Commit Graph

13 Commits

Author SHA1 Message Date
Ross Poulton
738a88a5aa * Fix an XSS hole: No user-sourced HTML is displayed at all. Descriptions, resolutions and followup comments are treated as text using force_escape and linebreaksbr template filters. (Issue #39)
* Incoming email also handled slightly differently: If an email has both HTML and Plain-text parts, the plain text is used in the ticket description and/or followup comment fields. The HTML portion is attached as 'email_html_body.html' so it can be viewed by the user. If an HTML-only email is received, the body is entered as "View attachment for body". (Issue #39)
2009-01-19 09:40:14 +00:00
Ross Poulton
c8ce68e7b8 Fix issue #37 - file uploading was not working as it should.
File uploading now works correctly from both the staff interface and from emails.
2008-12-30 00:41:47 +00:00
Ross Poulton
a20ab36452 * Fixes issue #34, where e-mail headers in non-ascii encoding
were displayed incorrectly. Thanks to kron82 for reporting this.
2008-12-10 21:46:54 +00:00
Ross Poulton
9e1179606e Fix issue 33: Port numbers not coming through as integers with certain
database backends. Thanks, simeonf.
2008-12-10 09:29:53 +00:00
Ross Poulton
5ff9025cc8 * Fix issues #30 and #31:
* Dashboard doesn't show "You have no tickets assigned to you." incorrectly
  * get_email  is smarter about "RE:" and "FW:" to prevent double-ups.
2008-11-18 04:30:34 +00:00
Ross Poulton
d5d692db45 * Fixed issue #25 - unknown charsets on incoming email caused problems. This
fix causes multiple charsets to be used in decoding to avoid this problem. 
  Thank you to Paul Boehm for the patch.
2008-11-18 00:24:37 +00:00
Ross Poulton
8948bc1a0a * Fixed issue #27 (e-mails not deleted)
* Fixed issue #28 (add quick delete link to dashboard)
2008-11-09 05:34:51 +00:00
Ross Poulton
c97a255155 * Enlarged Chart sizes to allow more data to be displayed
* Added superuser 'System settings' page with links to admin
* Added ability to ignore e-mail addresses (using wildcards) from the e-mail parser
* Added link to ignore email address from ticket details page (for superusers only)
* Cleaned up report output by styling text & labels in the same way as tables in other views
* Cleaned up dashboard lists to show text in place of tickets if no tickets are found
* Added ability to sort in reverse order

NOTE: REQUIRES A 'syncdb' TO CREATE THE EMAIL-IGNORE TABLES. No other DB changes were made.
2008-10-24 22:52:34 +00:00
Ross Poulton
3f8fc2cd68 * Added force_insert and force_update parameters to model save() overrides (as per Django rev 8670)
* Added 'UserSettings' model to provide a user profile system independent of existing Django user profiles, for two reasons:  1) Avoids users having to update settings.py and 2) Allows jutda-helpdesk to integrate with websites who already use a User Profile
* Settings added in this revision allow a user to control e-mail alerts, and to determine whether they see the dashboard or ticket list at login.
* New 'Settings' link in page footer for signed-in users
* Logout now takes you to the Helpdesk homepage
* Fixed file attachment bug in management/commands/get_email.py which seemed to have been un-done (fixes issue # 4.

Jutda-helpdesk is now compatible with Django 1.0!
2008-09-09 08:32:01 +00:00
Ross Poulton
b5cdea2fab * Fix a few indenting issues
* Fix #11: BUG Port number in POP3 isn't used
* Fix #11: ENHANCEMENT Use SSL in POP3 and IMAP (requires database change)
2008-08-20 01:57:41 +00:00
Ross Poulton
5040d3d243 * Large change to clean up the codebase: Decrease excess whitespace at ends
of lines; Increase line-wrapping of commands to limit code to 80 columns 
  wherever possible
* Re-built 'en' locale to match some new strings
* Clean up import statements somewhat
2008-08-19 08:50:38 +00:00
Ross Poulton
b824a53292 Fixed #9 BUG ugettext no longer automatically imported in trunk. 2008-08-18 21:34:41 +00:00
Ross Poulton
cea6394b70 Big bugfix release - addresses a number of issues introduced in recent Django
updates, and other bugs in the codebase. Many thanks to David Clymer and
Chris Etcp for reporting these bugs and then providing fixes.

Tickets closed:

#3: BUG E-Mail Script Incompatible with Python 2.5
#4: BUG Failure on empty attachments
#5: ENHANCEMENT Run scripts as command extensions [Backwards Compatible]
#7: BUG Cannot view tickets when not logged in
#8: BUG Overly broad error handling

Note that #5 is backwards-incompatible, as you need to change any CRON or 
scheduler entries for the 'get_email.py', 'escalate_tickets.py' or 
'create_escalation_exclusions.py' scripts. See the README file for the new 
commands.
2008-08-18 21:29:31 +00:00