Skip to content

Releases: bbalet/jorani

Security and PHP8.2 compat release (No DB Patch)

01 May 08:52
3fb7eca
Compare
Choose a tag to compare

Please download the file jorani-1.0.2.zip (as the other files require an extra step for setup)

This release requires PHP>=8.1.

This release fixes security issues and fixes some bugs.

It is recommended to change the file log extension to log instead of php in order to prevent security exploits based on log injection.
If you migrate from an older version of Jorani, please add this variable into the configuration:

$config['log_file_extension'] = 'log';

Don't forget to forbid the access to the log folder in Apache configuration.

Thanks to David Uton (m3n0sd0n4ld) for detailed security analysis

v1.0.0 Stable (needs a DB Patch)

11 Oct 17:18
Compare
Choose a tag to compare

Please download the file jorani-1.0.0.zip (as the other files require an extra step for setup)

  • Compatible with PHP7.4 (looks compatible with PHP8+)
  • The engine to compute the leave balance has been revamped:
    • No more problem using the compensate system type.
    • Overtime entitlements have no longer a one year limit.
  • The HTTP API is now documented using OpenAPI (Swagger).
  • New Swagger client to test out the REST API: http://demo.jorani.org/testapi.php (you can test it with testclient/testclient credentials)
  • Update dependencies so as to fix security warnings.
  • In admin/diagnostic, Jorani checks if your are running the latest version.
  • Support of slovakian language.
  • Support of romanian language.
  • ICS Feeds are now protected by a hash key :
    set $config['legacy_feeds'] = TRUE; if you want to support unsecured feeds
    Otherwise users need to update the feed'URL in their favorite calendar application

Migration note:

  • Please back up your database
  • Apply patch sql/patch_to_1.0.0.sql
  • Please note that this db patch is not cumulative.

Known issues:
You might encounter an error with the new version of GetFamilyTree procedure while patching the database. Please apply this patch: sql/GetFamilyTree_mysql5.6.sql

v0.6.5 Stable release (NO DB patch)

29 Dec 10:35
Compare
Choose a tag to compare

Please download the file jorani-0.6.5.zip (as the other files require an extra step for setup)

New features:

  • Support of Portuguese
  • Support of Arabic
  • Dutch translation has been updated to 100%.
  • German translation has been updated to 100%.
  • A new parameter disable_workmates_calendar allows you to hide the workmates calendar.

4 minor bugs fixed. 1 major bug fixed (en_GB was not working with calendars)

v0.6.4 Stable release (NO DB patch)

08 Aug 15:54
Compare
Choose a tag to compare

This version solves minor bugs brought from v0.6.x version:

  • Restore 'requested'=>'cancelled' transition.
  • Improve leaves/counters page.
  • Export from HR/Employees was broken.
  • Don't display rejected and canceled leave requests in ICS feeds.
  • ICS Feed for day offs was broken.
  • HR should have access to all statuses when editing a leave request.

Known issues:

  • Calendar/tabular is consumming a lot of memory. A workaround is to increase PHP memory limit.

v0.6.3 Stable release (NO DB patch)

02 Aug 19:35
Compare
Choose a tag to compare

Please note that the parameters cancel_* - formerly used to cancel a leave request - are now obsolete as two additional steps have been added to the workflow.

Compatible with PHP 7.2 (beta) so far.

New features:

  • Support of greek language.
  • New parameter mandatory_comment_on_reject to force the manager to comment on rejection.
  • Minor enhancements in translations, cursors and legends.

Known issues:

  • The transition between requested and canceled is missing.
  • Calendar/tabular is consumming a lot of memory. A workaround is to increase PHP memory limit.

Bugs fixed:

  • Requests/Validation doesn't work if $config['enable_history'] is set to FALSE. Switch it to TRUE to solve the issue.
  • LDAP mode is exclusive ; no fallback to internal user.
  • Warning message on adding a new comment.
  • UK regional variant was broken (choosing english (GB) from login page caused an error).
  • Restore compatibility to PHP 5.4 (even if we no longer support versions older than 5.6).

v0.6.2 Stable release (NO DB patch)

17 Jul 15:29
Compare
Choose a tag to compare

This release adds the following new features:

  • Workflow of leave is extended to cancellation and canceled statuses.
  • Employees and their managers can comment on a leave request.
  • Users can create custom lists of employees (used as an alternative for oraginzation/entity in tabular calendar).
  • An employee can send a reminder for a requested/cancled leave to his line manager.
  • Leave requests are now clickable into calendar/tabular and global.
  • Filter on status to dynamically filter lists displayed on pages.

Known issues:

  • Requests/Validation doesn't work if $config['enable_history'] is set to FALSE. Switch it to TRUE to solve the issue.
  • LDAP mode is exclusive ; no fallback to internal user.

v0.6.0 Stable (needs a DB Patch)

29 Jun 18:13
Compare
Choose a tag to compare

New features:

  • Compatibility to PHP7.1 (minimal version is 5.6)
  • LDAP filter (Microsoft AD)
  • Define leave types acronyms (for calendar/tabular and export)
  • Use Jorani as an OAuth2 authorization source
  • Jorani is now translated into Czech
  • Improve UI experience for employees
  • Remove dependancy to Flash

If you come from a former version, please upgrade your database with sql/patch_to_0.6.0.sql

Please rebuild your configuration:

  • config/config.php
  • config/email.php
  • config/database.php
    As this version is not fully compatible with Jorani 0.5.0

v0.5.1 Stable release (NO DB patch)

11 Feb 18:38
Compare
Choose a tag to compare

Enhancements:

  • New tab in diagnostic page showing the leave requests without entitlements.
  • Add an alert message into Leave Balance report if at least one leave request has no entitlements.
  • Technical update of PHPMailer (CVE-2016-10033, CVE-2016-10045, CVE-2017-5223)

Bugs fixed:

  • Undefined variable when creating a leave request in behalf of a subordinate.
  • Leave cancellation doesn't add an entry in LR history.
  • Remove false Ajax error triggered into organization.
  • Style: Remove vertical scrollbar.

v0.5.0 Stable (needs a DB Patch)

05 Feb 13:47
Compare
Choose a tag to compare

IMPORTANT: Translations are done by volunteers. If you want to translate Jorani into your own language, please join the translation project (no IT skills needed): https://www.transifex.com/jorani/

This release needs a database patch, e.g. /sql/patch_to_0.5.0.sql if you come from v0.4.6

Major new features:

  • Support for SAML 2 (SSO)
  • Cancel leave request
  • Exclude leave types for contracts
  • Add a confirmation message for "forget password" action on login page
  • Add a regional variant to english translation (GB)
  • History of changes (at the moment, only for leave requests)

Minor enhancements:

  • New custom report showing all leave requests
  • Current day highlighted in calendar/tabular
  • Add ICS feed link into calendars/collaborators

Bug fixed:

v0.4.6 Stable release (NO DB patch)

21 Feb 20:19
Compare
Choose a tag to compare
  • Add a diagnostic page.
  • Minor changes.

Please join Google group: https://groups.google.com/forum/#!forum/jorani