v2025-12-15

What's Changed

• Update dependencies by @sul-devops-team in #1527

Full Changelog: v2025-12-08...v2025-12-15

v2025-12-08

What's Changed

• Update dependencies by @sul-devops-team in #1523
• Update dependencies by @sul-devops-team in #1524
• Stop using 'without' bundler flag by @corylown in #1525
• Pin connection_pool to 2.5 until fix is released by @corylown in #1526

Full Changelog: v2025-12-01...v2025-12-08

v2025-12-01

What's Changed

• Bump actions/checkout from 5 to 6 by @dependabot[bot] in #1521
• Update dependencies by @sul-devops-team in #1522

Full Changelog: v2025-11-24...v2025-12-01

v2025-11-24

What's Changed

• Add abilities based on Downloader associations by @corylown in #1500
• Add admin button to trigger full + delta dumps. by @cbeer in #1501
• Track the visit before recording the event so we inject our org + token info by @cbeer in #1504
• Add feature flagged UI controls to manage record access by @corylown in #1503
• Update dependencies by @sul-devops-team in #1505
• Allow non site admins to view current access settings by @corylown in #1506
• Display an alert summarizing access settings by @corylown in #1507
• Alias Organization.name to display_name by @corylown in #1508
• Add a summary table to detail download access by @corylown in #1509
• Use Organization#restrict_downloads? predicate. by @cbeer in #1510
• Remove restrict downloads checkbox from org form by @corylown in #1512
• Consolidate AccessibleSummaryTableDataComponent into AccessSummaryTableDataComponent by @cbeer in #1511
• Update access UI via turbo streams on create and destroy by @corylown in #1513
• Check upload read ability before rendering link on upload activity by @corylown in #1515
• Update access controls view for consumer-only orgs by @cbeer in #1514
• Add duration column to processing status. by @cbeer in #1516
• Add some padding around Access restriction page components by @corylown in #1518
• Add a download status icon that reflects the current user's access to an organization by @corylown in #1517
• Add padding in the components so things don't look bad when they don't render by @corylown in #1519
• Update dependencies by @sul-devops-team in #1520

Full Changelog: v2025-11-17...v2025-11-24

v2025-11-17

What's Changed

• Note the currently defined application roles. by @cbeer in #1494
• Add additional authz to the OAI endpoints. by @cbeer in #1495
• Add restrict_downloads field to organizations to limit access to uploads/records by @corylown in #1483
• Use Ahoy to track OAI ListRecords requests with a little more data. by @cbeer in #1496
• Add logos to activity tabs tables. by @cbeer in #1497
• Create a Downloader model to manage access to organization records/files by @corylown in #1498
• Remove the stream id from the OAI identifier. by @cbeer in #1289
• Update dependencies by @sul-devops-team in #1499

Full Changelog: v2025-11-14...v2025-11-17

v2025-11-14

What's Changed

• Convert 4-space indent to 2-space indent by @corylown in #1471
• Indent conditional blocks by @corylown in #1470
• Check for stream read ability before rendering content and links by @corylown in #1472
• Rescue from AccessDenied and return forbidden by @corylown in #1473
• Sequence upload jobs so they run in the correct order for remote downloads + multipart uploads by @cbeer in #1474
• add login details to site_users table by @dnoneill in #1475
• load setting from ENV variables by @dnoneill in #1478
• Add destroy action to let admins delete users outside of the org context by @cbeer in #1476
• Change icon for non group members by @corylown in #1481
• make 30 day sparkline border darker by @dnoneill in #1477
• Fix permission check for groups. by @cbeer in #1485
• Remove duplicate permissions check for creating groups by @cbeer in #1486
• Restrict the ability to invite users to org admins. by @cbeer in #1487
• Refactor away the 'crud' ability shortcut. by @cbeer in #1488
• Use more granular ability checks for organizations. by @cbeer in #1489
• Refactor away Ability#final_ability_restrictions by @cbeer in #1484
• Leave current default stream set as the default while the new stream is pending by @corylown in #1492
• Remove allowlisted_jwt cruft from Ability class by @cbeer in #1491
• Link out to MARC documentation for admins by @marlo-longley in #1490

Full Changelog: v2025-11-12...v2025-11-14

v2025-11-12

What's Changed

• Add data-turbo attribute to other table rows by @cbeer in #1465
• Link to the org uploads page from the activity sparkline. by @cbeer in #1466
• Add trackable to users... by @cbeer in #1468

Full Changelog: v2025-11-11...v2025-11-12

v2025-11-11

What's Changed

• Remove redundant dashboard read ability by @corylown in #1459
• Disable turbo inside uploads table row by @cbeer in #1460
• Let consumer only orgs only create download tokens by @corylown in #1461
• Move consumer-only org table below provider table by @corylown in #1462
• Load uploads lists with turbo by @cbeer in #1451
• Remove lead class from POD Contact by @corylown in #1464
• Show a consumer-only badge in the org header by @corylown in #1463
• Implement filter bar with status + date filters by @cbeer in #1453

Full Changelog: v2025-11-10...v2025-11-11

v2025-11-10

What's Changed

• Fix typo in spec description by @cbeer in #1446
• Use path helpers in specs by @cbeer in #1447
• Explicitly link to the organization page for the default stream uploads. by @cbeer in #1450
• Enforce authz for organization uploads. by @cbeer in #1448
• Remove public flag from organizations by @cbeer in #1449
• Authorize the resource for non-restful actions by @corylown in #1452
• Remove redundant ActiveStorage::Attachment read ability by @corylown in #1454
• Remove redundant MarcRecord read ability by @corylown in #1455
• Remove redundant dashboard abilities by @corylown in #1456
• Remove :organization_slug ability that does nothing by @corylown in #1457
• Update dependencies by @sul-devops-team in #1458

Full Changelog: v2025-11-07...v2025-11-10

v2025-11-07

What's Changed

• Standardize dashboard tabs for consistency, and use explicit routing. by @cbeer in #1442
• Remove commented out summary tab by @corylown in #1445
• Allow POD members to see the uploads + normalized data dashboards. by @cbeer in #1441
• Remove unused dashboard views by @corylown in #1444

Full Changelog: v2025-11-06-3...v2025-11-07