Release 2.10.1 is addresses a number of small bug fixes as well as issues related to the ElasticSearch update in AtoM 2.10.0. It also includes a few enhancements such as having the ability to add items to clipboard associated with a specific physical storage container record, updates to physical storage reports which will now include reference codes, and a few new CSV validator tests. AtoM also now enforces Content Security Policy by default instead of just reporting violations.

Community Contributors

A huge thanks to all the community contributors, translators, and folks who reported issues for this release!

Masssive thanks to these folks for contributing fixes, enhancements, and documentation updates for this release:

• @danloveg
• @Eashana0104
• @stephenfrank
• @giridhar-se

List of changes

Enhancements and other changes:

• Added a local only option to the text extraction PDF task (#2214)
• Added the ability to add archival descriptions to clipboard from a Physical Storage view (#2205)
• Improved clarity of physical storage reports by including reference codes (#2186)
• Expanded Acquisition date in accession and deaccession form to include YYYY only or free-form entries (#2157)
• Added new CSV Validator tests for maximum title lengths, and for validating event dates (#2252)
• AtoM now enforces CSP by default, and is no longer report-only. (#2219)

Bug fixes:

• Fixed php error in QubitLimitIp on dev AtoM site after migration to 2.10 (#2178)
• Clipboard Print preview now works as expected in BS5 (#2171)
• Fixed ES issue that resulted in incorrect search result count for more than 10k results (#2198)
• Fixed CSP Violation for refresh page links (#2239)
• Fixed CSP Violation for previous page links (#2232)
• Updated CSV imports to not fail if an unmatched record is encountered (#2071)
• Fixed CSV imports of archival descriptions failing to find pairs if repository data is inherited (#2070)
• Fixed broken user menu styling for SSO (#2250)
• Clarified Generate archival description reports as public user settings (#2248)
• Fixed incorrect ES config path for max_result_window (#2246)
• Fixed fullwidth treeview being frozen when max treeview items is increased (#2237)
• Updated CSV import to use culture-agnostic matching (#2231)
• Removed DebugPDO and related references from AtoM (#2223)
• Removed unsupported multi-line input for street addresses and updated to single line (#2193)
• Fixed missing divider in RTL layout (#2217)
• Updated Contributing guidelines with wiki docs (#2206)
• Created a Code of Conduct document (#2203)
• Removed unused BS2, jQuery, and uppy vendor dependencies (#2201)
• Fixed typo on "port" config in bootstrap.php (#2188)
• Fix broken docker environment variable (#2187)
• Fixed issues with export bulk csv (#2179)
• Fixed build.xml for AtoM's build script to account for 2 digits in version (#2177)
• Fixed broken symfony debug mode in BS5 themes (#2031)

Dependency updates:

• Dependabot fixes: change package versions (#2195)

New Contributors

• @sarah-mason made their first contribution in #2203
• @stephenfrank made their first contribution in #2188
• @giridhar-se made their first contribution in #2211
• @Eashana0104 made their first contribution in #2233

Full Changelog: v2.10.0...v2.10.1

Release 2.10 is a major release which updates ElasticSearch to 7.10, and also removes the two Bootstrap 2 themes. It also includes a number of features and enhancements such a settings page for logo, favicon, and header color customization, the ability to export accession CSVs, and major improvements to the RTL layout.

Community Contributors

A huge thanks to all the community contributors, translators, and folks who reported issues and vulnerabilities for this release!

Big thanks to these folks for contributing enhancements and fixes for this release

• @danloveg
• @mInnes-archives
• @timtomch

List of Changes

Major dependency updates and changes:

• Upgraded to ES 7.10 (#2056)
• Removed BS2 themes (#2065)

Features and enhancements:

• Added a header customizations settings page for changing header, site logo, and favicon (#2036)
• Added ability to update Google Analytics ID via settings (#2079)
• Added empty and invalid information object check to data integrity and repair tool (#2144)
• Added ability to export accession CSV via Clipboard (#1901)
• Added ability to do bulk CSV exports. (#2057)
• Enhanced accessibility of PDF finding aids (#2102)
• Fixed problems with RTL layout (#2067)
• Enabled mouse scroll nav for carousel. (#2076)
• Improved digital object load task URL handling (#2162)
• Added password confirmation before updating user (#2134)
• Added VSCode files to gitignore (#2099)

Bug Fixes and other updates:

• Fixed search:document not working in ES7 (#2169)
• Fixed logo and favicon functionality to not restore logo on submit. (#2166)
• Updated ES plugin to use forcemergeAll (#2160)
• Updated build package.xml with BS5 build files (#2150)
• Closed cURL handles on digital object downloads (#2155)
• Fixed CLI tools:rename-slug not updating browse page links. (#2153)
• Make paths for logo/favicon to be configurable dir (#2151)
• Clarified 'Generating finding aid as a public user' setting. (#2145)
• Displayed draft digital objects in carousel. (#2142)
• Fixed group permissions not being set/displayed correctly (#2094)
• Updated arOidcPlugin to use expires_in for access token (#2139)
• Fixed creating new users requiring non-existent currentPassword field (#2137)
• Fixed XML not escaping for access copy URLs in EAD export (#2135)
• Fixed related accessions not appearing in Physical Storage (#2116)
• Fixed rights area duplicates under accession records and 500 error on save (#2098)
• Fixed style attribute in customizable header violating content security policy (#2129)
• Stopped testGetByTitleIdentifierAndRepo from polluting database (#2125)
• Added more feedback to logs when indexing information objects by slug (#2124)
• Fixed shifted columns in CSV exports (#2122)
• Fixed isAuthenticated error when attempting to export accession csv using CLI (#2117)
• Added clipboard count UI labels to AtoM fixtures (#2114)
• Fixed PHP 8x error for update fixtures task (#2109)
• Fixed PHP 8x error for plugin page (#2106)
• Updated public CSV exports to exclude accessionNumber field (#2090)
• Reduced year input to 4 digits for fields with datepickers (#2092)
• Clarified 'This is a mandatory element' msg in forms. (#2089)
• Fixed DACS incorrectly mapping 'Physical access' to 'accessionNumber' instead of 'physicalCharacteristics' (#2087)
• Fixed CSV exports with hidden elements having data in wrong columns. (#2041)
• Restored new related material formatting and fix 500 error when linking containers (#2085)
• Fixed tooltips that were not displaying asterisks (#2083)
• Made clipboard 'count' text translatable. (#2078)
• Fixed finding aid visibility typo (#2077)
• Added ability to expand sections that contain errors in forms. (#2063)
• Excluded hidden elements from Finding Aids. (#2030)
• Fixed logout route for SSO when IP is limited (#2039)
• Updated BS5 to use correct alert class (#2007)

Dependency updates:

• Bumped tmp from 0.2.3 to 0.2.4 (#2121)
• Bumped cypress version (#2119)
• Bumped form-data from 4.0.1 to 4.0.4 (#2103)

New Contributors

• @timtomch made their first contribution in #2102

Full Changelog: v2.9.2...v2.10.0

Release 2.9.2 is a small release that fixes translation strings on the browse page that broke in the last release. It includes a few other minor changes and bug fixes, adds a change that significantly improves the JS challenge performance, and also includes the ability to export accession records via the CLI.

Community Contributors

A big thanks to all community members who reported bugs and helped us in quickly putting together a release that fixed some important issues!

Also, a huge thanks to these folks for contributing enhancements and fixes for this release!

• @yenaing-oo
• @danloveg
• @mInnes-archives

List of changes

Features and enhancements:

• Improved JS challenge performance by moving logic before Symfony startup (#2054)
• Added the ability to export accession records via CLI (#1862)
• Added a composer script to help debug PHPUnit tests (#2046)
• Added Docker Compose support for ARM-based development environments (#2048)

Bug fixes:

• Fixed error on attempting to generate box label report (#2068)
• Fixed error with adding Language and Script notes field in ISAD & DACS (#2061)
• Fixed appraisal field being inherited during creating description from Accession (#2058)
• Fixed a typo in OIDC loginAction (#2044)
• Fixed missing translation strings in the browse page (#2050)
• Added additional feedback to clipboard save message to inform users about clipboard retention (#2022)

Full Changelog: v2.9.1...v2.9.2

Release 2.9.1 primarily addresses bugs introduced due to PHP 8.x and other changes in 2.9.0. It also includes a few enhancements, most notably — improvements to how related materials are listed, a Javascript challenge for human verification to prevent bot attacks (documentation can be found here), and a couple of performance improvements.

Community Contributors

A massive thanks to all the community contributors, translators, and folks who reported issues and vulnerabilities for this release! Nearly a third of our list of changes came from community contributors this time around, which makes us really happy!

Big thanks to these folks for contributing fixes for this release:

• @mInnes-archives
• @danloveg
• @yenaing-oo
• @misilot

List of changes

Enhancements and other changes:

• Added improvements for how related materials are listed in descriptions (#1900)
• AtoM now re-encodes AV Files Only when Necessary (#1912)
• Added xdebug for PHP debugging to the docker env (#1989)
• Added js challenge for human verification (#1962)
• Added capability for searching accessions by linked terms (#1986)
• Addressed high memory usage in tools:rename-slug (#1971)

Bug fixes:

• Fixed broken string from translating html entities (#2020)
• Clarified Limit IP settings for authenticated users. (#2015)
• Fixed CSV exports not hiding visible elements (#2005)
• Fixed not being able to access User Menu when using CAS Authentication (#1983)
• Fixed not being able to remove physical object from item (#1995)
• Fixed broken archival descriptions pages that were linked to a Physical storage (#1996)
• Fixed empty form values mask submitted values in advanced search (#1992)
• Fixed 500 error for descriptions with linked physical storage (#1987)
• Fixed PHP 8.x related clipboard issues (#1985)
• Fixed identifiers not being searchable (#1977)
• Fixed broken job links (#1975)
• Fixed typo in sfImageMagickAdapter (#1972)
• Updated ImageMagick to be in line with v7 syntax to fix warnings (#1918)
• Fixed improper escaping double quotes with Markdown (#1964) (#1978) (#1979) (#2001)
• Fixed PHP 8.x deprecation warnings (#1960)
• Fixed Broken MODS XML exports (#1958)
• Replaced DebugPDO with PropelPDO for Tests (#1965)
• Fixed 'Related descriptions' field missing in descriptions (#2013)
• Fixed broken descriptions with related descriptions (#2018)
• Fixed hidden ISAD/RAD/DACS elements being visible for public EAD XML (#1879)

Dependency updates:

• Updated composer dependencies (#1939) (#2017)
• Updated Dockerfile to use PHP8.3, the recommended version for 2.9 (#1981)
• Updated gh unit test workflow in AtoM to use ubuntu 24.04 (#1942)
• Upgraded CAS and addressed package name change (#1974)

New Contributors

• @danloveg made their first contribution in #1970

Full Changelog: v2.9.0...v2.9.1

Release 2.9.0 is a major release which updates ElasticSearch to 6.8.3, PHP support to 8.3, and includes a few small bug fixes.

Community Contributors

A huge thanks to all the community contributors, translators, and folks who reported issues and vulnerabilities for this release!

Big thanks to these folks for contributing fixes for this release:

• @misilot
• @Jimadine
• @sawyerb-ksu
• @wioxjk for creating issues for PHP 7.4 and ElasticSearch 5.x updates
• Massive thanks to @FriendsOfSymfony1 who have been maintaining and updating Symfony1; we referenced https://github.com/FriendsOfSymfony1/symfony1 to guide our PHP 8.x updates.

List of changes

Major dependency updates:

• Updated ElasticSearch and Elastica to 6.x (#1880)
• Added fixes for AtoM for ES 6.x (#1907)
• Updated Symfony and AtoM code base to PHP 8.x (#1909)

Enhancements and other changes:

• Updated CONTRIBUTING.md (#1848)
• Added OIDC plugin create user setting (#1815)
• Allowed manual user creation based on OIDC setting (#1822)
• Allowed selection of secondary OIDC provider (#1824)
• Added OIDC 'unauthorized' failure message (#1911)
• Clear template cache when authenticating OIDC usr (#1835)
• Allow independent OIDC provider config (#1836)
• Updated GitHub Workflows for tests (#1856)
• Bumped gh actions/cache to v4 (#1919)
• Added OIDC plugin activation control (#1886)
• Added Include non-visible elements option for BS2 clipboard exp. (#1894)

Bug fixes:

• Fixed diacritics typo. (#1813)
• Fixed tooltips for BS5 (#1777)
• Small spelling fix (#1833)
• Fixed IPv6 non-specified ranges unexpectedly allowed (#1830)
• Fixed mode option name in data integrity CLI (#1844)
• Improved the contrast (#1840)
• Fixed accordion button icons for BS5 theme (#1853)
• Fixed add function page for PHP 8.x (#1947)
• Moved GA4 tracking code to head element to address Google's "Ownership verification failed" error message. (#1869)
• Fixed delete function of 'Lang and script note'. (#1846)
• Fixed notes section when RAD Title notes are empty/NULL. (#1870)
• Updated institution upload limits. (#1864)
• Updated composer deps and update php-cs-fixer conf (#1881)
• Fixed OIDC plugin getOidcInstance() logic (#1882)
• Remove duplicate sfPropelPlugin phing code (#1902)
• Fixed missing CSV update import options (#1914)
• Fixed Acl check for QubitContactInformation. (#1929)
• Updated markdown render for BS5 values. (#1927)
• Fixed DO images in the edit DO page (#1915)
• Updated imports to check if ID is valid. (#1932)
• Ensured check for pdftotext works on all environments. (#1933)
• Updated markdown render for BS5 values as html. (#1934)
• Refactor getByTitleIdentifierAndRepo() (#1931)
• Fixed CLI CSV import update flag (#1937)
• Fixed clipboard exports with hidden visible element headers. (#1896)
• Added submit button to redirect Load clipboard to View clipboard. (#1889)
• Fixed exports for PHP 8.x (#1940)
• Fixed 'identifier' spelling. (#1904)
• Fixed error with pagination for invalid culture/repo. (#1946)

Tests:

• Updated pcov unit test coverage config (#1849)
• Added test coverage report in strict mode (#1855)
• Updated cypress and fix flaky tests (#1858)
• Added unit test coverage for AtoM OIDC Plugin (#1883)
• Added oidcUserTest (#1884)
• Remove tests asserting PDO class type (#1936)
• Fixed integration test repos (#1949)
• Move CSP filter test (#1863)

Security updates:

• Updated app.yml CSP Directives Structure (#1851)
• Updated default CSP directive (#1908)
• Updated logic to ignore newlines in CSP directive in app.yml (#1857)
• Fixed 500 error for empty accession (#1952)

Dependency updates:

• Bumped npm dependency versions (#1828)
• Bumped npm dependencies (#1859)
• Bumped webpack version (#1865)
• Bumped nanoid from 3.3.7 to 3.3.8 (#1906)
• Updated composer dependencies (#1891)
• Updated Bootstrap 5 dependency to current version (#1841)

New Contributors

• @misilot made their first contribution in (#1833)
• @Jimadine made their first contribution in (#1830)
• @eviau-artefactual made their first contribution in (#1840)
• @sawyerb-ksu made their first contribution in (#1851)

Full Changelog: v2.8.2...v2.9.0

Release 2.8.2 is a minor release with a few small bug fixes, which include fixing the Other Languages dropdown, and fixing the ability to add items to the clipboard in new browser sessions.

Here are a list of changes:

• Fixed typo in diacritics file. #1813
• Added URL asset support to digital object load task #1807
• Fixed other language dropdown being empty #1805
• Fixed images rendered from PDF pages being removed and not regerated on digital object regeneration task #1794
• Fixed PDF page image rendering issues #1792
• Automatically orient scaled images (#1788) #13606
• Fixed not being able to add items to clipboard in a new session #1783
• Fixed URLs in example CSV files #1781
• Updated tooltips for BS5 #1777
• Fixed untranslated yes/no choices in some settings #1772
• Added CLI data integrity repair tool #1725

Dependency updates:

• Bumped phpseclib/phpseclib from 3.0.35 to 3.0.37 #1769
• Upgraded cypress version #1786

Full Changelog: c2d954f...v2.8.2

Release 2.8.1 is a minor release with a number of a small bug fixes, and an important security update that fixes a security issue that would affect LDAP users - LDAP authentication in AtoM will now use TLS encryption by default.
More details about this available in AtoM docs.

A big thanks to the community contributors who worked on fixes for this release:

• @marceloalencar

Here are a list of changes:

• Added TLS encryption to LDAP authentication #1774
• Fixed AtoM 2.7.3 spelling error in EAC xml #1768
• Fixed missing LDAP extension when running Docker #1766
• Fixed CSV GUI export not logging items exported. #1762
• Fixed CSV GUI export logging wrong number of items exported. #1759
• Fixed CSV GUI export for institutions only outputting single culture #1755
• Fixed CSV GUI export for actors only outputting single culture #1752
• Fixed CSV GUI export for descriptions only outputting single culture #1750
• Fixed AtoM clipboard results overwriting when using multiple browser tabs #1749
• Raised the default installation value for the full-width treeview's "Items per page" setting #1748
• Updated the finding aids XSLT to fix minor erros in generated pdfs #1746
• Added missing QubitCSP filter for qtSwordPlugin #1742
• Fixed memprof Dockerfile typo #1739
• Diacritics mapping config is now tracked during internal upgrade/replication. #1735
• Hidden fields are now excluded from CSVs exported by public users #1728
• Bulk cli authority record csv export now include language/script fields #1726

Also many thanks to contributors who reported bugs and issues for this release.

Full changelog: v2.8.0...v2.8.1

Release 2.8.0 is a major release which features a couple of important security updates: adding Content Security Policy headers to AtoM responses and updates to atom cookies. Please note that CSP headers are set to report-only for this release, but AtoM administrators should update the directives list in config/app.yml if their AtoM site has any outgoing requests to external sources.

This release also makes the Bootstrap 5 Dominion theme the default theme for new installations, and deprecates Bootstrap 2 themes (arDominionPlugin and arArchivesCanadaPlugin) since Bootstrap 2 is no longer officially supported. AtoM administrators should plan to switch to a Bootstrap 5 theme.

This release also brings a big list of features and enhancements including support for changing diacritics settings (more details in the documentation), adding an authority record rename option, and a dedicated tab that allows viewing failed jobs in AtoM.

A huge thanks to the community contributors who worked on features and bug fixes this release:

• @mInnes-archives #1542
• @arthurd2 #1662

Features and enhancements:

• Added diacritics setting functionality #1684
• Set arDominionB5Plugin to be the default theme for new installations in AtoM #1632
• Added a Bootstrap 2 deprecation notice in the web UI #1642
• Added REST API support for physical storage object creation #1628
• Added a new REST API endpoint that allows changing of an information object's publication status #1624
• Added a tab for viewing failed jobs #1613
• Added an authority record rename module #1542
• Increased the PDF indexing limit to 16MB #13650
• Amharic made available in Weblate for translation

Security updates:

• Add CSP headers to AtoM responses #1646
• Update CSP header default to 'report-only' #1693
• secure and samesite flags added to AtoM cookies #1641

Bug fixes:

• Fixed difficult to read job logs #1715
• Fixed typo in API key label when editing user. #1713
• Fixed archival institution page's upload limit form has a broken field on BS5 theme #1710
• Fixed invalid static pages being created with invalid slugs #1703
• Fixed clipboard send feature no longer sending the request data as a form submission #1701
• Fixed some BS5 theme typography issues and inconsistencies #1698
• Fixed autocomplete during SKOS import pointing to descriptions instead of taxonomies #1696
• Updated the CSRF attack message to be more informative #1678
• Added proper page titles for better accessibility (WCAG (2.4.2)) #1673
• Added error handling for the rename-slug CLI tool #1666
• Fixed Dockerfile so that it no longer gives an error when it is trying to install a package from npm #1662
• Fixed incomplete terms being saved in the taxonomy when adding access points #1661
• Fixed identifier counter not incrementing when used to modify existing descriptions #1653
• Fixed the broken media-type option on digital object deriv regeneration task #1643
• Fixed global search institutional delimiters and advanced search link #1635
• Removed the repeated re-index warnings on running the build-nested-set task #1634
• Fixed an ACL check in the REST API's digital object create endpoint that was malformed #1630
• Added a task description for the password reset task #1611
• Fixed G4 analytics not tracking pageviews from clicks in full-width treeview #1606
• Fixed escape special characters setting no longer working in 2.7.x #1605
• Reduced noise in search results that was there due to indexing inherited creators #1598
• Fixed multi-line i18n strings #1704
• Fixed update function for 'Language and script notes'. #13657
• Updated BS5 navbar-toggler-icon to Font Awesome icon #1688
• Fixed RAD template fields not appearing when switching languages #1596

Dependency updates:

• Bumped postcss from 8.4.12 to 8.4.31
• Bumped postcss and resolve-url-loader
• Bumped @cypress/request from 2.88.10 to 3.0.1
• Bumped tough-cookie and @cypress/request
• Upgraded Cypress to v13.2

Also many thanks to the folks who reported security vulnerabilities for this release:

• Helder Gomes Silva #1641

Full Changelog: v2.7.3...v2.8.0

Full Changelog: v2.7.3...v2.8.0-rc1

This is a minor release with a few bug fixes related to Bootstrap 5, and we expanded language support in AtoM.

Here's a list of changes:

• Added a CLI rename slug tool #1609
• Added treeview sync code to the BS5 theme #1616
• Fixed overflowing images in BS5 themes #1610
• Added data files for some missing languages, ref #13639

Please refer to this gist for a currently supported languages.

Full Changelog: v2.7.2...v2.7.3