Commit Graph

2337 Commits

Author SHA1 Message Date
Ralf Becker
b65b21fe9c allow images and media in mail via http: and https:, but remove object tags (already forbiden via CSP) 2020-01-29 14:40:30 +01:00
Ralf Becker
cdab5914c2 translation for "Request could not be processed ..." 2020-01-29 11:57:25 +01:00
Ralf Becker
cc8258cb3c use random_bytes(32) which throws for not enought entropy 2020-01-29 11:12:21 +01:00
Ralf Becker
d95894d530 use etemplate-exec-id as CSRF token for ajax requests 2020-01-29 11:08:44 +01:00
nathangray
2045c08e54 * Api: Fix SQL error from doubled table name in group statement
"Unknown column 'egw_tracker.egw_tracker.tr_id' in 'group statement'"
2020-01-28 14:05:44 -07:00
Ralf Becker
ec31d93af2 do NOT load categories.php?app=phpgw for login page
It gives an error as no user is logged in, which is served as text/html, which then gives an error in browser, as it conflicts with X-Content-Type-Options: nosniff
2020-01-28 18:56:54 +01:00
Ralf Becker
57ab6f667c adding CSP frame-ancestors 'self' policy to mitigate clickjacking 2020-01-28 18:19:40 +01:00
Ralf Becker
2ea9549dcf stricter CSP policy for mail body 2020-01-28 17:45:36 +01:00
Ralf Becker
d8289ef29d stricter CSP policy 2020-01-28 17:14:51 +01:00
Ralf Becker
9f574b4a38 some egw object interface changes and using it in app.ts base object 2020-01-27 13:43:13 +01:00
Ralf Becker
5b5c2a6cff full TypeScript Interface for client-side API 2020-01-26 13:58:10 +01:00
Ralf Becker
e9c4d3f07e complete push implementation for timesheet incl. ACL check 2020-01-24 13:31:56 +01:00
nathangray
76a5793a0a New push method, with base implementation of delete client side 2020-01-23 11:03:29 -07:00
nathangray
ff50df67d0 Use correct refresh methods for delete so app can handle it 2020-01-23 09:21:41 -07:00
Ralf Becker
2bae92f066 ALL and SESSION constants for push 2020-01-23 16:05:32 +01:00
Ralf Becker
6e0936bd98 first take on pushing app-changes to all clients 2020-01-23 11:26:44 +01:00
Ralf Becker
901825bcfa first try with TypeScript: timesheet app.js incl. new egw_app base-class 2020-01-23 09:14:58 +01:00
nathangray
c88bf3c4a0 Fix typo 2020-01-15 08:14:04 -07:00
Ralf Becker
8d5893d515 a couple of small fixes from the conversation to TypeScript 2020-01-15 08:52:49 +01:00
Ralf Becker
f7c653832f add an iterator for objects with a get_rows method 2020-01-13 14:41:46 +01:00
Ralf Becker
257fa50a1f fix PHP Warning: Use of undefined constant EGW_ACL_READ - assumed 'EGW_ACL_READ' 2020-01-09 14:41:07 +01:00
nathangray
3258121a15 Api: Fix some nextmatch bugs
- default columns were not properly used if there was no user preference found
- negated column preference caused problems with column order
- missing data for sorting if no column preference set yet
2020-01-07 14:37:22 -07:00
Hadi Nategh
f5ed503502 Attach relative icons with buttons used in col-selector dialog 2020-01-06 16:07:23 +01:00
Ralf Becker
9101e7736f Changelog for 19.1.20191220 2019-12-20 10:18:26 +02:00
Ralf Becker
e3aeb0487c pending changes from our translation server 2019-12-20 08:42:01 +01:00
Hadi Nategh
4619d55045 * File selector: implement Overwrite and Rename possibilities for saving an existing email message or attachment 2019-12-18 16:31:54 +01:00
Ralf Becker
7b30bb7b0d * Admin: optional session-action column in access-log and sessions
also no longer update access-log in session-class destructor, as it fails with skipping permanent logging for WebDAV and others
2019-12-14 13:09:22 +02:00
Hadi Nategh
20766607f5 Make avatars size similar to status avatars 2019-12-12 14:42:02 +01:00
Hadi Nategh
4276ebbe5f * Mobile theme: fix mobile theme sidebar not showing notifications 2019-12-10 14:18:05 +01:00
nathangray
1064759020 Fix /apps/projectmanager threw SQL error Unknown column 'hash' in 'order clause' 2019-12-09 14:11:55 -07:00
Hadi Nategh
9902308540 * Html Editor: Add a custom paragraph into block formating in order to get paragraph lines with no line-height 2019-12-05 16:04:40 +01:00
Ralf Becker
2df0095579 fix typo 2019-12-05 08:57:26 +02:00
nathangray
673327da1e Revert "Api: Nextmatch - Do not generate DOM nodes for hidden columns"
This reverts commit 0f3a1660ff.
2019-12-04 09:49:21 -07:00
Hadi Nategh
9885a6960d Add missing install icon 2019-12-04 15:05:45 +01:00
Hadi Nategh
6e43453714 Introduce Progressive Web App feature to EGroupware 2019-12-04 15:00:59 +01:00
Hadi Nategh
cf2d626bca Fix replying to some mails with broken pre tags would cause infinite loop 2019-12-03 14:34:32 +01:00
Ralf Becker
e305ba1d23 ignore logging of session dla only for max. of 15 min, so session status is displayed correct 2019-12-02 16:27:17 +02:00
Hadi Nategh
36913e0627 Fix htmlarea issue with prefs rte_toolbar values 2019-11-28 17:54:01 +01:00
nathangray
0f3a1660ff Api: Nextmatch - Do not generate DOM nodes for hidden columns 2019-11-26 11:59:37 -07:00
Hadi Nategh
f3b11295b0 Update tinymce translation files, thanks to Stefan Unverricht 2019-11-26 13:12:18 +01:00
Hadi Nategh
2e43fecd66 Commit new translations from translation server 2019-11-25 16:44:58 +01:00
Hadi Nategh
3c374f7803 Fix scrolling a sorting item breaks the sorting in colSelector dialog 2019-11-25 13:37:24 +01:00
nathangray
83e2d70222 Mail: Fix bullet & number to text conversion failed with non-ascii characters 2019-11-22 09:44:27 -07:00
Hadi Nategh
3714cbbdf2 Set a max-height to column-selector list 2019-11-20 12:37:58 +01:00
nathangray
8b503dbae3 Admin: change delete user filemanager hook to move home dir, but only search /home for other files
- Translation from Birgit
2019-11-19 10:19:04 -07:00
Hadi Nategh
091ce6dea7 Keep the excessive height of column-selector dialog within the nm 2019-11-19 18:03:16 +01:00
Hadi Nategh
6ac50f2be3 Give more hight to column-selector dialog 2019-11-19 17:32:08 +01:00
Ralf Becker
93b1c7f1ab fix namespace issues 2019-11-19 14:02:37 +02:00
Ralf Becker
19b6683c73 Changelog for 19.1.20191119 2019-11-19 11:07:40 +02:00
nathangray
a39d257eac Admin: change delete user home directory back to special case, getting actual file count takes way too long. 2019-11-18 14:02:38 -07:00