composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-03-05 17:14:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: composer:support/3.2
Branches Tags
composer:develop composer:feature/8955_UIBlocks_in_setup composer:issue/8543 composer:support/3.2 composer:feature/uninstallation composer:feature/8612-inline-images-to-base64 composer:feature/8692-placeholder_attributesubitem composer:feature/7771-CMDB-flow-map composer:feature/asynchronous-cron composer:feature/7150-Backup_MariaDB_11 composer:faf/operation_on_replicas composer:feature/3961-service-menu composer:feature/9248-REST-Updating_link_empty_caselog composer:feature/new-dashboard-layout composer:feature/8933-change-password-default-length composer:feature/rest_multi_classes composer:feature/9223-Portal-AttributeExternalKey_adding composer:feature/8994-add-classes-description composer:feature/8760-audit composer:issue/9057-SuperUser-cannot-run-collectors composer:feature/phpstan composer:issue/9063-missing-transition-auto-resolve composer:class_extraction composer:feature/9100-CSVImport_test_on_hierarchicalKey composer:feature/8981-prepare composer:feature/9086-UniquenessRulesOnTypology composer:feature/property_types composer:feature/8864-list-changes-in-setup-recap composer:issue/jeffrey-rewind composer:feature/8772_form_dependencies_manager_module_usage composer:feature/8514-CMDB-datamodel-for-electricity composer:feature/4678-add-static-analysis-for-php composer:feature/6327-Enum-Date-FinalClass_in_Complementary_Name composer:feature/5221-DG_display_all_related_URs composer:detached composer:support/3.2.1 composer:designer-3.2.1 composer:feature/8533-Impact-Analysis composer:feature/640-Team-tickets_list composer:test_eric composer:feature/8781_-_Improve_twig_base_controller_render_error_report composer:feature/8807-DoCheckToWrite_removed_linkset composer:feature/8528-ignore_silo_1_n_linkedset_in_portal composer:form_dependency_1 composer:form-sdk-poc-controller composer:feature/7577-GetAttributeFlags_Attributes_HIDDEN composer:feature/8663-DoCheckToWrite_portal composer:faf/moduledependency-validation composer:issue/7071_Remove_MYSQL_DEFAULT_PORT composer:feature/6071-Prefill_Tagset_not_saved composer:feature/6111-Display_read-only_field_in_transition composer:feature/8123_improve_on_mention_data_parsing composer:feature/8699_attributedef_PSR4 composer:feature/2535-split_file composer:feature/4789-moduleparsing composer:feature/6759_factorize_config composer:feature/8598-Request_template_with_portal_scopes composer:feature/GetObject_for_portal composer:faf/quick_impact_analysis composer:8413-fix-dbobject-synchro composer:feature/6193-Excel_export_dependencies_of_CI_by_class composer:support/2.7 composer:faf/Add_filters_on_audit composer:issue/3.2-mtp-issues composer:feature/attribute_computed composer:feature/8291-column_name_not_automatically_recognized composer:feature/faf_cron_v1 composer:tag composer:feature/7326-Fix_remove_tab composer:support/3.1 composer:8231-prototype composer:issue/8129-dont_crash_if_datetime_default_value_has_bad_format composer:feature/3777-change_easily_favicon composer:issue/7662_CKEditor_Indent_Block composer:feature/7746---Caselog-edition-button-active-even-if-the-user-has-a-read-only-access-to-the-object composer:feature/7383_ShowDatatableWhenEmpty composer:feature/7810 composer:feature/7963-InlineImageSetDefaultOrgId composer:feature/7770-security-hardening composer:issue/7446-fix-ci composer:issue/7984 composer:support/7770-3.2 composer:issue/7726 composer:feature/5874 composer:issue/7746 composer:issue/7707 composer:feature/2298-switch-portal-profile composer:support/3.0 composer:support/3.2.0 composer:issue/autoload-setup-warning composer:feature/7673-oauth-webhook composer:feature/7063 composer:feature/7146-markup_in_portal_search composer:support/3.2-beta composer:feature/N°7552-Polishing-CKeditor composer:issue/7426-bis composer:feature/7423-add_context_to_users composer:support/designer-3.1.2-3 composer:faf/improve_perf_of_sharing_base composer:feature/6935-migrate-to-sf-router composer:saas/3.1 composer:issue/context-tag-on-initdatamodel composer:support/3.1.1 composer:support/3.1.0 composer:feature/poc_form_sdk_symfony_6 composer:support/designer-3.1.0-2 composer:issue/6218 composer:feature/little_optimization_in_search_screen composer:feature/6912-provisionuser-only composer:feature/6890-Update_request_template_REST composer:saas/manager-3.1 composer:support/3.0.3 composer:issue/6716_add_perf_tests composer:saas/3.1.0 composer:feature/5324-powerportaluser-repairprofiles composer:issue/6667_trigger_on_state_enter composer:feature/1386-Navigation_in_list composer:support/2.6 composer:feature/1318-multiple_choice_in_template composer:saas/3.0 composer:feature/6293-sort-popupmenuitems composer:feature/5341-log-brokencaselog composer:feature/6275-ormcaselog-extension composer:feature/6171-canexpire composer:feature/5341-fix-case-log composer:feature/5619-hide-newsroom composer:feature/5620-hide-org-filter-menu composer:documentation/latest composer:documentation/3.0 composer:feature/4157 composer:feature/faf_doc_twig_blocks composer:feature/5160_hide_readonly_fields composer:feature/faf_sqlite composer:feature/faf_unit_test_with_misc_custo composer:support/2.5 composer:feature/blob-as-extfield composer:support/2.4 composer:support/2.3 composer:feature/b1312 composer:support/2.2.0 composer:support/2.1.0 composer:support/2.1.1 composer:support/2.0.3 composer:support/2.0.1 composer:support/2.0.2 composer:support/2.0 composer:support/1.2.1 composer:support/1.2 composer:support/2.0-beta1 composer:support/1.2.0 composer:support/1.1 composer:support/1.0.2
composer:designer-prod-20251113 composer:2.7.13 composer:designer-prod-20251011 composer:3.2.2 composer:designer-prod-260525 composer:3.2.1-1 composer:3.2.1 composer:3.1.3 composer:2.7.12 composer:3.1.2 composer:2.7.11 composer:3.2.0-2 composer:3.2.0 composer:3.2.0-rc3 composer:3.2.0-rc2 composer:3.2.0-rc1 composer:3.2.0-beta1 composer:3.2.0-alpha1 composer:3.0.4 composer:2.7.10 composer:3.1.1-2 composer:3.1.1-1 composer:3.1.1 composer:3.1.0-3 composer:saas-1.0.17 composer:saas-1.0.18 composer:3.1.0-2 composer:3.1.0-designer-2 composer:2.7.9 composer:3.1.0-1 composer:3.1.0 composer:3.1.0-beta composer:ITSM_Designer_3.1-compatibility composer:saas-1.0.13 composer:3.0.3-1 composer:3.0.3-designer-php8.0-compatibility composer:3.0.3 composer:3.1.0-alpha1 composer:2.7.8 composer:saas-1.0.7 composer:saas-1.0.6 composer:3.0.2-1 composer:3.0.2 composer:3.0.2-rc1 composer:2.7.7 composer:3.0.1-designer-feature-lot2 composer:3.0.1 composer:3.0.1-designer-feature-lot1 composer:3.0.0 composer:3.0.0-rc composer:2.7.6 composer:3.0.0-beta8 composer:3.0.0-beta7 composer:3.0.0-beta6 composer:3.0.0-beta5 composer:2.7.5-2 composer:3.0.0-beta4 composer:3.0.0-beta3 composer:2.7.5-1 composer:2.7.5 composer:3.0.0-beta2 composer:2.7.3-2 composer:2.7.3-1 composer:3 composer:3.0.0-beta composer:2.7.4 composer:2.7.3 composer:1.0.8 composer:3.0.0-alpha composer:2.7.2-1 composer:2.7.2 composer:2.7.1 composer:2.7.0-2 composer:2.6.4 composer:2.7.0-1 composer:2.7.0 composer:2.7.0-rc2 composer:2.7.0-rc composer:2.7.0-beta2 composer:2.6.3 composer:2.5.4 composer:2.7.0-beta composer:2.7.0-alpha1 composer:2.6.2-2 composer:2.6.2-1 composer:2.5.3 composer:2.6.2 composer:itop-carbon composer:2.6.1 composer:2.5.2 composer:2.6.0-a composer:N941-2 composer:N941 composer:N2016 composer:N2011 composer:N1963 composer:1.0.0 composer:2.6.0 composer:2.6.0-products composer:2.5.1 composer:2.4.3 composer:0.1.0 composer:2.4.2 composer:2.5.0 composer:2.4.1 composer:2.4.0 composer:2.3.4 composer:2.3.3 composer:2.3.1 composer:2.3.0 composer:2.2.1 composer:2.2.0 composer:2.1.0 composer:2.1.0-beta composer:2.0.3 composer:2.0.2 composer:2.0.1 composer:2.0 composer:1.2.1 composer:1.2 composer:1.1 composer:1.0.2 composer:1.0.1 composer:1.0 composer:0.9.1 composer:0.9 composer:0.8.1 composer:0.8.1@194 composer:0.8 composer:0.8@189 composer:0.7.2 composer:0.7.1 composer:0.7 composer:0.7@51
...
compare: composer:feature/8612-inline-images-to-base64
Branches Tags
composer:feature/8955_UIBlocks_in_setup composer:issue/8543 composer:support/3.2 composer:feature/uninstallation composer:develop composer:feature/8612-inline-images-to-base64 composer:feature/8692-placeholder_attributesubitem composer:feature/7771-CMDB-flow-map composer:feature/asynchronous-cron composer:feature/7150-Backup_MariaDB_11 composer:faf/operation_on_replicas composer:feature/3961-service-menu composer:feature/9248-REST-Updating_link_empty_caselog composer:feature/new-dashboard-layout composer:feature/8933-change-password-default-length composer:feature/rest_multi_classes composer:feature/9223-Portal-AttributeExternalKey_adding composer:feature/8994-add-classes-description composer:feature/8760-audit composer:issue/9057-SuperUser-cannot-run-collectors composer:feature/phpstan composer:issue/9063-missing-transition-auto-resolve composer:class_extraction composer:feature/9100-CSVImport_test_on_hierarchicalKey composer:feature/8981-prepare composer:feature/9086-UniquenessRulesOnTypology composer:feature/property_types composer:feature/8864-list-changes-in-setup-recap composer:issue/jeffrey-rewind composer:feature/8772_form_dependencies_manager_module_usage composer:feature/8514-CMDB-datamodel-for-electricity composer:feature/4678-add-static-analysis-for-php composer:feature/6327-Enum-Date-FinalClass_in_Complementary_Name composer:feature/5221-DG_display_all_related_URs composer:detached composer:support/3.2.1 composer:designer-3.2.1 composer:feature/8533-Impact-Analysis composer:feature/640-Team-tickets_list composer:test_eric composer:feature/8781_-_Improve_twig_base_controller_render_error_report composer:feature/8807-DoCheckToWrite_removed_linkset composer:feature/8528-ignore_silo_1_n_linkedset_in_portal composer:form_dependency_1 composer:form-sdk-poc-controller composer:feature/7577-GetAttributeFlags_Attributes_HIDDEN composer:feature/8663-DoCheckToWrite_portal composer:faf/moduledependency-validation composer:issue/7071_Remove_MYSQL_DEFAULT_PORT composer:feature/6071-Prefill_Tagset_not_saved composer:feature/6111-Display_read-only_field_in_transition composer:feature/8123_improve_on_mention_data_parsing composer:feature/8699_attributedef_PSR4 composer:feature/2535-split_file composer:feature/4789-moduleparsing composer:feature/6759_factorize_config composer:feature/8598-Request_template_with_portal_scopes composer:feature/GetObject_for_portal composer:faf/quick_impact_analysis composer:8413-fix-dbobject-synchro composer:feature/6193-Excel_export_dependencies_of_CI_by_class composer:support/2.7 composer:faf/Add_filters_on_audit composer:issue/3.2-mtp-issues composer:feature/attribute_computed composer:feature/8291-column_name_not_automatically_recognized composer:feature/faf_cron_v1 composer:tag composer:feature/7326-Fix_remove_tab composer:support/3.1 composer:8231-prototype composer:issue/8129-dont_crash_if_datetime_default_value_has_bad_format composer:feature/3777-change_easily_favicon composer:issue/7662_CKEditor_Indent_Block composer:feature/7746---Caselog-edition-button-active-even-if-the-user-has-a-read-only-access-to-the-object composer:feature/7383_ShowDatatableWhenEmpty composer:feature/7810 composer:feature/7963-InlineImageSetDefaultOrgId composer:feature/7770-security-hardening composer:issue/7446-fix-ci composer:issue/7984 composer:support/7770-3.2 composer:issue/7726 composer:feature/5874 composer:issue/7746 composer:issue/7707 composer:feature/2298-switch-portal-profile composer:support/3.0 composer:support/3.2.0 composer:issue/autoload-setup-warning composer:feature/7673-oauth-webhook composer:feature/7063 composer:feature/7146-markup_in_portal_search composer:support/3.2-beta composer:feature/N°7552-Polishing-CKeditor composer:issue/7426-bis composer:feature/7423-add_context_to_users composer:support/designer-3.1.2-3 composer:faf/improve_perf_of_sharing_base composer:feature/6935-migrate-to-sf-router composer:saas/3.1 composer:issue/context-tag-on-initdatamodel composer:support/3.1.1 composer:support/3.1.0 composer:feature/poc_form_sdk_symfony_6 composer:support/designer-3.1.0-2 composer:issue/6218 composer:feature/little_optimization_in_search_screen composer:feature/6912-provisionuser-only composer:feature/6890-Update_request_template_REST composer:saas/manager-3.1 composer:support/3.0.3 composer:issue/6716_add_perf_tests composer:saas/3.1.0 composer:feature/5324-powerportaluser-repairprofiles composer:issue/6667_trigger_on_state_enter composer:feature/1386-Navigation_in_list composer:support/2.6 composer:feature/1318-multiple_choice_in_template composer:saas/3.0 composer:feature/6293-sort-popupmenuitems composer:feature/5341-log-brokencaselog composer:feature/6275-ormcaselog-extension composer:feature/6171-canexpire composer:feature/5341-fix-case-log composer:feature/5619-hide-newsroom composer:feature/5620-hide-org-filter-menu composer:documentation/latest composer:documentation/3.0 composer:feature/4157 composer:feature/faf_doc_twig_blocks composer:feature/5160_hide_readonly_fields composer:feature/faf_sqlite composer:feature/faf_unit_test_with_misc_custo composer:support/2.5 composer:feature/blob-as-extfield composer:support/2.4 composer:support/2.3 composer:feature/b1312 composer:support/2.2.0 composer:support/2.1.0 composer:support/2.1.1 composer:support/2.0.3 composer:support/2.0.1 composer:support/2.0.2 composer:support/2.0 composer:support/1.2.1 composer:support/1.2 composer:support/2.0-beta1 composer:support/1.2.0 composer:support/1.1 composer:support/1.0.2
composer:designer-prod-20251113 composer:2.7.13 composer:designer-prod-20251011 composer:3.2.2 composer:designer-prod-260525 composer:3.2.1-1 composer:3.2.1 composer:3.1.3 composer:2.7.12 composer:3.1.2 composer:2.7.11 composer:3.2.0-2 composer:3.2.0 composer:3.2.0-rc3 composer:3.2.0-rc2 composer:3.2.0-rc1 composer:3.2.0-beta1 composer:3.2.0-alpha1 composer:3.0.4 composer:2.7.10 composer:3.1.1-2 composer:3.1.1-1 composer:3.1.1 composer:3.1.0-3 composer:saas-1.0.17 composer:saas-1.0.18 composer:3.1.0-2 composer:3.1.0-designer-2 composer:2.7.9 composer:3.1.0-1 composer:3.1.0 composer:3.1.0-beta composer:ITSM_Designer_3.1-compatibility composer:saas-1.0.13 composer:3.0.3-1 composer:3.0.3-designer-php8.0-compatibility composer:3.0.3 composer:3.1.0-alpha1 composer:2.7.8 composer:saas-1.0.7 composer:saas-1.0.6 composer:3.0.2-1 composer:3.0.2 composer:3.0.2-rc1 composer:2.7.7 composer:3.0.1-designer-feature-lot2 composer:3.0.1 composer:3.0.1-designer-feature-lot1 composer:3.0.0 composer:3.0.0-rc composer:2.7.6 composer:3.0.0-beta8 composer:3.0.0-beta7 composer:3.0.0-beta6 composer:3.0.0-beta5 composer:2.7.5-2 composer:3.0.0-beta4 composer:3.0.0-beta3 composer:2.7.5-1 composer:2.7.5 composer:3.0.0-beta2 composer:2.7.3-2 composer:2.7.3-1 composer:3 composer:3.0.0-beta composer:2.7.4 composer:2.7.3 composer:1.0.8 composer:3.0.0-alpha composer:2.7.2-1 composer:2.7.2 composer:2.7.1 composer:2.7.0-2 composer:2.6.4 composer:2.7.0-1 composer:2.7.0 composer:2.7.0-rc2 composer:2.7.0-rc composer:2.7.0-beta2 composer:2.6.3 composer:2.5.4 composer:2.7.0-beta composer:2.7.0-alpha1 composer:2.6.2-2 composer:2.6.2-1 composer:2.5.3 composer:2.6.2 composer:itop-carbon composer:2.6.1 composer:2.5.2 composer:2.6.0-a composer:N941-2 composer:N941 composer:N2016 composer:N2011 composer:N1963 composer:1.0.0 composer:2.6.0 composer:2.6.0-products composer:2.5.1 composer:2.4.3 composer:0.1.0 composer:2.4.2 composer:2.5.0 composer:2.4.1 composer:2.4.0 composer:2.3.4 composer:2.3.3 composer:2.3.1 composer:2.3.0 composer:2.2.1 composer:2.2.0 composer:2.1.0 composer:2.1.0-beta composer:2.0.3 composer:2.0.2 composer:2.0.1 composer:2.0 composer:1.2.1 composer:1.2 composer:1.1 composer:1.0.2 composer:1.0.1 composer:1.0 composer:0.9.1 composer:0.9 composer:0.8.1 composer:0.8.1@194 composer:0.8 composer:0.8@189 composer:0.7.2 composer:0.7.1 composer:0.7 composer:0.7@51

4 Commits
support/3. ... feature/86

Author SHA1 Message Date
Benjamin DALSASS
18ed5d8170 N°8612 - add dictionaries entries 2026-03-05 14:52:27 +01:00
Benjamin DALSASS
c970e2ee8f N°8612 - add unitary test 2026-03-05 08:07:51 +01:00
Benjamin DALSASS
609dd78bf7 N°8612 - force authentication for inline image endpoints 2026-03-05 07:19:54 +01:00
Benjamin DALSASS
55d77a6ae0 N°8612 - base64 inline image for unauthenticated context 2026-03-05 07:18:57 +01:00
21 changed files with 95 additions and 4 deletions
Expand all files Collapse all files

4
core/attributedef.class.inc.php
View File

@@ -4344,7 +4344,9 @@ class AttributeText extends AttributeString
} else {
$sValue = self::RenderWikiHtml($sValue, true /* wiki only */);
return "<div class=\"HTML ibo-is-html-content\" $sStyle>".InlineImage::FixUrls($sValue).'</div>';
$sImageHtml = UserRights::IsLoggedIn() ? InlineImage::FixUrls($sValue) : InlineImage::ReplaceInlineImagesWithBase64Representation($sValue);
return "<div class=\"HTML ibo-is-html-content\" $sStyle>".$sImageHtml.'</div>';
}
}

40
core/inlineimage.class.inc.php
View File

@@ -296,6 +296,46 @@ class InlineImage extends DBObject
return $sHtml;
}
/**
* Replace <img> tags with a data-img-id attribute by the actual image in base64 representation
* so that the image can be displayed even if the download URL is not accessible (e.g. in unauthenticated approval templates)
*
* @param string $sHtml The HTML fragment to process
*
* @return String The modified HTML
* @since 3.2.3
*/
public static function ReplaceInlineImagesWithBase64Representation(string $sHtml): String
{
return preg_replace_callback(
'/<img\s+[^>]*data-img-id="(\d+)"[^>]*>/i',
function ($matches) {
// Extract inline image ID from the tag
$id = $matches[1];
try {
// Retrieve inline image
$oInline = MetaModel::GetObject(InlineImage::class, $id, true, true);
$oOrmDocument = $oInline->Get('contents');
// Replace src image by the base64 representation
$sInlineImageAsBase64 = base64_encode($oOrmDocument->GetData());
$sDataUri = 'data:'.$oOrmDocument->GetMimeType().';base64,'.$sInlineImageAsBase64;
$sImage = preg_replace('/src=["\'][^"\']+["\']/', 'src="'.$sDataUri.'"', $matches[0]);
// Remove sensitive information (the image ID and secret) from the tag
$sImage = preg_replace('/data-img-id="\d+"\s+data-img-secret="\w+"/', '', $sImage);
} catch (Exception $e) {
$sImage = '<img src="" alt="'.Dict::S('UI:MissingInlineImage').'">';
}
return $sImage;
},
$sHtml
);
}
/**
* Add an extra attribute data-img-id for images which are based on an actual InlineImage
* so that we can later reconstruct the full "src" URL when needed

1
dictionaries/cs.dictionary.itop.ui.php
View File

@@ -1394,6 +1394,7 @@ Dict::Add('CS CZ', 'Czech', 'Čeština', [
'UI:SelectInlineImageToUpload' => 'Vyberte obrázek',
'UI:AvailableInlineImagesLegend' => 'Dostupné obrázky',
'UI:NoInlineImage' => 'Na serveru není dostupný žádný obrázek. Nahrajte nějaký pomocí tlačítka výše.',
'UI:MissingInlineImage' => 'Chybějící obrázek',
'UI:ToggleFullScreen' => 'Přepnout zobrazení',
'UI:Button:ResetImage' => 'Obnovit původní obrázek',
'UI:Button:RemoveImage' => 'Odebrat obrázek',

1
dictionaries/da.dictionary.itop.ui.php
View File

@@ -1397,6 +1397,7 @@ Ved tilknytningen til en trigger, bliver hver handling tildelt et "rækkefølge"
'UI:SelectInlineImageToUpload' => 'Select the image to upload~~',
'UI:AvailableInlineImagesLegend' => 'Available images~~',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.~~',
'UI:MissingInlineImage' => 'Manglende billede',
'UI:ToggleFullScreen' => 'Toggle Maximize / Minimize~~',
'UI:Button:ResetImage' => 'Recover the previous image~~',
'UI:Button:RemoveImage' => 'Remove the image~~',

1
dictionaries/de.dictionary.itop.ui.php
View File

@@ -1394,6 +1394,7 @@ Wenn Aktionen mit Trigger verknüpft sind, bekommt jede Aktion eine Auftragsnumm
'UI:SelectInlineImageToUpload' => 'Wähle das Bild für den Upload aus',
'UI:AvailableInlineImagesLegend' => 'Verfügbare Bilder',
'UI:NoInlineImage' => 'Es sind keine Bilder auf dem Server verfügbar. Nutze den "Durchsuchen" Button oben, um ein Bild vom Computer hochzuladen.',
'UI:MissingInlineImage' => 'Bild fehlt',
'UI:ToggleFullScreen' => 'Maximieren / Minimieren',
'UI:Button:ResetImage' => 'Vorheriges Bild wiederherstellen',
'UI:Button:RemoveImage' => 'Bild löschen',

1
dictionaries/en.dictionary.itop.ui.php
View File

@@ -1471,6 +1471,7 @@ When associated with a trigger, each action is given an "order" number, specifyi
'UI:SelectInlineImageToUpload' => 'Select the image to upload',
'UI:AvailableInlineImagesLegend' => 'Available images',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.',
'UI:MissingInlineImage' => 'Missing image',
'UI:ToggleFullScreen' => 'Toggle Maximize / Minimize',
'UI:Button:ResetImage' => 'Recover the previous image',

1
dictionaries/en_gb.dictionary.itop.ui.php
View File

@@ -1471,6 +1471,7 @@ When associated with a trigger, each action is given an "order" number, specifyi
'UI:SelectInlineImageToUpload' => 'Select the image to upload',
'UI:AvailableInlineImagesLegend' => 'Available images',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.',
'UI:MissingInlineImage' => 'Missing image',
'UI:ToggleFullScreen' => 'Toggle Maximise / Minimise',
'UI:Button:ResetImage' => 'Recover the previous image',

1
dictionaries/es_cr.dictionary.itop.ui.php
View File

@@ -1397,6 +1397,7 @@ Cuando se asocien con un disparador, cada acción recibe un número de "orden",
'UI:SelectInlineImageToUpload' => 'Seleccione la imágen a subir',
'UI:AvailableInlineImagesLegend' => 'Imágenes disponibles',
'UI:NoInlineImage' => 'No hay imágenes disponibles en el servidor. Use el botón "Seleccionar archivo" para seleccionar una imágen de su equipo local y subirla al servidor.',
'UI:MissingInlineImage' => 'Imagen faltante',
'UI:ToggleFullScreen' => 'Cambiar Maximizar / Minimizar',
'UI:Button:ResetImage' => 'Recuperar imágen previa',
'UI:Button:RemoveImage' => 'Remover imágen',

1
dictionaries/fr.dictionary.itop.ui.php
View File

@@ -1398,6 +1398,7 @@ Lors de l\'association à un déclencheur, on attribue à chaque action un numé
'UI:SelectInlineImageToUpload' => 'Sélectionnez l\'image à ajouter',
'UI:AvailableInlineImagesLegend' => 'Images disponibles',
'UI:NoInlineImage' => 'Il n\'y a aucune image de disponible sur le serveur. Utilisez le bouton "Parcourir" (ci-dessus) pour sélectionner une image sur votre ordinateur et la télécharger sur le serveur.',
'UI:MissingInlineImage' => 'Image introuvable',
'UI:ToggleFullScreen' => 'Agrandir / Minimiser',
'UI:Button:ResetImage' => 'Récupérer l\'image initiale',
'UI:Button:RemoveImage' => 'Supprimer l\'image',

1
dictionaries/hu.dictionary.itop.ui.php
View File

@@ -1400,6 +1400,7 @@ A művelet eseményindítóhoz rendelésekor kap egy sorszámot , amely meghatá
'UI:SelectInlineImageToUpload' => 'Válasszon egy képet',
'UI:AvailableInlineImagesLegend' => 'Elérhető képek',
'UI:NoInlineImage' => 'A szerveren nincs elérhető kép. Használja a fenti "Tallózás" gombot egy kép kiválasztásához a számítógépéről, és töltse fel a szerverre.',
'UI:MissingInlineImage' => 'Hiányzó kép',
'UI:ToggleFullScreen' => 'Maximalizálás / Minimalizálás',
'UI:Button:ResetImage' => 'Az előző kép visszaállítása',
'UI:Button:RemoveImage' => 'Kép eltávolítása',

1
dictionaries/it.dictionary.itop.ui.php
View File

@@ -1399,6 +1399,7 @@ Quando è associata a un trigger, a ogni azione è assegnato un numero "ordine",
'UI:SelectInlineImageToUpload' => 'Seleziona l\'immagine da caricare',
'UI:AvailableInlineImagesLegend' => 'Immagini disponibili',
'UI:NoInlineImage' => 'Non ci sono immagini disponibili sul server. Utilizza il pulsante "Sfoglia" sopra per selezionare un\'immagine dal tuo computer e caricarla sul server.',
'UI:MissingInlineImage' => 'Immagine mancante',
'UI:ToggleFullScreen' => 'Attiva/Disattiva a schermo intero',
'UI:Button:ResetImage' => 'Ripristina l\'immagine precedente',
'UI:Button:RemoveImage' => 'Rimuovi l\'immagine',

1
dictionaries/ja.dictionary.itop.ui.php
View File

@@ -1401,6 +1401,7 @@ Dict::Add('JA JP', 'Japanese', '日本語', [
'UI:SelectInlineImageToUpload' => 'Select the image to upload~~',
'UI:AvailableInlineImagesLegend' => 'Available images~~',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.~~',
'UI:MissingInlineImage' => 'Missing image~~',
'UI:ToggleFullScreen' => 'Toggle Maximize / Minimize~~',
'UI:Button:ResetImage' => 'Recover the previous image~~',
'UI:Button:RemoveImage' => 'Remove the image~~',

1
dictionaries/nl.dictionary.itop.ui.php
View File

@@ -1400,6 +1400,7 @@ Bij die koppeling wordt aan elke actie een volgorde-nummer gegeven. Dit bepaalt
'UI:SelectInlineImageToUpload' => 'Selecteer een afbeelding om te uploaden',
'UI:AvailableInlineImagesLegend' => 'Beschikbare afbeeldingen',
'UI:NoInlineImage' => 'Er is geen afbeelding beschikbaar op de server. Gebruik de "Afbeeldingen doorbladeren..." knop hierboven om een afbeelding te kiezen op je toestel.',
'UI:MissingInlineImage' => 'Ontbrekende afbeelding',
'UI:ToggleFullScreen' => 'Minimaliseren / Maximaliseren',
'UI:Button:ResetImage' => 'Vorige afbeelding herstellen',
'UI:Button:RemoveImage' => 'Afbeelding verwijderen',

1
dictionaries/pl.dictionary.itop.ui.php
View File

@@ -1408,6 +1408,7 @@ W przypadku powiązania z wyzwalaczem, każde działanie otrzymuje numer "porzą
'UI:SelectInlineImageToUpload' => 'Wybierz obraz do przesłania',
'UI:AvailableInlineImagesLegend' => 'Dostępne obrazy',
'UI:NoInlineImage' => 'Na serwerze nie ma obrazu. Użyj przycisku "Przeglądaj" powyżej, aby wybrać obraz ze swojego komputera i przesłać go na serwer.',
'UI:MissingInlineImage' => 'Brakujący obraz',
'UI:ToggleFullScreen' => 'Przełącz Maksymalizuj / Minimalizuj',
'UI:Button:ResetImage' => 'Odzyskaj poprzedni obraz',
'UI:Button:RemoveImage' => 'Usuń obraz',

1
dictionaries/pt_br.dictionary.itop.ui.php
View File

@@ -1393,6 +1393,7 @@ Quando associada a um gatilho, cada ação recebe um número de "ordem", especif
'UI:SelectInlineImageToUpload' => 'Selecione a imagem para enviar',
'UI:AvailableInlineImagesLegend' => 'Imagens disponíveis',
'UI:NoInlineImage' => 'Não há imagem disponível no servidor. Use o botão "Escolher arquivo" acima para selecionar uma imagem do seu computador e fazer o upload para o servidor',
'UI:MissingInlineImage' => 'Imagem ausente',
'UI:ToggleFullScreen' => 'Alternancia Maximizar / Minimizar',
'UI:Button:ResetImage' => 'Recupere a imagem anterior',
'UI:Button:RemoveImage' => 'Remover a imagem',

1
dictionaries/ru.dictionary.itop.ui.php
View File

@@ -1397,6 +1397,7 @@ Dict::Add('RU RU', 'Russian', 'Русский', [
'UI:SelectInlineImageToUpload' => 'Выберите изображение для загрузки',
'UI:AvailableInlineImagesLegend' => 'Доступные изображения',
'UI:NoInlineImage' => 'На сервере нет доступных изображений. С помощью кнопки "Обзор..." выше выберите изображение на вашем компьютере, чтобы загрузить его на сервер.',
'UI:MissingInlineImage' => 'Отсутствует изображение',
'UI:ToggleFullScreen' => 'Развернуть / Свернуть',
'UI:Button:ResetImage' => 'Восстановить предыдущее изображение',
'UI:Button:RemoveImage' => 'Удалить изображение',

1
dictionaries/sk.dictionary.itop.ui.php
View File

@@ -1398,6 +1398,7 @@ Keď sú priradené spúštačom, každej akcii je dané číslo "príkazu", šp
'UI:SelectInlineImageToUpload' => 'Select the image to upload~~',
'UI:AvailableInlineImagesLegend' => 'Available images~~',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.~~',
'UI:MissingInlineImage' => 'Missing image~~',
'UI:ToggleFullScreen' => 'Toggle Maximize / Minimize~~',
'UI:Button:ResetImage' => 'Recover the previous image~~',
'UI:Button:RemoveImage' => 'Remove the image~~',

1
dictionaries/tr.dictionary.itop.ui.php
View File

@@ -1401,6 +1401,7 @@ Tetikleme gerçekleştiriğinde işlemler tanımlanan sıra numarası ile gerçe
'UI:SelectInlineImageToUpload' => 'Select the image to upload~~',
'UI:AvailableInlineImagesLegend' => 'Available images~~',
'UI:NoInlineImage' => 'There is no image available on the server. Use the "Browse" button above to select an image from your computer and upload it to the server.~~',
'UI:MissingInlineImage' => 'Missing image~~',
'UI:ToggleFullScreen' => 'Toggle Maximize / Minimize~~',
'UI:Button:ResetImage' => 'Recover the previous image~~',
'UI:Button:RemoveImage' => 'Remove the image~~',

1
dictionaries/zh_cn.dictionary.itop.ui.php
View File

@@ -1398,6 +1398,7 @@ Dict::Add('ZH CN', 'Chinese', '简体中文', [
'UI:SelectInlineImageToUpload' => '选择要上传的图片',
'UI:AvailableInlineImagesLegend' => '可用的图片',
'UI:NoInlineImage' => '服务器上没有图片. 使用上面的 "浏览" 按钮, 从您的电脑上选择并上传到服务器.',
'UI:MissingInlineImage' => '缺少图片',
'UI:ToggleFullScreen' => '切换最大化/最小化',
'UI:Button:ResetImage' => '恢复之前的图片',
'UI:Button:RemoveImage' => '移除图片',

5
pages/ajax.document.php
View File

@@ -34,6 +34,8 @@ try {
require_once(APPROOT.'/application/startup.inc.php');
require_once(APPROOT.'/application/loginwebpage.class.inc.php');
LoginWebPage::DoLoginEx();
IssueLog::Trace('----- Request: '.utils::GetRequestUri(), LogChannels::WEB_REQUEST);
$oPage = new DownloadPage("");
@@ -43,7 +45,6 @@ try {
switch ($operation) {
case 'download_document':
LoginWebPage::DoLoginEx('backoffice', false);
$id = utils::ReadParam('id', '');
$sField = utils::ReadParam('field', '');
if ($sClass == 'Attachment') {
@@ -63,8 +64,6 @@ try {
break;
case 'download_inlineimage':
// No login is required because the "secret" protects us
// Benefit: the inline image can be inserted into any HTML (templating = $this->html(public_log)$)
$id = utils::ReadParam('id', '');
$sSecret = utils::ReadParam('s', '');
$iCacheSec = 31556926; // One year ahead: an inline image cannot change

33
tests/php-unit-tests/unitary-tests/core/InlineImageTest.php
View File

@@ -9,6 +9,7 @@ namespace Combodo\iTop\Test\UnitTest\Core;
use Combodo\iTop\Test\UnitTest\ItopDataTestCase;
use InlineImage;
use ormDocument;
class InlineImageTest extends ItopDataTestCase
{
@@ -98,4 +99,36 @@ HTML;
$this->assertStringContainsString(\utils::EscapeHtml(\utils::GetAbsoluteUrlAppRoot().INLINEIMAGE_DOWNLOAD_URL.'123&s=abc'), $sResult);
$this->assertStringContainsString(\utils::EscapeHtml(\utils::GetAbsoluteUrlAppRoot().INLINEIMAGE_DOWNLOAD_URL.'456&s=def'), $sResult);
}
/**
* @covers InlineImage::ReplaceInlineImagesWithBase64Representation
*/
public function testReplaceInlineImagesWithBase64Representation()
{
// create an inline image in the database
$oInlineImage = $this->createObject(InlineImage::class, [
'expire' => (new \DateTime('+1 day'))->format('Y-m-d H:i:s'),
'item_class' => 'UserRequest',
'item_id' => 999,
'item_org_id' => 1,
'contents' => new ormDocument('0x89504E470D0A1A0A0000000D494844520000000E0000000E08060000001F482DD1000000017352474200AECE1CE90000000467414D410000B18F0BFC6105000000097048597300000EC300000EC301C76FA8640000001E49444154384F63782BA3F29F1CCC802E402C1ED588078F6AC483E9AF11008B8BA9C08A7A3F290000000049454E44AE426082', 'image/png', 'square_red.png'),
'secret' => 'a94bff3ea6a872bdbc359a1704cdddb3',
]);
$sInlineImageId = $oInlineImage->GetKey();
$sInlineImageSecret = $oInlineImage->Get('secret');
// HTML with inline image
$sHtml = <<<HTML
<img src="http://host/iTop/pages/ajax.document.php?operation=download_inlineimage&amp;id=$sInlineImageId&amp;s=$sInlineImageSecret" data-img-id="$sInlineImageId" data-img-secret="$sInlineImageSecret" />
HTML;
// expected HTML with base64 representation of the image
$sExpected = <<<HTML
<img src="data:image/png;base64,MHg4OTUwNEU0NzBEMEExQTBBMDAwMDAwMEQ0OTQ4NDQ1MjAwMDAwMDBFMDAwMDAwMEUwODA2MDAwMDAwMUY0ODJERDEwMDAwMDAwMTczNTI0NzQyMDBBRUNFMUNFOTAwMDAwMDA0Njc0MTRENDEwMDAwQjE4RjBCRkM2MTA1MDAwMDAwMDk3MDQ4NTk3MzAwMDAwRUMzMDAwMDBFQzMwMUM3NkZBODY0MDAwMDAwMUU0OTQ0NDE1NDM4NEY2Mzc4MkJBM0YyOUYxQ0NDODAyRTQwMkMxRUQ1ODgwNzhGNkFDNDgzRTlBRjExMDA4QjhCQTlDMDhBN0EzRjI5MDAwMDAwMDA0OTQ1NEU0NEFFNDI2MDgy" />
HTML;
// test the method
$sResult = InlineImage::ReplaceInlineImagesWithBase64Representation($sHtml);
$this->assertEquals($sExpected, $sResult);
}
}