From 29e829b9396e4a97e9196a85fa7b2d5d7a9c3664 Mon Sep 17 00:00:00 2001 From: Hari K T Date: Sat, 23 Sep 2023 16:48:23 +0530 Subject: [PATCH] Add changelog --- CHANGELOG.md | 100 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 100 insertions(+) create mode 100644 CHANGELOG.md diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 0000000..d2dfad6 --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,100 @@ +# CHANGELOG + +## 4.0.0 + +- PHP 7.2+ is now required. +- Github CI workflow added. +- Scrutinizer CI updated. +- MIT License. + +## 2.1.0 + +- (ADD) Add support for hash_equals() in CsrfToken::isValid() +- (ADD) Add support for random_bytes() in Randval::generate() +- (TST) Update tests and test support files +- (DOC) Update license year and remove branch alias + +## 2.0.1 + +This release modifies the testing structure and updates other support files. + + +## 2.0.0 + +This is the first stable release of Aura.Session 2.0.0. + +- Fix #23 + +- Merge pull request #33 from harikt/issue-23. + +- Merge pull request #35 from iansltx/php7-compat: Fix FakeSessionHandler::write() (fixes PHP7 tests) + +- Merge pull request #36 from fiahfy/spike: fix param type + +- Merge pull request #37 from tomkyle/develop-2: Removed redundant paragraph + +- Merge pull request #38 from tomkyle/develop-2: Clarified parameter descriptions + +- Updated documentation and support files. + +## 2.0.0-beta2 + +- TST: Update testing structure, use plain old PHPUnit for tests + +- CHG: Use new service naming rules + +- CHG: Disable auto-resolve for container tests + +## 2.0.0-beta1 + +First 2.0.0 beta release. + +## 1.0.2 + +Hygiene release. + +- Fix #8 related to unit tests failing because of ini_set values. Thanks @mindplay-dk + +- Merge pull request #12 from harikt/v2config, adds v2 config files. + +## 1.0.1 + +- [CHG] Manager::destroy() now checks whether the session is started; if not, + starts it, and then destroys. This is because sessions are lazy-loading. + +- [DOC] Add PHP 5.5 to the Travis build and update docs + +## 1.0.0 + +There are BC breaks in this release, but it's a Google beta, so ... + +- [SEC] Based on conversation at + http://www.eschrade.com/page/generating-secure-cross-site-request-forgery-tokens-csrf/ + start using openssl and mcrypt for CSRF tokens instead of mt_rand(). + +- [NEW] SegmentInterface, Randval, RandvalInterface. + +- [BRK] The Manager now requires $_COOKIE as its third param to Manager. + +- [CHG] Segments now lazy-load themselves. On reads, they will reactivate an + available session, but will not start a new one. On writes, they will + reactivate an available session, or start a new one if one is not available. + This means that creating a segment object no longer starts a session; you + have to read from or write to one for the session to start. + +- [BRK] Renamed Manager::isActive() to isAvailable(), to differentiate from + PHP_SESSION_ACTIVE. ( Previously, isActive() only told you if a session had + started, not if one was available to be activated.) + +- [CHG] Manager::getSegment() no longer starts a session + +- [CHG] Manager::isStarted() now checks getStatus() for PHP_SESSION_ACTIVE + instead of session_id(). + +- [CHG] Segment::__get() no longer returns a reference + +- [BRK] Renamed Manager::getSegment() to newSegment() + +- [CHG] Manager no longer retains session segments + +- [CHG] Various typo and doc fixes by Akihito Koriyama