Ralf Becker
cf6bfd1027
* CalDAV/CardDAV: do NOT use Content-Length header, if zlib.output_compression is enabled, fixes problems with iOS7 eg. eTask app
...
Content-Length is size AFTER applying transfer encoding which compression is, as compression is done in PHP outside our control, we only set wrong (to big) size
2013-11-20 14:15:10 +00:00
Nathan Gray
27e45ec31c
jqplot version update to 1.0.8
2013-11-12 19:19:35 +00:00
Ralf Becker
c8e4f12606
static method can not use $this, there is no need to anyway
2013-11-11 08:28:36 +00:00
Ralf Becker
d25f9dce25
* CalDAV: fixed wrong http-status for delete in inbox and announce sync-report on inbox, so clients using it get events only once
2013-10-31 11:29:44 +00:00
Ralf Becker
852a836730
* Admin/Preferences: changepassword hook was called twice
...
fixed by calling in now from API and not on every location in application code changing a password
2013-10-25 19:29:16 +00:00
Klaus Leithoff
df20b4b360
work around ckeditor problem with default (kama) skin, by falling through to moonocolor
2013-10-24 14:43:25 +00:00
Klaus Leithoff
892f90205a
work around ckeditor problem with default (kama) skin, by falling through to moonocolor
2013-10-24 14:42:40 +00:00
Klaus Leithoff
a606f1f266
make ckeditors additional skins available for selection
2013-10-24 13:22:45 +00:00
Ralf Becker
c8f1e75165
PSR-0 autoloading eg. for PEAR or Horde classes
2013-10-22 08:25:55 +00:00
Klaus Leithoff
210a145747
support additional moonocolor skin
2013-10-21 11:33:39 +00:00
Ralf Becker
d63cf889b4
silenced permanent error_log and fixed a typo
2013-10-18 14:31:46 +00:00
Ralf Becker
123767d517
silenced permanent error_log and fixed a typo
2013-10-18 14:30:24 +00:00
Klaus Leithoff
6e0448cb62
fix broken scayt and spellcheckerbuttons in config for ckeditor
2013-10-17 15:09:56 +00:00
Ralf Becker
6e76361736
open all sidebox admin link in admin vi admin.admin_ui.index loader
2013-10-15 16:53:43 +00:00
Ralf Becker
319a503c90
fixed broken install under PostgreSQL caused by PHP Fatal error: Call to a member function fetch() on a non-object
2013-10-15 11:42:28 +00:00
Ralf Becker
e0b9d99a45
fixed broken install under PostgreSQL caused by PHP Fatal error: Call to a member function fetch() on a non-object
2013-10-15 11:41:29 +00:00
Ralf Becker
b0219a682f
reverted accidently commited phpgwapi changes
2013-10-15 09:36:23 +00:00
Ralf Becker
0ca55a1103
* SiteMgr: fixed not working anonymous user and using now a random password
2013-10-15 09:25:49 +00:00
Ralf Becker
38504680b7
setting CSP attributes needed by CKeditor now automatic when egw_ckeditor_config::get_ckeditor_config(_array) get called
2013-10-14 10:42:36 +00:00
Nathan Gray
bab4adf6d9
Update toolbar definitions to match new format
2013-10-10 11:55:29 +00:00
Klaus Leithoff
cce86e346e
silence permanent error log
2013-10-10 09:25:04 +00:00
Klaus Leithoff
77d28bad75
allow to set config via json_encoded string for purify wrapper
2013-10-10 09:23:55 +00:00
Ralf Becker
0bb8093426
fixed translations on client-side: server sends now currentapp and langRequire to client, which uses that to translate phrases, langRequire is only stored in egw object for matching app-name and window!
2013-10-07 17:00:03 +00:00
Ralf Becker
ffc506561a
* API: fixed not working session encryption, by switch back to previous MCrypt algorithm and mode
2013-10-07 07:22:50 +00:00
Ralf Becker
72c350f76d
* API: fixed not working session encryption, by switch back to previous MCrypt algorithm and mode
2013-10-07 07:22:21 +00:00
Ralf Becker
43e1bfcc12
switching on Content-Security-Policy: script-src 'self' 'unsafe-eval' for all templates, old non-et2 apps can call egw_framework::csp_script_src_attrs('unsafe-inline') to enable inline scripts in their scope, et2 does it for CK editor which does not support CSP currently and old etemplate does it for all apps using it
2013-10-05 13:33:28 +00:00
Ralf Becker
f8a0db06fc
completly remove preferences menu from sidebox and tiled preferences index in favoir of app-sensitive entries in top-menu
2013-10-03 09:23:18 +00:00
Ralf Becker
6f162f144e
add context sensitive link to ACL/grant access to top-menu, same is to be happen for cats and preferences itself and preferences in sidebox will be removed
2013-10-02 16:29:08 +00:00
Ralf Becker
7cf6500f92
docu update
2013-10-02 10:33:44 +00:00
Ralf Becker
2d88f9db75
full implementation of draft-murchison-webdav-prefer-05, incl. return=representation for 412 conflicts
2013-10-01 10:55:44 +00:00
Ralf Becker
53880e2063
to mitigate html download with CSP: no blacklisting just IE, only whitelist tested browsers and versions
2013-10-01 09:50:23 +00:00
Ralf Becker
d49c460c5f
to mitigate html download with CSP: no blacklisting just IE, only whitelist tested browsers and versions
2013-10-01 09:49:06 +00:00
Ralf Becker
bc9c486e03
some small fixes to get through a view more tests for managed attachments
2013-09-25 12:37:42 +00:00
Ralf Becker
d4c2ed3f65
stop CalDAVTester from creating one log per test-step
2013-09-25 07:46:02 +00:00
Ralf Becker
ba73deee9f
fixed typo in ATTACH property "FMTTYP(E)" and added xml error bodys for wrong managed-id parameter (more to follow)
2013-09-25 07:11:27 +00:00
Ralf Becker
86649cd1e1
full implementation of draft-murchison-webdav-prefer-05, incl. return=representation for 412 conflicts
2013-09-25 07:09:44 +00:00
Ralf Becker
0601d40bd3
fix Prefer header to use return=(minimal|representation) instead of older draft dash, enable add-member property, and add Location header to action=attachment-add
2013-09-24 12:29:17 +00:00
Klaus Leithoff
45326fa484
on async job write, make sure that possible next attribute in data is in sync with job[next]
2013-09-24 10:22:03 +00:00
Klaus Leithoff
367651a8d1
on async job write, make sure that possible next attribute in data is in sync with job[next]
2013-09-24 10:21:46 +00:00
Ralf Becker
edd4cc49ca
basic managed attachment support, tested with iCal from OS X mountain lion
2013-09-23 13:39:28 +00:00
Ralf Becker
1752f7defd
basic managed attachment support, tested with iCal from OS X mountain lion
2013-09-23 10:21:31 +00:00
Klaus Leithoff
0bc9b1357c
change convertHTMLToText behavior, regarding the replacing of CRLF or LF to single space; now removing them completely, when text to be processed is regarded to be html
2013-09-18 12:16:06 +00:00
Klaus Leithoff
5e425398fa
change convertHTMLToText behavior, regarding the replacing of CRLF or LF to single space; now removing them completely, when text to be processed is regarded to be html
2013-09-18 12:14:59 +00:00
Ralf Becker
5faeec4ad5
mitigate risk of html downloads by using Content-Security-Policy header or Content-Disposition: attachment for IE
2013-09-12 18:49:36 +00:00
Ralf Becker
b8341e48a1
mitigate risk of html downloads by using Content-Security-Policy header or Content-Disposition: attachment for IE
2013-09-12 18:49:07 +00:00
Ralf Becker
860c5f3974
removed not used assignment
2013-09-12 08:32:40 +00:00
Ralf Becker
9523ba79c2
removed not used assignment
2013-09-12 08:31:10 +00:00
Ralf Becker
3c160e5062
use secure and httponly cookies by default, secure cookies can be switched off in Admin >> site configuration, if required for sitemgr
2013-09-11 13:06:27 +00:00
Ralf Becker
855c04cb2c
use secure and httponly cookies by default, secure cookies can be switched off in Admin >> site configuration, if required for sitemgr
2013-09-11 13:06:00 +00:00
Ralf Becker
eeb679b59a
setup uses now sessions too and password-hashes in header.inc.php use most secure hashing type
2013-09-11 11:36:24 +00:00