Bump version

Make p/api/ also writeable for extensions
2026-06-20 15:15:50 +00:00 · 2020-06-02 11:33:10 +02:00 · 2020-06-02 11:32:18 +02:00
13 changed files with 1980 additions and 700 deletions
@@ -0,0 +1,169 @@
 [0.1.0]
 * Initial version
 [0.2.0]
 * Updated to base image 0.10.0
 * Supporting extensions
 [0.3.0]
 * No longer overwriting all config changes
 * Using cli scripts
 * Using scheduler for periodic task
 * Removed update menu item
 [0.4.0]
 * Updated to FreshRSS 1.6.3
 * Removed most custom patches (FreshRSS includes those now)
 [0.4.1]
 * Add parameter to allow for encoded slashes (thanks @Richard)
 * Updated description (thanks @Girish)
 [0.5.0]
 * Not using mysql port as this causes an error
 * Storing sessions in /run
 * Storing api logs in /tmp
 * Set some php options
 [0.6.0]
 * Updated to FreshRSS 1.7.0
 [0.7.0]
 * Updated to FreshRSS 1.8.0
 [0.8.0]
 * Update to FreshRSS 1.9.0
 [0.9.0]
 * Update to FreshRSS 1.10.2
 [0.10.0]
 * Better apache configs
 * Update extensions
 [1.0.0]
 * Fix issue where static extension assets were not served
 [1.1.0]
 * Update FreshRSS to 1.11.0
 [1.1.1]
 * Update FreshRSS to to 1.11.1
 [1.1.2]
 * Update FreshRSS to 1.11.2
 [1.2.0]
 * Use latest base image
 [1.3.0]
 * Update FreshRSS to 1.12.0
 * Features
  * Ability to add labels (custom tags) to articles #928
  * Handle article tags containing spaces, as well as comma-separated tags #2023
  * Handle authors containing spaces, as well as comma or semi-colon separated authors #2025
  * Searches by tag, author, etc. accept Unicode characters #2025
  * New option to disable cache for feeds with invalid HTTP caching #2052
 * UI
  * New theme Swage #2069
  * Click on authors to initiate a search by author #2025
  * Fix CSS for button alignments in older Chrome versions #2020
 * Security
  * Improved flow for password change (avoid error 403) #2056
  * Allow dot . in username (best to avoid, though) #2061
 * Performance
  * Remove some counterproductive preload / prefetch rules #2040
  * Improved fast flush (earlier transfer, fetching of resources, and rendering) #2045
 [1.4.0]
 * Update FreshRSS to 1.13.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/blob/1.13.0/CHANGELOG.md)
 * Improvements to the Google Reader API #2093
 * Support for Vienna RSS (client for Mac OS X) #2091
 * Ability to import XML files exported from Tiny-Tiny-RSS #2079
 * Ability to show all the feeds that have a warning #2146
 * Share with Pinboard #1972
 [1.5.0]
 * Fix security issue where root directory was exposed
 * Enable mod rewrite for mobile apps like FeedMe to work
 [1.5.1]
 * Update FreshRSS to 1.13.1
 [1.6.0]
 * Update FreshRSS to 1.14.0
 * Update extensions to 0812ee05c24c
 [1.6.1]
 * Update FreshRSS to 1.14.1
 * Fix load more articles when using ascending order #2314
 * Fix the use of arrow keyboard keys for shortcuts #2316
 * Fix control+click or middle-click for opening articles in a background tab #2310
 * Fix the naming of the option to unfold categories #2307
 * Fix shortcut problem when using unfolded articles #2328
 * Fix auto-hiding articles #2323
 * Fix scroll functions with Edge #2337
 * Fix drop-down menu warning #2353
 * Fix delay for individual mark-as-read actions #2332
 * Fix scroll functions in Edge #2337
 [1.6.2]
 * Update FreshRSS to 1.14.2
 * Fix minor code syntax warning in API #2362
 [1.6.3]
 * Update FreshRSS to 1.14.3
 * New configuration page for each category #2369
 * Update shortcut configuration page #2405
 * CSS style for printing #2149
 * Do not hide multiple <br /> tags #2437
 * Updated to jQuery 3.4.1 (only for statistics page) #2424
 [1.7.0]
 * Update FreshRSS to 1.15.0
 * New archiving method, including maximum number of articles per feed, and settings at feed, category, global levels #2335
 * New option to control category sort order #2592
 * New option to display article authors underneath the article title #2487
 * Add e-mail capability #2476, #2481
 * Ability to define default user settings in data/config-user.custom.php #2490
 * Including default feeds #2515
 * Allow recreating users if they still exist in database #2555
 * Add optional database connection URI parameters #2549, #2559
 * Allow longer articles with MySQL / MariaDB (up to 16MB compressed instead of 64kB) #2448
 * Add support for terms of service #2520
 * Add sharing with Lemmy #2510
 [1.7.1]
 * Update FreshRSS to 1.15.1
 [1.7.2]
 * Update FreshRSS to 1.15.2
 [1.7.3]
 * Update FreshRSS to 1.15.3
 [1.8.0]
 * Update FreshRSS to 1.16.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.0)
 * Allow multiple users to have administration rights #2096
 * Preview the CSS rule to retrieve full article content #2778
 * Improve CSS selector ordering in the full-text retrieval (lib_phpQuery) #2874
 * New search option !date: allowing to exclude any date interval #2869
 * New option to show all articles in the favourites view #2434
 * Allow feed to be actualized just after being truncated #2862
 * Fallback to showing a GUID when an article title is empty #2813
 [1.9.0]
 * Use latest base image 2.0.0
 [1.9.1]
 * Update FreshRSS to 1.16.2
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.1)
 * Add the possibility to filter by feed IDs #2892
  * like f:123 more-search or multiple feed IDs like f:123,234,345 more-search or an exclusion like !f:456,789 more-search
 * Show users last activity date #2936
 * Ability to follow HTML redirections when retrieving full article content #2985
 [1.9.2]
 * Make p/api/ folder writeable for extensions like TinyTinyRSS api extension
@@ -1,497 +0,0 @@
 [0.1.0]
 * Initial version
 [0.2.0]
 * Updated to base image 0.10.0
 * Supporting extensions
 [0.3.0]
 * No longer overwriting all config changes
 * Using cli scripts
 * Using scheduler for periodic task
 * Removed update menu item
 [0.4.0]
 * Updated to FreshRSS 1.6.3
 * Removed most custom patches (FreshRSS includes those now)
 [0.4.1]
 * Add parameter to allow for encoded slashes (thanks @Richard)
 * Updated description (thanks @Girish)
 [0.5.0]
 * Not using mysql port as this causes an error
 * Storing sessions in /run
 * Storing api logs in /tmp
 * Set some php options
 [0.6.0]
 * Updated to FreshRSS 1.7.0
 [0.7.0]
 * Updated to FreshRSS 1.8.0
 [0.8.0]
 * Update to FreshRSS 1.9.0
 [0.9.0]
 * Update to FreshRSS 1.10.2
 [0.10.0]
 * Better apache configs
 * Update extensions
 [1.0.0]
 * Fix issue where static extension assets were not served
 [1.1.0]
 * Update FreshRSS to 1.11.0
 [1.1.1]
 * Update FreshRSS to to 1.11.1
 [1.1.2]
 * Update FreshRSS to 1.11.2
 [1.2.0]
 * Use latest base image
 [1.3.0]
 * Update FreshRSS to 1.12.0
 * Features
  * Ability to add labels (custom tags) to articles #928
  * Handle article tags containing spaces, as well as comma-separated tags #2023
  * Handle authors containing spaces, as well as comma or semi-colon separated authors #2025
  * Searches by tag, author, etc. accept Unicode characters #2025
  * New option to disable cache for feeds with invalid HTTP caching #2052
 * UI
  * New theme Swage #2069
  * Click on authors to initiate a search by author #2025
  * Fix CSS for button alignments in older Chrome versions #2020
 * Security
  * Improved flow for password change (avoid error 403) #2056
  * Allow dot . in username (best to avoid, though) #2061
 * Performance
  * Remove some counterproductive preload / prefetch rules #2040
  * Improved fast flush (earlier transfer, fetching of resources, and rendering) #2045
 [1.4.0]
 * Update FreshRSS to 1.13.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/blob/1.13.0/CHANGELOG.md)
 * Improvements to the Google Reader API #2093
 * Support for Vienna RSS (client for Mac OS X) #2091
 * Ability to import XML files exported from Tiny-Tiny-RSS #2079
 * Ability to show all the feeds that have a warning #2146
 * Share with Pinboard #1972
 [1.5.0]
 * Fix security issue where root directory was exposed
 * Enable mod rewrite for mobile apps like FeedMe to work
 [1.5.1]
 * Update FreshRSS to 1.13.1
 [1.6.0]
 * Update FreshRSS to 1.14.0
 * Update extensions to 0812ee05c24c
 [1.6.1]
 * Update FreshRSS to 1.14.1
 * Fix load more articles when using ascending order #2314
 * Fix the use of arrow keyboard keys for shortcuts #2316
 * Fix control+click or middle-click for opening articles in a background tab #2310
 * Fix the naming of the option to unfold categories #2307
 * Fix shortcut problem when using unfolded articles #2328
 * Fix auto-hiding articles #2323
 * Fix scroll functions with Edge #2337
 * Fix drop-down menu warning #2353
 * Fix delay for individual mark-as-read actions #2332
 * Fix scroll functions in Edge #2337
 [1.6.2]
 * Update FreshRSS to 1.14.2
 * Fix minor code syntax warning in API #2362
 [1.6.3]
 * Update FreshRSS to 1.14.3
 * New configuration page for each category #2369
 * Update shortcut configuration page #2405
 * CSS style for printing #2149
 * Do not hide multiple <br /> tags #2437
 * Updated to jQuery 3.4.1 (only for statistics page) #2424
 [1.7.0]
 * Update FreshRSS to 1.15.0
 * New archiving method, including maximum number of articles per feed, and settings at feed, category, global levels #2335
 * New option to control category sort order #2592
 * New option to display article authors underneath the article title #2487
 * Add e-mail capability #2476, #2481
 * Ability to define default user settings in data/config-user.custom.php #2490
 * Including default feeds #2515
 * Allow recreating users if they still exist in database #2555
 * Add optional database connection URI parameters #2549, #2559
 * Allow longer articles with MySQL / MariaDB (up to 16MB compressed instead of 64kB) #2448
 * Add support for terms of service #2520
 * Add sharing with Lemmy #2510
 [1.7.1]
 * Update FreshRSS to 1.15.1
 [1.7.2]
 * Update FreshRSS to 1.15.2
 [1.7.3]
 * Update FreshRSS to 1.15.3
 [1.8.0]
 * Update FreshRSS to 1.16.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.0)
 * Allow multiple users to have administration rights #2096
 * Preview the CSS rule to retrieve full article content #2778
 * Improve CSS selector ordering in the full-text retrieval (lib_phpQuery) #2874
 * New search option !date: allowing to exclude any date interval #2869
 * New option to show all articles in the favourites view #2434
 * Allow feed to be actualized just after being truncated #2862
 * Fallback to showing a GUID when an article title is empty #2813
 [1.9.0]
 * Use latest base image 2.0.0
 [1.9.1]
 * Update FreshRSS to 1.16.2
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.16.1)
 * Add the possibility to filter by feed IDs #2892
  * like f:123 more-search or multiple feed IDs like f:123,234,345 more-search or an exclusion like !f:456,789 more-search
 * Show users last activity date #2936
 * Ability to follow HTML redirections when retrieving full article content #2985
 [1.10.0]
 * Add forum url and update screenshot links
 [1.11.0]
 * Update FreshRSS to 1.17.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.17.0)
 * New tag management page #3121
 * New page to add feeds and categories #3027
 * Add a way to disable/enable users #3056
 * Fix special characters in user queries #3037
 * Hide feed credentials when adding a new feed #3099
 * Trim whitespace for feed passwords #3158
 * Updated PHPMailer library to 6.1.6 #3024
 * Add blogger.com to the default list of forced HTTPS #3088
 [1.12.0]
 * Update base image to v3
 * Update PHP to 7.4
 [1.13.0]
 * Update FreshRSS to 1.18.0
 * [Full changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.18.0)
 * Allow parallel requests #3096 - Much faster manual feeds refresh
 * Reload full article content when an article has changed #3506
 * New share article link to clipboard #3330
 * Improved OPML import of feeds with multiple categories #3286
 * Add a content action parameter to work with CSS selector #3453
 * New cURL options per feed: proxy, cookie, user-agent #3367, #3494, #3516
 * Do not import feeds causing database errors (e.g. due to conflicting HTTP redirections) ##3347
 [1.13.1]
 * Fix apache config to log the client IP
 [1.13.2]
 * Update FreshRSS to 1.18.1
 * Support standard HTTP 410 Gone by disabling (muting) gone feeds #3561
 * Supported by Newsboat 2.24+ #3574
 * Supported by RSS Guard #3627
 * Allow Unicode for shortcuts #3548
 [1.14.0]
 * Update FreshRSS to 1.19.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.19.0)
 [1.14.1]
 * Update FreshRSS to 1.19.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.19.1)
 [1.14.2]
 * Update apache configs
 [1.14.3]
 * Update FreshRSS to 1.19.2
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.19.2)
 * Improve dropdown menus on mobile view #4141, #4128
 * Fix regression regarding keeping read state after seeing favourites / labels #4178
 * Lots of code improvements, including improved support of PHP 8.1
 [1.15.0]
 * Update FreshRSS to 1.20.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.20.0)
 * New Web scraping feature HTML+XPath for Web pages without any RSS/ATOM feed #4220
 * Add support for Dynamic OPML #4407
 * New search engine supporting (nested) parentheses, also with negation #4378
 * Allow many (50k+) feeds #4347 and other performance improvements
 * New option to exclude some DOM elements with a CSS Selector when retrieving an article full content #4501
 * New option to automatically mark as read gone articles #4426
 * 2 new themes and plenty of UI improvements
 * Supported by Fluent Reader Lite client on Android and iOS #4595
 * Several bug fixes
 [1.15.1]
 * Update FreshRSS to 1.20.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.20.1)
 * Add support for custom XPath date/time format #4703
 * Add default redirect when authenticating #4778
 * Force default user before rendering login page #4620
 [1.15.2]
 * Update FreshRSS to 1.20.2
 * Update Cloudron base image to 4.0.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.20.2)
 * Fix security vulnerability in ext.php #4928 reported by @c3l3si4n
 [1.15.3]
 * Update FreshRSS extensions repo to f66efcf5f
 [1.16.0]
 * Update FreshRSS to 1.21.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.21.0)
 * New XML+XPath mode for fetching XML documents when there is no RSS/ATOM feed #5076
 * Better support of feed enclosures (image / audio / video attachments) #4944
 * User-defined time-zone #4906
 * New CLI script cli/sensitive-log.sh to help e.g. Apache clear logs for sensitive information such as credentials #5001
 * Mark some themes as tentatively deprecated: BlueLagoon, Flat, Screwdriver #4807
 * Many UI improvements
 [1.17.0]
 * Update base image to 4.2.0
 [1.18.0]
 * Update FreshRSS to 1.22.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.22.0)
 * Rework trusted proxies
 * Improve scaling with many feeds and long processes, reduce database locks
 * Fix many bugs and regressions
 * Improve themes Origine (also with automatic dark mode), Nord, etc.
 * Several UI / UX improvements
 * New languages Hungarian, Latvian, Persian
 [1.19.0]
 * Implement OIDC login
 [1.19.1]
 * Update FreshRSS to 1.22.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.22.1)
 * Fix regression in extensions translations (i18n)
 * Better identification of proxied client IP
 [1.20.0]
 * Update FreshRSS to 1.23.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.23.0)
 * New Important feeds group in the main view, with corresponding new priority level for feeds #5782
 * Entries from important feeds are not marked as read during scroll, during focus, nor during Mark all as read
 * Add filter actions (auto mark as read) at category level and at global levels #5942
 * Increase SQL fields length to maximum possible #5788, #5570
 * Many bug fixes
 * Soft require Apache 2.4+ (but repair minimal compatibility with Apache 2.2)
 * Upgraded extensions require FreshRSS 1.23.0+ Extensions#181
 [1.20.1]
 * Update FreshRSS to 1.23.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.23.0)
 * Fix crash regression with the option Max number of tags shown #5978
 * Fix crash regression when enabling extensions defined by old FreshRSS installations #5979
 * Fix crash regression during export when using MySQL #5988
 * More robust assignment of categories to feeds #5986
 [1.21.0]
 * Update FreshRSS to 1.24.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.24.0)
 * New shareable user query mechanism to share lists of articles by HTML, RSS, OPML
 * New CLI for database backup & restore
 * New JSON scraping mode to consume JSON data and JSON Feeds
 * New support for HTTP POST
 * New option to automatically add labels to incoming articles
 * New button to download a feed configuration as OPML
 [1.21.1]
 * Update FreshRSS to 1.24.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.24.1)
 * New button to export OMPL of a category
 * Many bug fixes
 [1.21.2]
 * Update FreshRSS to 1.24.2
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.24.2)
 * New global option to automatically add articles to favourites
 * New option to share articles from the article title line
 * Add core extensions, shipped by default: UserCSS and UserJS
 * Security: Force log out of users when they are disabled
 * Last version supporting PHP 7.4 and initial support for PHP 8.4+
 * Many bug and regression fixes
 [1.21.3]
 * Update FreshRSS to 1.24.3
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.24.3)
 * Fix mark-as-read from user query #6738
 * Fix regression for shortcut to move between categories #6741
 * Fix feed title option #6771
 * Fix XPath for HTML documents with broken root (used by CSS selectors to fetch full content) #6774
 * Fix UI regression in Mapco/Ansum themes #6740
 * Fix minor style bug with some themes #6746
 * Fix export of OPML information for date format of JSON and HTML+XPath feeds #6779
 * OpenID Connect better definition of session parameters #6730
 [1.22.0]
 * checklist added to CloudronManifest
 [1.23.0]
 * Update FreshRSS to 1.25.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.25.0)
 * Features
 * Bug fixing
 * API
 * Compatibility
 * Deployment
 * SimplePie
 * Security
 * UI
 * Extensions
 * I18n
 * Misc.
 [1.24.0]
 * Update FreshRSS to 1.26.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.26.0)
 * Add order-by options to sort articles by received date (existing, default), publication date, title, link, random
 * Allow searching in all feeds, also feeds only visible at category level with &get=A, and also those archived with &get=Z
 * UI accessible from user-query view
 * New shortcuts for adding user labels to articles
 * Several improvements and bug fixes
 [1.24.1]
 * Update FreshRSS to 1.26.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.26.1)
 * Fix back-compatibility with cURL 7.51 (we require cURL 7.52+ for `CURLPROXY_HTTPS`)
 * Add cURL version to page about system information
 * Fix regression with cURL HTTP headers breaking conditional HTTP requests
 * Fix regression with saving states of user queries
 * Fix regression with dynamic OPML
 * Fix update of the users last activity on login action
 * Fix setting category option *Maximum number of articles to keep per feed*
 * Fix priority field when processing a new feed from an extension
 * Use case-insensitive sort for categories
 * Improve dark mode of *Origine* theme
 [1.25.0]
 * Update base image to 5.0.0
 [1.25.1]
 * Update FreshRSS to 1.26.2
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.26.2)
 * Implement JSON string concatenation with & operator [#7414](https://github.com/FreshRSS/FreshRSS/pull/7414)
 * Support multiple JSON fragments in HTML+XPath+JSON mode [#7369](https://github.com/FreshRSS/FreshRSS/pull/7369)
 * Fix escaping of tag search [#7468](https://github.com/FreshRSS/FreshRSS/pull/7468)
 * Fix CLI parsing of Boolean flags [#7430](https://github.com/FreshRSS/FreshRSS/pull/7430)
 * Fix API for labels with slash [#7437](https://github.com/FreshRSS/FreshRSS/pull/7437)
 * Fix support for feeds with XML preamble + DTD [#7515](https://github.com/FreshRSS/FreshRSS/pull/7515), [simplepie#914](https://github.com/simplepie/simplepie/pull/914)
 * Disallow `<iframe srcdoc="">` [#7494](https://github.com/FreshRSS/FreshRSS/pull/7494), [CVE-2025-32015](https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-wgrq-mcwc-8f8v)
 * Disallow `<button formaction="">` [#7506](https://github.com/FreshRSS/FreshRSS/pull/7506)
 * Improve favicons hash to avoid favicon pollution [#7505](https://github.com/FreshRSS/FreshRSS/pull/7505), [CVE-2025-46339](https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-8f79-3q3w-43c4)
 * Add `Content-Security-Policy` HTTP headers to favicons [#7471](https://github.com/FreshRSS/FreshRSS/pull/7471), [CVE-2025-31136](https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-f6r4-jrvc-cfmr)
 [1.25.2]
 * Update FreshRSS to 1.26.3
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.26.3)
 * Keep sort and order criteria during navigation [#&#8203;7585](https://github.com/FreshRSS/FreshRSS/pull/7585)
 * Add info about `PDO::ATTR_CLIENT_VERSION` (relevant for MySQL / MariaDB with obsolete driver) [#&#8203;7591](https://github.com/FreshRSS/FreshRSS/pull/7591)
 * Fix SQL request for user labels with custom sort (affecting PostgreSQL) [#&#8203;7588](https://github.com/FreshRSS/FreshRSS/pull/7588)
 * Fix regression for favicon in GReader and Fever APIs [#&#8203;7573](https://github.com/FreshRSS/FreshRSS/pull/7573)
 * Fix newest articles (within last second) not shown [#&#8203;7577](https://github.com/FreshRSS/FreshRSS/pull/7577)
 * Fix duplicate HTTP header for POST [#&#8203;7556](https://github.com/FreshRSS/FreshRSS/pull/7556)
 * Fix important articles on reader view [#&#8203;7602](https://github.com/FreshRSS/FreshRSS/pull/7602)
 * Fix remove last share method [#&#8203;7613](https://github.com/FreshRSS/FreshRSS/pull/7613)
 * Fix API handling of default category [#&#8203;7610](https://github.com/FreshRSS/FreshRSS/pull/7610)
 * Fix user self-deletion [#&#8203;7626](https://github.com/FreshRSS/FreshRSS/pull/7626)
 [1.26.0]
 * Update FreshRSS to 1.27.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.27.0)
 * Implement support for HTTP `429 Too Many Requests` and `503 Service Unavailable`, obey `Retry-After` [#&#8203;7760](https://github.com/FreshRSS/FreshRSS/pull/7760)  
 * Add sort by category title, or by feed title [#&#8203;7702](https://github.com/FreshRSS/FreshRSS/pull/7702)  
 * Add search operator `c:` for categories like `c:23,34` or `!c:45,56` [#&#8203;7696](https://github.com/FreshRSS/FreshRSS/pull/7696)  
 * Custom feed favicons [#&#8203;7646](https://github.com/FreshRSS/FreshRSS/pull/7646), [#&#8203;7704](https://github.com/FreshRSS/FreshRSS/pull/7704), [#&#8203;7717](https://github.com/FreshRSS/FreshRSS/pull/7717), [#&#8203;7792](https://github.com/FreshRSS/FreshRSS/pull/7792)  
 * Rework fetch favicons for fewer HTTP requests [#&#8203;7767](https://github.com/FreshRSS/FreshRSS/pull/7767)  
 * Add more unicity criteria based on title and/or content [#&#8203;7789](https://github.com/FreshRSS/FreshRSS/pull/7789)  
 * Automatically restore user configuration from backup [#&#8203;7682](https://github.com/FreshRSS/FreshRSS/pull/7682)  
 * API add support for states in `s` parameter of `streamId` [#&#8203;7695](https://github.com/FreshRSS/FreshRSS/pull/7695)  
 * Improve sharing via Print [#&#8203;7728](https://github.com/FreshRSS/FreshRSS/pull/7728)  
 * Redirect to the login page from bookmarklet instead of 403 [#&#8203;7782](https://github.com/FreshRSS/FreshRSS/pull/7782)
 [1.26.1]
 * Update FreshRSS to 1.27.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.27.1)
 * Automatic database recovery: skip broken entries during CLI export/import [#&#8203;7949](https://github.com/FreshRSS/FreshRSS/pull/7949)  
 * Add security option for CSP `frame-ancestors` [#&#8203;7857](https://github.com/FreshRSS/FreshRSS/pull/7857), [#&#8203;8021](https://github.com/FreshRSS/FreshRSS/pull/8021)  
 * Lazy-load `<track src>` [#&#8203;7997](https://github.com/FreshRSS/FreshRSS/pull/7997)  
 * Regenerate session ID on login [#&#8203;7829](https://github.com/FreshRSS/FreshRSS/pull/7829)  
 * Disallow setting non-existent language [#&#8203;7878](https://github.com/FreshRSS/FreshRSS/pull/7878), [#&#8203;7934](https://github.com/FreshRSS/FreshRSS/pull/7934)  
 * Safer calling of `install.php` [#&#8203;7971](https://github.com/FreshRSS/FreshRSS/pull/7971)  
 * Prevent log CR/LF injection [#&#8203;7883](https://github.com/FreshRSS/FreshRSS/pull/7883)  
 * Restrict allowed cURL parameters [#&#8203;7979](https://github.com/FreshRSS/FreshRSS/pull/7979), [#&#8203;8009](https://github.com/FreshRSS/FreshRSS/pull/8009)  
 * Fix reauthentication while updating [#&#8203;7989](https://github.com/FreshRSS/FreshRSS/pull/7989)  
 * Fix some CSRFs [#&#8203;8000](https://github.com/FreshRSS/FreshRSS/pull/8000)
 [1.27.0]
 * Update FreshRSS to 1.28.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.28.0)
 * Move unsafe autologin to an extension [#7958](https://github.com/FreshRSS/FreshRSS/pull/7958)
 * Housekeeping of `lib_rss.php` with potential breaking changes for some extensions [#8193](https://github.com/FreshRSS/FreshRSS/pull/8193)
 * New sorting and filtering by date of *User modified* [#7886](https://github.com/FreshRSS/FreshRSS/pull/7886), [#8090](https://github.com/FreshRSS/FreshRSS/pull/8090), [#8105](https://github.com/FreshRSS/FreshRSS/pull/8105), [#8118](https://github.com/FreshRSS/FreshRSS/pull/8118), [#8130](https://github.com/FreshRSS/FreshRSS/pull/8130)
 * New sorting by article length [#8119](https://github.com/FreshRSS/FreshRSS/pull/8119)
 * New advanced search form [#8103](https://github.com/FreshRSS/FreshRSS/pull/8103), [#8122](https://github.com/FreshRSS/FreshRSS/pull/8122), [#8226](https://github.com/FreshRSS/FreshRSS/pull/8226)
 * Add compatibility with PCRE word boundary `\b` and `\B` for regex search using PostgreSQL [#8141](https://github.com/FreshRSS/FreshRSS/pull/8141)
 * More uniform SQL search and PHP search for accents and case-sensitivity (e.g. for automatically marking as read) [#8329](https://github.com/FreshRSS/FreshRSS/pull/8329)
 * New overview of dates with most unread articles [#8089](https://github.com/FreshRSS/FreshRSS/pull/8089)
 * Exclude local networks for domain-wide HTTP `Retry-After` [#8195](https://github.com/FreshRSS/FreshRSS/pull/8195)
 * Fix OpenID Connect with Debian 13 [#8032](https://github.com/FreshRSS/FreshRSS/pull/8032)
 [1.27.1]
 * Update FreshRSS to 1.28.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.28.1)
 * Handle Web scraping of `text/plain` as `<pre class="text-plain">` [#&#8203;8340](https://github.com/FreshRSS/FreshRSS/pull/8340)
 * New customisable message for closed registrations [#&#8203;8462](https://github.com/FreshRSS/FreshRSS/pull/8462)
 * Fix unwanted expansion of user queries (saved searches) applied to filters [#&#8203;8395](https://github.com/FreshRSS/FreshRSS/pull/8395)
 * Fix encoding of filter actions for labels [#&#8203;8368](https://github.com/FreshRSS/FreshRSS/pull/8368)
 * Fix searching of tags [#&#8203;8425](https://github.com/FreshRSS/FreshRSS/pull/8425)
 * Fix refreshing feeds with token while anonymous refresh is disabled [#&#8203;8371](https://github.com/FreshRSS/FreshRSS/pull/8371)
 * Fix RSS and OPML access by token [#&#8203;8434](https://github.com/FreshRSS/FreshRSS/pull/8434)
 * Fix MySQL/MariaDB `transliterator_transliterate` fallback (when the `php-intl` extension is unavailable) [#&#8203;8427](https://github.com/FreshRSS/FreshRSS/pull/8427)
 * Fix regression with MySQL/MariaDB index hint [#&#8203;8460](https://github.com/FreshRSS/FreshRSS/pull/8460)
 * Auto-add `lastUserModified` database column also during mark-as-read action [#&#8203;8346](https://github.com/FreshRSS/FreshRSS/pull/8346)
 [1.28.0]
 * Update FreshRSS to 1.29.0
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.29.0)
 * New sort order preferences at global, category, and feed levels [#8234](https://github.com/FreshRSS/FreshRSS/pull/8234)
 * New filtering by date of *Server modification date* [#8131](https://github.com/FreshRSS/FreshRSS/pull/8131), [#8576](https://github.com/FreshRSS/FreshRSS/pull/8576)
 * New option to automatically mark new articles as read if an identical GUID already exists in the same category [#8673](https://github.com/FreshRSS/FreshRSS/pull/8673)
 * Add option to enable/disable notifications, also for PWA [#8458](https://github.com/FreshRSS/FreshRSS/pull/8458)
 * Fix wrong search `toString` in case of regex-looking string [#8479](https://github.com/FreshRSS/FreshRSS/pull/8479)
 * Fix redirect to wrong view after mark as read in *reader* and *global* views [#8552](https://github.com/FreshRSS/FreshRSS/pull/8552)
 * Fix do not include hidden feeds when counting total number of unread articles [#8715](https://github.com/FreshRSS/FreshRSS/pull/8715)
 * Limit cURL to protocols HTTP, HTTPS [#8713](https://github.com/FreshRSS/FreshRSS/pull/8713)
 * New Webhook extension for automated RSS notifications [Extensions#456](https://github.com/FreshRSS/Extensions/pull/456)
 * New `cli/purge.php` to apply purge policy [#8740](https://github.com/FreshRSS/FreshRSS/pull/8740)
 [1.28.1]
 * Update FreshRSS to 1.29.1
 * [Full Changelog](https://github.com/FreshRSS/FreshRSS/releases/tag/1.29.1)
 * Accept `.txt` import of feed URLs in additional to e.g. OPML [#8818](https://github.com/FreshRSS/FreshRSS/pull/8818), [#8837](https://github.com/FreshRSS/FreshRSS/pull/8837)
 * New CLI for automatic periodic SQLite export with retention [#8819](https://github.com/FreshRSS/FreshRSS/pull/8819)
 * More feed info: last received date, publication date [#8799](https://github.com/FreshRSS/FreshRSS/pull/8799)
 * Fix cookies with some browsers [#8867](https://github.com/FreshRSS/FreshRSS/pull/8867)
 * Fix search in shared user queries with empty results [#8863](https://github.com/FreshRSS/FreshRSS/pull/8863)
 * Fix XML errors with loading invalid OPML in `lib_opml` library [#8652](https://github.com/FreshRSS/FreshRSS/pull/8652), [#8853](https://github.com/FreshRSS/FreshRSS/pull/8853), [lib_opml#48](https://framagit.org/marienfressinaud/lib_opml/-/merge_requests/48), [lib_opml#51](https://framagit.org/marienfressinaud/lib_opml/-/merge_requests/51)
 * Fix ensure maximum number of feeds also with Dynamic OPML [#8832](https://github.com/FreshRSS/FreshRSS/pull/8832)
 * Fix click mark as read [#8817](https://github.com/FreshRSS/FreshRSS/pull/8817)
@@ -3,35 +3,21 @@
  "title": "FreshRSS",
  "author": "FreshRSS Developers",
  "description": "file://DESCRIPTION.md",
-  "changelog": "file://CHANGELOG.md",
+  "changelog": "file://CHANGELOG",
  "tagline": "RSS feed reader",
-  "version": "1.28.1",
+  "version": "1.9.2",
  "upstreamVersion": "1.29.1",
  "healthCheckPath": "/",
  "httpPort": 8000,
  "addons": {
    "localstorage": {},
    "mysql": {},
    "oidc": {
      "loginRedirectUri": "/i/oidc/"
    },
    "scheduler": {
      "update_feeds": {
        "schedule": "*/1 * * * *",
-        "command": "echo '==> Run actualize script' && /usr/local/bin/gosu www-data:www-data php /app/code/app/actualize_script.php"
+        "command": "/usr/local/bin/gosu www-data:www-data php /app/code/app/actualize_script.php"
      }
    }
  },
  "checklist": {
    "change-default-password": {
      "sso": false,
      "message": "Change the default admin password"
    },
    "create-admin": {
      "sso": true,
      "message": "On first visit, sign in using the built-in Cloudron authentication and then make the user administrator by running: `php cli/reconfigure.php --default_user YOUR_USERNAME`"
    }
  },
  "manifestVersion": 2,
  "website": "http://www.freshrss.org",
  "contactEmail": "support@cloudron.io",
@@ -42,15 +28,12 @@
    "greader",
    "reader",
    "news",
-    "feeds",
+    "feeds"
    "feedly"
  ],
  "mediaLinks": [
-    "https://screenshots.cloudron.io/org.freshrss.cloudronapp/1.png"
+    "https://s3.amazonaws.com/cloudron-app-screenshots/org.freshrss.cloudronapp/7d731e71a6faa3791e19b7d7daf468a9486349cc/1.png"
  ],
  "postInstallMessage": "file://POSTINSTALL.md",
-  "minBoxVersion": "8.1.0",
+  "minBoxVersion": "2.0.0",
-  "forumUrl": "https://forum.cloudron.io/category/27/freshrss",
+  "documentationUrl": "https://cloudron.io/documentation/apps/freshrss/"
  "documentationUrl": "https://cloudron.io/documentation/packages/freshrss/",
  "optionalSso": true
 }
@@ -1,3 +1,5 @@
 This app packages FreshRSS <upstream>1.16.2</upstream>.
 ## About
 FreshRSS is a self-hosted RSS feed aggregator such as Leed or Kriss Feed.
@@ -7,7 +9,6 @@ It is at the same time lightweight, easy to work with, powerful and customizable
 It is a multi-user application with an anonymous reading mode. It supports PubSubHubbub for instant notifications from compatible Web sites. There is an API for (mobile) clients, and a Command-Line Interface. Finally, it supports extensions for further tuning.
 ## Extensions
 FreshRSS supports further customizations by adding extensions on top of its core functionality.
 See the [repository dedicated to those extensions](https://github.com/FreshRSS/Extensions).
@@ -1,20 +1,17 @@
-FROM cloudron/base:5.0.0@sha256:04fd70dbd8ad6149c19de39e35718e024417c3e01dc9c6637eaf4a41ec4e596c
+FROM cloudron/base:2.0.0@sha256:f9fea80513aa7c92fe2e7bf3978b54c8ac5222f47a9a32a7f8833edf0eb5a4f4
 RUN apt-get update && apt-get install --no-install-recommends -y libapache2-mod-auth-openidc && rm -rf /var/cache/apt /var/lib/apt/lists
 RUN mkdir -p /app/code
 WORKDIR /app/code
-# renovate: datasource=github-releases depName=FreshRSS/FreshRSS versioning=semver
+ARG VERSION=1.16.2
-ARG FRESHRSS_VERSION=1.29.1
+RUN curl -L https://github.com/FreshRSS/FreshRSS/archive/${VERSION}.tar.gz | tar -zxvf - --strip-components=1
-RUN curl -L https://github.com/FreshRSS/FreshRSS/archive/${FRESHRSS_VERSION}.tar.gz | tar -zxvf - --strip-components=1 && \
+RUN mv data data-orig && ln -s /app/data data
    mv data data-orig && ln -s /app/data data
-# official extensions (https://github.com/FreshRSS/Extensions/commits/master)
+# official extensions
-RUN wget https://github.com/FreshRSS/Extensions/archive/a82e080a1e68eb34539959a852fc5e800b7346dd.tar.gz -O - | tar -xz --strip-components=1 -C /app/code/extensions && \
+RUN wget https://github.com/FreshRSS/Extensions/archive/de83a1096c10644098291539cabfbecd38d5a28f.tar.gz -O - | tar -xz --strip-components=1 -C /app/code/extensions && \
-    mv /app/code/extensions /app/code/extensions-orig && \
+    mv /app/code/p/api /app/code/p-api-orig && ln -s /app/data/p-api /app/code/p/api && \
-    ln -s /app/data/extensions /app/code/extensions
+    mv /app/code/extensions /app/code/extensions-orig && ln -s /app/data/extensions /app/code/extensions
 # configure apache
 RUN rm /etc/apache2/sites-enabled/*
@@ -25,19 +22,16 @@ RUN a2disconf other-vhosts-access-log
 ADD apache/freshrss.conf /etc/apache2/sites-enabled/freshrss.conf
 RUN echo "Listen 8000" > /etc/apache2/ports.conf
-RUN a2enmod headers expires deflate mime dir rewrite setenvif auth_openidc
+RUN a2enmod headers expires deflate mime dir rewrite setenvif
 RUN rm -rf /var/lib/php && ln -s /run/php /var/lib/php
-RUN crudini --set /etc/php/8.3/apache2/php.ini PHP upload_max_filesize 64M && \
+RUN crudini --set /etc/php/7.3/apache2/php.ini PHP upload_max_filesize 64M && \
-    crudini --set /etc/php/8.3/apache2/php.ini PHP post_max_size 64M && \
+    crudini --set /etc/php/7.3/apache2/php.ini PHP post_max_size 64M && \
-    crudini --set /etc/php/8.3/apache2/php.ini PHP memory_limit 64M && \
+    crudini --set /etc/php/7.3/apache2/php.ini PHP memory_limit 64M && \
-    crudini --set /etc/php/8.3/apache2/php.ini Session session.save_path /run/php/session && \
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.save_path /run/php/session && \
-    crudini --set /etc/php/8.3/apache2/php.ini Session session.gc_probability 1 && \
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.gc_probability 1 && \
-    crudini --set /etc/php/8.3/apache2/php.ini Session session.gc_divisor 100
+    crudini --set /etc/php/7.3/apache2/php.ini Session session.gc_divisor 100
 RUN ln -s /app/data/php.ini /etc/php/8.3/apache2/conf.d/99-cloudron.ini && \
    ln -s /app/data/php.ini /etc/php/8.3/cli/conf.d/99-cloudron.ini
 ADD start.sh /app/code/start.sh
@@ -1,7 +1,10 @@
-<nosso>
+This application does not integrate with Cloudron authentication.
 This app is pre-setup with an admin account. The initial credentials are:
-**Username**: admin<br/>
+There is a preconfigured administrator account with the following credentials:
 **Password**: changeme<br/>
-</nosso>
+* Username: `admin`
 * Password: `changeme`
 (Please change that password on first login)
 You can create more accounts withing the app when logged in as administrator.
@@ -1,60 +1,18 @@
 # https://github.com/FreshRSS/FreshRSS/blob/edge/Docker/FreshRSS.Apache.conf
 ServerName localhost
 <VirtualHost *:8000>
    ServerName localhost
    UseCanonicalName Off
    DocumentRoot /app/code/p
    AllowEncodedSlashes On
-    LogFormat "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" proxy
+    ErrorLog /dev/stderr 
-    CustomLog "|/bin/cat" proxy
+    CustomLog /dev/stdout combined
    ErrorLog "|/bin/cat"
    <Directory /app/code/p/>
        Options +FollowSymLinks
        AllowOverride All
        Require all granted
        <IfModule mod_php7.c>
            php_value memory_limit 64m
        </IfModule>
    </Directory>
    <Directory /app/code/p/api>
        Include /app/code/p/api/.htaccess
    </Directory>
    <Directory /app/code/p/i>
        ExpiresActive Off
        <IfDefine OIDC_ENABLED>
            AuthType openid-connect
            Require valid-user
        </IfDefine>
        IncludeOptional /app/code/p/i/.htaccess
    </Directory>
    <Directory /app/code/p/themes>
        Include /app/code/p/themes/.htaccess
    </Directory>
    <IfDefine OIDC_ENABLED>
        # CLOUDRON_OIDC_PROVIDER_NAME is not supported
        OIDCProviderMetadataURL ${CLOUDRON_OIDC_DISCOVERY_URL}
        OIDCClientID ${CLOUDRON_OIDC_CLIENT_ID}
        OIDCClientSecret ${CLOUDRON_OIDC_CLIENT_SECRET}
        OIDCRedirectURI /i/oidc/
        OIDCCryptoPassphrase ${OIDC_CRYPTO_PASSPHRASE}
        OIDCRemoteUserClaim sub
        OIDCScope "openid profile email"
        OIDCRefreshAccessTokenBeforeExpiry 30
        OIDCPassClaimsAs headers
        OIDCXForwardedHeaders X-Forwarded-Proto
    </IfDefine>
 </VirtualHost>
@@ -9,7 +9,7 @@
 	MaxSpareServers 3
    # Maximum number of servers at any given instant. Requests will be queued after this
-	MaxRequestWorkers	  10
+	MaxRequestWorkers	  6
    # Recycle process after handling these many requests. This protected against accidental memory leaks
 	MaxConnectionsPerChild   100
@@ -1,4 +0,0 @@
 {
    "$schema": "https://docs.renovatebot.com/renovate-schema.json",
    "extends": ["local>devops/renovator//default.renovate.json5"]
 }
@@ -2,7 +2,7 @@
 set -eu
-mkdir -p /run/php/session /app/data/extensions
+mkdir -p /run/php/session
 if ! [ -f /app/data/.installed ]; then
    echo "==> Fresh installation, setting up..."
@@ -13,19 +13,11 @@ if ! [ -f /app/data/.installed ]; then
      --db-user "${CLOUDRON_MYSQL_USERNAME}" --db-password "${CLOUDRON_MYSQL_PASSWORD}" \
      --db-base "${CLOUDRON_MYSQL_DATABASE}" --db-prefix "" \
      --disable_update
    if [[ -z "${CLOUDRON_OIDC_ISSUER:-}" ]]; then
    php cli/create-user.php --user admin --password changeme --language en
    fi
    touch /app/data/.installed
    echo "==> Done."
 fi
 if [[ ! -f /app/data/php.ini ]]; then
    echo -e "; Add custom PHP configuration in this file\n; Settings here are merged with the package's built-in php.ini\n\n" > /app/data/php.ini
 fi
 echo "==> Symlinking log file"
 rm -f /app/data/users/_/log_api.txt
 touch /tmp/log_api.txt
@@ -33,30 +25,30 @@ ln -s /tmp/log_api.txt /app/data/users/_/log_api.txt
 # We have to copy instead of symlinking extensions (see #2)
 echo "==> Copying packaged extensions"
 mkdir -p /app/data/extensions
 for f in $(ls /app/code/extensions-orig); do
    rm -rf "/app/data/extensions/$f"
    cp -r "/app/code/extensions-orig/$f" "/app/data/extensions"
 done
-echo "==> Updating config file"
+echo "==> Copying extension p/api folder"
-if [[ -z "${CLOUDRON_OIDC_ISSUER:-}" ]]; then
+mkdir -p /app/data/p-api
-    extra_args="--default_user admin"
+for f in $(ls /app/code/p-api-orig); do
-    [[ ! -f /app/data/.oauth_crypto_passphrase ]] && openssl rand -base64 42 > /app/data/.oauth_crypto_passphrase
+    rm -rf "/app/data/p-api/$f"
-    export OIDC_CRYPTO_PASSPHRASE=$(</app/data/.oauth_crypto_passphrase) # used in apache config
+    cp -r "/app/code/p-api-orig/$f" "/app/data/p-api"
-else
+done
    extra_args="--auth_type http_auth"
 fi
-php cli/reconfigure.php ${extra_args} --base_url "https://${CLOUDRON_APP_DOMAIN}" \
+echo "==> Updating config file"
 php cli/reconfigure.php --default_user admin --base_url "https://${CLOUDRON_APP_DOMAIN}" \
    --db-type mysql --db-host "${CLOUDRON_MYSQL_HOST}" \
    --db-user "${CLOUDRON_MYSQL_USERNAME}" --db-password "${CLOUDRON_MYSQL_PASSWORD}" \
    --db-base "${CLOUDRON_MYSQL_DATABASE}" --db-prefix "" \
    --disable_update
 echo "==> Setting permissions"
-chown -R www-data:www-data /run/php /app/data /tmp/log_api.txt
+chown -R www-data.www-data /run/php /app/data /tmp/log_api.txt
 echo "==> Starting apache"
 APACHE_CONFDIR="" source /etc/apache2/envvars
 rm -f "${APACHE_PID_FILE}"
-exec /usr/sbin/apache2 -D FOREGROUND $([[ -n "$CLOUDRON_OIDC_ISSUER" ]] && echo '-D OIDC_ENABLED')
+exec /usr/sbin/apache2 -DFOREGROUND
@@ -0,0 +1,22 @@
 {
  "name": "test",
  "version": "1.0.0",
  "description": "",
  "main": "index.js",
  "scripts": {
    "test": "echo \"Error: no test specified\" && exit 1"
  },
  "author": "",
  "license": "ISC",
  "dependencies": {
    "chromedriver": "^83.0.0",
    "ejs": "^3.1.3",
    "expect.js": "^0.3.1",
    "mkdirp": "^1.0.4",
    "mocha": "^7.2.0",
    "rimraf": "^3.0.2",
    "selenium-server-standalone-jar": "^3.141.59",
    "selenium-webdriver": "^3.6.0",
    "superagent": "^5.2.2"
  }
 }
@@ -1,131 +1,264 @@
 #!/usr/bin/env node
-import assert from 'node:assert/strict';
+'use strict';
 import superagent from '@cloudron/superagent';
-import { app, clearCache, click, cloudronCli, press, goto, loginOIDC, password, sendKeys, setupBrowser, takeScreenshot, teardownBrowser, username, waitFor } from '@cloudron/charlie';
+require('chromedriver');
 var execSync = require('child_process').execSync,
    expect = require('expect.js'),
    path = require('path'),
    superagent = require('superagent'),
    webdriver = require('selenium-webdriver');
 var by = webdriver.By,
    Keys = webdriver.Key,
    until = webdriver.until,
    Builder = require('selenium-webdriver').Builder;
 var username = 'admin',
    password = 'changeme';
 process.env.NODE_TLS_REJECT_UNAUTHORIZED = '0';
 /* global it, describe, before, after, afterEach */
 describe('Application life cycle test', function () {
-    const admin_username = 'admin';
+    this.timeout(0);
    const admin_password = 'changeme';
-    before(setupBrowser);
+    var server, browser = new Builder().forBrowser('chrome').build();
    after(teardownBrowser);
-    afterEach(async function () {
+    before(function (done) {
-        await takeScreenshot(this.currentTest);
+        var seleniumJar= require('selenium-server-standalone-jar');
        var SeleniumServer = require('selenium-webdriver/remote').SeleniumServer;
        server = new SeleniumServer(seleniumJar.path, { port: 4444 });
        server.start();
        done();
    });
    after(function (done) {
        browser.quit();
        server.stop();
        done();
    });
    var LOCATION = 'test';
    var TEST_TIMEOUT = 10000;
    var app;
    function exists(selector) {
        return browser.wait(until.elementLocated(selector), TEST_TIMEOUT);
    }
    function visible(selector, callback) {
        return exists(selector).then(function () {
            return browser.wait(until.elementIsVisible(browser.findElement(selector)), TEST_TIMEOUT);
        });
    }
    function baseUrl() {
        if (app.manifest.version === '1.4.0') return `https://${app.fqdn}/p`;
        return `https://${app.fqdn}`;
    }
-    async function login(uname, pass) {
+    // we do this because it perm redirects to /p/ in old versions
-        await goto(`https://${app.fqdn}`, 'label=Username');
+    function clearCache() {
-        await sendKeys('label=Username', uname);
+        // https://stackoverflow.com/questions/49614217/selenium-clear-chrome-cache
-        await sendKeys('label=Password', pass);
+        // defaut clearance is 1 hour of cache
-        await click('Login', { role: 'button' }); // there is a link at the top
+        return browser.get('chrome://settings/clearBrowserData').then(function () {
-        await waitFor('Subscription management');
+            return visible(by.css('* /deep/ #clearBrowsingDataConfirm'));
        }).then(function () {
            return browser.findElement(by.css('* /deep/ #clearBrowsingDataConfirm')).click();
        }).then(function () {
            return browser.sleep(5000);
        });
    }
-    async function loginViaOIDC() {
+    function login(password, callback) {
-        await goto(`https://${app.fqdn}/i/`);
+        browser.get('https://' + app.fqdn).then(function () {
-        await loginOIDC('css=#btn-subscription');
+            return visible(by.id('loginButton'));
        }).then(function () {
            return browser.findElement(by.id('username')).sendKeys(username);
        }).then(function () {
            return browser.findElement(by.id('passwordPlain')).sendKeys(password);
        }).then(function () {
            return browser.findElement(by.id('loginButton')).click();
        }).then(function () {
            return browser.wait(until.elementLocated(by.id('dropdown-configure')), TEST_TIMEOUT);
        }).then(function () {
            callback();
        });
    }
-    async function addSubscription() {
+    function logout(callback) {
-        await goto(`${baseUrl()}/i/?c=subscription&a=add`, 'label=Feed URL');
+        var logout_btn = by.xpath('//ul[@class="dropdown-menu"]/li/a[@class="signout"]');
-        await sendKeys('label=Feed URL', 'https://blog.cloudron.io/rss/');
+
-        await press('label=Feed URL', 'Enter'); // there are multiple "Add" buttons on that page
+        browser.get('https://' + app.fqdn).then(function () {
-        await waitFor('RSS feed Cloudron has been added');
+            return visible(by.id('stream'));
        }).then(function () {
            return browser.findElement(by.className('dropdown-toggle')).click();
        }).then(function () {
            return visible(logout_btn);
        }).then(function () {
            return browser.findElement(logout_btn).click();
        }).then(function () {
            return browser.wait(until.elementLocated(by.id('loginButton')), TEST_TIMEOUT);
        }).then(function () {
            callback();
        });
    }
-    async function enableApi({ relogin = true } = {}) {
+    function addSubscription(callback) {
-        await goto(`${baseUrl()}/i/?c=auth`);
+        var url = "https://cloudron.io/blog/rss.xml";
-        if (relogin) {
+        browser.get(`${baseUrl()}/i/?c=subscription`).then(function () {
-            await sendKeys('label=Password', admin_password);
+            return visible(by.xpath('//input[@name="url_rss"]'));
-            await click('Login');
+        }).then(function () {
            return browser.findElement(by.xpath('//input[@name="url_rss"]')).sendKeys(url);
        }).then(function () {
            return browser.findElement(by.xpath('//form[@id="add_rss"]/div/button[@type="submit"]')).click();
        }).then(function () {
            return visible(by.xpath('//div[@id="notification" and @class="notification good"]'));
        }).then(function () {
            callback();
        });
    }
-        await click(/Allow API access/);
+    function addUser(password, callback) {
-        await click('Submit');
+        var test_username = 'test';
-        await waitFor(/Configuration has been updated/);
+
        browser.get(`${baseUrl()}/i/?c=user&a=manage`).then(function () {
            return visible(by.id('new_user_name'));
        }).then(function () {
            return browser.findElement(by.id('new_user_name')).sendKeys(test_username);
        }).then(function () {
            return browser.findElement(by.id('new_user_passwordPlain')).sendKeys(password);
        }).then(function () {
            return browser.findElement(by.xpath('//button[text()="Create"]')).click();
        }).then(function () {
            return visible(by.xpath('//div[@id="notification" and @class="notification good"]'));
        }).then(function () {
            callback();
        });
    }
-    async function checkApiConfiguration() {
+    function enableApi(callback) {
-        await goto(`${baseUrl()}/api/`, /PASS/);
+        browser.get(`${baseUrl()}/i/?c=auth`).then(function () {
-        await waitFor(/PASS/);
+            return browser.findElement(by.id('api_enabled')).click();
        }).then(function () {
            return browser.findElement(by.xpath('//button[text()="Submit"]')).submit();
        }).then(function () {
            callback();
        });
    }
-    async function subscriptionExists() {
+    function checkApiConfiguration(callback) {
-        await goto(`${baseUrl()}/i/?get=c_1`, 'Cloudron');
+        browser.get(`${baseUrl()}/api/`).then(function () {
            return exists(by.xpath('//dd[@id="greaderOutput" and contains(text(), "PASS")]'));
        }).then(function () {
            return exists(by.xpath('//dd[@id="feverOutput" and contains(text(), "PASS")]'));
        }).then(function () {
            callback();
        });
    }
-    async function getStaticExtensionFile() {
+    function getAppInfo() {
-        const url = `${baseUrl()}/ext.php?f=xExtension-StickyFeeds/static/script.js&t=js`;
+        var inspect = JSON.parse(execSync('cloudron inspect'));
-        const response = await superagent.get(url)
+        app = inspect.apps.filter(function (a) { return a.location === LOCATION || a.location === LOCATION + '2'; })[0];
-            .set('Cache-Control', 'no-store')
+        expect(app).to.be.an('object');
            .set('Pragma', 'no-cache')
            .ok(() => true);
        assert.strictEqual(response.status, 200);
        assert.ok(response.body.toString('utf8').includes('sticky_feeds')); // content-type is application/javascript, so body is a buffer
    }
-    // No SSO
+    function subscriptionExists(callback) {
-    it('install app (no sso)', () => cloudronCli.install({ noSso: true }));
+        browser.get(`${baseUrl()}/i/?get=c_1`).then(function () {
            return visible(by.xpath('//a[text()="Cloudron.io"]'));
        }).then(function () {
            callback();
        });
    }
-    it('can login', login.bind(null, admin_username, admin_password));
+    function getStaticExtensionFile(callback) {
        superagent.get(`${baseUrl()}/ext.php?f=xExtension-StickyFeeds/static/script.js&t=js`)
            .buffer(true)
            .end(function (err, res) {
                expect(err).to.be(null);
                expect(res.status).to.be(200);
                expect(res.text).to.contain('sticky_feeds'); // relies on the buffer flag above
                callback();
        });
    }
    xit('build app', function () {
        execSync('cloudron build', { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
    });
    it('install app', function () {
        execSync('cloudron install --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
    });
    it('can get app information', getAppInfo);
    it('can login', login.bind(null, password));
    it('can subscribe', addSubscription);
-    it('can enable API', () => enableApi({ relogin: true }));
+    it('can add users', addUser.bind(null, password));
    it('can enable API', enableApi);
    it('can check configuration', checkApiConfiguration);
    it('subscription exists', subscriptionExists);
    it('can get static extension file', getStaticExtensionFile);
-    it('can logout', clearCache);
+    it('can logout', logout);
    it('uninstall app', cloudronCli.uninstall);
-    // SSO
+    it('backup app', function () {
-    it('install app (sso)', cloudronCli.install);
+        execSync('cloudron backup create --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
    });
-    it('can make user Administrator', () => cloudronCli.exec(`bash -c "php cli/reconfigure.php --default-user ${username}"`));
+    it('restore app', function () {
-    it('can login OIDC', () => loginViaOIDC(username, password));
+        execSync('cloudron restore --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
-    it('can subscribe', addSubscription);
+    });
-    it('can enable API', () => enableApi({ relogin: false }));
+
    it('can login', login.bind(null, password));
    it('can check configuration', checkApiConfiguration);
    it('subscription exists', subscriptionExists);
    it('can get static extension file', getStaticExtensionFile);
    it('can logout', logout);
-    it('backup app', cloudronCli.createBackup);
+    it('move to different location', function () {
-    it('restore app', cloudronCli.restoreFromLatestBackup);
+        browser.manage().deleteAllCookies();
        execSync('cloudron configure --location ' + LOCATION + '2 --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
        var inspect = JSON.parse(execSync('cloudron inspect'));
        app = inspect.apps.filter(function (a) { return a.location === LOCATION + '2'; })[0];
        expect(app).to.be.an('object');
    });
-    it('can login OIDC', loginViaOIDC);
+    it('can login', login.bind(null, password));
    it('can check configuration', checkApiConfiguration);
    it('subscription exists', subscriptionExists);
    it('can get static extension file', getStaticExtensionFile);
    it('can logout', logout);
-    it('move to different location', cloudronCli.changeLocation);
+    it('uninstall app', function () {
-
+        execSync('cloudron uninstall --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
-    it('can login OIDC', loginViaOIDC);
+    });
    it('can check configuration', checkApiConfiguration);
    it('subscription exists', subscriptionExists);
    it('can get static extension file', getStaticExtensionFile);
    it('uninstall app', cloudronCli.uninstall);
    // test update
-    it('can install app for update', cloudronCli.appstoreInstall);
+    it('can install app', function () {
        execSync('cloudron install --appstore-id org.freshrss.cloudronapp --location ' + LOCATION, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
    });
-    it('can login OIDC', loginViaOIDC);
+    it('can get app information', getAppInfo);
-    it('can make user Administrator', () => cloudronCli.exec(`bash -c "php cli/reconfigure.php --default-user ${username}"`));
+    it('can login', login.bind(null, password));
    it('can subscribe', addSubscription);
    it('can add users', addUser.bind(null, password));
-    it('can update', cloudronCli.update);
+    it('can update', function () {
        execSync('cloudron update --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
        var inspect = JSON.parse(execSync('cloudron inspect'));
        app = inspect.apps.filter(function (a) { return a.location === LOCATION; })[0];
        expect(app).to.be.an('object');
    });
-    it('can login OIDC', loginViaOIDC);
+    it('can login', login.bind(null, password));
    it('subscription exists', subscriptionExists);
    it('can get static extension file', getStaticExtensionFile);
-    it('uninstall app', cloudronCli.uninstall);
+    it('uninstall app', function () {
        execSync('cloudron uninstall --app ' + app.id, { cwd: path.resolve(__dirname, '..'), stdio: 'inherit' });
    });
 });
Author	SHA1	Message	Date
Johannes Zellner	03879ca8df	Bump version	2020-06-02 11:33:10 +02:00
Johannes Zellner	6e8bd967e8	Make p/api/ also writeable for extensions	2020-06-02 11:32:18 +02:00