v0.31.0.0 - Major Security & Framework Update (CI 4.7.1 & Shield Integration)

🚀 Highlights

This version represents a revolutionary milestone for CI4MS. The core framework has been upgraded to CodeIgniter 4.7.1, the authentication system has been completely modernized with CodeIgniter Shield, and the minimum system requirements have been elevated to PHP 8.2 to meet modern standards.

🛡️ Security Enhancements

• Shield Integration: Replaced custom authentication with a Shield-compatible architecture. Removed 14 legacy migrations and introduced 6 new Shield-aligned migrations with proper foreign keys.
• Audit Trail (BackendLogFilter): Added detailed activity logging (IP, User Agent, Action, Module) for all backend user operations to enhance security monitoring.
• XSS & CSRF Protection: Implemented global input validation and enhanced CSRF token refreshing for AJAX operations to prevent injection and expiration issues.
• Native Log Viewer: Removed external vendor dependencies in favor of a high-performance, secure internal LogViewer library.

✨ New Features

• High-Performance Support: Added WorkerMode and Hostnames configurations to support modern environments like Swoole and FrankenPHP.
• Advanced Template Settings: A comprehensive UI for managing theme assets, global CSS/JS injection, Google Fonts preview, and widget visibility.
• Dynamic Sidebar: Implemented an auto-configuring sidebar that loads menus and icons directly from module Config parameters with improved caching.
• Version Checker: Built-in mechanism to notify administrators of available application updates.
• Migration Safeguard: Introduced $lock feature in migrations to prevent concurrent execution conflicts.

🔄 Important Changes

• System Requirements: Minimum PHP requirement upgraded to 8.2.
• Repository Optimization: Refactored asset management, reducing repository size by approximately 147MB (removed unused maps, source files, and unminified logic).
• Secure API Refactoring: Migrated all "Delete" actions from GET routes to secure AJAX POST requests.
• Shield-Compatible Views: Overhauled user management and permission group views to leverage Shield’s core capabilities.

🛠️ Bug Fixes

• Fixed pivot table insertion logic in CommonTagsLibrary to ensure correct tag persistence for blog posts.
• Corrected path validation regex in the File Editor module to allow multi-level folder traversal.
• Resolved sidebar navigation active-state logic issues for AdminLTE 3.
• Fixed PHP ternary operator precedence bugs affecting status switch states.

---

Important

Since this release includes major structural changes (especially the Shield migration), it is highly recommended to back up your database and run composer update before upgrading.