---

Changelog:

2.0.3

Fix display of default images
Include upload-media input type
Session cookie changed to Lax
Show logo thumbnail in login pages
Security updates

2.0.2

New test file UserTest.php added
Prioritize page created from theme homepage.php
Session files wont be saved in open directory

2.0.0

Removed deprecated methods
Updated the page builder
Security fixes
The rewrite module now is required in apache server
Update browser history when administration tables are filtered

1.16.1

1.16.0

Page builder: added inline buttons to edit blocks
Page builder is the default editor of page content
More widgets added in blocks package
Added description filed on pages
Support input type range in fields
Database charset upgraded to utf8mb4
Text editor includes the emojis plugin
Security: Avoid SQL injection from content filters

1.15.4

1.15.3

Role levels: users have more restrictions based on their maximum role level
User sessions are displayed in a different page from user profile settings.
New class: UserNotification can be used to create notifications for users

1.15.2

1.15.0

1.14.1

Routes are using preg match
On development, package assets can be refreshed with a button
Bugfixies

1.14.0

New users can be activated from an activation code if set
User can upload photo
Settings do change without refreshing the page

1.13.2

Fixed the menu editing page
Endpoint /lzld/thumb can return svg file

1.13.1

Session file is removed when user creates new session

1.13.0

Fixed an error with asset directories
The old packages and themes directory is cleaned up on upgrades
All static files are copied and reden from assets/ directory
Big refacture on the code (renaming classes, methods, etc)
Note: after upgrading this package, upgrade all the others, and the theme

1.12.6

Revert upload folder to assets

1.12.5

Uploads are saved in a non public folder
Table schemas can extend other tables
Fixed paragraphs bug in widgets
Allow CORS from configuration

1.12.4

List of cross origin resource sharing can be set at config file
List of trusted domains can be set at config file
Updated german language
Managers can be set to users

1.12.3
Support of template engines
File management is restricted in less folders and file types

1.12.2
Fixed bulk select problem in table administration
In registry edit, rows of child table can be created after registry save

1.12.1
Created the upload csv tool for content tables
Support for replicated databases

1.12.0
Added more languages
Added blocks: cards, side-image in package blocks
Fixed the reset password form
On package download it will run the update only if is active

1.11.11
Security updates
A new folder is created in media gallery every month

1.11.10
Can remove folders from media gallery

1.11.9
User can logout from other devices

1.11.8
Add page title to categories and tag pages
Pages can use admin template
Updated facebook comments package
Added block editor package
Fix error uploading images

1.11.7
Deny access to non admin in some pages
Enable CORS on settings

1.11.6
Security updates
Bugfixes of post categories

1.11.5
User can create a generic use token from admin/profile
Many CSRF vulnerabilities fixed with cm endpoint
Webp images can be displayed as thumbnails in administration
Not allowewd svg uploads for security

1.11.4
Uploaded images can autoresize with maximum dimensions
Max image width and heigth is set on admin/settings
Added accesses to editor role: pages, menus, widgets
Added portuguese language
On installation fields are filtered for xss input
Fixed access to media files for multisites
Added canonical link for blog/category

1.11.3
Load faster the pages of content administration

1.11.2
Safer upload and edit for phoos and files
Thumbnail display of posts at administration
Added more translations in german, spanish, french and estonian
Fixed a bug that was not generated the post slug

1.11.1
Avoid local file inclusion by reading files below the installation folder
Avoid xss attack from uploaded filenames
Cm endpoints return hear with content type json
Cm api accepts multiqueries (list,list_rows,describe)

1.11.0
Avoid local file inclusion by reading files below the installation folder
Avoid xss attack from uploaded filenames
Api: cm endpoints return hear with content type json
Api: cm api accepts multiqueries (list,list_rows,describe)

1.10.9
Themes support block editor with correct styling
Add template field for pages
Remove some warnings

1.10.8
Cannot upload a non media file at assets
Fix db backup bug
Widgets are more safe from xss attacks
Only main site can access file manager and phpinfo
Added popup_edit command for table schemas

1.10.7
Dont show error when controller is not found
Remove warnings on installation
Close pop up dialogs by clicking outside of them
Tmp media filenames are saved with their folders

1.10.6
Website favicon can be added
New page: /admin/theme_options
Added icons for default widgets
Updated post-category widget
Multisite support

1.10.5
Reuse the default form token
Added media tabs
Added sendmail event

1.7.0

Added german translation
Upgraded package and theme lists
Can inject functions after controller construction
Can inject functions as new controller actions
Can replace actions
Can inject functions before actions
Can add routes of static paths
Controllers can have different name from their class
Themes can have parent theme
Install folder moved to src/core/
Added cm controller as content management api
gila::dir($path) creates folder if does not exist

1.0.0

 

The packages change or add a funcionality in you installation. For more information, see the documentation.