Ralf Becker
|
53880e2063
|
to mitigate html download with CSP: no blacklisting just IE, only whitelist tested browsers and versions
|
2013-10-01 09:50:23 +00:00 |
|
Ralf Becker
|
bc9c486e03
|
some small fixes to get through a view more tests for managed attachments
|
2013-09-25 12:37:42 +00:00 |
|
Ralf Becker
|
d4c2ed3f65
|
stop CalDAVTester from creating one log per test-step
|
2013-09-25 07:46:02 +00:00 |
|
Ralf Becker
|
ba73deee9f
|
fixed typo in ATTACH property "FMTTYP(E)" and added xml error bodys for wrong managed-id parameter (more to follow)
|
2013-09-25 07:11:27 +00:00 |
|
Ralf Becker
|
86649cd1e1
|
full implementation of draft-murchison-webdav-prefer-05, incl. return=representation for 412 conflicts
|
2013-09-25 07:09:44 +00:00 |
|
Ralf Becker
|
0601d40bd3
|
fix Prefer header to use return=(minimal|representation) instead of older draft dash, enable add-member property, and add Location header to action=attachment-add
|
2013-09-24 12:29:17 +00:00 |
|
Klaus Leithoff
|
45326fa484
|
on async job write, make sure that possible next attribute in data is in sync with job[next]
|
2013-09-24 10:22:03 +00:00 |
|
Ralf Becker
|
edd4cc49ca
|
basic managed attachment support, tested with iCal from OS X mountain lion
|
2013-09-23 13:39:28 +00:00 |
|
Ralf Becker
|
1752f7defd
|
basic managed attachment support, tested with iCal from OS X mountain lion
|
2013-09-23 10:21:31 +00:00 |
|
Klaus Leithoff
|
5e425398fa
|
change convertHTMLToText behavior, regarding the replacing of CRLF or LF to single space; now removing them completely, when text to be processed is regarded to be html
|
2013-09-18 12:14:59 +00:00 |
|
Ralf Becker
|
b8341e48a1
|
mitigate risk of html downloads by using Content-Security-Policy header or Content-Disposition: attachment for IE
|
2013-09-12 18:49:07 +00:00 |
|
Ralf Becker
|
9523ba79c2
|
removed not used assignment
|
2013-09-12 08:31:10 +00:00 |
|
Ralf Becker
|
855c04cb2c
|
use secure and httponly cookies by default, secure cookies can be switched off in Admin >> site configuration, if required for sitemgr
|
2013-09-11 13:06:00 +00:00 |
|
Ralf Becker
|
eb06a2adee
|
setup uses now sessions too and password-hashes in header.inc.php use most secure hashing type
|
2013-09-11 11:35:20 +00:00 |
|
Ralf Becker
|
1590d02816
|
new egw_framework::message($msg, $msg_type="success") method and fixing nextmatch filter-change to return app-header
|
2013-09-05 11:53:25 +00:00 |
|
Ralf Becker
|
aaf0a7491d
|
silence warning be defining the constants
|
2013-09-02 13:40:40 +00:00 |
|
Klaus Leithoff
|
d5c2a03f51
|
revert changes introduced with r43681, as issue is fixed in bo_tracking and handling of GLOBALS[info][user][account_id]
|
2013-09-02 11:34:38 +00:00 |
|
Ralf Becker
|
3d20422177
|
not creating references to ['egw_info']['user'], as bo_tracking and other async service stuff has problems to change between different user enviroments
|
2013-09-02 10:43:16 +00:00 |
|
Klaus Leithoff
|
7744905ba8
|
try to resolve a use-session-stored-data related problem; make sure account_id and prefs are restored after send_notification
|
2013-08-30 12:57:51 +00:00 |
|
Klaus Leithoff
|
f5e00e4bad
|
add (and use) preg replace callback for mailto link to text transformation
|
2013-08-29 10:39:08 +00:00 |
|
Ralf Becker
|
a9a8e65ece
|
new parameter to be able to use get_user_applications() in admin and class-constants for ACL-rights, can be used instead EGW_ACL_* defines
|
2013-08-28 13:27:53 +00:00 |
|
Ralf Becker
|
aa8a848871
|
optional parameter for egw_framework::window_close() to specify an alert message, which get shown/alerted, before closing the window
|
2013-08-26 10:24:11 +00:00 |
|
Ralf Becker
|
46f81649eb
|
also fix calls to deprecated ajaxResponse class to use egw_json_response singleton, should be fixed in code for current apps
|
2013-08-25 15:14:19 +00:00 |
|
Ralf Becker
|
38798b872d
|
Force use of singleton: $response = egw_json_response::get(); not using it causes response being wrapped in an other response
|
2013-08-25 12:42:55 +00:00 |
|
Ralf Becker
|
b2ba685edd
|
remove inline javascript from idots and jerryr templates
|
2013-08-21 20:22:53 +00:00 |
|
Ralf Becker
|
73aa652c41
|
missing egw.js from last commit and egw_framework::window_focus() method
|
2013-08-20 13:25:36 +00:00 |
|
Ralf Becker
|
1c4f65120c
|
new egw_framework methods refresh_opener and window_close to call egw_refresh on opener or close popup window in a content security save way
|
2013-08-20 12:06:41 +00:00 |
|
Ralf Becker
|
ec6d873941
|
let PHP Warnings look exactly like original ones, but with a backtrace
|
2013-08-15 10:15:13 +00:00 |
|
Ralf Becker
|
c806da58ce
|
give a trace for PHP (User) Warnings
|
2013-08-14 08:09:51 +00:00 |
|
Klaus Leithoff
|
27149b237f
|
play around with catching the smtp error of smtp class, as it is the one that has the info about the error
|
2013-08-07 09:20:16 +00:00 |
|
Klaus Leithoff
|
a7be5a026e
|
move reset-call of smtp to phpmailer class, as it is the one that throws exceptions, and stops action
|
2013-08-07 08:34:00 +00:00 |
|
Ralf Becker
|
118657ddee
|
using etemplate_new::ajax_proecess_content to allow to have etemplate still extend etemplate_old, making etemplate_new autoloadable
|
2013-08-06 18:24:30 +00:00 |
|
Klaus Leithoff
|
54b2596ff8
|
send reset command after failure while failing when adding addresses
|
2013-08-06 13:51:39 +00:00 |
|
Ralf Becker
|
48fd2113f3
|
some long running operations, eg. merge-print, run into situation that DB closes our separate sqlfs connection, we try now to reconnect once
|
2013-08-05 14:59:31 +00:00 |
|
Ralf Becker
|
0f37c16cd8
|
using correct case: To, Cc and Bcc
|
2013-08-05 14:56:39 +00:00 |
|
Klaus Leithoff
|
d22f24666b
|
ClearAllRecipients should only clear recipients, not From, ReplyTo and such
|
2013-08-05 13:44:44 +00:00 |
|
Ralf Becker
|
243bb169a2
|
need to reimplement Clear methods from parent, to also clear our private addresses
|
2013-08-05 08:46:29 +00:00 |
|
Ralf Becker
|
6fe4085a11
|
fixed wrong condition only giving a location header if requests fails, not if it succeeds
|
2013-08-02 19:28:38 +00:00 |
|
Ralf Becker
|
207b7de248
|
instead of sending nothing, which gives a parse error on client-side, send a valid, empty response
|
2013-08-01 12:28:28 +00:00 |
|
Ralf Becker
|
6f39b0618d
|
using dhtmlxtree from sources instead of codebase directory, as does et2_widget_tree, to not double load it and causing 2. load to overwrite extensions from 1.
|
2013-08-01 11:19:14 +00:00 |
|
Ralf Becker
|
05765db6ca
|
* Admin/Filemanager: added filesystem check and repair for missing or broken required directories /, /apps and /home
|
2013-08-01 07:53:20 +00:00 |
|
Ralf Becker
|
8ce9969ece
|
we need to double encode (html::htmlspecialchars( , TRUE)), as otherwise we get invalid json, eg. for quotes, fixes not working display in filemanager for some directories containing directories with quotes in their name
|
2013-08-01 06:36:18 +00:00 |
|
Nathan Gray
|
afa7a73f0a
|
Fix chosen sizes using new width attribute for account multi-select
|
2013-07-26 15:08:17 +00:00 |
|
Ralf Becker
|
200a8860bf
|
* eTemplate/all apps: (silently) limit number of links shown to 1000 newest, to not run into memory_limit or max_execution_time and assuming noone will scroll further down anyway
|
2013-07-26 09:38:38 +00:00 |
|
Nathan Gray
|
f65680a7ae
|
Add CSS to better match egw. Fix chosen sizes using new width attribute. Not perfect, but at least never too small.
|
2013-07-25 20:28:32 +00:00 |
|
Ralf Becker
|
8e85c86f8b
|
* Async service/Backup: updating job to next scheduled time BEFORE running it, to copy with jobs running longer then async frequency of 5min, eg. backup
|
2013-07-25 13:11:07 +00:00 |
|
Ralf Becker
|
59c683c359
|
removed ancient "mark untranslated strings with *" site configuration, as it is unnecessary and breaks links-stream-wrapper and WebDAV
|
2013-07-25 12:18:08 +00:00 |
|
Ralf Becker
|
71676f982a
|
fixed not working special char detection
|
2013-07-25 07:21:35 +00:00 |
|
Ralf Becker
|
8ec5425c5a
|
disable minify-ing of javascript, until I find time to fix it, as it stalls testers (css still get minifyed, if debug minify is off in site config)
|
2013-07-24 07:42:27 +00:00 |
|
Ralf Becker
|
6e6b2b7b0a
|
reverted "no need for RegExp replace", as javascript only replace first occurence, if a string given
|
2013-07-23 14:41:53 +00:00 |
|