v1.8.5

What's Changed

• fix(1.x,approval): correct PostWasApproved event trigger condition by @rafaucau in #3925
• [1.x] Enable testing on PHP 8.3 by @imorland in #3933
• fix(1.x): textformatter 2.15 has breaking changes by @SychO9 in #3946
• feat: package manager improvements by @SychO9 in #3943
• [1.x] fix: Logout controller allows open redirects by @imorland in #3948

Full Changelog: v1.8.3...v1.8.5

v1.8.3

What's Changed

• [1.x] Conditional extender instantiation by @imorland in #3898
• [1.x] Console extender does not accept ::class attribute for Schedule by @imorland in #3900

Full Changelog: v1.8.2...v1.8.3

v1.8.2

v1.8.2

Fixed

• fix(1.x,suspend): suspended users can abuse avatar upload by @SychO9 in #3890
• fix:(1.x) missing compat exports by @imorland in #3888

Full Changelog: v1.8.1...v1.8.2

v1.8.1

v1.8.1

Fixed

• recover temporary solution for html entities in browser title (e72541e)
• custom contrast color affected by parents (577890d)
• reply placeholder wrong positioning (253a3d2)

v1.8.0

v1.8.0

Fixed

• (a11y) reply placeholder not accessible [#3793]
• (bbcode) highlight.js does not work after changing post content [#3817]
• (bbcode) localize quote wrote string [#3809]
• (mentions) mentions XHR fired even after mentioning is done [#3806]
• (package-manager) available core updates cause an error in the dashboard (fab71f2)
• (tags) not all tags are loaded in the permission grid [#3804]
• (tags) tag discussion modal filters with exact matches only after first index [#3786]
• (testing) always clear cache in integration test's tearDown [#3818]
• UserSecurityPage not exported (232618a)
• isDark() utility can receive null value [#3774]
• approving a post does not bump user comment_count [#3790]
• circular dependencies disable all involved extensions [#3785]
• color input overflowing the input box [#3796]
• deleting a discussion from the profile does not visually remove it [#3799]
• discussion page showing horizontal scroll on iOS [#3821]
• empty string displayed as SelectDropdown title [#3773]
• filter values are not validated [#3795]
• infinite scroll not initialized for notifications on big screens [#3733]
• notification subject discussion eager loading fails [#3788]
• null as 2nd param in preg_match is deprecated [#3801]
• unread count in post stream not visible [#3791]
• unreadable badge icon on certain colors [#3810]
• integrity constraint violation [#3772]

Changed

• (core,mentions) limit mentionedBy post relation results [#3780]
• (likes) limit likes relationship results [#3781]
• Change some methods from private to protected, to be able to extend the affected classes [#3802]
• Do not catch exceptions when testing Console commands [#3813]
• drop usage of jquery in install and update interfaces [#3797]
• extensibility improvements [#3729]
• major frontend JS cleanup [#3609]
• revert ineffective code for encoding of page title [#3768]
• speed up post creation time [#3808]

Added

• (mentions,tags) tag mentions [#3769]
• add delete own posts permission [#3784]
• add a trait to flush the formatter cache in tests [#3811]
• add user creation to users list page [#3744]
• cli command for enabling or disabling an extension [#3816]
• conditional extenders [#3759]
• provide old content to Revised event [#3789]

v1.7.1

v1.7.1

Fixed

• (tags) composer tag selection modal using wrong primary max & min numbers (abc9670)
• missing parameter names in token title translation. (#3752)
• hardcoded language strings in StatusWidget (#3754)
• hide developer tokens section in if there is nothing to display or create (#3753)
• improve sessions user UI on mobile (dd868ab)

v1.7.0

v1.7.0

Added

• (actions) allow running JS tests in GH actions [#3730]
• (core) PHP 8.2 Support [#3709]
• (jest) create jest config package for unit testing [#3678]
• (jest) mithril component testing [#3679]
• (phpstan) foundation for usage in extensions [#3666]
• (seo) Do not use h3 header for poster author in posts stream [#3732]
• (seo) Use h2 header for discussions on discussions list [#3731]
• (seo) shift h1 tag from logo to discussion title [#3724]
• (tags) admin tag selection component (reusable tag selection modal) [#3686]
• Admin User Search [#3712]
• access tokens user management UI [#3587]
• add display name column to admin users list [#3740]
• allow push additional items to the end of the poststream [#3691]
• allow using utf8 characters in tag slugs [#3588]
• expose queue driver, schedule status [#3593]
• expose {time} to eventPost data, fix renamed tooltip [#3698]
• frontend Model extender [#3646]
• global logout to clear all sessions, access tokens, email tokens and password tokens [#3605]
• improved page navigation for users list [#3741]
• introduce frontend extenders [#3645]

Fixed

• (mentions) correctly convert a 3 char. hex color to a 6 char. one [#3694]
• (mentions) post reply mention missing notification on approval [#3738]
• (phpstan) adapt phpstan package for extension use [#3727]
• (tags) clickable tag labels have underline [#3737]
• (tags) tag text color contrast [#3653]
• 3 digit hex color value in color input not supported [#3706]
• column id can be ambiguous in group filter with extensions [#3696]
• disallow certain dangerous LESS features (1761660)
• evaluated page title content [#3684]
• invalid translation key for scheduler dashboard [#3736]
• load actor.groups on showforumcontroller [#3716]
• make go-to-page input number-like [#3743]
• normal logout affects all sessions [#3571]
• permissions table on mobile is unusable [#3722]
• post dropdown opens all dropdowns in .Post-actions [#3675]
• typo in Formatter extender docblock [#3676]
• undefined showing in dropdown active title [#3700]

Changed

• (phpstan) enable phpstan in bundled extensions [#3667]
• Add missing states exports to compat.ts [#3683]
• Indicate cross-origin request in generic error message [#3669]
• Merge branch 'release/v1.6.2' (e0b9dcf)
• The negate field doesn't get used, which means you cant exclude tags [#3713]
• Update forum.less to fix the misalignment of the choose tags button [#3726]
• yarn audit-fix (8ddb0fe)
• yarn (ee1e04c)
• convert Dropdown components to TS [#3608]
• fix php 8.1 on preg_match 2nd argument being null, which also optimizes slightly (d7b9a03)
• improve group mentions parsing [#3723]
• prepare @flarum/jest-config for release (748cca6)
• remove use of deprecated phpunit assertion (3af0481)
• set flarum version to 1.7.0 for dev (2517bc0)
• update JS dependencies [#3695]

v1.6.3

Fixed

• Post mentions can be used to read any post on the forum without access control (ab1c868).
• Notifications can leak restricted content (d0a2b95).
• Any user including unactivated can reply in public discussions whose first post was permanently deleted (12f1411).
• (subscriptions) Post notifications not getting access checked (e5f0516).

v1.6.2

v1.6.2

Fixed

• XSS Vulnerability in core (#3684).

v1.6.1

Fixed

• JS dependencies update breaks some utilities.