Releases: 18F/tock
Tock release v20181101.1
For Those About To Tock
Liner Notes, 11/01/2018
There's a lot of changes under the hood in this release, but let's talk about the ones that will matter to you: First, if you're a never-billable employee (which is different from "non-billable"), you shouldn't make Tock angry every week anymore. And if you've ever gotten stuck in the Tock-won't-let-me-out-of-this-endless-login loop before, you'll be happy to know that annoying defect is now fixed.
Other than that, the release is mostly important under-the-hood changes, including a big update to Django 2.0 and a lot of related dependencies. Those were exciting to us, at least.
Stuff You Can See:
- Inactive users no longer get stuck in an endless loop (#826)
- Updated local development docs (#818)
- Never-billable employees should no longer make Tock angry (#828)
Admin-only Features:
- We now have a static app for when Tock needs to be in maintenance mode (#830)
Under The Hood:
- Updated packages to reduce vulnerabilities (#817)
- Safer markdown formatting (#833)
- Remove hardcoded non-billable check so we don't have to change it every time that group changes. (#835)
- Updated to Django 2.0 (with related dependencies (#840)
Code Contributors for this release
Team Tock would like to thank:
Tock release v20180619.1
For Those About To Tock
Liner Notes, 06/19/2018
We're making a few changes to Tock with this release. This release includes ATO-related remediations for Tock which effect the user experience of the system. This release also includes some changes to the administrator user experience as well.
The ATO-related are additional UX changes around logging out of Tock. Logging out of Tock now communicates with the cloud.gov UAA server to ensure that the UAA Session is deleted at the UAA server level. This ensures that logging out of Tock is register in the system within milliseconds. Another ATO-related change is that Tock will now automatically log you out if you are inactive for more than 60 minutes on the site from the last request. There is currently no warning for this functionality. If you are idle on the Tock site for more than 60 minutes, your next request will redirect you to login again.
The rest of the changes made to Tock are outlined below.
Stuff You Can See:
- Clearer Tock notifications leveraging both Happy Tock and Angry Tock #769
- Improved TimeCard form UX #804
- Implement UAA client logout #814
- Auto logout functionality #815
Admin-only Features:
- Snippets report update to include both
Generaland18F Non-Billableprojects. #782
Under The Hood:
- Rename credentials service in production from
tock-creds-prodtotock-credentials#776 - Updates to documentation with help from the 18F Writing Lab #771
- Leverage Snyk instead of Gemnasium for automated dependency vulnerability scanning #805
- Add documentation around logging and backups #809
Code Contributors for this release
Team Tock would like to thank:
Tock release v20180404.1
For Those About To Tock
Liner Notes, 04/03/2018
We've optimized the Utilization pages which now perform about 30% faster. These pages are still fairly slow, but should feel zippier for the folks utilizing them. We've also added multiple links to the Tock Change Request form in the navigation and the footer of the site, so no need to hunt down that form anymore! 🎉
In this release, we're also including some updates under-the-hood to continuously recycling the production deployment so that it's always on the latest Python build pack provided by ☁️.gov. And lastly, we're updating Django to the latest release of 1.11.12 in this release.
Thanks for reading and happy tocking!
Stuff You Can See:
- Add multiple links to Tock Change Request Form #775
- Changes can be made to the where the link takes folks by editing the
TOCK_CHANGE_REQUEST_FORMsetting in thesettings/base.pyfile
- Changes can be made to the where the link takes folks by editing the
Admin-only Features:
- Refactored GroupUtilization for better performance. #765
Under The Hood:
- Recycle production instances on a schedule #772
- Update Django and several project-related dependencies #773
Code Contributors for this release
Team Tock would like to thank:
Tock Release v20180329.1
For Those About To Tock
Liner Notes, 03/29/2018
The latest version of Tock contains a lot of under-the-hood changes for both the
Tock application and overall documentation for the project. We've updated our
Getting Started documentation along with various other pages for ATO purposes.
Tock has also fully transitioned over to using pipenv and various dependencies
were updated in the process. The about.yaml file was removed from the project,
as it's no longer necessary for an ATO. Along with documentation, Tock now has
logging covering the event logs that are required for control AU-2. Lastly, Tock
is now on a clearer path to being upgradable to Django 2.0 in the future as
well.
Thanks for reading and happy tocking!
Stuff You Can See:
- Fix 404s on static files we control #761
Admin-only Features:
- N/A
Under The Hood:
- Update Getting Started w/ valid username #755
- Update debug-toolbar config #759
- Refactor manifests away from deprecated changes #763
- Transition to Pipenv and update python/js dependencies #762
- Pipenv generated requirements.txt and dependency updates #768
- Update project documentation #752
- Update logging for ATO #766
- Explicitly set on_delete=CASCADE for foreign keys #742
- Remove about yaml RIP #767
Code Contributors for this release
Team Tock would like to thank:
Tock Release v20180315.1
For Those About To Tock
Liner Notes, 03/15/2018
We've made two new updates to the Tock API this release. When you attempt to retrieve a reporting period that doesn't exist in Tock, you will now receive a 404 rather than an empty response. The other update is that we are now including GS level grades in Timecard data responses from the API. This will help the TTS operations team gather some very useful data about project burn rates.
See a list of all the changes below.
Thank you and happy tocking!
Stuff You Can See:
Admin-only Features:
- None.
Under The Hood:
- Fix authentication info in
README.mdand get rid of.env.sample. #751 - Fixed template error in
elif. #741
Code Contributors for this release
Team Tock would like to thank:
Tock Release v20180308.2
For Those About To Tock
Liner Notes, 03/08/17
Tock has been updated with a newly designed footer and various under-the-hood changes. Please let us know of any issues in #tock-dev.
Thanks and happy tocking!
Stuff You Can See:
- Update design to the footer. #745
- Link to Git SHA for versions that are deployed to staging. #747
Admin-only Features:
- None.
Under The Hood:
- Update to Django 1.11 LTS. #740
- Read versioning information from a file. #750
- Add context processing to Error pages
400,403,404, &500. #747
Code Contributors
The Tock team would like to thank
Tock Release v20180308.1
For Those About To Tock
Liner Notes, 03/08/17
Another deployment bug fix release. Please read the notes for the previous release.
Stuff You Can See:
- None.
Admin-only Features:
- None.
Under The Hood:
- Changes to deployment using
cf loginandcf set-env.
Tock Release v20180307.2
For Those About To Tock
Liner Notes, 03/07/17
Quick bug fix release. Please read the notes for the previous release.
Stuff You Can See:
- Fixes link to tag in footer introduced in
v20180307.1PR: #744
Admin-only Features:
- None.
Under The Hood:
- None.
Tock Release v20180307.1
For Those About To Tock
Liner Notes, 03/07/17
We're updating Tock's auth system! This will improve usability and security, and relieve the cloud.gov team of maintenance responsibilities for the old login proxy.
This release also includes several smaller changes, which are included in the notes below.
We'll have between two and ten minutes of downtime during the transition, after which users will have to log back in to the app. Update We've successfully deployed this version at 15:00 3/07/2018.
The first time you log in, you'll need to authorize the Tock App in UAA. You can change your permissions at any time by going to your UAA profile.
We appreciate your patience.
Stuff You Can See:
- A shiny new authentication system, backed by UAA. You'll have to log back into the app, and hit "authorize" on the Authorization Page PRs: #720, #725, #726, #727, #729, #730, #737
- Adds a link to the footer to show what version is currently deployed to staging and production. PR: #719
Admin-only Features:
- None. PR: #1987
Under The Hood:
- 🎉We now have pdb support with local Tock development! PR: #722 🎉
- Updates the deploy_to_production job to use the correct org and space for the deployer credentials for production. PR: #717
- Updated Node dependencies. PR: #723
- Add bandit and flake8 to CI and resolve some Flake8 errors. PR: #724
Code Contributors for this release
Team Tock would like to thank:
WSGI server bug fix release
This release fixes the wsgi server timeout to two minutes to allow for long API requests for timecard data that may take longer than 30 seconds. 30 seconds was the default coming from gunicorn after #708