Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

PHRAS-4096 release of 4.1.10 #4547

Merged
merged 8 commits into from
Oct 24, 2024
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .env
Original file line number Diff line number Diff line change
Expand Up @@ -143,7 +143,7 @@ PHRASEANET_DOCKER_REGISTRY=local

# Docker images tag.
# @run
PHRASEANET_DOCKER_TAG=4.1.9
PHRASEANET_DOCKER_TAG=4.1.10

# Stack Name
# An optionnal Name for the stack
Expand Down
60 changes: 60 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -1,5 +1,65 @@
# CHANGELOG

## 4.1.10

### Update Instructions

- **Migration Patch**:
- A migration script for the configuration file is available. Run the following command in the setup container with Docker if the environment variable `PHRASEANET_UPGRADE=1` is set:
```
bin/setup system:upgrade
```

### Version Summary

- **Bump Phraseanet Base Image to 1.1.0**:
- OS version updated.
- Bumped `Popeler` dependency .
- Added missing `ufraw` dependency .

- **Updated Components**:
- **RabbitMQ**: Upgraded to version 3.8.34.
- **Nginx**: Updated to the latest stable release, 1.27.2.

- **Security Fixes**:
- Fixed CSRF vulnerability in the userProfile endpoint.
- Addressed XSS injection vulnerability in the user profile.
- Corrected HTML injection in notification emails.

- **Other Updates**:
- Updated translations.

### Stack (Docker Compose and Helm)

- **Phraseanet Base Image**: Version bumped.
- **RabbitMQ**: Version bumped.
- **Nginx**: Version bumped.
- **Helm Updates**:
- Added `nodeSelector` property to all charts except for the DB pod.
- `imagePullPolicy` can now be set from `values.yaml`.
- Release details: [Helm chart release 0.47.0](https://github.com/alchemy-fr/alchemy-helm-charts-repo/releases/tag/phraseanet-0.47.0)

## What's Changed
* PHRAS-3416 : fix string in admin create subdef by @aynsix in https://github.com/alchemy-fr/Phraseanet/pull/4534
* PHRAS-3416 create subdefinition localisation by @nmaillat in https://github.com/alchemy-fr/Phraseanet/pull/4537
* PHRAS-4094 Bump rabbitMQ version to 3.8.34 by @gjacobjn in https://github.com/alchemy-fr/Phraseanet/pull/4546
* PHRAS-4090:Prod - expose-cli - publication - publication description is Nok by @aynsix in https://github.com/alchemy-fr/Phraseanet/pull/4536
* Fix for phraseanet-saml-sp image build in Dockerfile by @gjacobjn in https://github.com/alchemy-fr/Phraseanet/pull/4543
* PHRAS-4100 Php upload tmp directory by @nmaillat in https://github.com/alchemy-fr/Phraseanet/pull/4553
* PHRAS-4079 Bump base image 1.1.0 by @moctardiouf in https://github.com/alchemy-fr/Phraseanet/pull/4554
* PHRAS-3857 : Check CSRF token on account by @aynsix in https://github.com/alchemy-fr/Phraseanet/pull/4556
* PHRAS-4103 Prod xss check by @aynsix in https://github.com/alchemy-fr/Phraseanet/pull/4555
* PHRAS-4088: improving Job ack in workerRunningJob by @aynsix in https://github.com/alchemy-fr/Phraseanet/pull/4535
* fix typo by @tacman in https://github.com/alchemy-fr/Phraseanet/pull/4552
* PHRAS-4104 Nginx bump 1.27.2 by @nmaillat in https://github.com/alchemy-fr/Phraseanet/pull/4557
* PHRAS-4101: Update Range for Subdefinition Image Sizes by @nmaillat in https://github.com/alchemy-fr/Phraseanet/pull/4558

## New Contributors
* @tacman made their first contribution in https://github.com/alchemy-fr/Phraseanet/pull/4552

**Full Changelog**: https://github.com/alchemy-fr/Phraseanet/compare/4.1.9...4.1.10

___
## 4.1.9

### Update instructions
Expand Down
2 changes: 1 addition & 1 deletion lib/Alchemy/Phrasea/Core/Version.php
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@ class Version
* @var string
*/

private $number = '4.1.9';
private $number = '4.1.10';

/**
* @var string
Expand Down
Loading