TL;DR
Strapi v3.1.7 brings several enhancements and bug fixes to improve the overall user experience. Key updates include hiding creator fields from public API by default, adding Hebrew and Polish translations, improved file upload handling, and configurable hook timeouts. This release also fixes several bugs related to the Mongoose connector, link creation in the editor, and file size handling in the upload plugin.
Highlight of the Release
- Creator fields (created_by, updated_by) are now hidden from public API responses by default
- Added Hebrew language translations for admin interface
- Updated Polish translations for admin interface
- Added configurable timeout settings for hooks
- Improved file upload error handling for oversized files
- Fixed validation of Date and Time field types for Mongoose connector
Migration Guide
Hiding Creator Fields
Creator fields (created_by and updated_by) are now hidden from public API responses by default. If you need to expose these fields, you can update your model configuration:
// In your model's settings
{
"privateAttributes": ["created_by", "updated_by"]
}
To expose these fields, you would need to remove them from the privateAttributes array.
Per-Hook Timeout Configuration
If you need to configure timeout settings for specific hooks, you can now do so in your hook configuration:
// In your hook configuration
module.exports = {
timeout: 1000, // Set timeout to 1 second
// rest of your hook configuration
};
Upgrade Recommendations
This is a minor release with important bug fixes and enhancements. It's recommended to upgrade to v3.1.7, especially if you:
- Use the Mongoose connector and work with Date and Time fields
- Experience issues with file uploads and size limitations
- Need better control over hook execution timeouts
- Want improved security by hiding creator fields from public API responses
The upgrade should be straightforward with minimal risk of breaking changes. As always, test thoroughly in a staging environment before deploying to production.
Bug Fixes
Fixed Link Creation in Editor
Fixed an issue where creating a link in the editor would not properly handle text selection, now properly assuming selection is text when creating a link.
Fixed Date and Time Field Validation for Mongoose
Resolved validation issues with Date and Time field types when using the Mongoose connector, ensuring proper validation of these field types.
Fixed File Upload Size Handling
- Improved error handling for oversized file uploads with better user warnings
- Fixed an issue where cropped images could exceed size limitations
Fixed Unit Test Cache Issues
Prevented .cache folders from impacting unit tests, ensuring more reliable test results.
New Features
Added Hebrew Language Support
The admin interface now includes Hebrew language translations, making Strapi more accessible to Hebrew-speaking users.
Per-Hook Timeout Configuration
Developers can now configure timeout settings for individual hooks, providing more granular control over hook execution and preventing long-running hooks from causing issues.
Browser Options for watch-admin Command
The watch-admin command now accepts browser options, giving developers more control over how the admin panel opens during development.
NoIndex Meta Tag for Public Index Page
Added a noindex meta tag to the public index page to prevent search engines from indexing it, improving SEO management.
Security Updates
Hidden Creator Fields
Creator fields (created_by and updated_by) are now hidden from public API responses by default, improving security and privacy by not exposing user information unnecessarily. This change helps protect sensitive user data from being exposed through the API.
Performance Improvements
No specific performance improvements were highlighted in this release. The changes were primarily focused on bug fixes, translations, and feature enhancements.
Impact Summary
Strapi v3.1.7 brings several important improvements to security, usability, and developer experience.
The most significant change is hiding creator fields from public API responses by default, which enhances security and privacy by preventing unnecessary exposure of user information. This is particularly important for applications where user data protection is a priority.
For developers, the addition of configurable hook timeouts provides better control over application behavior, while fixes to the Mongoose connector's Date and Time field validation resolve long-standing issues. The improved file upload handling with better error messages for oversized files will reduce user frustration and support requests.
Content editors benefit from fixed link creation in the editor and expanded language support with Hebrew translations and improved Polish translations. These changes make Strapi more accessible to a wider audience and improve the content editing experience.
Overall, this release focuses on quality-of-life improvements and bug fixes rather than major new features, making it a recommended upgrade for most Strapi users.
Full Release Notes
🌏 Translation
- [admin] Update strapi-admin polish translation (#7507) @srflp
- [admin] Add translations to Hebrew language (#7871) @ramiy
💅 Enhancement
- [admin] Add noindex to public index page (#7917) @votemike
- [admin] Allow browser options while using watch-admin (#8054) @erictsangx
- [core:framework] Hide creator fields from public api by default (#8052) @Convly
- [core:framework] Per hook timeout config option (#8081) @MattieBelt
- [documentation] Docs/integrations (#7792) @Mcastres
- [documentation] Fix incorrect PostgreSQL data path in example doc (#7942) @Igi4
🐛 Bug fix
📚 Migration guides can be found here 📚
![dependabot[bot]](https://github.com/dependabot[bot].png){kind=small}
