Mark 3.1.0 (#1634)

# 3.1.0 / 2020-09-08 **General** - Loosen team password confirmation in team settings to also accept the team captain's password to make it easier to change the team password - Adds the ability to add custom user and team fields for registration/profile settings. - Improve Notifications pubsub events system to use a subscriber per server instead of a subscriber per browser. This should improve the reliability of CTFd at higher load and make it easier to deploy the Notifications system **Admin Panel** - Add a comments functionality for admins to discuss challenges, users, teams, pages - Adds a legal section in Configs where users can add a terms of service and privacy policy - Add a Custom Fields section in Configs where admins can add/edit custom user/team fields - Move user graphs into a modal for Admin Panel **API** - Add `/api/v1/comments` to manipulate and create comments **Themes** - Make scoreboard caching only cache the score table instead of the entire page. This is done by caching the specific template section. Refer to #1586, specifically the changes in `scoreboard.html`. - Add rel=noopener to external links to prevent tab napping attacks - Change the registration page to reference links to Terms of Service and Privacy Policy if specified in configuration **Miscellaneous** - Make team settings modal larger in the core theme - Update tests in Github Actions to properly test under MySQL and Postgres - Make gevent default in serve.py and add a `--disable-gevent` switch in serve.py - Add `tenacity` library for retrying logic - Add `pytest-sugar` for slightly prettier pytest output - Add a `listen()` method to `CTFd.utils.events.EventManager` and `CTFd.utils.events.RedisEventManager`. - This method should implement subscription for a CTFd worker to whatever underlying notification system there is. This should be implemented with gevent or a background thread. - The `subscribe()` method (which used to implement the functionality of the new `listen()` function) now only handles passing notifications from CTFd to the browser. This should also be implemented with gevent or a background thread.
2026-02-01 04:14:25 +01:00 · 2020-09-08 00:08:35 -04:00
parent c1d7910920
commit 9264e96428
145 changed files with 4714 additions and 364 deletions
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -11,7 +11,6 @@ jobs:
    strategy:
      matrix:
        python-version: ['3.6']
-        TESTING_DATABASE_URL: ['sqlite://']

    name: Linting
    steps:
@@ -30,6 +29,8 @@ jobs:

      - name: Lint
        run: make lint
+        env:
+            TESTING_DATABASE_URL: 'sqlite://'

      - name: Lint Dockerfile
        uses: brpaz/hadolint-action@master
--- a/.github/workflows/mysql.yml
+++ b/.github/workflows/mysql.yml
@@ -9,9 +9,12 @@ jobs:
    runs-on: ubuntu-latest
    services:
      mysql:
-        image: mysql
+        image: mysql:5.7
+        env:
+          MYSQL_ROOT_PASSWORD: password
        ports:
-          - 3306:3306
+          - 3306
+        options: --health-cmd="mysqladmin ping" --health-interval=10s --health-timeout=5s --health-retries=3
      redis:
        image: redis
        ports:
@@ -20,7 +23,6 @@ jobs:
    strategy:
      matrix:
        python-version: ['3.6']
-        TESTING_DATABASE_URL: ['mysql+pymysql://root@localhost/ctfd']

    name: Python ${{ matrix.python-version }}
    steps:
@@ -43,6 +45,7 @@ jobs:
        env:
            AWS_ACCESS_KEY_ID: AKIAIOSFODNN7EXAMPLE
            AWS_SECRET_ACCESS_KEY: wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
+            TESTING_DATABASE_URL: mysql+pymysql://root:password@localhost:${{ job.services.mysql.ports[3306] }}/ctfd

      - name: Codecov
        uses: codecov/codecov-action@v1.0.11
--- a/.github/workflows/postgres.yml
+++ b/.github/workflows/postgres.yml
@@ -15,6 +15,7 @@ jobs:
        env:
          POSTGRES_HOST_AUTH_METHOD: trust
          POSTGRES_DB: ctfd
+          POSTGRES_PASSWORD: password
        # Set health checks to wait until postgres has started
        options: >-
          --health-cmd pg_isready
@@ -29,7 +30,6 @@ jobs:
    strategy:
      matrix:
        python-version: ['3.6']
-        TESTING_DATABASE_URL: ['postgres://postgres@localhost/ctfd']

    name: Python ${{ matrix.python-version }}
    steps:
@@ -52,6 +52,7 @@ jobs:
        env:
            AWS_ACCESS_KEY_ID: AKIAIOSFODNN7EXAMPLE
            AWS_SECRET_ACCESS_KEY: wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
+            TESTING_DATABASE_URL: postgres://postgres:password@localhost:${{ job.services.postgres.ports[5432] }}/ctfd

      - name: Codecov
        uses: codecov/codecov-action@v1.0.11
--- a/.github/workflows/sqlite.yml
+++ b/.github/workflows/sqlite.yml
@@ -11,7 +11,6 @@ jobs:
    strategy:
      matrix:
        python-version: ['3.6']
-        TESTING_DATABASE_URL: ['sqlite://']

    name: Python ${{ matrix.python-version }}
    steps:
@@ -35,6 +34,7 @@ jobs:
        env:
            AWS_ACCESS_KEY_ID: AKIAIOSFODNN7EXAMPLE
            AWS_SECRET_ACCESS_KEY: wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
+            TESTING_DATABASE_URL: 'sqlite://'

      - name: Codecov
        uses: codecov/codecov-action@v1.0.11