workarea 3.5.10 → 3.5.15
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +301 -31
- metadata +10 -10
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 9c1de4a77ebc26c0f22c4612756cd74ead315753d4aadc9f3757b3088facb7da
|
4
|
+
data.tar.gz: e65ba51df0b5b6a027e3e4e251df060b2d1b145bee8a3813515183498717da0c
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 12d89aacb5432dce53921ea244813da696403912c5982c66fe1eb7e21446981eda90df757a0c5a706e591131e55b30684ddb7cf9264fcbb33263207023ec5655
|
7
|
+
data.tar.gz: ca54ea778182b40a1831fa89232216e99785dea734bce28f5a8b8795544aa437e35ac16736152f65b89740ae0cf6c9d1c0d03de89a491321f614f37284f4b597
|
data/CHANGELOG.md
CHANGED
@@ -1,75 +1,346 @@
|
|
1
|
-
Workarea 3.5.
|
1
|
+
Workarea 3.5.15 (2020-07-07)
|
2
2
|
--------------------------------------------------------------------------------
|
3
3
|
|
4
|
-
*
|
4
|
+
* Patch Jbuilder to Support Varying Cache
|
5
5
|
|
6
|
-
|
7
|
-
|
6
|
+
Previously, admins were not able to see up-to-date data in API requests
|
7
|
+
due to the `#cache!` method in Jbuilder not being patched to skip
|
8
|
+
caching when an admin is logged in. To resolve this, Workarea now
|
9
|
+
applies the same patch to Jbuilder as it does to ActionView. Reading
|
10
|
+
from the cache is now skipped if you're logged in as an admin, and cache
|
11
|
+
keys are appended with the configured `Cache::Varies` just the same as
|
12
|
+
in regular Haml views.
|
13
|
+
|
14
|
+
WORKAREA-243
|
15
|
+
|
16
|
+
Tom Scott
|
17
|
+
|
18
|
+
* Bump rack version
|
19
|
+
|
20
|
+
Fixes CVE-2020-8184
|
8
21
|
|
9
22
|
Ben Crouse
|
10
23
|
|
11
|
-
*
|
24
|
+
* Add Permissions Append Point to User Workflow
|
12
25
|
|
13
|
-
|
14
|
-
|
26
|
+
This allows a plugin (such as API) to specify permissions categories when
|
27
|
+
admins are either editing or creating a user.
|
15
28
|
|
16
|
-
WORKAREA-
|
29
|
+
WORKAREA-240
|
30
|
+
|
31
|
+
Tom Scott
|
32
|
+
|
33
|
+
|
34
|
+
|
35
|
+
Workarea 3.5.14 (2020-06-25)
|
36
|
+
--------------------------------------------------------------------------------
|
37
|
+
|
38
|
+
* Reset Geocoder between tests
|
39
|
+
|
40
|
+
This ensures individual tests monkeying around with Geocoder config will
|
41
|
+
get restored before the next test runs.
|
17
42
|
|
18
43
|
Ben Crouse
|
19
44
|
|
20
|
-
*
|
45
|
+
* Fix indexing categorization changesets for deleted releases
|
21
46
|
|
22
|
-
|
47
|
+
A category can have orphan changesets (from deleted releases) that cause
|
48
|
+
an error when indexing the percolation document for that category.
|
23
49
|
|
24
50
|
Ben Crouse
|
25
51
|
|
26
|
-
*
|
52
|
+
* Disable previewing for already published, unscheduled releases
|
27
53
|
|
28
|
-
|
29
|
-
|
54
|
+
Due to the previewing in the search index, previewing a published and
|
55
|
+
unscheduled release can cause issues that require it to go through
|
56
|
+
scheduling to get reindexed.
|
30
57
|
|
31
58
|
Ben Crouse
|
32
59
|
|
33
|
-
*
|
60
|
+
* Use Display Name For Applied Facet Values
|
61
|
+
|
62
|
+
When rendering the applied filters, wrap the given facet value in
|
63
|
+
the `facet_value_display_name` helper, ensuring that the value rendered
|
64
|
+
is always human readable. This addresses an issue where if the applied
|
65
|
+
filter value is that of a BSON ID, referencing a model somewhere, the
|
66
|
+
BSON ID was rendered in place of the model's name.
|
67
|
+
|
68
|
+
WORKAREA-122
|
69
|
+
|
70
|
+
Tom Scott
|
71
|
+
|
72
|
+
* Fix Segments Workflow Setup Duplication
|
73
|
+
|
74
|
+
The setup form for the new custom segment workflow did not include the
|
75
|
+
ID of an existing segment (if persisted) in the form when submitted,
|
76
|
+
causing multiple duplicate segment records to be created when users go
|
77
|
+
back to the setup step in the workflow. None of the other steps are
|
78
|
+
affected because the ID appears in the URL, but the setup step does a
|
79
|
+
direct POST to `/admin/create_segments`, thus causing this problem.
|
80
|
+
|
81
|
+
WORKAREA-219
|
82
|
+
|
83
|
+
Tom Scott
|
84
|
+
|
85
|
+
* Fix index duplicates after a release is removed
|
34
86
|
|
87
|
+
When a release is deleted, its changes must be reindexed to fix previews
|
88
|
+
for releases scheduled after it. This manifests as duplicate products
|
89
|
+
when previewing releases.
|
35
90
|
|
36
91
|
Ben Crouse
|
37
92
|
|
38
|
-
*
|
93
|
+
* Fix Promo Code Counts in Admin
|
39
94
|
|
95
|
+
Previously, promo codes could only be generated once through the admin,
|
96
|
+
so rendering the count of all promo codes as the count requested to be
|
97
|
+
generated was working out. However, as CSV imports and API updates became
|
98
|
+
more widespread, this began to break down as the `#count` field would
|
99
|
+
have to be updated each time a new set of promo codes were added.
|
100
|
+
Instead of reading from this pre-defined field on the code list, render
|
101
|
+
the actual count of promo codes from the database on the code list and
|
102
|
+
promo codes admin pages.
|
40
103
|
|
41
|
-
|
104
|
+
WORKAREA-199
|
42
105
|
|
43
|
-
|
106
|
+
Tom Scott
|
44
107
|
|
45
|
-
|
108
|
+
* Fix indexing after a release publishes
|
46
109
|
|
47
|
-
|
110
|
+
Due to potential changes in the index, publishing a release can result
|
111
|
+
in duplicate products when previewing.
|
48
112
|
|
49
|
-
|
113
|
+
Ben Crouse
|
114
|
+
|
115
|
+
* Update queue for release reschedule indexing
|
50
116
|
|
117
|
+
This should be in the releases queue, which has top priority. This will
|
118
|
+
help decrease the latency to accurate previews.
|
51
119
|
|
52
120
|
Ben Crouse
|
53
121
|
|
54
|
-
* Change HashUpdate to use the setter instead of mutation
|
55
122
|
|
56
|
-
|
57
|
-
|
123
|
+
|
124
|
+
Workarea 3.5.13 (2020-06-11)
|
125
|
+
--------------------------------------------------------------------------------
|
126
|
+
|
127
|
+
* Fix duplicate products in release previews for featured product changes
|
128
|
+
|
129
|
+
When featured product changes stack in a release, duplicates will show
|
130
|
+
when previewing. This is due to the product's Elasticsearch documents
|
131
|
+
missing changeset IDs for releases scheduled after the release that
|
132
|
+
document is for. This fixes by indexing those release IDs as well.
|
133
|
+
|
134
|
+
Note that this will require a reindex to see the fix immediately. But
|
135
|
+
there's no harm in letting it roll out as products gradually get
|
136
|
+
reindexed.
|
58
137
|
|
59
138
|
Ben Crouse
|
60
139
|
|
61
|
-
*
|
140
|
+
* Fix reindexing of featured product resorting within a release
|
62
141
|
|
63
|
-
|
64
|
-
|
142
|
+
Resorting featured products within a release causes an inaccurate set of
|
143
|
+
changes from Mongoid's perspective, since it is only looking at what's
|
144
|
+
live vs what's going to be released. The changes within the release
|
145
|
+
aren't represented. This can manifest as incorrect sorts when previewing
|
146
|
+
in the storefront.
|
65
147
|
|
66
148
|
Ben Crouse
|
67
149
|
|
68
|
-
*
|
150
|
+
* Add additional append points to admin system.
|
151
|
+
|
152
|
+
Adds append points to product details, product content, variant and inventory sku.
|
153
|
+
|
154
|
+
Jeff Yucis
|
155
|
+
|
156
|
+
* Bump Geocoder
|
157
|
+
|
158
|
+
This fixes an irrelevant bundler-audit CVE warning, and adds/updates a bunch of Geocoder lookup options. See https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md for more info.
|
159
|
+
|
160
|
+
Ben Crouse
|
161
|
+
|
162
|
+
* Fix releases shifting day on the calendar when scrolling
|
163
|
+
|
164
|
+
This was caused by legacy timezone code that's irrelevant since we
|
165
|
+
shifted to a fix server-side timezone for the admin.
|
166
|
+
|
167
|
+
Ben Crouse
|
168
|
+
|
169
|
+
* Add QueuePauser to pause sidekiq queues, pause for search reindexing
|
170
|
+
|
171
|
+
WORKAREA-236
|
172
|
+
|
173
|
+
Matt Duffy
|
174
|
+
|
175
|
+
* Add index for releasable fields on changets, correct order fraud index
|
176
|
+
|
177
|
+
WORKAREA-235
|
178
|
+
|
179
|
+
Matt Duffy
|
180
|
+
|
181
|
+
* Handle error from attempting to fetch missing S3 CORS configuration
|
182
|
+
|
183
|
+
WORKAREA-234
|
184
|
+
|
185
|
+
Matt Duffy
|
186
|
+
|
187
|
+
* Fix storefront indexing when releases are rescheduled
|
188
|
+
|
189
|
+
When releases get rescheduled, the storefront index can end up with
|
190
|
+
duplicate and/or incorrect entries. This adds a worker which updates the
|
191
|
+
index with minimal querying/updating.
|
192
|
+
|
193
|
+
Ben Crouse
|
194
|
+
|
195
|
+
* Don't assume promo codes for indexing discounts
|
196
|
+
|
197
|
+
A custom discount may be implemented that doesn't use promo codes.
|
198
|
+
|
199
|
+
Ben Crouse
|
200
|
+
|
201
|
+
* Bump rack-attack to latest version
|
202
|
+
|
203
|
+
This fixes rack-attack keys without TTLs set piling up in Redis. This has caused hosting problems.
|
204
|
+
|
205
|
+
Ben Crouse
|
206
|
+
|
207
|
+
* Bump Kaminari dependency to fix security alert
|
208
|
+
|
209
|
+
|
210
|
+
Ben Crouse
|
211
|
+
|
212
|
+
* Fix query caching in Releasable
|
213
|
+
|
214
|
+
When reloading a model to get an instance for a release, if the model
|
215
|
+
had already been loaded, a cached version of the model was returned.
|
216
|
+
This causes incorrect values on the instance you thought you were getting
|
217
|
+
for a release.
|
218
|
+
|
219
|
+
This first manifested as a bug where adding a featured product that
|
220
|
+
had a release change to make it active caused reindexing to make it
|
221
|
+
active but it shouldn't have been.
|
222
|
+
|
223
|
+
Ben Crouse
|
224
|
+
|
225
|
+
* Fix incorrect shipping options error flash message
|
226
|
+
|
227
|
+
A flash error incorrectly showed when the order doesn't require shipping,
|
228
|
+
and addresses are updated.
|
229
|
+
|
230
|
+
Ben Crouse
|
231
|
+
|
232
|
+
|
233
|
+
|
234
|
+
Workarea 3.5.12 (2020-05-26)
|
235
|
+
--------------------------------------------------------------------------------
|
236
|
+
|
237
|
+
* Fix incorrect import errors
|
238
|
+
|
239
|
+
When an import fails due to a missing `DataFile::Import` document, the
|
240
|
+
`ProcessImport` worker will raise a nil error due to the ensure. This
|
241
|
+
fixes by ensuring the `DocumentNotFound` error gets raised.
|
242
|
+
|
243
|
+
Ben Crouse
|
244
|
+
|
245
|
+
* Remove caching from direct upload CORS requests
|
246
|
+
|
247
|
+
The caching continues to give us problems, and this isn't a high-traffic
|
248
|
+
part of the system so there isn't a practical need for it.
|
249
|
+
|
250
|
+
Ben Crouse
|
251
|
+
|
252
|
+
* Add paranoid fallback for segment metrics lookup
|
253
|
+
|
254
|
+
Although this should never happen, giving a user incorrect segments
|
255
|
+
could have important consequences. If the email cookie is removed or
|
256
|
+
missing for some other reason, it doesn't hurt to fallback to looking up
|
257
|
+
based on the user model (even though this is an additional query) when
|
258
|
+
we know they're logged in.
|
259
|
+
|
260
|
+
Ben Crouse
|
261
|
+
|
262
|
+
* Don't set a blank tracking email in checkout
|
263
|
+
|
264
|
+
Doing this has the potential to create an incorrect tracking email,
|
265
|
+
which could cause a visitor's segments to change in checkout.
|
266
|
+
|
267
|
+
Ben Crouse
|
268
|
+
|
269
|
+
|
270
|
+
|
271
|
+
Workarea 3.5.11 (2020-05-13)
|
272
|
+
--------------------------------------------------------------------------------
|
273
|
+
|
274
|
+
* Rename index to avoid conflicts in upgrade
|
275
|
+
|
276
|
+
We changed the abaondoned orders index so trying to create indexes after
|
277
|
+
upgrading will cause a conflict due to different indexes with the same
|
278
|
+
name. This renames the index to fix that.
|
279
|
+
|
280
|
+
Ben Crouse
|
281
|
+
|
282
|
+
* Fix comment subscription messaging
|
283
|
+
|
284
|
+
Also improves UI to move the secondary action of
|
285
|
+
subscribing/unsubscribing out of the main area.
|
286
|
+
|
287
|
+
Ben Crouse
|
288
|
+
|
289
|
+
* Correct/clarify Dragonfly configuration warning
|
290
|
+
|
291
|
+
|
292
|
+
Ben Crouse
|
293
|
+
|
294
|
+
* Remove extra order ID cookie
|
295
|
+
|
296
|
+
No need for the extra cookie if the order isn't persisted. Note this
|
297
|
+
doesn't actually affect functionality.
|
298
|
+
|
299
|
+
Ben Crouse
|
300
|
+
|
301
|
+
|
302
|
+
|
303
|
+
Workarea 3.5.10 (2020-04-28)
|
304
|
+
--------------------------------------------------------------------------------
|
305
|
+
|
306
|
+
* Fix bugs with per_page used in page calculation for search queries
|
307
|
+
|
308
|
+
Even though this shouldn't come from the outside world, it's easy and
|
309
|
+
best to ensure per_page is always a valid number.
|
310
|
+
|
311
|
+
Ben Crouse
|
312
|
+
|
313
|
+
* Skip localized activeness test when localized active fields are off
|
314
|
+
|
315
|
+
Fixes #421
|
316
|
+
|
317
|
+
Ben Crouse
|
318
|
+
|
319
|
+
* Fix accepting per_page param from outside world
|
320
|
+
|
321
|
+
Page size is the most important factor in performance for browse pages,
|
322
|
+
so we don't want these exposed to the outside world out-of-the-box.
|
323
|
+
|
324
|
+
Ben Crouse
|
325
|
+
|
326
|
+
* Update grammar for consistency
|
327
|
+
|
328
|
+
|
329
|
+
Ben Crouse
|
330
|
+
|
331
|
+
* Corrected no_available_shipping_options translation typo (#418)
|
332
|
+
|
333
|
+
|
334
|
+
JurgenHahn
|
335
|
+
|
336
|
+
* Fix fullfilment shipped mailer template
|
337
|
+
|
338
|
+
Fullfilment shipped mailer template is using cancellation header.
|
339
|
+
|
340
|
+
heyqule
|
341
|
+
|
342
|
+
* Improve visual design of most discounted products insight
|
69
343
|
|
70
|
-
This can happen in the middle of a test suite, causing apparently random
|
71
|
-
test failure. This freedom patch prevents fallbacks from autoloading.
|
72
|
-
We want to let the implementation make that decision.
|
73
344
|
|
74
345
|
Ben Crouse
|
75
346
|
|
@@ -96,7 +367,6 @@ Workarea 3.5.10 (2020-04-28)
|
|
96
367
|
Ben Crouse
|
97
368
|
|
98
369
|
|
99
|
-
|
100
370
|
Workarea 3.5.9 (2020-04-15)
|
101
371
|
--------------------------------------------------------------------------------
|
102
372
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: workarea
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.5.
|
4
|
+
version: 3.5.15
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Ben Crouse
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-
|
11
|
+
date: 2020-07-07 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: workarea-core
|
@@ -16,56 +16,56 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 3.5.
|
19
|
+
version: 3.5.15
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 3.5.
|
26
|
+
version: 3.5.15
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: workarea-storefront
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
30
30
|
requirements:
|
31
31
|
- - '='
|
32
32
|
- !ruby/object:Gem::Version
|
33
|
-
version: 3.5.
|
33
|
+
version: 3.5.15
|
34
34
|
type: :runtime
|
35
35
|
prerelease: false
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
37
37
|
requirements:
|
38
38
|
- - '='
|
39
39
|
- !ruby/object:Gem::Version
|
40
|
-
version: 3.5.
|
40
|
+
version: 3.5.15
|
41
41
|
- !ruby/object:Gem::Dependency
|
42
42
|
name: workarea-admin
|
43
43
|
requirement: !ruby/object:Gem::Requirement
|
44
44
|
requirements:
|
45
45
|
- - '='
|
46
46
|
- !ruby/object:Gem::Version
|
47
|
-
version: 3.5.
|
47
|
+
version: 3.5.15
|
48
48
|
type: :runtime
|
49
49
|
prerelease: false
|
50
50
|
version_requirements: !ruby/object:Gem::Requirement
|
51
51
|
requirements:
|
52
52
|
- - '='
|
53
53
|
- !ruby/object:Gem::Version
|
54
|
-
version: 3.5.
|
54
|
+
version: 3.5.15
|
55
55
|
- !ruby/object:Gem::Dependency
|
56
56
|
name: workarea-testing
|
57
57
|
requirement: !ruby/object:Gem::Requirement
|
58
58
|
requirements:
|
59
59
|
- - '='
|
60
60
|
- !ruby/object:Gem::Version
|
61
|
-
version: 3.5.
|
61
|
+
version: 3.5.15
|
62
62
|
type: :runtime
|
63
63
|
prerelease: false
|
64
64
|
version_requirements: !ruby/object:Gem::Requirement
|
65
65
|
requirements:
|
66
66
|
- - '='
|
67
67
|
- !ruby/object:Gem::Version
|
68
|
-
version: 3.5.
|
68
|
+
version: 3.5.15
|
69
69
|
description: Workarea is an enterprise-grade Ruby on Rails commerce platform.
|
70
70
|
email:
|
71
71
|
- bcrouse@workarea.com
|