You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CHANGES.txt
+9-6Lines changed: 9 additions & 6 deletions
Original file line number
Diff line number
Diff line change
@@ -3,15 +3,18 @@ Changes
3
3
4
4
OpenConferenceWare stable releases and changes included, with latest at top:
5
5
6
-
* Next
7
-
- FIXED "/events/EVENTID/proposals/stats" to use per-event caching.
6
+
* v0.20100408
7
+
- SECURITY flaw fixed: The buggy "restful_authentication" plugin used by OpenConferenceWare and OpenProposals let users without email addresses that had used the "remember me" feature to sometimes login as other users without email addresses that had also used the "remember me" feature during the same day. All known operators running this software were notified and sent patches in advance of this notification. Because authentication was handled by OpenID, a compromise could not be escalated and there was no password to steal, the worst thing an attacker could do was edit your profile and proposals.
8
+
- FIXED handling of multiple events: reworked layout, header, menu, favorites, tracks, etc.
9
+
- FIXED autoincrement id in the events table, which could prevent creation of new events.
8
10
- FIXED "rake setup:sample" to work with an empty database.
9
11
- FIXED exception handling to display clearer messages and correctly handle rendering errors in the layout.
10
-
- CHANGED Gem dependencies to use Bundler, install the "bundler" gem and then run "bundle install" to install the application's dependencies. If you're deploying via Capistrano, they will automatically be installed for you.
11
-
- CHANGED "bridgepdx" theme for 2010, it uses a new menu that provides a way to pick events and their associated data.
12
-
- Improved handling of multiple events: reworked layout, header, menu, favorites, tracks, etc.
13
-
- Added shared fragments, which are local files that can be included in different applications, e.g., a header to include in WordPress and wiki.
12
+
- FIXED "/events/EVENTID/proposals/stats" to use per-event caching.
13
+
- CHANGED Gem dependencies to use Bundler. You must install the "bundler" gem and run "bundle install" to install the application's dependencies. If you're using the Capistrano deploy task, install Bundler and its "deploy" task will automatically install the other dependencies.
14
+
- CHANGED "bridgepdx" theme for 2010, it uses a new menu that provides a way to choose events and their associated data.
15
+
- Added shared fragments to provide a common heaer for Rails app, WordPress blog and wikis, these are local files that are included into these different applications.
14
16
- Added task to update thumbnails: `rake paperclip:refresh CLASS=User`
17
+
- Added factory_girl library, factories and additional specs.
15
18
16
19
* v0.20100218
17
20
- FIXED event-related checks to use a proposal's event when possible,
0 commit comments