SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for gitblit-war-1.9.3-1.20.noarch.rpm :

* Tue May 24 2022 ecsos - Update to 1.9.3
* Security - Fix escaping control characters in config user service, resolving a security vulnerability. (issue #1410)- Changes from 1.9.2
* Fixes - Fix raw links broken for branches with a forward slash in the name (issue #1290, issue #1234, issue #813) - Fix markdown links to files in subfolders (issue #1358, PR #1392) - Fix high CPU load when saving huge users.conf file (PR #1364) - Fix broken encoding in Norwegian language file (issue #834, PR #1379) - Fix various issues (typos, broken and duplicate keys) in language properties files (PR #1380) - Fix mirrored HTTP(S) with a user name and password (issue #1059, PR #1381) - Fix relative time display being off on activity page (issue #800, issue #1248, PR #1382) - Fix URL encoding for links to raw view for files (issue #1375, PR #1383) - Resolve StackOverflowErrors on page serialization (issue #1011, PR #1141) - Fix double encoding links in Markdown/Wiki pages (issue #864) + Changes - Updated traditional Chinese translation (PR #1367) - Make it possible to call the Windows batch commands on the command line from a different folder (PR #1370) - Updated Japanese translation (PR #1398) + Additions - Add service scripts for FreeBSD (PR #1345) - Add Russian translation (PR #1343)
* Tue Jun 23 2020 ecsos - Update to 1.9.1
* fixes - Fixed broken password hash upgrade destroying existing stored passwords on update. - Fixed Linux service scripts to use \"-cp\" parameter instead of \"-jar\".- Changes from 1.9.0
* Highlights:
* Collapsible and nested repository groups on the repositories page
* Runs on Java 11
* Retrieve SSH keys from LDAP
* User language preference
* Option to merge ticket branches fast-forward or with merge commit
* security - Change authentication cookie to use random value instead of user information (issue 1063, pull request #1116) - Increase cookie security (pull request #1167)
* fixes - Fixed wrong HTML entity (&rt;) in HTML emails (pull request #1105) - Fixed Dutch translation (pull request #1130) - Changed LDAP binding strategies, to correctly find team membership (issue 833, issue 920, pull request #247, pull request #1149) - Fixed disabled links in the PagerPanel to really be disabled (pull request #1147) - Set \"can admin\" permission on LDAP users and teams correctly (pull request #1152) - Fixed user mentions in tickets (issue 985) - Fixed JEE Servlet 3.0 definition (issue 1132, pull request #1178) - Fixed proxy setup documentation (pull request #1183) - Fixed bug with reverse proxy when using a non-standard HTTPS port (issue 1114, pull request #1201) - Fixed wrapping of last column in tree page (pull request #1202) - Fixed NPE with unsupported transport URL protocol (pull request #1238) - Fixed unit tests by providing zipped local versions of external git repositories used for tests (issue 1275, pull request #1309) - Fixed NPE for symbolic links to repositories (issue 837, issue 891) - Fixed NPE for ticket milestones without due date (pull request #1278) - Fixed NPE with special characters in repository names (issue 999, pull request #1194) - Fixed NPE when stopping GitBlit - Fixed exception due to MAC error on SSH connections (issue 1282) - Fixed link to LDAP sample LDIF file in documentation - Fixed NPE on unknown git commands. (issue 1092) - Fixed NPE for URLs to non-existing documents (pull request #1324)
* changes - Updated traditional Chinese translation (pull request #1110) - Load commit cache in the background to improve start-up time (pull request #1140) - Improved logging when sending emails fails, to assist in analysis (pull request #1144) - Support customized IUserService that can access application settings (pull request #1171) - Added feedback for invalid input on user SSH key form (pull request #1239) - Encode email sender\'s name with UTF-8 (pull request #1206) - Made Gitblit run on Java 9+ (issue 1262, issue 1294, pull request #1266) - The JRE version is reported upon starting - Add the \"ext\" directory to the classpath on the command-line to start Gitblit and related programs. - Report back that git command \"clone.bundle\" is unsupported instead of simply failing
* additions - Added option to merge a ticket branch to the integration branch fast-forward or with a merge commit (pull request #1142) - Added SSH key manager that retrieves keys from LDAP directory (pull request #1160) - Updated Korean translation (pull request #1176) - The list of SSH authentication methods accepted by the server was made configurable (pull request #1159) - User language preference setting (pull request #1198) - Gitblit Authority sends user certificate email based on user preferred language (pull request #1198) - List branches over RPC for a given repository (pull request #1192) - Added Czech translation (pull request #1200) - Added setting to set HTTP idle timeout to prevent timeouts when cloning large repositories over HTTP(S) (pull request #1243) - Made the repository groups on the repositories page collapsible (issue 527, pull request #1224) - Made the repository groups on the repositories page nested (issue 725, pull request #1267) - Added PBKDF2 as password hashing algorithm. Other password storage choices are deprecated (issue 1166, pull request #1172)- Change Url to new location.- Change Source to new location.- Run spec-cleaner.
* Mon Jul 04 2016 ecsosAATTopensuse.org- update to 1.8.0
* security - Fixed bug in My Tickets which would expose ticket metadata (title, type, etc) for private repos. (pull request #1040)
* fixes - Fix HTML5 date input support (pull request #982) - Honor disable ticket repository setting (pull request #1045) - Fix paging on filestore items (pull request #1070) - Fix redirects on session loss (pull request #1087) - Fix always searching all repositories (pull request #1060) - Fix RPC list branches for requests without admin powers (pull request #994) - Fix baseURL handling when generating urls (pull request #1086) - Fix my tickets ignoring repo read permissions (pull request #1040) - Fix bug where jgit.packedGitOpenFiles was not properly set (pull request #1049) - Fix encoding of JavaDoc
* changes - Sort filestore by most recent first (pull request #1061) - Improve the document editor tablet support (pull request #1062) - Improve HTTP header authentication (pull request #980) - Improve authentication logging (pull request #981) - Improve logic of handling dot files in the raw servlet (pull request #983) - Change Jenkins Groovy script to support any protocol (pull request #986) - Remove empty catch blocks swallowing exceptions during authentication (pull request #979) - Various documentation improvements
* additions - Delete patchset feature (pull request #1039) - Support ticket references from tickets and commits on other branches (pull request #1048) - YouTrack Groovy push hook (pull request #1084)
* dependency changes - Prosemirror 0.6.1
* Wed Dec 02 2015 ecsosAATTopensuse.org- update to 1.7.1
* fixes - Fix exception when viewing a ticket with a patchset where the integration branch does not exist (issue 521, ticket 212) - Fix exception when deleting a repository using the FileTicketService (issue 522, ticket 213) - Do not inject team repository permissions as explicit user permissions when editing a user (issue 462, ticket 214) - Whitelist the target link attribute in the XSS filter (ticket 216) - Strip line breaks from pasted SSH keys (ticket 245) - Fix project sorting (pull request #287) - Fix Lucene indexing of tags (pull request #291) - Prevent session fixation for external authentication (pull request #908) - Encode email subject as UTF-8 (pull request #929) - Do not automatically trim passwords (pull request #932) - Fix nested repository detection in raw servlet (pull request #950)
* changes - Replaced Dagger with Guice (ticket 80) - Use release name as root directory in Gitblit GO artifacts (ticket 109) - Split gitblit.properties into gitblit.properties & defaults.properties (ticket 110) - Show team type in teams page (pull request #217, ticket 168) - Relocate the repository Delete button (ticket 225) - Improve diff performance by gracefully limiting large diffs (pull request #226) - Add granular settings to disable display of git transport urls (pull request #274) - Use author date to be consistent with other tools (pull request #919)
* additions - Add GitHub Octicons (ticket 106) - Support for chain-loading properties files (ticket 110) - Add Priority & Severity fields for tickets (pull request #220, ticket 157) - Add Maintenance ticket type (pull request #223, ticket 206) - Add commitdiff option to ignore whitespace (ticket 233) - Add configurable tab length for blob views (ticket 253) - Implement image diffs (pull request #229) - Add support for configurable HTTP proxy host/port in PluginManager (pull request #235) - Implement collapsed empty folder navigation (pull request #241) - Implement hashing to detect usermodel changes and reduce users.conf file I/O (pull request #246) - Add support for Kerberos5/GSS authentication to SSH (pull request #254) - Allow extraction of additional user metadata in request headers when using external or container authentication (pull request #255) - Allow custom host & port specification for advertised SSH urls (pull request #268) - Improve logging for fail2ban usage (pull request #296) - Initial implementation of Git-LFS (pull request #921) - Add \"all\" repositories parameter to Search page (pull request #935)
* new settings - web.displayUserPanel true - web.tabLength 4 - web.avatarClass - web.showHttpServletUrls true - web.showGitDaemonUrls true - web.showSshDaemonUrls true - web.advertiseAccessPermissionForOtherUrls false - web.maxDiffLinesPerFile 4000 - web.maxDiffLines 20000 - ssh.advertisedHost - ssh.advertisedPort - git.sshWithKrb5 - git.sshKrb5Keytab - git.sshKrb5ServicePrincipalName - git.sshKrb5StripDomain true - filestore.storageFolder ${baseFolder}/lfs - filestore.maxUploadSize -1 - plugins.httpProxyHost - plugins.httpProxyPort - plugins.httpProxyAuthorization - realm.container.autoAccounts.displayName - realm.container.autoAccounts.emailAddress - realm.container.autoAccounts.locale - realm.container.autoAccounts.adminRole
* dependency changes - Guice 4.0 (ticket 80, ticket 219) - SLF4j 1.7.12 - gson 2.3.1 - Freemarker 2.3.22 - Lucene 4.10.0 (ticket 159) - SSHD 1.0.0 - JGit 4.1.1 - Groovy 2.4.4 - Wicket 1.4.22 - BouncyCastle 1.52 - Pegdown 1.5.0 - Jetty 9.2.13
* Wed Oct 29 2014 ecsosAATTopensuse.org- insert BuildRequires: tomcat, so tomcat dirs not owned by this package.
* Wed Oct 29 2014 ecsosAATTopensuse.org- update to 1.6.2
* fixes - Fix French translation (pull request #224, ticket 210) - Fix raw servlet trashing paths with spaces (ticket 211) - Fix PluginManager not properly respecting --noverify (ticket 209)
* Wed Oct 29 2014 ecsosAATTopensuse.org- update to 1.6.1
* security - Sanitize page parameters, form fields, and markup for XSS vulnerabilities (issue 496, ticket 164) - Fix flash security risk (issue 498, ticket 165) - Fix XRF vulnerability (issue 500, ticket 166) - Prohibit new forks from inadvertently disclosing view-restricted contents (issue 495, ticket 167) - Restrict Gitblit\'s cookie to the context path (issue 507, ticket 187)
* fixes - Fix NPE when two repository names differ only in case (pull request #204, ticket 108) - Fix API documentation links (issue 449, ticket 111) - Fix internal error when specifying a blob url without a path (ticket 113) - Fix milestone queries for hyphentated names (ticket 115) - Fix duplicate repositories on dashboards (issue 454, ticket 117) - Fix lower-case project names in RepositoryNamePanel (issue 509, ticket 118) - Fix ticket notifications not sent when author doesn\'t have an email address (issue 423, ticket 132) - Fix regression in create-ticket-on-push & clarify reported explanation (ticket 135) - Fix redirects after ajax form submissions with Tomcat (issue 455, ticket 136) - Fix potential NPE in Raw servlet (ticket 137) - Fix Raw link path generation that does not respect web.forwardSlashCharacter (ticket 139) - Do not log query parameter passwords when Redmine authentication fails (pull request #215, ticket 466) - Fix NPE in RepositoryNamePanel for anonymous admins (issue 490, ticket 147) - Fix repo creation with initial commit when the creator does not have an email address (issue 458, ticket 149) - Fix Edit Repository page missing owners from owners list (issue 480, ticket 150) - Fix NPEs when handling tickets with non-existent milestones (ticket 152) - Quote all Lucene query args that have non-alphanumberic characters (issue 483, issue 469, ticket 153) - Fix 0-length files from raw servlet when file does not exist (issue 489, ticket 154) - Fix raw servlet failures with long project names (issue 478, ticket 163) - New ticket responsible selections are missing users with RW access (issue 476, ticket 170) - Fix NPE in TicketListPanel due to missing repository (issue 451, ticket 171) - Fix MigrateTickets failure for view-restricted repositories (issue 475, ticket 173) - Fix repository deletion bug where the Lucene ticket index was not purged (issue 468, ticket 174) - Fix Jenkins post-receive script repository url (pull request #219, ticket 175) - Fix potential NPE in retrieving a ticket comment (issue 503, ticket 179) - Fix bug in migrating tickets to the BranchTicketService (issue 474, ticket 183) - Fix failure to clear/delete a ticket topic and description (issue 505, ticket 188) - Fix cropped ticket status indicators (ticket 197) - Fix bug in raw servlet extracting repository out of the path (pull request #222, ticket 203) - Improve relative path determiniation using Java 7 Paths (issue 511, ticket 204)
* changes - Remove git.streamFileThreshold setting and documentation (ticket 119) - Update Korean translation (pull request #206, ticket 120) - Add additional documentation for web.canonicalUrl (pull request #205, issue 453, ticket 121) - Remove Wicket references from non-Wicket packages (ticket 129) - LDAP user accounts now clear email address when unset in LDAP (issue 456, ticket 134) - Update French translation (pull request #210, ticket 140) - Update authentication documentation (pull request #213, ticket 142) - Pretty print Perl modules (pull request #216, ticket 144) - Pretty print C/C++ headers (pull request #207, ticket 145) - Do not stamp raw servlet responses with cache-control headers (issue 489, ticket 148) - Treat UTF-9 and UTF-18 (both fake encodings) as UTF-8 (issue 486, ticket 151) - Allow Lucene indexing period to be configurable (ticket 161) - Do not display stacktraces for bad requests in servlets (issue 497, ticket 169) - Preserve branch ref in commits, tree, and docs navbar links (issue 501, ticket 176) - Disable Edit User Page permission checkboxes if admin/fork/ create permission is inherited (issue 196, ticket 177) - Explicitly declare page subclasses that reference commits (issue 503, ticket 180) - Explicitly attempt to register BouncyCastle as a JCE provider (ticket 194) - Treat .ico and .jpeg files as images (pull request #221, ticket 202)
* additions - Add support for GITBLIT_HOME as a -D system property (pull request #212, ticket 141, ticket 185) - Add support for GITBLIT_HOME as an environment variable (ticket 193) - Add install script for Fedora (pull request #207, ticket 146) - Add NO CHANGE REQUIRED ticket status (ticket 182)
* dependency changes - JGit 3.5.1 - Jetty 9.2.3 - SSHD 0.12.0
* Tue Jun 17 2014 ecsosAATTopensuse.org- update to 1.6.0
* fixes - Allow ticket responsible selection if anonymous push is enabled (issue 425, ticket 71) - Fix failure to generate SSH server keys on ARM (issue 426, ticket 70) - Fix flotr2 chart generation failure if a label contained a single-quote (ticket 77) - Fix repository cache refresh after ref deletion/addition (issue 433, ticket 82) - Fixed cache miss on repository model retrieval (pull request #185, ticket 83) - Fixed GitBlit static singleton reference in localclone.groovy (issue 436, ticket 84) - Removed Ticket responsible team permission exclusion (ticket 87) - Fixed SSH daemon thread exhaustion (ticket 89) - Fixed Ticket responsible selections not considering the AUTHENTICATED authorization control (ticket 91) - Fixed invalid generated SSH url for port 22 (issue 444, ticket 98) - Fix cloning repositories with `+` in their names. (revert pull request #136, issue 362, ticket 100) - Fixed NPE in GitblitClient (ticket 102)
* changes - Split the pages servlet into a raw servlet and a pages servlet. All raw links now use the raw servlet (issue 413, ticket 49) - Drop deprecated --set-upstream syntax for -u (ticket 59) - BARNUM: Prune deleted branches on fetch (git fetch -p) (ticket 60) - BARNUM: Create ticket/N instead of topic/N for pt start N (ticket 61) - Move repository deletion functions to the edit repository page AND allow deletion to be disabled (pull request #180, ticket 67) - Update the Korean translation (pull request #184, (ticket 69) - Update the Dutch translation (pull request #191) - Overhaul the EmptyRepositoryPage (ticket 73) - Overhauled the edit repository page (ticket 76) - Process bugtraq links in the ticket description and comments (ticket 78) - Exclude personal repositories from the repositories list, by default (issue 419, ticket 95)
* additions - Add My Tickets page (issue 215, ticket 15) - Added CRUD functionality for Ticket Milestones (ticket 17) - Implemented Ticket migration tool to move between backends (ticket 19) - Added extension points for top nav links, root-level pages, repository nav links, user menu links, and http request filters (ticket 23) - Added an editor panel in the user profile page to manipulate preferences (issue 108, issue 424, ticket 64) - Added an editor panel in the user profile page to manipulate public SSH keys (ticket 64) - Add FORK_REPOSITORY RPC request type (issue 371, pull request #161, ticket 65) - Add object type (ot) parameter for RSS queries to retrieve tag details (pull request #165, ticket 66) - Add setting to allow STARTTLS without requiring SMTPS (pull request #183) - Simplified repository creation, offer simple README generation, and insertion of a pre-defined .gitignore file (ticket 76) - Added an extension point for monitoring onStartup and onShutdown (ticket 79) - Tag server-side merges when incremental push tags are enabled (issue 432, ticket 85) - Add a user preference for the clone transport (ticket 90) - Add setting to control default thread pool size for miscellaneous background tasks (ticket 92) - Add Norwegian transation (pull request #186) - Add German translation (pull request #192) - Add Italian translation (pull request #196)
* new settings web.allowDeletingNonEmptyRepositories true web.includePersonalRepositories false mail.starttls false execution.defaultThreadPoolSize 1 git.gitignoreFolder ${baseFolder}/gitignore
* dependency changes - Update to javax.mail 1.5.1 (issue 417, ticket 58)
* Wed Jun 04 2014 ecsosAATTopensuse.org- initial version 1.5.1
  
ICM