From f9e02cfe81851f8a75c95d8eb22b92d5f989b83d Mon Sep 17 00:00:00 2001 From: richard Date: Tue, 9 Feb 2010 01:02:22 +0000 Subject: [PATCH] release stuff git-svn-id: http://svn.roundup-tracker.org/svnroot/roundup/roundup/trunk@4455 57a73879-2fb5-44c3-a270-3262357dd7e2 --- CHANGES.txt | 2 +- doc/announcement.txt | 89 ++++++++++++++++---------------------------- roundup/__init__.py | 2 +- 3 files changed, 34 insertions(+), 59 deletions(-) diff --git a/CHANGES.txt b/CHANGES.txt index 6b66a3c..13ddf0d 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -1,7 +1,7 @@ This file contains the changes to the Roundup system over time. The entries are given with the most recent entry first. -2010-XX-XX 1.4.12 (rXXXX) +2010-02-09 1.4.12 (r4450) Features: - Support IMAP CRAM-MD5, thanks Jochen Maes diff --git a/doc/announcement.txt b/doc/announcement.txt index 08fc839..51de8d8 100644 --- a/doc/announcement.txt +++ b/doc/announcement.txt @@ -1,64 +1,39 @@ -I'm proud to release version 1.4.11 of Roundup which fixes a number bugs -and closes a potential security hole. - -ALL tracker maintainers MUST read the upgrading documentation to make sure -the hole is fixed in their tracker. - -Other changes in this release: - -- Generic class editor may now restore retired items (thanks Ralf Hemmecke) -- Fix security hole allowing user permission escalation (thanks Ralf - Schlatterbeck) -- More SSL fixes. SSL wants the underlying socket non-blocking. So we - don't call socket.setdefaulttimeout in case of SSL. This apparently - never raises a WantReadError from SSL. - This also fixes a case where a WantReadError is raised and apparently - the bytes already read are dropped (seems the WantReadError is really - an error, not just an indication to retry). -- Correct initial- and end-handshakes for SSL -- Update FAQ to mention infinite redirects with pathological settings of - the tracker->web variable. Closes issue2537286, thanks to "stuidge" - for reporting. -- Fix some format errors in italian translation file -- Some bugs issue classifiers were causing database lookup errors -- Fix security-problem: If user hasn't permission on a message (notably - files and content properties) and is on the nosy list, the content was - sent via email. We now check that user has permission on the message - content and files properties. Thanks to Intevation for funding this - fix. -- Fix traceback on .../msgN/ url, this requests the file content and for - apache mod_wsgi produced a traceback because the mime type is None for - messages, fixes issue2550586, thanks to Thomas Arendsen Hein for - reporting and to Intevation for funding the fix. -- Handle OPTIONS http request method in wsgi handler, fixes issue2550587. - Thanks to Thomas Arendsen Hein for reporting and to Intevation for - funding the fix. -- Add documentation for migrating to the Register permission and - fix mailgw to use Register permission, fixes issue2550599 -- Fix styling of calendar to make it more usable, fixes issue2550608 -- Fix typo in email section of user guide, fixes issue2550607 -- Fix WSGI response code (thanks Peter Pöml) -- Fix linking of an existing item to a newly created item, e.g. - edit action in web template is name="issue-1@link@msg" value="msg1" - would trigger a traceback about an unbound variable. - Add new regression test for this case. May be related to (now closed) - issue1177477. Thanks to Intevation for funding the fix. -- Clean up all the places where role processing occurs. This is now in a - central place in hyperdb.Class and is used consistently throughout. - This also means now a template can override the way role processing - occurs (e.g. for elaborate permission schemes). Thanks to intevation - for funding the change. -- Fix issue2550606 (german translation bug) "an hour" is only used in - the context "in an hour" or "an hour ago" which translates to german - "in einer Stunde" or "vor einer Stunde". So "an hour" is translated - "einer Stunde" (which sounds wrong at first). Also note that date.py - already has a comment saying "XXX this is internationally broken" -- - but at least there's a workaround for german :-) Thanks to Chris - (radioking) for reporting. +I'm proud to release version 1.4.12 of Roundup which fixes a number bugs. If you're upgrading from an older version of Roundup you *must* follow the "Software Upgrade" guidelines given in the maintenance documentation. +This release includes: + +- Support IMAP CRAM-MD5, thanks Jochen Maes +- Proper handling of 'Create' permissions in both mail gateway (earlier + commit r4405 by Richard), web interface, and xmlrpc. This used to + check 'Edit' permission previously. See + http://thread.gmane.org/gmane.comp.bug-tracking.roundup.devel/5133 + Add regression tests for proper handling of 'Create' and 'Edit' + permissions. +- Fix handling of non-ascii in realname in the nosy mailer, this used to + mangle the email address making it unusable when replying. Thanks to + intevation for funding the fix. +- Fix documentation on user required to run the tests, fixes + issue2550618, thanks to Chris aka 'radioking' +- Add simple doc about translating customised tracker content +- Add "flup" setup documentation, thanks Christian Glass +- Fix "Web Access" permission check to allow serving of static files to + Anonymous again +- Add check for "Web Access" permission in all web templating permission + checks +- Improvements in upgrading documentation, thanks Christian Glass +- Display 'today' in the account user's timezone, thanks David Wolever +- Fix file handle leak in some web interfaces with logging turned on, + fixes issue1675845 +- Attempt to generate more human-readable addresses in email, fixes + issue2550632 +- Allow value to be specified to multilink form element templating, fixes + issue2550613, thanks David Wolever +- Fix thread safety with stdin in roundup-server, fixes issue2550596 + (thanks Werner Hunger) + Roundup requires python 2.3 or later (but not 3+) for correct operation. To give Roundup a try, just download (see below), unpack and run:: diff --git a/roundup/__init__.py b/roundup/__init__.py index 9c16664..3ef1919 100644 --- a/roundup/__init__.py +++ b/roundup/__init__.py @@ -68,6 +68,6 @@ much prettier cake :) ''' __docformat__ = 'restructuredtext' -__version__ = '1.4.11' +__version__ = '1.4.12' # vim: set filetype=python ts=4 sw=4 et si -- 2.30.2