|
| 1 | +# CHANGELOG |
| 2 | + |
| 3 | +## 4.0.0 |
| 4 | + |
| 5 | +- PHP 7.2+ is now required. |
| 6 | +- Github CI workflow added. |
| 7 | +- Scrutinizer CI updated. |
| 8 | +- MIT License. |
| 9 | + |
| 10 | +## 2.1.0 |
| 11 | + |
| 12 | +- (ADD) Add support for hash_equals() in CsrfToken::isValid() |
| 13 | +- (ADD) Add support for random_bytes() in Randval::generate() |
| 14 | +- (TST) Update tests and test support files |
| 15 | +- (DOC) Update license year and remove branch alias |
| 16 | + |
| 17 | +## 2.0.1 |
| 18 | + |
| 19 | +This release modifies the testing structure and updates other support files. |
| 20 | + |
| 21 | + |
| 22 | +## 2.0.0 |
| 23 | + |
| 24 | +This is the first stable release of Aura.Session 2.0.0. |
| 25 | + |
| 26 | +- Fix #23 |
| 27 | + |
| 28 | +- Merge pull request #33 from harikt/issue-23. |
| 29 | + |
| 30 | +- Merge pull request #35 from iansltx/php7-compat: Fix FakeSessionHandler::write() (fixes PHP7 tests) |
| 31 | + |
| 32 | +- Merge pull request #36 from fiahfy/spike: fix param type |
| 33 | + |
| 34 | +- Merge pull request #37 from tomkyle/develop-2: Removed redundant paragraph |
| 35 | + |
| 36 | +- Merge pull request #38 from tomkyle/develop-2: Clarified parameter descriptions |
| 37 | + |
| 38 | +- Updated documentation and support files. |
| 39 | + |
| 40 | +## 2.0.0-beta2 |
| 41 | + |
| 42 | +- TST: Update testing structure, use plain old PHPUnit for tests |
| 43 | + |
| 44 | +- CHG: Use new service naming rules |
| 45 | + |
| 46 | +- CHG: Disable auto-resolve for container tests |
| 47 | + |
| 48 | +## 2.0.0-beta1 |
| 49 | + |
| 50 | +First 2.0.0 beta release. |
| 51 | + |
| 52 | +## 1.0.2 |
| 53 | + |
| 54 | +Hygiene release. |
| 55 | + |
| 56 | +- Fix #8 related to unit tests failing because of ini_set values. Thanks @mindplay-dk |
| 57 | + |
| 58 | +- Merge pull request #12 from harikt/v2config, adds v2 config files. |
| 59 | + |
| 60 | +## 1.0.1 |
| 61 | + |
| 62 | +- [CHG] Manager::destroy() now checks whether the session is started; if not, |
| 63 | + starts it, and then destroys. This is because sessions are lazy-loading. |
| 64 | + |
| 65 | +- [DOC] Add PHP 5.5 to the Travis build and update docs |
| 66 | + |
| 67 | +## 1.0.0 |
| 68 | + |
| 69 | +There are BC breaks in this release, but it's a Google beta, so ... |
| 70 | + |
| 71 | +- [SEC] Based on conversation at |
| 72 | + http://www.eschrade.com/page/generating-secure-cross-site-request-forgery-tokens-csrf/ |
| 73 | + start using openssl and mcrypt for CSRF tokens instead of mt_rand(). |
| 74 | + |
| 75 | +- [NEW] SegmentInterface, Randval, RandvalInterface. |
| 76 | + |
| 77 | +- [BRK] The Manager now requires $_COOKIE as its third param to Manager. |
| 78 | + |
| 79 | +- [CHG] Segments now lazy-load themselves. On reads, they will reactivate an |
| 80 | + available session, but will not start a new one. On writes, they will |
| 81 | + reactivate an available session, or start a new one if one is not available. |
| 82 | + This means that creating a segment object no longer starts a session; you |
| 83 | + have to read from or write to one for the session to start. |
| 84 | + |
| 85 | +- [BRK] Renamed Manager::isActive() to isAvailable(), to differentiate from |
| 86 | + PHP_SESSION_ACTIVE. ( Previously, isActive() only told you if a session had |
| 87 | + started, not if one was available to be activated.) |
| 88 | + |
| 89 | +- [CHG] Manager::getSegment() no longer starts a session |
| 90 | + |
| 91 | +- [CHG] Manager::isStarted() now checks getStatus() for PHP_SESSION_ACTIVE |
| 92 | + instead of session_id(). |
| 93 | + |
| 94 | +- [CHG] Segment::__get() no longer returns a reference |
| 95 | + |
| 96 | +- [BRK] Renamed Manager::getSegment() to newSegment() |
| 97 | + |
| 98 | +- [CHG] Manager no longer retains session segments |
| 99 | + |
| 100 | +- [CHG] Various typo and doc fixes by Akihito Koriyama |
0 commit comments