Changelog History
Page 2
-
v5.0.1 Changes
October 21, 2020π New in v5.0.1
β‘οΈ If your minimum password setting in
Admin > Settings
was previously less than8
, you should change this to 8 or greater before upgrading. Failure to update this may cause other settings to fail on saving.π This is a bug fix release that should handle some of the issues reported over the past few days. While it's a little gauche to have another release out so soon after the big one, we also expect some bugs, and we're grateful for everyone's thoughtful bug reports. We tested v5 quite a lot, but it was a pretty big update, so we knew there would be some issues - and this probably won't be the last point release that happens this week.
β‘οΈ If you're running into an issue with images not showing up, that's due to an outdated version of
upgrade.php
(outdated because of us, not you.) That script unfortunately tries (tried) to move your files to the Laravel-approved storage directory. Since that was last updated, we decided not to use that file path, so if you upgraded usingupgrade.php
and your images are coming up broken, please move the files inapp/storage/uploads
back topublic/uploads
and remove the symlink the upgrader created for you.We'll be hitting them back as quickly as you can throw issues at us, so keep them coming! We appreciate it :)
π Fixed
- π Fixed #8557 Docker's trusted proxies - this was a regression
- π Fixed #8543 - hostname issue in Docker
- π Fixed #8567 - donβt require model for custom report
- π Fixed #8566 - PDF files displaying as ascii instead of downloading
- β Removed file mover and symlink from
upgrade.php
π IMPORTANT: This release requires PHP 7.1.3 or greater.
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v5.0.0 Changes
October 20, 2020π New in v5.0.0
π IMPORTANT: This release requires PHP 7.1.3 or greater.
β‘οΈ If your minimum password setting in
Admin > Settings
was previously less than8
, you should update this to 8 or greater before upgrading. Failure to update this may cause other settings to fail on saving.It's finally here!
π The long-awaited v5 of Snipe-IT is finally here. I'm probably missing some of the new features and fixes in this changelog, but I'm doing my best to recount the past two years of work here.
β‘οΈ We've rewritten the LDAP/AD functionality from the ground up, which will hopefully make those integrations a little less painful. We've also gone through several framework upgrades (sometimes because we wanted that functionality and sometimes because there were security updates that we just had to upgrade to whether we wanted to or not.)
π» The small things matter as much to us as the big ones do, so we've spent some time trying to really refine some of the commonly used UI elements, for example the improved logo upload+preview interface:
π± We've also added the ability to add multiple new assets at once from the create asset interface:
π Now that
master
anddevelop
are back at parity (and boy, it's been a while for that), expect our normal fever-pitch velocity to be back with gusto. There are still so many things we have on deck - new features, improvements, and even new products. We thank you all so much for your patience and support. <3Note : S3 functionality for file storage is still in beta. We had hoped to launch v5 with that fully working, but we realized that not that many of our users care that deeply about it, and it would only delay us further. We'll be tweaking and tuning that functionality over the next month or two tho.
Another Note : Our beta versions of "kits" allowed for accessories and license, etc - we discovered a bug where while non-assets are checked out, they don't get recorded in history if the quantity is greater than one, so we've pulled those options for now. Once we have a chance to correct that bug, we'll be adding licenses, accessories, etc back into the new Kit feature.
β Added
- β Added attempted logins admin screen
- β Added better support for NFC/RFID/Barcode scanners in select boxes
- β Added ability to trigger password reset emails for users
- β Added Raspbian 9.4 to snipeit.sh installer
- β Added department and manager to user import
- β Added php version check to
upgrade.php
- β Added check for minimum PHP version in setup
- β Added #5957 - Flysystem support #6262 which allows you to use S3 or Rackspace to host your file uploads
- β Added console command to move local files to S3 (or other remote host) for Flysystem support
- β Added better asset acceptance flow (thanks, @uberbrady and @tilldeeke!)
- β Added console command to send inventory reports to users
- β Added alt text to email headers
- β Added #1237 - depreciation with half-year convention.
- β Remove company select option if the user is not an admin and FCS is enabled
- π Improved help windows
- β Added save button at the top of the screen for long create/edit forms
- β Added basic client-side validation
- β Added basic kit functionality
- Multi-asset creation
π Fixed
- Fixed #6004 - set a default
next_audit_date
if none provided - π Fixed #6011 - use correct file created at date
- Limit width of title logo so it doesnβt break with long names
- π Fixed #6013 - add accessory checkout notes to detail page
- π Fixed #5964 - group IDs can be now be passed to user creation API
- π Fixed bug where checkout right-side menu would display assets checked out to non-users with the same ID
- π Fixed DBAL issue affecting MariaDB 10.2.7 or greater
- π Fixed #6029 - model number not appearing in checkin/checkout emails
- π Fixes #6016 - check for an existing username before getting creative
- π Fixed - only allow activated users to reset their password
- π Fixed - set activated checkbox to 1 by default on new user
- π Fixed #6082 - donβt show expected checkin in email if none given
- π Fixed #6284 - missing checkout information on Status Labels API asset list method
- π Fixed #6252 - activated flag not checked when editing active user
- π Fixed #4151 - undefined index:
samaccountname
on LDAP import - π Fixed #6248 - add free seats to licenses API endpoint
- π Fixed #5965 - allow multiple alert email addresses (#6233) (regression from v4.3.x)
- π Fixed checking permissions for users with no permissions set
- π Fixed - prevent deleting manufacturers via API if they have items/models
- π Fixed view if model doesn't have a manufacturer
- π Fixed - added counts to location show() API method
- π Fixed #5811 - non-US Characters in user export
- π Fixed #6082 - donβt show expected checkin in email if none given
- π Fixed #6284 - missing checkout information on Status Labels API asset endpoint
- π Fixed: #6263 - missing oauth tables when using the setup quick start
π Documentation
- β Added Notifications Overview
- β Added Migrating Files
- β‘οΈ Updated Configuration to include AWS settings
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v5.0.0-beta Changes
August 31, 2020π New from v5.0.0-beta-2 to v5.0.0-beta-3
IMPORTANT: This version of Snipe-IT requires PHP 7.2 or greater
β Added
- Accessibility features already back ported to v4.9.x
- π Merge user script already back ported to v4.9.x
π Fixed
- LDAP issues
- Flysystem issues
- Misc javascript compilation/asset generation issues
β Want to Help Test?
Awesome! First things first, you should NOT test this in production yet, as it's a beta release. If you'd like to help us test, make a new copy of Snipe-IT and upgrade your copy to v5.0.0-beta-3.0, that way your data is safe. You should treat this test instance as a version you could easily throw away when you're done testing. (Hopefully it won't come to that, but hey, computers are hard.)
β Things we're very interested in folks testing:
- LDAP/AD integration (login and sync)
- β Flysystem - Using S3 to store files and also testing that local file storage still works. Local file storage is more important, as we'll be releasing v5 with S3 integration as an experiment feature
- Client-side validation
- The importer, as always - that thing's a bear
If you need to create new bug reports for this beta release, please make sure you include the beta release version in the Github issue title so we can easily see that it's an issue specific to this beta.
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here. After completing the upgrade below, be sure to clear your browser cookies.
-
v4.9.5 Changes
September 16, 2020π New in v4.9.5
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This is a bug fix release that handles some LDAP paging issues and adds some additional fields into the importer.
π This will likely be the last 4.x.x tagged release before v5. Be sure to upgrade your version of PHP to 7.2 or greater now so you will be ready for the upcoming v5 release, estimated within a week or less.
β Added
- β Added added notes field to user details display (#8247)
- β Added address, city, state, country to user importer
- β Added city to bulk user importer
- β Added
firstinitial.lastname
,lastname_firstinitial
,firstnamelastname
andfirstnamelastinitial
to username formats - β Added new useraccountcontrol value for valid AD users; document algorithm and values
- β Added Artisan command to check in licenses from all users
π Fixed
- Force suppress deprecation warning on
ldap_control_paged_result()
- π Moved address down further, fixed broken HTML
- π Changed modal IDs so manager creation modal works on user creation main page
- π Fix deprecation report for customers with many active assets
- π Fixed google maps in CSP
- π Fixed company formatter - added to asset maintenance report
π Improved
- π Improves Exception management in Artisan LDAP Sync method. Still need to localize this better
- π Try to better handle slack βtoo many requestsβ issue on large imports
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v4.9.4 Changes
July 17, 2020π New in v4.9.4
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This is a bug fix release that handles an issue with the Select2 dropdown that would cause them to stop loading additional items in some circumstances. Additionally, we've consolidated the security headers into one middleware file, fixed a display bug on column selectors that used an icon, and created a few additional command line tools that we hope will be helpful to folks.
π Fixed
- π Fixed missing db prefix on
scopeDueOrOverdueForAudit()
- π Fixed #8163 - CSS code showing in column selectors for custom fields
- Fixed
location_id
tortd_location_id
in the API on asset creation when the asset is not assigned. (This mirrors the GUI behavior) - π Fixed Select2 'infinite scroll' drop-downs for Snipe-IT v5 (#8228)
- π Fixed a few additional column-selector bugs where icons are used
π Improved
- β Removed CSP middleware and consolidated ReferrerPolicy into new SecurityHeaders middleware
β Added
- β Added #8183 - CLI merge user tool to merge users by username/email.
- β Added
Strict-Transport-Security
header - π Allow for email/username search on users
- π Show whether or not the user was imported via LDAP in the view page
- β Added CLI tool to checkout a license to ALL (non-deleted) users
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
- π Fixed missing db prefix on
-
v4.9.3 Changes
June 17, 2020π New in v4.9.3
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π Fixed
- π Fixed issue where the column selector would sometimes show HTML code instead of icons
- π Fixed incorrect route for groups edit
- Fixed #8051 regression ("The asset tag must be unique" error)
- π Fixed missing category selection in Asset Model Modal dialog
- π Better handle the logic to determine if we should display the license checkout blade (redirect if licenses was deleted)
- π Fixed some
sr-only
tags and labels for accessibility
π Improved
- π Switched to use info style instead of danger on undeployable statuses
- π Improvements to label page
β Added
- β Added #7987 - allow toggle of required/optional in custom fields/fields
- β Added option to disable backup in import, which can be useful if you have an existing database with many many records or a lot of large uploaded files
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v4.9.2 Changes
April 09, 2020π New in v4.9.2
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This is a small bug fix release that handles a minor style regression from the previous version, and addresses an issue where the admin settings would not save (and would provide no useful error) if Slack settings were incomplete.
π Fixed
- π Fixed issue where incomplete Slack info would prevent other settings (on other settings pages) from being saved while returning no useful error message
- π Fixed CSS issue where logo text was the wrong color if you use text-only logos
π Improved
- π Improved error messages in LDAP errors
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v4.9.1 Changes
April 08, 2020π New in v4.9.1
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This release brings a ton of accessibility fixes, a set of new dark-mode skins (and a new high-contrast skin), a few bug fixes, and a few UI improvements.
High Contrast:
Example of colored skin in dark mode:
To use these new skins, go to Admin Settings > Branding and select them from the dropdown.
π Improved "Add field to fieldset" UI
Search filter for Admin Settings
π Fixed
- π Fixed (#7879) - search by serial or tag even if they have slashes in them
- π Fixed (#7882) user with the correct permissions couldn't update manufacturers
- π Fixed typo in CSP which prevented import UI from loading correctly
- π Fixed
compact($id)
errors when an asset/license/location/etc was not found - β‘οΈ (Developers only) Updated faker library to be compatible with PHP 7.4
π Improved
- π Improved highlight on selected asset rows (yellow now, instead of a slightly darker grey)
- β Added search filtering to settings page to allow faster access to specific sections
- π Improved "add custom field to fieldset" UI so that you have to click the submit button
- (Developers only) - dark skins .less files are now processed with
npm run prod
β Added
- β Added permissions on user api (#7883)
- β Added new dark background skins
- β Added #7940 - update of local instance of
composer.phar
on upgrade (if it's being used) - Added #7947 -
rtd_location_id
to API search
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v4.9.0 Changes
March 05, 2020π New in v4.9.0
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This is mostly a security/bugfix release, handling some smaller bugs.
π Fixed
- β Added slightly friendlier error handling for assets without models
- Include correct license, asset, etc count on user show API call
- β Remove not existent variable
id
in the redirect causing error (#7732) - π Fix for weird JSON parsing in actionlogs when new custom fields are added and have no value and the asset is saved again (#7753)
- π Fixed #7752 - reformat
/api/v1/users/me
to use transformer - π Fixed offset to use the actual item count as override instead of 0 (#7788)
- π± Use βinvalid barcodeβ image and suppress errors when barcode format is not compatible with existing assets
- π Fixed #7870: fixed SSL connectivity for PaaS DBs (#7874)
- β Added validation to reject email addresses over 250 characters in password reset to prevent buffer overflow
- π Fix for CVE-2019-10772
π Improved
- π Moved ldap import ini settings to config (#7679)
- Disallow 0 as a number for labels per page
β Added
- β Added
license()
endpoint for users - β Added 'requestable' to fillable attributes. (#7787)
- β Added
update()
method for Departments (#7804)
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.
-
v4.8.0 Changes
December 06, 2019π New in v4.8.0
π IMPORTANT: This release requires PHP 7.1.3 or greater.
π This is mostly a security/bugfix release, handling some smaller bugs and correcting an issue where users could no longer search on child assets.
π We have also issued a fix for a security issue discovered in some versions of
symfony/http-foundation
, and have patched a persistent XSS vulnerability in the image uploads for most models where a malicious authorized user could potentially upload an SVG with a javascript payload. The severity of this issue is reduced due to the fact that the attack requires user interaction. Specifically, the attacker would have to trick an unsuspecting victim into opening the malicious asset model image in a new tab or from within an IFRAME. (Many thanks to Metin Kandemir for reporting that issue.)π Fixed
- π Fixed maintenances permissions check to allow users who can edit assets to edit maintenances
- β Fixed an error on audit due list when no
audit_warning_days
had been set in Admin Preferences - π Fixed bug where deleted consumable would throw an error on print page
- β Adding Dept to license seats display (#7609)
- β Removed escaping on custom fields in presenter (#7631)
- β‘οΈ Updated child assets to reflect asset parent location (#7458)
- β‘οΈ Updated
symfony/http-foundation
from 3.4.30 to 3.4.36 to address a security vulnerably in that dependency (#7638) - π Fixed XSS vulnerability in SVG image uploads (#7639)
- π Fixed an issue where child locations where no longer searchable (#7646)
π Improved
β¬οΈ Upgrading
β¬οΈ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run
php upgrade.php
.π For a full list of changes, see the changelog.
β¬οΈ After completing the upgrade process, be sure to clear your browser cookies.
β¬οΈ Upgrading from v3
β¬οΈ Please see the upgrade instructions here.