Standards-based learning record warehouse built for a scalable learning analytics environment.
Older releases are vulnerable to Remote Code Execution due to a bug in the way the underlying Java Runtime Environment (JRE) passes command line arguments to windows systems.
Older releases are vulnerable to Denial of Service (DoS).
Changelog of the last past months.
Get all the events ordered by eventTime (Pagination) - Default: 1000 last tuples
Get the events with a specific edApp.id (source of events) (Pagination) - Default: 1000 last tuples
Get all the enrollments (ordered or not by beginDate or endDate) (Pagination) - Default: 1000 last tuples
Get all the results (ordered or not by beginDate or endDate) (Pagination) - Default: 1000 last tuples
Some attributes are not stored anymore into the objects, they become a Link object (making a link to the actual object). We also added some new attributes to OpenLRW models for fitting with the new OneRoster standard.
GET /api/classes/:id/results
is now working
Custom Health indicator, more details
Route DELETE /enrollments/:id
Route DELETE /classes/:id
Route DELETE /classes
Route DELETE /enrollments
Previously added onto the MongoRisk collection, it is now available on Events more details here.
snyk.io and SonarQube are now checking the code quality in order to find vulnerabilities in the project dependencies and in the classes.
OpenLRW was based on Spring-Boot 1.4.7, it is now using the 2.0.8 release.
This upgrade includes an higher security (fixed 18 high severity vulnerabilities), most of the routes are now faster cf the below table.
Action | Spring-Boot 1.4.7 | Spring-Boot 2.0.8 |
---|---|---|
Authentication | 24ms | 10ms |
Token Expired | 30ms | 9ms |
Post Result | 44ms | 28ms |
Post Event | 12ms | 20ms |
Events Not Found | 13ms | 26ms |
Find User | 300ms | 106ms |
Some dependencies have been updated (Fongo, Swagger).
A route to get a lineitem by its id has been added
The actuator route has changed (due to Spring-Boot 2), it is now http://localhost:9966/actuator/health
The logic behind the GET /api/risks/classes/:class_id/users/:user_id?date=yyyy-MM-dd hh:mm has changed, it is now GET /api/risks/classes/:class_id/users/:user_id?date=yyyy-MM-dd (without hours and minutes).
GET /api/risks/classes/:class_id/users/:user_id will now return the risks sorted by the DateTime attribute.
Installation scripts and settings file template have been updated for Spring-Boot 2
{
"active": boolean,
"name": "string",
"classSourcedId": "string",
"modelType": "string",
"score": "string",
"userSourcedId": "string",
"velocity": "string",
"metadata": {
"key": "value"
}
}
// You also can add the field 'DateTime' with a value following this pattern yyyy-MM-ddThh:mm:ss
An Alpha Release of Apereo OpenLRW