v4.1.0-rc.5

Thanks:

Added

For users:

  • New grade (Asqatasun meter) made of A, B, C, D, E, F instead of 0-100% #252, #248
  • I18N: Add german translation #172

For developers and ops:

  • Support for Ubuntu 18.04 #269, #281
  • SQL procedure: Add option to choose the contract duration #213
  • Enhanced pre-requisites to allow database name containing hyphen "-"
  • SQL procedure / CONTRACT_create: increase the default contract duration (3 years instead of 1 years) #215
  • SQL procedure / CONTRACT_create: add option to choose the contract duration in year, month or day #213
  • Install.sh - Added new SQL procedures: list_running_acts + Last_audits #139
  • added code quality tools
    • Unit tests coverage report (Jacocoo) #185
    • OWASP Dependency-Check #155
    • Checkstyle #198
    • Javadoc #156
  • build_and_run-with-docker.sh script:
    • Added --krash-test option #182
    • Added --log-build option #169
    • Added --build-only-* options #145
    • Added option to skip unit tests #144
  • Documentation :
    • Have CONTRIBUTING.md more friendly and explicit for beginners #222
    • Added documentation on how to run a krashtest campaign #147
    • Added "howto configuring Apache frontend with AJP connector and HTTPS Let's Encrypt"
    • Added "Crawler management" with howto increase maxDocuments in site-audit

Breaking changes

For developers and ops:

  • JDK upgraded from Java7 to Java8 #253
  • DB character encoding is now utf8mb4 #255
  • Build - Maven 3.1 is required (needed for org.owasp:dependency-check-maven) #154

Changed

For users:

  • Changed the default to only show "failed" and "pre-qualified" results #202
  • Default email for login is now admin@asqatasun.org #267
  • Improved krash emails ergonomy #276

For developers and ops:

  • Update version of dependency (DynamicJasper)
  • Adjust release script to manage release branch #315
  • Configure Travis deployment only on tags #317

Fixed

For users:

  • Incorrect string value: '\xF0\x9F\x99\x82" ...' for column 'Source', aka utf8mb4 should default encoding to be able to deal with smileys #123
  • Fixed Rgaa 3.2016, 8.9.1: unit tests fail #137
  • Create a contract pointing to an internal URL, even if the domain does not end with a valid gTLD #126
  • Contrast ratio link: fixed ratio parameter #119
  • Site-audit in error: added "check for redirection" as possible explanation #146
  • Site-audit in error: fixed the robots.txt URL in error message #179
  • Don't allow starting an audit if no referential is activated for the current project #203
  • Don't allow starting website audit if URL is not defined for the current project #204
  • I18N: standardize "project" and "contract" naming (en/fr/es) #216
  • Webapp UX - Admin user can quickly add a new project to his account #208
  • Webapp UX - Admin user can quickly update his expired contract #211
  • Contract creation: verify at least one referential is selected #27
  • Contract creation: forbid contract without URL and with website audit enabled #28

For developers and ops:

  • Ubuntu 18.04 ensure MariaDB/Mysql configuration file is included #311 #313
  • Make release script more reliable #286
  • <form:errors path="scenarioFile">, allowed <abbr> in error message #138
  • Prerequisites: libspring-instrument-java is no more needed #200
  • Unit tests: replaced tgqa.org domain name by asqatasun.ovh #127
  • I18N:
    • webapp + rules: converted i18n files in UTF8 character encoding #170
    • webapp / i18n files: converted all HTML entities to their applicable UTF-8 characters #173
    • webapp / i18n files: removing unnecessary escaped characters #174

See full Changelog for details.