Fundamental change in how revision works between 1.x and 3.x?

My situation seems slightly different but still just as totally confusing.

I have a similar problem. I am using 7.x-1.3+10-dev and when I upgrade to 3.x it seems the "needs review" table populates with a bunch of old revisions that have already been published? As noted, these revisions seem to behave as separate copies from the published version.

Same problem at my site. When I create a new version of a content in state "draft" I get two new versions. One in state draft (Published --> Draft ) and one in state published (Published --> Published).

Same problem here. Changing the state of a revision, creates an extra revision that always goes from Published --> Published.

Same problem after an update from 1.4 to 3.0 with the extra revision + an additional problem with language negotiation for anonymous users. I have four languages enabled. For logged in users, language negotiation works like before the update. For anonymous users, some nodes only show the English version when they shouldn't (using Entity Translation). After reverting to 1.4 everyting is fine again.

It would be really nice to have a security patch for 1.4.

same problem here on Drupal 7.44.

Regarding the language problem in #7 : error only shows with alpha8 of the title module (which is required by drafty)

I am also experiencing this issue and other potentially related issues which I have detailed in this report: https://www.drupal.org/node/2824725

Unfortunately it was imperative to change the behaviour since the old behaviour was the actual reason for the information disclosure issue.
The D7 API doesn't allow to easily change the revision id in the entity base table - so as a workaround the revision id was set in the shut-down handler. But this left a time window in which the draft was the active revision = potential Information disclosure.
Drafty now saves the draft and when doing so saves, within the same transaction, a forward copy of the active revision. This ensures data consistency in the DB.
This also means that the highest revision id is usually the active one.

Currently the deprecated copy of the active revision is left behind - but there's a patch for drafty we've been working on: #2579205: Delete redundant revisions
Reviews would be more than welcome and with a bit attention I'm quite sure we can get this in soon :)

I'd also argue that it would make more sense to save the draft *after* the forward copy,

That's the point, as far as I'm aware it is not possible to do this with D7, at least not without introducing the information disclosure issue.
This missing API functionality was added in D8 but a backport doesn't seem to be feasible. I don't have the related issues at hand atm. but it was discussed.

@das-peter & @bdeclerc

I would also suggest that the idea of deleting the 'old' revision has to be handled with care.

Two issues I see at the moment.

1. the timestamp of the originally published version is NOT set as same on the forward revision
2. published by user of originally published version is NOT set as same on the forward version.

I'm seeing this on a 7.51 vanilla install with both the dev & recommended versions of workbench_moderation and drafty.

The environments I work within require, from a legal and legislative viewpoint, a proper audit trail of the who, what and when of published content.

I'd suggest that the deletion of revisions cannot be implemented until this issue can be rectified.

I've created a new issue in regards to this problem.

https://www.drupal.org/node/2824798

@bdeclerc, I like your idea but better than creating a new revision when publishing, it would be enough to delete the forward-copy to get the proper history, is that possible ? We can delete de forward copy as it is just a copy and is no longer published.

i just tried to delete forward copy of published revision when save state from publish -> draft and draft ->publish or publsih-> needs_review and needs_review->publish by using hook workbench_moderation_moderate_submit.

function workbench_moderation_moderate_form_submit($form, &$form_state) {
//add db_delete to delete extra revision of published.
db_delete('node_revision')->condition('vid',$form_state['values']['node']->vid+1)->execute();
         db_delete('workbench_moderation_node_history')->condition('vid',$form_state['values']['node']->vid+1)->execute();
.....
}

@sri@re,

In a context of concurrent accesses to content editing, are you 100% sure that "vid+1" is really the forward copy revision of the published revision?

@jyraya,
sure. can anyone please test and tell the feedback.?Thanks.

#2900747-13: SA-CONTRIB-2016-060 upgrade workbench_moderation to 7.x-3.x with patches AND entity_translation to latest with patches

annoying, seemed to work simpler in 1.x however I'm working on a 3.x patch to allow publishing new draft of an already published node from /admin/content patch will check path, make assumption that you want to publish most recent draft. I'll follow up soon.

This is just a shot in the dark, but what if it worked something like this...

I have a published node (vid=1). I edit the node and save a draft. This creates two new revisions—the new draft (vid=2) and a copy of the old published revision (vid=3), which is active—just as Workbench 3.x is doing now. But then we update the node table making vid 1 the active revision again, like what Workbench 1.x does, and we delete vid 3. This adds a couple more steps, but if I understand things correctly it should prevent the data leak issue without creating unnecessary revisions, or reordering revisions in a funky way.

Thoughts?

I wrote a patch to allow publishing from the /admin/content page , we're now adopting the new drafty behavior but applying patches that are currently being reviewed by the drafty maintainer and community.

see our patch
#2910310-10: drafty allow publishing current draft from /admin/content page when node already published when Workbench Moderation 7.x-3.x is enabled

as of today, we're actually using these three patches for drafty

drafty version = "7.x-1.0-beta4"
 - https://www.drupal.org/files/issues/7x1x_drafty_publish_from_admin_content_page-2910310-10.patch
 - https://www.drupal.org/files/issues/fix_head_tests_of_drafty7x1x-11.patch
 - https://www.drupal.org/files/issues/drafty-n2579205-116.patch

and these workbench_moderation 3.x patches.

workbench_moderation version = "7.x-3.0+5-dev"
- https://www.drupal.org/files/issues/upgrade_from_1x3_to_3x_fails-2428371-51.patch
- https://www.drupal.org/files/issues/workbench_moderation-playnicewithpanels-40.patch
- https://www.drupal.org/files/issues/workbench_moderation-preserve-history-2824798-14.patch