- Updated: Requests containing URL parameters are now sanitised to prevent XSS attacks
- Upgraded: psr/container moved to version 2 to allow for PHP 8 package support (e.g. Slim/Pimple etc.)
- Fixed: More deprecated required parameter follows optional parameter warnings
- Fixed: Made uasort() php8 compatible
- Fixed: Deprecated required parameter follows optional parameter warnings
- Fixed: Fatal error when trying to use sizeof() function on a string value in PhpLog.php.
- Added: PHP Sessions now set secure flag if appropriate
- Added: Function getContentType() in Email.php to allow customisation of the Content-Type email header.
- Added: Reversed type hinting to Container.php to match interface - PSR package wasn't officially released yet.
- Fix@ PHP 7.0 support restored in RhubarbDateTime
- Added: Added type hinting to Container.php to match interface
- Added: StringTools::explodeIgnoringBlanks() added for symmetry with implode ignoring blanks
- Fixed: CsvStream was double UT8 encoding files that contained genuine UTF8 characters.
- Changed: RhubarbDateTime now tracks time validity (non-zero years) instead of comparing to an invalid time string.
- Fixed: Timezone changes applied to
0000-00-00times are now correctly identified as invalid times. - Added: Support for LMT>GMT switch in locale settings which results in a difference of 75 seconds between UTC and Europe/London time prior to 1847 https://www.timeanddate.com/time/change/uk/london?year=1847
- Fixed: Warning generated in CsvStream from continue used in switch. Bring setSender() in SimpleEmail.php in line with what was expected by the unit tests. Fix some tests.
- Fixed: Ensure session is stored before onLogOut() called in LoginProvider
- Added: Added function onUrlFragmentMatched() to offer and opportunity to augment behaviour of the URL Handler
- Updated: Composer update for latest dependencies
- Fixed: Ensure email history initialises to empty array
- Added: Sendable priority
- Added: Microsecond support to RhubarbDateTime
- Fixed: Missing dependancy on psr/container
- Added: PSR-11 support to bring Container into php-fig alignment
- Changed: CallableUrlHandler callback can now return a response directly
- Updated: JWT support
- Fixed: Restored PHP 5.6 compatibility
- Added: Ability to clear UnitTestingEmail history
- Added: Support for changing ReplyTo in SimpleEmail along the lines of Sender
- Fixed Remove time from date before processing timezone
-
Added: TempLocalStorageAssetCatalogueProvider for storing temp files.
If your project uses temp files + local storage use TempLocalStorageAssetCatalogueProvider If using local storage for permanent storage use the LocalStorageAssetCatalogueProvder as before -
Added: Information logging level
-
Added: Module version
- Added: Added pre-response filtering
- Fixed: Stopped session from outputting spurious session cookies
- Fixed: ExceptionHandler caused exception when error handler function hit
- Fixed: PhpSessionProvider caused warnings when invoked on the CLI
- Changed: don't handle notices as errors
- Changed: Turned display_errors off
- Changed: Added control when setting a Cookie to set the HTTP_Only and Secure flags
- Changed: Improved MonologLog formatting to pass more information.
- Changed: Improved DefaultExceptionHandler to pass the exception details better.
- Fixed: Fixed issue with TEMP_PATH not being set on Application objects
- Fixed: Fixed the issue with deployed not being creatable using relative paths
- Added: TEMP_DIR
- Changed: RelocationResourceDeploymentProvider is easier to extend
- Added: ResourceLoader now preloads resources, tested to work with apache http2 push.
- Added: CredentialsFailedException so that other login exceptions can be detected
- Changed: Moved LoginFailedException back as Module.RestAPI requires it
- Added: New CredentialsLoginProviderInterface so that other modules can expect a login provider that has a login method.
- Changed: PhpSessionProvider now sets HttpOnly to true
- Changed: Removed Login exceptions that are particular to specific login mechanisms.
- Added: Response method for setting headers from an array
- Changed: Added support for custom PUBLIC_ROOT_DIR to specify a top level folder for writing files to be served by the webserver
- Changed: Support for .htaccess with apache 2.4 where REDIRECT_URL is used in preference to SCRIPT_NAME
- Changed: RhubarbDateTime removed type declaration due to warning being produced when running PHP 7
- Changed: JSON serialising RhubarbDateTime with an invalid time will return null instead of an empty string
- Changed: HttpResponse::setCookie() allow for passing null to $expirySecondsFromNow for a session cookie
- Changed: HttpResponse::setCookie() doesn't call setcookie() if unit testing
- Fixed: PHP 7.1 support with conditional RhubarbDate definition (new $microseconds argument causing string errors)
- Added: String/Template now supports $keepPlaceHolders
- Added: CallableUrlHandler now passes parent handler into the callback
- Added: Enables support for MultiPartFormData PUT requests
- Fixed: Issue with how empty urls on URL handlers are handled.
- Fixed: Unit tests
- Added: UnitTestingEmailProvider now can be queried for multiple emails.
- Fixed: AssetUrlHandler no longer exits during unit testing.
- Fixed: Depending on circumentsance the AssetUrlHandler could cause additional headers to be output after content causing warnings and content length issues.
- Added: CsvStream has new method getLastItemSize() which returns the number of bytes the last read item was composed of Used to allow progress reports of tasks that eat through CSV files from a stream where only the stream length is known.
- Added: AssetCatalogueProvider::storeAsset has a new optional argument to allow the asset to be stored with a different name
- Added: AssetCatalogueProvider::storeAsset would detect CSV files as text/plain mime type. File extension detection overrides this to text/csv
- Added: Allowed overriding AssetUrlHandlers streaming behaviour
- Fixed: readHeaders() in CsvStream prevents reading headers twice
- Changed: Removed some direct require statements to allow manual website to load additional vendor autoloaders
- Added: CsvStream now supports being passed an external stream
- Added: Added body css class to HtmlPageSettings
- Fixed: Fix broken static url resource handler
- Fixed: Fix for static url handler not being nestable
- Changed: GreedyUrlHandler is now passed the parent url handler as the first argument if there is a parent handler
- Added: CallableUrlHandler
- Added: GreedyUrlHandler
- Added: NumericGreedyUrlHandler
- Added: Some logging when asset creation from file fails
- Added: WebRequest didn't document the server() call properly.
- Added: AssetUrlHandler now supports getMissingAssetDetails() to provide fall back files
- Added: NotFoundResponse added
- Change: AssetUrlHandler no longer uses attachment for content-disposition
- Fixed: Category was not being given to the asset providers correctly.
- Added: Assets concept added with AssetCatalogueProvider and LocalStorageAssetCatalogueProvider classes added.
- Added: Methods allowing removal of all/specific handlers from an Event
- Added: StringTools::camelCaseToSeparated, allowing change of CamelCase to e.g. snake_case or hyphenated-string
- Changed: Extra parameter to StringTools::parseTemplateString allowing you to leave placeholders that weren't matched by data
- Added: Email can now have a different reply to from the sender
- Changed: Trapped exceptions handled by generic UrlHandler on AJAX request will now just output the message without layout HTML
- Fixed: Call to HttpHeaders for an HTTP code. HttpHeaders class no longer exists, codes are in Request now
- Fixed: Email::getMimeDocument() now does something...
- Fixed: Fix for writeheaders in CsvStream
- Fixed: EncryptedSession wasn't encrypting
- Fixed: BinaryResponse used ob_clean() which threw notices if not in a buffering context
- Fixed: CsvStream::writeHeaders() is now public to allow writing empty CSV files with a header.
- Added: Support for automatically encoded XML responses
- Added: Support for text/xml http Accept headers
- Added: XmlRequest object
- Added: SimpleXMLTranscoder Helper class for replicating json_encode/json_decode functionality with XML
- Fixed: Request (get merged with post) data wasn't handled property
- Fixed: Reference to nonexistant $serverData in WebRequest
- Changed: Using file modified time on JS and CSS URLs deployed by RelocationResourceDeploymentProvider
- Changed: FileResponse and Application clear any level of output buffering before output
- Changed: Means to better set a default sender for emails
-
Changed: $staticFile in StaticResourceUrlHandler is now protected
-
Fixed: Dependency injection static memory issues in HttpClient
-
Changed: CURLOPT_SSL_VERIFYPEER should be true on all curl requests
-
Changed: A MultiPartFormDataRequest now provides a MimeDocument as it's payload
-
Fixed: MimeDocument RFC 1341 compliant boundary header detection
- Fixed: Header value case bug introduced in 1.1.5
- Added: HTTP request header case insensitivity support per RFC2616
- Fixed: Setting web request headers when getallheaders is unavailable
- Fixed: Unit tests running stand alone, without codeception
- Added: Read strategy for XML traversal and other XML node traversal fixes
- Fixed: Better handling of times and timezones in RhubarbDateTime
- Added: HttpResponseException can be given the origination request
- Added: Debug logging in PhpMailEmailProvider
- Changed: Application:current() will now create an empty application if one hasn't already been registered
- Removed: Removed conflicting AppSettings class in lieu of WebsiteSettings.
- Added: Means to remove shared array data from the application
- Fixed: Bug in shouldTrapException
- Added: WebsiteSettings settings class as a place to set a website's root URL.
- Changed: Container::instance() now throws ClassMappingException if the mapped class is abstract
- Bug: RelocationResourceDeploymentProvider not deploying if getDeployedUrls already called.
- Changed: Initialisation order of modules is now reversed
- Removed: boot.php
- Added: boot-rhubarb.php Does what boot.php used to do - includes auto-loader and sets working directory
- Added: boot-application.php Includes boot-rhubarb.php and then sets up the default application from either
settings/app.config.php or the Application class using the environment variable
rhubarb_app - Added: The Event object - a new approach to events
- Changed: Rhubarb no longer changes the working directory but defines an APPLICATION_ROOT_DIR constant instead.
- Added: codeception
- Added: A changelog!
- Fixed: Failing tests
- Added: build.xml
- Added: depending injection container
- Added: Application object
- Changed: Context to PhpContext
- Removed: All independant top level statics except for the new Application::current(). All other statics come back to this one allowing more than one Rhubarb application to be resident for unit testing.
- Changed: Providers to use the dependency injection container by way of a Provider trait
- Renamed: WebRequest::getUrlBase to WebRequest::createUrl
- Revised: A lot of documentation
- Renamed: DataStream to RecordStream
- Removed: HttpHeaders class and move functionality to the Response object
- Removed: send() method on Email and Sendable classes. Call SendableProvider::selectProviderAndSend() instead.
- Added: Support for Monolog
- Changed: Log::writeEntry is now passed the log level
- Removed: References to jquery in composer.json and ResourceLoader
- Removed: Test and function in LayoutModule to disable layouts for XHR requests - already handled in Application