Releases for Project issue tracking

Port to 6.x is currently in progress. Do not use this version on a production site.

Changes since DRUPAL-5--2-1:

BUGFIXES

• #231713 by dww: Fixed problems with database upgrade path usability.
  Now, if update 5200() is aborted due to missing required modules, when
  the admin visits update.php again, project_issue is set to retry 5200
  automatically, even though the schema_version in {system} says it
  should start with 5201. Unless they read the fine print and set the
  update to start at 5200, they'd end up with major data loss when the
  {project_comments} table is dropped in 5202().
• #236459 by aclight, hunmonk: Issue quicklinks should only appear when comments are set for the node.
• #234255 by aclight: Restored ability to add CCK fields to project-issue
  nodes (fixing regression from #199138).
• #245363 by aclight: Default values of component should be translatable.
• #186259 by hunmonk: reset corrupted array pointer to avoid endless update loop. see http://drupal.org/node/186259#comment-805698 for details.

FEATURES

• #235097 by John Morahan: Advanced search only matches an exact phrase. new functionality means words will be treated as separate words, not as an exact phrase.
• #97145 by aclight: always allow users to leave the version alone when replying. this allows the currently selected version to appear on an issue, even if it happens to be unpublished.

Changes since DRUPAL-5--2-0:

New features

• #217486 by dww: Added a setting for site-wide help text on new issues.
• #224986 by webchick: Make issue status field longer.
• #4354 by Josh Benner, hunmonk: add hook_project_issue_assignees() -- allows modules to alter the 'Assigned' dropdown on project issue node forms/comments.
• #229654 by hunmonk and dww: Added an invalid releases setting. There's no admin UI to control it, so
  you either have to define it in settings.php or directly in the DB. The variable is called 'project_issue_invalid_releases' and the value should be an array of release node ids that are considered invalid.
• #219734 by aclight, hunmonk: Allow theming of changes in project issue table and email. refactored hook_followup_metadata_changes() to more general hook_project_issue_metadata() -- now handles both the main issue node table, and the comment followup tables.

Bugfixes

• #190539 by dww, hunmonk: IFAC regression: shouldn't allow totally empty comments.
• #218080 by dww: Altered the comment delete confirm form for issue followups to remove the "Any replies to this comment will be lost" text.
• #219395 by hunmonk: bogus project GET value results in SQL error. add more restrictive parameters for node_load().
• #220117 by hunmonk: unpublished comments should not be included in metadata calculations.
• #218959 by aclight: [#issue_nid] filtered links do not appear as links in email. note that this patch rolls back #185388
• #89673 by hunmonk: add comment_number field to {project_issue_comments} -- determining the cid from the comment thread was error-prone.
• #213037 by aclight: IFAC edge case when metadata is edited directly without a comment. prevent editing of issue metadata when an issue node is edited.
• #231020 by hunmonk: missing table column and index, remove dead columns in .install

This is the first official release of the 5.x-2.* series. The major new feature here is that issue followups now use core comments, instead of the previous special-case pseudo comments. This means the project_issue now depends on comment.module, upload.module (for file attachments to the initial issue post), and the comment_upload.module (for file attachments to followup comments).

This release requires Drupal 5.2 or greater.

Users of the 5.x-2.x-dev release should upgrade to this version immediately, since it fixes some critical security flaws:

• #216062: SA-2008-012 -- XSS vulnerability in comment summary tables.
• #216063: SA-2008-013 -- Arbitrary file upload.

Other changes since the 5.x-1.* series:

• #18920 by chx, hunmonk: Converted project_issue.module to use comment.module for issue followups.
• #174936 by dww: Add setting to control the number of issues per page.
• #74953 by hunmonk: when deleting a project, issue comments are left in the DB. make proper use of node_delete() to remove all issues associated with a deleted project.
• #181544 by demeritcowboy: Squiggly brackets missing on line 224 of .install file. squiggly -- i love it :)
• #36619 by hunmonk: change from name in issue emails to project name + 'issue queue'.
• project name is now in from address -- clean up from subject.
• #173659 by zostay: Fixed bug where cron would only close one ticket per
  run because of a check against 'cid' in a comment object that was reused.
• #181099 by ChrisKennedy: Fixed bug with average lifetime issue statistics.
• #185388 by ChrisKennedy: Don't mangle long URLs when emailing. reorder use of check_markup().
• #185378 by dww: Fixed breadcrumbs on the issue statistics page.
• #185747 by ChrisKennedy: Fixed bug in mail output for issues that are
  assigned to Anonymous.
• #185851 by hunmonk: Changing project in an issue with JS is broken. make ids of project info fields consistent. fix bug where project name metadata wasn't displayed correctly.
• #188847 by hunmonk, dvessel, webchick, dww: ifac follow-up: easy way to get to end of issue. added internal page links for last followup, last attachment, post followup.
• #189822 by dww: Issue digest and reminder emails now honor PROJECT_NOMAIL.
• #189843 by dww: Issue-related email settings are now properly
  validated. Also removed some really old, weird, dead code.
• #189210 by aclight and dww: Added project_issue_reply_to setting which
  is now used as the From address for all issue e-mails.
• #148712 by hunmonk, adrinux, dww, et all: Restructure followup UI to avoid confusion. round two. moving metadata above comment textarea, removing extra fieldsets from issue metadata on followups.
• #189278 by John Morahan: Advanced search doesn't escape % in LIKE matches. this is an admittedly ugly hack, but this whole section of code sucks, and will be replaced in the near future -- so it seems appropriate given the circumstances.
• #198645 by aclight: Fixed incorrect phpdoc for project_issue_state()
• #144590 by jvaill, aclight, webchick: Auto-generate issues (GHOP 36)
• #89673 by mwrochna, aclight: GHOP #53: add input filter to convert #12345 into an issue link
• #44833 by hunmonk: clean up inconsistent breadcrumbs for issues/issue followups.
• #36619 by aclight, hunmonk, dww et. all: clean up email user/subject in project issue mails.
• #104583 by hunmonk: 'my projects' page doesn't honor projects that disable issue tracker. added check for issue tracker being enabled for a project, and provide a link to enable.
• #206210 by beginner: missing t() calls.
• #206502 by beginner, dww: Fixed translation and other UI problems by correctly using project_issue_category() whenever printing out a category. Also allow translation of issue priority values.
• #162760 by hunmonk, aclight: add pager/tablesorting to project/issues/statistics, clean up some other table weirdness (also fixes #71175).
• #214327 by dww: Improved the UI for the 'My Projects' page:
  • Removed the useless 'Project updated' column
  • Fixed some of the behavior introduced via #104583
  • Removed the duplicate (and untranslatable) 'open' after each count of issues and labeled the whole column 'Open issues'
  • Tweaked the CSS, spacing, alignment, wordwrap, etc
  • Even looks good on an iPhone now ;)

This release fixes the following critical security vulnerabilities from 5.x-1.2 and earlier:

• #216062: SA-2008-012 -- XSS vulnerability in comment summary tables.
• #216063: SA-2008-013 -- Arbitrary file upload.

This release fixes the following critical security vulnerabilities from 4.7.x-2.6 and earlier:

• #216062: SA-2008-012 -- XSS vulnerability in comment summary tables.
• #216063: SA-2008-013 -- Arbitrary file upload.

This release fixes the following critical security vulnerabilities from 4.7.x-1.6 and earlier:

• #216062: SA-2008-012 -- XSS vulnerability in comment summary tables.
• #216063: SA-2008-013 -- Arbitrary file upload.

Changes since version 5.x-1.1:

• #189278 by John Morahan: Advanced search doesn't escape % in LIKE matches, causing errors when searching for keywords that begin with 's' or 'b'.
• #74953 by hunmonk: When deleting a project, issue comments were left in the DB. We now correctly remove all issues associated with a deleted project.
• #75725 by hunmonk: The project 'submission guidelines' used to show up after you submited an issue. Now, the message is only displayed if nothing has been posted.
• #103795 by plumbley, drewish, hunmonk: E_ALL Compliance: Fix PHP Notices in issue.inc.
• #112909 by hunmonk: The default issue state setting wasn't always used.
• #157512 by hunmonk: 'Project' form value was lost on search.
• #143154 by ChrisKennedy: URL regex assumed href is the sole attribute.
• #173657 by hunmonk: Cron cannot close fixed issues when anonymous has no access.
• #181544 by demeritcowboy: DB tables were not always prefixed in project_issue.install.
• #36619 by hunmonk: change from name in issue emails to project name + 'issue queue'.
• #173659 by zostay: Fixed bug where cron would only close one ticket per run because of a check against 'cid' in a comment object that was reused.
• #181099 by ChrisKennedy: Fixed bug with average lifetime issue statistics.
• #185388 by ChrisKennedy: Don't mangle long URLs when emailing. reorder use of check_markup().
• #185378 by dww: Fixed breadcrumbs on the issue statistics page.
• #185747 by ChrisKennedy: Fixed bug in mail output for issues that are assigned to Anonymous.
• #189822 by dww: Issue digest and reminder emails now honor PROJECT_NOMAIL.
• #189843 by dww: Issue-related email settings are now properly validated. Also removed some really old, weird, dead code.
• #198645 by aclight: Fixed incorrect phpdoc for project_issue_state()
• #44833 by hunmonk: clean up inconsistent breadcrumbs for issues/issue followups.
• #36619 by aclight, hunmonk, dww et. all: clean up email user/subject in project issue mails.
• #104583 by hunmonk: 'my projects' page doesn't honor projects that disable issue tracker. added check for issue tracker being enabled for a project, and provide a link to enable.
• #206502, #206210 by beginner, dww and hunmonk: Fixed some translation errors regarding issue priorities and categories, and some other untranslatable strings.

New features since version 5.x-1.1:

• #189210 by aclight and dww: Added project_issue_reply_to setting which is now used as the From address for all issue e-mails.
• #144590 by jvaill, aclight, webchick: Auto-generate issues (GHOP 36)
• #174936 by dww: Added setting to control the number of issues per page.

Changes since version 4.7.x-2.5:

• #159286: Fixed a syntax error that snuck in from the previous patch which and caused fatal errors on the settings page.
• #189278 by John Morahan: Advanced search doesn't escape % in LIKE matches, causing errors when searching for keywords that begin with 's' or 'b'.
• #74953 by hunmonk: When deleting a project, issue comments were left in the DB. We now correctly remove all issues associated with a deleted project.
• #75725 by hunmonk: The project 'submission guidelines' used to show up after you submited an issue. Now, the message is only displayed if nothing has been posted.
• #112909 by hunmonk: The default issue state setting wasn't always used.
• #143154 by ChrisKennedy: URL regex assumed href is the sole attribute.
• #173657 by hunmonk: Cron cannot close fixed issues when anonymous has no access.
• #173659 by zostay: Fixed bug where cron would only close one ticket per run because of a check against 'cid' in a comment object that was reused.
• #181099 by ChrisKennedy: Fixed bug with average lifetime issue statistics.
• #185388 by ChrisKennedy: Don't mangle long URLs when emailing.
• #185378 by dww: Fixed breadcrumbs on the issue statistics page.
• #185747 by ChrisKennedy: Fixed bug in mail output for issues that are assigned to Anonymous.
• #189822 by dww: Issue digest and reminder emails now honor PROJECT_NOMAIL.
• #189843 by dww: Issue-related email settings are now properly validated. Also removed some really old, weird, dead code.
• #104583 by hunmonk: 'my projects' page doesn't honor projects that disable issue tracker. added check for issue tracker being enabled for a project, and provide a link to enable.
• #157512 by hunmonk: 'Project' form value was lost on search.
• #206502, #206210 by beginner, dww and hunmonk: Fixed some translation errors regarding issue priorities and categories, and some other untranslatable strings.
• #32792 by fgm: pubDate in feeds is illogical.

NOTE: Unless critical bugs are uncovered, this will be the last official release for the 4.7.x-1.* series. All users are strongly encouraged to upgrade to at least 4.7.x-2.*, or better yet, 5.x-1.*, as soon as feasible. Support for this release series is basically over.

Changes since version 4.7.x-1.5:

• Fixing evil bug from revision 1.172.2.50 where CVS merge conflict markers were left in the code that was committed.
• #159286 by dww: Fixed a syntax error that snuck in from the previous patch which and caused fatal errors on the settings page.
• #74953 by hunmonk: When deleting a project, issue comments were left in the DB. We now correctly remove all issues associated with a deleted project.
• #75725 by hunmonk: The project 'submission guidelines' used to show up after you submited an issue. Now, the message is only displayed if nothing has been posted.
• #112909 by hunmonk: The default issue state setting wasn't always used.
• #143154 by ChrisKennedy: URL regex assumed href is the sole attribute.
• #173657 by hunmonk: Cron could not close fixed issues when anonymous has no access.
• #173659 by zostay: Fixed bug where cron would only close one ticket per run because of a check against 'cid' in a comment object that was reused.
• #181099 by ChrisKennedy: Fixed bug with average lifetime issue statistics.
• #185388 by ChrisKennedy: Don't mangle long URLs when emailing.
• #185378 by dww: Fixed breadcrumbs on the issue statistics page.
• #185747 by ChrisKennedy: Fixed bug in mail output for issues that are assigned to Anonymous.
• #189822 by dww: Issue digest and reminder emails now honor PROJECT_NOMAIL.
• #157512 by hunmonk: 'Project' form value was lost on search.
• #206502 by beginner, dww and hunmonk: Fixed some translation errors regarding issue priorities and categories.
• #32792 by fgm: pubDate in feeds is illogical.

The development snapshot of the first major 5.x branch, compatible with 5.x API of Drupal Core.

This branch is stable, and is in bugfix-only mode.

#180568 (SA-2007-021) by hunmonk: Fix XSS holes in project subscription forms.
#177312 by hunmonk: add project links, fix breakage on issue subscription form.
#168650 by pwolanin, hunmonk: fix improper use of %s

#180568 (SA-2007-021) by hunmonk: Fix XSS holes in project subscription forms.
#177312 by hunmonk: add project links, fix breakage on issue subscription form.
#168650 by pwolanin, hunmonk: fix improper use of %s

#180568 (SA-2007-021) by hunmonk: Fix XSS holes in project subscription forms.
#177312 by hunmonk: add project links, fix breakage on issue subscription form.
#168650 by pwolanin, hunmonk: fix improper use of %s
#172327 by hunmonk: INSTALL.txt outdated

This release addresses an access bypass security issue, DRUPAL-SA-2007-020. Sites that try to restrict access to issues based on the 'access project issues' or 'access own project issues' permissions should upgrade immediately.

Other changes since 5.x-0.2-beta:

• #130390 by Heine: file_check_directory() takes a reference.
• #126347: improper use of $may_cache in hook_menu() -- no links for project_issue.module in admin/by-module pages.
• #137147 by Sean B Fuller (with cleanup by dww): Don't show the follow-up link if already following up to an issue.
• #132025 by doc: fix encoding of issue followup data (it's a binary column in the schema, not a string) to remove SQL errors on pgsql.
• #110822 by doq (really from #138020): Fix wrong multibite truncation.
• #140896: remove dead code for project-issue vs. project_issue node/add.
• #137435 (debugged by Sean B Fuller and yched, patch by dww): unnecessary call to node_load() while we're in the middle of hook_insert() results in empty CCK cache data for new issues.
• #143726: Issue count on 'My projects' page includes unpublished issues.
• #144349: provide weights for /project/issues and /project/user menu items.
• #137135 by Sean B Fuller (with minor cleanup by dww): Support CCK fields on project_issue nodes that show up in the follow-up form.
• #151342: removing version from .info in CVS in favor of cvs_deploy.module
• #152789 by aclight: Fix breadcrumbs on project/issues page
• #153390 by walkah: Use node_feed() for project issue feeds.
• #153614: Make truncated issue names show full name in link title attribute.
• #97207 by aclight: Fixed breadcrumb on followup form page.
• #155996 by dww: Removed MyISAM settings from MySQL statements.
• #103798 by plumbley and dww: Fixed PHP notices for E_ALL compliance.
• #121265 by augustd and dww: Users with limited status permissions should not change the status when replying to an issue in a restricted status.
• #157517 by hass and dww: Fixed a few translation problems.
• Fixing yet more translation problems.
• #159544 by hass: "Submit" is too general for translations, so we're now using "Create" for various menu items and links.
• #102395 by aclight and dww: Made it clear when users can and can't create issues or follow-up by printing a "Login or register to ..." link for anonymous users in various parts of the UI, and fixing the logic when users attempt to do things they don't have permission for.
• #159471 by hass: Table header name incomplete (s/Pri/Priority/).
• #163102 by chx: Removed some stray whitespace.
• Minor UI improvement: tweaked widths of columns on the "My projects" page to give the "Issue links" more space to avoid wrapping.
• #163599 by pwolanin: Cleaned up menu callback insanity in project_issue_page().
• #163599 by pwolanin: Fixed bug in previous patch for menu callback cleanup.
• #163599: Reverting previous patches. They're still not quite right, and we're walking in a mine field here. This cleanup might involve something much more drastic in the relatively near future...
• Fixed weird PHP5 problem where we needed {} around a variable name so we could address it like an array.
• #103956: Removing some dead code that was added during the 5.x port.
• Moving TODO list to wiki page: http://groups.drupal.org/node/5489
• #165975 by hunmonk. fatal error when adding new project issue status in postgres. manually set the sequence to the correct starting value.
• #106654 by drewish and hunmonk: Added missing index on {project_issues}.sid.
• #166496 by dww: Added an implementation of hook_uninstall().
• #142122 by killes, hunmonk and dww: Only users with valid e-mail addresses can now subscribe to issues.
• #164958 by drewish and dww: Added missing pgsql indexes.
• #104190 by hunmonk -- Submit issues cannot find projects. check for missing projects when modules is installed/enabled, and insert them if missing.
• Modified CSS so that the project drop-down on the issue and follow-up form is fixed width, to protect the UI from insanely long project names.
• #107706 by hunmonk: make query use index. added index on nid, assigned to project_issues table.
• #167838 by dww: Fixed bug that was caused by trying to add CCK fields to the issue form, not the followup form (bug introduced via #137135).
• #167797 by merlinofchaos: Devel page timer breaks JS callbacks for project_issue.js. set proper content type for the AJAX call.
• #159286 by dww: Fixed problems with how file extension whitelists work and made the default extensions visible in the settings UI.
• #59039 by hunmonk: attachements missing after pressing preview. use file_check_upload() in form builder to check for uploaded file. this works for both cases, and since the function caches it's results, it won't cause problems when it's called again during validate.
• #114281 and #168760 (SA-2007-020) by dww: Fixed numerous access bugs.

This release addresses an access bypass security issue, DRUPAL-SA-2007-020. Sites that try to restrict access to issues based on the 'access project issues' or 'access own project issues' permissions should upgrade immediately.

Other changes since 4.7.x-2.3:

• #130390 by Heine: file_check_directory() takes a reference.
• #132025 by doc: fix encoding of issue followup data (it's a binary column in the schema, not a string) to remove SQL errors on pgsql.
• #110822 by doq (really from #138020): Fix wrong multibite truncation.
• #137435 (debugged by Sean B Fuller and yched, patch by dww): unnecessary call to node_load() while we're in the middle of hook_insert() results in empty CCK cache data for new issues.
• #152789 by aclight: Fix breadcrumbs on project/issues page
• #97207 by aclight: Fixed breadcrumb on followup form page.
• #155996 by dww: Removed MyISAM settings from MySQL statements.
• #103798 by plumbley and dww: Fixed PHP notices for E_ALL compliance.
• #121265 by augustd and dww: Users with limited status permissions should not change the status when replying to an issue in a restricted status.
• #157517 by hass and dww: Fixed a few translation problems.
• Fixing yet more translation problems.
• #159471 by hass: Table header name incomplete (s/Pri/Priority/).
• #163102 by dww: Removed stray whitespace (backport via perl 1-liner).
• Fixed weird PHP5 problem where we needed {} around a variable name so
  we could address it like an array.
• - Moving TODO list to wiki page: http://groups.drupal.org/node/5489
  - Adding hunmonk as a co-maintainer
• #165975 by hunmonk. fatal error when adding new project issue status in postgres. manually set the sequence to the correct starting value.
• #159544: "Submit" is too general for translations, so we're now using "Create" for various menu items and links (backport by bdragon).
• #106654 by drewish: Added missing index on {project_issues}.sid (backport by dww).
• #164958 by drewish and dww: Added missing pgsql indexes.
• #104190 by hunmonk -- Submit issues cannot find projects. check for missing projects when modules is installed, and insert them if missing. since 4.7 doesn't have a hook_enable(), this only fixes the issue on a clean install.
• #107706 by hunmonk: make query use index. added index on nid, assigned to project_issues table.
• #159286 by dww: Fixed problems with how file extension whitelists work and made the default extensions visible in the settings UI.
• #59039 by hunmonk: attachements missing after pressing preview. use file_check_upload() in form builder to check for uploaded file. this works for both cases, and since the function caches it's results, it won't cause problems when it's called again during validate.
• #114281 and #168760 (SA-2007-020) by dww: Fixed numerous access bugs.

This release addresses an access bypass security issue, DRUPAL-SA-2007-020. Sites that try to restrict access to issues based on the 'access project issues' or 'access own project issues' permissions should upgrade immediately.

Other changes since 4.7.x-1.3:

• #130390 by Heine: file_check_directory() takes a reference.
• #132025 by doc: fix encoding of issue followup data (it's a binary column in the schema, not a string) to remove SQL errors on pgsql.
• #110822 by doq (really from #138020): Fix wrong multibite truncation.
• #137435 (debugged by Sean B Fuller and yched, patch by dww): unnecessary call to node_load() while we're in the middle of hook_insert() results in empty CCK cache data for new issues.
• #152789 by aclight: Fix breadcrumbs on project/issues page
• #97207 by aclight: Fixed breadcrumb on followup form page.
• #155996 by dww: Removed MyISAM settings from MySQL statements.
• #103798 by plumbley and dww: Fixed PHP notices for E_ALL compliance.
• #157517 by hass and dww: Fixed a few translation problems.
• Fixing yet more translation problems.
• #159471 by hass: Table header name incomplete (s/Pri/Priority/).
• #163102 by dww: Removed stray whitespace (backport via perl 1-liner).
• Fixed weird PHP5 problem where we needed {} around a variable name so we could address it like an array.
• Moving TODO list to wiki page: http://groups.drupal.org/node/5489
• #165975 by hunmonk. fatal error when adding new project issue status in postgres. manually set the sequence to the correct starting value.
• #159544: "Submit" is too general for translations, so we're now using "Create" for various menu items and links (backport by bdragon).
• #106654 by drewish: Added missing index on {project_issues}.sid (backport by dww).
• #164958 by drewish and dww: Added missing pgsql indexes.
• #104190 by hunmonk -- Submit issues cannot find projects. check for missing projects when modules is installed, and insert them if missing. since 4.7 doesn't have a hook_enable(), this only fixes the issue on a clean install.
• #107706 by hunmonk: make query use index. added index on nid, assigned to project_issues table.
• #159286 by dww: Fixed problems with how file extension whitelists work and made the default extensions visible in the settings UI.
• #59039 by hunmonk: attachements missing after pressing preview. use file_check_upload() in form builder to check for uploaded file. this works for both cases, and since the function caches it's results, it won't cause problems when it's called again during validate.
• #114281 and #168760 (SA-2007-020) by dww: Fixed numerous access bugs.

This release fixes a security vulnerability, all users of project_issue 5.x-0.1-beta or any 5.x-0.x-dev snapshot from before 2007-03-08 are urged to upgrade. For more details, see DRUPAL-SA-2007-012.

NOTE: The upgrade path from 4.7.x-1.* version of the Project issue tracking module is still very confusing, undocumented, and error prone. Sites that use the project module are strongly recommended to not upgrade to Drupal core 5.x until the official 5.x-1.0 release of this module is available.

Besides the security fix, two critical PostgreSQL bugs are fixed in
this version:

• #109851 by Rok Zlender: SQL error on "My issues" page with PostgreSQL
• #82696: PostgreSQL sequence missing for {project}_cid.

New features and other changes since 5.x-0.1-beta include:

• #27865: Remove hard-coded status options: provide admin UI to select which issue status values should be used for default queries.
• #101292 by webchick and dww: Reorganize 'support' section of project page, make cleaner place to post support requests (phase 1: see comment #11)
• #66981 by RobRoy and dww: Collision between subscribe to issues menu paths and the path alias for the "subscribe" project. Renaming issue subscribe menu paths to 'project/issues/subscribe-mail'.

This release fixes a security vulnerability, all users of project_issue 4.7.x-2.2 and earlier are urged to upgrade. For more details, see DRUPAL-SA-2007-012.

Besides the security fix, two critical PostgreSQL bugs are fixed in this version:

• #109851 by Rok Zlender: SQL error on "My issues" page with PostgreSQL
• #82696: PostgreSQL sequence missing for {project}_cid.

This release fixes a security vulnerability, all users of project_issue 4.7.x-1.2 and earlier are urged to upgrade. For more details, see DRUPAL-SA-2007-012.

Besides the security fix, 2 critical PostgreSQL bugs are fixed in this version:

• #109851 by Rok Zlender: SQL error on "My issues" page with PostgreSQL
• #82696: PostgreSQL sequence missing for {project}_cid.

This release fixes a security vulnerability, all users of project-4.7.x-1.x (or 4.7.0 from before the new release system) are urged to upgrade. For more details, see DRUPAL-SA-2007-004.

Besides the security fix, the only other changes in this release are bug fixes since project-4.7.x-1.1:

• #11879: removing dead hook_content() code
• Reformatting menu item array declarations to be more readable.
• #105227: validation failing when project in URL doesn't match selected value in the form. This was due to bad logic in the form builder.
• #105704: foreach() warning if you do a completely empty advanced search.
• #105521: rip out bizzare "default version" behavior
• #105229: fix CSS to handle new behavior of FAPI #prefix/#suffix (#100787)
• Don't reuse the class="options" div, since that makes the "Publishing options" fieldset become inline, too. now, we use an "inline-options" div when we want everything floated and inline.
• #106783: "inline-table" messes up fieldsets on Opera. It's ignored by Firefox. Safari gets it right, but that's not enough reason to keep it.
• Minor cleanup for help text.
• #107352: title on "My projects" is wrong if you only have 1 project
• #108678: node_access modules can't provide less restrictive update and delete rights to individual project issues. same change as projects.
• #50789 by Heine (minor modifications and backporting by dww): module doesn't create "issue directory" automatically.
• cleanup "Content-Type:" and "Content-Length:" headers for downloading issue attachments (especially to make sure to specify the file size).

This release fixes a security vulnerability, all users of project_issue-4.7.x-2.x are urged to upgrade. For more details, see DRUPAL-SA-2007-004.

Besides the security fix, the other changes since project_issue-4.7.x-2.1 in this release include:

• #11879: removing dead hook_content() code
• Reformatting menu item array declarations to be more readable.
• #97095: Issue tracker should not depend on project_release.module
• #104484: issue tracking not enabled by default for new projects (bug introduced via revision 1.4.2.3.2.2, for #96971).
• #105227: validation failing when project in URL doesn't match selected value in the form. This was due to bad logic in the form builder.
• #105704: foreach() warning if you do a completely empty advanced search.
• #105521: rip out bizzare "default version" behavior
• #105229: fix CSS to handle new behavior of FAPI #prefix/#suffix (#100787)
• Don't reuse the class="options" div, since that makes the "Publishing options" fieldset become inline, too. now, we use an "inline-options" div when we want everything floated and inline.
• #106783: "inline-table" messes up fieldsets on Opera. It's ignored by Firefox. Safari gets it right, but that's not enough reason to keep it.
• Minor cleanup for help text.
• #107352: title on "My projects" is wrong if you only have 1 project
• #108678: node_access modules can't provide less restrictive update and delete rights to individual project issues. same change as projects.
• #50789 by Heine (minor modifications and backporting by dww): module doesn't create "issue directory" automatically.
• cleanup "Content-Type:" and "Content-Length:" headers for downloading issue attachments (especially to make sure to specify the file size).

This release fixes a security vulnerability, all users of project 5.x-0.x-dev from before 2007-01-23 are urged to upgrade. For more details, see DRUPAL-SA-2007-004.

NOTE: The upgrade path from 4.7.x-1.* version of the Project issue tracking module is still very confusing, undocumented, and error prone. Sites that use the project module are strongly recommended to not upgrade to Drupal core 5.x until the official 5.x-1.0 release of this module is available.

Besides the security fix, other changes in this release include:

• #99759: Preliminary support for Drupal core 5.x.
• #105192: finish separation of project.css and project_issue.css. Cleans up and reorganizes a bunch of css, fixes div classes, etc.
• #57120: On the form when creating new issues or replying to existing ones, if you change the "Project" selector, the choices for "Component" and "Version" will automatically reset to the valid options for the new project.
• All bug fixes and new features from the 4.7.x-2.* series.

The development snapshot of the version currently being ported to the second major 5.x branch, compatible with 5.x API of Drupal Core.

Please do not run it on a production site.

In addition to the latest features from the 5.x-1.* series, this version also contains the following new features:

• #18920: Issue followups as comments.
• #217486: Setting for site-wide help text on new issues.
• #4354: New hook_project_issue_assignees() -- allows modules to alter the 'Assigned' dropdown on project issue node forms/comments.
• #219734: New hook_project_issue_metadata() -- allow modules to alter the metadata tables in project issue nodes.

(Other new features will be listed here until the 5.x-2.0 stable release is created).

This release fixes a security vulnerability, all users of project_issue 4.7.x-2.0 are urged to upgrade. For more details, see DRUPAL-SA-2006-031.

Other changes since project_issue-4.7.x-2.0:

Bugs fixed:

• #97944: fix broken pager links on filtered issue queries. This patch also fixes one of the main problems reported in #56200.
• #78595: fixing issue followup previews for php5
• #61453: fixing broken "Issues e-mail address" setting. The UI was mostly hidden unless you were a project administrator, and the code didn't match the descriptions. :( Now, if none of the filters are selected, you really do get the email (as the description has always said).
• #85788 by fgm: project comment id (project_cid) sequence needs DB prefix.
• #82619: blobs from comment bodies need to be decoded (for PostgreSQL).

New features:

• #94000: adding $Name$ tags for automated version identification
• #96971: make better use of tabs and subtabs on project nodes. Patch from comment #3
  by dww, to split up the project edit tab into subtabs for project, issues and releases.
• #102255: UI improvements and CSS fixes for "my projects" table:
• use theme('links') for the links in the my projects table, instead of stuffing each one into a separate table column.
• add an "edit" link to edit each project node.
• add an "add new release" link for each project.
• include the date the last issue was updated in a separate column from when the project node was last edited.

This release fixes a security vulnerability, all users of project_issue (4.7.x-1.0 or 4.7.0 from before the new release system) are urged to upgrade. For more details, see DRUPAL-SA-2006-031.

Besides the security fix, the only other changes in this release are bug fixes since project-issue-4.7.x-1.0:

• #94000: adding $Name$ tags for automated version identification
• #97944: fix broken pager links on filtered issue queries. This patch also fixes one of the main problems reported in #56200.
• #78595: fixing issue followup previews for php5
• #61453: fixing broken "Issues e-mail address" setting. The UI was mostly hidden unless you were a project administrator, and the code didn't match the descriptions. :( Now, if none of the filters are selected, you really do get the email (as the description has always said).
• #85788 by fgm: project comment id (project_cid) sequence needs database prefix.
• #82619: blobs from comment bodies need to be decoded (for PostgreSQL).

This is where bugs in the new release system will be fixed, and new features and future work will be resolved. This release requires a 4.7.x-2.* version of the project.module.

The initial stable release compatible with Drupal core 4.7.x. This is the code from before the new release system. It is incompatible with the 4.7.x-2.x series of the project.module, so be sure you use the 4.7.x-1.x series of both modules.

The initial release of the 4.7.x-2.x series which implements the new release system. This series requires a version of the project.module that is also version 4.7.x-2.x, since the project API changed for major revision 2.