composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-03-11 03:54:21 +01:00
Code Issues Packages Projects Releases Wiki Activity
3,742 Commits 141 Branches 134 Tags
c3c314097ef5fe426ae5651a3fe94de6f2fc2d63
Commit Graph

1081 Commits

Author SHA1 Message Date
Denis Flaven
f4ff96a552 InlineImage::FixUrls must be 
1) idempotent
2) aligned with the syntax used by CKEditor
to prevent creating new entries in the history when nothing was modified.

SVN:trunk[4112]
 2016-05-23 10:16:31 +00:00
Romain Quetiez
1ebafb0566 XSS: Fixed a regression caused by the fix [3994]. Object hyperlinks were escaped twice causing accuented characters displayed as '´'. The API DBObject::MakeHyperLink has been clarified and the original fix moved elsewhere. The XSS injection that was not handled correctly prior to [3994] was in the display of an external key in the details of an object. To reproduce easily, inject some malicious characters in the name of the organization 'Demo' and view any object owned by Demo. 
SVN:trunk[4106]
 2016-05-19 09:51:09 +00:00
Denis Flaven
4a81d70bf6 Suppress a warning when exporting a case log to HTML... Limitation: be aware that wiki links are not transformed to hyperlinks in this case. 
SVN:trunk[4105]
 2016-05-18 09:33:17 +00:00
Denis Flaven
c914344a32 Security: do not show actual encrypted values, display '*****' instead. 
SVN:trunk[4101]
 2016-05-18 08:15:14 +00:00
Denis Flaven
3b38388c73 Support "recusrive placeholders" (i.e. $this->org_id->code$) inside notifications... when using the HTML notation (i.e. -> becomes ->) 
SVN:trunk[4100]
 2016-05-17 19:01:22 +00:00
Denis Flaven
316d1f9b14 Validate date/time fields using their regular expression during an import (or synchro) to avoid passing wrong formats as-is (e.g. 01/02/16 can become 01/02/0016 instead of 01/02/2016 if you use the 4 digits format for years and pass only 2 digits !) 
SVN:trunk[4096]
 2016-05-17 14:51:42 +00:00
Denis Flaven
72b4c549c7 Fix a regression (crash) when displaying deadline attributes. 
SVN:trunk[4091]
 2016-05-14 17:42:02 +00:00
Denis Flaven
1515178500 Validate date/time fields using their regular expression during an import to avoid passing wrong formats as-is (e.g. 01/02/16 can become 01/02/0016 instead of 01/02/2016 if you use the 4 digits format for years and pass only 2 digits !) 
SVN:trunk[4090]
 2016-05-14 17:38:07 +00:00
Denis Flaven
165dbaf245 Date and time format finalization for the exports: 
- properly display the date and time as expected in the preview during an interactive export
- differentiate date vs date&time formats in the Excel export
- use the custom format in the default URL provided by the query phrasebook

SVN:trunk[4089]
 2016-05-14 17:35:52 +00:00
Denis Flaven
6e074f5486 Regression: properly initialize mandatory date (and time) attributes when using a custom date/time format. 
SVN:trunk[4086]
 2016-05-14 17:04:20 +00:00
Denis Flaven
e00667c2e4 HTML texts: support of float (left/right) in the inline style tags. 
SVN:trunk[4061]
 2016-05-11 13:43:49 +00:00
Denis Flaven
ccddf1d4f0 Fix for editing HTML content containing html entities: & must be encoded as & as well !! 
SVN:trunk[4049]
 2016-05-10 19:26:02 +00:00
Denis Flaven
242f7785e6 Add the "filter" attribute into the details form of the TriggerOnThresholdReached class. 
SVN:trunk[4043]
 2016-05-10 14:00:34 +00:00
Romain Quetiez
ae22bbbc81 Internal: added DBObject::RegisterURLMakerClass, to allow for overriding the standard behavior of template placeholders such as $this->org_id->hyperlink(portal)$ 
SVN:trunk[4039]
 2016-05-09 16:01:56 +00:00
Denis Flaven
3e1607047e CKEditor's full screen mode is not supported on iOS (cf https://dev.ckeditor.com/ticket/8307) 
SVN:trunk[4038]
 2016-05-09 15:36:26 +00:00
Denis Flaven
e85c6ca0c5 Fix full screen button in CKEditor. 
SVN:trunk[4032]
 2016-05-04 10:35:12 +00:00
Guillaume Lajarige
aa788a7aad Portal : Finished integration of Date & DateTime attributes in forms 
SVN:trunk[4031]
 2016-05-04 10:04:06 +00:00
Denis Flaven
3c4845cf99 #1215: URL fields can now store up to 2048 characters 
SVN:trunk[4030]
 2016-05-04 09:55:24 +00:00
Guillaume Lajarige
2b12a86fa8 Portal : Finished integration of Date & DateTime attributes in forms 
SVN:trunk[4029]
 2016-05-04 09:42:14 +00:00
Denis Flaven
dc5040c1d2 Wiki syntax is supported in formatted (HTML) text fields as well as plain text areas. 
SVN:trunk[4028]
 2016-05-04 08:53:47 +00:00
Denis Flaven
b02e163ecc CKEditor integration fine tuning with a new "Maximize" button in the collapsed toolbar. 
SVN:trunk[4027]
 2016-05-04 08:26:14 +00:00
Denis Flaven
3579f557d1 Support of date and time custom formats... for custom fields !! 
SVN:trunk[4023]
 2016-05-03 15:17:46 +00:00
Romain Quetiez
668e822fc6 #185 Navigation Breadcrumb - Beta version 
- Any page has a breadcrumb (except if POST and a number of pages like "new object")
- Added Home + Menu buttons showed when the left pane is closed
- Configuration: breadcrumb.max_count (0 to disable)


SVN:trunk[4022]
 2016-05-03 15:06:14 +00:00
Guillaume Lajarige
dd41dc05f5 Refactoring for AttributeDateTime in the portal 
SVN:trunk[4021]
 2016-05-03 14:44:12 +00:00
Guillaume Lajarige
f247b89342 Refactoring for AttributeDateTime in the portal 
SVN:trunk[4020]
 2016-05-03 14:40:56 +00:00
Denis Flaven
5386662146 Support of date and time custom formats... continuing towards the beta ! 
SVN:trunk[4019]
 2016-05-03 09:56:02 +00:00
Denis Flaven
9fd07125e2 Helper class for date & time format conversions between the various conventions for expressing date & time formats. 
SVN:trunk[4017]
 2016-04-29 07:53:45 +00:00
Romain Quetiez
5d5b61d956 Wiki syntax: allow white spaces in the specification of a link to an object (form: [[<class>:<friendlyname>]]) 
SVN:trunk[4016]
 2016-04-28 11:48:03 +00:00
Denis Flaven
8eba9ae714 Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!) 
SVN:trunk[4011]
 2016-04-22 09:26:27 +00:00
Denis Flaven
e51a6f8ff2 Bug fix: when a date/time format is specified, don't try to process columns named 'id' since obviously these are neither date/times nor a genuine attribute code. 
SVN:trunk[4008]
 2016-04-20 12:20:18 +00:00
Romain Quetiez
2a835e5be4 Internal: query arguments could be array values, making it easier to build dynamic IN() clauses 
SVN:trunk[4006]
 2016-04-19 13:59:43 +00:00
Guillaume Lajarige
8834e1b49c - Added support for ExternalKey, LinkedSet, linkedSetIndirect, CaseLog to the new portal 
- Fixed some bugs on the customfields integration with he portal

SVN:trunk[4003]
 2016-04-18 15:07:58 +00:00
Romain Quetiez
f436cece4a OQL arguments: when the value of a query argument is null, it must be considered as being a valid argument (was reported as missing). Improved the error reporting when the argument is in the form :this->attcode and the attcode is not valid for the class of 'this'. 
SVN:trunk[3999]
 2016-04-15 15:07:35 +00:00
Romain Quetiez
21564ff340 CustomFields: overload AttributeDefinition::Fingerprint 
SVN:trunk[3997]
 2016-04-15 09:05:39 +00:00
Romain Quetiez
25287a8c04 XSS: Correctly escape the name of an object when it is displayed within an hyperlink 
SVN:trunk[3994]
 2016-04-11 11:51:59 +00:00
Romain Quetiez
272051ea99 Internal: added verb ormCaseLog::GetAsArray() 
SVN:trunk[3992]
 2016-04-08 10:59:01 +00:00
Romain Quetiez
725c7d45d1 Internal: Implemented DBObject::ExecActions, enables scripting object preset/modifications 
SVN:trunk[3991]
 2016-04-08 07:34:38 +00:00
Denis Flaven
b991f0a6c6 Fix for a crash in the setup (regression) introduced by [r3978] (optimization of the load of dictionaries) 
SVN:trunk[3990]
 2016-04-07 16:11:10 +00:00
Denis Flaven
ed035b3699 YOU MUST RUN THE SETUP AFTER PERFORMING THIS UPDATE !! 
- Better handling of  'auto_select' modules
- New way of implementing the "includes" of modules, now completely out of the configuration file !

SVN:trunk[3989]
 2016-04-07 16:00:01 +00:00
Denis Flaven
32ce26aa7d Fix for potential XSS vulnerability on uploaded file names. To be further tested before retrofitting in branches. 
SVN:trunk[3985]
 2016-04-05 16:15:29 +00:00
Guillaume Lajarige
1784653678 Cleanup and optimization of the handling/loading of the dictionary files. 
SVN:trunk[3980]
 2016-04-04 13:56:36 +00:00
Denis Flaven
447fc85867 Optimization: load "pdftage" (and thus tcpdf) only when needed. 
SVN:trunk[3979]
 2016-04-04 13:44:59 +00:00
Denis Flaven
f3773f6047 Cleanup and optimization of the handling/loading of the dictionary files. 
SVN:trunk[3978]
 2016-04-04 13:44:15 +00:00
Romain Quetiez
70e0fab267 Fixed regression introduced with [3912] and partially fixed in [3954] : when the autocomplete is active, then the search dialog was not working anymore. 
SVN:trunk[3972]
 2016-03-30 12:11:57 +00:00
Romain Quetiez
7868c4364c Label of the final class attribute could only be defined on the root class (overriding it in derived classes had no effect) 
SVN:trunk[3971]
 2016-03-29 14:22:13 +00:00
Guillaume Lajarige
2a5ca467fd Alpha 2.3.0 fixes : 
- Multiple request templates on portal
- SelectField interface stabilization
- UI fixes on portal
- Forms updates on lifecycle

SVN:trunk[3970]
 2016-03-29 12:33:08 +00:00
Romain Quetiez
0104c3fe41 ResetStopWatch could not be used as a lifecycle action: the symptom is "The action has failed". 
SVN:trunk[3967]
 2016-03-25 10:02:29 +00:00
Romain Quetiez
847c1d2736 Custom fields: track the changes and improve the robustness with regards to the Exception thrown by the handler. Also fixed an issue with DBObject, causing the custom fields to be written several times if invoking DBUpdate more than once. Theoretically, this issue affects any type of attribute. 
SVN:trunk[3966]
 2016-03-24 10:49:04 +00:00
Romain Quetiez
462af27157 Custom fields: comparing two sets of values is delegated to the custom fields handler because the values must be interpreted before concluding (blind comparison resulted in objects being written though the values were equivalent) 
SVN:trunk[3964]
 2016-03-22 16:55:51 +00:00
Romain Quetiez
ea31d71d16 Custom fields: check data against the form prior to recording (do not rely solely on the HTML form) 
SVN:trunk[3963]
 2016-03-22 09:02:03 +00:00