You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
The key has expired.
Added support for marking sign-up lists as having limited capacity.
Added support for adding a representative to a company (this is different from a company contact).
Added CompanyUsers (i.e. representatives) that can manage company profiles.
Added the GEWIS Career Platform where company representatives can log in to manage their company.
Added support for company representatives to propose new jobs in the company's job package(s).
Added support for company representatives to propose updates to existing jobs in the company's job package(s).
Added support for company representatives to transfer jobs from expired job packages to non-expired job packages.
Added support for company representatives to delete jobs.
Added elementary support for company representatives to update their company's profile.
Added the option to add a contract number to company packages.
Added an approval queue for company profile and job (update) proposals.
Added support for approving or rejecting job proposals (rejections may include a message that is shown to the company representative).
Added support for applying or cancelling job update proposals (cancellations may include a message that is shown to the company representative).
Added checks for passwords against the GEWIS-hosted version of Pwned Passwords. If a password is leaked in a public data breach, the user must reset their password before they can log in. When (re)setting passwords, this check is also performed and "pwned" passwords cannot be used.
Added the Alcohol Policy to publicly available policies.
Added timestamps to SignUps to track when people signed up to a sign-up list.
Added support for searching for specific decisions.
Added timestamps to Albums to add a "NEW"-tag to recently uploaded albums.
Added support for recording when a user has changed their password, this is used to see which users comply with new password requirements.
Added support for renaming MeetingDocuments after being uploaded.
Added timestamps to MeetingDocuments and MeetingMinutes to track when they are uploaded.
Changed AV to ALV to adhere to the terminology from the bylaws.
Changed the minimum required length of passwords to 12 for Users.
Changed the career admin to move job categories and labels to separate sections, leaving more space to interact with companies.
Changed most of the e-mail templates to use the new e-mail template from Stijl.
Changed the default state of new jobs to be published (when approved).
Changed the agreement text when subscribing to an activity to include the Alcohol Policy in accordance with changes to the Activity Policy.
Changed the maximum number of decisions returned when searching to 100 (from 50).
Changed how decisions are displayed after searching or on meeting pages to improve readability.
Changed the default duration of activation and password reset links to 24h (from ∞).
Changed the default cookie SameSite directive to Lax.
Improved several translations.
Upgraded to PHP 8.2.
Fixed issue where exams and summaries would still be inaccessible from the university's NAT'd Wi-Fi network.
Fixed issue where the Content Security Policy was too lenient on what content was allowed.
Fixed issue where cookies where incorrectly shared with sub-domains.
Fixed issue where the privacy widget could appear after it was already dismissed.
Fixed issue where a (limited) SQL injection was possible through the decision search field.
Fixed issue where searching for decisions using only a meeting number would not return any decisions.
Fixed issue where form validation on the login form was not applied.
Fixed issue where proposing an update to an activity could silently fail.
Fixed issue where selecting a meeting that shares its meeting number with another meeting of another type would prevent uploads of MeetingDocuments.
Fixed issue where deleted, expired, or hidden members could still request a password reset.