- Removed ld dependency
- Improved add github action
photo-uploader.
- Removed
PHOTO_SCALAR_SALTno longer required for the new photo-uploader.
- Improved upgraded node to v10.22.1
- Improved add
SameSitepolicy to click-track cookie
- Removed Retire
mwp-csp-plugin. All common security headers have been consolidated in Fastly.
- Removed Retire newrelic integration
- Removed Retire signalsciences integration
-
New feature
state.config.geo, which contains geolocation info provided inrequestUtils.getRemoteGeoLocation. Also added ability to read two new geolocation headers, if they exist in the request:x-geo-city- plain city name string, e.g. provided byclient.geo.cityin Fastlyx-geo-latlon- comma-separated lat/lon
These headers will be custom-set in our www Fastly config
state.config.geois currenty aGeoLocationobject, with a flow type defined in flow-typed/platform/js
- New feature
mwp-confignow exports apackages.mupwebPackagespath Regex pointing to the/packages/<package-name>/libdirectory in monorepo consumers (e.g. mup-web)
- New feature The Google Tag Manager util now targets specific GTM Environments based on the running environment (eg: prod, dev). Environments can also be manually chosen by passing parameters to the GTM util.
- New feature
mwp-confignow exports apaths.localPackagespath pointing to the/packagesdirectory in monorepo consumers (e.g. mup-web)
- Breaking change
mwp-confignow specifies babel-loader rules for Babel 7 instead of Babel 6. Downstream consumers should work with the Web Platform team to make the update
- Refactor Upgraded MWP build to Babel7 and corresponding plugins. All built packages are now the same size or slightly smaller, but there is some risk that the assets will no longer work in some older browsers, so consumer beware - you should upgrade MWP packages independently of other code changes so that it is easier to isolate problems and revert.
-
New Feature
AppContextcontext provider for server-side request data. This feature supersedes accessingstate.configthrough Redux in favor of a more conventional React context implementation. Check out the docs for more info.withIntlhas been refactored to use this interface instead ofreact-reduxconnectin order to avoid issues with the pure rendering constraints ofconnect
- New Feature the query
endpointproperty can now be a fully-qualified URL in order to call APIs on domains other than https://api.meetup.com
- BREAKING CHANGE -
mwp-toaster:<ToastContainer>now takes an object with system messages mappings instead of a message key and an array of messages.
- New Feature activity tracking support for
standardized_urlandstandardized_referer(new fields in Activity v9).- API proxy endpoint (
mwp-api-proxy-plugin) reads from url-encodedx-meetup-activityheader - API proxy method (
mwp-api-proxy-plugin) takesactivityInfoargument to inject fields into activity records mwp-storebrowserfetchQueriessendsx-meetup-activityheadermwp-storeserverfetchQueriespassesactivityInfotomwp-api-storesuppliesactivityInfoargument tofetchQueries
- API proxy endpoint (
-
BREAKING CHANGE -
makeRenderer$interface into server renderer removed - must use object-basedmakeRenderer -
Refactor
mwp-api-proxy-pluginnow providesrequest.apiProxyinterface, which uses native Promises instead of Observables.rxjsis no longer a peer dependency of any MWP packages.
- Removed
state.appreducers. Consumers must convert to usingstate.api.
- Refactor
mwp-app-route-plugindefines aLaunchDarklyUsertype for a LaunchDarkly user object based on the official documentation - Refactor
mwp-coreuses aLaunchDarklyUserobject to callgetFlagsmethod ofmwp-app-route-plugin. - New Feature
mwp-coreadds a request country and region provided by Fastly to LaunchDarkly user custom attributes.
- Adds new rasp plugin which monitors and prevents traffic from bad actors. This RASP integration uses Signal Sciences. @see https://docs.signalsciences.net/install-guides/nodejs-module/#usage-for-nodejs-hapi
- BREAKING CHANGE Upgraded to ux-capture 3.0.0.
- Renamed:
UXCaptureConfigisUXCaptureCreate - Renamed:
UXCaptureExpectisUXCaptureStartView
- Refactor
mwp-tracking-pluginnow explicitly handles each type of request that results in an activity record to ensure that the expectedurlandreferrervalues are populated
- New feature added support for
putrequest
- Refactor click tracking provided by
mwp-tracking-pluginnow keeps click state in a cookie rather than Redux state.
- NEW FEATURE Create 'mwp-csp-plugin' which adds some useful security headers
- BREAKING CHANGE Upgrade to hapi v17, which requires updating of much of the platform code. Consumer apps that leverage the hapi server
- Logging change - no more stdout debug logging for tracking calls, no logging of successful api.meetup.com calls in prod.
- NEW FEATURE the API proxy path prefix can now be specified using an app's
package.jsonfile by specifyingconfig.apiProxyPathwith a leading slash, e.g./mu_api, or by an env variableAPI_PROXY_PATH.
- NEW FEATURE A selector for pulling Feature Flags from redux state
mwp-store/lib/selectorsgetFeatureFlags- This selector will pull all feature flags from
state->flags
- NEW FEATURE query functions attached to routes will now get called with a
second argument,
state, which is the application's current Redux state. This can be used , for example, to inspect feature flags to determine what API request to make
- NEW FEATURE
mwp-app-render/lib/components/StateBroadcastcomponent that can be inserted anywhere in an application in order to enable awindow.getAppState()function that returns the current Redux state tree as a single object.
- NEW FEATURE the prod REST API can now be used directly in the dev environment.
To enable, simply add
{ "api": { "host": "api.meetup.com" } }to aconfig.development.jsonfile in the root of your application. Note: there is no visible difference between using the prod REST API and the dev REST API. Try not to chnage any data that doesn't belong to you.
- BREAKING CHANGE webpack build configurations have been moved to
mwp-cli and are no longer a part of
mwp-config. Make sure to upgrade to mwp-cli >=7.1.429.
- NEW FEATURE
api.trackaction creator for async activity tracking requests from consumer apps. Pass alongviewNameand (optionally)subViewNameinquery.paramsin order to tag the record with those fields.
- BREAKING CHANGE routing definitions no longer support
getIndexRouteandgetNestedRoutes. Instead, async loading should happen at the component level- use
getComponentinstead ofcomponent.
- use
- NEW FEATURE support for
query.listparam to aggregate list endpoint responses
- BREAKING CHANGE dropping support for React 15. Peer dependencies will require React 16.3 or higher.
- Upgrade meetup-web-component dependencies to latest (4.8.2111), and require meetup-web-component@^4.8.0 for peer dependencies.
- New feature
state.flagscontaining all LaunchDarkly feature flags
- BREAKING CHANGE
publicPathnow set as a config var that is shared by server and browser build config -APP_RUNTIME.assetPublicPathis no longer populated by server, and consumer apps no longer need to set a 'dynamic'__webpack_public_path__value in either the server or browser entry point script asssetPublicPathno longer needs to be passed toserver-render/makeRenderer
- Bugfix the Redux cache middleware will now key the cache with the logged-in member's ID in order to avoid incorrectly returning cached results corresponding to other members or logged-out responses.
- New feature
SEOHeada component for rendering SEO content in the document head. Also adds related utils undersrc/util/seo. WP-532
- Simplified
makeServerRenderer$no longer requires abaseUrlparam - it will be determined from the request directly
- Refactor
mwp-i18n/lib/withIntlnow expects a map of{ [localeCode]: messages }in itsmessagesarg.mwp-clihas been updated to provide this TRN source structure automatically.
- Moved
mwp-core/lib/localizationUtilsis now part ofmwp-i18n, renamed toloadLocaleData - New package
mwp-i18n, which currently contains thewithIntlHOC andloadLocaleData
- New package
mwp-config- a dedicated 'config' package that can be freely imported to other MWP packages and consumers.
- Removed
api.requestAllaction creator is now a private function. Consumers must use the method-specific API request action creators, which now accept arrays of queries in addition to single query - Removed The
meta.promiseproperty of API actions has been removed - use themeta.requestPromise instead, which will return an array of responses. E.g. instead ofapi.post(...).meta.promise.then(response => ...), useapi.post(...).meta.request.then(([response]) => ...) - Removed
api.requestAllis no longer exported - use the method-specific action creators with the following enhancement: - New feature
api.get/post/patch/delcan now be called with an array of queries in order to make a batched API request
- Removed Oauth authentication for no-cookie requests. This means we no
longer need
MUPWEB_OAUTH_TOKENandMUPWEB_OAUTH_SECRETenv vars. Consumer applications should not need to change any of their code, but deployments can be cleaned up
mwp-api-staterefactored to remove redux-observable + rxjs dependencies - those are no longer peerDependencies.redux-observableis not currently used by any other MWP package and can be removed from consumer apps
- Removed polyfill for
Intl.NumberFormatandIntl.DateTimeFormat- consumers should instead use thefull-icupackage and follow its instructions to ensure that Node will load all required locale data when it starts.
- Support for reading
MEETUP_VARIANT_...cookies intostate.config.variants
- Removed Queries specifying REST API endpoints that do not support
logged-out members will no longer produce responses. Specifically,
members/selfwill not be called, meaning thatstate.api.selfcan not be assumed to have a value throughout the application - a selector function should be used to provide a reasonable default value in your components.
mwp-lognow contains nicely-formatted logs
- All 'internal' packages now published independently:
mwp-api-proxy-pluginmwp-api-statemwp-app-rendermwp-app-route-pluginmwp-app-servermwp-auth-pluginmwp-coremwp-language-pluginmwp-routermwp-storemwp-sw-pluginmwp-tracking-pluginmwp-test-utils
-
Feature: Pass in an array of string
cssLinkstomakeServerRenderer$in order to add static CSS<link>tags to the document<head>. These tags will not be affected by<link>s defined within<Helmet>tags of the application, and therefore will not be subject to being clobbered by client-side rendering that will cause a FOUC (as described in this react-helmet issue).Important: The consumer application must ensure that the CSS files are bundled with the browser application script as well, even though the links themselves are not required by the browser app renderer.
- Moved
src/serveris nowsrc/app-server
-
Moved
src/components/Redirect-->require('src/router').Redirect -
Moved
src/components/Forbidden-->require('src/router').Forbidden -
Moved
src/actions/apiActionCreators: The actiontypeconstants and action creators are exported fromrequire('src/api-state'):API_REQ-API_RESP_SUCCESS-API_RESP_COMPLETE-API_RESP_ERROR-API_RESP_FAIL-requestAll-get-post-patch-del
-
Moved
src/actions/syncActionCreators: The actiontypeconstants and location change action creators are exported fromrequire('src/router'). DeprecatedapiError,apiSuccess,apiRequestaction creators can be imported directly fromsrc/api-state/sync/syncActionCreators, but should be marked as 'deprecated' and converted to theapi-stateaction creators above.SERVER_RENDERLOCATION_CHANGElocationChange
-
Moved + renamed
src/middleware/platform:getEpicMiddlewarehas moved torequire('src/api-state').getApiMiddleware -
Moved + renamed Parts of
src/reducers/platformhave moved tosrc/store/reducer.makeRootReduceris now the default export of the module. Theapiandapp(deprecated) reducers are now insrc/api-state, along withDEFAULT_API_STATE. -
Moved some
src/componentsmoved tosrc/render/components:PlatformApp- should not be used - chooseBrowserApporServerAppPageWrapBrowserAppServerApp
-
Moved
state.config.localeCodeis nowstate.config.requestLanguageto better describe where the locale code comes from - make sure you update to the latest meetup-web-mocks in order to get a validMOCK_APP_STATE
- Change (could be considered breaking, but it's specifically for a
requested update to GroupCard in mup-web):
group.duotoneUrlis now an object withsmallandlargeproperties -smallhas a resolution of 300x400, andlargehas a resolution of 1100x800.
- Fixed the
platform_agentin tracking logs is now determined frompackage.json, which should have aconfig.agentstring ofMUP_WEBorPRO_WEB.
- Removed Support for
?logoutquery parameter, and platform-based Login/Logout components. Platform consumers should use the<Redirect>component to redirect login and logout requests to Meetup classic until login and logout can be handled fully by the platform in a future update.
- New feature API request actions now contain a reference to a Promise that will resolve when the API request returns. WP-334
- New feature Supply
initialNowtostate.configto sync server and browser time reference. - New feature 301/302 Redirects now supported for internal and external routes. WP-331
- New feature Query creator functions assigned to routes will now receive
all React Router
matchproperties in their argument. WP-352
- Deprecated
~/.mupweb.confighas been deprecated - node convict now manages environment configurations inutil/src/config.js. To override any of the default values in development, create aconfig.development.jsonfile with the name of the configuration and new value. This file is automatically gitignored. Seeconfig.test.jsonfor an example configuration.
- New feature Google App Engine PubSub tracking logs. To enable, consumer
apps must ensure that the
GAE_INSTANCEenvironment variable is set in the app container - GAE provides it automatically to the GAE runtime. Docs: https://cloud.google.com/appengine/docs/flexible/nodejs/runtime#environment_variables
- Refactor default locale is determined by first locale in list, as specified in consuming repo's /src/util/locales.js
- New feature support for asyncronous routes (PR #266).
Docs. Note the new
resolveAppPropshelper that allows the browser script to delay rendering until async routes are resolved - rendering docs here.
-
Deprecated
renderers/browser-render.jsxhas been deprecated - consumer applications should use vanilla React render methods to render a<BrowserApp />, which is the new entry point for a platform-based applications, atsrc/components/BrowserApp.jsx. The browser entry point should contain the following code:import ReactDOM from 'react-dom'; import { getInitialState, getBrowserCreateStore } from '../util/createStoreBrowser'; const routes = ...; const reducer = ...; const middleware = ... || []; const basename = ... || ''; const createStore = getBrowserCreateStore(routes, middleware, basename); const store = createStore(reducer, getInitialState(window.APP_RUNTIME)); ReactDOM.render( <BrowserApp routes={routes} store={store} basename={basename} />, document.getElementById('outlet') // this is a hard-coded id );
- Replaced
state.api.isFetchinghas been replaced withstate.api.inFlight, which is an array ofrefs corresponding to query requests that have not yet returned. Usestate.api.inFlight.includes(fooRef)to determine whether a particular query has returned.
-
Deprecated all of the Sync action creators (e.g.
syncActionCreators.apiRequest) have been deprecated. You should instead use the newapiActionCreatorsto manually trigger API requests - see the Queries docs for more info. The Sync action creators will be removed in version 3.There are four things that consumer apps need to update:
-
syncActionCreators.apiRequestquery dispatches must be converted toapiActionCreators.requestAll(or the method-specific equivalents described in the Queries docs). -
All reads from
state.appshould be converted tostate.api- the child properties will be the samerefs used instate.app, except forstate.app.errorwhich is nowstate.api.fail. -
Any reducers listening for
API_SUCCESS(which has apayloadcontaining an object with aqueriesarray and correspondingresponsesarray) must be refactored to listen forAPI_RESP_SUCCESSandAPI_RESP_ERRORactions, which will each contain a{ query, response }object corresponding to a single query and its response.The shape of each
responseobject has also changed - instead of a single root-level key corresponding to the original query'sref, the response is now a flat object with arefproperty.Instead of parsing the
API_SUCCESSpayload for errors, reducers will now be able to specifically identify responses that correspond to failed/invalid responses from the REST API by listening forAPI_RESP_ERROR-API_RESP_SUCCESSwill always correspond to a valid REST API response. -
Any reducers listening for
API_ERRORmust be refactored to listen forAPI_RESP_FAIL. Both actions have the sameErrorobject payload corresponding to a general API request failure, unrelated to a specific query.
These changes must by made simultaneously, and this list assumes that the refactor described in the
v2.1changelog has been completed first. -
- Deprecated POSTing and DELETEing through custom
POST_...orDELETE_...actions has been deprecated - a warning will be printed in the server logs. Use themeta.methodfield in your Query objects to determine the request method, and usecomponentWillReceivePropsto process the API result as described in the docs
-
Refactor Upgrade to React Router v4. Routes definitions change - the root level routes definition is now an array, and each route must have the following shape:
{ path: string, // must have leading '/', except for the root '' path component: React.Component, query?: function, routes?: array, // child routes, with `path` props that append to the parent exact?: boolean, // forces the component to only render when url is exact match }
Note that async routes are no longer supported - they will return in a new form in a future update
- Require Node v7 for require('url').URL
- Require window.URL polyfill for browsers without native support
- Removed
apiConfigCreatorsno longer exists - use the query object directly to define theendpoint
- New env variable -
COOKIE_ENCRYPT_SECRETmust be in your env vars. It must be a 32+ character random string. - Refactored - auth cookies are now encrypted, so existing cookies must be cleared in the browser.
- Removed - Many of the shared methods in
src/util/testUtilsnow are in themeetup-web-mocksrepo - Change - Use the
meetup-web-mocksrepo for testUtil methods, e.g.,
import { createFakeStore } from 'meetup-web-mocks/lib/testUtils';- Change -
API_SUCCESSnow returns ametaprop that contains thecsrftoken returned by the server that will be used to validate all POSTs. Your Redux reducer must include aconfigreducer that will assignconfig.csrfonAPI_SUCCESS, e.g.
function config(state = {}, action) {
let csrf;
switch (action.type) {
case 'API_SUCCESS':
csrf = action.meta.csrf;
return { ...state, csrf };
//...
}
}- Removed/Refactor - there are no more
LOGOUT_Xactions. Logout is instead a navigation action to any URL with?logoutin the URL.
- Removed -
CONFIGURE_AUTHaction will no longer contain a key namedanonymous. The app can determine whether the current user is logged in from theapp.selfvalue, which should be a memeber object with astatusindicating whether the user is logged in. - Deprecated - the
ANONYMOUS_ACCESS_URLandANONYMOUS_AUTH_URLenv variable names have been changed toOAUTH_ACCESS_URLandOAUTH_AUTH_URL, respectively. The only names will still be read, but will be removed entirely in a future version.
- Refactor - all modules are now transpiled to CommonJS ES5 modules in
lib/, so your import paths should change:
// v0.4
import <module> from 'meetup-web-platform/<moduleName>';
// v0.5
import <module> from 'meetup-web-platform/lib/<moduleName>';If you want to use the ES6 source files directly, import them with
'meetup-web-platform/src/<moduleName>';
- Renamed -
getEpicMiddlewareis nowgetPlatformMiddlewaresince all platform middleware functionality is provided as a single redux-observable epic-based middleware combining multiple epics - Removed
PostMiddleware- the equivalent functionality is now provided as an epic inPostEpic, which is part ofgetPlatformMiddleware
- Added
getEpicMiddleware - Removed/Added
SyncMiddleware,CacheMiddleware,AuthMiddlewareare now part ofEpicMiddleware-getEpicMiddleware(routes)will add functionality equivalent to the previous middleware. If you are usingcreateStorefrom the platform library, you can ignore this update, as the middleware loading is done for you.
-
Refactor
server-render:makeRenderernow takesclientFilenameandassetPublicPathas separate argumentsclientFilenameis typically provided by the webpack build stats of the client build process.assetPublicPathis usually constructed from env vars in your server entry point. -
In order to correctly apply the
assetPublicPathto your server and client builds, you must set__webpack_public_path__before importing your application code, e.g.```js // your client entry point __webpack_public_path__ = window.APP_RUNTIME.assetPublicPath; const routes = require('./routes').default; const reducer = require('./features/shared/reducer').default; const render = makeRenderer(routes, reducer); // your server entry point const clientFilename = WEBPACK_CLIENT_FILENAME; const assetPublicPath = ${process.env.ASSET_SERVER_HOST}:${process.env.ASSET_SERVER_PORT}/`; __webpack_public_path__ = assetPublicPath; // eslint-disable-line no-undef const routes = require('./routes').default; const reducer = require('./features/shared/reducer').default; const renderRequest$ = makeRenderer(routes, reducer, clientFilename, assetPublicPath); ```