Version 9.1 (Not Released Yet) == Enhancement == * request #9592: Lint new .scss files using scss-lint * request #9392: Deleted users can be switched to suspended automatically == Big Fix == * request #9583: SVN core package miss a dependancy to perl-CGI * request #9547: Can't upload file releases == Plugins == * svn: 0.100 * tracker: 5.1027 * git: 4.277 * agiledashboard: 1.430 == Themes == * FlamingParrot: 1.154 == Development == * request #9263 Do not use underscore in Tuleap dev hostname Version 9.0 (Wednesday, October 12th 2016) == Plugins == * cardwall: 1.70 * tracker: 5.1026 * svn: 0.98 * artifactfolders: 0.5 * frs: 0.21 * agiledashboard: 1.429 * docman: 2.26.121 * artifactsfolders: 0.32 * ldap: 3.114 * git: 4.269 * tracker_encryption: 1.2 * statistics: 0.66 * hudson: 1.35 == Security == * request #9501: Reflected XSS in the project list page in the site administration * request #9502: SQL injection through widgets management * request #9500: Reflected XSS in the Subversion revisions browsing * request #9512: No access control of administration pages for french wiki * request #9497: Remove legacy password storage * request #9550: FRS release form can be submitted if user is not granted == Bug fix == * request #9489: Wiki administration is not accessible to project administrator if they do not have explicit wiki admin rights * request #9490: Wiki does not detect properly HTTPS when behind a reverse proxy * request #8925: SVN plugin doesn't handle properly LDAP login vs Tuleap login * request #9538: Reflected XSS in the page allowing to change the password of a user * request #9552: XML import --automap doesn't properly managed suspended users * request #9466: Enforce that plugins are updated in the same time than Tuleap core * request #9574: SVN core cross ref does not work if the platform is accessible only in HTTPS == Clean Up == * request #9492: Disable surveys service by default * request #9517: Plugin FRS package is unnecessary big * request #9495, request #9496 and request #9493: remove doaprdf, admssw and foafprofiles plugins == Enhancement == * story #9439: search for project name with REST * request #9010: Import/Export of artifactlinks * request #9466: Enforce that plugins can only be used with the Tuleap core they have been designed for == Api == * REST API: 1.18 == Themes == * FlamingParrot: 1.152 Version 8.19 (Thursday, September 15th 2016) == Enhancement == * story #9281: define FRS global permissions (Refactoring : Read and Write lists will be in includable mustache) * story #9281: define FRS global permissions (Refactoring of package and release) * story #9409: define FRS permissions for packages and releases (Refactoring : add package router) * request #9419: It should be possible to create ldap users at XML import * story #9393 See svn plugin access logs * story #9427: Quickly switch between FRS/Scrum/Artifact release * story #9409: define FRS permissions for packages and releases - Refactoring release introduce release router - Have consistent selectbox for FRS package - Have consistent selectbox for FRS release * story #8610: - Use viewvc-theme-tuleap in CVS - Dont truncate error message * story #8597: - have a recent version of ViewVC (CVS, SVN core or plugin can use either viewvc or viewvc-tuleap) - Update version of packages tuleap-core-subversion and tuleap-core-cvs to take the dependency change into account * request #9455: XML import user mapping should provide an automap strategy == Development == * request #9202: Make Tuleap compatible with PHP 5.6 (Remove split usage in src/www/file) * request #9202: Make Tuleap compatible with PHP 5.6 (Remove split usage in Git plugin) * request #9202: Make Tuleap compatible with PHP 5.6 (Remove split usage in Tracker plugin) * request #9202: Make Tuleap compatible with PHP 5.6 (Remove split usages in src/www/admin) * request #9202: Make Tuleap compatible with PHP 5.6 (Remove split usage in src/www/docman) * request #9347: Tuleap RealTime independent of Tuleap * request #9435: Be able to use the script docker_generate_packages.sh with a non default NPM registry * request #9449: Remove Gravatar usage == Bug fix == * request #9406: Missing login CSRF protection * story #9393: SVN custom logs are not working in new installation * request #9414: Removing the backup cron for new installation * request #9407: HTTPS is not properly detected when behind a reverse proxy * request #9122: Don't remove deleted items if copy doesn't work * story #9393: SVN custom logs are not working in new installation in HTTPS * request #9395: A restricted user can not browse the SVN tree in SVN core if the SVN plugin is not installed * request #9443: Project creation via SOAP is broken * request #9444: FRS error at release creation when nobody is selected in the package permission list * request #9413: Tuleap is leaking private user information * request #9450: Unable to enable/disable a service * request #9464: User can't login from the homepage if the standard Tuleap homepage is not used * request #9481: Fatal error when you try to browse a SVN core or CVS repo and you do not have access * request #9487: Help link in the toolbar of the file release manager does not open into a new window * request #9479: Copied/pasted item in docman doesn't have any permissions * request #9478: Cannot apply permissions recursively in docman * request #9491: scp/ftp file list is empty on page load == Plugins == * tracker: 5.1002 * git: 4.257 * ldap: 3.109 * mediawiki: 0.124 * pluginsadministration: 1.20 * userlog: 1.10 * svn: 0.93 * openidconnectclient: 0.26 * statistics: 0.64 * webdav: 1.9.20 * docman: 2.26.120 * agiledashboard: 1.416 * cardwall: 1.67 * frs: 0.20 * hudson: 1.34 * hudson_svn: 0.17 == Themes == * FlamingParrot: 1.151 == Api == * REST API: 1.17 Version 8.18 (Thursday, August 18th 2016) == Enhancement == * story #9281: define FRS global permissions == Bug fix == * request #9344: Persistent XSS through code snippet download * request #9329: New install doesn't prompt for domain name * request #9355: 'Import List Of Users' does not work with emails * request #9335: Do not inherit default trackers when importing from XML * request #9361: CVS search by commiter does not work * request #8839: Call to sparklines.php should be made in POST to avoid errors * request #9371: Wrong artifact warning message when a user supposed to be notified is suspended * request #9381: Release notes and changelog can not be accessed * request #9389: Cross reference field broken while using artifact link field * request #9382: A user which has not been connected at least one time can not be suspended for inactivity * request #9401: Impossible to update release * request #9400: Error raised when creating or updating a release * request #9398: No longer possible to addFile with Tuleap CLI * request #9404: Fatal error when setting a package to hidden == Development == * request #9339: Remove unused code in the utilities * request #9202: Refactoring for PHP5.6 - Snippets * story #9090: Improve REST tests of the computed fields * request #9299: - Get rid of combined - Plugins no longer append javascript to core Combined - combine JavaScript with hash * Fix CI issues caused by side effects of $GLOBALS usage * story #9281: define FRS global permissions == Enhancement == * External lib no longer referenced in sources == Plugins == * agiledashboard: 1.412 * docman: 2.26.118 * cardwall: 1.65 * tracker: 5.989 * forumml: 2.6.27 * ldap: 3.106 * mediawiki: 0.123 * webdav: 1.9.18 * git: 4.251 * boomerang: 0.5 * statistics: 0.63 * svn: 0.78 * hudson_svn: 0.16 * referencealias_svn: 0.11 * fulltextsearch: 0.135 * graphontrackersv5: 5.26 * proftpd: 0.28 * projectlinks: 2.11 * openidconnectclient: 0.24 * archivedeleteditems: 0.9 * hudson: 1.33 * IM: 1.5.38 * admindelegation: 2.13 * frs: 0.19 * graphontrackers: 1.17 * pluginsadministration: 1.19 * userlog: 1.9 == Themes == * FlamingParrot: 1.147 Version 8.17 (Thursday, July 21st 2016) == Enhancement == * request #9113: Be able to filter system events by status * story #8425: Comprehensive git permissions changes log - Enhance displaying of project history * request #9280: $sys_trusted_proxies should allow a subnet == Bug fix == * request #9289: Root daily is not able to suspend multiple users * request #9326: Footer links to the REST API documentation are broken * request #9169: Not all CSS loaded when access mediawiki * request #9337: Logrotate config files are malformed when deployed by the packaging == Development == * request #9278: Remove CentOS 5 packages * request #9321: Refactor REST test suite to leverage XML import * story #9224: Remove unused parts of Tuleap * story #9224: Create a dedicated object to deal with ugroup duplication * request #9279: Pre commit hooks are compatible with OS X * request #9025: Introduce plugin tracker encryption in a early development stage == Security == * request #9314: Non aligned behavior between UI and ssh in Git == Plugins == * git: 4.240 * tracker: 5.968 * referencealias_core: 0.11 * agiledashboard: 1.394 * hudson: 1.30 * graphontrackersv5: 5.23 * mediawiki: 0.119 * referencealias_git: 0.6 * referencealias_mediawiki: 0.8 * referencealias_svn: 0.6 * referencealias_tracker: 0.9 * svn: 0.64 * fulltextsearch: 0.133 * frs: 0.17 * ldap: 3.103 * docman: 2.26.112 * archivedeleteditems: 0.8 * tracker_encryption: 1.1 Version 8.16 (Thursday, June 23rd 2016) == Bug fix == * request #8468: Unable to access svn immutable tags configuration with huge repository * request #9208: When TLS is forced Tuleap must only create URL with HTTPS scheme * request #9216: SVN immutable tags does not prevent from adding a file in a immutable tag * request #9220: Unable to import big xml project archive * request #9222: Cannot add site admin as project member during import * request #9254: Restricted users cannot access SVN plugin viewvc * request #9266: Fatal error while importing scrum template * request #9269: Fix the creation of new mailing list == Enhancement == * request #9195: Clean up Trove Categorization * request #9202: php-launcher.sh try to use the PHP binary in the path * request #9206: Better import in place - Load project with name in addition to id - Activate services at import * story #9181: Add a new API for the CI build status == Development == * request #9141: A preliminary check is done before importing an agile dashboard configuration * request #9202: Make Tuleap compatible with PHP 5.6 - Remove deprecated ereg - CVS - File Release System - My personnal page - Help - Service * story #9083: Refactoring: do not leak plugins into core * Make increment version PHP 7 compatible * Fix unit tests to run both on PHP 5.3 and PHP 5.6 * request #9262: Check forgeupgrade for administrator only if enabled in development.inc == Plugins == * git: 4.220 * agiledashboard: 1.385 * tracker: 5.935 * tracker_date_reminder: 1.2.10 * hudson_git: 0.20 * svn: 0.60 * docman: 2.26.108 * mediawiki: 0.116 * proftpd: 0.26 * fulltextsearch: 0.132 * graphontrackersv5: 5.22 Version 8.15 (Thursday, May 26th 2016) == Bug fix == * request #9136: All URLs in the footer and homepage are in HTTPS * request #9098: All PHP files created after the introduction of PSR2 into Tuleap must be compliant * story #9088: turn notification off at XML import (core) * request #9156: Git notifications are pushed to a Jenkins instance without verifying the authenticity of the peer's certificate * request #8972: Utilities to export project does not directly use mysql_* API anymore * request #9158: A fatal error can be thrown when checking user's permissions * request #8726: Cache directories are reconstructed when Tuleap start * request #9191: Loss of layout when invalid entry is given as column size * request #9192: FRS plugin require zsh but it is not needed == Enhancement == * request #9113: Having a REST route to monitor Sysevents * Spring Housekeeping * story #9087: see linked artifacts in releases - Add a linked artifact for a release - Add tracker dependency - Create the angular app * story #9132 to migrate from Less to Sass (Remove Bootstrap sources from Tuleap) * request #8944: check if the domain name is valid before the installation is started * request #9155: GET /projects should return all active projects for site administrators * request #9166 Missing HTTPOnly flag on PHP session cookie == Development == * request #8840: Remove usage of Bless * story #9132: Sass files in Tuleap sources can be built * story #9132: Migrate from Less to Sass * request #9072: Refactor and clean the Apache configuration == Plugins == * svn: 0.57 * frs: 0.16 * archivedeleteditems: 0.7 * git: 4.172 * tracker: 5.896 * graphontrackersv5: 5.21 * agiledashboard: 1.380 * IM: 1.5.37 * docman: 2.26.107 * ldap: 3.102 * forumml: 2.6.25 * referencealias_core: 0.6 * referencealias_git: 0.3 * referencealias_mediawiki: 0.4 * referencealias_svn: 0.3 * referencealias_tracker: 0.5 * admindelegation: 2.12 * openidconnectclient: 0.20 * statistics: 0.59 * hudson_git: 0.17 * mediawiki: 0.115 * cardwall: 1.60 * fulltextsearch: 0.130 * graphontrackers: 1.16 * hudson: 1.29 * hudson_svn: 0.9 * pluginsadministration: 1.18 * proftpd: 0.25 * projectlinks: 2.9 * userlog: 1.8 == Themes == * FlamingParrot: 1.142 * Tuleap: 2.15 Version 8.14 (Thursday, April 28th 2016) == Enhancement == * story #8940: The resize of a table should occur only on a th/td * story #9027: Preserve links at import - Create plugin - Import wikiXXXX references and treat them as links * request #9036: - Export project's admins and members - User that are already project_members must not stop the import * story #9043: have a cookie cleaned with no user token and id * story #9027: Create plugin referencealias_tracker * story #7897: Package plugin hudson_git == Bug Fix == * request #9014: Spelling mistake in the french Tuleap homepage * request #9013: Dev instances can not be started if the Gerrit data container has not been specifically created * request #8957: Authorization failed for repository enabling svn token * request #9026: Subversion webview can not be displayed due to user's session IP invalid check * request #9042: Project import must be able to add non active users to a user group * request #9078: Numerous warnings when checking out from a repo handled by the SVN plugin * request #9092: Cannot reorder widgets on dashboard * request #9107: No preview in massmail == Development == * request #9118: Allow plugins to display user actions in the navbar * request #9011: Deploy our own git hooks - All added files must be checked - Enforce PSR-2 for Tuleap source code * request #8895: remove TinyMCE * Extract plugin pullrequest from tuleap repository * request #9071: add option domain name check but not enabled == Security == * request #8909: CSRF vulnerability in the project and user pending administration approval pages * request #8907: CSRF vulnerability in the snippet manipulation pages == Plugins == * tracker: 5.881 * ldap: 3.101 * docman: 2.26.100 * openidconnectclient: 0.18 * git: 4.148 * hudson_git: 0.7 * agiledashboard: 1.374 * cardwall: 1.58 * hudson_svn: 0.7 * fulltextsearch: 0.128 * IM: 1.5.35 * svn: 0.53 * referencealias_tracker: 0.2 * mediawiki: 0.113 * referencealias_mediawiki: 0.2 * referencealias_svn: 0.1 * referencealias_core: 0.4 * referencealias_git: 0.1 == Themes == * FlamingParrot: 1.133 Version 8.13 (Thursday, March 31st 2016) == Enhancement == * story #8833: show, import and manipulate links - First step to restrict artifact links natures usage - Display link to project * story #8823: trigger CI jobs on commit - Packaging of the plugin * story #8887 migrate git to gerrit with REST route - Add server info in GET git/:id * request #8911: stop installation if SELinux is in enforcing mode * request #8888: Add Export CSV function to the grouplist interface * story #8633: Login page gloss == Bug Fix == * request #8952: Art keyword doesn't have right project id * request #8880: "Comment" field on every page suddenly became locked and unusable * request #8971: Avoid conflict with PHP 7 Error class * request #8970: mod_perl can not be loaded by Apache on a fresh install * request #8984 Tracker v3 to v5 migration: Special characters are modified * request #8985: Attachment description became mandatory and it should not * request #8977 The 'All projects' page displays the first 50 projects, but the next one is empty * request #9002: Call to undefined method FRSRelease::isError() while deleting empty releases with the SOAP API == Development == * request #8921: Makefile should be self-documented * request #8914: Refactoring the functions position in the setup script * story #8815: Manage cross references between svn revisions & the world (Deal with crossproject) * request #8895: remove TinyMCE - Refactoring of tuleap.textarea.RTE * Automatic setup of gerrit * SOAP API maintenance due to some refactoring == Security == * request #8904: CSRF vulnerability in the project registration page * request #8929: SQL injection in the project history search * request #8903: Persistent XSS in the widget image * request #8934: Use an audited library to generate cryptographically secure pseudo-random numbers == Plugins == * agiledashboard: 1.371 * tracker: 5.854 * hudson_svn: 0.6 * git: 4.138 * hudson: 1.27 * svn: 0.48 * graphontrackersv5: 5.20 * ldap: 3.100 * mediawiki: 0.111 * forumml: 2.6.24 * openidconnectclient: 0.17 * docman: 2.26.99 * graphontrackers: 1.14 * webdav: 1.9.16 * hudson_git: 0.2 == Themes == * FlamingParrot: 1.129 Version 8.12 (Thursday, March 3rd 2016) == Enhancement == * request #8410: Add the possibility to hide project privacy radio buttons during project creation * request #8849: Purge legacy themes * request #8865: Remove Debian alpha support * request #8309: Get rid of PrototypeJS (system_events.js) * request #8309: Get rid of PrototypeJS (CreateProject.js) * request #8309: Get rid of PrototypeJS (massmail_initialize_ckeditor.js) * story #8825: Package the pull request plugin * story #8813: Handle ugroup binding in .SVNAccessFile * story #8813: Update .SVNAccessFile when user is added to project * story #8813: Packaging of svn plugin * story #8570: Import FRS administrators == Bug fix == * request #8879: Characters not properly escaped in mail sent to user * request #8850: FRS filetype and filearch is no longer mandatory * request #8863: Use the absolute path of the archive/directory * request #8748: Tuleap does not properly check if a repertory exist before trying to fix ownership and permissions * request #8854: tv3->tv5 migration does not import close_date field value * request #8885: Improve SVN authentication performance with mod_perl * request #8899: Default text values not displayed in CKEditor if in <> * request #8898: Lots of warnings during SYSTEM_CHECK * request #8912: Readme of plugins is not interpreted == Plugins == * admindelegation: 2.11 * hudson: 1.25 * agiledashboard: 1.360 * mediawiki: 0.108 * openidconnectclient: 0.8 * svn: 0.27 * cardwall: 1.57 * docman: 2.26.98 * git: 4.130 * tracker: 5.807 * Plugin OpenId is deleted * ldap: 3.98 * pullrequest: 0.17 * template: 0.2 * webdav: 1.9.15 * forumml: 2.6.23 * projectlinks: 2.7 * admssw: 0.5 * doaprdf: 0.5 * foafprofiles: 0.5 * statistics: 0.58 * pluginsadministration: 1.16 * tests: 5.35 == Themes == * FlamingParrot: 1.122 == Development == * request #8910: Remove ed usage in ChangeLog generation * request #8917: Tests: improve debugging tools Version 8.11 (Thursday, February 4th 2016) == Enhancement == * story #8698: choose the values to be displayed at project creation from trove cats * story #8630: Move from ZendFramework 1 to ZendFramework 2 * story #8570: Import Files (FRS) == Development == * request #8795: Mac OS X users can setup a new dev environment * request #8773: Allow plugins to display a link in the navbar * request #8585: Group list with filtering form, search by status or names * Use files size as a quota instead of number of files == Bug fix == * request #8769: SVN paths in CI not displayed due to js error * request #8775: Increment Subversion packages versions * request #8678: Cannot create files with a '#' character in the name * request #8761: Mail issue on services having truncated emails options * request #8779: Passwords contain invalid characters for the creation of a new dev instance * request #8737 Disable SVN notification pane when subversion tracking is off * request #8776: TV3 to TV5 files not migrated if submitted time +- 3s * request #8787: SVN access files are not updated when a binded usergroup is modified * request #8796: Tracker v3 to v5 migration: Special characters are modified * request #8778: Remove ambiguous dot at the end of password * request #8548: Email notification for SVN are sent individually * request #8835: Error in sysevent with BackendSVN == Plugins == * git: 4.116 * tracker: 5.790 * mediawiki: 0.103 * webdav: 1.9.14 * agiledashboard: 1.350 * statistics: 0.57 * docman: 2.26.93 * docmanwatermark: removed * svn: 0.7 * tests: 5.34 * ldap: 3.95 == Themes == * FlamingParrot: 1.120 Version 8.10 (Thursday, January 7th 2016) == Development == * Allow to install external plugins * Project Import: log to console and to file at the same time * task #8567: Move DB access to CrossReferenceDao * task #8594: Move SQL access from ReferenceManager to DAO * story #8572: Transform untyped $data to object in ProjectCreator * story #8672 Accessibility: services on the left menu * request #8535: It should be possible to validate import XML externaly * request #7779: Lock icon in sidebar is misleading * story #8658: Do not show closed milestones by default * story #8712: see the project mandatory trove cats in the service usage statistics * story #8618: An user can be authenticated from a token for all SVN operations * story #8618: SVN authentication with mod_perl is able to fallback to LDAP * request #8733: Import of SVN repository doesnt work when doing project creation * request #8736: Add an explicit message concerning possible information leak == Bug fix == * request #8688: Old email displayed in confirmation message after updating my email address * request #8689 Cross references on artifacts are not properly saved in DB * request #8679: Siteadmin password is not stored in a secure way during the installation * request #8717: Improper user groups authorization verification for SVN ressources * request #8711: Bad Error message with IE, when compatibility view is activated * request #8715: SVN authentication with modmysql does not work with a database located on another server than Tuleap * request #8758: Add missing SVN modperl dependency * request #8751: The subversion page display an error if user is not LDAP when SVN uses LDAP auth * request #8753: Package for JWT library should have a standardized name on CentOS 5 PHP 5.3 == Enhancement == * story #8572: Add project creation using XML * Import dynamic ugroups for projects * request #8474: Git plugin has a missing dependency to php-markdown * request #8548: Email notification for SVN sent with everybody in cc * story #8608: Access Subversion with username/token instead of username/password * User can manage his own svn tokens * Define projects that can use SVN tokens * Site admin can revoke project using SVN tokens * Remove some technical debt * SVN service homepage display a specific message if svn tokens are allowed * request #8739: Remove PHP 5.1 support * Bump copyright date * request #8735 Project exported in XML via export_project_xml is no more compatible with project.rng == Plugins == * docman: 2.26.92 * tracker: 5.775 * git: 4.105 * hudson: 1.23 * agiledashboard: 1.338 * cardwall: 1.53 * statistics: 0.56 * ldap: 3.94 * pluginsadministration: 1.15 * svn: 0.2 * tests: 5.32 * phpwiki: 0.11 == Themes == * FlamingParrot: 1.118 Version 8.9 (Thursday, December 3rd 2015) == Enhancement == * request #8309: Get rid of PrototypeJS (defaultValueActsAsHint) * story #8560: Define a trovecat as "mandatory" * request #8620: ugroup name is not validated at XML import * story #8528: create nonexistant user account at import time * Refacto: inject UserXmlExporter * Generate users.xml * Generates a mapping file between users in archive and on platform * Check mapping file * Introduce option force-create-all-users-active * Create user when needed * Allow to create users in a given status * story #8557 import a subversion repository * tasks #8567 Import svn revisions * import subversions notifications * task #8568: separate .SVNAccessFile writer from www/svn * task #8568: import subversion accessfile * validate tag using RelaxNG on import * story #8572: import a new project with its metadata * Refactoring create_project -> ProjectCreator * Split ProjectCreator::create_project * story #7883: PHPWiki plugin can be accessed via the REST API == Development == * request #8519: Add the possibility to build the packages and install a fresh instance * request #8588 Remove RequestHelp plugin * request #8615: Add new entries in Makefile for docker dev enviroment * Can run makefile with sudo * request #8614: Project license removal * request #8609: Update install: remove IM and add agiledashboard == Bug fix == * request #8334: PhpWiki notifications can leak data * request #8595: Fix ProjectXMLImporter undefined class constant error * request #8589: Apache logs filled with No entry for terminal type "unknown" * request #8590: Properly generate absolute server URL when behind a reverse proxy * request #8613: Wrong preselection of theme for new user * request #8627: Site admin browsing of user list is broken when restricted to a project * request #8635: Prevent project 100 status from being updated * request #8639: PHPWiki plugin does not purge correctly FRS documents * request #8638: Infinite loop when an user set a negative duration for a burndown == Plugins == * mediawiki: 0.101 * git: 4.96 * tracker: 5.759 * agiledashboard: 1.320 * tests: 5.31 * docman: 2.26.90 * userlog: 1.6 * IM: 1.5.34 * phpwiki: 0.10 == Themes == * FlamingParrot: 1.114 Version 8.8 (Friday, November 6th 2015) == Enhancement == * request #8467: Allow users to use other lang than EN or FR * story #8289: synchronize users in users groups * request #8427: Remove vsFTPd logrotate configuration * story #6256: to be able to create an artifact by sending an email * story #6256: add the tracker email info in the report header * story #8289: Take into account the project_members group * request #8525: Site admin should be warned about lack of forgeupgrade * story #8289: enhance the REST route documentation (project members rules) * request #8443: System keywords don't generate the right cross reference when cross projects * request #8443: Take into account release system references * request #8443: Take into account file system references * request #8443: Take into account forum system references * request #8443: Take into account msg system references * request #8443: Take into account news system references == Bug fix == * request #8481: Notifications in FRS can not be sent and generate a fatal error * request #8101: All access are denied in SVN if a space is added before a path in the SVN access control file * request #8318: redirect_to loop * request #8333: Fully remove people skills feature * Fix request #8333: Fully remove people skills feature * request #8520: Packages build is broken due to some changes in Docker image * request #8400: [performances] project constructor always load services * request #8550: Fix notice when an user creates an account and the registration requires approval == Plugins == * git: 4.93 * tracker: 5.734 * graphontrackersv5: 5.17 * statistics: 0.53 * mediawiki: 0.98 * IM: 1.5.33 * docman: 2.26.89 * agiledashboard: 1.295 * pluginsadministration: 1.13 == Themes == * FlamingParrot: 1.111 == Api == * REST API: 1.16 Version 8.7 (Monday, October 12th 2015) == Enhancement == * story #8338: Wiki service can send truncated notifications * story #8338: Truncate Trackers notifications * story #8372: update /artifacts/:id/changesets and add /users/:id/preferences * request #8309: Get rid of PrototypeJS (getText) == Bug fix == * request #8423: FlamingParrot is not necessary to use Tuleap * request #8385: Various setup.sh improvements * request #8424: Force clear caches at Tuleap start * request #8414: Typo in JabbeX configuration leading to error when browsing * request #8435: Reference doesn't work when project is explicitly set * request #8445: Fix errors at the approval of a pending user * request #8450: tuleap utility could be used in CentOS 5 * request #8426: Update the glue to allow mixed anonymous / restricted usage * request #8456: TV3 are instantiated even when unused * request #8470: Disable long options of the tuleap utility on PHP 5.1 * request #8468: Unable to access svn immutable tags configuration with huge repository * request #8471: Git post receive hooks are not correctly deployed on existing instances == Plugins == * tracker: 5.703 * agiledashboard: 1.285 * git: 4.88 * docman: 2.26.85 * ldap: 3.87 * mediawiki: 0.96 * phpwiki: 0.8 * webdav: 1.9.13 == Themes == * FlamingParrot: 1.110 Version 8.6 (Friday, September 11th 2015) == Development == * request #8309: Get rid of PrototypeJS (Check Password) * request #8309: Get rid of PrototypeJS (is-at-top) * Allow to define a path for extra plugins * request #8309: Get rid of PrototypeJS (Toggler) * request #8363: performance improvements on plugin loading * request #8309: Get rid of PrototypeJS (Tooltip) == Enhancement == * story #8337: Web UI to set truncated email * story #8308: generic tag path specification * story #8316: generic tag path specification - live preview * story #8337: log activation/deactivation of truncated email in project history * story #8337: FRS sends truncated emails * story #8337: list concerned services on truncated email activation * story #8337: List only services activated * story #8339: SVN service can send truncated emails * request #8379: Purge system_event table data older than one year * request #8386: tuleap reverse proxy in docker-compose is not working properly == Bug Fix == * request #8360: REST call slowness * request #8388: Typo in new account mails * request #8362: Check password is broken when user wants to change it * request #8330: Fix XSS in project data restoration page * request #8359: tv3->tv5 migration failed when tv3 text field had been switched to numeric ones * request #8377: Profile script broken on CentOS 6 * request #8368: Files with special characters can't be downloaded with WEBDAV * request #8378: Speed-up queries on this system_event table * request #8387: Too many call to the db in the artifact modal when there is a field list bound to user * request #8397: SystemEvent_SERVICE_USAGE_SWITCH always in RUNNING status * request #8369: button in project register confirmation page does not link to the project == Plugins == * agiledashboard: 1.275 * proftpd: 0.23 * tracker: 5.694 * phpwiki: 0.7 * forumml: 2.6.22 * IM: 1.5.32 * admindelegation: 2.10 * docman: 2.26.82 * git: 4.77 * hudson: 1.20 * mediawiki: 0.84 * archivedeleteditems: 0.6 * pluginsadministration: 1.12 == Api == * REST API: 1.15 == Themes == * FlamingParrot: 1.107 == Security == * request #8333: Disable people skills feature Version 8.5 (Friday, August 14th 2015) == Development == * story #8206: send consistent WWW-AUTHENTICATE header for 401 responses * story #8160: adding permission on artifact field data to /trackers/:id route * story #8268: Redirect directly to the login page when the user confirms its account creation * story #8170: add options for import_project_xml_script * Revert "request #8084: Force user to log in if outside of network" * Introduce phpwiki plugin * Development: allow to re-use compile_less by external scripts == Enhancements == * story #7893: Have a beautiful project creation feedback * story #8248: Have a beautiful register confirmation email * story #8173: Use an archive in project export/import process * story #8248: Have a beautiful register confirmation email * request #8254: Have a way to override tuleap's permissions * request #8315: Automatically select an appropriate timezone at the account creation == Security == * request #7953: Continue the removing of the SimpleSanitizer class * request #8244: Fix possibles SQL injections in wiki service * request #8257: Properly select charset at the creation of a MySQL connection * request #8265: Fix SQL injection in the resend mail of a pending account page * request #8294: Fix persistent XSS in wiki page name * request #8314: Fix reflected XSS in project search == Bug fix == * request #8310: Fatal error at user registeration * request #7615: Edit SVN commit log messages * request #8189: An user with an IPv6 must be able to log in * request #8144: restricted users can no-longer access all services of super public projects * request #8269: use an integer for sys_keep_md5_hashed_password instead of a boolean * request #7860: Redirection link when you are not authenticated only redirects to service == Themes == * FlamingParrot: 1.103 == Plugins == * git: 4.74 * tracker: 5.682 * agiledashboard: 1.251 * ldap: 3.85 * archivedeleteditems: 0.5 * webdav: 1.9.12 * pluginsadministration: 1.11 * mediawiki: 0.80 * docman: 2.26.79 * tests: 5.30 * phpwiki: 0.2 * userlog: 1.5 * IM: 1.5.30 == Api == * REST API: 1.12 Version 8.4 (Friday, July 17th 2015) == Plugins == * tracker: 5.665 * mediawiki: 0.76 * IM: 1.5.29 * pluginsadministration: 1.10 * ldap: 3.82 * agiledashboard: 1.239 == Security == * request #7999: Disallow SSLv3 and weak ciphers in the default Apache configuration * request #8186: Fix XSS in the API Explorer == Enhancements == * story #8197: enhance register form UX * story #8141: change the labelling of projects from public/ project to user-group-based == Bug fix == * request #8205: ssh://gitolite is wrongly interpreted == Themes == * FlamingParrot: 1.93 == Api == * REST API: 1.11 Version 8.3 (Thursday, June 25th 2015) == Bug Fix == * request #8137: TV3 field dependencies administration is missing proper highlighting in FlamingParrot * request #8111: Fix the IM plugin dependency to glibc.i686 * request #8108: Project name are not correctly displayed in the tracker V3 creation * request #5726: Remove the Twitter widget * Fix request #8119: PHPWiki SyntaxHighlighter plugin does not work on Centos 6 * request #8151: Request-URI Too Large in GET /users_memberships == Enhancements == * story #8089: forbid svn tags modifications (part 2) * story #8089: Mustachify SVN general settings * story #8059: Use secure hash function for the storage of password used for web login * story #8059: Use salted SHA-512 instead of salted MD5 to store UNIX passwords * story #8118: do not compile whole www/guidelines during make less == Plugins == * git: 4.69 * ldap: 3.81 * agiledashboard: 1.235 * tracker: 5.647 * proftpd: 0.21 * mediawiki: 0.70 * statistics: 0.50 * cardwall: 1.52 * hudson: 1.19 * IM: 1.5.28 == Development == * Adding SOAP example for legacy Tracker V3 * request #8120: Add SOAP automated tests * story #8118: Tuleap Guidelines: first step * Introduce usage of docker-compose * story #8118: Color switcher & Preview UI * request #8120: Add new SOAP automated tests * request #8120: Add new SOAP automated tests on trackers v3 * Adding new event for Project REST Route (additional informations) * request #8166: Fix ProFTPD package for CentOS5 == Themes == * FlamingParrot: 1.89 Version 8.2 (Thursday, May 28th 2015) == Bug Fix == * request #8069: Pagination does not work in "Browse all projects" * request #8071: Remove hard coded limit to 300 in softwaremap * request #8070: Unable to rename a user if I am not using legacy trackers * request #8074: Public incl. restricted only applies to summary and git * request #8075: Preserve privacy of projects * request #8078: Internationalization of show pending document * request #8079: HTML entity in CVS and SVN homepage not interpreted * request #8084: Force user to log in if outside of network * request #7421: Add missing glibc.i686 dependency for Openfire * request #8094: Site statistics doesn't work with PHP 5.1 == Security == * request #8002: Use a bigger RSA modulus for the creation of the SSL certificate * request #7983: SQL injection in site statistics * request #8034: XSS in the send message page * request #7888: Fix persistent XSS in PHPWiki * request #8073: Reflected XSS in the add bookmark page * request #8072: Fix reflected XSS in NuSOAP == Plugins == * docman: 2.26.77 * tracker: 5.625 * git: 4.63 * agiledashboard: 1.197 * ldap: 3.79 * IM: 1.5.27 * statistics: 0.49 == Enhancement == * story #7684: Add route phpwiki/:pageid/versions * story #7684: Add projects/:id/wiki?pagename * story #7684: Add wiki/:pageid route * story #7972: specify svn notifications using the star operator * story #7684: access to wiki pages with REST API * story #8051: adding GET /users_memberships == Dev == * Docker "dev start" version for Apple Macintosh personal computers == Themes == * FlamingParrot: 1.83 Version 8.1 (Monday, May 4th 2015) == Enhancement == * story #7813: restricted users can view unrestricted public projects in trove cats * request #7979: Disable usage statistics in project administration * request #7384: restoring a git repository is now done by the APP user * request #7938: Allow proper reverse proxy of Tuleap (Allow to query REST API in HTTP without SSL) == Bug Fix == * request #8052: Switch between reports don't work in TV3 * request #8045: restricted user cannot access services even if they are a project member * request #8050: Fatal error with sparklines * request #7780: service_file_lbl_key is displayed in the toolbar in frs > edit package * request #8012: /soap/index.php is no more reachable; project data no-longer exports * request #7978: REST route called in top backlog in planning v2 contians a PHP notice * request #7985: SQL permissions object_id with no quotes if it is an ID * request #8023: Infinite loop when Tracker plugin is restricted * request #8016: Force codendiadm owner group for FRS folder * request #8035: Missing route in REST API: OPTIONS projects/id/user_groups * request #8039: Fix the purification in user group permissions * request #8044: Fatal error on full text search == Security == * request #8015: Fix reflected XSS in the user group creation * request #8017: SQL injection in user groups project administration * request #7974: Prevent SQL injections at the project creation * request #7977: Reflected XSS in project statistics * request #7790: Add missing anti-CSRF token in SSH keys edit form and bookmarks management * request #7797: Fix persistent XSS in autocomplete forms * request #7763: Avoid errors concerning SELinux policies in packages == Plugins == * tracker: 5.616 * git: 4.43 * ldap: 3.78 * webdav: 1.9.11 * mediawiki: 0.68 * agiledashboard: 1.188 * cardwall: 1.48 * docman: 2.26.74 * fusionforge_compat: 0.9 * openid: 0.8 * pluginsadministration: 1.9 * statistics: 0.48 * IM: 1.5.26 * admindelegation: 2.9 == Themes == * FlamingParrot: 1.81 == Api == * REST API: 1.8 == Development == * story #7742: ROOT_DAILY now logs if Exceptions are thrown during process * Fix test suite Version 8.0 (Thursday, April 2nd 2015) == Enhancement == * request #7890: New tuleap home page * request #7714: Add status search criteria in siteadmin userlist interface (Contrib STMicroelectronics) * story #7709: Site admin can restrict access to a mirror == Bug fix == * request #7926: SVN BrowseTree error * request #7911: Logrotate might be configured to use "dateext" instead of .X * request #7919: fix tracker artifact update * request #7920: Properly filter private news * request #7871: Fix persistent XSS in survey service * request #7804: Fix persistent XSS in FRS * request #7898: Fix SQL injections in snippet service * request #7932: Cannot display projects in a trove category * request #7933: Proper styling of labels of radio button * Revert "Improve web site ranking (mkt)" == Plugins == * docman: 2.26.68 * fulltextsearch: 0.127 * tracker: 5.601 * git: 4.22 * agiledashboard: 1.184 * pluginsadministration: 1.7 * IM: 1.5.23 * cardwall: 1.47 * tests: 5.28 == Themes == * FlamingParrot: 1.77 == Api == * REST API: 1.7 * story #7701: make all relevant user related api resources public * story #7701: Add BasicAuth method if no token/cookie provided == Development == * story #7702: Add dependency with Restler 3.0.0-RC6 * request #7964: Stylesheets cannot have more than 4K rules in IE9 Version 7.11 (Wednesday, March 4th 2015) == Feature == * Parts of story #7495: set permissions on artifact priority change * story #7854 Add new extensions into Mediawiki * Parts of story #7579 move cards in my cardwall == Feature Request == * request #7711: Add csv export in site admin user list interface (Contrib STMicroelectronics) == Security == * request #7831: Fix SQL injection in trove cat listing * request #7818: Fix SQL injection in trove cat * request #7819: Fix persistent XSS in trove categories * request #7849: Fix XSS in development mode * request #7847: Fix persistent XSS in project sidebar * request #7806: Avoid HTTP Response Splitting and uncontroled redirection in FRS * request #7872: Escape all SQL queries parameters in survey service * request #7887: Properly escape SQL queries in cross reference * request #7889: Fix persistent XSS in cross reference * request #7895: Fix SQL injection in the most active projects page == Plugins == * graphontrackers: 1.13 * tracker: 5.582 * fulltextsearch: 0.126 * mediawiki: 0.62 * agiledashboard: 1.168 * git: 4.13 * docman: 2.26.66 * webdav: 1.9.8 == Bug Fix == * request #7846: allowing a system to always handle CVS commits as coming from windows or utf8 * request #7879: Add a whitelist for the Content-Security-Policy directive script-src * request #7758: php error when registering new user * request #7841: Pagination headers cannot be read in CORS request * request #7839: A project admin can't remove his rights if he is the only project admin * request #7855: Issue with 'Select artifacts to link' on the artifact Edit page * request #7862: Old phppwiki search method no longer available * request #7826: Improve error detection of FRS file moving * request #7860: Redirection link when you are not authenticated only redirects to service * request #7297: allowing a restricted user to see their own avatar * request #7809: force into utf8 tv3 export of artifact history * request #7877: Use a valid value for the Content Security Policy directive reflected-xss * request #7811: Filenames with ' are now correctly processed in FRS == Development == * story #7495: be able to get ugroups of a project for a given permission * Have more git logs in debug mode * Bump copyright * Integrate REST api in version checker == Themes == * FlamingParrot: 1.66 == Api == * REST API: 1.6 Version 7.10 (Thursday, February 5th 2015) == Features == * request #7805: Remove CKEditor for IE7 * request #7788: Force IE (< 9) and old Chrome versions to follow the declared content-type and content-disposition headers * request #7799: Token is stored in a dedicated cookie * request #7716: Update user details thru REST api * request #7723: Make project backup path customizable (contrib STMicrolelectronics). * story #7607: have tracker search in global search * story #7740: git anonymous http clone * Parts of story #6855: artifact copy: Recursive copy * Parts of story #7697: dedicated queue for grokmirror manifest updates * story #7496: see priority changes in artifact view * request #7710: Sort content of the userlist table after a header click (contrib STMicroelectronics). * request #7799: Regenerate token cookie if it's no more available * request #7799: Generate user_id cookie == Bug Fix == * Fix unit tests for webdav & config & karma tests * request #7731: Columns defined as collapsed by default are not collapsed in cardwall report on dashboards * request #5550 Date reminder form messed with bootstrap * request #7750: Graph cumulative flow legend overlaps on graph * request #7751: Enhance Mediawiki administration UI * request #7673 Git errors when creating repo and dumping ssh keys * request #7715: Fix bad links to some users in admin user list * request #7764: docman fulltext search events broken * request #7770: Wrong data when there are two reports on project dashboard using the same field as filter * request #7774: fatal error on my personal page from docman * request #7792: Contributor semantic change should trigger FTS reindex * request #7796: Unable to configure tracker v5 default templates * request #7817 Docman fts actions are logged into the default queue instead of the fts one * Fix request #7815: Proftpd: Path are not well escaped when setting ACL == Plugins == * tracker_date_reminder: 1.2.9 * graphontrackers: 1.12 * graphontrackersv5: 5.16 * tracker: 5.568 * mediawiki: 0.61 * fulltextsearch: 0.121 * git: 4.11 * docman: 2.26.65 * ldap: 3.71 * openid: 0.6 * agiledashboard: 1.149 * webdav: 1.9.7 * tests: 5.27 == Themes == * FlamingParrot: 1.65 == Development == * Update less.sh uncompiled files == Security == * request #7786: Enable browser built-in protection against XSS * request #7788: Prevent persistent XSS in attachment of an artifact * request #7755: Fix non persistent XSS and open redirect in redirect page * request #7730: Add entropy into the session ID and the password reset token * request #7754: Prevent denial of service via the login form * request #7744: Fix non persistent XSS and a open redirection in search modules and login form * request #7785: Protection against clickjacking Version 7.9 (Wednesday, January 7th 2015) == Plugins == * agiledashboard: 1.136 * git: 4.2 * fulltextsearch: 0.106 * proftpd: 0.20 * tracker: 5.539 * hudson: 1.18 * cardwall: 1.45 * docman: 2.26.56 * boomerang: 0.4 * statistics: 0.41 * ldap: 3.66 == Bug Fix == * env: Fixing multiple REST plugins tests * request #7692 - Git plugin tries to commit / push as post system event at each run * request #7699 - Fatal Error in SE Monitor if Gerrit Server has been deleted * request #7729: Fatal Error in Contacts widget * request #7381: Inadequate conversion of pattern @someword == Features == * parts of story #7577 display a Kanban cardwall == Themes == * FlamingParrot: 1.60 Version 7.8 (Thursday, December 11th 2014) == Features == * request #6964: Prevent users to enter misspelled emails during registration * request #7590: Allow SVN immutable tags (contrib STMicroelectronics) * Improve tuleap referral and SEO * story #7540: have all Git events consumed all at once * request #7649: Admin can activate an account when user comes from ldap == Bug fix == * request #7679: Fatal error: Call to undefined method DataAccessResultEmpty::instanciateWith() * request #7615: retreive the username from ldap while editing SVN commit log messages (contrib STMicroelectronics) * request #7630: fix- legacy docman import script copies empty folders * request #7631: legacy docman import script doesn't strip-out html entities * request #7646: Ftp files can't be moved in FRS * request #7653: Import of new agile dashboard doesn't activate "Scrum" mode * request #7647: Notices on preferences page and csv defaults broken * request #7678 fatal error on artifacts links -> create new button == Development == * story #7511: planning v2 enhancements * story #7511: fetch the list of allowed tracker types for the top backlog * story #7511: Add drag'n'drop (doesn't call REST routes) and update Angular & jQuery * story #7511: rewriting prototype code in jQuery * story #7511: Permanently remove the systray * Fix generate release note templates to match all php versions * Mustachify/glossify project history * Introduce a "sample project feeder": Some tools to activate plugins and create a sample project call guinea pig with agile template a couple of fake data. * request #7314: Remove legacy DB tables creation (No longer load tv3 datastructure) * story #7599: have a dedicate queue for git events == Plugins == * git: 3.147 * fulltextsearch: 0.104 * mediawiki: 0.58 * tracker: 5.530 * cardwall: 1.43 * agiledashboard: 1.121 * tests: 5.26 * proftpd: 0.19 * docman: 2.26.55 * statistics: 0.40 * ldap: 3.64 == Themes == * FlamingParrot: 1.59 Version 7.7 (Thursday, November 13th 2014) == Features == * story #7505: select the news I want to display in widget 'latest news' * story #7326: see list of repositories mirrored * story #7395: Index all text fields * story #7393: FTS tracker: Reindex on tracker events * story #7465: index date fields * story #7508: See backlog items in a new read only view * story #7509: add expand/collapse bar containing backlog item's children == Bug Fix == * Fix language test to remove dependencies * request #7526: Missing attrs in ldap queries * request #7503: CI job bad parameters with svn * request #7541: TV3 to TV5 : bad path in attachments path migration * request #7535 TV3 to TV5 : a float field with no value generate errors in XML import * request #7601: Security issue with legacy project creation page and IM plugin * request #7618 Cannot revoke legacy permissions * request #7619 Global mediawiki administrator can see content of all private projects * request #7620 Cannot add non LDAP user to project * request #7624 Can no longer reply to an artifact by email == Plugins == * tracker: 5.518 * git: 3.135 * statistics: 0.39 * agiledashboard: 1.87 * proftpd: 0.18 * fulltextsearch: 0.102 * ldap: 3.61 * mediawiki: 0.57 == Themes == * FlamingParrot: 1.55 == Enhancement == * request #7592: Be more verbose in git logging * request #7588: Have a dedicated log file for different event queues * request #7593: Prevent from deleting a tracker if used in AD * request #7589: Logrotate system event logs == Development == * Update build system to generate intermediate srpms * Be able to build RPMs in docker containers * set src-dir as parameter in docker_generate_package script * adding a Makefile target and removing -t option for CI purpose * Adding shortname of project in GET /project/:id route * Fix master build with unused text * Do not send layout_id in _GET and _POST Version 7.6 (Monday, October 20th 2014) == Plugins == * ldap 3.53 * agiledashboard: 1.78 * docman: 2.26.53 * tracker: 5.497 * ldap: 3.56 * IM: 1.5.20 * statistics: 0.38 * git: 3.124 * fulltextsearch: 0.87 * graphontrackersv5: 5.15 * cardwall: 1.38 * mediawiki: 0.56 * proftpd: 0.17 * admindelegation: 2.8 * admssw: 0.4 * archivedeleteditems: 0.4 * boomerang: 0.3 * doaprdf: 0.4 * docmanwatermark: 2.6 * foafprofiles: 0.4 * forumml: 2.6.21 * fusionforge_compat: 0.7 * graphontrackers: 1.11 * hudson: 1.17 * openid: 0.5 * pluginsadministration: 1.5 * projectlinks: 2.6 * requesthelp: 1.3.9 * tracker_date_reminder: 1.2.8 * userlog: 1.4 * webdav: 1.9.6 == Bug Fix == * request #7529: Errors with System Event when the queue is unknown * Refactoring: plugins should not leak into the core * request #7513: Pick active user when email is used by 2+ accounts * request #7515: Git mirror user ssh key is not deployed * request #7457: Remote Command Execution Vulnerability * request #7484: Search in projects can take a very long time * request #7478: REST POST /tokens should not return 500 when the password is wrong * request #7487: Existing folder, links and empty docs in docman aren't taken into account during project reindexation * request #7499: User home sanity check is too slow * request #7498: Changing rank on graph is not working * Part of request #7466: PHP 5.5 comes with password_hash built-in == Features == * story #7516: (part of) have my repositories replicated on selected mirror * REST API: can now search for a user with exact match: GET /users?query={username:jcdusse} * REST API: story #7322: retrieve user membership from master * New site wide permission delegation: retrieve user membership * Import docman v1 content into docman v2 == Themes == * FlamingParrot: 1.47 == Development == * Allow to define a directory for combined script outside sources Version 7.5 (Thursday, September 18th 2014) == Bug Fix == * request #7408: No value returned for the specified parameters in the build * Fix request #7373: Remove "target" settings for link in CKeditor configuration * request #7379: Delete sflogo.php no longer used (since 2008) == Plugins == * tracker: 5.471 * fulltextsearch: 0.82 * git: 3.98 * mediawiki: 0.55 * statistics: 0.36 * archivedeleteditems: 0.3 * cardwall: 1.36 == Features == * tasks #7444: remove seconds from the timepicker in the UI * tasks #7440: make tracker workflow rules work with datetime * request #6728: Provide a list of project that are above disk quota for the siteadmin * story #7349: SystemEvent to be processed independently == Development == * Development: be able to fetch the status for a given changeset Version 7.4 (Thursday, August 21st 2014) == Plugins == * fulltextsearch: 0.79 * tracker: 5.443 * mediawiki: 0.53 * docman: 2.26.47 * git: 3.96 * graphontrackersv5: 5.13 * ldap: 3.52 * requesthelp: 1.3.8 * cardwall: 1.35 * agiledashboard: 1.69 * IM: 1.5.17 == Themes == * FlamingParrot: 1.43 == Bug fix == * Fix regression introduced by commit 4b3eedc in tasks #6918: Send notifications after copy * Fix request #7143: Use of register globals in user permissions page (Contribution Nicolas Lafont - WDMédia) * request #7265: XML import enforces field dependencies but not workflow * request #7270: Export Per Tracker ID in CSV * request #7298: fix some tracker graphs not showing on project homepage * request #7177: PhpWiki and PHP 5.4 (Contrib Nicolas Lafont) * Fix request #7273: Files with French characters in name do not open in SVN * request #7332: Cannot uninstall and re-install tracker plugin from web interface * request #7327 Tv3 export to Tv5: cannot migrate trackers not readable by anonymous * request #7345: Tv3 export to Tv5: import failure when field name is not unique * request #7335: Tuleap mailing list admin doesn't work in php 5.4 * request #7342 Tv3 export to Tv5: migration abort when files are deleted on file system * request #7347: Tv3 export to Tv5: migration is to restrictive, should not stop creating when something cannot be imported * request #7350 Tv3 export to Tv5: Improve logging == Features == * Third step of story #6971: Git online commit in the Tuleap UI * story #729: Be able to add custom tours on my forge * story #7304: use wiki editor * Parts of story #2501: be able to unsuscribe to an artifact == Enhancement == * Adapt test output dir to run tests in Docker * Add REST route to be able to search for users (part of request #7303) * Convert @mentions into clickable links (part of request #7303) * Configure tests for clean run in Docker * request #7334: Force the display of the breadcrumb even if it is empty * request #7330: Replace legacy admin doc by new Sphinx one * Allow to run unit tests in docker containers == Development == * request #7314: Remove legacy DB tables creation (Do not create docman v1 tables in 2014) * Development: return the number of artifacts in rest lib * build less and autoload files with docker * Adding an option to install without mysql root user * Update sources metadata * Remove dead code Version 7.3 (Thursday, July 24th 2014) == Features == * tasks #7191: Wiki page referenced in docman is indexed like a docman file * tasks #7189: Search in Wiki does not redirect to the Wiki service if FTS is enabled * tasks #7203: Catch wiki events * story #6003 be able to change the Experimental theme color == Plugins == * git: 3.93 * tracker: 5.425 * ldap: 3.51 * fulltextsearch: 0.64 * docman: 2.26.40 * mediawiki: 0.44 * forumml: 2.6.20 * agiledashboard: 1.67 * cardwall: 1.34 == Themes == * FlamingParrot: 1.34 == Bug fix == * request #7252: Fatal error on search when FTS plugin not installed * bugtasks #7164: change the link in sidebar so that it uses current project shortname dynamically * bugtasks #7157: fixed notice in src/www/include/exit.php * request #7170: prevent make less to compile node_modules * request #7068: Allow Cross Origin Resources Sharing for REST API, fixing test * request #7204: links in readme are outdated * request #7223: Fatal error when accessing account page * request #7053: Issue with field attachment required * request #7234: tracker_ artifact_ changeset test fails on master * Follow-up request #7104: DRY on subversion repository path * request #7107: SOAP getSvn* doesnt work on projects with project shortname in mixed case * Fix request #7232 Improve french help page * request #7211: Fatal error while accessing to a specific svn revision. * request #7247: New theme variant * request #7236: fatal error on system events UI- foreign events not rejected by fulltext * Fix request #7257: Fatal error when using search bar on wiki service == Development == * Fix request #7218: Building autoload takes 20 minutes Version 7.2 (Thursday, June 26th 2014) == Bug fix == * tasks #7106, request #6405: Proper sanitization of project public name in search * request #7113: fix notice on search page when fulltextsearch not installed * request #6945: Notice on forum message post * Fix request #7057 Fatal error when searching in wiki * Fix request #7104 Subversion access control history doesnt manage uppercase repo == Features == * tasks #7105: Add media queries to search page * tasks #7051: fix full text search is not an option when going to /search directly * tasks #7054: fix bug: ajax search does not use text field but some stored DOM value * tasks #6986: infinite scroll on search results * story #5756: search with nice interface (also story #7019) * tasks #7034: Take in account new option in SVN * tasks #7032: Add new entry for svn in local.inc * request #6970: Clean the Augean stables (tracker v1 removal) * request #7025: Remove old programmer-guide * request #7021: Now possible to give access to trackers to restricted users * story #7060: Initiate the new ElasticSearch indexation format * story #7026: ElasticSearch - Initiate the new ElasticSearch indexation format == Plugins == * agiledashboard: 1.66 * cardwall: 1.33 * tracker: 5.413 * git: 3.88 * forumml: 2.6.19 * fulltextsearch: 0.45 * ldap: 3.47 * mediawiki: 0.32 * docman: 2.26.34 == REST API == * story #6934 - REST: route /users/:id GET * story #6301 - reply to a follow-up comment by email * request #6963 Incorrect error code REST API == Themes == * FlamingParrot: 1.20 == Developers == * Introduce docker container management for developers (tools/docker/dev_start.sh) Version 7.1 (Wednesday, May 28th 2014) == Enhancement == * story #6048: Retrieve an old SVNAccessFile. The SVN access control history is now kept. Each time a modification is done on the file (via the web interface), a new version is saved. This allows administrators to retrieve a previous version and to use it if needed. * request #6841: Replace the combox by multiselect box in the System events monitor screen (contrib STMicroelectronics) * story #6853: be able to check user in checkbox by clicking on the name (contrib Jtekt) * tasks #6884: be able to choose the permission in the admin area * Fix request #6941: errors when list field values are missing * Fix request #6954 NO way to select value in some selectbox in my account page * Add link to REST API documentation in footer == Plugins == * tracker: 5.389 * agiledashboard: 1.63 * cardwall: 1.32 * git: 3.86 * requesthelp: 1.3.7 * IM: 1.5.16 * admindelegation: 2.7 * tests: 5.22 * webdav: 1.9.5 * mediawiki: 0.30 * ldap: 3.44 * openid: 0.4 == Developers == * tasks #6824 - Refactor Milestones test * Add a makefile for debian * URLVerification now asks plugins if User has been granted permissions to access even if user should primarily not able to (admin delegation). * Remove short open tags in site-content * Add method to check running system events against a parameter * Fix tests in ArtifactXMLExporterTestPHP53 (user->users) == Themes == * FlamingParrot: 1.9 * CodexSTN: 1.16 * Dawn: 1.13 * STTab: 1.15 * SteerForge: 1.13 * Tuleap: 2.13 * savannah: 1.5 == Bug fix == * Fix request #6839: unable to use project references in svn commit message * request #6872: Changing remaining effort of a card in cardwall renderer display a json string * request #6877: Red cross to delete artifact from its parent is almost invisible on Google Chrome * request #6879: Can't create a custom service * Fix request #6880: XML Export from Tv3: MSB with users might have 2 as data type * Fix services administration create/update issue Version 6.13 / 7.0 (Monday, May 5th 2014) == Enhancement == * tasks #6676: Glossification <3 == Developers == * Foundation for Tuleap tours * Allow to search for templates in several directories (works with partial too) == Themes == * CodexSTN: 1.15 * FlamingParrot: 1.0 * Dawn: 1.12 * STTab: 1.14 * SteerForge: 1.12 * Tuleap: 2.12 * savannah: 1.4 == Plugins == * tracker: 5.366 * cardwall: 1.30 * graphontrackersv5: 5.11 * agiledashboard: 1.61 * mediawiki: 0.28 * git: 3.82 * docman: 2.26.33 * IM: 1.5.14 * hudson: 1.15 * proftpd: 0.13 == Bug fix == * request #6737: Requester is not admin when project is created via SOAP * request #6712: More explicit message about IE7 and IE8 support. * request #6783: Form plugins do not work on phpwiki * Makes Theme loading resilient * request #6786: None column on the cardwall renderer is empty when the ui is in french * Fix request #5703: gibberish and notice shown for http domain on admin -> project management * Fix request #6804: Notice prevents REST /projects:id from returning 404 when in debug mode. * Fix request #6806: The word "Group" should be "Project" in admin area Version 6.12 (Thursday, April 3rd 2014) == Plugins == * proftpd: 0.12 * tracker: 5.282 * graphontrackersv5: 5.6 * agiledashboard: 1.56 * cardwall: 1.24 * docman: 2.26.31 * git: 3.78 * hudson: 1.14 == Bug fix == * request #6586: Do not display unknown user in TV3 assigned_to field * request #6404: Do not display postponed error for phpwiki (contrib STMicroelectronics) * request #6146: Backend raise errors about cvs logs while cvs is not even installed * request #6423: [trackerV3] Bind a field to mutiple lists doesn't work * Fix request #6146 - Backend raise errors about cvs logs * Fix request #6539 - Missleading terminology for Project Members and Developers * Fix request #6598 - FRS file url broken after package update * request #6589 - TinyMCE is not compatible with IE9 == Enhancement == * story #5998 - Delegate the validation of projects to users * story #6454 - Giving access admin rights to some users to all trackers == Themes == * Experimental: 0.9.13 * CodexSTN: 1.13 == Development == * Add script to ease the execution of webdav tests Version 6.11 (Thursday, March 6th 2014) == Plugins == * git: 3.71 * docman: 2.26.28 * agiledashboard: 1.53 * tracker: 5.262 * cardwall: 1.21 * mediawiki: 0.25 * forumml: 2.6.17 * proftpd: 0.7 == Development == * request #6023 - Days remaining off by one day in the Stand-Up View * story #6009 have a beautiful Agile Dashboard homepage (v1) * story #6058 Create artifacts in agile dashboard using modal * REST and phpunit tests can be run in Continuous Integration * Better detect theme change not to forget to increase version number in tools/utils/changelogs/generate.sh * Add a common helper to compute dates without including week-ends * Remove embedded Firebug * Be consistent with forgeupgrade script: b201305161743_remove_unique_from_svn_checkins * Clean-up package building (remove old documentation) * story #6189: GET project & project users * story #6083: see artifact link reverse links == Enhancement == * request #5951 - Avoid hardcoded redirect on login when possible * request #6154 - Cannot change password upon expiration * story #6047 - update Rich Text Editor (better compatibility with IE10 and upper). Keep internal CKEditor for IE7 == Themes == * Experimental: 0.9.10 * Dawn: 1.9 == Bug fix == * request #5857: Fix error with SVN during a SYSTEM_CHECK * Fix request #6247: Forum flat view displays same author for all messages (Contribution STMicroelectronics) * request #6299: Add the possibility to display user unix name in access_log * request #6326: When we add a new FRS file with CODENDI CLI , the "comment" field is set to 1 (Contrib STMicroelectronics) * request #6316: SVN tree not displayed, When I have non-utf-8 char in my commit history, I get a blank page content. * request #6338: Bad file location when moving file between releases in frs * request #6350: Add info message to warn about IE9 and IE7 Version 6.10 (Thursday, February 6th 2014) == Plugins == * agiledashboard: 1.41 * boomerang: 0.2 * cardwall: 1.17 * tracker: 5.234 * proftpd: 0.6 * tests: 5.21 * fusionforge_compat: 0.6 * hudson: 1.13 * git: 3.67 * projectlinks: 2.5 * mediawiki: 0.23 * fulltextsearch: 0.26 == Enhancement == * Story #5919: edit artifact in place on agile dashboard * Story #5916: mapping between mediawiki and tuleap groups * Story #5678: contact administrators of a project * Story #5619: Have an enhanced experimental theme * Story #5870: be able to assign Git Admin permissions to some users in the project == Bug Fix == * Fix request #5909: Fixing REST tests on project import from XML * Fix request #5818: SSH keys with old username are removed * Fix request #5895 - Export tracker structure do not keep default values for list fields * Fix Request #5913: fix wrong service icon for Agile Dashboard plugin * Fix request #5911: Adding options in setup.sh to install with exotic mysql servers * Fix warning when displaying avatar for anonymous user * Fix security issue on snippet service * Fix request #6099: Error in syslog during DAILY system event == Themes == * Experimental: 0.9.1 == Development == * Pull-out Vagrant and Chef in dedicated repositories * Refactoring javascript to extract a reusable filter object (listFilter). * Fix request #5914: Lot of warning when running make api_test * Removing commented-out code merged in Tuleap 6.9.99.8 Version 6.9 (Thursday, January 9th 2014) == Plugins == * tracker: 5.216 * agiledashboard: 1.31 * cardwall: 1.12 * git: 3.63 * docman: 2.26.27 == Enhancement == * Making the RESt API resource list public * Basic CSRF protection == Bug Fix == * Fix request #5779: Fatal error when using getSvnStatsFiles SOAP method * Fix request #5808: Package id in file download link is now correctly updated * Fix request #4305 - Warnings when a plugin is installed * Fix request #5805 : SVN_UPDATE_HOOKS returns more relevant information if simlink cannot be done * Fix request #5551: Wrong message when adding a file in a release (IE9) * Fix request #5826 - Cannot login with Chrome or IE when domain name is an IP address == API == * SOAP core: 6.4.1 Version 6.8 (Thursday, December 12th 2013) == Plugins == * tracker_date_reminder: 1.2.7 * agiledashboard: 1.26 * tracker: 5.205 * mediawiki: 0.21 * git: 3.61 * statistics: 0.34 * tests: 5.20 == Bug Fix == * Fix request #5721: REST API tests are broken * Fix request #5641: Experimental theme show more projets than mine in "Projects" menu * Fix request #3468: [CentOS 6] SELinux forbids apache to send emails * Fix request #3467: [CentOS6] error setting SELinux context in setup.sh * Fix request #5604: ViewVC download broken when file start with 0x00 * Fix XSS vulnerabilities on bookmarks * Fix request #3262: Jean Pierre Graph font configuration fails on centos6 == Enhancement == * Story #5580: Add GET and OPTIONS route for projects/:id/milestones * Story #5582: Add GET and OPTIONS route for projects/:id/trackers * Story #5584: Add GET, OPTIONS route for milestones/:id/content * Story #5579: Add GET, OPTIONS and PUT routes for projects/:id/backlog == Themes == * Experimental: 0.5 Version 6.7 (Thursday, November 14th 2013) == Plugins == * agiledashboard: 1.15 * fulltextsearch: 0.25 * cardwall: 1.8 * tracker: 5.185 * openid: 0.3 * git: 3.53 * ldap: 3.39 * webdav: 1.9.4 * IM: 1.5.13 * docman: 2.26.25 * graphontrackers: 1.10 * hudson: 1.12 * pluginsadministration: 1.4 * mediawiki: 0.19 * statistics: 0.33 == API == * rest: 1.1 == Bug Fix == * Fix request #5535: Suspsended users appears like normal users on webui so SOAP should give same level of information * Fix request #5544: Fatal error on the widget my monitored forums * Fix request #5554: Cannot select CSV preference in use prefs page * Fix request #5406: Unable to install Tuleap on CentOs 6 * Fix javascript typo to not make IE crying * Fix request #5450: login page customisation broken * Fix plugin autoload: Autoload of some plugins fails because of mix between include paths * Fix request #5543 - Unable to approve a project == Enhancement == * Contribution: Autoload all core * Story #5280: Integrate Bootstrap to continue interface overhaul * Story #5281: Switch css stylesheets to less format * Story #5283: Use recess instead of phpless & use boostrap*.less * Removed CodeX and CodeXTab themes == Developments == * Add framework for RESt API test automation (see tests/rest) * Now stylesheets are written in [LESS](http://lesscss.org/) format. Please see [Development environment/How to deal with LESS files](https://tuleap.net/wiki/index.php?pagename=Development%20environment%2FHow%20to%20deal%20with%20LESS%20files&group_id=101) to update your developpement environment. tl;dr: `make less` or `make less-dev`. Version 6.6 (Thursday, October 17th 2013) == Enhancement == * Improvement of login interface. Adding support for multiple type of login sources (tuleap/openID). * story #5162: send an email when a news is published * story #5181: a project member can send an email to all project members * story #5181: allow a user to send an email to all project members of a given project == Plugins == * tracker: 5.174 * git: 3.48 * forumml: 2.6.15 * fulltextsearch: 0.22 * ldap: 3.36 * mediawiki: 0.17 * agiledashboard: 1.5 * openid: 0.2 * statistics: 0.32 * tests: 5.19 * cardwall: 1.5 * IM: 1.5.12 * graphontrackersv5: 5.3 == Bux Fix == * Fix request #5207: Typo in access denied message * Fix request #5134 - Calendar is not displayed when creating a Release or Sprint * Fix request #4815 - Double update of release * Fix Sla #5868 : Fix old TV3 wrong help link * Fix Sla #5906 : Fix stack trace * Fix request #5174: Always use POST to trigger jenkins jobs * Fix request #5341: Missing types in the SOAP project API Version 6.5 (Thursday, September 19th 2013) == Enhancement == * story #3826 - update a release in FRS through SOAP * Persist file attachments on file system rather than DB: So we stop cluttering the database with blob of datas * story #3825 - have a "Comments/Description" field in FRS * request #4962 - fix date display when date is in future * Improvement of internal API. ~5% speed boost on most pages. == Plugins == * docman: 2.26.22 * git: 3.41 * tracker: 5.155 * agiledashboard: 0.97 * cardwall: 0.9.46 == Bug Fix == * Fix request #4895: SVN file content not displayed, hence converting buffer file data to utf-8 before inserting cross-references. * Fix request #5032: PHP code in tracker date reminder email for PHP 5.3 platforms. Version 6.4 (Thursday, August 22nd 2013) == Enhancement == * Switch documentation to sphinx for easier contrib, better look'n feel and improved help experience (search, table of content, etc). This includes helps on latest developed features: agile dashboard, gerrit, tracker SOAP api, etc. == Plugins == * git: 3.37 * tracker: 5.149 * ldap: 3.33 * tests: 5.18 * cardwall: 0.9.41 * statistics: 0.31 * IM: 1.5.11 * docman: 2.26.21 * forumml: 2.6.14 * graphontrackers: 1.8 * hudson: 1.10 * projectlinks: 2.3 * tracker_date_reminder: 1.2.4 == Bug fix == * fix sla #4627: fix bug that might affect php53 deployment when downloading big files (200MB or more). Requires to install RPM php53-pear-HTTP-Download too. (Will be added as a dependency in future) * Database server can be on a non standard port * Fix the issue of custom fields not displayed in the project admin area * sla #4564: Missing HttpOnly Attribute in Session Cookie (Contrib STMicroelectronics) * Fix issue with change email confirmation == Development == * Cross-trackers triggers fully implemented * Adding a method to add JSON content to a request * Adding a method to get the content of a request when posted as JSON * Better error handling on SQL errors * Methods to fetch and update the description fields of a project through SOAP * Fix lxc_fix_uid script * Add docman soap call example == Themes == * Experimental: 0.2 == API == * SOAP svn: 1.1 Version 6.3 (Thursday, July 25th 2013) == Plugins == * graphontrackersv5: 5.2 * requesthelp: 1.3.3 * agiledashboard: 0.93 * docman: 2.26.20 * git: 3.33 * cardwall: 0.9.40 * tracker: 5.143 * forumml: 2.6.13 * statistics: 0.29 * tracker_date_reminder: 1.2.3 == Bug fix == * Fix sla #4015- Project one step creation uses sys_is_project_public (project are no longer private by default) * request #4112: Python exception pass (Contrib Raphaël Enrici) * Fix libnss-mysql install (set a default host and distinguish case where an empty hostname was used to detect if we need to bootstrap the db (local deployments). * sla #4103: Mime type not recognized in Docman * story #4208: loginAs create user account before to inpersonate people == Enhancement == * Project admin can configure the generic user from ui (change password & email) * Debian compatibility: support of subversion, git. Install fix IM plugin and forgeupgrade. * story #3823: configure generic users as siteadmin * Lower mysql privileges needed to run Tuleap * Simplify Tuleap installation == API == * SOAP /soap/project: 1.1 == Development == * Add new theme for experimental wireframing * Integrate debian packaging (Contrib Raphaël Hertzog) * Add tool to ease uid/gid change for lxc containers with binded mount * Remove register_globals on site admin and project admin Version 6.2 (Wednesday, June 26th 2013) * Story #3820: activate generic user creation * Story #3632: Introduce project hierarchy definition. * Fix XSS injection in Forums, Wiki, Search, People resume (contrib STMicroelectronics). * Add tool to dump a forum of a project * Attempt to fix bug when invalidating combined js cache * Fix notice error on service management page * Fix sla #4006: autodetection of redhat releases. == Plugins == * agiledashboard: 0.87 * git: 3.28 * tracker: 5.134 * mediawiki: 0.12 * statistics: 0.28 * ldap: 3.31 * fusionforge_compat: 0.4 * cardwall: 0.9.36 * graphontrackersv5: 5.0.10 Version 6.1 (Thursday, May 30th 2013) == Enhancement == * story #3226: see "svn propset --revprop -r X svn:log" modifications in commit DB == Bug fixing == * Fix XSS injection in Forums (contrib STMicroelectronics). == Plugins == * docman: 2.26.16 * git: 3.22 * agiledashboard: 0.83 * cardwall: 0.9.32 * tracker: 5.126 * ldap: 3.30 * forumml: 2.6.12 Version 6.0 (Monday, May 6th 2013) == Bux Fix == * Installation process now compatible with rhel6 as well as rhel5 and rhel5-php53 * Site admin can now export and import a part of a project template (Tracker and AgileDashboard). * Fix sla #3147: corrupted cron file * Fix Bugs #3165: XSS vulnerability with bookmark (Contrib STMicroelectronics) * Fix bugs #3256: Links in followups in email notifications are broken == Plugins == * admssw: 0.2 * agiledashboard: 0.80 * cardwall: 0.9.30 * doaprdf: 0.2 * foafprofiles: 0.2 * graphontrackersv5: 5.0.9 * pluginsadministration: 1.3 * fusionforge_compat: 0.3 * mediawiki: 0.9 * git: 3.18 * docman: 2.26.15 * tracker: 5.121 * ldap: 3.29 * IM: 1.5.9 * forumml: 2.6.11 == CLI == * Version 1.5.3 == Development == * Remove register globals usage on service management and approval admin pages * Remove usage of PHP_SELF Version 5.12 (Thursday, March 21st 2013) == Plugins == * graphontrackersv5: 5.0.8 * tracker: 5.98 * agiledashboard: 0.77 * git: 2.7.32 * IM: 1.5.6 * admindelegation: 2.5 * cardwall: 0.9.22 * docman: 2.26.14 * docmanwatermark: 2.4 * forumml: 2.6.10 * fulltextsearch: 0.18 * fusionforge_compat: 0.2 * ldap: 3.27 * requesthelp: 1.3.2 * statistics: 0.23 * webdav: 1.9.2 * mediawiki: 0.2 * tests: 5.17 == Bug Fix == * Fix request #2817: When a service in iframe is created in template project, the "is in iframe" information were not propagated to other projects. * Fix bugs #2901: When there are permissions set on fields and tracker, there are edge cases when we got a fatal error while updating an artifact in tracker v3 Version 5.11 (Thursday, February 21st 2013) == Plugins == * tracker: 5.88 * agiledashboard: 0.72 * cardwall: 0.9.18 * git: 2.7.26 * ldap: 3.25 * forumml: 2.6.8 * fulltextsearch: 0.16 * tests: 5.16 * graphontrackersv5: 5.0.6 == Enhancement == * Let the admin choose if the privacy of a project should be displayed (in widgets and in service bar) * Allow site to customize robots.txt * Fix for sla #2290: allow restricted users to search in trackers v3 == Bug Fix == * Add missing php53-process dependency for posix functions * Fix sla #813: Project administration page is distorded on IE when the custom notification message is long * Fix bug #2317: Fatal error on the AccessLogs * Fix sla #682 - Viewvc display issue for file which name contains "$" * Fix missing blank.gif that pollutate error_log * Fix footer link for Tuleap as well as copyright Version 5.9.1 (Thursday, January 24rd 2013) == Plugins == * tracker: 5.70 Version 5.9 (Wednesday, January 23rd 2013) == Enhancement == * Allow one to create a project in 1 step instead of 8. Must be activated in the local.inc. == Plugins == * cardwall: 0.9.11 * git: 2.7.23 * tests: 5.15 * tracker: 5.69 * docman: 2.26.13 * graphontrackers: 1.7 * agiledashboard: 0.63 * fulltextsearch: 0.13 == Themes == * Tuleap: 2.5 == Bug Fix == * Do not rely on SimplePie escaping * Prevent some user account pages to be cached (contrib STMicroelectronics). * Fix bugs #2250: Restricted users are notified of wiki page update in public projects == Development == * Include fundations for HTTP client and Jenkins job * unit test CLI runner returns build status so it can be used in git bisect Version 5.8 (Wednesday, December 19th 2012) == Enhancement == * Better documentation of SOAP API == Bug fix == * Use reliable method to detect if we are running in CLI * Fix setup script: Replace localhost reference by the mysql_host value to be able to install the db on a dedicated server (Contrib STMicroelectronics) * Add missing lib in stats script (sla #1644) * Fix font compatibility with IE9 (Contrib STMicroelectronics) == Plugins == * cardwall: 0.9.9 * agiledashboard: 0.60 * tests: 5.11 * git: 2.7.18 * tracker: 5.57 * IM: 1.5.5 * forumml: 2.6.6 == Development == * Tuleap can respond with several names * PHP 5.3 compatibility: persist tracker_ids across instance of test Version 5.7 (Thursday, November 22nd 2012) == Bug fix == * Fix fatal error when user start monitoring a file package * Avoid double posting when body contain special characters. (Contrib STMicroelectronics) == Plugins == * tracker: 5.45 * git: 2.7.16 * tests: 5.8 * ldap: 3.22 * projectlinks: 2.2 * graphontrackersv5: 5.0.5 * agiledashboard: 0.59 * cardwall: 0.9.8 * docman: 2.26.10 Version 5.6.2 (Tuesday, November 6th 2012) == Enhancements == * A project administrator can import a user group from another project (contrib STMicroeletronics). Version 5.6.1 (Friday, November 2nd 2012) == Plugins == * tracker: 5.29.1 Version 5.6 (Friday, October 26th 2012) == Bug Fix == * Fix bug #1663: Validate user realname on account creation == Enhancements == * Enhance FRS monitoring (Contrib STMicroelectronics) * Adding new option for automatic validation of new projects == Plugins == * tracker: 5.29 * tests: 5.6 * statistics: 0.22 * git: 2.7.14 * ldap: 3.21 * agiledashboard: 0.57 * cardwall: 0.9.7 == Development == * Initialize a Vagrant box to ease the build of Tuleap. See ./Vagrantfile and http://vagrantup.com/ for details. This will also help newcomers to install a Tuleap development environment. Version 5.5.4 (Tuesday, Octobre 16th 2012) * Fix backend warnings about chgrp on ssh key dump * Validate user ssh key on upload (and clean existing ones) == Plugins == * git: 2.7.12 * tracker: 5.22 Version 5.5.3 (Thursday, Octobre 3rd 2012) == Bug fix == * Fix bug on cross reference extraction when parameters are not clean. == Plugins == * git: 2.7.11 Version 5.5.2 (Thursday, September 27th 2012) == Bug Fix == * fix sla #433: wiki references with version number * Allow anonymous to browse public forumml archives * Fix art #1277: Wrong URL inheritance when creating a project * Fix commit-email.pl: When no notification is set, don't generate error * When consulting private file anonymously, a login screen should be displayed instead of permissions error screen * Fix login error message when username is invalid * Improve php 5.3 compatibility as well as packaging for Vagrant == Plugins == * tracker: 5.21 * git: 2.7.10 * docman: 2.26.9 * agiledashboard: 0.54 * fulltextsearch: 0.12 * IM: 1.5.4 * admindelegation: 2.4 * forumml: 2.6.4 * graphontrackers: 1.6 * graphontrackersv5: 5.0.4 * ldap: 3.19 * statistics: 0.20 * cardwall: 0.9.6 == Development == * Add tool to easily fix the singleton count after a merge * Add tool to easily generate release notes * Various permissions cleanups and POSIX compatibility for shell scripts (Contrib Raphaël Hertzog) Version 5.4 (Wednesday, August 29th 2012) == Bug fix == * Fix typo in french translation. * Avatar was not sent in tracker v3 notifications * art #... does not work cross project * Fix fatal error raised when creating a followup comment using SOAP (contrib STMicroelectronics). * Make possible the restore into a hidden release in FRS (contrib STMicroelectronics). * Don't display hiddent content in TV3 HTML notification, outlook doesn't understand display:none (contrib STMicroelectronics). * Create 'user' dir (in /var/lib/.../) to store avatars during install * Fix sla #1063: field dependencies default values might be broken dependending on the order of definitions of the rules. * Fix Wiki XHTML ZIP Snapshot link can't be unzipped (contrib STMicroelectronics). == Plugins == * agiledashboard: 0.51 * cardwall: 0.9.5 * docman: 2.26.3 * forumml: 2.6.2 * fulltextsearch: 0.10 * git: 2.7.2 * graphontrackers: 1.5 * graphontrackersv5: 5.0.3 * hudson: 1.9 * ldap: 3.17 * pluginsadministration: 1.2 * statistics: 0.19 * template: 1.2 * tests: 5.5 * tracker: 5.10 * userlog: 1.2 == Development == * Add script to prepare plugins changelog (to be used by Tuleap integrators when merging into stable) * Continue PHP 5.3 compat (Contrib Philippe Goetz) * All unit tests pass with PHP 5.3 * First step toward autoloading in order to increase performances Version 5.3.1 (Monday, July 23rd 2012) == Plugins == * Docman 2.26.2 * Tracker: 5.8.7 == Bug fix == * Fix bug on user SSH key dump on filesystem (didn't take case into account and process context was not restored). * Fix warning on Subversion conf serialization. Version 5.3 (Thursday, July 19th 2012) == Plugins == * Agildashboard: 0.45 * Cardwall: 0.9.1 * Docman: 2.26.1 * FullTextSearch: 0.6 * Git: 2.6.3 * LDAP: 3.16 * Test: 5.1 * Tracker: 5.8.6 * GraphOnTrackerv5 5.0.2 == Enhancement == * Documentation update (remove references to old screenshots). == Development == Update mustache renderer Start PHP 5.3 cleaning (For Tuleap 5.3 \o/) Introduce transactions methods in DataAccess Display queries sorted by time taken in debug mode Automate synchro with github tuleap repo Version 5.2 (Friday, June 22th 2012) == Bug Fix == * Fix chart legend display (Contrib STMicroelectronics) * Fix ssh keys when no unix account: With Gitolite, it's possible to have a ssh key without having a unix account. However, the interface doesn't allow it. == Enhancement == * SOAP: 5.2 * Refresh the default page for projects website * Update "IndicateurCodex" perl script to take git into account == Plugins == * Cardwall: 0.5.4 * Tracker: 5.7.29 * Agildashboard: 0.33 * Docman: 2.25.7 * Git: 2.6.2 * Ldap: 3.15 * Statistics: 0.18 * FullTextSearch: 0.4 == CLI == * Version 1.5.1 == Development == * Add bootstrap css for tabs and pills Version 5.1 (Wednesday, May 23rd 2012) == Enhancement == * Add new methods in the SOAP api (get the statistics of a project, view svn top commiters, access to user groups of a project, ...) == Plugins == * New plugin: Fulltextsearch v0.2 DISCLAIMER: plugin in beta, do not use it on production servers. * Docman v2.54.5 * AgileDashboard v0.19 * Tracker v5.7.14 * Git v2.5.4 * Statistics v0.11 == Bug fix == * Fix bug with IE7 and drag'n drop in scriptaculous. * Definitively delete mailing list in the db (Contrib STMicroelectronics) == Development == * Check release with git (since now Tuleap sources are under git!) * jQuery support: Now Tuleap support jQuery as an alternative of Prototypejs/Scriptaculous. * Bootstrap support: Introduce dropdown plugin from Bootstrap to replace our own implementation of dropdown panels. This improve compatibility with Internet Explorer. Version 5.0.4 (Monday, May 15th 2012) * Added missing jars after migration: chardet, jing and codendi_auth Version 5.0.3 (Monday, May 14th 2012) * Generate an intermediate release to test git migration. Version 5.0.3 (Monday, May 14th 2012) * Generate an intermediate release to test git migration. Version 5.0.2 (Wednesday, May 9th 2012) == Plugins == * Git 2.5 Version 5.0.1 (Thursday, April 26th 2012) == Bug fix == * Fix link to cli documentation in footer Version 5.0 (Thursday, April 26th 2012) == Enhancement == * Improve default tuleap homepage and footer * Overall documentation update (replace screenshot, update archeological references, add new stuff). * Display site admin credentials at the end of the setup script == Bug fix == * Ensure NSCD and internal FS cache are properly flushed before doing something related to filesystem. Fix bugs related to directory ownership of users. * Fix sla #711 - Can't commit in CVS when the project is private. == Plugins == * AgileDashoard 0.13 * Cardwall v0.4 * Docman v2.25.3 * Git v2.4 * GraphOnTrackerv5 5.0.1 * Hudson v1.8 * IM v1.5.2 * RequestHelp v1.3.1 * Tracker 5.7.7 == Development == * Unit Tests: Add DSL like mock generator that allows to ease the readability of the tests: stub('someclass')->someMethod($arg1, $arg2, ...)->returns($someResult); * Move core tests to source root * Rename codendi_tools to tools * "Tests" plugin is now in /plugins but only manage display of tests (no longer embbed core tests * Add new class to manage graphical error message (based on STMicroelectronics works in branch #582) Version 4.0.28.1 (Friday, April 6th 2012) == Bug Fix == * Fix sla #674 - SVN notifications by path: mails were sent to people monitoring the same path at different projects * Fix sla #656 - Not able to create Tracker from the template * Fix sla #664 - Lack of visibility in Dawn theme == Plugins == * Tracker v5.4.8 Version 4.0.28 (Friday, March 30th 2012) == Bug Fix == * homepage: three feature boxes displayed the same content * svn: Fix double escaping issue in commit message in web ui * Fix missing dependency on viewvc == Enhancement == * SVN notifications by path: Add the possibility, via post-commit hook, to controls what notification gets sent. An SVN admin would be able to specify an SVN repository pattern that is matched to determine if an email is sent for a given checkin. == Plugins == * AgileDashoard v0.7 * Tracker v5.4.7 * TrackerDateReminder v1.2.1 * Git 2.1.7 * Docman 2.25.2 == Development == * Improve output of UnitTest to make them more readable. * Allows to start test method by 'it'. * Unit tests run after conversion of repository to git. * Remove tracker v1 (patch, support, bugs, tasks). * Remove deprecated and no longer maintained plugins: svntodimensions, cvstodimensions, serverupdate, eclipse, codendijri Version 4.0.27.3 (Monday, March 19th 2012) == Plugins == * Git v2.1.4 Version 4.0.27.2 (Thursday, March 8th 2012) == Enhancement == * Git documentation is now aligned with implementation. == Plugins == * Git v2.1.2. * Tracker v5.1.2 Version 4.0.27.1 (Friday, March 2nd 2012) == Bug fix == * Fix SOAP loginAs method (was not taking into account given session_hash). Version 4.0.27 (Friday, March 2nd 2012) == Bug Fix == * In project export details, display db host instead of front end server * Fix issue with search while wiki is fr_FR * Fix issue on mandatory reference in commit message (sla #494) == Enhancement == * Theme Tuleap 2.1: Official logo & colors. * Shrink homepage in Dawn theme * Rename 'Tracker' service into 'Tracker v3' (and disable it completly for new Tuleap install) ** For trackerv3, it can be customized into 'site-content//project/project.tab' with key (project_admin_editservice, service_tracker_lbl_key) ** For trackerv5, it can be customized into 'plugins/tracker/site-content//tracker.tab' with key (plugin_tracker, service_lbl_key) == Plugins == * New plugin: Agile Dashboard v0.4 DISCLAIMER: plugin in beta, do not use it on production servers. * Tracker v5.1.1 See separate ChangeLog. * GraphOnTrackerV5 v5.0 See separate ChangeLog. * Docman v2.24: See separate ChangeLog. * LDAP v3.12: See separate ChangeLog. * Git v2.1.1: See separate ChangeLog. == Development == * Fix issue in CI: lxc installation was missing yum repository generation Version 4.0.26.1 (Wednesday, February 8th 2012) == Bug Fix == * Fix issue with site news approval (Thanks to Régis Houssin and Grégory Salvan) Version 4.0.26 (Friday, February 3rd 2012) == Enhancement == * Mailing list names enhancement: allow siteadmin to configure the prefered format of mailing list through the following configuration variables: - sys_lists_domain - sys_lists_name_min_length - sys_lists_prefix - sys_lists_suffix => see local.inc for usage. (Contrib Orange) * Display much more lastlogins entries in siteadmin. (Contrib Orange) * svn-commit.pl script allows one to issue commit-email.pl on all loaded commits (from svnadmin load) that are not into the tuleap database. (Contrib Xerox) * Add script to change the name of authors in a svndump (to be run before the import into tuleap). (Contrib Xerox) * Regenerate a .SVNAcccessFile if it is not present during System Check. (Contrib Xerox) * Use site-content to add extra tabs in the tob bar services (only in div based themes) == Bug Fix == * Update codendi_aliases.conf to resolve some issues in customization of images in themes * Set the default php value of session.save_path in php.conf * When going to http://example.com/projects/gpig/, display the first active service if "summary" is disabled. (Contrib Xerox) * Fix memory leaks and performance issues on big subversion checkouts. (Contrib Xerox) ** See sys_auth_svn_mod in local.inc to switch the apache subversion authentication mod. * Fix escaping issues in FRS file upload pre-validation. (Contrib Xerox) * Fix getArtifacts SOAP API fails with criteria on date fields in tracker v3. (Contrib Xerox) * Fix (again) IE issue with file download (Contrib Xerox) * Fix cvs repository ownership issue (Contrib Xerox) * Re-add SurveyManager in the user guide (inadvertently removed) * Fix project db export(Contrib STMicroelectronics) * Fix Security issue (Contrib STMicroelectronics) == Plugins == * Git v1.25. See separated Changelog * Tracker v0.8.12. See separated Changelog * GraphOnTrackers v1.4. See separated Changelog * GraphOnTrackersV5 v0.6.2. See separated Changelog * Cardwall v0.4. See separated Changelog * Docman v2.22. See separated Changelog * Hudson v1.7. See separated Changelog * IM v1.5. See separated Changelog * Ldap v3.11. See separated Changelog * Statistics v0.9. See separated Changelog == Tuleap Development == * Allow randomization of execution of unit tests (to be sure that there is no inter dependencies) * Add a color reporter for tests execution in cli * Incorporate fusionforge stuff to be able to ease FF/Tuleap plugins compatibility. (Contrib Orange) * Add migration scripts to convert a Codendi 4.0 plateform (+ local customization) to a Tuleap one. * Add a plugin google_analytics which helps to track visits on a Tuleap instance. (Contrib Xerox) * Add a plugin orange that contains Orange specificities. * The default rpm package name is now Tuleap. * Add cgi-bin script for various statistics purpose. (Contrib Orange) * Cucumber now run some of our testlink test cases == SOAP == * SOAP API update to version 4.3, see src/www/soap/ChangeLog for details. Version 4.0.25 (Friday, December 23rd 2011) == Bug Fix == * Dot no longer allowed in project short names. * Prevent a user from being added to ugroup as many time as the button add is clicked.(contrib STMicroelectronics) * Deleted trackers are no longer exported.(contrib STMicroelectronics) * Even if not FRS admin, the project admin should have access like an FRS admin. (contrib STMicroelectronics) * Fix SLA #266: ROOT_DAILY event marked as running. Mysql reconnection mechanism was broken. == Plugins == * Docman v2.20. See separated Changelog * LDAP v3.9. See separated Changelog * Git v1.18. See separated Changelog * Tracker v0.8.7. See separated Changelog * GraphOnTrackersV5 v0.6.1. See separated Changelog == SOAP == * API version 4.2. See separated Changelog == CLI == * Version 1.5.0. See separated Changelog Version 4.0.24.1 (Friday, December 2nd 2011) == Bug Fix == * Fix json issue following upgrade to Prototype v1.7 and Scriptaculous v1.9 * Fix viewvc display issues (css where missing) == Plugins == * GraphOnTrackersv5 v0.5.1 See separated Changelog Version 4.0.24 - Wednesday, November 23rd 2011 == Bug Fix == * Make site admin able to retrieve users by their mail address (contrib STMicroelectronics) * Fix user realname output * Fix fatal error on wiki PageInfo == Plugins == New plugin: Cardwall v0.1. Updates: * Admindelegation v2.3. See separated Changelog * Docman v2.18. See separated Changelog * Docmanwatermark v2.3. See separated Changelog * ForumMML v2.6. See separated Changelog * Hudson v1.5. See separated Changelog * IM v1.4. See separated Changelog * LDAP v3.7. See separated Changelog * Tracker v0.8.5. See separated Changelog * GraphOnTrackersv5 v0.5. See separated Changelog * RequestHelp v1.3. See separated Changelog == Development == * First pass to make Tuleap test suite PHP 5.3 compliant * Upgrade to Prototype v1.7 and Scriptaculous v1.9 Version 4.0.23 - Thursday, October 27th 2011 == Enhancement == * Improve project deletion: project only visible by site admins, most services purged. (contrib STMicroelectronics) == Bug fix == * Fix regression on file download with IE and https. * Fix regression on tracker mail header (X-Codendi-Project) * Do not display [remove] button on a wiki page if it is referenced in the docman * Fix issue when there is no sparkline * Fix bug on CLI parameters when the param value contains '=' * Update documentation (fix typo and overuse of product name) * Update CLI doc (document big file behaviour). * Fix issue with ugroup deletion. * Fix fatal error when sending html email * Fix file download does not work anymore with IE7/8 & https * Fix regression on tracker mail headers * Force load of plugins ordered by installation order * Fix input validation in user preferences (contrib STMicroeletronics). == Plugins == * Hudson v1.4. See separated Changelog * GraphOnTrackerV5 v0.3. See separated Changelog * TrackerV5 v0.6 See separated Changelog * Docman v2.15. See Separated Changelog * LDAP v3.6. See separated Changelog. * ForumML v2.5. See separated Changelog. * Statistics v0.8. See separated Changelog. * Webdav v1.9. See separated Changelog == CLI == * Version 1.4.2. See separated Changelog. Version 4.0.22 - Friday, September 20th 2011 == Enhancement == * Improve usability of project history: (contrib STMicroelectronics) * Add the possibility to search into project history by: Event, Date, Value and User. * The result of the search could be exported in a CSV file without an offset. * Add a new wiget to display an image in a dashboard. * backlog #139: Wiki can be read by anonymous (if configured explicitely) but can never by written by anonymous. * backlog #11: HTML email notifications in Trackers (need to be activated in user preferences). == Bug Fix == * backlog #112: SVNAccessFile not properly updated after user removal * Add CSRF countermeasures * Don't send email notification to deleted & suspended users when change occurs on a wiki page. (contrib STMicroelectronics) * Fix bug with default permissions on FRS release creation through CLI (contrib STMicroelectronics) * Add the missing backlink to tuleap.net in the footer == Plugins == * WebDAV plugin v1.8. See separated ChangeLog * Statistics plugin v0.7. See separated ChangeLog * Tracker v5 plugin v0.4. See separated ChangeLog * GraphOnTracker v5 plugin v0.1. See separated ChangeLog * GraphOnTracker plugin v1.3. See separated ChangeLog * Request Help plugin v1.2. See separated ChangeLog * Docman v2.14. See separated ChangeLog * Hudson v1.3. See separated Changelog == Development == * Add lxc script utilities to unit-test, build, install and functional-test a Tuleap (thanks to Christian Bayle). * First boostrap of a Selenium test suite (thanks to STMicroelectronics) Version 4.0.21 - Thuesday, September 1st 2011 == Enhancement == * Improve rebuildability of Tuleap dependencies (contrib Christian Bayle). * One rpm package to install all the best of the platform (tuleap-all) * Start to remove deprecated stuff from SQL install values. == Bug Fix == * Fix issue with Tuleap theme stylesheet on IE7 * backlog #95: Forum message is no more reachable * Fix reference duplication issue * Fix issue with restricted/disabled plugins on service bar * Fix issue with slmbug and story trackers on fresh install == Plugins == * Tracker v5 plugin v0.1. See separated ChangeLog * Git plugin v1.15. See separated ChangeLog * IM plugin v1.2. See separated ChangeLog * Remove Salome plugin (deprecated, never maintained, never used). == Development == * Upgrade simpletest to 1.0.1 * Add a Config class to read configuration files (replaces $GLOBALS['sys_blabla'] usage) * DAO constructor paramaeter is now optionnal: The default DataAccess is CodendiDataAccess * DAO offers now updateAndGetLastId() which execute the sql statement and return the last inserted id Version 4.0.20 - Wednesday, 10th August 2011 == Enhancement == * Centralize "Code exchange policy link" in site configuration. * Improve rpm packaging: Tuleap needs customized packages (like jpgraph or mailman). Those packages were suffixed with .codendi which was not compatible with default yum package distribution. Custom packages are now known as "package-tuleap". * Improve Tuleap theme stylesheet == Bug fix == * Mass mail no longer mandate 'noreply' to be valid Tuleap user before to send mail. * Statistics plugin: Percentages in "Evolution Rate (%)" column are now correct. * When Tuleap loose connexion with MySQL server (mysql has gone away) attempt to reconnect or raise an exception if not possible. * Fix RPM dependencies management == Plugins == * New plugin "Request Help" to link Tuleap with BMC Remedy ticketing system (works only for STMicroeletronics). * Git plugin v1.14 See separated ChangeLog. * Webdav plugin v1.6. See separated ChangeLog * Docman plugin v2.11 See separated ChangeLog Version 4.0.19.1 - Tuesday, 28th June 2011 == Bug fix == * Fix regression in .SVNAccessFile management: special group '@members' is no longer discarded. == New features == * Improve themability of HomePage * New css selectors for each homepage elements and for news * "boxes" (Site stats, most active projects, etc) now looks like widgets * Site admin can hide news from front page (new config item in local.inc: 'sys_display_homepage_news' (backward compatible) * Site admin has more (and easier) control on the "welcome speech". It's no longer a string but a dedicted page (backward compatible) * New theme: Tuleap * Improve Site Admin experience * Rewrite front page with widget to have a better organization * Improve search of user and groups (more direct results and better output) * Site admin can now mass mail in HTML. == Plugins == * Git plugin v1.10 see separated ChangeLog. == Bug fix == * backlog #124814: Notification issue when documents are removed * Rename a UserGroup in project admin interface doesn't rename the corresponding group in SvnAccessFile * Empty UserGroup lead to error in viewvc * .xlsm not recognized by viewvc Version 4.0.18.2 - Monday, 23rd May 2011 == Bug fix == * Fix bug when moving FRS file into staging area with already deleted underlying file Version 4.0.18.1 - Friday, 20th May 2011 == Bug fix == * Avoid failure when sending message to people with several email addresses in several accounts * Fix "permission denied" behavior in docman * Make FRS delete & purge mechanism stronger on failure. Version 4.0.18 - Canceled == New Features == backlog #124820: Add history for membership delegation backlog #99968 : Add a "delete feature" for wiki attached file backlog #124821: Study/Deploy the possibility to send HTML notification backlog #130629: Add tests on the validity of the group delegated membership * Major improvements in installation process: * Modularity (mere mortal can decide not to install CVS) * Introduce dependencies on core in viewvc & mailman package so we can completely rely on dependency mechanism for install * Integrate forgeupgrade in installation and at plugins level * Take into account remote database * Autogeneration of passwords New version of CLI: 1.4.1, See separted ChangeLog == Bugfix == backlog #124819: Strip HTML in tracker notification backlog #124833: Upload an attached file in wiki with a difference in the filename case backlog #133850: FRS backend job abort if one of tasks fails * Fix bugs in subversion/viewvc when ldap is not installed on platform * Fix unit tests on x86-64 platforms + skip tests that depends of runkit when not available Version 4.0.17.2 - Thursday, 28th April 2011 == Bugfix == backlog #134453: Tracker notification mail contain unwanted text Version 4.0.17.1 - Thursday, 7th April 2011 == New Features == backlog #131538: Remove the switch to html in followup while double clicking Version 4.0.17 - Monday, 4th April 2011 (Canceled) == New Features == backlog #119877: Add more coverage for CVS Backend backlog #119371: Codendi testing; code coverage and function mock backlog #119788: Support several LDAP branches backlog #121192: Allow site admin to define a legal warning to users on registeration page backlog #113547: GIT hook to send a mail when pushing backlog #113546: Disk statistics per project visible at project level backlog #123246: Allow upload of the same deleted file == Bugfix == backlog #103794: Fix issue related to "item type" filter backlog #121173: URLVerification failures with anonymous URLs and webdav misconfiguration. backlog #121035: Project creation without full name backlog #120417: FRS deletion issues backlog #122410: Adding new property at the documentation is allowed with an empty name backlog #122406: Automatic account suspend no longer works backlog #122408: Wiki purge might have severe perf impact on all wiki usage backlog #103783: 'Paste' action should not appear in popup menu for the same cut document. backlog #121636: Issue in fields dependencies backlog #123243: Browse svn for project with "." in short name Version 4.0.16 - Tuesday, 18th January 2011 == New Features == backlog #113540: Support of 
 in tracker follow-up comment
                         * Follow-up comments can be submitted with usage of a subset
                           of HTML markups: p, br, a, img, ul, ol, li, cite, code, blockquote, strong, em, pre, b, i
                           This modification comes with a rich text editor in the  follow-up comment text area.
                           It's possible to add comment in HTML with SOAP and Codendi_CLI too (but no update yet).
	  Following tickets were addressed:
	  * feature #codex:101884: Improve the mail notification
	  * bug #codex:116656:     It is not possible to update the Release ChangeLog when we add a file in FRS (with CLI script)
	  * bug codexstn #13752:   Releases permissions checking don't take into account frs admin / project admin perms

                         * Fix wrong behaviour in CSV import/export that was leading to comments duplication.
                           Known limitations: It's not possible to import follow-up comments in HTML format yet.

                         * Improvement of Artifact edition UI:
                           * reduce space "lost" between tracker's toolbar and artifact info.
                           * rework of follow-up comments layout to improve readability.

	backlog #114221: File Release System provides means to check files consistency through md5 sums.
	                 * Codendi automatically computes md5 sum on files submitted in File Release System.
	                   If you submit a reference md5 sum, Codendi compares with the computed one and raise
	                   an error if it fails. Enhance the notification mail received while monitoring a package.

	                 * CLI update to 1.4.0, see cli/ChangeLog for details.

	                 * SOAP API update to version 4.1, see src/www/soap/ChangeLog for details.

        backlog #119336: Enlarge the project name field in Widget Show project admins

        == BugFix ==
        backlog #119270: Filter lost in Admin delegation widget: Show all projects
        backlog #119163: SQL error during codendi install
        backlog #114221: Still have admin privileges on tracker for non members
        backlog #114020: Artifact submitted with the value "None" at the mandatory field
        backlog #114005: Disable notifications when remove user from private project
        backlog #116806: Lost comment type when editing a follow up
        backlog #118054: The delete icon is not displayed with IE

Version 4.0.15 - Friday, 19th november 2010
        == Bugfix ==
        backlog #114802: Bad display of some codex pages

Version 4.0.14 - Monday, 8th November 2010
        == New features ==
        backlog #107554: Enhance the interface to request access from project admins
        backlog #110702: Improve PhpWiki look (font rendering, table of contents, colors, separators, etc)
        backlog #111780: RPM: dependency management for plugins & themes
        backlog #109427: Integration of docman in WebDAV iteration 1
        backlog #110673: Request to delete specific document's version(s)
        backlog #110676: Delayed document deletion

        == Bugfix ==
        backlog #112816: Blank page when trying to import a tracker created from "Scrum" template
        backlog #110672: Request to set the correct icon for office 2007 documents
        backlog #113539: Unable to search for exact pattern under 2 quotes

Version 4.0.13 - Wednesday, 29th September 2010
        == New features ==
        backlog #101486: Webdav integration for service FRS: Iteration 3 (Write access)
        backlog #108632: Integrate Git in disk usage stats & upstream diff reduction

        == Bugfix ==
        backlog #106503: Tracker import and export issue
        backlog #106404: Wrong link for summary page due to rename project operation
        backlog #106752: Fix bugs in RPM installation (munin, mailman, openfire)
        backlog #105989: Site admin cannot remove user's LDAP id
        backlog #97573 : After a document is moved, Codex shows a blank page
        backlog #107125: Error stack trace may disclose credentials
        backlog #99967 : Issue in tracker creation when shortname contains '_'
        backlog #106110: Reduce load on user table
        backlog #108287: LDAP synchro must take LDAP server down into account
        backlog #108176: Account are disabled after 3 month for people that only use SVN client
        backlog #109631: Tracker queries may overload the server

Version 4.0.12 - Tuesday, 14th September(Just to fix a bug regression)
        == Bugfix==
        backlog #108647: Assigned to shows None and unkown value

Version 4.0.11 - Monday, 9th August 2010
        == Bugfix==
        backlog #106228: Bad dispaly of privacy icon except with 'Dawn' theme

Version 4.0.10 - Thursday, 5th August 2010 (Canceled)
        == New features ==
        backlog #103963: Permission denied improvement: docman items
	backlog #104505: Installation based RPM
	backlog #104711: Highlight project privacy

	== Bugfix ==
	backlog #104684: Integrate LDAP daily sync in system event
	backlog #104715: Remove toggler.js reference in project links

Version 4.0.9 - Friday, 2nd July 2010
	== Upgrade/install procedure ==
	Switch to RPM distribution:
	1. Stop application
	[root@server]# service httpd stop
	[root@server]# service crond stop

	2. Remove codendi specific cron jobs, except backups (as root):
	[root@server]# crontab -e
	[root@server]# crontab -u codendiadm -e

	3. Add new yum repository
	[root@server]# vi /etc/yum.repos.d/codendi.repo
	[codendi]
	name=Codendi
	baseurl=ftp://codex.cro.st.com/pub/codex-cc/yum/codendi/4.0/i386
	enabled=1
	gpgcheck=0

	4. Install packages (replace XYZ by the name of the platform:
	stcodex, codexstn or steerforge)
	[root@server]# yum install forgeupgrade codendi_st codendi_st-customization-XYZ

	5. Restart applications
	[root@server]# service httpd start
	[root@server]# service crond start
	[root@server]# /etc/init.d/codendi start

	== New features ==
	This release introduce 2 main components:
	* ForgeUpgrade
	* Install of Codendi via RPMS.

	Other new features:
        * branch #102157: Improve permission denied error for private project and restricted user.

	== Bug fix ==
	* backlog #101260: Impossible to add user without username
	* backlog #97577:  Cannot remove project admin right
	* backlog #101500: Artifact permissions section disabled when using IE
	* backlog #101176: MS office 2007 documents are not supported with IE
        * backlog #103085: Impossible to set user to restricted