composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-04-19 16:48:42 +02:00
Code Issues Packages Projects Releases Wiki Activity
2,725 Commits 136 Branches 134 Tags
support/2.0.2
Commit Graph

785 Commits

Author SHA1 Message Date
Denis Flaven
3f80b27044 Fixed a potential XSS vulnerability. 
SVN:2.0.2[3666]
 2015-07-30 09:23:21 +00:00
Romain Quetiez
89b91fa980 #1020 Restrict dashboard/shortcut refresh interval -retrofit from trunk 
SVN:2.0.2[3450]
 2014-12-03 14:18:28 +00:00
Romain Quetiez
ab65135794 #1007 Unexpected change of the case log when doing massive update of a User Request (+ hide the checkbox for the status because it makes no sense) -retrofit from trunk 
SVN:2.0.2[3396]
 2014-10-31 15:13:04 +00:00
Romain Quetiez
d4fbc3dc4f #778 Issue on list sort order when editing an element - fixed a regression -reintegrated from trunk 
SVN:2.0.2[3337]
 2014-09-15 16:09:12 +00:00
Romain Quetiez
fce3edca40 #778 Issue on list sort order when editing an element -reintegrated from trunk 
SVN:2.0.2[3334]
 2014-09-15 14:06:58 +00:00
Romain Quetiez
a099db5350 #986 Search form: handle indirect external keys -reintegrated from trunk 
SVN:2.0.2[3332]
 2014-09-15 14:02:28 +00:00
Romain Quetiez
6f3583973b #985 Shortcut auto refresh degrading table cosmetics -reintegrated from trunk 
SVN:2.0.2[3326]
 2014-09-15 13:48:54 +00:00
Denis Flaven
ccfc16e296 Protect dashboards against invalid queries in "grouped by" dashlets. (retrofit from trunk) 
SVN:2.0.2[3310]
 2014-08-28 16:01:53 +00:00
Denis Flaven
0fba65d2c5 #965 (Retrofit from trunk) Proper handling of CheckToWrite in ApplyStimulus 
SVN:2.0.2[3285]
 2014-07-23 15:29:36 +00:00
Denis Flaven
72cc38aa4b Oops, fixed a typo in: Add the ability to supply a default "from" email address for the "forgot password" feature, instead of using the same address as for the "to". 
SVN:2.0.2[3220]
 2014-06-18 15:58:54 +00:00
Denis Flaven
91da1583d2 #943: Fix for supporting drop-down lists/auto-completes based on a parametrized query in the portal. 
SVN:2.0.2[3215]
 2014-06-17 11:26:07 +00:00
Denis Flaven
0e00a6c526 Add the ability to supply a default "from" email address for the "forgot password" feature, instead of using the same address as for the "to". 
SVN:2.0.2[3214]
 2014-06-16 15:16:43 +00:00
Denis Flaven
d0280b9672 Fix of a regression introduced by [3146]: due to formatting rules, empty friendlynames may not look like empty strings! -retrofit from trunk. 
SVN:2.0.2[3173]
 2014-05-23 15:52:27 +00:00
Denis Flaven
f72e1dd542 Properly handle external and basic authentication methods for REST web services. 
SVN:2.0.2[3171]
 2014-05-23 13:58:37 +00:00
Denis Flaven
f5e0ff10bb Prevent reloads when using _friendlynames in spreadsheet exports. 
SVN:2.0.2[3165]
 2014-05-23 08:37:17 +00:00
Denis Flaven
ef7d9659fa #923: prevent XSS injection in forgot password page. 
SVN:2.0.2[3140]
 2014-05-06 09:53:37 +00:00
Denis Flaven
658664a2b2 Fix for Plugins: if a page uses set_base then JS popup menu items were reloading the page. Still, set_base should not be used! - retrofit from trunk [3072 + 3079] 
SVN:2.0.2[3136]
 2014-04-24 10:38:18 +00:00
Denis Flaven
7a86487b33 #905 The toolkit menu was visible in the portal for Administrators (but it was not usable). It is now hidden in any case. - retrofit from trunk 
SVN:2.0.2[3135]
 2014-04-24 10:33:23 +00:00
Denis Flaven
a1d47aac87 #913 Error when searching for child requests and no organization is specified. Still, I could not figure out WHY IT WAS WORKING WHEN AN ORG IS SELECTED as a search filter! - retrofit from trunk 
SVN:2.0.2[3134]
 2014-04-24 10:31:14 +00:00
Denis Flaven
093c8a8506 #878: Missing sscrollbar in "linkset-direct" edition popup dialog 
#881: Paginated list in popup dialog is broken
- Missing scrollbar in the popup when using the [+] button

SVN:2.0.2[3122]
 2014-04-01 13:12:24 +00:00
Denis Flaven
2b76c17469 Object's edition: keep track of what was typed in the case log fields when reloading the form (for example with a different "initial state") 
SVN:2.0.2[3120]
 2014-04-01 12:10:11 +00:00
Denis Flaven
b2d6df98ed Protect Bulk Modify against XSS injection! 
SVN:2.0.2[3118]
 2014-04-01 10:13:58 +00:00
Romain Quetiez
46f9a1962a #896 XSS injection on the portal (any search form) -reintegrated from trunk 
SVN:2.0.2[3105]
 2014-03-21 11:43:19 +00:00
Romain Quetiez
ead3a552e7 Retrofitted three changes from trunk, for the REST/JSON API: 
- Enum should be output as the raw value (not the translated label)
- #877 Improved the update of case logs
- #891 Better error reporting when authentication parameters are missing

SVN:2.0.2[3091]
 2014-02-27 10:42:02 +00:00
Romain Quetiez
945b9dc8a9 #888 Security on the portal incompatible with customizations (regression introduced in 2.0.2), now requires to define PORTAL_USERREQUEST_DISPLAY_QUERY and PORTAL_USERREQUEST_DISPLAY_POWERUSER_QUERY -reintegrated from trunk 
SVN:2.0.2[3087]
 2014-02-24 15:56:54 +00:00
Denis Flaven
8850d4c460 Make the Basic Authentication (login_mode=basic) work with non-ASCII characters (in the username as well as in the password), though this may depend on the browser... 
SVN:2.0.2[3085]
 2014-02-19 17:36:27 +00:00
Romain Quetiez
3b188524ca #770 Complete the fix implemented in [2990], the configuration is kept even if not saved for the list 
SVN:trunk[3029]
 2013-12-09 15:55:11 +00:00
Denis Flaven
d42443697c Security enhancements: 
- ensure that a user can ony see the details of the ticket she/he is allowed to see, even if the id is typed manually
- add a define'd filter to filter the drop-down lists of the search form for searching closed tickets.

SVN:trunk[3027]
 2013-12-09 11:39:25 +00:00
Romain Quetiez
5f98c0dcab About box - alpha version 
SVN:trunk[3005]
 2013-11-29 10:50:53 +00:00
Romain Quetiez
fa615638d9 Defensive programming: protected against the Notice "array to string conversion" that appears in PHP 5.4 (thus not on every systems) 
SVN:trunk[3002]
 2013-11-28 09:55:39 +00:00
Romain Quetiez
9f95d951d4 #825 and #830: removed annoying Notices (array to string conversion) 
SVN:trunk[3000]
 2013-11-28 09:44:21 +00:00
Romain Quetiez
258b4be167 #830 (continuation: suppressed the notice "array to string conversion" 
SVN:trunk[2998]
 2013-11-27 09:20:16 +00:00
Romain Quetiez
f5d42b95b8 Code cleanup 
SVN:trunk[2990]
 2013-11-26 15:59:22 +00:00
Romain Quetiez
d7093a9a6f #770 Preserve list configuration (if dedicated) when creating a shortcut 
SVN:trunk[2989]
 2013-11-26 15:58:05 +00:00
Denis Flaven
87e33c72b5 #775: preserve the open/closed status of the search form during auto-reload... by not reloading the form at all! 
SVN:trunk[2986]
 2013-11-26 14:19:13 +00:00
Denis Flaven
99695a0fc1 #841: properly select the current tab 
SVN:trunk[2985]
 2013-11-26 13:54:17 +00:00
Denis Flaven
ebe89b0af7 #839: Managing n:1 links asked to leave the page (under Chrome!) 
SVN:trunk[2983]
 2013-11-26 10:39:56 +00:00
Romain Quetiez
9bc5406abb #842 Internal: recode the notifications page to allow several types of actions 
SVN:trunk[2981]
 2013-11-26 09:39:34 +00:00
Romain Quetiez
b62b9caaf2 #829 Corrupted pwd when attempting to create an account without any profile 
SVN:trunk[2979]
 2013-11-25 09:01:35 +00:00
Romain Quetiez
e48716753d Optimizations: when displaying a "short" list, made of objects having the same status, three additional queries were made (now just one Group By query is made) 
SVN:trunk[2977]
 2013-11-21 16:15:37 +00:00
Denis Flaven
7ebce0a841 Improved version of DoPostRequest which optionally uses cURL to workaround PHP/OpenSSL bugs ! 
SVN:trunk[2972]
 2013-11-07 15:03:01 +00:00
Romain Quetiez
3f50d3ea59 Helper for HTTP POSTs: can return the headers if requested 
SVN:trunk[2971]
 2013-11-06 15:29:15 +00:00
Denis Flaven
898c235c0d Fix for the validation of the forms in the portal. The (lack of) localization was breaking it! 
SVN:trunk[2970]
 2013-10-29 16:26:46 +00:00
Romain Quetiez
f83bb7fa90 Fixed regression introduced with "forgot password": button to reset the user password labelled as "Send now!" 
SVN:trunk[2965]
 2013-10-29 13:13:58 +00:00
Denis Flaven
0b7ed90e18 Fixed a regression introduced by revision [2856]: Avoid breaking pages with tabs when there is no BASE tag at all... 
SVN:trunk[2947]
 2013-10-22 11:49:38 +00:00
Romain Quetiez
20ba6242e7 No time limit for long operations like: Bulk delete, CSV import (interactive) and Bulk modify 
SVN:trunk[2946]
 2013-10-22 08:09:34 +00:00
Denis Flaven
9d6d93d42f #757 Better UI to manage direct linksets: added the ability to provide the "reverse query" by specifying a '<filter>' tag on AttributeLinkedSet. 
SVN:trunk[2942]
 2013-10-21 12:25:07 +00:00
Romain Quetiez
26dca89b19 #780 Auto refresh for the dashboards (+ cosmetics changes for the shortcuts) 
SVN:trunk[2929]
 2013-10-18 14:14:48 +00:00
Denis Flaven
9b58e736ff #787 Added buttons to check/uncheck all options at once in multi selects inside search forms. 
SVN:trunk[2928]
 2013-10-18 09:06:25 +00:00
Denis Flaven
36e6a6106b #757 Better UI to manage direct linksets... on going... 
SVN:trunk[2927]
 2013-10-18 08:26:31 +00:00