Compare commits
4 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
| 823939c969 | |||
| d9f820a430 | |||
| 5e85ef3634 | |||
| 1c64a350f3 |
+24
-8
@@ -1,3 +1,14 @@
|
||||
<a name="1.8.2"></a>
|
||||
# 1.8.2 meteoric-mining (2020-10-21)
|
||||
|
||||
## Bug Fixes
|
||||
- **$sceDelegate:** ensure that `resourceUrlWhitelist()` is identical `trustedResourceUrlList()`
|
||||
([e41f01](https://github.com/angular/angular.js/commit/e41f018959934bfbf982ba996cd654b1fce88d43),
|
||||
[#17090](https://github.com/angular/angular.js/issues/17090))
|
||||
- **$sanitize:** do not trigger CSP alert/report in Firefox and Chrome
|
||||
([2fab3d](https://github.com/angular/angular.js/commit/2fab3d4e00f4fe35bfa3cf255160cb97404baf24))
|
||||
|
||||
|
||||
<a name="1.8.1"></a>
|
||||
# 1.8.1 mutually-supporting (2020-09-30)
|
||||
|
||||
@@ -8,19 +19,24 @@
|
||||
## Refactorings
|
||||
|
||||
- **SanitizeUriProvider:** remove usages of whitelist
|
||||
([76738102](https:github.com/angular/angular.js/commit/767381020d88bda2855ac87ca6f00748907e14ff))
|
||||
([76738102](https://github.com/angular/angular.js/commit/767381020d88bda2855ac87ca6f00748907e14ff))
|
||||
- **httpProvider:** remove usages of whitelist and blacklist
|
||||
([c953af6b](https:github.com/angular/angular.js/commit/c953af6b8cfeefe4acc0ca358550eed5da8cfe00))
|
||||
([c953af6b](https://github.com/angular/angular.js/commit/c953af6b8cfeefe4acc0ca358550eed5da8cfe00))
|
||||
- **sceDelegateProvider:** remove usages of whitelist and blacklist
|
||||
([a206e267](https:github.com/angular/angular.js/commit/a206e2675c351c3cdcde3402978126774c1c5df9))
|
||||
([a206e267](https://github.com/angular/angular.js/commit/a206e2675c351c3cdcde3402978126774c1c5df9))
|
||||
|
||||
## Deprecation Notices
|
||||
|
||||
- Deprecated ~~`aHrefSanitizationWhitelist`~~. It is now `aHrefSanitizationTrustedUri`
|
||||
- Deprecated ~~`imgSrcSanitizationWhitelist`~~. It is now `imgSrcSanitizationTrustedUri`
|
||||
- Deprecated ~~`xsrfWhitelistedOrigins`~~. It is now `xsrfTrustedOrigins`
|
||||
- Deprecated ~~`resourceUrlWhitelist`~~. It is now `trustedResourceUrlList`
|
||||
- Deprecated ~~`resourceUrlBlacklist`~~. It is now `bannedResourceUrlList`
|
||||
- Deprecated ~~`$compileProvider.aHrefSanitizationWhitelist`~~.
|
||||
It is now [aHrefSanitizationTrustedUrlList](https://docs.angularjs.org/api/ng/provider/$compileProvider#aHrefSanitizationTrustedUrlList)`.
|
||||
- Deprecated ~~`$compileProvider.imgSrcSanitizationWhitelist`~~.
|
||||
It is now [imgSrcSanitizationTrustedUrlList](https://docs.angularjs.org/api/ng/provider/$compileProvider#imgSrcSanitizationTrustedUrlList).
|
||||
- Deprecated ~~`$httpProvider.xsrfWhitelistedOrigins`~~.
|
||||
It is now [xsrfTrustedOrigins](https://docs.angularjs.org/api/ng/provider/$httpProvider#xsrfTrustedOrigins).
|
||||
- Deprecated ~~`$sceDelegateProvider.resourceUrlWhitelist`~~.
|
||||
It is now [trustedResourceUrlList](https://docs.angularjs.org/api/ng/provider/$sceDelegateProvider#trustedResourceUrlList).
|
||||
- Deprecated ~~`$sceDelegateProvider.resourceUrlBlacklist`~~.
|
||||
It is now [bannedResourceUrlList](https://docs.angularjs.org/api/ng/provider/$sceDelegateProvider#bannedResourceUrlList).
|
||||
|
||||
For the purposes of backward compatibility, the previous symbols are aliased to their new symbol.
|
||||
|
||||
|
||||
@@ -2663,7 +2663,7 @@ $scope.findTemplate = function(templateName) {
|
||||
return templateCache[templateName];
|
||||
};
|
||||
|
||||
// Alternatively, use `$sceDelegateProvider..resourceUrlWhitelist()` (called
|
||||
// Alternatively, use `$sceDelegateProvider.resourceUrlWhitelist()` (called
|
||||
// `trustedResourceUrlList()` from 1.8.1 onwards), which means you don't
|
||||
// have to use `$sce.trustAsResourceUrl()` at all:
|
||||
|
||||
|
||||
@@ -51,3 +51,11 @@ AngularJS 1.2.x will get a new version if and only if a new severe security issu
|
||||
### Blog Post
|
||||
|
||||
You can read more about these plans in our [blog post announcement](https://blog.angular.io/stable-angularjs-and-long-term-support-7e077635ee9c).
|
||||
|
||||
### Extended Long Term Support
|
||||
|
||||
If you need support for AngularJS beyond December 2021, you should consider:
|
||||
|
||||
* [XLTS.dev](https://angularjs.xlts.dev)
|
||||
|
||||
|
||||
|
||||
+6
-6
@@ -1734,15 +1734,15 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {
|
||||
* @deprecated
|
||||
* sinceVersion="1.8.1"
|
||||
*
|
||||
* This function is deprecated. Use {@link $compileProvider#aHrefSanitizationTrustedUrlList
|
||||
* This method is deprecated. Use {@link $compileProvider#aHrefSanitizationTrustedUrlList
|
||||
* aHrefSanitizationTrustedUrlList} instead.
|
||||
*/
|
||||
Object.defineProperty(this, 'aHrefSanitizationWhitelist', {
|
||||
get: function() {
|
||||
return this.aHrefSanitizationTrustedUrlList;
|
||||
},
|
||||
set: function(regexp) {
|
||||
this.aHrefSanitizationTrustedUrlList = regexp;
|
||||
set: function(value) {
|
||||
this.aHrefSanitizationTrustedUrlList = value;
|
||||
}
|
||||
});
|
||||
|
||||
@@ -1785,15 +1785,15 @@ function $CompileProvider($provide, $$sanitizeUriProvider) {
|
||||
* @deprecated
|
||||
* sinceVersion="1.8.1"
|
||||
*
|
||||
* This function is deprecated. Use {@link $compileProvider#imgSrcSanitizationTrustedUrlList
|
||||
* This method is deprecated. Use {@link $compileProvider#imgSrcSanitizationTrustedUrlList
|
||||
* imgSrcSanitizationTrustedUrlList} instead.
|
||||
*/
|
||||
Object.defineProperty(this, 'imgSrcSanitizationWhitelist', {
|
||||
get: function() {
|
||||
return this.imgSrcSanitizationTrustedUrlList;
|
||||
},
|
||||
set: function(regexp) {
|
||||
this.imgSrcSanitizationTrustedUrlList = regexp;
|
||||
set: function(value) {
|
||||
this.imgSrcSanitizationTrustedUrlList = value;
|
||||
}
|
||||
});
|
||||
|
||||
|
||||
+1
-1
@@ -436,7 +436,7 @@ function $HttpProvider() {
|
||||
* @deprecated
|
||||
* sinceVersion="1.8.1"
|
||||
*
|
||||
* This function is deprecated. Use {@link $httpProvider#xsrfTrustedOrigins xsrfTrustedOrigins}
|
||||
* This property is deprecated. Use {@link $httpProvider#xsrfTrustedOrigins xsrfTrustedOrigins}
|
||||
* instead.
|
||||
*/
|
||||
Object.defineProperty(this, 'xsrfWhitelistedOrigins', {
|
||||
|
||||
+21
-3
@@ -215,7 +215,26 @@ function $SceDelegateProvider() {
|
||||
}
|
||||
return trustedResourceUrlList;
|
||||
};
|
||||
this.resourceUrlWhitelist = this.trustedResourceUrlList;
|
||||
|
||||
/**
|
||||
* @ngdoc method
|
||||
* @name $sceDelegateProvider#resourceUrlWhitelist
|
||||
* @kind function
|
||||
*
|
||||
* @deprecated
|
||||
* sinceVersion="1.8.1"
|
||||
*
|
||||
* This method is deprecated. Use {@link $sceDelegateProvider#trustedResourceUrlList
|
||||
* trustedResourceUrlList} instead.
|
||||
*/
|
||||
Object.defineProperty(this, 'resourceUrlWhitelist', {
|
||||
get: function() {
|
||||
return this.trustedResourceUrlList;
|
||||
},
|
||||
set: function(value) {
|
||||
this.trustedResourceUrlList = value;
|
||||
}
|
||||
});
|
||||
|
||||
/**
|
||||
* @ngdoc method
|
||||
@@ -242,7 +261,6 @@ function $SceDelegateProvider() {
|
||||
* The **default value** when no trusted resource URL list has been explicitly set is the empty
|
||||
* array (i.e. there is no `bannedResourceUrlList`.)
|
||||
*/
|
||||
|
||||
this.bannedResourceUrlList = function(value) {
|
||||
if (arguments.length) {
|
||||
bannedResourceUrlList = adjustMatchers(value);
|
||||
@@ -258,7 +276,7 @@ function $SceDelegateProvider() {
|
||||
* @deprecated
|
||||
* sinceVersion="1.8.1"
|
||||
*
|
||||
* This function is deprecated. Use {@link $sceDelegateProvider#bannedResourceUrlList
|
||||
* This method is deprecated. Use {@link $sceDelegateProvider#bannedResourceUrlList
|
||||
* bannedResourceUrlList} instead.
|
||||
*/
|
||||
Object.defineProperty(this, 'resourceUrlBlacklist', {
|
||||
|
||||
Reference in New Issue
Block a user