## v0.9.0
* Add HTTPClient adapter (@hakanensari)
* Improve Retry handler (@mislav)
* Remove autoloading by default (@technoweenie)
* Improve internal docs (@technoweenie, @mislav)
* Respect user/password in http proxy string (@mislav)
* Adapter options are structs. Reinforces consistent options across adapters
(@technoweenie)
* Stop stripping trailing / off base URLs in a Faraday::Connection. (@technoweenie)
* Add a configurable URI parser. (@technoweenie)
* Remove need to manually autoload when using the authorization header helpers on `Faraday::Connection`. (@technoweenie)
* `Faraday::Adapter::Test` respects the `Faraday::RequestOptions#params_encoder` option. (@technoweenie)
Drupal 7.26, 2014-01-15
----------------------
- Fixed security issues (multiple vulnerabilities). See SA-CORE-2014-001.
Drupal 7.25, 2014-01-02
-----------------------
- Fixed a bug in node_save() which prevented the saved node from being updated
in hook_node_insert() and other similar hooks.
- Added a meta tag to install.php to prevent it from being indexed by search
engines even when Drupal is installed in a subfolder (minor markup change).
- Fixed a bug in the database API that caused frequent deadlock errors when
running merge queries on some servers.
- Performance improvement: Prevented block rehashing from writing blocks to the
database on every cache clear and cron run when the blocks have not changed.
This fix results in an extra 'saved' key which is added and set to TRUE for
each block returned by _block_rehash() that actually is saved to the database
(data structure change).
- Added an optional 'skip on cron' parameter to hook_cron_queue_info() to allow
queues to avoid being automatically processed on cron runs (API addition).
- Fixed a bug which caused hook_block_view_MODULE_DELTA_alter() to never be
invoked if the block delta had a hyphen in it. To implement the hook when the
block delta has a hyphen, modules should now replace hyphens with underscores
when constructing the function name for the hook implementation.
- Fixed a bug which caused cached pages to sometimes be sent to the browser
with incorrect compression. The fix adds a new 'page_compressed' key to the
$cache->data array returned by drupal_page_get_cache() (minor data structure
change).
- Fixed broken tests on PHP 5.5.
- Made the File and Image modules more robust when saving entities that have
deleted files attached. The code in file_field_presave() will now remove the
record of the deleted file from the entity before saving (minor data
structure change).
- Standardized menu callback functions throughout Drupal core to return
MENU_NOT_FOUND and MENU_ACCESS_DENIED rather than printing their own "page
not found" or "access denied" pages (minor API change in the return value of
these functions under some circumstances).
- Fixed a bug in which caches were not properly cleared when a node was deleted
via the administrative interface.
- Changed the Bartik theme to render content contained in <pre>, <code> and
similar tags in a larger font size, so it is easier to read.
- Fixed a bug in the Search module that caused exceptions to be thrown during
searches if the server was not configured to represent decimal points as a
period.
- Fixed a regression in the Image module that made image_style_url() not work
when a relative path (rather than a complete file URI) was passed to it.
- Added an optional feature to the Statistics module to allow node views to be
tracked by Ajax requests rather than during the server-side generation of the
page. This allows the node counter to work on sites that use external page
caches (string change and new administrative option:
https://drupal.org/node/2164069).
- Added a link to the drupal.org documentation page for cron to the Cron
settings page (string change).
- Added a 'drupal_anonymous_user_object' variable to allow the anonymous user
object returned by drupal_anonymous_user() to be overridden with a classed
object (API addition).
- Changed the database API to allow inserts based on a SELECT * query to work
correctly.
- Changed the database schema of the {file_managed} table to allow Drupal to
manage files larger than 4 GB.
- Changed the File module's hook_field_load() implementation to prevent file
entity properties which have the same name as file or image field properties
from overwriting the field properties (minor API change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
Version 1.7.1
-------------
Released January 14th 2014
- Fixed a bug where passwords would fail to verify when specifying a password hash algorithm
Version 1.7.0
-------------
Released January 10th 2014
- Python 3.3 support!
- Dependency updates
- Fixed a bug when `SECURITY_LOGIN_WITHOUT_CONFIRMATION = True` did not allow users to log in
- Added `SECURITY_SEND_PASSWORD_RESET_NOTICE_EMAIL` configuraiton option to optionally send password reset notice emails
- Add documentation for `@security.send_mail_task`
- Move to `request.get_json` as `request.json` is now deprecated in Flask
- Fixed a bug when using AJAX to change a user's password
- Added documentation for select functions in the `flask_security.utils` module
- Fixed a bug in `flask_security.forms.NextFormMixin`
- Added `CHANGE_PASSWORD_TEMPLATE` configuration option to optionally specify a different change password template
- Added the ability to specify addtional fields on the user model to be used for identifying the user via the `USER_IDENTITY_ATTRIBUTES` configuration option
- An error is now shown if a user tries to change their password and the password is the same as before. The message can be customed with the `SECURITY_MSG_PASSWORD_IS_SAME` configuration option
- Fixed a bug in `MongoEngineUserDatastore` where user model would not be updated when using the `add_role_to_user` method
- Added `SECURITY_SEND_PASSWORD_CHANGE_EMAIL` configuration option to optionally disable password change email from being sent
- Fixed a bug in the `find_or_create_role` method of the PeeWee datastore
- Removed pypy tests
- Fixed some tests
- Include CHANGES and LICENSE in MANIFEST.in
- A bit of documentation cleanup
- A bit of code cleanup including removal of unnecessary utcnow call and simplification of get_max_age method
Drupal 7.25, 2014-01-02
-----------------------
- Fixed a bug in node_save() which prevented the saved node from being updated
in hook_node_insert() and other similar hooks.
- Added a meta tag to install.php to prevent it from being indexed by search
engines even when Drupal is installed in a subfolder (minor markup change).
- Fixed a bug in the database API that caused frequent deadlock errors when
running merge queries on some servers.
- Performance improvement: Prevented block rehashing from writing blocks to the
database on every cache clear and cron run when the blocks have not changed.
This fix results in an extra 'saved' key which is added and set to TRUE for
each block returned by _block_rehash() that actually is saved to the database
(data structure change).
- Added an optional 'skip on cron' parameter to hook_cron_queue_info() to allow
queues to avoid being automatically processed on cron runs (API addition).
- Fixed a bug which caused hook_block_view_MODULE_DELTA_alter() to never be
invoked if the block delta had a hyphen in it. To implement the hook when the
block delta has a hyphen, modules should now replace hyphens with underscores
when constructing the function name for the hook implementation.
- Fixed a bug which caused cached pages to sometimes be sent to the browser
with incorrect compression. The fix adds a new 'page_compressed' key to the
$cache->data array returned by drupal_page_get_cache() (minor data structure
change).
- Fixed broken tests on PHP 5.5.
- Made the File and Image modules more robust when saving entities that have
deleted files attached. The code in file_field_presave() will now remove the
record of the deleted file from the entity before saving (minor data
structure change).
- Standardized menu callback functions throughout Drupal core to return
MENU_NOT_FOUND and MENU_ACCESS_DENIED rather than printing their own "page
not found" or "access denied" pages (minor API change in the return value of
these functions under some circumstances).
- Fixed a bug in which caches were not properly cleared when a node was deleted
via the administrative interface.
- Changed the Bartik theme to render content contained in <pre>, <code> and
similar tags in a larger font size, so it is easier to read.
- Fixed a bug in the Search module that caused exceptions to be thrown during
searches if the server was not configured to represent decimal points as a
period.
- Fixed a regression in the Image module that made image_style_url() not work
when a relative path (rather than a complete file URI) was passed to it.
- Added an optional feature to the Statistics module to allow node views to be
tracked by Ajax requests rather than during the server-side generation of the
page. This allows the node counter to work on sites that use external page
caches (string change and new administrative option:
https://drupal.org/node/2164069).
- Added a link to the drupal.org documentation page for cron to the Cron
settings page (string change).
- Added a 'drupal_anonymous_user_object' variable to allow the anonymous user
object returned by drupal_anonymous_user() to be overridden with a classed
object (API addition).
- Changed the database API to allow inserts based on a SELECT * query to work
correctly.
- Changed the database schema of the {file_managed} table to allow Drupal to
manage files larger than 4 GB.
- Changed the File module's hook_field_load() implementation to prevent file
entity properties which have the same name as file or image field properties
from overwriting the field properties (minor API change).
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
Flask-Babel is an extension to Flask that adds i18n and l10n support to any
Flask application with the help of babel, pytz and speaklater. It has builtin
support for date formatting with timezone support as well as a very simple and
friendly interface to gettext translations.
Upstream changes:
4.66 2014-01-04
- Added success attribute to Test::Mojo.
- Improved Mojo::DOM::CSS and Mojo::DOM::HTML performance.
- Fixed XML detection bug in Mojo::DOM.
- Fixed escaping bugs in Mojo::DOM::CSS.
4.65 2014-01-02
- Deprecated use of hash references for optgroup generation with
select_field helper in favor of Mojo::Collection objects.
- Added b and c helpers to Mojolicious::Plugin::DefaultHelpers.
- Fixed reference handling bug in Mojo::Collection.
4.64 2014-01-01
- Fixed helper export bug in Mojolicious::Plugin::EPRenderer.
4.63 2013-12-19
- Deprecated Mojolicious::secret in favor of Mojolicious::secrets.
- Added support for rotating secrets.
- Added secrets method to Mojolicious.
4.62 2013-12-17
- Deprecated Mojo::URL::to_rel.
4.61 2013-12-16
- Added select_one method to Mojo::DOM::CSS.
- Improved performance of Mojo::DOM::at significantly.
4.60 2013-12-11
- Improved Mojolicious::Validator::Validation to allow custom validation
errors.
4.59 2013-12-04
- Added CSRF protection support.
- Added support for permessage-deflate WebSocket compression.
- Added csrf_protect method to Mojolicious::Validator::Validation.
- Added build_message method to Mojo::Transaction::WebSocket.
- Added csrf_token attribute to Mojolicious::Validator::Validation.
- Added compressed and context_takeover attributes to
Mojo::Transaction::WebSocket.
- Added csrf_token helper to Mojolicious::Plugin::DefaultHelpers.
- Added csrf_field helper to Mojolicious::Plugin::TagHelpers.
- Removed deprecated mode specific methods in application class.
- Relicensed all artwork to CC-SA version 4.0.
uwsgitop is a top-like command that uses the stats server. Run your uWSGI server
with the stats server enabled. Ex.:
uwsgi --module myapp --socket :3030 --stats /tmp/stats.socket
Then, connect uwsgitop to the stats socket:
uwsgitop /tmp/stats.socket
Uliweb is a full-stacked Python based web framework. It has three
main design goals, they are: reusability, configurability, and
replaceability. All the functionalities revolve around these goals.
-wip for the newest supported version. Partial ChangeLog:
* 1.4.1
- fixed typos in corerouter plugins
- fixed offloading when the number of threads is higher than 1
- fixed static_maps for non-existent paths
- fixed uwsgi_connect() on modern Linux systems to reset the socket to blocking mode
* 1.4
- gevent improvements
- improved http/https router and fastrouter
- Go official support
- a new set of infos are exported to the stats system
- improved systemd support
- log filtering and routing
- improved tracebacker
- offload transfer for static files, and network transfers
- matheval support
- plugins can be written in Obj-C
- smart attach daemon
- added support for PEP 405 virtualenvs
- rawrouter with xclient support
- internal routing plugin for cache
* 1.3
- python tracebacker
- user-governed harakiri
- simplified external plugin development
- Linux namespace mountpoint improvements
- secured subscription system
- merged routers codebase (fastrouter, http, rawrouter)
- https support in the http router
- config report at the end of uWSGI build process
- improved subscription system (multicast and unix socket)
- custom options
- graceful reloads on shared sockets
- configurable log-master buffer size
- extreme-optimizations for the stats subsystem
- redislog and mongodblog plugins
- added python logger
- mongodb and postgres imperial monitors
- implemented psgix.logger and psgix.cleanup
- full rack spec compliance
- preliminary ipv6 support
- gevent graceful reloads
- support for multiple loggers and logformat
- lazy-apps to load apps after fork() but without changing reloading subsystem
- emperor heartbeat subsystem
- cheaper busyness plugin
- pluggable clock sources
- added router_rewrite and router_http plugins
- external spoolers
- support for section:// and fd:// loaders
- alarm subsystem (with curl and xmpp plugins)
Update DEPENDS
Upstream changes:
0.11 2013-12-15 14:19:22 Europe/Amsterdam
[ ENHANCEMENTS ]
* GH#481: Don't pollute @INC automatically when Dancer2 is imported, each
runner is now responsible of including the local ./lib dir if needed.
* GH#469, 418: Dancer2::Plugin provides a ':no_dsl' flag for modern Plugins
(Pedro Melo)
* GH#485: Keywords 'redirect' and 'forward' exit immediatly when executed in
a route/hook. New dependency on Return::MultiLevel (Russell Jenkins).
* GH#495: Use accessor and predicates instead of direct access.
Addresses GH#493 too. (Russell Jenkins)
* GH#502,GH#472: Rework halt to use with_return from Return::MultiLevel.
(Russell Jenkins)
* GH#479,GH#480,GH#508: Pass parameters to params() in the DSL.
(Slava Goltser, unickuity, Russell Jenkins)
* GH#505: Fix empty HTTP_REFERER in Dancer::Core::Request (Menno Blom).
* GH#503: Multiple reverse proxy support (Menno Blom).
* GH#371,GH#506: CLI tool rewrite (using App::Cmd, supports plugins, etc.).
(Ivan Kruglov, Samit Badle, Sawyer X)
* GH#498: Add some missing items in MANIFEST.SKIP (Gabor Szabo, Sawyer X).
[ DOCUMENTATION ]
* GH#489: Remove link to Dancer2::Deployment pod which does not exist
(Sweet-kid)
* GH#511: s/Deflator/Deflater/; (Cesare Gargano)
* GH#491: Updated config paths for template_toolkit in cookbook.
(Mark A. Stratman)
* GH#494: Update session config details (Dancer2::Config),
namespace fixup in Dancer2::Core::cookie.
(Russell Jenkins)
* GH#470: Fix Plack::Builder mount usage (Pedro Melo).
* GH#507: Fix plenty of typos (David Steinbrunner).
* GH#477: Document problem with Plack Shotgun on Windows (Ahmad M. Zawawi).
* GH#504: Add link to Dancer2::Plugin::Sixpack (Menno Blom).
* GH#490: Document Dancer2 should be FatPackable (Sawyer X).
* GH#452: Make a complete authors section, clean it up (Pau Amma).
* More fixes to main documentation (Pau Amma).
Upstream changes:
1.3120 24.12.2013
[ ENHANCEMENTS ]
* GH #974: Make plugins play nicely with mro 'c3'. (Fabrice Gabolde)
[ DOCUMENTATION ]
* GH #972: Correction of a truckload of typos. (David Steinbrunner)
* GH #971: Stress that the request's 'env()' method is prefered over
accessing '%ENV' directly. (isync)
* GH #968: Fix 'ScriptAlias' example in Deployment docs. (reported
by tednolan)
* GH #976: Document and trap limitation in Dancer::Test. (Tom Hukins)
* GH #976: Improve references to related modules. (Tom Hukins)
Flask-Bootstrap packages Twitter's Bootstrap into an extension that mostly
consists of a blueprint named 'bootstrap'. It can also create links to serve
Bootstrap from a CDN and works with no boilerplate code in your application.
* aggregate: Improve display of post author.
* poll: Fix behavior of poll buttons when inlined.
* Fixed unncessary tight loop hash copy in saveindex where a pointer
can be used instead. Can speed up refreshes by nearly 50% in some
circumstances.
* Optimized loadindex by caching the page name in the index.
* Added only_committed_changes config setting, which speeds up wiki
refresh by querying git to find the files that were changed, rather
than looking at the work tree. Not enabled by default as it can
break some setups where not all files get committed to git.
* comments: Write pending moderation comments to the transient underlay
to avoid conflict with only_committed_changes.
* search: Added google_search option, which makes it search google
rather than using the internal xapain database.
(googlesearch plugin is too hard to turn on when xapain databases
corrupt themselves, which happens all too frequently).
* osm: Remove invalid use of charset on embedded javascript tags.
Closes: #731197
* style.css: Add compatibility definitions for more block-level
html5 elements. Closes: #731199
* aggregrate: Fix several bugs in handling of empty and colliding
titles when generating filenames.
o update a few content types
o add support for directly calling lua scripts to handle
processes, from mbalmer@netbsd.org
o properly escape generated HTML
o add authentication for redirections, from martin@netbsd.org
o handle chained ssl certifications, from elric@netbsd.org
o add basic support for gzipped files, from elric@netbsd.org
o properly escape generated URIs
XXX: could integrate this with lua, but left undone for now.
Version 0.2.9-dev
-----------------
Released on December 28th, 2013
- Fixes anonymous user assignment.
- Fixes localization in Python 3.
Version 0.2.8
-------------
Released on December 21st 2013
- Support login via authorization header. This allows login via Basic Auth, for
example. Useful in an API presentation context.
- Ability to override user ID method name. This is useful if the ID getter is
named differently than the default.
- Session data is now only read when the user is requested. This can be
beneficial for cookie and caching control when differenting between
requests that use user information for rendering and ones where all users
(including anonymous) get the same result (e.g. static pages)
- BREAKING: User *must* always be accessed through the ``current_user``
local. This breaks any previous direct access to ``_request_ctx.top.user``.
This is because user is not loaded until current_user is accessed.
- Fixes unnecessary access to the session when the user is anonymous
and session protection is active.
see https://github.com/maxcountryman/flask-login/issues/120
- Fixes issue where order dependency of applying the login manager
before dependent applications was required.
see https://github.com/mattupstate/flask-principal/issues/22
- Fixes Python 3 ``UserMixin`` hashing.
- Fixes incorrect documentation.
Version 0.9.4
-------------
Released 2013/12/20
- Bugfix for csrf module when form has a prefix
- Compatible support for wtforms2
- Remove file API for FileField
* "git diff -- ':(icase)makefile'" was unnecessarily rejected at the
command line parser.
* "git cat-file --batch-check=ok" did not check the existence of
the named object.
* "git am --abort" sometimes complained about not being able to write
a tree with an 0{40} object in it.
* Two processes creating loose objects at the same time could have
failed unnecessarily when the name of their new objects started
with the same byte value, due to a race condition.
Also contains typofixes, documentation updates and trivial code clean-ups
HTTP request/response parser for Python compatible with Python 2.x (>=2.6),
Python 3 and Pypy. If possible a C parser based on http-parser from Ryan Dahl
will be used.
Tue Dec 10 15:49:46 GMT 2013 - surfraw 2.2.9
* New elvi:
+ S - search using w3_custom_search (see below)
+ cisco - search Cisco documentation
+ debcodesearch - search Debian codebase
+ github - search github
+ gmane - search mailing lists
+ jquery - search jQuery documentation
+ mdn - search Mozilla Developer Network
+ mysqldoc - search MySQL documentation
+ oraclesearch - search Oracle documentation
+ pgdoc - search PostgreSQL documentation
+ phpdoc - search PHP documentation
+ pin - search pinboard.in
+ wolfram - search Wolfram Alpha
+ yacy - search YaCy P2P search engines, including ScienceNet
* Changed elvi:
+ aur - uses HTTPS by default, use -no-https to disable
+ deblists
* Removed options -author, -lists, -lang
* added options -ml (message links) and -mv (list view)
+ duckduckgo:
* removed -p (clashes with global print option), use -safe instead
* stopped -l[ucky] from clobbering -lh
+ google: changed -g option to -G to avoid clash with -g for graphical view
* Fixed elvi: ask, ctan, deli, genportage, jamendo, javasun, openbsd
musicbrainz, rae, slashdot, slinuxdoc
* Removed elvi for dead sites: happypenguin, scroogle, sunonesearch (replaced by oraclesearch)
* w3_custom_search
+ elvi that use a search engine as a backend with site: and inurl:
can now choose which search engine to use.
So far, google and duckduckgo are supported, with duckduckgo the default.
+ Affected elvi: mdn, mysqldoc, netbsd, openbsd, pgdoc, slinuxdoc
+ To select on the commandline use -custom-search=google or -custom-search=duckduckgo
+ Or configure SURFRAW_customsearch_provider
* New variable: SURFRAW_bookmark_search_elvis
When using searchable bookmarks, if all else fails run this elvis.
Defaults to google
* New example elinks integration script in examples/hooks.lua.
* Debian packaging now included in release, in debian/ dir.
* Known problems at time of release
+ deblogs - down (hopefully) temporarily
+ yacy - demo portal down, ScienceNet still up
+ scicom - down, status unknown
