workarea 3.5.12 → 3.5.17
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +383 -0
- metadata +10 -10
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 3a8cace53094c2ac105388ab7f3c4bbf854143b5db054146db26676d93b43c7e
|
4
|
+
data.tar.gz: 2b4ec90d8cf33f5032e8968c2000bd861ff7e12fec510cdda5e36f556b198958
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 40ce2e17562d044f89d5fbad27e5d612e3920dce129bdc7a184dc6ce6eab8638d3698e2fc1379e97fb5bb1d57005fb0d830d1aad2f536f114c1722fb5f66fc83
|
7
|
+
data.tar.gz: 335b5fbd76fe7483b283b52be962d04f862f112eb3c8cbc75c90141af6d900ec9c3b852f0aec44caffaa9b91a76d852c58193e0b23e02c3ed58fe4cd39f7a1a4
|
data/CHANGELOG.md
CHANGED
@@ -1,3 +1,386 @@
|
|
1
|
+
Workarea 3.5.17 (2020-08-19)
|
2
|
+
--------------------------------------------------------------------------------
|
3
|
+
|
4
|
+
* Fix missing release changes for CSV importing with embedded models
|
5
|
+
|
6
|
+
Trying to update an embedded model via CSV import with a release causes
|
7
|
+
an existing changeset for the root model to get destroyed. This happens
|
8
|
+
because the CSV import calls `#save` on the root, which has no changes
|
9
|
+
so it removes the changeset.
|
10
|
+
|
11
|
+
This patch fixes by iterating over the models the CSV row might affect
|
12
|
+
and calling `#save` on the embedded ones first (if necessary) to ensure
|
13
|
+
the changesets get correctly created and to avoid calling the save on
|
14
|
+
the root without changes which removes the existing changeset.
|
15
|
+
|
16
|
+
Ben Crouse
|
17
|
+
|
18
|
+
* Return Status of `Checkout#update`
|
19
|
+
|
20
|
+
For APIs and other consumers of the Checkout model, return a boolean
|
21
|
+
response from the `#update` method to signify whether the operation
|
22
|
+
succeeded or failed. This response is used directly in the API to return
|
23
|
+
an `:unprocessable_entity` response code when an update operation fails.
|
24
|
+
|
25
|
+
WORKAREA-253
|
26
|
+
|
27
|
+
Tom Scott
|
28
|
+
|
29
|
+
* Remove port from host configuration in installer
|
30
|
+
|
31
|
+
Ports aren't part of hosts, this causes problems when the value is used
|
32
|
+
like a true host.
|
33
|
+
|
34
|
+
This PR also fixes mailer links with missing ports as a result of this
|
35
|
+
change.
|
36
|
+
|
37
|
+
Ben Crouse
|
38
|
+
|
39
|
+
* Bump Chartkick to fix bundler audit warning
|
40
|
+
|
41
|
+
The vulnerability won't affect Workarea in use, but it'll be easier to fix builds doing this.
|
42
|
+
|
43
|
+
Ben Crouse
|
44
|
+
|
45
|
+
* Allow inquiry subjects to be localized
|
46
|
+
|
47
|
+
WORKAREA-238
|
48
|
+
|
49
|
+
Matt Duffy
|
50
|
+
|
51
|
+
* Update inquiry subject documentation
|
52
|
+
|
53
|
+
WORKAREA-238
|
54
|
+
|
55
|
+
Matt Duffy
|
56
|
+
|
57
|
+
* Remove order summary append point from mailer that is meant for storefront views
|
58
|
+
|
59
|
+
|
60
|
+
Matt Duffy
|
61
|
+
|
62
|
+
|
63
|
+
|
64
|
+
Workarea 3.5.16 (2020-07-22)
|
65
|
+
--------------------------------------------------------------------------------
|
66
|
+
|
67
|
+
* Add js module to allow inserting remote requests onto the page
|
68
|
+
|
69
|
+
|
70
|
+
Matt Duffy
|
71
|
+
|
72
|
+
* Configure Sliced Credit Card Attributes
|
73
|
+
|
74
|
+
To prevent an unnecessary decoration of the `Workarea::Payment` class,
|
75
|
+
the attributes sliced out of the Hash given to `Workarea::Payment#set_credit_card`
|
76
|
+
is now configurable in initializers. This same set of attributes is also
|
77
|
+
used in the `Users::CreditCardsController`, so the configuration will be
|
78
|
+
reused when users are attempting to add a new credit card to their
|
79
|
+
account.
|
80
|
+
|
81
|
+
WORKAREA-257
|
82
|
+
|
83
|
+
Tom Scott
|
84
|
+
|
85
|
+
* Setup PlaceOrderIntegrationTest in a Method
|
86
|
+
|
87
|
+
Currently, decorating the PlaceOrderIntegrationTest to edit the way its
|
88
|
+
set up (such as when adding an additional step) is impossible, you have
|
89
|
+
to basically copy everything out of the `setup` block and duplicate it
|
90
|
+
in your tests. Setup blocks should be methods anyway, so convert this to
|
91
|
+
a method and allow it to be decorated in host apps.
|
92
|
+
|
93
|
+
Tom Scott
|
94
|
+
|
95
|
+
* Fix `Hash#[]` Access On Administrable Options
|
96
|
+
|
97
|
+
Accessing administrable options on `Workarea.config` can produce
|
98
|
+
unexpected results if you don't use the traditional method accessor
|
99
|
+
syntax. For example, an admin field like this:
|
100
|
+
|
101
|
+
```ruby
|
102
|
+
Workarea::Configuration.define_fields do
|
103
|
+
field :my_admin_setting, type: :string, default: 'default value'
|
104
|
+
end
|
105
|
+
```
|
106
|
+
|
107
|
+
...will only be available at `Workarea.config.my_admin_setting`:
|
108
|
+
|
109
|
+
```ruby
|
110
|
+
Workarea.config.my_admin_setting # => "default value"
|
111
|
+
Workarea.config[:my_admin_setting] # => nil
|
112
|
+
```
|
113
|
+
|
114
|
+
To resolve this, the code for fetching a key's value from the database
|
115
|
+
has been moved out of `#method_missing` and into an override of `#[]`.
|
116
|
+
[Since the OrderedOptions superclass already overrides this][1] to call
|
117
|
+
`#[]`, we can safely move this code and still maintain all functionality.
|
118
|
+
|
119
|
+
[1]: https://github.com/rails/rails/blob/fbe2433be6e052a1acac63c7faf287c52ed3c5ba/activesupport/lib/active_support/ordered_options.rb#L41-L58
|
120
|
+
|
121
|
+
Tom Scott
|
122
|
+
|
123
|
+
* Fix race condition when merging user metrics
|
124
|
+
|
125
|
+
|
126
|
+
Ben Crouse
|
127
|
+
|
128
|
+
* Improve Content Area Select UX
|
129
|
+
|
130
|
+
Remove the current content name and replace it with a static label
|
131
|
+
indicating what the `<select>` menu to the right of it is selecting,
|
132
|
+
which is the current content area. This UI only displays when there are
|
133
|
+
multiple areas for a given `Content`.
|
134
|
+
|
135
|
+
WORKAREA-244
|
136
|
+
|
137
|
+
Tom Scott
|
138
|
+
|
139
|
+
* Changes to support package product kits
|
140
|
+
|
141
|
+
|
142
|
+
Matt Duffy
|
143
|
+
|
144
|
+
* Update inventory and fulfillment sku policy info text, allow appending
|
145
|
+
|
146
|
+
|
147
|
+
Matt Duffy
|
148
|
+
|
149
|
+
|
150
|
+
|
151
|
+
Workarea 3.5.15 (2020-07-07)
|
152
|
+
--------------------------------------------------------------------------------
|
153
|
+
|
154
|
+
* Patch Jbuilder to Support Varying Cache
|
155
|
+
|
156
|
+
Previously, admins were not able to see up-to-date data in API requests
|
157
|
+
due to the `#cache!` method in Jbuilder not being patched to skip
|
158
|
+
caching when an admin is logged in. To resolve this, Workarea now
|
159
|
+
applies the same patch to Jbuilder as it does to ActionView. Reading
|
160
|
+
from the cache is now skipped if you're logged in as an admin, and cache
|
161
|
+
keys are appended with the configured `Cache::Varies` just the same as
|
162
|
+
in regular Haml views.
|
163
|
+
|
164
|
+
WORKAREA-243
|
165
|
+
|
166
|
+
Tom Scott
|
167
|
+
|
168
|
+
* Bump rack version
|
169
|
+
|
170
|
+
Fixes CVE-2020-8184
|
171
|
+
|
172
|
+
Ben Crouse
|
173
|
+
|
174
|
+
* Add Permissions Append Point to User Workflow
|
175
|
+
|
176
|
+
This allows a plugin (such as API) to specify permissions categories when
|
177
|
+
admins are either editing or creating a user.
|
178
|
+
|
179
|
+
WORKAREA-240
|
180
|
+
|
181
|
+
Tom Scott
|
182
|
+
|
183
|
+
|
184
|
+
|
185
|
+
Workarea 3.5.14 (2020-06-25)
|
186
|
+
--------------------------------------------------------------------------------
|
187
|
+
|
188
|
+
* Reset Geocoder between tests
|
189
|
+
|
190
|
+
This ensures individual tests monkeying around with Geocoder config will
|
191
|
+
get restored before the next test runs.
|
192
|
+
|
193
|
+
Ben Crouse
|
194
|
+
|
195
|
+
* Fix indexing categorization changesets for deleted releases
|
196
|
+
|
197
|
+
A category can have orphan changesets (from deleted releases) that cause
|
198
|
+
an error when indexing the percolation document for that category.
|
199
|
+
|
200
|
+
Ben Crouse
|
201
|
+
|
202
|
+
* Disable previewing for already published, unscheduled releases
|
203
|
+
|
204
|
+
Due to the previewing in the search index, previewing a published and
|
205
|
+
unscheduled release can cause issues that require it to go through
|
206
|
+
scheduling to get reindexed.
|
207
|
+
|
208
|
+
Ben Crouse
|
209
|
+
|
210
|
+
* Use Display Name For Applied Facet Values
|
211
|
+
|
212
|
+
When rendering the applied filters, wrap the given facet value in
|
213
|
+
the `facet_value_display_name` helper, ensuring that the value rendered
|
214
|
+
is always human readable. This addresses an issue where if the applied
|
215
|
+
filter value is that of a BSON ID, referencing a model somewhere, the
|
216
|
+
BSON ID was rendered in place of the model's name.
|
217
|
+
|
218
|
+
WORKAREA-122
|
219
|
+
|
220
|
+
Tom Scott
|
221
|
+
|
222
|
+
* Fix Segments Workflow Setup Duplication
|
223
|
+
|
224
|
+
The setup form for the new custom segment workflow did not include the
|
225
|
+
ID of an existing segment (if persisted) in the form when submitted,
|
226
|
+
causing multiple duplicate segment records to be created when users go
|
227
|
+
back to the setup step in the workflow. None of the other steps are
|
228
|
+
affected because the ID appears in the URL, but the setup step does a
|
229
|
+
direct POST to `/admin/create_segments`, thus causing this problem.
|
230
|
+
|
231
|
+
WORKAREA-219
|
232
|
+
|
233
|
+
Tom Scott
|
234
|
+
|
235
|
+
* Fix index duplicates after a release is removed
|
236
|
+
|
237
|
+
When a release is deleted, its changes must be reindexed to fix previews
|
238
|
+
for releases scheduled after it. This manifests as duplicate products
|
239
|
+
when previewing releases.
|
240
|
+
|
241
|
+
Ben Crouse
|
242
|
+
|
243
|
+
* Fix Promo Code Counts in Admin
|
244
|
+
|
245
|
+
Previously, promo codes could only be generated once through the admin,
|
246
|
+
so rendering the count of all promo codes as the count requested to be
|
247
|
+
generated was working out. However, as CSV imports and API updates became
|
248
|
+
more widespread, this began to break down as the `#count` field would
|
249
|
+
have to be updated each time a new set of promo codes were added.
|
250
|
+
Instead of reading from this pre-defined field on the code list, render
|
251
|
+
the actual count of promo codes from the database on the code list and
|
252
|
+
promo codes admin pages.
|
253
|
+
|
254
|
+
WORKAREA-199
|
255
|
+
|
256
|
+
Tom Scott
|
257
|
+
|
258
|
+
* Fix indexing after a release publishes
|
259
|
+
|
260
|
+
Due to potential changes in the index, publishing a release can result
|
261
|
+
in duplicate products when previewing.
|
262
|
+
|
263
|
+
Ben Crouse
|
264
|
+
|
265
|
+
* Update queue for release reschedule indexing
|
266
|
+
|
267
|
+
This should be in the releases queue, which has top priority. This will
|
268
|
+
help decrease the latency to accurate previews.
|
269
|
+
|
270
|
+
Ben Crouse
|
271
|
+
|
272
|
+
|
273
|
+
|
274
|
+
Workarea 3.5.13 (2020-06-11)
|
275
|
+
--------------------------------------------------------------------------------
|
276
|
+
|
277
|
+
* Fix duplicate products in release previews for featured product changes
|
278
|
+
|
279
|
+
When featured product changes stack in a release, duplicates will show
|
280
|
+
when previewing. This is due to the product's Elasticsearch documents
|
281
|
+
missing changeset IDs for releases scheduled after the release that
|
282
|
+
document is for. This fixes by indexing those release IDs as well.
|
283
|
+
|
284
|
+
Note that this will require a reindex to see the fix immediately. But
|
285
|
+
there's no harm in letting it roll out as products gradually get
|
286
|
+
reindexed.
|
287
|
+
|
288
|
+
Ben Crouse
|
289
|
+
|
290
|
+
* Fix reindexing of featured product resorting within a release
|
291
|
+
|
292
|
+
Resorting featured products within a release causes an inaccurate set of
|
293
|
+
changes from Mongoid's perspective, since it is only looking at what's
|
294
|
+
live vs what's going to be released. The changes within the release
|
295
|
+
aren't represented. This can manifest as incorrect sorts when previewing
|
296
|
+
in the storefront.
|
297
|
+
|
298
|
+
Ben Crouse
|
299
|
+
|
300
|
+
* Add additional append points to admin system.
|
301
|
+
|
302
|
+
Adds append points to product details, product content, variant and inventory sku.
|
303
|
+
|
304
|
+
Jeff Yucis
|
305
|
+
|
306
|
+
* Bump Geocoder
|
307
|
+
|
308
|
+
This fixes an irrelevant bundler-audit CVE warning, and adds/updates a bunch of Geocoder lookup options. See https://github.com/alexreisner/geocoder/blob/master/CHANGELOG.md for more info.
|
309
|
+
|
310
|
+
Ben Crouse
|
311
|
+
|
312
|
+
* Fix releases shifting day on the calendar when scrolling
|
313
|
+
|
314
|
+
This was caused by legacy timezone code that's irrelevant since we
|
315
|
+
shifted to a fix server-side timezone for the admin.
|
316
|
+
|
317
|
+
Ben Crouse
|
318
|
+
|
319
|
+
* Add QueuePauser to pause sidekiq queues, pause for search reindexing
|
320
|
+
|
321
|
+
WORKAREA-236
|
322
|
+
|
323
|
+
Matt Duffy
|
324
|
+
|
325
|
+
* Add index for releasable fields on changets, correct order fraud index
|
326
|
+
|
327
|
+
WORKAREA-235
|
328
|
+
|
329
|
+
Matt Duffy
|
330
|
+
|
331
|
+
* Handle error from attempting to fetch missing S3 CORS configuration
|
332
|
+
|
333
|
+
WORKAREA-234
|
334
|
+
|
335
|
+
Matt Duffy
|
336
|
+
|
337
|
+
* Fix storefront indexing when releases are rescheduled
|
338
|
+
|
339
|
+
When releases get rescheduled, the storefront index can end up with
|
340
|
+
duplicate and/or incorrect entries. This adds a worker which updates the
|
341
|
+
index with minimal querying/updating.
|
342
|
+
|
343
|
+
Ben Crouse
|
344
|
+
|
345
|
+
* Don't assume promo codes for indexing discounts
|
346
|
+
|
347
|
+
A custom discount may be implemented that doesn't use promo codes.
|
348
|
+
|
349
|
+
Ben Crouse
|
350
|
+
|
351
|
+
* Bump rack-attack to latest version
|
352
|
+
|
353
|
+
This fixes rack-attack keys without TTLs set piling up in Redis. This has caused hosting problems.
|
354
|
+
|
355
|
+
Ben Crouse
|
356
|
+
|
357
|
+
* Bump Kaminari dependency to fix security alert
|
358
|
+
|
359
|
+
|
360
|
+
Ben Crouse
|
361
|
+
|
362
|
+
* Fix query caching in Releasable
|
363
|
+
|
364
|
+
When reloading a model to get an instance for a release, if the model
|
365
|
+
had already been loaded, a cached version of the model was returned.
|
366
|
+
This causes incorrect values on the instance you thought you were getting
|
367
|
+
for a release.
|
368
|
+
|
369
|
+
This first manifested as a bug where adding a featured product that
|
370
|
+
had a release change to make it active caused reindexing to make it
|
371
|
+
active but it shouldn't have been.
|
372
|
+
|
373
|
+
Ben Crouse
|
374
|
+
|
375
|
+
* Fix incorrect shipping options error flash message
|
376
|
+
|
377
|
+
A flash error incorrectly showed when the order doesn't require shipping,
|
378
|
+
and addresses are updated.
|
379
|
+
|
380
|
+
Ben Crouse
|
381
|
+
|
382
|
+
|
383
|
+
|
1
384
|
Workarea 3.5.12 (2020-05-26)
|
2
385
|
--------------------------------------------------------------------------------
|
3
386
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: workarea
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.5.
|
4
|
+
version: 3.5.17
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Ben Crouse
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-
|
11
|
+
date: 2020-08-19 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: workarea-core
|
@@ -16,56 +16,56 @@ dependencies:
|
|
16
16
|
requirements:
|
17
17
|
- - '='
|
18
18
|
- !ruby/object:Gem::Version
|
19
|
-
version: 3.5.
|
19
|
+
version: 3.5.17
|
20
20
|
type: :runtime
|
21
21
|
prerelease: false
|
22
22
|
version_requirements: !ruby/object:Gem::Requirement
|
23
23
|
requirements:
|
24
24
|
- - '='
|
25
25
|
- !ruby/object:Gem::Version
|
26
|
-
version: 3.5.
|
26
|
+
version: 3.5.17
|
27
27
|
- !ruby/object:Gem::Dependency
|
28
28
|
name: workarea-storefront
|
29
29
|
requirement: !ruby/object:Gem::Requirement
|
30
30
|
requirements:
|
31
31
|
- - '='
|
32
32
|
- !ruby/object:Gem::Version
|
33
|
-
version: 3.5.
|
33
|
+
version: 3.5.17
|
34
34
|
type: :runtime
|
35
35
|
prerelease: false
|
36
36
|
version_requirements: !ruby/object:Gem::Requirement
|
37
37
|
requirements:
|
38
38
|
- - '='
|
39
39
|
- !ruby/object:Gem::Version
|
40
|
-
version: 3.5.
|
40
|
+
version: 3.5.17
|
41
41
|
- !ruby/object:Gem::Dependency
|
42
42
|
name: workarea-admin
|
43
43
|
requirement: !ruby/object:Gem::Requirement
|
44
44
|
requirements:
|
45
45
|
- - '='
|
46
46
|
- !ruby/object:Gem::Version
|
47
|
-
version: 3.5.
|
47
|
+
version: 3.5.17
|
48
48
|
type: :runtime
|
49
49
|
prerelease: false
|
50
50
|
version_requirements: !ruby/object:Gem::Requirement
|
51
51
|
requirements:
|
52
52
|
- - '='
|
53
53
|
- !ruby/object:Gem::Version
|
54
|
-
version: 3.5.
|
54
|
+
version: 3.5.17
|
55
55
|
- !ruby/object:Gem::Dependency
|
56
56
|
name: workarea-testing
|
57
57
|
requirement: !ruby/object:Gem::Requirement
|
58
58
|
requirements:
|
59
59
|
- - '='
|
60
60
|
- !ruby/object:Gem::Version
|
61
|
-
version: 3.5.
|
61
|
+
version: 3.5.17
|
62
62
|
type: :runtime
|
63
63
|
prerelease: false
|
64
64
|
version_requirements: !ruby/object:Gem::Requirement
|
65
65
|
requirements:
|
66
66
|
- - '='
|
67
67
|
- !ruby/object:Gem::Version
|
68
|
-
version: 3.5.
|
68
|
+
version: 3.5.17
|
69
69
|
description: Workarea is an enterprise-grade Ruby on Rails commerce platform.
|
70
70
|
email:
|
71
71
|
- bcrouse@workarea.com
|