
* Precompile facebox images [#6105](https://github.com/diaspora/diaspora/pull/6105)
705
* Fix wrong closing a-tag [#6111](https://github.com/diaspora/diaspora/pull/6111)
706
* Fix mobile more-button wording when there are less than 15 posts [#6118](https://github.com/diaspora/diaspora/pull/6118)
707
* Fix reappearing flash boxes during sign-in [#6146](https://github.com/diaspora/diaspora/pull/6146)
708
* Capitalize Wiki link [#6193](https://github.com/diaspora/diaspora/pull/6193)
709

710 711
## Features
* Add configuration options for some debug logs [#6090](https://github.com/diaspora/diaspora/pull/6090)
712
* Send new users a welcome message from the podmin [#6128](https://github.com/diaspora/diaspora/pull/6128)
713
* Cleanup temporary upload files daily [#6147](https://github.com/diaspora/diaspora/pull/6147)
714
* Add guid to posts and comments in the user export [#6185](https://github.com/diaspora/diaspora/pull/6185)
715

Jonne Haß's avatar
Jonne Haß committed
716 717 718 719 720 721
# 0.5.1.2

diaspora\* versions prior 0.5.1.2 leaked potentially private profile data (namely the bio, birthday, gender and location fields) to
unauthorized users. While the frontend properly hid them, the backend missed a check to not include them in responses.
Thanks to @cmrd-senya for finding and reporting the issue.

722 723 724 725 726 727 728 729 730
# 0.5.1.1

Update rails to 4.2.2, rack to 1.6.2 and jquery-rails to 4.0.4. This fixes

* [CVE-2015-3226](https://groups.google.com/d/msg/rubyonrails-security/7VlB_pck3hU/3QZrGIaQW6cJ)
* [CVE-2015-3227](https://groups.google.com/d/msg/rubyonrails-security/bahr2JLnxvk/x4EocXnHPp8J)
* [CVE-2015-1840](https://groups.google.com/d/msg/rubyonrails-security/XIZPbobuwaY/fqnzzpuOlA4J)
* [CVE-2015-3225](https://groups.google.com/d/msg/rubyonrails-security/gcUbICUmKMc/qiCotVZwXrMJ)

731
# 0.5.1.0
732 733

## Refactor
734
* Use Bootstrap modal for new aspect pane [#5850](https://github.com/diaspora/diaspora/pull/5850)
735
* Use asset helper instead of .css.erb [#5886](https://github.com/diaspora/diaspora/pull/5886)
736
* Dropped db/seeds.rb [#5896](https://github.com/diaspora/diaspora/pull/5896)
737
* Drop broken install scripts [#5907](https://github.com/diaspora/diaspora/pull/5907)
738
* Improve invoking mobile site in the testsuite [#5915](https://github.com/diaspora/diaspora/pull/5915)
739
* Do not retry a couple of unrecoverable job failures [#5938](https://github.com/diaspora/diaspora/pull/5938) [#5942](https://github.com/diaspora/diaspora/pull/5943)
740
* Remove some old temporary workarounds [#5964](https://github.com/diaspora/diaspora/pull/5964)
741
* Remove unused `hasPhotos` and `hasText` functions [#5969](https://github.com/diaspora/diaspora/pull/5969)
Jonne Haß's avatar
Jonne Haß committed
742
* Replace foreman with eye [#5966](https://github.com/diaspora/diaspora/pull/5966)
743
* Improved handling of reshares with deleted roots [#5968](https://github.com/diaspora/diaspora/pull/5968)
744
* Remove two unused methods [#5970](https://github.com/diaspora/diaspora/pull/5970)
745
* Refactored the Logger to add basic logrotating and more useful timestamps [#5975](https://github.com/diaspora/diaspora/pull/5975)
746
* Gracefully handle mailer failures if a like is already deleted again [#5983](https://github.com/diaspora/diaspora/pull/5983)
747
* Ensure posts have an author [#5986](https://github.com/diaspora/diaspora/pull/5986)
748
* Improve the logging messages of Sidekiq messages [#5988](https://github.com/diaspora/diaspora/pull/5988)
749
* Improve the logging of Eyes output [#5989](https://github.com/diaspora/diaspora/pull/5989)
750
* Gracefully handle XML parse errors within federation [#5991](https://github.com/diaspora/diaspora/pull/5991)
751
* Remove zip-zip workaround gem [#6001](https://github.com/diaspora/diaspora/pull/6001)
Benjamin Neff's avatar
Benjamin Neff committed
752
* Cleanup and reorganize image assets [#6004](https://github.com/diaspora/diaspora/pull/6004)
753
* Replace vendored assets for facebox by gem [#6005](https://github.com/diaspora/diaspora/pull/6005)
754
* Improve styling of horizontal ruler in posts [#6016](https://github.com/diaspora/diaspora/pull/6016)
755
* Increase post titles length to 50 and use configured pod name as title in the atom feed [#6020](https://github.com/diaspora/diaspora/pull/6020)
756
* Remove deprecated Facebook permissions [#6019](https://github.com/diaspora/diaspora/pull/6019)
757
* Make used post title lengths more consistent [#6022](https://github.com/diaspora/diaspora/pull/6022)
758
* Improved logging source [#6041](https://github.com/diaspora/diaspora/pull/6041)
759
* Gracefully handle duplicate entry while receiving share-visibility in parallel [#6068](https://github.com/diaspora/diaspora/pull/6068)
760
* Update twitter gem to get rid of deprecation warnings [#6083](https://github.com/diaspora/diaspora/pull/6083)
761
* Refactor photos federation to get rid of some hacks [#6082](https://github.com/diaspora/diaspora/pull/6082)
762 763 764

## Bug fixes
* Disable auto follow back on aspect deletion [#5846](https://github.com/diaspora/diaspora/pull/5846)
765
* Fix only sharing flag for contacts that are receiving [#5848](https://github.com/diaspora/diaspora/pull/5848)
766
* Return 406 when requesting a JSON representation of people/:guid/contacts [#5849](https://github.com/diaspora/diaspora/pull/5849)
767
* Hide manage services link in the publisher on certain pages [#5854](https://github.com/diaspora/diaspora/pull/5854)
768
* Fix notification mails for limited posts [#5877](https://github.com/diaspora/diaspora/pull/5877)
769
* Fix medium and small avatar URLs when using Camo [#5883](https://github.com/diaspora/diaspora/pull/5883)
770
* Improve output of script/server [#5885](https://github.com/diaspora/diaspora/pull/5885)
771
* Fix CSS for bold links [#5887](https://github.com/diaspora/diaspora/pull/5887)
772
* Correctly handle IE8 in the chrome frame middleware [#5878](https://github.com/diaspora/diaspora/pull/5878)
773
* Fix code reloading for PostPresenter [#5888](https://github.com/diaspora/diaspora/pull/5888)
774
* Fix closing account from mobile view [#5913](https://github.com/diaspora/diaspora/pull/5913)
775
* Allow using common custom template for desktop & mobile landing page [#5915](https://github.com/diaspora/diaspora/pull/5915)
776
* Use correct branding in Atom feed [#5929](https://github.com/diaspora/diaspora/pull/5929)
777
* Update the configurate gem to avoid issues by missed missing settings keys [#5934](https://github.com/diaspora/diaspora/pull/5934)
778
* ContactPresenter#full_hash_with_person did not contain relationship information [#5936](https://github.com/diaspora/diaspora/pull/5936)
779
* Fix inactive user removal not respecting configuration for daily limits [#5953](https://github.com/diaspora/diaspora/pull/5953)
780
* Fix missing localization of inactive user removal warning emails [#5950](https://github.com/diaspora/diaspora/issues/5950)
781
* Fix fetching for public post while Webfingering [#5958](https://github.com/diaspora/diaspora/pull/5958)
782
* Handle empty searchable in HCard gracefully [#5962](https://github.com/diaspora/diaspora/pull/5962)
783
* Fix a freeze in new post parsing [#5965](https://github.com/diaspora/diaspora/pull/5965)
784
* Add case insensitive unconfirmed email addresses as authentication key [#5967](https://github.com/diaspora/diaspora/pull/5967)
785
* Fix liking on single post views when accessed via GUID [#5978](https://github.com/diaspora/diaspora/pull/5978)
786
* Only return the current_users participation for post interactions [#6007](https://github.com/diaspora/diaspora/pull/6007)
787
* Fix tag rendering in emails [#6009](https://github.com/diaspora/diaspora/pull/6009)
788
* Fix the logo in emails [#6013](https://github.com/diaspora/diaspora/pull/6013)
789
* Disable autocorrect for username on mobile sign in [#6028](https://github.com/diaspora/diaspora/pull/6028)
790
* Fix broken default avatars in the database [#6014](https://github.com/diaspora/diaspora/pull/6014)
791
* Only strip text direction codepoints around hashtags [#6067](https://github.com/diaspora/diaspora/issues/6067)
792
* Fix selected week on admin weekly stats page [#6079](https://github.com/diaspora/diaspora/pull/6079)
793
* Fix that some unread conversations may be hidden [#6060](https://github.com/diaspora/diaspora/pull/6060)
794
* Fix photo links in the mobile interface [#6082](https://github.com/diaspora/diaspora/pull/6082)
795 796

## Features
797
* Hide post title of limited post in comment notification email [#5843](https://github.com/diaspora/diaspora/pull/5843)
798
* More and better environment checks in script/server [#5891](https://github.com/diaspora/diaspora/pull/5891)
799
* Enable aspect sorting again [#5559](https://github.com/diaspora/diaspora/pull/5559)
800
* Submit messages in conversations with Ctrl+Enter [#5910](https://github.com/diaspora/diaspora/pull/5910)
801
* Support syntax highlighting for fenced code blocks [#5908](https://github.com/diaspora/diaspora/pull/5908)
802
* Added link to diasporafoundation.org to invitation email [#5893](https://github.com/diaspora/diaspora/pull/5893)
Jonne Haß's avatar
Jonne Haß committed
803
* Gracefully handle missing `og:url`s [#5926](https://github.com/diaspora/diaspora/pull/5926)
804
* Remove private post content from "also commented" mails [#5931](https://github.com/diaspora/diaspora/pull/5931)
805
* Add a button to follow/unfollow tags to the mobile interface [#5941](https://github.com/diaspora/diaspora/pull/5941)
806
* Add a "Manage followed tags" page to mass unfollow tags in the mobile interface [#5945](https://github.com/diaspora/diaspora/pull/5945)
807
* Add popover/tooltip about email visibility to registration/settings page [#5956](https://github.com/diaspora/diaspora/pull/5956)
808
* Fetch person posts on sharing request [#5960](https://github.com/diaspora/diaspora/pull/5960)
809
* Introduce 'authorized' configuration option for services [#5985](https://github.com/diaspora/diaspora/pull/5985)
810
* Added configuration options for log rotating [#5994](https://github.com/diaspora/diaspora/pull/5994)
811

Jonne Haß's avatar
Jonne Haß committed
812 813 814 815
# 0.5.0.1

Use the correct setting for captcha length instead of defaulting to 1 always.

Jason Robinson's avatar
Jason Robinson committed
816
# 0.5.0.0
Jonne Haß's avatar
Jonne Haß committed
817

Jonne Haß's avatar
Jonne Haß committed
818 819 820 821 822 823 824 825
## Major Sidekiq update
This release includes a major upgrade of the background processing system Sidekiq. To upgrade cleanly:

1. Stop diaspora*
2. Run `RAILS_ENV=production bundle exec sidekiq` and wait 5-10 minutes, then stop it again (hit `CTRL+C`)
3. Do a normal upgrade of diaspora*
4. Start diaspora*

Jonne Haß's avatar
Jonne Haß committed
826 827 828 829 830 831 832 833 834 835 836 837
## Rails 4 - Manual action required
Please edit `config/initializers/secret_token.rb`, replacing `secret_token` with
`secret_key_base`.

```ruby
# Old
Rails.application.config.secret_token = '***********...'

# New
Diaspora::Application.config.secret_key_base = '*************...'
```

838
You also need to take care to set `RAILS_ENV` and to clear the cache while precompiling assets: `RAILS_ENV=production bundle exec rake tmp:cache:clear assets:precompile`
839

840 841 842 843 844
## Supported Ruby versions
This release drops official support for the Ruby 1.9 series. This means we will no longer test against this Ruby version or take care to choose libraries
that work with it. However that doesn't mean we won't accept patches that improve running diaspora* on it.

At the same time we adopt support for the Ruby 2.1 series and recommend running on the latest Ruby version of that branch. We continue to support the Ruby 2.0
845
series and run our comprehensive test suite against it.
846

847 848
## Change in defaults.yml
The default for including jQuery from a CDN has changed. If you want to continue to include it from a CDN, please explicitly set the `jquery_cdn` setting to `true` in diaspora.yml.
Jonne Haß's avatar
Jonne Haß committed
849

850
## Change in database.yml
goobertron's avatar
goobertron committed
851
For MySQL databases, replace `charset: utf8` with `encoding: utf8mb4` and  change `collation` from `utf8_bin` to `utf8mb4_bin` in the file `config/database.yml`.
852 853
This is enables full UTF8 support (4bytes characters), including standard emoji characters.
See `database.yml.example` for reference.
854
Please make sure to stop Diaspora prior running this migration!
855

856
## Experimental chat feature
857
This release adds experimental integration with XMPP for real-time chat. Please see  [our wiki](https://wiki.diasporafoundation.org/Vines) for further informations.
858

Jason Robinson's avatar