v4.1.16-alpha

• Fix for merge bundling rule (#660)
• Fix for undefined variable exception under strict mode in ufAlerts (#809)
• Fix for site cache reset upon login (#828)
• Changed global cache tag to proper prefix
• Fix broken alert message in registration process (#843)
• Add partial Turkish translation

v4.1.15-alpha

• Refactor Password into a instantiable Hasher class, service, and Password facade (#827)
• Change default hash cost back to 10 and fix legacy hash detection issue

v4.1.14-alpha

• Fix issue with scopes being applied twice in Unique::getPaginatedQuery (userfrosting/extend-user#2)
• Update Bower dependencies in core Sprinkle
• Refactor the Password class to use hash_equals for legacy passwords (prevent timing-based attacks) and factor out the default cost (#814)
• Check if require_email_verification is set in Authenticator and sign-in page (#815)
• Factor out hardcoded sprinkles.json filename (partially addresses #813)
• Add Farsi translations (#816)
• ufTable: Make tableElement configurable, and check for existence (#824)
• Put AdminLTE menu toggle button back (Revert e8a26fb and part of a46205f)

v4.1.13-alpha

• ufTable: Implement rowTemplate for customizing how rows are rendered (#787)
• ufTable: Support for passing callbacks for column templates instead of Handlebars templates
• Remove explicit references to id columns (#803)
• Fix Docker
• Append full name to User API

v4.1.12-alpha

• Separate out user action column from user status column
• Improve table row menus in mobile views (#724)
• Hide side menu toggle button in desktop sizes
• Add chevron to user menu
• Change "remember me" text
• Improve table tool buttons
• Twig extensions now implement Twig_Extension_GlobalsInterface as required by https://twig.symfony.com/doc/2.x/advanced.html#id1 (#788)
• Display element based on permissions for group list/info pages
• Factor the admin user creation out of migrations and into its own Bakery command (See #778)
• Bakery clear-cache command now clears Twig and router cache (Fix #750)
• Add Russian translations
• Add Travis for automated test/build on push

v4.1.11-alpha

• Updated composer/installers dependency.
• Patch composer.json to fix illuminate/* dependencies at 5.4 for now

v4.1.10-alpha

• Add support for PHP7 runtime errors to be handled in the same way as Exceptions
• Implement NotFoundExceptionHandler and pass through all NotFoundExceptions to this handler.
• Implement redirect.onAlreadyLoggedIn service (fixes #680)
• Deprecate determineRedirectOnLogin and replace with redirect.onLogin service
• Fix some PSR-2 compliance issues

v4.1.9-alpha

• Fixes #780, and more efficient way to collect ids in Unique::getPaginatedQuery
• Show "user deleted" in activities table (#782)
• Patched version of widget-sort2Hash.js to prevent writing extraneous browser history entries (#712)
• Improve handling of fatal/parse errors

v4.1.8-alpha

• Normalize paths to always have a leading slash when comparing against the CSRF blacklist (#775) (possible breaking change for some environments - please see updated docs at https://learn.userfrosting.com/routes-and-controllers/client-input/csrf-guard#blacklisting-routes)
• Set display_errors to true for development configs (#762), move php settings into a common php subkey in config files
• ShutdownHandler no longer responsible for logging fatal errors
• Set up PHP config values in Core.php instead of inside the config service definition.
• Reimplement Builder::exclude to maintain a list of excluded columns, and then automatically update list of columns to fetch in get()
• Deprecate Model::queryBuilder and Model::export
• Update nginx config file from spdy to http2
• Add Pagespeed block (commented out) to nginx config file
• Make fpm-php7.0 the default CGI nginx config file

v4.1.7-alpha

• Add the withTernary method to the Unique trait to allow loading nested child models on ternary relationships.
• Add skip, take, limit, offset and deprecate withLimit and withOffset in Unique trait
• Support for withPivot on Unique relationships (in tertiary models)
• Factor out common code from PermissionUserSprunje into UserSprunje
• Rework internals of Sprunje to make it more testable. Filters, sorts, and paginations are now applied to a clone of the original queriable object. Deprecated getResults and added getArray and getModels. Result keys can now be customized.
• Table of user permissions on user info page
• Simplify by combining permission-users.html.twig into options on users.html.twig
• Add Chinese translations
• Deprecate User::exists() (#771)
• Add 'password' to hidden fields for User model
• Replace hardcoded Builder with classMapper reference