| | |
|---|
| | |
|
|---|
| | | #### fixes
|
|---|
| | |
|
|---|
| | | - Set subjectAlternativeName on generated SSL cert if CN is an ip address (issue 170)
|
|---|
| | | - Fixed incorrect links on history page for files not in the current/active commit (issue 166)
|
|---|
| | | - Empty repository page failed to handle missing repository (issue 160)
|
|---|
| | | - Fixed broken ticgit urls (issue 157)
|
|---|
| | |
|---|
| | | Personal repositories can be created by accounts with the *create* permission and are stored in *git.repositoriesFolder/~username*. Each user with personal repositories will have a user page, something like the GitHub profile page. Personal repositories have all the same features as common repositories, except personal repositories can be renamed by their owner.
|
|---|
| | | - Added support for server-side forking of a repository to a personal repository (issue 137)
|
|---|
| | | In order to fork a repository, the user account must have the *fork* permission **and** the repository must *allow forks*. The clone inherits the access list of its origin. i.e. if Team A has clone access to the origin repository, then by default Team A also has clone access to the fork. This is to facilitate collaboration. The fork owner may change access to the fork and add/remove users/teams, etc as required <u>however</u> it should be noted that all personal forks will be enumerated in the fork network regardless of access view restrictions. If you really must have an invisible fork, the clone it locally, create a new repository for your invisible fork, and push it back to Gitblit.
|
|---|
| | | **New:** *web.allowForking=true*
|
|---|
| | | - Added optional *create-on-push* support
|
|---|
| | | **New:** *git.allowCreateOnPush=true*
|
|---|
| | | - Added **experimental** JGit-based garbage collection service. This service is disabled by default.
|
|---|
| | |
|---|
| | | - Added support for Gitblit GO to require usage of client certificates to access the entire server.
|
|---|
| | | This is extreme and should be considered carefully since it affects every https access. The default is to **want** client certificates. Setting this value to *true* changes that to **need** client certificates.
|
|---|
| | | **New:** *server.requireClientCertificates = false*
|
|---|
| | | - Added Gitblit Certificate Authority, an X509 certificate generation tool for Gitblit GO to encourage use of client certificate authentication.
|
|---|
| | | - Added **Gitblit Certificate Authority**, an x509 PKI management tool for Gitblit GO to encourage use of x509 client certificate authentication.
|
|---|
| | | - Added setting to control length of shortened commit ids
|
|---|
| | | **New:** *web.shortCommitIdLength=8*
|
|---|
| | | - Added alternate compressed download formats: tar.gz, tar.xz, tar.bzip2 (issue 174)
|
|---|
| | |
|---|
| | |
|
|---|
| | | #### changes
|
|---|
| | |
|
|---|
| | | - Access restricted servlets (e.g. DownloadZip, RSS, etc) will try to authenticate any Gitblit cookie found in the request before resorting to BASIC authentication.
|
|---|
| | | - Added server setting to specify keystore alias for ssl certificate (issue 98)
|
|---|
| | | - Added optional global and per-repository activity page commit contribution throttle to help tame *really* active repositories (issue 173)
|
|---|
| | | - Added support for symlinks in tree page and commit page (issue 171)
|
|---|
| | | - All access restricted servlets (e.g. DownloadZip, RSS, etc) will try to authenticate using X509 certificates, container principals, cookies, and BASIC headers, in that order.
|
|---|
| | | - Added *groovy* and *scala* to *web.prettyPrintExtensions*
|
|---|
| | | - Added short commit id column to log and history tables (issue 168)
|
|---|
| | | - Teams can now specify the *admin*, *create*, and *fork* roles to simplify user administration
|
|---|
| | |
|---|
| | | - Emit a warning in the log file if running on a Tomcat-based servlet container which is unfriendly to %2F forward-slash url encoding AND Gitblit is configured to mount parameters with %2F forward-slash url encoding (Github/jpyeron, issue 126)
|
|---|
| | | - LDAP admin attribute setting is now consistent with LDAP teams setting and admin teams list.
|
|---|
| | | If *realm.ldap.maintainTeams==true* **AND** *realm.ldap.admins* is not empty, then User.canAdmin() is controlled by LDAP administrative team membership. Otherwise, User.canAdmin() is controlled by Gitblit.
|
|---|
| | | - Support servlet container authentication for existing UserModels (issue 68)
|
|---|
| | |
|
|---|
| | | #### dependency changes
|
|---|
| | |
|
|---|
| | | - updated to Jetty 7.6.7
|
|---|
| | | - updated to Jetty 7.6.8
|
|---|
| | | - updated to JGit 2.1.0.201209190230-r
|
|---|
| | | - updated to Groovy 1.8.8
|
|---|
| | | - updated to Wicket 1.4.21
|
|---|
| | | - updated to Lucene 3.6.1
|
|---|
| | | - updated to BouncyCastle 1.47
|
|---|
| | | - updated to MarkdownPapers 1.3.2
|
|---|
| | | - added JCalendar 1.3.2
|
|---|
| | | - added Commons-Compress 1.4.1
|
|---|
| | | - added XZ for Java 1.0
|
|---|
