LycheeOrg/Lychee v4.6.1-RC1

Version 4.6.1 RC1

on GitHub

IMPORTANT

• This update contains a Security Update which fix multiple XSS vulnerability and update the Content Security Policy.
• This update will drop the API key in favor to Authorization token.
  As a result, once the migration is applied the old API token won't work anymore.

What's Changed

• Drop page support by @ildyria in #1489
• Add user and better structure to session json by @nagmat84 in #1443
• Move 'installation:complete' to web instead of per route by @ildyria in #1467
• Cleaning config table by @ildyria in #1491
• Update Exec.php by @corrilan in #1153
• Ensure that Admin rights are overloading others by @ildyria in #1508
• Improve config options by @qwerty287 in #1366
• Fixes #1514 by @nagmat84 in #1515
• Shared albums should not consider the require_link property. by @ildyria in #1480
• Improve API client usability by @qwerty287 in #1368
• Improve & fix CSP by @ildyria in #1528
• version 4.6.1 by @ildyria in #1533

New Contributors

• @corrilan made their first contribution in #1153

Full Changelog: v4.6.0...v4.6.1-RC1