Vanilla 3.2 is now available
initvector
Vanilla Staff
Missed the 3.1 release? Check out the upgrade & release notes here.
Release notes are going to be a little minimal, this go around! So, without further ado...
Vanilla
- Add React-based embed system vanilla/vanilla#8911 Embedded content gets a major facelift!
- Update OAuth2 addon to be OIDC compliant vanilla/vanilla#9027 This may be a breaking change if your OAuth 2.0 provider is not also OIDC compliant.
- Fix category validation when moving a discussion vanilla/vanilla#9058
- Fix toggling verified status on user profile not properly refreshing vanilla/vanilla#9074
- Fix slow pruning of access token tables with a high number of rows vanilla/vanilla#9075
- Fix changing window hash sometimes causing infinite loop vanilla/vanilla#9112
- Fix moderation queue alignment on mobile vanilla/vanilla#9081
- Add re-orienting of images uploaded with media API vanilla/vanilla#9116
- Add new mobile dropdown style vanilla/vanilla#9160
- Fix rendering rich posts with empty bodies vanilla/vanilla#9171
- Fix Emoji support for Windows vanilla/vanilla#9173
- Update padding in Message component flexible vanilla/vanilla#9179
- Add route instance caching to RouteHandler vanilla/vanilla#9183
- Update user content list styles vanilla/vanilla#9184
- Update error reporting to include E_USER_WARNING vanilla/vanilla#9201
Rich Editor
Alt-text Support
It is now possible to add alternative text to images in Rich Editor. When selecting images in Rich Editor a button will appear next to allowing this text to customized.
Alternative text is primarily used to improve SEO and make images accessible to users with vision impairment.
Improved Mention Sorting
While attempting to mention a user, suggested results now have improved sorting. Users that have been active in the last 90 days will be prioritized above users that have not been recently active.
Additionally matching of exact accents is now given high priority than matching of exact casing-sensitivity. For example, if typing mention with the text sté , the user "Stéphane" would be ranked as a better suggestions than "steven" if both users existed.
Embedded content rendering warnings
Some users configure their browser to block external scripts & sites. Sometimes this can interfere with the rendering of various rich/auto embeds. 1 commonly blocked embed is twitter. Starting in this release, if an embed fails to render due to a user's browser configuration, they will be shown a warning icon next to the link.
If they click on this warning icon they will be taken to an FAQ page explaining the issue. The embed will still render normally for other users.
Other Editor Fixes/Changes
- When inserting an embed (such as a quote or image), the user's cursor is now automatically placed after the embed.
- It is on longer possible for the editor to get "stuck" with an embed at the end of the post. Clicking after the embed will always ensure the cursor is placed after it. #7597
- Notifications are now sent for users to users when a Rich Quote is created of one of their discussions/comments. It is essentially treated as a mention. #9066
- Update the mention toolbar to prioritize users that have been active in the last 90 days. #5936
- Fix various edge cases when typing enter while inside of a list. #9026, #8684
- Fix performance issues while creating and editing posts in certain browsers. #9051We will continue to monitor Rich Editor performance across different browsers.
- Fix scroll position jumping to the top of the page while creating a link. #9060
- Fix incorrect Rich Posts rendering in the Warnings & Notes plugins. #8404
- Fix a bug where sometimes creating a mention crashes the Rich Editor. support#590
- Fix incorrect positioning of the Rich editor paragraph formatting on the first line. knowledge#1137
- Improve styling of list elements (especially nested lists) with rich editor. vanilla#8985
- Fix emoji rendering in the Rich Editor emoji picker on windows machines. vanilla#9143
Security
- Fix possible request forgery using Facebook Social Connect sharing
- Fix invitation codes not expiring after use
- Fix users being able to dismiss a non-dismissable message
- Fix passing post URL in request when flagging a post
- Fix enumeration via user availability endpoints in private communities
- Fix ability to send invitations when site not configured for invitation registration
- Fix category validation in embedded comment posts
- Fix ability to manually set ID when creating an invitation
- Fix quote folding settings not requiring authenticated postback
Download
Get it over in the addon directory. https://open.vanillaforums.com/addon/vanilla-core-3.2
Comments
Rich Embed System
The Rich Embed system received a major overhaul in this release. Starting with this release it is possible for addons to create custom Embed. See our new Embed Addon guide:
https://docs.vanillaforums.com/developer/addons/adding-new-embeds/
In addition the following improvements have been made
Developer notes
Gdn_Format Deprecations
This release includes a large refactoring of the text formatting pipeline, as well as 100s of additional automated test cases.
The new class for formatting is
Vanilla\Formatting\FormatService. It is recommend to dependency inject this class usingGarden\Containerbut it is also easily accessible throughGdn::formatService(). For each existing vanilla format a new class implementingVanilla\Contracts\Formatting\FormatInterfacehas been created and registered with the service.The following methods have been updated to point to the service and have been deprecated.
Deprecated and Emitting Warnings
fixnl2brGdn_Format::autoGdn_Format::unembedContentGdn_Format::getEmbedSizeGdn_Format::replaceButProtectCodeBlocksGarden.Format.WysiwygFunctionGdn_Format::quoteEmbedGdn_Format::getRichMentionUsernames$addBreaksonGdn_Format::textandGdn_Format::textEx. Instead the existing configurationGarden.Format.ReplaceNewlinesnow controls this behaviour.$flavoredparameter is no longer available onGdn_Format::markdown(). This is now controlled by the configuration valueGarden.Format.UseVanillaMarkdownFlavor(default true).Deprecated without warnings (for now)
Gdn_Format::bbCodeGdn_Format::displayGdn_Format::plainTextGdn_Format::excerptGdn_Format::markdownGdn_Format::textGdn_Format::textExGdn_Format::toGdn_Format::wysiwygGdn_Format::richGdn_Format::htmlWarnings
Starting in this release PHP
E_WARNINGandE_USER_WARNINGmessages are being sent to logs init addition to errors. vanilla#9201This may cause additional content to be written to web server logs, please file issues for warnings that may appear.
Hi all, i have a warning in my logs related to trusted domains. I don't have enable this feature on my site
We do have an issue open for that warning (and a couple others).
From the notes:
Starting in this release PHP
E_WARNINGandE_USER_WARNINGmessages are being sent to logs init addition to errors. vanilla#9201PHP 8 is planning to turn a bunch of these into exceptions so we're preparing early by logging them. @initvector and his team are planning on tackling these going forward, so most of them should be fixed in the next release.
What an awesome release!! hats off for such huge improvements to the rich text editor, guys.
Hello, I just wanted to do a quick shoutout to the current Vanilla Team.
I'm either getting better at this (from the years doing this), or the software is simply getting better... probably the later.. but maybe a little of the prior.
It was a leap of faith for us to switch all our forums to Open-Source Vanilla several years ago, and this year, I feel pretty dang good about that decision.
It's great to see all the git activity and it feels like less issues with open-source.
We run SSO (SAML) with wordpress sites and we still use JSConnect to trickle that SSO state down to vanilla. I just completed the latest build with all the latest versions (wordpress / themes / plugins / vanilla)... and it works. This build does still require a couple tweaks.. but all-in-all.. I still consider this the best solution.
So, Cheers!
Thanks! We're continuing to work on it as a core priority.
Our pace of development and bandwidth for new features and fixes has been increasing as well. Our develop staff has been expanded in the in last 2 years from ~5 to almost 20 now! As a result we are able to have more and more improvements to the open source project, and still have time to improve our proprietary plugins for cloud customers.
We run SSO (SAML) with wordpress sites and we still use JSConnect to trickle that SSO state down to vanilla. I just completed the latest build with all the latest versions (wordpress / themes / plugins / vanilla)... and it works. This build does still require a couple tweaks.. but all-in-all.. I still consider this the best solution.
Could you open another thread on setup experience? I'm particularly interested in what extra steps you had to take to get your setup working properly. I'd like future upgrades & installs to be easier for everyone.
Hi, just saw this. I basically followed regular update protocol, then referenced my old post for Van 2.6 to fix a few lingering issues:
I did not take good notes this go 'round... but, I'm doing another upgrade soon and will try to take better notes.
is paid forum?? how come people can download it for free?
You get Hosting, setup and Vanilla Forums support on a paid subscription.
If you manage all your self you can use the forum platform for free.