With our transition to Acquia for hosting our Drupal 7 sites from our servers we manage with aegir, we’ve set up our releases to be easier and more rapid. Our process will be going from 2 week releases for a large batch of patches and updates to going to small updates more often and without requiring a developer to oversee the process, while still giving us control of when we release large features and updates. The new tools available to also allow us to automate some of the release process and gives us more time to work on cool new features and updates.

Because of this, we have made the decision to freeze code pushes on aegir. Security updates will still be made to protect sites from any malicious access, but new features and bug fixes to our modules will only be going to sites on Acquia.

The transition to Acquia will be seamless for our sites, and no action is required on the part of the site owners. Many of our smaller impact sites, such as drupal.oregonstate.edu, are already on Acquia, and we are in the process of transitioning all our other Drupal 7 sites to Acquia. This process should be completed very soon, with many sites completing their transition early next week.

As always, you can contact us if you have any questions about this transition.

The Drupal 7.41-cws-1.4.0 update was released to our development environment on Wednesday, January 20th, and will be released to production sites on Tuesday, January 26th.  The following updates have been applied:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • Field Group: 7.x-1.4 – > 7.x-1.5

    • Moderate Security Issue: When adding an HTML element as a field group, the user had the option of adding custom HTML attributes on the group. Via this option, a malicious user could embed scripts within the page, resulting in a cross-site scripting (XSS) vulnerability. This was mitigated by the fact that the attacker would have to be able to configure field display settings, which usually needs a higher level permission.
    • 18 additional fixes/updates. View the Field Group Release Notes for detailed information

New Modules Added

  • None

Contributed Module Updates

OSU Module Updates

  • Highlights: Updated view to use caching.
  • Live Feeds: Fix underline for calendar months in Firefox 40 and above.

OSU Theme Updates

  • Doug Fir: Added small changes to prepare theme for larger, full-screen changes in the future.

If you have questions or concerns please contact us though our contact form.

CWS has added the Simple Calendar plugin to blogs.oregonstate.edu.

This plugin allows for connecting Google Calendars to your blogs.

As a site administrator, you can turn the plugin from the Plugins menu. When activated, a new menu item appears on the left called ‘Calendars’

Here, you create templates which are then added to widgets or posts.

For example to display the event title and if present a location and description.


<div class="gce-list-event gce-tooltip-event">[event-title]</div>
[if-location]<div><span>Location:</span> [location]</div>[/if-location]
[if-description]<div><span>Description:</span> [description]</div>[/if-description]
<div class="gce-list-event gce-tooltip-event"></div>

Plugin documentation can be found at http://docs.simplecalendar.io/

The Drupal 7.41-cws-1.2.0 update was released to our development environment on Tuesday, November 24th, and will be released to production sites on Tuesday, Dec. 1st.  The following updates have been applied:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • None

New Modules Added

  • None

Contributed Module Updates

  • FileField Paths: 7.x-1.0-rc2 -> 7.x-1.0
    • Official Release Status
    • Added variable module integration.

OSU Module Updates

  • OSU Drupal: Updated parent unit pathauto settings
  • OSU Profiles: Added missing module dependencies
  • OSU Groups: Architects can now remove the top level book page of an organic group. Style updates added to the dashboard.
  • Feature Page: Page title now appears at the same place, no matter the browser size. Page title now appears if a feature page is the home page of a site.

OSU Theme Updates

  • Doug Fir: Science variant font and size updates

If you have questions or concerns please contact us though our contact form.

The Drupal 7.41-cws-1.1.0 update was released to our development environment on Tuesday, November 10th, and will be released to production sites on Tuesday, Nov. 17th.  The following updates have been applied:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • None

New Modules Added

  • None

Contributed Module Updates

  • FileField Paths: 7.x-1.0-rc1 -> 7.x-1.0-rc2
    • Fixed issue with temporary upload location and field collections.
    • Fixed issue with Media Youtube files being processed.
    • Added stricter checks for filefield_paths_form_alter().
    • Fixed issue with unicode characters in pathauto processing.
  • jQuery Update: 7.x-2.6 -> 7.x-2.7 (Security release!)
    • The jQuery Update module enables you to update jQuery on your site. The module ships with a modified version of the core Overlay JavaScript file, which is vulnerable to an open redirect attack (see SA-CORE-2015-004). Only sites with the Overlay module enabled are vulnerable. An incomplete fix for this issue was released in SA-CONTRIB-2015-123.
  • Views: 7.x-3.11 -> 7.x-3.13
    • Revert “Issue #2204257 by ezra-g, andyg5000: Update Views Content access filter per core performance improvements.”

OSU Module Updates

  • None

OSU Theme Updates

  • None

 

If you have questions or concerns please contact us though our contact form.

The Drupal 7.41-cws-1.0.0 update was released to our development environment on Tuesday, October 27th, and will be released to production sites on Tuesday, Nov. 3rd.  Our previous development release was not pushed to production therefore this release includes our previous package, plus some additional updates, as noted with a bold typeface:

Major Version Upgrade

  • Drupal Core 7.39 > 7.41

Drupal Core Bug Fix/Security Updates

  • Drupal Core 7.41 addresses a less critical security vulnerability in the core Overlay module. This vulnerability is mitigated by the fact that it can only be used against site users who have the “Access the administrative overlay” permission, and that the Overlay module must be enabled.
    • OSU Drupal 7 does not have the Overlay module enabled in its default distribution.

New Modules Added

  • Access Control Bridge: 7.x-1.2
    • Added to improve the interplay between the different access control modules we use (Domain Access and Organic Groups).
  • Feature Page: 7.x-1.1.2
    • An OSU module that provides a full-width, liquid display. Please see our Feature Page instructions if you’re interested in previewing this in your development environment.

Contributed Module Updates

  • Adminimal theme: 7.x-1.22 -> 7.x-1.23
  • Colorbox: 7.x-2.9 -> 7.x-2.10
    • Less Critical Security fix to prevent users from adding unexpected content to a colorbox, including content from external sites, which could allow an unprivileged user to deface a site. Issue was mitigated by the fact that comments must be enabled (they are not used on our sites).
  • Features: 7.x-2.6 -> 7.x-2.7
  • Filefield Paths: 7.x-1.0-beta4 -> 7.x-1.0-rc1
  • Pathauto: 7.x-1.2 -> 7.x-1.3
  • Views Field View: 7.x-1.1 -> 7.x-1.2
    • Fixed query aggregation for field api fields
    • Sorted list of views
    • Fixed strict warning only variables – should be passed by reference in options_form()
    • Added simple, static caching
  • Webform: 7.x-4.10 -> 7.x-4.12
    • Over 15 issues/feature improvements added in the 7.x-4.11 release. Please see the Webform project release notes list for details.
    • There was an additional update between our two update sessions that has been included in this release.  Over 20 issues/feature improvements have been added in the 7.x-4.12 release. Please see the Webform project release notes list for details.

OSU Module Updates

  • Live Feeds: Added Google Calendar Feed into module
  • OSU Search: Removed unnecessary argument from query string for Google Site Search

OSU Theme Updates

  • Doug Fir: Added improved styling for Views Accordian menu

Request for Feedback

  • Feature Page: As mentioned in our Drupal Community Meeting on Tuesday, Oct. 13th, we are still soliciting feedback for this feature. If you need help setting this up and would like to provide feedback on it, please send us a ticket via our contact form link below.

If you have questions or concerns please contact us though our contact form.

The Drupal 7.39-cws-1.2.0 update was released to our development environment on Tuesday, October 13th, and will be released to production sites on Tuesday, October 20th.  This release includes:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • None

New Modules Added

  • Access Control Bridge: 7.x-1.2
    • Added to improve the interplay between the different access control modules we use (Domain Access and Organic Groups).

Contributed Module Updates

  • Colorbox: 7.x-2.9 -> 7.x-2.10
    • Less Critical Security fix to prevent users from adding unexpected content to a colorbox, including content from external sites, which could allow an unprivileged user to deface a site. Issue was mitigated by the fact that comments must be enabled (they are not used on our sites).
  • Filefield Paths: 7.x-1.0-beta4 -> 7.x-1.0-rc1
    • Over 22 issues addressed in this move to a Release Candidate. Please see the release notes list for details.
  • Pathauto: 7.x-1.2 -> 7.x-1.3
  • Views Field View: 7.x-1.1 -> 7.x-1.2
    • Fixed query aggregation for field api fields
    • Sorted list of views
    • Fixed strict warning only variables – should be passed by reference in options_form()
    • Added simple, static caching
  • Webform: 7.x-4.10 -> 7.x-4.11
    • 15 issues/feature improvements added. Please see the release notes list for details.

OSU Module Updates

  • Live Feeds: Added Google Calendar Feed into module
  • OSU Search: Removed unnecessary argument from query string for Google Site Search

OSU Theme Updates

  • Doug Fir: Added improved styling for Views Accordian menu

Request for Feedback

  • Feature Page: As mentioned in our Drupal Community Meeting on Tuesday, Oct. 13th, any users who are interested in testing out the Feature Page in a dev environment, please put in a request via the contact form below.

 

If you have questions or concerns please contact us though our contact form.

The Drupal 7.39-cws-1.1.0 update was released to our development environment on Tuesday, September 15th, and will be released to production sites on Tuesday, October 6th.  This release includes:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • Taxonomy 7.x patch
    • Patch to correct NULL value handling in term referencing

Contributed Module Updates

  • CTools – 7.x-1.8 -> 7.x-1.9
    • Added ‘show’ state handler for hiding/showing form fields
    • Added Date of Creation plugin for comments
    • Added Field Group panes for entity edit forms
    • Added class containing the “modal style” to modal
  • Media  – 7.x-2.0-beta1 patch
    • Patch to fix bug in Media module – CKEditor integration
    • Patch to fix uncaught exception in Media Filter that results in missing text in the text editor
  • Linkit – 7.x-3.4 patch
    • Patch to restore missing File Browser button

OSU Module Updates

  • None

If you have questions or concerns please contact us though our contact form.

We have added the WP Latex plugin to blogs!

LaTex is the de facto standard for the communication and publication of scientific documents.

To setup using LaTex and to review how to use it, go to your blogs dashboard.

There under Settings, you will see ‘WP LaTex’. Click it.

Select ‘wordpress.com’ as the LaTex server.

For text and background colors, you fill in Default text color and Default background color with 000000 and ffffff for black text on white background. Use ffffff and 000000 for white text on black background.

Click ‘Update LaTex options’ to start using LaTex!

The Drupal 7.38-cws-1.3.0 update was released to our development environment on Tuesday, August 4th, and will be released to production sites on Tuesday, August 11th.  This release includes:

Major Version Upgrade

  • None

Drupal Core Bug Fix/Security Updates

  • None

Contributed Module Updates

  • Display Suite (ds) – 7.x-2.10 -> 7.x-2.11
    • Fixed incorrect field info api documentation for ‘block fields’
    • Fixed block regions that could not be deleted following upgrade to 2.10
    • Fixed changed view mode on nodes from full content to default on page
    • Fixed typo in recent commit for Token support in 7.x-2.x branch
    • Fixed error Undefined property: DatabaseConnection_mysql::$sid in node_ds_search_execute() (line 488 of ds_search.module)
    • Fixed inability to overwrite theme_ds_field_expert
  • File entity – 7.x-2.0-beta1 -> 7.x-2.0-beta2
    • 36 issues addressed, for full list, please see https://www.drupal.org/node/2533090
  • Honeypot – 7.x-1.18 -> 7.x-1.19
    • New features added
      • Added ability to sign timestamp values
      • Added user warning if certain common field names are used as Honeypot element name
    • Bugs fixed
      • Removed .gitignore
      • Fixed Honeypot 7004 failure if module is disabled
      • Fixed honeypot_expire check when counting honeypot_users
      • Fixed validation regarding whether honeypot.css exists or is consistent with variable ‘honeypot_element_name’
  • Media – 7.x-2.0-alpha4 -> 7.x-2.0-beta1 – It’s now reached beta!
    • 47 issues addressed, for full list, please see https://www.drupal.org/node/2533084
  • Webform – 7.x-4.9 -> 7.x-4.10
    • Fixed drush component option description and allows for using form keys in component option.
    • Fixed validation for Conditionally set values.
    • Added missing includes when loading submission, with entitycache installed (revised)
    • Fixed Conditional Set function that sometimes sets only first letter.
    • Added missing includes when loading submission, with entitycache installed.
    • Fixed duplicate ID for file field.
    • Fixed Webform Conditionals that were not showing on preview or results when testing select component with “is or is after” or “after” with numeric key.
    • Fixed hook_webform_submission_create function name in webform.api.php.
    • Fixed conditional on select with no value matches is and is-after.
    • Fixed static caching in webform_node_types.
    • Fixed Views Field Handlers permission for results link.
    • Added ability to use submission tokens in markup components.
    • Added Views Field Handler check if content type is Webform enabled.
    • Added data-label attribute to grid component option td elements.
    • Fixed the component of type Number that could not be “set to”
    • Added ability to disable Webform email recipients.
    • Added set webform_node_types_primary variable if webform content type is skipped on install
    • Fixed typo “much” log out

OSU Module Updates

  • File entity: Removed repeating “Download” text in front of file entity files
  • Drupal config: Enabled context_list and context_list_active by default for all Drupal sites
  • OSU media: Updated thumbnail sizes for videos
  • OSU Groups: Fixed a previous update to prevent errors in adding fields
  • OSU migrate: Updated the bootstrap level when cleaning up migrations
  • OSU search: When searching within a group, “Search this site” remains a selectable option
  • Video carousel: Updating the video display image to be a teaser image

If you have questions or concerns please contact us though our contact form.