From 8769308dfdab8f276d2de4356b678a15a84d42b6 Mon Sep 17 00:00:00 2001 From: jwed Date: Sun, 24 May 2026 20:17:21 -0400 Subject: [PATCH] =?UTF-8?q?release:=201.8.0=20=E2=80=94=20rolls=20up=20the?= =?UTF-8?q?=201.7.1=20patch=20series?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bundled stable cut for prod. Contents since 1.7.0: * feat(access): strict allowlist enforcement. A unifi page with NO grants is now visible only to super-admins — previously it fell back to "open for anyone with the route permission". Matches the new dashboard-wide access model. * feat(access): the Access tab now adds groups by typeahead search, mirroring the user-search flow. Only granted groups + super-admin groups appear in the matrix; other groups are added on demand. * fix(access): ungranted users hitting a unifi URL get 404 instead of 403 so the page doesn't leak its existence. Breaking note: super-admins continue to see everything. Non-super users that previously accessed a unifi page via permission alone now need an explicit grant in the Access tab. Configure grants before relying on existing permission-based access. Co-Authored-By: Claude Opus 4.7 (1M context) --- composer.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/composer.json b/composer.json index b52a3d9..cc047da 100644 --- a/composer.json +++ b/composer.json @@ -1,7 +1,7 @@ { "name": "dashboard/unifi", "description": "UniFi network management, WiFi stats, and captive portal authentication for the Dashboard platform", - "version": "1.7.1", + "version": "1.8.0", "type": "library", "license": "MIT", "autoload": {