Alf.io 2.0-M4.RC4

Alf.io 2.0-M4.RC4 (2021-12-18)

This release contains a security fix for the following CVEs:

• CVE-2021-45105
• CVE-2021-45046 (already fixed in 2.0-M4.RC3)
• CVE-2021-44228 (already fixed in 2.0-M4.RC2)

update is strongly recommended

BREAKING CHANGES

2.0-M4.RC1 introduced some breaking changes in the database schema.
If you're updating from 2.0-M3, it is strongly suggested to perform a full backup of your database before installing it, so that if anything goes wrong you can rollback to the latest 2.0-M3

Alf.io 2.0-M3-2112-1

Alf.io 2.0-M3-2112-1 (2021-12-15)

This release contains a security fix for the following CVEs:

• CVE-2021-45046
• CVE-2021-44228 (already fixed in 2.0-M3-2112)

update is strongly recommended

Alf.io 2.0-M4.RC3

Alf.io 2.0-M4.RC3 (2021-12-15)

This release contains a security fix for the following CVEs:

• CVE-2021-45046
• CVE-2021-44228 (already fixed in 2.0-M4.RC2)

update is strongly recommended

This release fixes also some errors in the migration files.

BREAKING CHANGES

2.0-M4.RC1 introduced some breaking changes in the database schema.
If you're updating from 2.0-M3, it is strongly suggested to perform a full backup of your database before installing it, so that if anything goes wrong you can rollback to the latest 2.0-M3

Alf.io 2.0-M3-2112

Alf.io 2.0-M3-2112 (2021-12-10)

This release contains a security fix for a vulnerability in the Log4j library. See GHSA-jfh8-c2jp-5v3q

Full Changelog

2.0-M4.RC2

Alf.io 2.0-M4.RC2 (2021-12-10)

This is the second (and probably last) Release Candidate for 2.0-M4. Full Changelog

this release contains a security fix for the Log4j vulnerability (https://www.lunasec.io/docs/blog/log4j-zero-day/). See GHSA-jfh8-c2jp-5v3q

BREAKING CHANGES

2.0-M4.RC1 introduced some breaking changes in the database schema.
If you're updating from 2.0-M3, it is strongly recommended to perform a full backup of your database before installing it, so that if anything goes wrong you can rollback to the latest 2.0-M3

New Features

• Enable reverse charge for a specific ticket type #1026
• Define a new API for creating reservations #1035 - sponsored by Eventplane
• Generate tickets automatically for subscriptions owners #1036 - sponsored by Eventplane
• Add additional info to check-in extension #1038

Alf.io 2.0-M4.RC1

Alf.io 2.0-M4.RC1 (2021-08-16)

This is the first Release Candidate for 2.0-M4. Full Changelog

BREAKING CHANGES

this release includes some breaking changes in the database schema.
It is strongly suggested to perform a full backup of your database before installing it, so that if anything goes wrong you can rollback to the latest 2.0-M3

New Features

• Support Hybrid Events #949
• Introduce Subscriptions #987 - Sponsored by Eventplane
• Introduce Extension Capabilities #993 - Sponsored by Eventplane
• Custom Join Links for Online tickets #1017
• OpenID support for end customers #1006

Fixed Bugs

• Entering organisation or event stripe "Payment Webhook signing secret" may not override system value. #1019
• No way to view "additional options" or "donations" purchased so far. #1012
• Import existing attendees #998

Tech-related changes

• JavaScript Extension engine: Replace Nashorn with Rhino #956 - thanks to @mejrima

Alf.io 2.0-M3-2107

2.0-M3-2107 (2021-07-04)

Full Changelog

This is an intermediate release between 2.0-M3 and 2.0-M4.

Implemented enhancements:

• No way to view "additional options" or "donations" purchased so far #967

Fixed bugs:

• Entering organisation or event stripe "Payment Webhook signing secret" may not override system value. #1019
• Import existing attendees #998
• Fix public reservation layout on IE11

Alf.io 2.0-M3

2.0-M3 (2020-09-02)

Full Changelog

Implemented enhancements:

• Add support for Saferpay #943
• Dynamic limit of event description field #935
• Refactor api for managing user/roles #887
• Apply dynamic discounts #869
• check if we can use spring aop directly instead of aspectj #669
• Dynamic CSS templates and system look #394
• add "social" login #301

Fixed bugs:

• Translation of dynamic fields does not work #934
• Account edit page loading forever and showing error message #868

Closed issues:

• Add documentation for "custom css" feature #938
• "Refund an arbitrary amount" doesn't validate the import #929
• Jpeg or png allowed to upload but svg not #97

Merged pull requests:

• Saferpay integration #944 (cbellone)
• Centralize default value for Boolean settings #940 (cbellone)
• 935 dynamic limit event description #939 (cbellone)
• #669 remove aspectj, now we execute the row level security related queries in a custom DataSourceTransactionManager.prepareTransactionalConnection #937 (syjer)
• Bump lodash from 4.17.15 to 4.17.19 #933 (dependabot[bot])
• Bump lodash from 4.17.14 to 4.17.19 in /website #932 (dependabot[bot])
• change Refund input type from text to number #930 (yankedev)
• Update Docker build steps #927 (ebartz)
• Formatting for OpenShift #925 (jjasghar)
• add possibility to define globally and event level css #922 (syjer)
• Online events: Check-in performance enhancement #898 (cbellone)
• fix wrong test of width with height #896 (emassip)
• Feature/97 add svg support using salamander #895 (emassip)
• Add HTML version for online event ticket email #894 (salmar)
• better error management when trying to remove a reservation with an a… #892 (baccinelli)
• added open id doc #891 (MatteoBre)
• Improve calendar invite #889 (salmar)
• Refactor update current user profile/password: fix #887 #888 (syjer)
• Fix supervisor profile page (#868) #886 (emassip)
• Support HTML email templates #885 (salmar)
• Support online events #883 (cbellone)
• OpenId added as a method of authentication #881 (MatteoBre)
• Detect Asynchronous Events + More #878 (rmace001)
• common mark: add target blank if it's an absolute url #877 (syjer)
• run async scripts in a sync way in integration tests #876 (syjer)
• Detect Cancel Pending Reservation Event in extension_log #875 (MarkBis415)
• Merge dynamic discount #871 (cbellone)
• Exposes ticketID in custom email #865 (salmar)
• Mollie integration #861 (cbellone)
• Inline event in index.html if possible #858 (syjer)
• inline en bundle and application info #857 (syjer)
• Add actions #853 (cbellone)
• fix copy event bugs: set ticket category ordinal if copied event has all 0, display map on copy event #846 (syjer)

Alf.io 2.0-M2-2004

2.0-M2-2004 (2020-04-05)

Full Changelog

This is an intermediate release between 2.0 M2 and M3.

see roadmap

New and noteworthy

• Support for online events: selling tickets for events held online is now easier, see docs
• Support for Mollie payment provider: Credit Cards, iDEAL, Bancontact and more
• Support for dynamic discounts, see #869

Implemented enhancements:

• Initial support for online events #882
• Missing days in the tickets sold chart #874
• Expose ticket ID in custom emails #864
• Add Mollie as a payment gateway #286
• Define a discountPolicy for each category #220

Fixed bugs:

• Ticket amount is NaN when cancelling a ticket #880
• Cannot delete deferred payments #866
• -NaN in Promo codes administration page when Fixed amount #862

Alf.io 2.0-M2-2001

2.0-M2-2001 (2020-01-31)

Full Changelog

This is an intermediate release between 2.0 M2 and M3.

see roadmap

Implemented enhancements:

• add structured data support #709
• Offline external payment #854

Fixed bugs:

• Regression: Force ticket owner assignment at reservation time is now true #852
• Stripe webhook processing error if platform mode is active #851

EDIT 2020-06-26: removed not released issue, thanks to @Nico0302 for pointing it out