Commit Graph

5040 Commits

Author SHA1 Message Date
Nathan Gray
d097a0bfa1 non-et2 Favorites work in progress
New states now added to list immediately, can delete states
2013-12-06 21:26:55 +00:00
Nathan Gray
79498c5ae5 non-et2 Favorites work in progress
Can now save & restore state.  Still some UI needed, not fully integrated with et2 favorites.
2013-12-06 18:24:29 +00:00
Ralf Becker
b2c563e5aa restoring current app/tab, if pressing save or cancel, to do so let server know which is current app and run under that appname (otherwise redirect will happen to currently views app 2013-12-06 00:02:16 +00:00
Nathan Gray
cfefedc8f7 non-et2 Favorites work in progress
Add current link shows popup with state details.
2013-12-05 23:22:54 +00:00
Klaus Leithoff
50279607a6 only try replacement loading of classes, if there is a replacement available; if defaultimap, load emailadmin_oldimap 2013-12-05 09:23:58 +00:00
Ralf Becker
1ee480eaa3 remove configurable image-type preference in favor to hardcoded one always prefering png over gif, also removed all .gif images which have a png counterpart 2013-12-05 02:04:59 +00:00
Ralf Becker
9cba54fb63 calendar state handling via set/getState methods in calendar app.js 2013-12-04 23:28:31 +00:00
Klaus Leithoff
dd5ac9d70f * API/CKEditor: update to CKEditor Version 4.2.3 2013-11-28 09:41:31 +00:00
Ralf Becker
dbd15105e0 * CalDAV/CardDAV: do NOT use Content-Length header, if zlib.output_compression is enabled, fixes problems with iOS7 eg. eTask app
Content-Length is size AFTER applying transfer encoding which compression is, as compression is done in PHP outside our control, we only set wrong (to big) size
2013-11-20 14:12:47 +00:00
Ralf Becker
c68ae86a18 fixed check for template specific tree-images-directory in html::tree, jdots was using it, without having one 2013-11-18 22:05:04 +00:00
Ralf Becker
5dc6ae9728 remove inline script from login page: using html5 autofocus, instead of inline focus() and no chosen 2013-11-18 16:40:51 +00:00
Ralf Becker
2a52826ad2 loading jquery.js for login screen too 2013-11-18 16:23:12 +00:00
Ralf Becker
65b3cee7ab fix ckeditor config to allow string with css unit, also added some docu 2013-11-16 16:08:35 +00:00
Ralf Becker
8e69433829 use template specific images for foldertree, use "template" handler for all calls to template/framework object, NOT instanciating a new one using eg. a parent class 2013-11-15 16:28:24 +00:00
Ralf Becker
82d3ac1d2e fixed not working close of popups after handler change 2013-11-15 13:03:09 +00:00
Ralf Becker
9643d31dd1 loading template/theme and print css last, so they can overwrite anything 2013-11-14 16:23:50 +00:00
Ralf Becker
f51f7f5731 allow to use "default" or "forced" as parameter to preferences::set_account() to load default or forced preferences 2013-11-14 15:33:12 +00:00
Ralf Becker
74dd9f0e02 allow templates packed as apps to replace login screen template by setting it as default template (without setting it in header.inc.php) 2013-11-14 13:52:50 +00:00
Ralf Becker
6ae755b1aa added pixelegg template, to also delete image cache of it 2013-11-12 09:29:44 +00:00
Ralf Becker
6195a36a1a uncommited changes (class is not used anyway) 2013-11-11 08:32:46 +00:00
Ralf Becker
af8f7b2c35 uncommited changes 2013-11-11 08:31:33 +00:00
Ralf Becker
d4d0c13876 static method can not use $this, there is no need to anyway 2013-11-11 08:28:03 +00:00
Ralf Becker
b1f5649451 fixed egw_min_php_version to 5.3 2013-11-11 08:27:10 +00:00
Ralf Becker
aeced1ddae always check for read access too 2013-11-11 08:23:14 +00:00
Ralf Becker
e4ee379138 fix wrong sql produced by column_data_implode with param $use_key="VALUES" and numerical indexes in data 2013-11-11 08:21:54 +00:00
Ralf Becker
d7a1b12d96 normalize ./ away 2013-11-11 08:19:00 +00:00
Ralf Becker
12e8a3bbcd iterator to run arbitrary callbacks on a select 2013-11-08 19:54:08 +00:00
Ralf Becker
1dd3ad5e0a fixed ckeditor wont start with NOT expanded toolbar 2013-11-04 10:13:28 +00:00
Ralf Becker
b20bd49817 * CalDAV: fixed wrong http-status for delete in inbox and announce sync-report on inbox, so clients using it get events only once 2013-10-31 11:29:22 +00:00
Ralf Becker
e94502515d * Admin/Preferences: changepassword hook was called twice
fixed by calling in now from API and not on every location in application code changing a password
2013-10-25 19:24:01 +00:00
Klaus Leithoff
892f90205a work around ckeditor problem with default (kama) skin, by falling through to moonocolor 2013-10-24 14:42:40 +00:00
Ralf Becker
c8f1e75165 PSR-0 autoloading eg. for PEAR or Horde classes 2013-10-22 08:25:55 +00:00
Klaus Leithoff
210a145747 support additional moonocolor skin 2013-10-21 11:33:39 +00:00
Ralf Becker
d63cf889b4 silenced permanent error_log and fixed a typo 2013-10-18 14:31:46 +00:00
Klaus Leithoff
6e0448cb62 fix broken scayt and spellcheckerbuttons in config for ckeditor 2013-10-17 15:09:56 +00:00
Ralf Becker
6e76361736 open all sidebox admin link in admin vi admin.admin_ui.index loader 2013-10-15 16:53:43 +00:00
Ralf Becker
319a503c90 fixed broken install under PostgreSQL caused by PHP Fatal error: Call to a member function fetch() on a non-object 2013-10-15 11:42:28 +00:00
Ralf Becker
b0219a682f reverted accidently commited phpgwapi changes 2013-10-15 09:36:23 +00:00
Ralf Becker
0ca55a1103 * SiteMgr: fixed not working anonymous user and using now a random password 2013-10-15 09:25:49 +00:00
Ralf Becker
38504680b7 setting CSP attributes needed by CKeditor now automatic when egw_ckeditor_config::get_ckeditor_config(_array) get called 2013-10-14 10:42:36 +00:00
Nathan Gray
bab4adf6d9 Update toolbar definitions to match new format 2013-10-10 11:55:29 +00:00
Klaus Leithoff
cce86e346e silence permanent error log 2013-10-10 09:25:04 +00:00
Klaus Leithoff
77d28bad75 allow to set config via json_encoded string for purify wrapper 2013-10-10 09:23:55 +00:00
Ralf Becker
0bb8093426 fixed translations on client-side: server sends now currentapp and langRequire to client, which uses that to translate phrases, langRequire is only stored in egw object for matching app-name and window! 2013-10-07 17:00:03 +00:00
Ralf Becker
ffc506561a * API: fixed not working session encryption, by switch back to previous MCrypt algorithm and mode 2013-10-07 07:22:50 +00:00
Ralf Becker
43e1bfcc12 switching on Content-Security-Policy: script-src 'self' 'unsafe-eval' for all templates, old non-et2 apps can call egw_framework::csp_script_src_attrs('unsafe-inline') to enable inline scripts in their scope, et2 does it for CK editor which does not support CSP currently and old etemplate does it for all apps using it 2013-10-05 13:33:28 +00:00
Ralf Becker
f8a0db06fc completly remove preferences menu from sidebox and tiled preferences index in favoir of app-sensitive entries in top-menu 2013-10-03 09:23:18 +00:00
Ralf Becker
6f162f144e add context sensitive link to ACL/grant access to top-menu, same is to be happen for cats and preferences itself and preferences in sidebox will be removed 2013-10-02 16:29:08 +00:00
Ralf Becker
7cf6500f92 docu update 2013-10-02 10:33:44 +00:00
Ralf Becker
53880e2063 to mitigate html download with CSP: no blacklisting just IE, only whitelist tested browsers and versions 2013-10-01 09:50:23 +00:00
Ralf Becker
bc9c486e03 some small fixes to get through a view more tests for managed attachments 2013-09-25 12:37:42 +00:00
Ralf Becker
d4c2ed3f65 stop CalDAVTester from creating one log per test-step 2013-09-25 07:46:02 +00:00
Ralf Becker
ba73deee9f fixed typo in ATTACH property "FMTTYP(E)" and added xml error bodys for wrong managed-id parameter (more to follow) 2013-09-25 07:11:27 +00:00
Ralf Becker
86649cd1e1 full implementation of draft-murchison-webdav-prefer-05, incl. return=representation for 412 conflicts 2013-09-25 07:09:44 +00:00
Ralf Becker
0601d40bd3 fix Prefer header to use return=(minimal|representation) instead of older draft dash, enable add-member property, and add Location header to action=attachment-add 2013-09-24 12:29:17 +00:00
Klaus Leithoff
45326fa484 on async job write, make sure that possible next attribute in data is in sync with job[next] 2013-09-24 10:22:03 +00:00
Ralf Becker
edd4cc49ca basic managed attachment support, tested with iCal from OS X mountain lion 2013-09-23 13:39:28 +00:00
Ralf Becker
1752f7defd basic managed attachment support, tested with iCal from OS X mountain lion 2013-09-23 10:21:31 +00:00
Klaus Leithoff
5e425398fa change convertHTMLToText behavior, regarding the replacing of CRLF or LF to single space; now removing them completely, when text to be processed is regarded to be html 2013-09-18 12:14:59 +00:00
Ralf Becker
b8341e48a1 mitigate risk of html downloads by using Content-Security-Policy header or Content-Disposition: attachment for IE 2013-09-12 18:49:07 +00:00
Ralf Becker
9523ba79c2 removed not used assignment 2013-09-12 08:31:10 +00:00
Ralf Becker
855c04cb2c use secure and httponly cookies by default, secure cookies can be switched off in Admin >> site configuration, if required for sitemgr 2013-09-11 13:06:00 +00:00
Ralf Becker
eb06a2adee setup uses now sessions too and password-hashes in header.inc.php use most secure hashing type 2013-09-11 11:35:20 +00:00
Ralf Becker
1590d02816 new egw_framework::message($msg, $msg_type="success") method and fixing nextmatch filter-change to return app-header 2013-09-05 11:53:25 +00:00
Ralf Becker
aaf0a7491d silence warning be defining the constants 2013-09-02 13:40:40 +00:00
Klaus Leithoff
d5c2a03f51 revert changes introduced with r43681, as issue is fixed in bo_tracking and handling of GLOBALS[info][user][account_id] 2013-09-02 11:34:38 +00:00
Ralf Becker
3d20422177 not creating references to ['egw_info']['user'], as bo_tracking and other async service stuff has problems to change between different user enviroments 2013-09-02 10:43:16 +00:00
Klaus Leithoff
7744905ba8 try to resolve a use-session-stored-data related problem; make sure account_id and prefs are restored after send_notification 2013-08-30 12:57:51 +00:00
Klaus Leithoff
f5e00e4bad add (and use) preg replace callback for mailto link to text transformation 2013-08-29 10:39:08 +00:00
Ralf Becker
a9a8e65ece new parameter to be able to use get_user_applications() in admin and class-constants for ACL-rights, can be used instead EGW_ACL_* defines 2013-08-28 13:27:53 +00:00
Ralf Becker
aa8a848871 optional parameter for egw_framework::window_close() to specify an alert message, which get shown/alerted, before closing the window 2013-08-26 10:24:11 +00:00
Ralf Becker
46f81649eb also fix calls to deprecated ajaxResponse class to use egw_json_response singleton, should be fixed in code for current apps 2013-08-25 15:14:19 +00:00
Ralf Becker
38798b872d Force use of singleton: $response = egw_json_response::get(); not using it causes response being wrapped in an other response 2013-08-25 12:42:55 +00:00
Ralf Becker
b2ba685edd remove inline javascript from idots and jerryr templates 2013-08-21 20:22:53 +00:00
Ralf Becker
73aa652c41 missing egw.js from last commit and egw_framework::window_focus() method 2013-08-20 13:25:36 +00:00
Ralf Becker
1c4f65120c new egw_framework methods refresh_opener and window_close to call egw_refresh on opener or close popup window in a content security save way 2013-08-20 12:06:41 +00:00
Ralf Becker
ec6d873941 let PHP Warnings look exactly like original ones, but with a backtrace 2013-08-15 10:15:13 +00:00
Ralf Becker
c806da58ce give a trace for PHP (User) Warnings 2013-08-14 08:09:51 +00:00
Klaus Leithoff
27149b237f play around with catching the smtp error of smtp class, as it is the one that has the info about the error 2013-08-07 09:20:16 +00:00
Klaus Leithoff
a7be5a026e move reset-call of smtp to phpmailer class, as it is the one that throws exceptions, and stops action 2013-08-07 08:34:00 +00:00
Ralf Becker
118657ddee using etemplate_new::ajax_proecess_content to allow to have etemplate still extend etemplate_old, making etemplate_new autoloadable 2013-08-06 18:24:30 +00:00
Klaus Leithoff
54b2596ff8 send reset command after failure while failing when adding addresses 2013-08-06 13:51:39 +00:00
Ralf Becker
48fd2113f3 some long running operations, eg. merge-print, run into situation that DB closes our separate sqlfs connection, we try now to reconnect once 2013-08-05 14:59:31 +00:00
Ralf Becker
0f37c16cd8 using correct case: To, Cc and Bcc 2013-08-05 14:56:39 +00:00
Klaus Leithoff
d22f24666b ClearAllRecipients should only clear recipients, not From, ReplyTo and such 2013-08-05 13:44:44 +00:00
Ralf Becker
243bb169a2 need to reimplement Clear methods from parent, to also clear our private addresses 2013-08-05 08:46:29 +00:00
Ralf Becker
6fe4085a11 fixed wrong condition only giving a location header if requests fails, not if it succeeds 2013-08-02 19:28:38 +00:00
Ralf Becker
207b7de248 instead of sending nothing, which gives a parse error on client-side, send a valid, empty response 2013-08-01 12:28:28 +00:00
Ralf Becker
6f39b0618d using dhtmlxtree from sources instead of codebase directory, as does et2_widget_tree, to not double load it and causing 2. load to overwrite extensions from 1. 2013-08-01 11:19:14 +00:00
Ralf Becker
05765db6ca * Admin/Filemanager: added filesystem check and repair for missing or broken required directories /, /apps and /home 2013-08-01 07:53:20 +00:00
Ralf Becker
8ce9969ece we need to double encode (html::htmlspecialchars( , TRUE)), as otherwise we get invalid json, eg. for quotes, fixes not working display in filemanager for some directories containing directories with quotes in their name 2013-08-01 06:36:18 +00:00
Nathan Gray
afa7a73f0a Fix chosen sizes using new width attribute for account multi-select 2013-07-26 15:08:17 +00:00
Ralf Becker
200a8860bf * eTemplate/all apps: (silently) limit number of links shown to 1000 newest, to not run into memory_limit or max_execution_time and assuming noone will scroll further down anyway 2013-07-26 09:38:38 +00:00
Nathan Gray
f65680a7ae Add CSS to better match egw. Fix chosen sizes using new width attribute. Not perfect, but at least never too small. 2013-07-25 20:28:32 +00:00
Ralf Becker
8e85c86f8b * Async service/Backup: updating job to next scheduled time BEFORE running it, to copy with jobs running longer then async frequency of 5min, eg. backup 2013-07-25 13:11:07 +00:00
Ralf Becker
59c683c359 removed ancient "mark untranslated strings with *" site configuration, as it is unnecessary and breaks links-stream-wrapper and WebDAV 2013-07-25 12:18:08 +00:00
Ralf Becker
71676f982a fixed not working special char detection 2013-07-25 07:21:35 +00:00
Ralf Becker
8ec5425c5a disable minify-ing of javascript, until I find time to fix it, as it stalls testers (css still get minifyed, if debug minify is off in site config) 2013-07-24 07:42:27 +00:00
Ralf Becker
6e6b2b7b0a reverted "no need for RegExp replace", as javascript only replace first occurence, if a string given 2013-07-23 14:41:53 +00:00
Ralf Becker
8242d40d1e no need for RegExp replace 2013-07-23 11:49:16 +00:00
Ralf Becker
58949008f9 disable outer scrollbar, eg. if rendering time is swichted on 2013-07-23 11:33:23 +00:00
Klaus Leithoff
c4caefc9e9 suppress warning on searching for active members 2013-07-23 10:59:56 +00:00
Ralf Becker
16191d4db4 rendering quick-add menu on clientside and content-security safe, thought not yet in idots template, also removed not used inline javascript from idots 2013-07-22 19:20:13 +00:00
Ralf Becker
4ed52a2b16 get notifications-popup ready for content-security, install as object in app.notifications and use data-poll-intervall of script tag to pass poll frequency 2013-07-22 13:29:20 +00:00
Nathan Gray
67d6775f54 Use htmlspecialchars to escape data-attributes 2013-07-19 18:03:47 +00:00
Ralf Becker
5e3c0192d3 $extra parameter for framework->header() 2013-07-19 17:07:05 +00:00
Ralf Becker
33ac096fdf enabled and enhanced dependency tests so they can be used to display full dependencies of one or more files 2013-07-19 15:24:55 +00:00
Ralf Becker
f55a668bdf include user-data and common prefs like we already do it with eg. server config 2013-07-19 15:22:00 +00:00
Ralf Becker
d16c426fb6 first step towards content-security by passing parameters to egw.js script via data-attributes of script tag instead of using inline scripts in page 2013-07-19 08:45:26 +00:00
Ralf Becker
9af953e2b1 fixed accounts::search sometimes returning too many lines 2013-07-17 13:14:08 +00:00
Ralf Becker
792f1b26cc replacing egw.LAB with egw_LAB, as egw object is shared by all iframes and popups, while LAB has to work on document 2013-07-17 12:47:21 +00:00
Ralf Becker
94926467d2 always check with "passwd_forbid_name" enabled, if setting of password failed 2013-07-16 14:57:06 +00:00
Ralf Becker
10436d5e41 fixed not being able to switch "forbid password to contain name" off again, after it has been switched on (caused by name "passwd_forbid_name") 2013-07-16 14:50:12 +00:00
Klaus Leithoff
2bdcd29582 pass acount_id to crackcheck, as it is required for crackcheck rule validation forbid_name 2013-07-16 10:42:31 +00:00
Ralf Becker
d48e8f4d84 * PostgreSQL: fix for SQL error eg. on update from 1.8.001 to 1.8.004 from 9.1 on 2013-07-16 06:47:54 +00:00
Ralf Becker
b54aef66e4 need to use own authentication method, to be able to auth user forced to change password and need to always recheck flag, if user are forced to change password, as otherwise he will be prompt again after changing it 2013-07-15 20:29:49 +00:00
Ralf Becker
526c938eec * Active Directory: allow to do a forced password change in EGroupware and handle reset of that flag for Samba4 too 2013-07-15 20:01:01 +00:00
Ralf Becker
5f74357963 * WebDAV/CalDAV/CardDAV: fixed basic authentication via redirect-rule to use $_SERVER["REDIRECT_HTTP_AUTHORIZATION"] as it is used by newer Apache versions 2013-07-15 11:06:45 +00:00
Ralf Becker
e90a6e1d42 fixed again not working new account creation under AD agains Win2008r2 2013-07-15 08:10:03 +00:00
Ralf Becker
6898ee9cdb * Admin/Preferences/Active Directory: more understandable password policy errors and using windows defaults only, if admin has not configured something else 2013-07-14 13:05:24 +00:00
Ralf Becker
6e6835ca8f disable "account_lid" input, if backend (eg. AD) does not allow changing it 2013-07-13 08:34:04 +00:00
Ralf Becker
cb523f8400 * Admin/Active Directory: fixed not working display, setting and removing of "must change password upon next login" 2013-07-13 07:50:36 +00:00
Ralf Becker
5caa242314 * Admin/Active Directory: create new users with CN=<username> as Windows does and allow to configure profilePath, homeDirectory, homeDrive and scriptPath for new users 2013-07-09 15:26:59 +00:00
Klaus Leithoff
16014f8067 * API: fix for wrong (unexpected array) type passed in check_list 2013-07-08 08:04:41 +00:00
Hadi Nategh
86dfe42104 replace no longer existing depricated egw_info->user email and fullname 2013-07-04 17:45:20 +00:00
Ralf Becker
76ab4eee25 return account_expires and account_primary_group via accounts::search 2013-07-03 16:26:18 +00:00
Ralf Becker
4850efed1e fix js error, when chosen is not loaded, eg. on admin >> manage accounts 2013-07-02 12:37:01 +00:00
Ralf Becker
bca1712229 fixed allowed memory size exceeded error, if trying to read history from a ldap or ads contact with an id starting with a letter, did an unlimited query for all history-log entries of addressbook 2013-06-29 16:44:55 +00:00
Ralf Becker
2702d01b34 * Admin/API/ADS: account creation did not set initial password 2013-06-29 09:30:22 +00:00
Ralf Becker
8325352e88 * Admin/Preferences/ADS: give explicit error, that AD requires SSL or TLS to change passwords (not just failing with unspecific error) 2013-06-29 08:51:02 +00:00
Ralf Becker
5e0c017129 remove old default of 7 for password length, as it allways checks for that default otherwise 2013-06-28 16:20:01 +00:00
Ralf Becker
287abb2b38 adding again error message and number from DB to exception thrown in case of SQL errors, also adding a new method to abstract MySQL group_contact for PostgreSQL 8.4+ 2013-06-28 10:50:42 +00:00
Ralf Becker
a0cba996a0 display mail-address for groups in AD 2013-06-26 19:57:48 +00:00
Ralf Becker
5eea435035 fixed auth_sql to allow updating passwords of in-active accounts and return true for all successfull password changes as documented (returned false if password was unchanged and hash password on success) 2013-06-26 09:49:30 +00:00
Ralf Becker
ee41d4a09d * Admin/API/LDAP: fixed not working pagination of accounts for 2. or further pages introduced by enabling caching again in last package 2013-06-26 08:12:17 +00:00
Ralf Becker
aa1426b8de * Admin: split password strength config in minimum length and number of character types, allow account backends specially AD to report password policy failures 2013-06-25 16:37:44 +00:00
Ralf Becker
aa221a4e77 add tabs for each application 2013-06-25 13:14:27 +00:00
Ralf Becker
293d395472 allow auth backends to throw exceptions to give verbose error why password changing failed, auth_ads does now password strength check (even if not configured), as this is most likely cause for not changed password 2013-06-23 10:46:26 +00:00
Ralf Becker
c44be3ee6d handle not available AD or LDAP connection with an exception, caught and just displayed within setup, so one can change ip or credentials 2013-06-23 09:58:08 +00:00
Ralf Becker
78efd4a604 * API: if re-connect to database fails for an existing session, stop execution with an exception, as otherwise eg. preferences can get lost 2013-06-20 13:30:58 +00:00
Ralf Becker
025c6a4c22 need to report expired accounts as NOT active and add ability to copy shadowExpire attribute from LDAP to AD (not done by samba-tool classicupgrade!) 2013-06-20 09:54:08 +00:00
Ralf Becker
7b9bcffb74 * Admin/ActiveDirectory: fixed only first N accounts where shown and turned accidently switched off caching in session on again 2013-06-20 07:45:08 +00:00
Ralf Becker
02e4c44624 * Addressbook/LDAP: recreation of contact (eg. because of missing objectclass) failed and lead to deleted contact or account 2013-06-18 10:45:00 +00:00
Ralf Becker
b993253dcd * API: ancent APC (3.1.3) in Debian 6/Squezze has size in MB without a unit, this caused APC not to be used because of to small cache size 2013-06-18 06:35:12 +00:00
Nathan Gray
22f2b5599b Only echo JSONResponse if it's non-empty 2013-06-12 21:06:16 +00:00
Ralf Becker
066ffc2c25 refactored account_id change script to use information from app-specific tables_current.inc.php instead of a fixed list 2013-06-12 16:57:44 +00:00
Nathan Gray
936c375a2d Fix cache not being updated when clearing a preference 2013-06-11 22:43:42 +00:00
Ralf Becker
b6319b43cf * API: allow to set a maximum caching time used instead of unlimited caching or a bigger time, eg. in header.inc.php: egw_caching::$max_expiration = 864000; // 10days 2013-06-10 09:55:22 +00:00
Ralf Becker
7e8db9b2fe urlencode password to cope with url special chars like forward slash or @ in passwords 2013-06-03 19:32:26 +00:00
Klaus Leithoff
6270bc83f9 allow some nesting of div elements 2013-06-03 13:27:19 +00:00