We’ve just released Alaveteli 0.21!
One of the most important things Alaveteli does is to make filing a new Freedom of Information request less daunting for members of the general public. So we’ve taken another look at the process of making a request in Alaveteli, and knocked off a few of the rough edges in the user interface. Hopefully it’s now even easier than before.
We’ve also improved security in a few places, making sure that actions taken on the site are secure against cross-site request forgery, adding sensible security headers and enforcing an expiry time on session cookies.
There’s a new interface for administrators that lets them easily add public holidays to the database for the place where the Alaveteli site is running. This is really important in calculating correctly when requests are due for a response, according to the law.
Finally, in the eternal fight against spam, we’ve removed the ability of banned users to update their “About me” text. So no more spammy profiles.
You can see the full list of highlights and upgrade notes in the changelog.
Thanks again to everyone who’s contributed (we now have code from nearly 40 different people!)