v2.1.8

This is a hotfix release addressing a standing bug in v2.
No actions are needed after pulling the changes.

What's Changed

• hotfix: Fix visibility issues for gallery submissions by @preimpression in #1082

Full Changelog: v2.1.7...v2.1.8

v2.1.7

This is a hotfix for today's earlier release addressing a security issue in v2. Once again, it is highly recommended to update as soon as possible.
No actions are needed after pulling the changes.

What's Changed

• Add numeric check to parse to prevent dropdowns from being parsed by @Ne-wt in #976

Full Changelog: v2.1.6...v2.1.7

v2.1.6

This is a hotfix release addressing a security issue in v2. It is highly recommended to update as soon as possible.
No actions are needed after pulling the changes.

What's Changed

• hotfix(security|requests): add middleware that parses post fields by @Ne-wt in #974

Full Changelog: v2.1.5...v2.1.6

v2.1.5

This is a hotfix release addressing a standing bug in v2.
No actions are needed after pulling the changes.

What's Changed

• fix(shops): validate quantity against purchase limit by @itinerare in #833

Full Changelog: v.2.1.4...v2.1.5

v2.1.4

This is a hotfix release addressing a standing bug in v2.
No actions are needed after pulling the changes.

What's Changed

• Bug(Shops): Round up shop purchase quantity by @AW0005 in #829

Full Changelog: v2.1.3...v2.1.4

v3.0.0-pre1

This is a pre-release version of v3.0.0. There are liable to be bugs. There will be significant conflicts for many sites. Please test, but test with due caution, and be ready to report any bugs that you encounter.

Required steps before updating:

• Ensure that you are using PHP 8.1 or later
• Install Imagemagick and related PHP extension (on Linux systems, usually imagemagick and php-imagick or similar)

Potential problem areas (manual intervention may be needed):

• Linters for the project's PHP and blade files were introduced during this version's development. This has resulted in many conflicts from formatting changes in addition to those from function changes, so this update is more demanding to merge than most. Please be careful, especially with highly modified sites.
• Composer's lock file is now tracked; if you do not use any additional packages tracked by composer, always use composer install to install packages now. If you do, use composer update first to update the lock file and make sure to commit it; this helps keep your local and production environments similar and reduces the risk of odd bugs due to dependency updates. After, if you make no changes to these dependencies, you should just use composer install.
• CharacterManager was deemed too large and some of its functions moved to DesignUpdateManager. If code relating to the moved functions was modified, you will need to relocate those changes to the new file when updating.
• LootSelect has been modified to be more extensible; possible options are now gathered within the view itself. This is not liable to require manual intervention as older methods should still work.
• The extension tracker's format has been updated. Rather than reading a single config file, it now reads one file per extension in config/lorekeeper/ext-tracker. Existing extension tracker information will need to be migrated to the new format.
• The bulk of user profile content has been moved to resources/views/user/_profile_content.blade.php; any pre-existing changes will need to be relocated there.
• New, more specific staff powers for existing site functions have been added. In your site's admin panel, be sure to add these powers to any ranks which need them.
• $dates on models was deprecated previously and, with the change to Laravel 10, has been fully removed; any models still using that property need to be updated to use casts.
• Some arrangements of orderByRaw() now error with the update to Laravel 10 and will need to be updated. See #746 for an example.

Additionally, various new functionality has been added. It's recommended to review the following config files:

• config/lorekeeper/settings.php
• config/lorekeeper/extensions.php
• config/lorekeeper/sites.php

...as well as site settings in your site's admin panel.

Commands to run:

composer install #or equivalent
php artisan update-lorekeeper-v3

After resolving merge conflicts and installing packages via Composer, it's also recommended to run composer lint to keep your code in line with the styling used for the core project.

If you encounter a bug:

Please report it either as an Issue here (preferred), or via the support Discord! Release branches like this exist to work out bugs before a version is fully released.

Please also ensure that you are using the most up-to-date version of release/v3.0.0, especially before reporting any bugs.

Once again, this is a pre-release version. There are liable to be bugs. Test at your own discretion and be ready to report any bugs that you encounter.

---

The following is a full log of changes:

• Show deleted comments and children of deleted comments by @Wormbie in #105
• Bump url-parse from 1.4.4 to 1.5.1 by @dependabot in #106
• Bump lodash from 4.17.19 to 4.17.21 by @dependabot in #107
• Bump browserslist from 4.4.2 to 4.16.6 by @dependabot in #116
• Bump dns-packet from 1.3.1 to 1.3.4 by @dependabot in #117
• Adding Discord Authentication by @Ne-wt in #118
• fixing regex for discord by @Ne-wt in #119
• fix undefined offset: 0 error by @Ne-wt in #121
• multiple file upload PR by @Ne-wt in #129
• Fix bug that occurs on items page in cases where the artist_url column is null by @Ne-wt in #131
• fix: syntax error by @itinerare in #138
• Bump tar from 4.4.8 to 4.4.15 by @dependabot in #141
• Bump path-parse from 1.0.6 to 1.0.7 by @dependabot in #142
• Feature: Scroll to top by @preimpression in #143
• Bump tar from 4.4.8 to 4.4.19 by @dependabot in #147
• Bump sass-loader from 7.1.0 to 12.1.0 by @dependabot in #154
• Update laravel/framework requirement from 8.0 to 8.58.0 by @dependabot in #156
• Bump jquery from 3.5.0 to 3.6.0 by @dependabot in #152
• Update spatie/laravel-honeypot requirement from ^2.3.0 to ^3.0.1 by @dependabot in #151
• Bump popper.js from 1.14.7 to 1.16.1 by @dependabot in #158
• Bump color-string from 1.5.3 to 1.6.0 by @dependabot in #148
• Bump vue from 2.6.7 to 2.6.14 by @dependabot in #153
• Bump url-parse from 1.4.4 to 1.5.3 by @dependabot in #150
• Bump laravel-mix from 4.0.14 to 5.0.9 by @dependabot in #157
• Bump tar from 4.4.8 to 4.4.19 by @dependabot in #149
• feat: Extension/admin logs (also merging of latest release/release-2.0.0) by @Ne-wt in #135
• Bump sass from 1.17.2 to 1.39.0 by @dependabot in #164
• feat(raffles): improve ticket entry form by @itinerare in #159
• Bump axios from 0.21.1 to 0.21.2 by @dependabot in #165
• Bump resolve-url-loader from 2.3.2 to 4.0.0 by @dependabot in #161
• Bump cross-env from 5.2.0 to 7.0.3 by @dependabot in #160
• Bump bootstrap from 4.3.1 to 4.6.0 by @dependabot in #162
• fix variable and add log to rejecting submission by @Ne-wt in #167
• Bump axios from 0.21.2 to 0.21.4 by @dependabot in #172
• Bump sass from 1.39.0 to 1.39.2 by @dependabot in #171
• Update laravel/framework requirement from 8.58.0 to 8.60.0 by @dependabot in #170
• Merge recaptcha (v3) by @itinerare in #169
• Bump sass from 1.39.2 to 1.41.1 by @dependabot in #177
• Update laravel/framework requirement from 8.60.0 to 8.61.0 by @dependabot in #176
• Bump sass from 1.41.1 to 1.42.1 by @dependabot in #180
• Bump axios from 0.21.4 to 0.22.0 by @dependabot in #190
• Update laravel/framework requirement from 8.61.0 to 8.62.0 by @dependabot in #189
• refactor(characters): move design update functions to own service by @itinerare in #188
• refactor: squash migrations by @itinerare in #186
• feat(raffles): optional ticket cap per individual by @itinerare in #184
• Update laravel/framework requirement from 8.62.0 to 8.63.0 by @dependabot in #195
• add queries/sorting to Sales by @JuniJwi in #193
• feat: implement news/sales rss feeds by @itinerare in #166
• refactor: move loot_select info fetching to views by @itinerare in #192
• Update laravel/framework requirement from 8.63.0 to 8.64.0 by @dependabot in #201
• Bump sass-loader from 12.1.0 to 12.2.0 by @dependabot in #200
• Bump axios from 0.22.0 to 0.23.0 by @dependabot in #198
• Bump sass from 1.42.1 to 1.43.2 by @dependabot in #199
• Minor fixes and updates by @corowne in #197
• chore(deps-dev): bump sass from 1.43.2 to 1.43.3 by @dependabot in #204
• chore(deps): update laravel/framework requirement from 8.64.0 to 8.67.0 by @dependabot in #203
• chore(deps-dev): bump bootstrap from 4.6.0 to 4.6.1 by @dependabot in #209
• chore(deps): update laravel/framework requirement from 8.67.0 to 8.68.1 by @dependabot in #208
• chore(deps-dev): bump sass from 1....

v2.1.3

This is a hotfix release addressing a small collection of standing bugs in v2.
After pulling the changes, run php artisan update-comment-types.

What's Changed

• fix(characters): use only public_path() in CharacterManager by @SpeedyD in #703
• fix(items): disable box button on submit by @Ne-wt in #710
• fix(sales): allow setting minimum for ota and xta by @SpeedyD in #702
• fix(comments): more robust handling for non user-user comments by @itinerare in #708

Full Changelog: v2.1.2...v2.1.3

v2.1.2

This is a hotfix for an issue affecting reports and comments. No action is necessary beyond pulling the changes.

What's Changed

• hotfix: Fixing error with lowercase "auth" by @preimpression in #523

Full Changelog: v2.1.1...v2.1.2

v2.1.1

This is a maintenance release updating the project to both support and require PHP 8.1.

• Update PHP on your web host
• Run composer update

You might also need to:

• Update your bash profile
• Ensure that your site's cron job is using the correct version of PHP

What's Changed

• chore(deps): bump loader-utils from 1.2.3 to 1.4.2 by @dependabot in #444
• chore(deps-dev): bump axios from 0.21.1 to 0.21.2 by @dependabot in #455
• chore(deps): bump minimatch from 3.0.4 to 3.1.2 by @dependabot in #454
• chore(deps): bump express from 4.16.4 to 4.18.2 by @dependabot in #461
• chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2 by @dependabot in #456
• chore(deps): bump json5 from 1.0.1 to 1.0.2 by @dependabot in #485
• PHP 8.1 upgrade by @itinerare in #535

Full Changelog: v2.1.0...v2.1.1

v2.1.0

This is an interim release primarily for the purposes of backporting Toyhou.se authentication from develop. Note that it is enabled and allowed for primary aliases by default, but must still be set up! For instructions, see here.

What's Changed

• Add deviantART's noai and noimageai directives by @corowne in #445
• Prioritised merge of TH OAuth2 compatibility from develop by @corowne in #443

Full Changelog: v2.0.0...v2.1.0