-
Notifications
You must be signed in to change notification settings - Fork 16
/
CONST_CHANGELOG.txt
304 lines (272 loc) · 10.2 KB
/
CONST_CHANGELOG.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
This file includes migration steps for each release of c2cgeoportal.
=============
Version 2.9.0
=============
Information to know before starting the upgrade
===============================================
1. The build command will use Docker Compose version 2 (with the `docker compose` command).
2. RFC 001 - simplification of Ngeo buildtools and custom frontends for GeoMapfish
https://github.com/camptocamp/GeoMapFish/blob/6f8bffaa1e472cdd8ed3de52c8250b5da62d69de/rfcs/rfc_001.md
Important points:
- The `@ngInject` annotation is no more used, you should pass an array in the function or use the `$inject` property,
see related pull request: https://github.com/camptocamp/ngeo/pull/9453
- The build will not anymore inline the svg, If you use that you should do it manually,
see related commit: https://github.com/camptocamp/ngeo/pull/9454/commits/fb3ccfb0bdc8273975cdebfd7dbda401416674c3.
- Remove the custom SASS plugin to load the SCSS files.
You should have one SCSS file per interface, the component will not anymore integrate the related style.
See the related pull request: https://github.com/camptocamp/ngeo/pull/9455.
- Update Webpack to version 5 and remove Babel transpilation to ES05,
See the related pull request: https://github.com/camptocamp/ngeo/pull/9463.
- Update FontAwesome to version 6,
See the related pull request: https://github.com/camptocamp/ngeo/pull/9470.
3. For the OGC API, the MapServer configuration changes, now multi map files are supported by default and the URL in
the admin interface should be updated, see the OGC APT - Features documentation for more information.
Information
===========
1. Hostname check:
We add a hostname check on the `came_from` parameter, in the oauth2 login, allowed by
`vars.authentication.allowed_hosts` and in the OGC server clear cache, allowed by `vars.admin_interface.allowed_hosts`.
The behavior change a little bit in the `vars.shortener.allowed_hosts` and in the `vars.authorized_referers`.
Now everywhere:
- If the hostname (with port) of the candidate URL equals to the request's header "Host", then it's OK.
- If the hostname (with port) of the candidate URL is in the allowed list, then it's OK.
And they should be netloc (hostname with port) without schema or path
(if schema or path is present they are ignored).
The `vars.allowed_hosts` is added to allowed only some authorized host.
2. We replace checks (formatting) done by `c2cciutils` by `pre-commit` hooks.
This will me more standard and transparent for the project.
3. The COG layers where added, but are disabled by default.
To enable them, you need to add the following configuration in the `vars.yaml` file:
```yaml
vars:
admin_interface:
exclude_pages: []
```
4. Previously the `Cache-Control` header was set to `public` when we are not authenticated to an endpoint
that use the authentication. But this didn't works in every cases, for example when we use the intranet
role and when we have a reverse proxy with cache. Now it's always set to private for all the endpoints
that use the authentication.
=============
Version 2.8.0
=============
Information to know before starting the upgrade
===============================================
Information
===========
1. We upgraded MapServer to version 8, then the Mapfiles should probably be updated, and we have a new
configurations file named `mapserver/mapserver.conf`.
Migration guide: https://mapserver.org/MIGRATION_GUIDE.html#mapserver-7-6-to-8-0-migration.
Deprecated element from `CLASS` removed (moved to `STYLE`)
https://mapserver.org/development/rfc/ms-rfc-133.html#rfc133.
2. We added the support of 'main_ogc_server' to WMS mapserver proxy URL.
This means that if the value 'vars/main_ogc_server' is present in the vars.yaml of the project,
that will be used as default value when no 'ogcserver' parameter is present in the request.
3. We switched the OpenLayers renderer to now use WegGL for WMTS. In the case of background tiles with
transparency, you should add the parameter 'ngeoTilesPreloadingLimit: 0' to the vars.yaml in 'constants'
so that background tiles are rendered correctly.
4. In the `user` table, the column `deactivated` is now interpreted more strictly, `null` is now considered as `true`.
5. We add the `gmfPrintOptions` in the update path then the default print options are maintained in the
`CONST_vars.yaml`, especially the `hiddenAttributes`, then if you used the default value it can be
removed.
Main versions updates
-------------------
Ubuntu is updated from 20.04.6 to 22.04.2
Python is updated from 3.8.10 to 3.10.6
Node is updated from 16.20.0 to 16.20.0
Npm is updated from 8.19.4 to 8.19.4
Postgres is updated from 15+250.pgdg20.04+1 to 15+250.pgdg22.04+1
GDAL is updated from 3.4.3, to 3.6.4,
Proj is updated from 9.0.0 to 9.1.1
Python packages updates
---------------------
New packages:
* astroid at version 2.15.5
* bandit at version 1.7.5
* dill at version 0.3.6
* dodgy at version 0.2.1
* flake8 at version 2.3.0
* flake8-polyfill at version 1.0.2
* gitdb at version 4.0.10
* GitPython at version 3.1.31
* isort at version 5.12.0
* lazy-object-proxy at version 1.9.0
* markdown-it-py at version 2.2.0
* mccabe at version 0.7.0
* mdurl at version 0.1.2
* mypy at version 1.3.0
* mypy-extensions at version 1.0.0
* pep8 at version 1.7.1
* pep8-naming at version 0.10.0
* prospector at version 1.9.0
* pycodestyle at version 2.10.0
* pydocstyle at version 6.3.0
* pyflakes at version 2.5.0
* pylint at version 2.17.4
* pylint-celery at version 0.3
* pylint-django at version 2.5.3
* pylint-flask at version 0.6
* pylint-plugin-utils at version 0.7
* requirements-detector at version 1.2.2
* rich at version 13.4.1
* semver at version 3.0.0
* setoptconf-tmp at version 0.3.1
* shapely at version 2.0.1
* smmap at version 5.0.0
* snowballstemmer at version 2.2.0
* tomli at version 2.0.1
* tomlkit at version 0.11.8
* typing_extensions at version 4.6.2
Removed packages:
* azure-identity
* boto3
* botocore
* Cython
* Deprecated
* distlib
* filelock
* importlib-metadata
* importlib-resources
* jmespath
* linesman
* msal
* msal-extensions
* msrest
* networkx
* Paste
* pipenv
* pipfile
* pkgconfig
* portalocker
* poyo
* pygraphviz
* repoze.lru
* s3transfer
* Shapely
* typing-extensions
* virtualenv
* virtualenv-clone
* zipp
Major updates:
* attrs from 21.4.0 to 23.1.0
* basicauth from 0.4.1 to 1.0.0
* boltons from 21.0.0 to 23.0.0
* Chameleon from 3.9.1 to 4.0.0
* chardet from 4.0.0 to 5.1.0
* charset-normalizer from 2.0.12 to 3.1.0
* colander from 1.8.3 to 2.0
* cryptography from 41.0.1 to 39.0.2
* geojson from 2.5.0 to 3.0.1
* greenlet from 1.1.3.post0 to 2.0.2
* munch from 2.5.0 to 3.0.0
* packaging from 21.3 to 23.1
* PasteDeploy from 2.1.1 to 3.0.1
* plaster-pastedeploy from 0.7 to 1.0.1
* python-slugify from 4.0.1 to 8.0.1
* pytz from 2021.3 to 2023.3
* PyYAML from 5.4.1 to 6.0
* stevedore from 3.5.2 to 5.1.0
* urllib3 from 1.26.16 to 2.0.2
* zope.deprecation from 4.4.0 to 5.0
* zope.interface from 5.4.0 to 6.0
* zope.sqlalchemy from 1.6 to 3.0
Minor updates:
* affine from 2.3.1 to 2.4.0
* alembic from 1.7.7 to 1.10.4
* azure-core from 1.26.3 to 1.27.0
* azure-storage-blob from 12.14.1 to 12.16.0
* Babel from 2.9.1 to 2.12.1
* Beaker from 1.11.0 to 1.12.1
* c2cwsgiutils from 5.0.1 to 5.2.2
* click from 8.0.4 to 8.1.3
* dogpile.cache from 1.1.8 to 1.2.0
* Fiona from 1.8.22 to 1.9.3
* GDAL from 3.4.3 to 3.6.4
* GeoAlchemy2 from 0.11.1 to 0.13.2
* graphviz from 0.19.2 to 0.20.1
* hupper from 1.10.3 to 1.12
* idna from 3.3 to 3.4
* iso8601 from 1.0.2 to 1.1.0
* Jinja2 from 3.0.3 to 3.1.2
* numpy from 1.22.4 to 1.24.3
* OWSLib from 0.28.1 to 0.29.2
* papyrus from 2.4 to 2.5
* pbr from 5.8.1 to 5.11.1
* Pillow from 9.4.0 to 9.5.0
* plaster from 1.0 to 1.1.2
* polib from 1.1.1 to 1.2.0
* pycryptodome from 3.14.1 to 3.17
* PyJWT from 2.4.0 to 2.7.0
* pyotp from 2.6.0 to 2.8.0
* pyproj from 3.3.1 to 3.5.0
* pyramid-debugtoolbar from 4.9 to 4.10
* pyramid-jinja2 from 2.9.2 to 2.10
* pyyaml-include from 1.2.post2 to 1.3
* rasterio from 1.2.10 to 1.3.6
* redis from 4.3.6 to 4.5.4
* sentry-sdk from 1.14.0 to 1.21.1
* SQLAlchemy-Utils from 0.38.3 to 0.41.1
* tilecloud from 1.8.2 to 1.9.3
* transaction from 3.0.1 to 3.1.0
* ujson from 5.4.0 to 5.7.0
* wrapt from 1.13.3 to 1.15.0
* zope.event from 4.4 to 4.6
Npm packages updates
------------------
New packages:
* @snyk/protect at version 1.1094.0
* cy-mobile-commands at version 0.3.0
* cypress-browser-permissions at version 1.1.0
* cypress-real-events at version 1.7.6
* eslint-plugin-lit at version 1.8.2
* eslint-plugin-wc at version 1.4.0
* i18next-http-backend at version 2.1.1
* neat-csv at version 5.2.0
* strip-bom at version 5.0.0
Removed packages:
* @sentry/integrations
* angular-gettext-tools
* commander
* eslint
* i18next-xhr-backend
* puppeteer
Major updates:
* @sentry/browser from 6.18.2 to 7.35.0
* @sentry/tracing from 6.18.2 to 7.35.0
* @sentry/types from 6.18.2 to 7.35.0
* editorconfig-checker from 4.0.2 to 5.0.1
* eslint-plugin-jsdoc from 38.0.8 to 39.7.5
* fs-extra from 10.0.1 to 11.1.0
* glob from 7.2.3 to 8.1.0
* i18next-browser-languagedetector from 6.1.8 to 7.0.1
* i18next-parser from 6.0.1 to 7.6.0
* i18next from 21.6.16 to 22.4.9
* node-sass from 6.0.1 to 7.0.3
* ol-layerswitcher from 3.8.3 to 4.1.0
* ol-mapbox-style from 7.1.1 to 9.5.0
* ol from 6.12.0 to 7.2.2
* sinon from 13.0.2 to 15.0.1
* svgo from 2.8.0 to 3.0.2
* tsconfig-paths from 3.14.2 to 4.1.2
Minor updates:
* @babel/core from 7.17.12 to 7.20.12
* @babel/plugin-proposal-class-properties from 7.16.7 to 7.18.6
* @babel/plugin-proposal-decorators from 7.17.12 to 7.20.13
* @babel/plugin-transform-spread from 7.16.7 to 7.20.7
* @babel/plugin-transform-typescript from 7.16.8 to 7.20.13
* @babel/preset-env from 7.16.11 to 7.20.2
* @babel/preset-typescript from 7.16.7 to 7.18.6
* @lit/reactive-element from 1.3.4 to 1.6.1
* @trevoreyre/autocomplete-js from 2.2.0 to 2.4.1
* babel-loader from 8.2.5 to 8.3.0
* core-js from 3.21.1 to 3.27.2
* d3 from 7.3.0 to 7.8.2
* jsts from 2.8.1 to 2.9.3
* lit-html from 2.2.7 to 2.6.1
* lit from 2.2.8 to 2.6.1
* rxjs from 7.5.7 to 7.8.0
* sass-loader from 10.2.1 to 10.4.1
* terser from 5.12.1 to 5.16.2
* tinycolor2 from 1.4.2 to 1.5.2
* ts-node from 10.7.0 to 10.9.1
Changes to apply
================