workarea 3.4.40 → 3.4.45

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +226 -0
  3. metadata +11 -11
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: b08db93240b686ce618f7085a8fd9964c1f0fce18c581360f2071b1c9a5a64c8
4
- data.tar.gz: 8e7460613beec5cba3e2e7131c80e562a4c072a33087e58c9928b56fa4e66a71
3
+ metadata.gz: f8c578d3f6ae54da8b8626653682b8a6eb6e8cd482d54f124c620d6d4e1a0514
4
+ data.tar.gz: 9f78c55818d83fea3dcfd7df34210012d8d7f43abf79582bc9d91ecd070f476b
5
5
  SHA512:
6
- metadata.gz: c3f2f7511fe32a18f668e8f775451a3b90b96b2327fe7b571d588939884d5b552b28532b449ef9d6ce03ed886aa0dc1129acb95380ece9e6ccec08ae10769531
7
- data.tar.gz: ebd7e7fe34e367c343fc5c4da55a0d7535b2a5caac12aa7d09bdf555dfb6ba05c86c4ec78df590e15f422ee817eb388ea4f987ef3fc5149327892124583447f3
6
+ metadata.gz: 0ee6f81aa9e2e2b77d554ba54405da873ceebd9a06b2434d5a3bf1c21b7a3aa313ddfb3f5fa37fb94c2997a7d01d4c455d61384a92f5d67d3ef32e3ea2329197
7
+ data.tar.gz: 0f5f2b70ebe4c2414cec2acbaee5f0856778bbd688fcdf3b357a65d77a7e0714645cac655a3defe9f12bc63c65932df807aea5c074063e87bdfb42b91bbae607
data/CHANGELOG.md CHANGED
@@ -1,3 +1,229 @@
1
+ Workarea 3.4.45 (2021-01-20)
2
+ --------------------------------------------------------------------------------
3
+
4
+ * Improve password performance when running tests
5
+
6
+ Lowering the bcrypt cost lowers the time required to encrypt a password, at the
7
+ cost of increasing the speed at which an attacker can try to crack the password.
8
+ This is an acceptable tradeoff for improving performance of running tests. This
9
+ shaves about 5 minutes off of the admin tests.
10
+
11
+ Hat tip to Jeff Yucis for discovery.
12
+
13
+ Ben Crouse
14
+
15
+ * Bump redcarpet version to fix security warnings
16
+
17
+ Redcarpet released a security fix, so ensure using a version with that fix.
18
+
19
+ Redcarpet is only used to render help pages in the admin, so the vulnerability in Workarea is minimal.
20
+
21
+ Ben Crouse
22
+
23
+ * Improve image URL detection for dialog_buttons
24
+
25
+ This only worked if the URL had only one dot (before the file extension)
26
+ and no query parameters. Run it through the URL parser to provide more
27
+ robust handling.
28
+
29
+ Jonathan Mast
30
+
31
+
32
+
33
+ Workarea 3.4.44 (2020-11-25)
34
+ --------------------------------------------------------------------------------
35
+
36
+ * Bump version for release
37
+
38
+
39
+ Ben Crouse
40
+
41
+ * Bump jquery-rails to patch XSS vulnerabilities
42
+
43
+
44
+ Ben Crouse
45
+
46
+ * Add warning to inform developers why redirects aren't working locally
47
+
48
+ This has confused developers a couple of times, so hopefully adding a
49
+ warning will help.
50
+
51
+ Ben Crouse
52
+
53
+ * Fix Elasticsearch indexes when changing locales in tests
54
+
55
+ This ensures the proper search indexes are in place when you switch
56
+ locales for an integration test.
57
+
58
+ Ben Crouse
59
+
60
+ * Prevent Error on Missing Custom Template View Model Class
61
+
62
+ Typically, custom product templates use their own subclass of
63
+ `Workarea::Storefront::ProductViewModel`, but this isn't supposed to be
64
+ necessary if there's no custom logic that needs to be in the view model
65
+ layer. However, when developers tried to add a custom template without
66
+ the view model, they received an error. To prevent this, Workarea will
67
+ now catch the `NameError` thrown by `Storefront::ProductViewModel.wrap`
68
+ in the event of a custom product template not having a view model
69
+ defined.
70
+
71
+ WORKAREA-304
72
+
73
+ Tom Scott
74
+
75
+ * Fix Missing Instance Variable In Cart Items View
76
+
77
+ The `@cart` instance variable was only being conditionally defined if
78
+ `current_order.add_item` succeeded. This caused an error if `#add_item`
79
+ happens to fail when calling `POST /cart/items` from the storefront,
80
+ resulting in a 500 error. To prevent this error, the definition of this
81
+ variable has been moved above the condition.
82
+
83
+ WORKAREA-303
84
+
85
+ Tom Scott
86
+
87
+ * Shorten index name
88
+
89
+ Mongo will raise when index names exceed a certain length. For example,
90
+ having a long Workarea.config.site_name could cause this.
91
+
92
+ Ben Crouse
93
+
94
+ * Fix missing jump to positions breaking jump to
95
+
96
+ Ruby raises when nil is compared, so default these values.
97
+
98
+ Ben Crouse
99
+
100
+
101
+
102
+ Workarea 3.4.43 (2020-11-03)
103
+ --------------------------------------------------------------------------------
104
+
105
+ * Delete old user metrics after merging
106
+
107
+ This will ensure the consistency of user-based reports.
108
+
109
+ Ben Crouse
110
+
111
+ * Be more specific when matching reverts in changelogs
112
+
113
+ This change will allow starting commit messages with the word Revert
114
+ without the changelog task ignoring the commit.
115
+
116
+ Ben Crouse
117
+
118
+ * Add metrics explanation for users
119
+
120
+ This additional explanation is meant to communicate why customer
121
+ insights may occasionally mismatch with the orders card.
122
+
123
+ Ben Crouse
124
+
125
+ * Add Note To Category Default Sort Edit
126
+
127
+ The selected `default_sort` of a category will be always used in the
128
+ storefront. If the category contains featured products, this sort will
129
+ be labelled "Featured", and this might prove confusing to some admins.
130
+ To resolve this, add a note just below the dropdown indicating what will
131
+ occur when products are featured in the category.
132
+
133
+ WORKAREA-289
134
+
135
+ Tom Scott
136
+
137
+ * Include referrer in ending impersonation redirect fallbacks
138
+
139
+ When ending an impersonation, this changes to allow redirecting to the referrer
140
+ if the return_to parameter isn't present. Better UX for ending
141
+ impersonations while working in the admin.
142
+
143
+ WORKAREA-293
144
+
145
+ Ben Crouse
146
+
147
+ * Merge metrics when a user's email is updated
148
+
149
+ This ensures the old metrics info stays around after the email change.
150
+
151
+ WORKAREA-294
152
+
153
+ Ben Crouse
154
+
155
+
156
+
157
+ Workarea 3.4.42 (2020-10-14)
158
+ --------------------------------------------------------------------------------
159
+
160
+ * Prevent Clearing Out Navigable When Saving Taxons
161
+
162
+ The `WORKAREA.newNavigationTaxons` module was looking in the wrong place
163
+ for the selected navigable item, therefore the `selected` var would
164
+ always return `undefined`, causing the `navigable_id` param to be
165
+ blank every time. Fix this by querying for the correct DOM node (the
166
+ `[data-new-navigation-taxon]` element) and pulling the selected ID from
167
+ its data.
168
+
169
+ WORKAREA-297
170
+ Fixes #534
171
+
172
+ Tom Scott
173
+
174
+ * Patch RefererParser for Android URLs
175
+
176
+ Android App URLs have a special `android-app://` scheme that is rejected
177
+ by the currently released version of the `referer-parser` gem. The code
178
+ in this patch already exists in the master branch of the gem, but this
179
+ has not yet been released, and if Android users browse the storefront it
180
+ can generate an error when collecting referer information. In case a
181
+ referer cannot be parsed, Workarea also rescues the error so that
182
+ checkout requests are not blocked.
183
+
184
+ WORKAREA-295
185
+ Fixes #531
186
+
187
+ Tom Scott
188
+
189
+ * Try to clarify how to use search synonyms
190
+
191
+ There has been repeated confusion around why/how to use synonyms, so this is an attempt to clarify.
192
+
193
+ Ben Crouse
194
+
195
+
196
+
197
+ Workarea 3.4.41 (2020-09-30)
198
+ --------------------------------------------------------------------------------
199
+
200
+ * Rename Admin::ProductViewModel#options to avoid conflict with normal options method
201
+
202
+
203
+ Matt Duffy
204
+
205
+ * Improve clarity of discount verbiage
206
+
207
+ This hopes to address some recent confusion around how the discount
208
+ works.
209
+
210
+ Ben Crouse
211
+
212
+ * Fix safe navigation method calls
213
+
214
+ This will raise if the menu content is nil.
215
+
216
+ Ben Crouse
217
+
218
+ * Redirect back to the previous page after stopping impersonation
219
+
220
+ Currently we redirect to the user's show page, which can be pretty
221
+ disorienting.
222
+
223
+ Ben Crouse
224
+
225
+
226
+
1
227
  Workarea 3.4.40 (2020-09-16)
2
228
  --------------------------------------------------------------------------------
3
229
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: workarea
3
3
  version: !ruby/object:Gem::Version
4
- version: 3.4.40
4
+ version: 3.4.45
5
5
  platform: ruby
6
6
  authors:
7
7
  - Ben Crouse
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2020-09-16 00:00:00.000000000 Z
11
+ date: 2021-01-20 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: workarea-core
@@ -16,56 +16,56 @@ dependencies:
16
16
  requirements:
17
17
  - - '='
18
18
  - !ruby/object:Gem::Version
19
- version: 3.4.40
19
+ version: 3.4.45
20
20
  type: :runtime
21
21
  prerelease: false
22
22
  version_requirements: !ruby/object:Gem::Requirement
23
23
  requirements:
24
24
  - - '='
25
25
  - !ruby/object:Gem::Version
26
- version: 3.4.40
26
+ version: 3.4.45
27
27
  - !ruby/object:Gem::Dependency
28
28
  name: workarea-storefront
29
29
  requirement: !ruby/object:Gem::Requirement
30
30
  requirements:
31
31
  - - '='
32
32
  - !ruby/object:Gem::Version
33
- version: 3.4.40
33
+ version: 3.4.45
34
34
  type: :runtime
35
35
  prerelease: false
36
36
  version_requirements: !ruby/object:Gem::Requirement
37
37
  requirements:
38
38
  - - '='
39
39
  - !ruby/object:Gem::Version
40
- version: 3.4.40
40
+ version: 3.4.45
41
41
  - !ruby/object:Gem::Dependency
42
42
  name: workarea-admin
43
43
  requirement: !ruby/object:Gem::Requirement
44
44
  requirements:
45
45
  - - '='
46
46
  - !ruby/object:Gem::Version
47
- version: 3.4.40
47
+ version: 3.4.45
48
48
  type: :runtime
49
49
  prerelease: false
50
50
  version_requirements: !ruby/object:Gem::Requirement
51
51
  requirements:
52
52
  - - '='
53
53
  - !ruby/object:Gem::Version
54
- version: 3.4.40
54
+ version: 3.4.45
55
55
  - !ruby/object:Gem::Dependency
56
56
  name: workarea-testing
57
57
  requirement: !ruby/object:Gem::Requirement
58
58
  requirements:
59
59
  - - '='
60
60
  - !ruby/object:Gem::Version
61
- version: 3.4.40
61
+ version: 3.4.45
62
62
  type: :runtime
63
63
  prerelease: false
64
64
  version_requirements: !ruby/object:Gem::Requirement
65
65
  requirements:
66
66
  - - '='
67
67
  - !ruby/object:Gem::Version
68
- version: 3.4.40
68
+ version: 3.4.45
69
69
  description: Workarea is an enterprise-grade Ruby on Rails commerce platform.
70
70
  email:
71
71
  - bcrouse@workarea.com
@@ -97,7 +97,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
97
97
  - !ruby/object:Gem::Version
98
98
  version: '0'
99
99
  requirements: []
100
- rubygems_version: 3.0.3
100
+ rubygems_version: 3.2.3
101
101
  signing_key:
102
102
  specification_version: 4
103
103
  summary: The Workarea Commerce Platform