What's new in Gitblit 1.6.2
Oct 29, 2014
- Fixes:
- Fix French translation (pull request #224, ticket 210)
- Fix raw servlet trashing paths with spaces (ticket 211)
- Fix PluginManager not properly respecting --noverify (ticket 209)
New in Gitblit 1.6.0 (Jun 17, 2014)
- Fixes:
- Allow ticket responsible selection if anonymous push is enabled (issue 425, ticket 71)
- Fix failure to generate SSH server keys on ARM (issue 426, ticket 70)
- Fix flotr2 chart generation failure if a label contained a single-quote (ticket 77)
- Fix repository cache refresh after ref deletion/addition (issue 433, ticket 82)
- Fixed cache miss on repository model retrieval (pull request #185, ticket 83)
- Fixed GitBlit static singleton reference in localclone.groovy (issue 436, ticket 84)
- Removed Ticket responsible team permission exclusion (ticket 87)
- Fixed SSH daemon thread exhaustion (ticket 89)
- Fixed Ticket responsible selections not considering the AUTHENTICATED authorization control (ticket 91)
- Fixed invalid generated SSH url for port 22 (issue 444, ticket 98)
- Fix cloning repositories with `+` in their names. (revert pull request #136, issue 362, ticket 100)
- Fixed NPE in GitblitClient (ticket 102)
- Changes:
- Split the pages servlet into a raw servlet and a pages servlet. All raw links now use the raw servlet (issue 413, ticket 49)
- Drop deprecated --set-upstream syntax for -u (ticket 59)
- BARNUM: Prune deleted branches on fetch (git fetch -p) (ticket 60)
- BARNUM: Create ticket/N instead of topic/N for pt start N (ticket 61)
- Move repository deletion functions to the edit repository page AND allow deletion to be disabled (pull request #180, ticket 67)
- Update the Korean translation (pull request #184, ticket 69)
- Update the Dutch translation (pull request #191)
- Overhaul the EmptyRepositoryPage (ticket 73)
- Overhauled the edit repository page (ticket 76)
- Process bugtraq links in the ticket description and comments (ticket 78)
- Exclude personal repositories from the repositories list, by default (issue 419, ticket 95)
- Additions:
- Add My Tickets page (issue 215, ticket 15)
- Added CRUD functionality for Ticket Milestones (ticket 17)
- Implemented Ticket migration tool to move between backends (ticket 19)
- Added extension points for top nav links, root-level pages, repository nav links, user menu links, and http request filters (ticket 23)
- Added an editor panel in the user profile page to manipulate preferences (issue 108, issue 424, ticket 64)
- Added an editor panel in the user profile page to manipulate public SSH keys (ticket 64)
- Add FORK_REPOSITORY RPC request type (issue 371, pull request #161, ticket 65)
- Add object type (ot) parameter for RSS queries to retrieve tag details (pull request #165, ticket 66)
- Add setting to allow STARTTLS without requiring SMTPS (pull request #183)
- Simplified repository creation, offer simple README generation, and insertion of a pre-defined .gitignore file (ticket 76)
- Added an extension point for monitoring onStartup and onShutdown (ticket 79)
- Tag server-side merges when incremental push tags are enabled (issue 432, ticket 85)
- Add a user preference for the clone transport (ticket 90)
- Add setting to control default thread pool size for miscellaneous background tasks (ticket 92)
- Add Norwegian transation (pull request #186)
- Add German translation (pull request #192)
- Add Italian translation (pull request #196)
New in Gitblit 1.5.1 (May 13, 2014)
- Fixes:
- Fix subdirectory links in pages servlet (issue 411)
- Fix subdirectory navigation in pages servlet (issue 412)
- Fix bug in adding invalid or empty SSH keys (ticket 50)
- Fix forcing default locale to en or LANG_CC for web ui (ticket 51)
- Fix inconsistency with repository ownership permission checking (ticket 52)
- Prevent submission from New|Edit ticket page with empty titles (ticket 53)
- Ensure the repository model ref list is refreshed on ref creation or deletion (ticket 54)
- Fix case-sensitivity error in determining fork network (issue 420, ticket 62)
- Fix transport determination for SSH urls served on port 22 (issue 421, ticket 63)
- Changes:
- improve French translation (pull request #176)
- simplify current plugin release detection and ignore the currentRelease registry field
- Additions:
- added TortoiseGit client app menu (pull request #182)
- Dependency changes:
- update to Apache MINA/SSHD 0.11.0 (issue 410)
New in Gitblit 1.5.0 (Apr 18, 2014)
- Fixes:
- Repository mailing lists could not be reset from the Edit Repository page (issue 399)
- Fix intermittent NPE in determining commit date in RefModel (issue 401)
- Fix closing ticket on push by parsing commit messages for closes|fixes (issue 404)
- Fix diffstat display for a ticket with a pending submodule change (issue 407)
- Ensure the Lucene ticket index is updated on repository deletion.
- Fixed failure to properly determine hasTicket in RedisTicketService
- Fixed handling of pushing ticket branch deletions
- Changes:
- Switch from GoogleCharts to self-hosted flotr2 charts (issue 283, ticket 43, pull request #166)
- Specify the --dailyLogFile option for the Ubuntu and CentOS service scripts (issue 348)
- Improve logging for missing LDAP uid attribute when synchronizing (issue 394)
- The ticket close-on-push commit message regular expression is now configurable by a setting (issue 404)
- Redirect to summary page on edit repository (issue 405)
- Option to allow LDAP users to directly authenticate without performing LDAP searches (pull request #162)
- Replace JCommander with args4j to be consistent with other tools (ticket 28)
- Sort repository urls by descending permissions and by transport security within equal permissions
- Move to Java 7 & updated to Jetty 9.1.4
- dropped AJP support because it has been removed from upstream Jetty
- dropped settings: server.useNio, server.ajpPort, server.ajpBindInterface
- dropped GO parameters: --ajpPort, --useNio
- Additions:
- Added an SSH daemon with public key authentication (issue 369, ticket 6)
- Added beginnings of a plugin framework for extending Gitblit (issue 381, ticket 23)
- Added a French translation (pull request #163)
- Added a setting to control what transports may be used for pushes
- Expose JGit 3.x receive pack settings (issue 408)
New in Gitblit 1.4.1 (Mar 27, 2014)
- Security:
- Fix major authentication security hole when using external authentication providers (issue 387, ticket 35)
- Fixes:
- Fixed incorrect branch ref in Ticket page for symlinks (issue 383, ticket 32)
- Fix NPE in FileTicketService (issue 386, ticket 34)
- Watch list push parameters were now always honored (ticket 30)
- Watch list push parameters were not always validated (ticket 29)
- Truncated tag messages in the tag panel did not have proper tooltips (ticket 31)
- Fix merging GO runtime settings with command-line override settings (ticket 33)
- Fix ticket page IOBE on Ticket page when Gitblit is not serving repositories (ticket 27)
- Exclude ticket branches when forking a repository (ticket 26)
- Workaround pegdown bug and improve relative image path processing (ticket 24)
- Disable Ticket review functions in read-only repositories (mirror, frozen, etc)
- Fix incorrect git fetch instructions in Ticket email notifications
- Fix Ticket email notification recipients to include repository owners
- Fix Ticket propose instructions to branch from origin/{integrationBranch}
- Changes:
- Add closed status for milestones and abandoned status for tickets (ticket 25)
New in Gitblit 1.4.0 (Mar 11, 2014)
- Security:
- issue 361: Cookies were not reset on administrative password change of a user account. This allowed accounts with changed passwords to continue authenticating. Cookies are now reset on password changes, they are validated on each page request, AND they will now expire 7 days after generation.
- Fixes:
- Fixed incorrect tagger attribution in the dashboard (issue 276)
- Fixed support for implied SSH urls in web.otherUrls (issue 311)
- Fixed injection of unnecessary explicit CLONE permissions for a fork when users or teams already had implied regex permissions (issue 320)
- Bind LDAP connection after establishing TLS initialization (issue 343)
- Fixed NPE when attempting to add a permission without a registrant (issue 344)
- Invalidate all cached repository data on "clear cache" (issue 346)
- Fix chart failures when an apostrophe is in a user display name (issue 350, pull request #128)
- Fix exception in create repository when not selecting a garbage collection period (issue 366)
- Stop setting admin permission based on undocumented Redmine REST API behavior (issue 368)
- Fix compage page failure when a submodule is changed in the commit range (issue 375)
- Fix support url decoding with non-ascii characters (pull request #136)
- Fix potential NPE on removing uncached repository from cache
- Ignore the default contents of .git/description file
- Fix error on generating activity page when there is no activity
- Fix raw page content type of binaries when running behind a reverse proxy
- Fix author search links from compare pages
- Changes:
- Gitblit now rejects pushes to identified mirror repositories (issue 5)
- Personal repository prefix (~) is now configurable (issue 265)
- Refactored user services and separated authentication into providers (issue 281)
- Reversed line links in blob view (issue 309)
- Dashboard and Activity pages now obey the web.generateActivityGraph setting (issue 310)
- Do not log passwords on failed authentication attempts (issue 316)
- LDAP synchronization is now scheduled rather than on-demand (issue 336)
- Show displayname and username in palettes (issue 364)
- Updated default binary and Lucene ignore extensions
- Change the WAR baseFolder context parameter to a JNDI env-entry to improve enterprise deployments
- Removed internal Gitblit ref exclusions in the upload pack
- Removed "show readme" setting in favor of automatic detection
- README files are not shown on the summary page by default, this can be restored with web.summaryShowReadme
- Support plain text, markdown, confluence, mediawiki, textile, tracwiki, or twiki "readme" files
- Determine best commit id (e.g. "master") for the tree and docs pages and use that in links
- By default GO will now bind to all interfaces for both http and https connectors. This simplifies setup for first-time users.
- Removed docs indicator on the repositories page
- Removed the repository setting to enable Markdown document enumeration, this is now automatic and expanded
- Retrieve LDAP groups with dereferencing aliases (pull request #122)
- Revised committer verification to require a matching displayname or account name AND the email address
- Serve repositories on both /r and /git, displaying /r because it is shorter
- Eliminate HEAD from the blob, blame, and tree pages. That assumed a resource was available in HEAD and it may not be.
- Eliminate Gravatar profile linking.
- Moved Gitblit reflog from refs/gitblit/reflog to refs/meta/gitblit/reflog
- Updated Spanish translation
- Updated Simplified Chinese translation
- Updated Dutch translation
- Updated Korean translation
- Additions:
- Added color modes for the blame page (issue 2)
- Added an optional MirrorService which will periodically fetch ref updates from source repositories for mirrors (issue 5). Repositories must be manually cloned using native git and "--mirror".
- Added branch graph image servlet based on EGit's branch graph renderer (issue 194)
- Added option to render Markdown commit messages (issue 203)
- Added Ticket tracker and Patchset collaboration feature (issue 215)
- Added setting to control creating a repository as --shared on Unix servers (issue 263)
- Set Link: ; rel="canonical" http header for SEO (issue 304)
- Added raw links to the commit, commitdiff, and compare pages (issue 319)
- Support intradocument linking in Markdown content using [[WikiLinks]] syntax (issue 324)
- Support Markdown image links relative to the repository root (issue 324)
- Added filesystem write permission check (issue 345)
- Added GO launch parameter for redirecting logging to a rolling, daily log file (issue 348)
- Added settings to Windows authentication provider to permit/prohibit BUILTIN\Administrators from being Gitblit Admins (issue 354)
- Added canonical url setting for email notifications and web display
- Support rendering confluence, mediawiki, textile, tracwiki, and twiki markup documents
- Added setting to globally disable anonymous pushes in the receive pack
- Added a normalized diffstat display to the commit, commitdiff, and compare pages
- Added GO setting to automatically redirect all http requests to the secure https connector
- Automatically display common repository root documents as tabs on the docs page
- Support bugtraq configuration in collaboration with Syntevo, the regex.* config keys are now DEPRECATED
- Added FishEye hook script (pull request #137)
- Added Redmine Fetch hook script (issue 359)
- Added Subgit hook contributed by TMate Software
- Added function to retain a user account but prohibit authentication. This is an alternative to deleting a user account.
- Added setting to hide the top-level navigation header to facilitate embedding Gitblit in something else.
- Added RPC request to reindex tickets
- Dependency changes:
- updated to Jetty 8.1.13
- updated to JGit 3.3.0
- updated to Lucene 4.6.0
- updated to BouncyCastle 1.49
- replaced MarkdownPapers with pegdown 1.4.2
- added Dagger 1.1.0
- added Eclipse WikiText libraries for processing confluence, mediawiki, textile, tracwiki, and twiki
- added FontAwesome 4.0.3
- added Jedis 2.3.1
New in Gitblit 1.3.2 (Aug 23, 2013)
- Fixes:
- Fixed Gitblit Authority startup failures when using alternate user services (issue 280)
- Manually redirect after branch deletion (issue 282)
- Simplify when repository size is calculated to ensure we have one IF we want one (issue 295)
- Fixed anonymous LDAP connections (issue 297)
- Improved branch deletion-reflog interaction
- Encode page url parameters as UTF-8
- Encode filename for binary files on RawPage according to browser
- Added pptx extension for tree page icon lookup
- Fixed project links on dashboard page when web.mountParameters=false
- Additions:
- Add setting for maximum number of days of activity to that may be requested
- Added HtpasswdUserService to authenticate users against an htpasswd file
- Automatically maintain the .git/description file used by some other tooling
New in Gitblit 1.3.1 (Jul 26, 2013)
- Fixes:
- Gitblit-as-viewer with no repository urls failed to display summary page (issue 269)
- Fixed incorrect tagger in the dashboard pages (issue 276)
- Automatically decode ~ in repository names from git clients that encode ~ (issue 278)
- Fixed missing Keys class in WAR and Express builds
- Fixed missing model class dependencies in Gitblit Manager build
- Fix for IE10 compatibility mode
- Reset dashboard and activity commit cache on branch REWIND or DELETE
- Fixed bug with adding new local users with external authentication
- Fixed missing clone url on the empty repository page
- Fixed Ubuntu service script for LSB compliance
- Inserted "sleep 5" in Ubuntu & Centos bash script for service restart
- Changes:
- Use trash icon in Gitblit Reflog for branch and tag deletion
- Update Gitblit Reflog on branch deletion from web UI
- Updated Chinese translation
- Updated Dutch translation
- Updated Spanish translation
- Updated Korean translation
- Updated Brazilian Portuguese translation
- Additions:
- Added optional browser-side page caching using Last-Modified and Cache-Control for the dashboard, activity, project, and several repository pages (issue 274)
- Added a GET_USER request type for the RPC mechanism (issue 275)
- Added PAMUserService to authenticate against a local Linux/Unix/MacOSX server
New in Gitblit 1.3.0 (Jul 15, 2013)
- Release highlights include:
- integrated git daemon
- compare refs or commits page
- completed the Gitblit reflog (formerly pushlog) introduced in 1.2.1
- added new dashboard pages
- added a stars feature
- improved the repository url panel to show your access permission and to offer native app clone links
- improved navigation and theme
- customizable page header colors and logo
- recent activity commit caching to improve performance of dashboard and activity pages
- Windows authentication
- Salesforce.com authentication
- lots of bug fixes
- Security:
- Raw servlet was insecure. If someone knew the exact repository name and path to a file, the raw blob could be retrieved bypassing security constraints. (issue 198)
- Fixes:
- Use bash instead of sh in Linux/OSX shell scripts (issue 154)
- Fix NPE when getting user's fork without repository list caching (issue 182)
- Fix internal error on folder history links (issue 192)
- Fix NPE in repositories panel when viewing a federation proposal (issue 195)
- Fix NPEs when initializing the context on a servlet containers which returns a null contextFolder (issue 199)
- Fixed incorrect icon file name for .doc files (issue 200)
- Do not queue emails with no recipients (issue 201)
- Disable view and blame links for deleted blobs (issue 216)
- Fixed 1.2.x regression with individually symlinked repositories (issue 217)
- Fixed UTF-8 encoding errors in email notifications (issue 218)
- Fixed NPE in 1.2.1 Federation Client (issue 219)
- Fixed extracting Groovy scripts on Express installs (issue 220)
- Ensure Redmine url is properly formatted (issue 223)
- Use standard ServletRequestWrapper instead of custom wrapper (issue 224)
- Switch commit message back to a pre and ensure that it is properly escaped when combined with commit message regex substitution (issue 242)
- Fixed AddIndexedBranch tool --branch parameter (issue 247)
- Improve NPE handling for hook script enumeration (issue 253)
- Workaround missing commit information in blame page (JGit bug 374382, issue 254)
- Ignore orphan ".git" folder in the repositories root folder (issue 256)
- Fixed bug where a null permission was added to a user model on a repository rename when the permission had really been inherited from a team membership (issue 259)
- Fixed committer verification with merge commits (issue 264)
- Fixed bug in submodule repository linking (issue 266)
- Could not reset settings with $ or { characters through Gitblit Manager because they are not properly escaped
- Added more error checking to blob page and blame page
- Disable SNI extensions for client SSL connections
- Fixed prettify language extension loading
- Fixed index out of bounds exceptions when generating client certificates for a user when the user's table has been filtered
- Fixed AddindexedBranch tool when specifying the non-default branch.
- Fixed submodule diff display
- Changes:
- Retrieve summary and metric graphs from Google over https (issue 61)
- Persist originRepository (for forks) in the repository config instead of relying on parsing origin urls which are susceptible to filesystem relocation (issue 190)
- Improved error logging for servlet containers which provide a null contextFolder (issue 199)
- Improve Gerrit change ref decoration in the refs panel (issue 206)
- Display full commit message on commitdiff page (issue 258)
- Improved the repository url display. This display now indicates your repository access permission, per-protocol.
- Automatically encode/decode usernames for urls using %XX notation on space, @, and \
- Disable Gson's pretty printing which has a huge performance gain
- Properly set application/json content-type on api calls
- Make days back filter choices a setting
- Changed default days back filter setting to 7 days
- Set rel="nofollow" on compressed download links
- Improved page title
- Updated Polish translation
- Updated Japanese translation
- Additions:
- Added a ui for the ref log introduced in 1.2.1 (issue 177)
- Added weblogic.xml to WAR for deployment on WebLogic (issue 199)
- Support setting a custom header logo (issue 208)
- Support header color customizations (issue 209)
- Support username substitution in web.otherUrls (issue 213)
- Option to force client-side basic authentication instead of form-based authentication if web.authenticateViewPages=true (issue 222)
- Set author as tooltip of last change column in the repositories panel (issue 238)
- Setting to automatically create an user account based on an authenticated user principal from the servlet container (issue 246)
- Added WindowsUserService to authenticate users against Windows accounts (issue 250)
- Global and per-repository setting to exclude authors from metrics (issue 251)
- Added commit cache to improve Activity, Dashboard, and Project page generation times
- Added SalesForce.com user service
- Added simple star/unstar function to flag or bookmark interesting repositories
- Added Dashboard page which shows a news feed for starred repositories and offers a filterable list of repositories you care about
- Added client application menus for Git, SmartGit/Hg, SourceTree, Tower, GitHub for Windows, and GitHub for Mac
- Added GO http/https connector thread pool size setting
- Added a server setting to force a particular translation/Locale for all sessions
- Added smart Git Daemon serving. If enabled, git:// access will be offered for any repository which permits anonymous access. If the repository permits anonymous cloning, anonymous git:// clone will be permitted while anonmymous git:// pushes will be rejected.
- Option to automatically tag branch tips on each push with an incremental revision number
- Implemented multiple repository owners
- Optional periodic LDAP user and team pre-fetching & synchronization
- Added config setting to use SMTPS
- Added option to index all local branches in AddIndexedBranches tool
- Display name and version in Tomcat Manager
- FogBugz post-receive hook script
- Chinese translation
- Support --baseFolder parameter in Federation Client