RELEASE-NOTES-1.28

   1 == MediaWiki 1.28 ==
   2
   3 THIS IS NOT A RELEASE YET
   4
   5 MediaWiki 1.28 is an alpha-quality branch and is not recommended for use in
   6 production.
   7
   8 === Configuration changes in 1.28 ===
   9 * BREAKING CHANGE: $wgHTTPProxy is now *required* for all external requests
  10   made by MediaWiki via a proxy. Relying on the http_proxy environment
  11   variable is no longer supported.
  12 * The load.php entry point now enforces the existing policy of not allowing
  13   access to session data, which includes the session user and the session
  14   user's language. If such access is attempted, an exception will be thrown.
  15 * The number of internal PBKDF2 iterations used to derive the session secret
  16   is configurable via $wgSessionPbkdf2Iterations.
  17 * Upload dialog's file upload log comment can now be configured separately for
  18   local and foreign uploads.
  19 * $wgForeignUploadTargets now defaults to `[ 'local' ]`, where `'local'`
  20   signifies local uploads. A value of `[]` (empty array) now means that
  21   no upload targets are allowed, effectively disabling the upload dialog.
  22 * The deprecated $wgEditEncoding variable has been removed; it was only used
  23   for Esperanto language character conversion. You are now recommended to use
  24   input methods provided by the UniversalLanguageSelector extension.
  25 * When $wgPingback is true, MediaWiki will periodically ping
  26   https://www.mediawiki.org/beacon with basic information about the local
  27   MediaWiki installation.  This data includes, for example, the type of system,
  28   PHP version, and chosen database backend. This behavior is off by default.
  29
  30 === New features in 1.28 ===
  31 * User::isBot() method for checking if an account is a bot role account.
  32 * Added a new 'slideshow' mode for galleries.
  33 * Added a new hook, 'UserIsBot', to aid in determining if a user is a bot.
  34 * Added a new hook, 'ApiMakeParserOptions', to allow extensions to better
  35   interact with API parsing.
  36 * Added a new hook, 'UploadVerifyUpload', which can be used to reject a file
  37   upload. Unlike 'UploadVerifyFile' it provides information about upload comment
  38   and the file description page, but does not run for uploads to stash.
  39 * (T141604) Extensions can now provide a better error message when their
  40   maintenance scripts are run without the extension being installed.
  41 * (T8948) Numeric sorting in categories is now supported by setting $wgCategoryCollation
  42   to uca-default-u-kn or uca-<langcode>-u-kn. If migrating from another
  43   collation, you will need to run the updateCollation.php maintenance script.
  44
  45 === External library changes in 1.28 ===
  46
  47 ==== Upgraded external libraries ====
  48 * Updated es5-shim from v4.1.5 to v4.5.8
  49
  50 ==== New external libraries ====
  51
  52 ==== Removed and replaced external libraries ====
  53
  54 === Bug fixes in 1.28 ===
  55
  56 === Action API changes in 1.28 ===
  57 * Added 'maxarticlesize' property to action=query&meta=siteinfo which contains
  58   the value of $wgMaxArticleSize.
  59 * Property 'modulemessages' from action=parse&prop=modules was removed
  60   (deprecated since 1.26).
  61 * The following response properties from action=login, deprecated in 1.27, are
  62   now removed: lgtoken, cookieprefix, sessionid. Clients should handle cookies
  63   to properly manage session state.
  64 * Submitting the lgtoken and lgpassword parameters in the query string to
  65   action=login is now deprecated and outputs a warning. They should be submitted
  66   in the POST body instead.
  67 * Submitting sensitive authentication request parameters to action=clientlogin,
  68   action=createaccount, action=linkaccount, and action=changeauthenticationdata
  69   in the query string is now deprecated and outputs a warning. They should be
  70   submitted in the POST body instead.
  71
  72 === Action API internal changes in 1.28 ===
  73 * Added a new hook, 'ApiMakeParserOptions', to allow extensions to better
  74   interact with ApiParse and ApiExpandTemplates.
  75
  76 === Languages updated in 1.28 ===
  77
  78 MediaWiki supports over 350 languages. Many localisations are updated
  79 regularly. Below only new and removed languages are listed, as well as
  80 changes to languages because of Phabricator reports.
  81
  82 * (T137411) ban (Balinese), thanks to translators Adi Mayndra, Andru,
  83   BASAbali, M. Adiputra, Naval Scene, Nemo bis, NoiX180, and 아라.
  84 * (T135867) shn (Shan), thanks to translators Khun Sar, Piangpha,
  85   Saiddzone Saimawnkham, Saosukham, and Sengwan.
  86 * Czech (cs) and Slovak (sk) set as reciprocal fallbacks
  87
  88 === Other changes in 1.28 ===
  89 * (T128697) Improved handling of large diffs.
  90 * [BREAKING CHANGE] $wgExtendedLoginCookies has been removed.  You can
  91   use or update a custom session provider if needed.
  92 * Deprecated APIEditBeforeSave hook in favor of EditFilterMergedContent.
  93 * The 'UploadVerification' hook is deprecated. Use 'UploadVerifyFile' instead.
  94 * SiteConfiguration::isLocalVHost() was removed (deprecated since 1.25).
  95 * The 'UserLoginComplete' hook has a new parameter to differentiate between actual
  96   login and visiting the login page while already logged in.
  97 * ResourceLoader::makeLoaderURL() was removed (deprecated since 1.24).
  98 * $.fn.liveAndTestAtStart was removed (deprecated since 1.24).
  99 * Linker::link() and Linker::linkKnown() were deprecated; please instead use
 100   MediaWiki\Linker\LinkRenderer. In addition, the LinkBegin and LinkEnd hooks
 101   were replaced by HtmlPageLinkRendererBegin and HtmlPageLinkRendererEnd
 102   respectively. See docs/hooks.txt for the specific changes needed for those hooks.
 103 * Aliases for Linker methods, deprecated since 1.21, were removed from Skin:
 104   * Skin::commentBlock() (use Linker::commentBlock() instead)
 105   * Skin::generateRollback() (use Linker::generateRollback() instead)
 106   * Skin::link() (use MediaWiki\Linker\LinkRenderer instead)
 107   * Skin::linkKnown() (use MediaWiki\Linker\LinkRenderer instead)
 108   * Skin::userLink() (use Linker::userLink() instead)
 109   * Skin::userToolLinks() (use Linker::userToolLinks() instead)
 110 * The 'ParserLimitReportFormat' hook was removed.
 111 * Disabled "bug 2702" HTML tidying of parsed UI messages on wikis where Tidy is
 112   disabled.
 113 * DifferenceEngine::generateDiffBody() was removed (deprecated since 1.21).
 114 * UploadBase::stashFileGetKey() and UploadBase::stashSession() were deprecated.
 115   Use ...->stashFile()->getFileKey() instead.
 116 * "Public domain" was removed as a wiki license option from the installer, in
 117   favour of CC-0.
 118 * AuthenticationRequest::$required is now changed from REQUIRED to PRIMARY_REQUIRED
 119   on requests needed by primary providers even if all primaries need them.
 120   Primary providers are discouraged from returning multiple REQUIRED requests.
 121 * OOjs UI PHP widgets constructed with the `'infusable' => true` config option
 122   will no longer be automatically infused. You should call `OO.ui.infuse()`
 123   on them yourself from your JavaScript code.
 124
 125 == Compatibility ==
 126
 127 MediaWiki 1.28 requires PHP 5.5.9 or later. There is experimental support for
 128 HHVM 3.6.5 or later.
 129
 130 MySQL is the recommended DBMS. PostgreSQL or SQLite can also be used, but
 131 support for them is somewhat less mature. There is experimental support for
 132 Oracle and Microsoft SQL Server.
 133
 134 The supported versions are:
 135
 136 * MySQL 5.0.3 or later
 137 * PostgreSQL 8.3 or later
 138 * SQLite 3.3.7 or later
 139 * Oracle 9.0.1 or later
 140 * Microsoft SQL Server 2005 (9.00.1399)
 141
 142 == Upgrading ==
 143
 144 1.28 has several database changes since 1.27, and will not work without schema
 145 updates. Note that due to changes to some very large tables like the revision
 146 table, the schema update may take quite long (minutes on a medium sized site,
 147 many hours on a large site).
 148
 149 If upgrading from before 1.11, and you are using a wiki as a commons
 150 repository, make sure that it is updated as well. Otherwise, errors may arise
 151 due to database schema changes.
 152
 153 If upgrading from before 1.7, you may want to run refreshLinks.php to ensure
 154 new database fields are filled with data.
 155
 156 If you are upgrading from MediaWiki 1.4.x or earlier, you should upgrade to
 157 1.5 first. The upgrade script maintenance/upgrade1_5.php has been removed
 158 with MediaWiki 1.21.
 159
 160 Don't forget to always back up your database before upgrading!
 161
 162 See the file UPGRADE for more detailed upgrade instructions.
 163
 164 For notes on 1.27.x and older releases, see HISTORY.
 165
 166 == Online documentation ==
 167
 168 Documentation for both end-users and site administrators is available on
 169 MediaWiki.org, and is covered under the GNU Free Documentation License (except
 170 for pages that explicitly state that their contents are in the public domain):
 171
 172        https://www.mediawiki.org/wiki/Special:MyLanguage/Documentation
 173
 174 == Mailing list ==
 175
 176 A mailing list is available for MediaWiki user support and discussion:
 177
 178        https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
 179
 180 A low-traffic announcements-only list is also available:
 181
 182        https://lists.wikimedia.org/mailman/listinfo/mediawiki-announce
 183
 184 It's highly recommended that you sign up for one of these lists if you're
 185 going to run a public MediaWiki, so you can be notified of security fixes.
 186
 187 == IRC help ==
 188
 189 There's usually someone online in #mediawiki on irc.freenode.net.