2.0-M0-EINVOICE-2 (2019-01-18)
This is a bugfix release, which also includes some security fixes both in alf.io and its dependencies. Please update your instance
Security Fixes (alf.io):
We've found that there is a way for an user to open (and potentially download and use) a ticket belonging to someone else. Despite the process of obtaining this data requires a deep knowledge of the system, and the chances of getting a hold of said ticket are low, we advise everyone to update their instance.
Security Fixes (dependencies):
- Update Bootstrap version #562
Changelog from V2.0-M0
Breaking Changes
- mysql and hsqldb support has been dropped
- war deployment is not supported anymore
- minimum PostgreSQL version is now 9.5
Implemented enhancements:
Closed issues:
- move all views in afterMigrate__* scripts #479
- Translations for 2.0-M0 #477
- Switch vatchecker implementation #468
- Update to spring boot 2 and spring 5 #467
- Remove hsqldb and mysql support #466
- Remove "http" (Spring) profile, because it does not seems to work (and is confusing) #514
- How to launch in production/non-dev mode with only 8080 and no HTTPs ? #511
- Docker Compose Support #363
Merged pull requests:
- Switch to spring5 and spring boot2, implement #467 #473 (syjer)
- Implement #466 Remove hsql/mysql #471 (syjer)
- implement #468 switch euvatchecker v2 #470 (syjer)
- Add Docker Compose support #534 (asymmetric)
- Fixed French errors #526 (theute)
- remove anyway broken "http" (Spring Boot) profile (fixes #514) #525 (vorburger)