Workarea 3.1.9

Avoids Using Mongo Ruby Driver 2.5

Adds an explicit dependency on the Mongo Ruby Driver to Workarea Core to avoid using version 2.5, which was recently released and is incompatible with Workarea.

Issues

Pull Requests

Commits

Fixes CSRF Protection for Cached Pages

Fixes Storefront pages having an invalid authenticity token for CSRF protection due to HTTP caching. Adds the token to the current_user.json response, and adds a JavaScript module to append the token (as a hidden input) to all form elements.

Issues

Pull Requests

Commits

Fixes Unused Translations Included in JavaScript

Adds a default configuration for Rails i18n to Workarea Core. Configures exactly one locale, en, so that additional, unused translation are not included in Production JavaScript. Prior to this change, apps that did not configure Rails i18n were serving extremely large JavaScript files due to the inclusion of unused translations.

Issues

Pull Requests

Commits

Fixes JavaScript Module Re-Initialization in Checkout

Fixes JavaScript modules not being initialized on a new DOM fragment inserted asynchronously into the checkout UI.

Issues

Pull Requests

Commits

Fixes Duplicate DOM IDs on Admin Dashboards

Fixes duplicate DOM IDs in two Admin dashboard partials.

Issues

Pull Requests

Commits

Fixes Admin Insights Charts Not Rendering

Fixes an issue preventing some insights charts from rendering in the Admin.

Issues

Pull Requests

Commits

Fixes Admin Toolbar Page Jump

Fixes the "jump" that occurs in the Storefront when the Admin toolbar loads after a delay. Reserves space for the toolbar before it is loaded to prevent the repaint.

Issues

Pull Requests

Commits

Fixes Countries Mongoid Extension Not Loaded

Explicitly loads the Countries Mongoid Extensions when Workarea is loaded to prevent an exception being raised in some circumstances where the library is not loaded when it's needed.

Issues

Pull Requests

Commits

Disables Autocomplete for Storefront Password Fields

Disables the native autocomplete feature on all Storefront password fields to prevent leaking sensitive information. This change supports PCI compliance. In cloud environments, the web application firewall also performs this function for redundancy.

Issues

Pull Requests

Commits

Improves Extensibility of Storefront Address Forms

Changes a DOM query and adds a wrapping DOM element to allow for easier extension of address form markup in the Storefront.

Issues

Pull Requests

Commits

Adds Admin Pricing Skus Append Points

Adds append points for pricing skus in the Admin.

Issues

Pull Requests

Commits

Styles HTML Address Elements

Adds default styles to the Admin and Storefront for HTML address elements. Removes italic styling applied by most browsers.

Issues

Commits