v2.1.0

[2.1.0] - 2021-03-09

Bug Fixes and Other Changes

• Reworked Login Worflow to make it more smooth
• Fixed a security vulnerability where a JS Alert was used for a confirmation

Configuration Changes

• Reworking the login workflow adds a "delay" timer for needing to click through the banner in the UI Login Modal configuration.

{
  "ui": {
    "loginModal": {
        "hideFor": "480m"
  }
}

[2.0.0] - 2021-02-08

Major Features and Improvements

• Added Redis datastore for session management
• Added Reconnect logic for Mongo
• Added support for DIS (Dynamic Integration Service) so that external services
  can integrate authentication within MCF and store auth tokens in session.
• Updated Node version to 12.18.3 or higher.

Bug Fixes and Other Changes

• Separated MongoDB from the MCF docker file for a more mircoservice architecture.
• Added updates to the dockerfile.
• Fixed broken UI tests.
• Added 404 error page.

Configuration Changes

• With the addition of redis as the session store, there are new session
  configuration options.

{
  "session": {
    "redis_host": "REDIS_URL",
    "redis_port": "REDIS_PORT",
    "redis_db": "REDIS_DATABASE_NUMBER",
    "cookie": {
      "secure": false, // true for HTTPS, false for HTTP
      "httpOnly": true, // true for HTTP, false for HTTPS
      "sameSite": "lax"
    }
  }
}

• Added the commitURL configuration option for the mms-adapter commit
  functionality.

{
  "server": {
    "commitURL": "127.0.0.1" // This is the same host as MCF
  }
}

• Added the corsAllowList configuration option for cross origin resource
  sharing.

{
  "server": {
    "corsAllowList": [
      "http://localhost:9080",
      "http://127.0.0.1:9080",
      "http://127.0.0.1",
      "http://localhost"
    ]
  }
}

Execubots Release Candidate 2

[1.1.0] - 2020-04-28

Bug Fixes and Other Changes

• Fixed a bug where webhook custom data could not be updated
• Fixed a bug where webhooks could not be unarchived
• Added support for ids query parameter for all batch delete endpoints
• Updated 5xx and 6xx core tests to leverage the ids query parameter
  for all batch delete tests

[1.0.4] - 2020-03-13

Bug Fixes and Other Changes

• Fixed a bug preventing Webhook creation with custom data
• Added scripts/webpack-dev.config.js to support hot reload for React
  development. Running yarn watch in a separate terminal will transpile
  updates made to React component JSX files

[1.0.3] - 2020-02-28

Major Features and Improvements

• Refactored outgoing webhooks to simplify response input

Bug Fixes and Other Changes

• Fixed a bug causing elements with cross-references to not render properly
  in the UI
  Added "depth" option to the getElements() endpoint

[1.0.2] - 2020-02-14

Bug Fixes and Other Changes

• Implemented the fs-extra library to increase windows compatibility by
  reducing the number of bash commands used

[1.0.1] - 2020-01-31

Major Features and Improvements

• Implemented HTTP/2 in place of HTTPS/1.1. This requires no change for the
  current user
• Added a new artifact strategy for Amazon's S3
• Added the ability for system wide admins to reset a users password
• Added support for temporary passwords. Whenever a local user is created or
  has their password reset, they must change their password upon first login

Bug Fixes and Other Changes

• Fixed a bug causing the cursor to flicker while hovering over buttons in the
  UI
• Fixed a bug causing local plugins to not load properly on Windows
• Added an API endpoint which lists the filename and location of all artifact
  blobs on a project

Execubots Release Candidate 1

[4.0.0-RC1] - 2020-01-20

Bug Fixes and Other Changes

• Added CONTRIBUTING.md file for detailing expectations for code contribution
• Added 8.0 User Interface Overview page to flight manual
• Updated element edit modal in the UI

[0.10.5] - 2020-01-06

Bug Fixes and Other Changes

• Upgraded the minimum mongoose version due to a bug with one of its dependencies

[0.10.4] - 2019-12-20

Major Features and Improvements

• Added a new database strategy for Amazon's DynamoDB. At this time the strategy
  is still in beta and should NOT be used in production
• Added the ability to allow for plugin functions to be triggered
  synchronously before and after most API routes
• Added a new system-admin only API endpoint to retrieve system logs
• Added a configuration option to enforce unique project ids, allowing for
  better backwards compatibility with the MMS API
• Added support for a configuration option which allows for enforcing how old a
  password must be, before in can be reused
• Added a new log file for requests and responses to security related endpoints

Bug Fixes and Other Changes

• Added support for the immutable field in the mongoose-mongodb-strategy.js
• Fixed a bug where artifact documents were not cloned on creation of a branch
• Fixed a deprecation warning from the crypto library
• Added an ESlint plugin which enforces security related best practices
• Added an option to DELETE /artifacts and /artifacts/:artifactid
  called deleteBlob which if true, deletes the associated blob if no other
  artifact documents reference it

Configuration Changes

• With the addition of the DynamoDB database strategy, there are new
  configuration options when the DynamoDB strategy is selected. Please refer to
  the database README for configuration guidance
• Added the required string log.security_file, which specifies the name of
  the log file which stores requests/responses of security related endpoints

{
  "log": {
    "security_file": "security.log"
  }
}

• Added the optional number auth.oldPasswords which specifies the minimum
  number of different passwords before a password can be reused. If this
  option is not supplied, there is no limit.

{
  "auth": {
    "oldPasswords": 12
  }
}

• Added the optional boolean server.uniqueProjects which if true, enforces
  project IDs to be unique. Normally, two projects can have the same ID on
  different orgs, but if this option is true, attempting this will result in an
  error. This option helps support backwards compatibility with the MMS API

{
  "server": {
    "uniqueProjects": true
  }
}

[0.10.3] - 2019-12-06

Major Features and Improvements

• Added page in UI for managing Artifacts. Allows the user to create,
  edit and delete artifacts on different branches
• Added support for webhooks. Webhooks can be created at the organization,
  project, branch and server levels. Webhooks can be triggered internally
  through the Node.js event system or externally through a URL
• Added the ability to run Mocha tests written in plugins. Any tests defined
  in a tests directory at the root of the plugin can be run by running the
  command node mbee test --plugin {pluginName} where pluginName is the
  name of the plugin defined in the config

Bug Fixes and Other Changes

• Added the virtual field referencedBy to artifacts. If populated, returns
  all elements which reference the artifact
• Increased error testing coverage of branch and element controllers

Configuration Changes

• Added the optional field testOnStartup to plugins. If this boolean value
  is true, the tests in the plugin will be run when it is built at server
  startup. This option can be defined for each plugin that is installed

{
  "plugins": {
    "enabled": true,
    "plugins": {
      "sample-plugin": {
        "source": "path/to/sample/plugin",
        "testOnStartup": true
      },
      "test-plugin": {
        "source": "path/to/test/plugin",
        "testOnStartup": false
      }
    }
  }
}

[0.10.2] - 2019-11-22

Major Features and Improvements

• Abstracted out database migrations to support the database abstraction layer.
  Each database can now have migrations which are specific to that database, in
  addition to the system-wide database migrations
• Updated the Artifact schema by adding a size field, and changing the name of
  name to description
• Updated the Element schema by adding an artifact field which allows for
  referencing an artifact.

Bug Fixes and Other Changes

• Refactored the database abstraction layer by removing the need to support
  callback functions in the parameters and by adding the requirement for
  supporting the operation replaceOne in Model.bulkWrite()
• Removed usage of the MongoDB specifc keywords $unset, $push, $search and
  $meta
• Modified queries searching the permissions field to use the keyword $all.
  Usage of this keyword specifies that all contents in the query must be
  found in an array for a document to match

[0.10.1] - 2019-11-08

Major Features and Improvements

• Added batch CRUD operations for artifact documents
• Refactored the Database Abstraction layer by removing the required methods
  Schema.pre(), Schema.method() and Model.createDocument()
• Updated tests to use random test data generated from custom validators if
  custom validators are defined in the running config

Bug Fixes and Other Changes

• Fixed bug in UI where the selected branch did not persist between pages
• Removed the lean option from controllers

Release 0.8.1

Feature Enhancements

• Enhanced UI
  • Element Tree
  • Project View and Edit UI
  • User/Permission Management UI
• Element search / filtering

Bugfixes

• Fixed bug where file names of doc files caused NTFS incompatibility
• Fixed source field display for element side panel
• Refactor Session Model to remove MongoDB