2.7.1 - 2022-01-13

BUG FIX: Fixed issue on some MySQL setups that would throw an error about the primary key in the pmpro_memberships_pages and pmpro_memberships_categories tables.

2.7 - 2022-01-13

• FEATURE: Added a "Spam Protection" option to the advanced settings page. When used, IP addresses are blocked from checkout if there are more than 10 failsures within 15 minutes. (@ideadude)
• ENHANCEMENT: Checkouts with Stripe will now reuse Stripe Products and Prices. (@dparker1005)
• ENHANCEMENT: User profile now links to Stripe customer so that subscriptions can easily be directly updated in Stripe rather than through Subscriptions Updates which is now deprecated. (@dparker1005)
• ENHANCEMENT: Improved usability of the Require Membership metabox for sites with a large number of levels. #1885 #1692 (@kimcoleman)
• ENHANCEMENT: Include reCAPTCHA on Billing Page form. #1884 (@ideadude)
• ENHANCEMENT: Membership pages URLs are now included in the Site Health Information. (@JarrydLong)
• BUG FIX/ENHANCEMENT: Set the default for the pmpro_send_200_http_response filter to false instead of true to reduce impact of the functionality on sites that don't need it. #1868 (@dparker1005)
• BUG FIX/ENHANCEMENT: Consolidated the "Free memberships only" option into the "All memberships" option for enabling reCAPTCHA to ensure that paid memberships with discounts that make the membership $0 cost show reCAPTCHA consistently. #1878 #1840 (@JarrydLong)
• BUG FIX: Resolved PHP 8 fatal error with Authorize.net Silent Post handling. #1899 (@ZebulanStanphill)
• BUG FIX: The new filter pmpro_admin_pagesetting_post_type replaces the now deprecated filter pmpro_admin_pagesetting_post_type_array to allows setting one specific post type instead of always getting the first from an array. #1866 #1865 (@ipokkel)
• BUG FIX: Resolved issue where users may not be linked to their Stripe customer. (@dparker1005)
• BUG FIX: Now including all levels (public and hidden) in the Paid Memberships Pro section of Site Health information. #1898 (@kimcoleman)
• BUG FIX: Set cancelled/error status from PayPal Express IPN even when an order has no user. #1897 (@mircobabini)
• BUG FIX: Ensure styles are removed from excerpts generated for protected content. #1894 (@sc0ttkclark)
• BUG FIX: Various text adjustments for readability. #1892 (@kimcoleman)
• BUG FIX: Set primary key for wp_pmpro_memberships_categories and wp_pmpro_memberships_pages tables. #1891 (@ideadude)
• BUG FIX: Fixes around the pmpro_manage_memberslist_columns filter to accommodate sites that aren't in English. #1879 #1876 (@JarrydLong)
• BUG FIX: Use the correct cancel method when cancelling an oder through PayPal Standard IPN requests. Fixes compatibility with PMPro Cancel on Next Payment Date add on. #1882 (@mircobabini)
• BUG FIX: Discount code expiration date is now properly being used in the REST API. #1877 (@JarrydLong)
• BUG FIX: Remove the SHIPTOPHONENUM parameter sent to PayPal Website Payments API and encode all parameters passed into API updates. #1883 (@dparker1005)
• BUG FIX: Resolve timezone issue with Stripe subscriptions to resolve problems where trials would receive an extra day depending on the time of checkout. #1874 (@dparker1005)
• BUG FIX: Now using a single product per level and a single Stripe price per payment amount to prevent duplicate products and prices. #1824 (@dparker1005)
• REFACTOR: Organized and simplified Stripe gateway class. (@dparker1005)

2.6.7 - 2022-01-06

• SECURITY: Updated escaping in the pmpro_getLevelAtCheckout and pmpro_checkDiscountCode functions as extra precaution against SQL injections. (Thanks, WPScan)

2.5.11 - 2022-01-06

• SECURITY: Updated escaping in the pmpro_getLevelAtCheckout and pmpro_checkDiscountCode functions as extra precaution against SQL injections. (Thanks, WPScan)

2.4.5 - 2022-01-06

• SECURITY: Updated escaping in the pmpro_getLevelAtCheckout and pmpro_checkDiscountCode functions as extra precaution against SQL injections. (Thanks, WPScan)

2.6.6 - 2021-11-18

• SECURITY: Updated escaping on the discount codes page in the dashboard to prevent XSS attacks. #1867 (Thanks, Erwan from WPScan)
• BUG FIX/ENHANCEMENT: Added code to remove duplicate active rows in the pmpro_memberships_users table after level change. This might have happened e.g. if users were purchasing a level via the WooCommerce Add On multiple times. #1860 (@dlparker1005)
• BUG FIX/ENHANCEMENT: Improved the REST API endpoints to better support Zapier native requirements. #1862 (@andrewlimaza)
• BUG FIX: Fixed PHP notices in the name parser library. #1861 (@sc0ttkclark)

2.6.5 - 2021-11-12

• ENHANCEMENT: Introduced new action pmpro_before_commit_express_checkout to allow additional changes after an order has been saved but before sending customer to PayPal Express checkout. #1852 (@mircobabini)
• BUG FIX/ENHANCEMENT: Added login compatibility for Jetpack WordPress.com SSO when using the PMPro login page. #1848 (@sc0ttkclark)
• BUG FIX: Fixed PHP notices from status headers when server protocol information is unavailable. #1849 (@dparker1005)
• BUG FIX: Fixed metadata compatibility for membership levels and orders when calling get_pmpro_membership_level_meta() and get_pmpro_membership_order_meta() so they support getting all meta values for all keys. #1853 (@mircobabini)
• BUG FIX: Escape all Webhook communication debug output coming from gateways. #1855 (@ideadude, Victor Garcia)

2.6.4 - 2021-11-02

• ENHANCEMENT: Now including some information from the htaccess file in Site Health, including whether a getfile.php script is defined or if caching is being used. (@sc0ttkclark)
• ENHANCEMENT: Now including some of the PMPro-related PHP constants in the Site Health. (@sc0ttkclark)
• ENHNACEMENT: Now including the minimum PHP version (5.6 currently) in the readme.txt so it's shared on the WordPress.org page. (@sc0ttkclark)
• ENHANCEMENT: Added scrollable classes to the member history shown on user profile edit page in the dashboard. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Now sending a 200 OK status message early when the Stripe webhook is running to avoid timeout issues. We may use this new pmpro_send_200_http_response in the other webhook/IPN handlers later on. (@dparker1005)
• BUG FIX/EHNANCEMENT: Removed the "fee" info from the edit user page. This was often misleading. The fee is still shown on the members list and frontend account page. Future updates will include work to make sure the fee is more accurate in cases where subscriptions or levels are being changed by admins after checkout. (@ideadude)
• BUG FIX/ENHANCEMENT: Once again enqueuing the admin.css file on all WP admin pages. This fixes issues where styles weren't being applied to the edit user/profile page in the dashboard. (@ideadude)
• BUG FIX/ENHANCEMENT: Removed the "Member Value Report". We didn't intend to move this over from the old Member History add on. The report was inaccurate and had optimization issues. (@kimcoleman)
• BUG FIX/ENHANCEMENT: Added login compatibility for wordpress.com hosted sites. This fixes some issues with wordpress.com's SSO when using the PMPro login page. (@sc0ttkclark)
• BUG FIX: Fixed issue introduced in 2.6.3 where memberships were not being cancelled when cancelled at PayPal. (@mircobabini)
• BUG FIX: Now including time when calculating profile start date. In the past, we would set it to 00:00:00 which could add or remove a few hours from the subscription. (@dparker1005)
• BUG FIX: Fixed issue where enddates were incorrectly set sometimes when expiration period was "Hour". (@kimwhite)

2.6.3 - 2021-10-11

• ENHANCEMENT: Now passing "app" information to Stripe through API calls. (@dparker1005)
• ENHANCEMENT: Updated PayPal IPN to detect messages for refunds to at least log it. (@mircobabini)
• ENHANCEMENT: Updated PayPal IPN to differentiate between cases where the initial payment failed vs a subscription was cancelled. (@mircobabini)
• ENHANCEMENT: Better styling of the membership levels history when empty. (@mircobabini)
• BUG FIX/ENHANCEMENT: Now showing better error messages when license key checks fail due to connection issues. (@ideadude)
• BUG FIX: Improved PayPal API integration to handle cases where PayPal is returning encoding errors but still processing payments and subscriptions. (@mircobabini)
• BUG FIX: Fixed issue where the Stripe sandbox key wasn't saved properly when using Stripe connect. (@dparker1005)
• BUG FIX: Fixed issue where a double $$ was showing up in specific emails. (@andrewlimaza)
• BUG FIX: Fixed warnings in various webhook and IPN handlers. (@ideadude)
• BUG FIX: Fixed warning in the admin activity email cron job. (@andrewlimaza)

2.6.2 - 2021-09-17

• ENHANCEMENT: Made username the first column in the members list. This helps with the mobile view. #1764 (@dparker1005)
• BUG FIX/ENHANCEMENT: Will now block uninstall.php from running if an older version of PMPro is deleted from the plugins page. #1773 (@mircobabini)
• BUG FIX/ENAHCEMENT: Expanded the allowed HTML for pmpro_kses to support email templates and added a pmpro_kses filter. #1770 (@sc0ttkclark)
• BUG FIX/ENHANCEMENT: Updated the CSS for "clickable" labels in checkbox lists. #1752 (@kimcoleman)
• BUG FIX: Fixed bug with sending test emails from the email templates page. #1765 (@ideadude)
• BUG FIX: Added the !!membership_level_confirmation_message!! var to the list on the email tempaltes page. #1783 (@kimwhite)
• BUG FIX: Updated the SendWP link per their new dashboard area. #1777 (@kimcoleman)
• BUG FIX: Fixed bug where PMPro-related usermeta was sometimes blanked out if those fields weren't present at checkout, e.g. when a logged in user was checking out. #1762 (@andrewlimaza)
• BUG FIX: Fixed issue where gateway-related notices weren't showing up on the discount codes page. #1757 (@mircobabini)
• BUG FIX: Fixed some design issues with the member history tables. #1753 (@mircobabini)
• BUG FIX: Fixed issues where the option to block subscribers from the dashboard would interfere with other plugins, e.g. the MailPoet plugin. #1749 (@sc0ttkclark)
• BUG FIX: Fixed issues where the RTL stylesheets might not load if your theme overrode frontend.css or admin.css but didn't have the RTL equivalents. (@ideadude, @sc0ttkclark)