## [1.6.0] - 2026-05-27
### Added
- Added request method check on each request so that only allowed methods are accepted
- Add Jitsi integration and link generation for appointments made via the public page
- Allow providers to toggle the syncing themselves (#1731)
- Add new meeting link field to appointments for storing online video conference locations
- Create new integration section for the Google Calendar integration (#1690)
- Add settings to not display the Add to Google Calendar button in the booking confirmation page (#1763)
- Add new Google Meet setting and meeting link support for appointments while syncing with Google (#1589)
- Add Select All / None buttons to multi-checkbox fields
- Add prompt for client notifications so that they are not sent every time an appointment changes
- Add notification prompt when creating new appointments from the calendar page
- Add notification prompt when deleting appointments from the calendar page
- Connect RSS updates from the official blog and show them in the about page
- ALTCHA integration added as an alternative CAPTCHA step (#1155)
- Add a legal notice and imprint links to the booking page and the legal settings page (#1407)
- When someone clicks on password reset, implement a link delivery and not just change the password directly
- Login / Backend button on the disabled booking page message screen (#1777)
- Allow customers to save their information in local storage (#1696)
- Implementation of additional GDPR features in Easy!Appointments (#535)
- Allow users to define working plan exceptions for multiple dates (#1706)
- Add CAPTCHA support for all the public forms in order to block abusive requests (#1754)
- Add validation when saving the working plan (#1758)
### Changed
- Improved CRUD list entries to show pointer cursor when selected
- Centered and narrowed CRUD list and form content on larger screens for better readability
- Refactored cleanup logic from Console controller into a dedicated Cleanup library
- Make the phone number field of backend users optional (#1709)
- Change the main CRUD layout and navigation structure (list first)
- Replace the availabilities type with the new slot interval field
- Keep the provider option selected in the booking page if possible (#1672)
- Improve setting language by GET parameter (#1620)
- Improved appointment deletion flow: ask notification question first, only show the cancellation reason dialog when the user chooses to notify users
- Restyled secondary action buttons (Cancel, Close) to use the outline secondary variant for a consistent UI
- Simplified all documentation pages for better readability by non-technical users
- Allow users to assign a provider to the service in the services page and update the label (assign the service to)
- Perform various security optimizations in the app
- Custom fields are displayed in appointment details popup (#1830)
- When booking in calendar add a new check that will detect if the selected provider is still available or not
- If the current user has not available services or providers to be displayed in the public booking page, then show an info message instead of the booking page
### Fixed
- Release builds now ship only the Google Calendar service instead of every Google API service, keeping the download size small
- Language switching now works for languages with hyphenated codes such as Brazilian Portuguese and Traditional Chinese
- Added missing language code mappings for Brazilian Portuguese and Traditional Chinese
- Working plan exception break inputs now use the correct size and no longer look oversized
- "No breaks" placeholder is now removed when the first break is added to a working plan exception
- Account page can now be saved when the phone number field is left empty
- Booking cancellation no longer shows a success page when the appointment was not actually deleted
- Booking cancellation no longer fails because of a security check mismatch on public booking routes
- Booking cancellation error page now shows the real reason (for example "rate limit exceeded") instead of a generic "appointment not found" message
- Booking cancellation no longer crashes when the cache is unavailable
- Old session files are now cleaned up properly
- Added automatic cleanup of cache, sessions and logs older than 90 days
- Appointments can now be modified after a provider changes their time zone (#1789)
- Customer appointment link in the table calendar view now opens the appointment modal as expected
- The session garbage collector now runs periodically to prevent session storage bloat (#1793)
- Providers can no longer pick customers they are not connected with when the customer visibility limit is enabled
- Improved CalDAV syncing compatibility with more calendar systems (#1840)
- Optimized backend queries during the booking process (#1721)
- Added the sequence field to the ICS file so calendar apps correctly update appointments after multiple changes
- Creating a "new" customer from the backend calendar appointment modal now reuses the existing customer record when the same email already exists
- Login page username and password fields now keep proper spacing between the icon and the typed text
- Password recovery and password reset form inputs now keep proper spacing between the icon and the typed text
- Bottom toast notifications on mobile are now centered horizontally instead of being stuck to the left edge
- Fixed a security issue where an administrator could inject scripts into the "booking disabled" message that would then run for every visitor of the public booking page
- Fixed a security issue where a provider could create or modify appointments under another provider's account
- Fixed a security issue where the CalDAV connection test could be abused to reach internal services on the server's network or leak error details from those services
- The CalDAV safety check is now enabled by default and can be toggled inside the CalDAV library, with the local Docker test server always allowed so local setups can still test the integration
- Fixed a security issue where a backend user could hijack another provider's Google Calendar sync by linking it to their own Google account
- Fixed a warning that appeared in some availability API responses when booking-window settings were left empty
- The time picker inside the working plan exception break editor is no longer cropped by the modal and now shows the full dropdown
- Fixed a privacy issue where the appointment reschedule page exposed more customer details (email, phone, address, custom fields, etc.) than needed; only the customer's name is now embedded in the page
- The page header now correctly picks up the configured company color on themes that previously kept a hardcoded blue border
- The custom company color no longer overrides theme styles on buttons, forms, menus, dropdowns, alerts and lists, so the selected theme keeps its intended look
- The "Booking Link" label next to the link icon on the Providers and Services pages was replaced with a tooltip on hover for a cleaner look
- Calendar table view filters now lay out cleanly on mobile, with the provider and service filters on their own rows below the date controls
- Calendar month view day numbers no longer appear underlined or in the link color
- Webhooks are now triggered only for the exact actions they are subscribed to, instead of matching similarly named actions by substring
- Google Calendar sync no longer silently drops events from large calendars (more than ~250 events); the sync now pages through all events
- Fixed a parse error in the Italian, Catalan, French and Luxembourgish translations of the CAPTCHA warning message caused by unescaped apostrophes
- Flatpickr month picker no longer cuts off the bottom of month names with descenders
- Corrected the "notify users on update" question translation in 40 non-English language files so it matches the intended English meaning
- Fixed an error when deleting personal information from the Privacy page on installations where the cache is unavailable
- Read-only and disabled form fields are now readable on dark themes
- Dark themes are no longer overridden by a light page background, even when a custom company color is configured
- Improved the contrast of the secondary color on the Darkly theme so buttons, links and text are easier to read
- Section headings on CRUD and settings pages (e.g. "Details") are now readable on dark themes
- Cards on the services, providers, secretaries, customers and integrations pages now follow the theme background instead of being forced to white
- Form inputs on the Materia theme now show the Material-style underline on focus instead of a full border (also fixes related visual glitches on Cosmo alerts and Darkly/Flatly pagination)
- The dropdown caret is now visible on timezone selects and the Google Calendar sync select across all themes
- Filter list hover background is now readable on dark themes
### Removed
- Remove the patch.php file
## [1.5.2] - 2025-08-25
### Fixed
- Fix the GTag script URL html rendering (#1666)
- Fix the "Load More" JS error in secretaries page (#1677)
- Fix the PHP compatibility error of the appointments index API endpoint (#1678)
- Catch individual email delivery exceptions (#1670)
- Apply permission checks to the appointment and unavailability search (#1753)
- Make sure the sync button is visible on provider log in (#1749)
- Update unavailable dates after applying appointment data while rescheduling (#1662)
- Make sure that any-provider does not include hidden providers while generating availability (#1733)
- Provide "text" version of the emails in addition to HTML (#1711)
- Trigger webhook requests when managing records via the API (#1676)
## [1.5.1] - 2025-01-20
### Added
- Add support for PHP 8.4 (#1640)
- Add new secret token header field to webhooks and default to X-EA-Token (#1607)
- Add company colors to notifications (#1569)
- Add Albanian Language Translations (#1646)
### Fixed
- Fix the date parsing issue on Safari web browsers during the booking process (#1584)
- Fix working plan configuration am/pm hour parsing so that it works in all languages (#1606)
- Improve the CalDAV syncing mechanism so that it connects to more systems without problems (#1622)
- Fix various 1.5.0 API issues (#1562)
- Correct email issues by replacing the internal email library with phpmailer (#1587)
- Fix ICS file mimetype (#1630)∏
- Incorrect Timezone Handling in CalDAV Synchronization Causes Time Shifts (#1626)
- No color change in the appointment modal window (in the backend calendar) (#1641)
- The plain user password might appear in the log messages in case of an error (#1590)
- Fix loop when going a month back in an edge case (#1577)
- Dedicated provider links do not pre-select the relevant provider on the booking page (#1651)
- Correct the service / provider booking header display (#1650)
## [1.5.0] - 2024-07-07
### Added
- Display month with the earliest available day (#1075)
- Allow admins to define the business closed dates (blocked-periods) (#432)
- Allow working plan exceptions to be defined as non-working days (#1383)
- Create an official docker image of the project and host it on Docker Hub(#1116)
- Automatically select the next available date in the booking page or display a message if this month is unavailable (#1204)
- Add Open Graph information to the public booking page so that it renders nicely once shared on social media apps (#1382)
- Preselect the date with a query parameter (#1376)
- Add the location and notes fields to the appointment email notifications (if a value was provided) (#1341)
- Add date, from and till query parameters to the filter the appointments index results by date (#1134)
- Allow the users to define their own status and assign them to appointments (#244)
- Add new setting for limiting new public bookings in the future (#1203)
- Automatically enable the secure cookie config if the current installation uses HTTPS (#1126)
- Add language and timezone properties to the customer API resource (#1157)
- Add support for the definition of custom webhooks via the settings page (#581)
- Allow the user to select their own preferred language (#1263)
- Support multiple Bootswatch themes for the app (#1205)
- Providers and secretaries must only be able to see and manage their own customers (#1199)
- Use the default service duration if the user just clicks on a calendar slot for creating a new appointment (#1237)
- Google Calendar synchronisation failure when symbols/emoji appear in events to be imported (#1182)
- Add the customer timezone field in the appointment modal of the calendar page (#1094)
- Add a new setting that toggles the login link of the booking page (#1148)
- Add custom Matomo analytics integration (#974)
- Prefill the form field though url parameters (#1021)
- Color code events by provider or service (#422)
- Service duration values shorter than 5 minutes should be acceptable via the services page (#1110)
- Add a new "is_private" flag to services and providers so that they do not appear in the booking page (#378)
- Skip the first booking step when only one service and one provider are available (#349)
- Enable the change of the brand logo and colors from the backend (#789)
- Add the ability to temporarily block new appointments / set away message (#940)
- Add optional (configurable with setting) phone number validation (#820)
- Add an option to deactivate the remove-all-data function for customers (#808)
- Skip the first booking step if both provider and service are preselected (#1117)
- Make delete appointment via API to send emails just like the calendar page does (#1101)
- Create new layout structure for the markup, so that common HTML markup is being reused (#1152)
- Have an option to hide customer data fields during booking (#1081)
- Add a SECURITY.md file to the repository (#1122)
- Add support for custom fields on customers (#1133)
- Add from email/name and reply-to settings in the email.php configuration file (#1465)
- Create a new setting that will define the default timezone of the application (#1390)
- Integrate CalDAV Protocol for appointment syncing (#209)
- Add LDAP / Active Directory integration (#128)
### Changed
- Do not allow a customer to book the same hours multiple times (#1420)
- All the user roles with access to the backend calendar page can filter by services (#956)
- Update Bootstrap to version 5 (#1150)
- Update FullCalendar to version 5 (#1151)
- The availability generation algorithm needs performance improvements when many appointments are stored in the system (#1171)
- Support for relative paths when loading resources or working with the session (#1158)
- Support line breaks when displaying the service description (#1149)
- Remove the CodeIgniter fork from the composer.json file and re-import the system directory (#1109)
### Fixed
- Sync all the providers without errors, when the user clicks on the "sync" button and "all" is selected in the calendar page (#1365)
- Non-working time not showing correctly in the week view of calendar (#1381)
- Make sure the booking cancellation is a post request and has a reason value provided (#1178)
### Removed
- Remove the engine directory and files form the app (they're deprecated) (#971)
- Remove the PHPMailer dependency from the app and use the built-in CodeIgniter mailer (#970)
