Changelog
See what's new and what has been improved in Infoskjerm.
All versions are collapsed by default. Click on any version below to expand and view the changes
2.0.8
Latest Version
56
Total Updates
01.06
Last Updated
01.06.26
▼
Security
Discord OAuth state is now HMAC-signed and validated on api.newstargeted.com before token exchange. Legacy OAuth callback routes are disabled. Session roles default to member, never admin, and session ID is regenerated on login.
Security
Blocked public access to logs, test, cron, and vendor paths. Application logs moved outside the web root. MFA bypass on passkey-first login closed. CSRF on auth and API POSTs. RSS SSRF guard, screen API authorization fixes, PayPal webhook signature verification, upload execution block, and display CSP with HTML sanitization.
31.05.26
▼
Improvement
Faster sign-in after Discord approval: trimmed OAuth callback logging, skipped analytics on auth callback routes, removed MFA schema bootstrap from the login hot path, and reduced user upsert DB round trips on auth/callback_handler. Timing logs help operators measure token, user fetch, and callback duration.
Improvement
Dashboard overview now loads slide counts with one aggregated SQL query instead of per-screen queries. Screens table column checks are cached per PHP worker. Auth session validation is cached per request to avoid duplicate database lookups.
01.05.26
▼
Bug Fix
Fixed decryption of the encrypted discord_oauth_data cookie set by api.newstargeted.com after Discord redirects back to Infoskjerm. Centralized OAuth login works again.
Feature
Added TOTP (authenticator app) with one-time backup codes after Discord login. Enable and manage under Dashboard: Two-factor auth. Session is hardened while 2FA is pending.
Security
Added file-based rate limits for Discord OAuth start and 2FA code verification to reduce automated abuse.
Feature
You can register passkeys for faster, phishing-resistant sign-in. This uses the WebAuthn standard, so compatible browsers can use Windows Hello, Face ID, Touch ID, or a hardware security key. Passkeys work together with email or Discord login and with optional two-factor authentication (TOTP and backup codes).
Improvement
Security options for two-factor authentication and passkeys are available under Dashboard, Profile, on the Security tab. This keeps account protection settings in one place next to your profile details.
Bug Fix
The public contact form could return HTTP 500 when posting to /api/contact. Outbound mail now uses the shared relay client with optional HMAC headers, loopback relay URL on this host when configured, and the API only requires HMAC when a server secret is set.
05.10.25
▼
Improvement
Comprehensive error handling improvements with better user experience and debugging capabilities.
Improvement
Improved mobile user interface with better touch interactions and responsive design.
Security
Enhanced security measures and protection against common vulnerabilities.
Improvement
System performance improvements for faster loading and better user experience.
Feature
Improved changelog display with better version management and user experience.
Bug Fix
Various bug fixes and stability improvements for better system reliability.
28.09.25
▼
Bug Fix
Language toggle now works properly with dropdown menu, AJAX loading states, and error handling. Users can switch between English and Norwegian seamlessly.
Bug Fix
Theme toggle now works correctly with instant dark/light mode switching, proper icon updates, and persistent user preferences saved to localStorage.
Improvement
Consolidated duplicate JavaScript functions, removed conflicts between multiple toggle implementations, and created clean modular header scripts.
Improvement
Both language and theme toggles now work perfectly on mobile devices with touch-friendly interface and responsive design.
28.09.25
▼
Improvement
Implemented shared header/footer components across all pages and created modern dashboard with sidebar navigation. Dashboard now loads content inline without page refreshes, providing a seamless user experience.
Feature
Added direct links to each changelog version container. Users can now share specific version links (e.g., /changelog?v=2.0.3) and the page will automatically scroll to that version with highlight effects. Includes copy-to-clipboard functionality for easy sharing.
Bug Fix
Fixed critical HTTP 500 error on dashboard page. The issue was caused by the Dashboard class trying to authenticate users in its constructor before the authentication check was performed. Refactored the class to use lazy initialization for user data, allowing proper authentication flow.
Improvement
Added missing getUserId() method to the Auth class to support user ID retrieval for trial management and other features that require the current user ID.
Improvement
Added complete historical changelog from version 1.0.0 (2017) through 2.0.2 (2025). Users can now see the full evolution of the Infoskjerm system from its initial release to the current modern architecture. All historical versions include direct links and are properly categorized.
Improvement
Refactored changelog page to use template-based architecture. Moved HTML template to separate file (public/templates/changelog_template.php) to keep main changelog_page.php under 500 lines. All changelog data is now loaded from database table with proper modular design.
Improvement
Implemented fully modular architecture for changelog system. Split changelog_page.php from 858 lines to 23 lines by extracting HTML template (202 lines), CSS (400+ lines), and JavaScript (150+ lines) into separate files. All changelog data is now loaded from database table with proper separation of concerns.
Feature
Implemented collapsible changelog containers for better organization and user experience. All version containers now start collapsed by default, showing only the version header and basic information. Users can click on any container to expand it and view the full changelog entries. Direct version links automatically expand the target container when accessed. Added visual indicators (▼/▲) to show expand/collapse state.
Feature
Implemented configurable contact settings with admin interface. Support hours now display in user's local timezone automatically. Added ContactSettingsManager for database-driven contact information. Created admin interface at /admin/contact-settings for managing support hours, timezone, company info, and response messages. JavaScript automatically detects user timezone and converts support hours for better user experience.
28.09.25
▼
Feature
Added complete analytics system with browser tracking, OS detection, country statistics, page views, referrers, screen resolutions, device types, and real-time visitor monitoring. Admin-only statistics dashboard with all metrics from traditional analytics platforms.
Feature
Created comprehensive database schema for analytics tracking including statistics, browsers, OS, countries, pages, referrers, resolutions, devices, search engines, robots, and active visitors tables with sample data.
Feature
Built modern, futuristic admin statistics page with tabbed interface showing summary, browsers, OS, countries, pages, referrers, resolutions, and devices. Includes real-time data, progress bars, and mobile-friendly design.
Improvement
Implemented automatic page view tracking across the application with browser detection, OS detection, referrer tracking, and session-based duplicate prevention.
Bug Fix
Fixed HTTP 500 error on dashboard page caused by statistics tracker being loaded before session initialization. Moved statistics tracking to after authentication check to prevent session conflicts.
Improvement
Redesigned changelog page with modern timeline layout inspired by webhook.newstargeted.com/changelog. Added version number explanation cards, improved visual hierarchy, and better mobile responsiveness.
Feature
Implemented 30-day free trial system, comprehensive documentation system, public changelog, contact forms, demo mode management, and enhanced user onboarding.
28.09.25
▼
Feature
Added automated cron jobs for trial management (daily at 2 AM) and demo data reset (hourly). Includes comprehensive logging and error handling.
Improvement
All email server settings (SMTP, IMAP, POP3) and email addresses now centralized in secure config.php for easy management and updates.
Improvement
Improved 30-day free trial system with automated expiration handling, warning emails, and comprehensive statistics tracking.
Feature
Enhanced authentication system with email/password support, 2FA/MFA implementation, GDPR compliance, password reset functionality, and improved security measures.
Bug Fix
Resolved HTTP 500 error when clicking "Send Reset Link" on the forgot password page. Fixed date format compatibility with MySQL datetime columns and enhanced URL generation for better reliability.
27.09.25
▼
Feature
Major system rewrite with modern architecture, Discord OAuth integration, user management system, roles and permissions, mobile-friendly design, and comprehensive dashboard.
Feature
Modern futuristic UI, Discord OAuth integration, mobile-friendly design, and secure configuration system.
Feature
Secure login system using Discord OAuth2 with role-based permissions.
Improvement
Fully responsive design that works perfectly on all devices and screen sizes.
Security
Protected configuration system with proper file permissions and access controls.
Improvement
Clean URLs without .php extensions for better user experience and SEO.
Feature
Modern futuristic UI, Discord OAuth integration, mobile-friendly design, and secure configuration system.
Feature
Secure login system using Discord OAuth2 with role-based permissions.
Improvement
Fully responsive design that works perfectly on all devices and screen sizes.
Feature
New demo mode allows users to test the system with sample data that resets every hour.
Feature
Demo data automatically resets every 60 minutes to prevent abuse.
01.01.24
▼
Bug Fix
Final minor version before the major 2.0.0 release. Includes bug fixes, security improvements, and preparation for the upcoming major rewrite.
01.01.20
▼
Improvement
Significant modernization with improved performance, updated UI components, and enhanced security features.
01.01.18
▼
Feature
Major update with enhanced screen management features, improved user interface, and better content organization.
01.01.17
▼
Feature
First release of the Infoskjerm digital display management system. Basic functionality for managing digital screens and content.