Commit Graph

856 Commits

Author SHA1 Message Date
Klaus Leithoff
87137a2f71 introducing htmlpurifier as default HTML cleaning tool 2009-05-20 11:36:36 +00:00
Ralf Becker
8f797be836 Added HTMLPurifier (http://htmlpurifier.org/) Version 3.3.0
- can be used via html class like: 

        $clean_html = html::purify($html);

- using it now in eTemplate to remove malicious code from html:
  a) when displaying "formatted text"
  b) when "formatted text" get's input by the user
2009-05-19 17:32:06 +00:00
Ralf Becker
f459d35bb8 fixed problem pointed out by Necky(T.Okabuchi) <neckyegw(at)wanaya.jp> 2009-05-19 15:26:19 +00:00
Ralf Becker
75850fd66b fixed problem pointed out by Necky(T.Okabuchi) <neckyegw(at)wanaya.jp> 2009-05-19 15:24:15 +00:00
Ralf Becker
7b23a006d6 "fixed search for new phrases, to also work with newer method hooks and not only with file-hooks (preferences, admin, settings, ...)" 2009-05-19 13:35:04 +00:00
Ralf Becker
082f21d3e6 "fixed search for new phrases, to also work with newer method hooks and not only with file-hooks (preferences, admin, settings, ...)" 2009-05-19 13:34:27 +00:00
Ralf Becker
a5f7d8d4a3 "fix for bug #2085 - Rev. 27023 PM does no longer save custom fields" 2009-05-19 07:31:13 +00:00
Ralf Becker
d56e962ca3 "allow to store custom fields with 1:N relations (eg. multi-select-box) as real 1:N relation in the DB
(default is the old behavior!)"
2009-05-17 22:03:31 +00:00
Ralf Becker
654d91cc7c "allow extension preProcess method to modify / fix $form_name of a widget:
- usefull if complete name is determined by eg. options
- extension has also to fetch the content from etemplate::$request->content!"
2009-05-17 13:56:32 +00:00
Ralf Becker
220492880d allow to load widget specific edit-template from the app the widget belongs too, eg. infolog-value --> infolog.widget.infolog-value 2009-05-17 11:41:58 +00:00
Ralf Becker
687660ec48 "allow one-letter name/mailbox part in an email address" 2009-05-15 07:38:19 +00:00
Ralf Becker
f4b09d620f "allow one-letter name/mailbox part in an email address" 2009-05-15 07:35:58 +00:00
Ralf Becker
2a03d32d81 Automatic import labels into the content of an edited template via a
callback: ${app}_bo::labels(). They are set as $content['labels']
2009-05-14 17:45:00 +00:00
Ralf Becker
a94586bad4 New syntax (@@name) to access values absolute to the content array ofs
the request. Here's an example:
$content['my-label'] = $id ? 'Edit' : 'Add';
You can use it now in the template of an nextmatch row for the label:
@@my-label 
Saved the need to import these kind of data in the get_rows function
into the rows.
2009-05-14 17:42:48 +00:00
Ralf Becker
5d7b9133f1 using is_readable 2009-05-14 17:38:09 +00:00
Ralf Becker
31cb95989e "allow static get_rows callbacks, eg. 'app_ui::get_rows':
- on php5.3+ they get directly called via a variable: $callback($query,$rows,$readonlys)
- on php < 5.3 we instancate the class, an call the method non-static: $obj->$method($query,$rows,$readonlys)
--> allows application code to be prepared for static callbacks
Note:
- we can not use call_user_func, as it does NOT support passing by reverence, which is required for $rows and $readonlys parameter
- static callbacks allow to NOT instanciate the class again for the callback (without current dirty methods like placing the object in $GLOBALS[$class])"
2009-05-14 10:22:13 +00:00
Ralf Becker
fe03b91b54 "- 5th option for select-cat: parent category
- adding category desciption (if available) as option title"
2009-05-14 08:02:56 +00:00
Ralf Becker
95168d28bb "method to access comments in schema definition" 2009-05-13 09:58:21 +00:00
Ralf Becker
51284255c1 Edit and set comment field for colums in eGW's schema files 2009-05-13 07:39:58 +00:00
Ralf Becker
e5ffe827f6 "extend readonly handling of button to images (images with a link have a similar function)
setting their name in $readonlys, removes the image completly"
2009-05-08 15:51:57 +00:00
Ralf Becker
5a22640c82 - changed return value of search() to NULL instead false, if nothing
found, as this can be simply casted with (array) to work in foreach
- documentation update
2009-05-03 18:36:38 +00:00
Ralf Becker
69171b7928 "image: using csv_split for options to allow options with commas, eg. filenames containing commas" 2009-04-30 08:07:25 +00:00
Klaus Leithoff
0439b8de35 handling checkbox values in listview, handling radio values display in listview 2009-04-29 14:29:57 +00:00
Ralf Becker
0930d0a739 new ajax_submit() function with submitts the whole form via ajax to a given callback 2009-04-29 14:15:35 +00:00
Ralf Becker
ee45dc8567 "fixed one byte to long key-size" 2009-04-28 15:36:51 +00:00
Ralf Becker
10c390a654 "allow 'test' in template name for application == 'test'" 2009-04-25 06:56:42 +00:00
Ralf Becker
affce3e5bc update to work with "new" translation class: class constants and static calls 2009-04-23 08:38:20 +00:00
Ralf Becker
e6762bf009 "fixed last commit r26803 \"allow to specify app in image name\":
thumbnails or other direct url's as image in buttons were no longer displayed"
2009-04-22 05:52:07 +00:00
Ralf Becker
aca05a32e3 using new check_load_extension function 2009-04-20 12:43:44 +00:00
Ralf Becker
107d5dbbe9 "added somehow missing png type, preventing thumbnails being displayed for png images" 2009-04-19 07:20:22 +00:00
Ralf Becker
1a8b605c17 method to create user friendly label for a mime type, eg. "PDF file (application/pdf)" 2009-04-18 09:53:36 +00:00
Ralf Becker
5e88f9b563 "allow to specify app in image name" 2009-04-17 07:27:12 +00:00
Ralf Becker
3c18478f86 - more docu for file selection dialog
- added mime type filter
- added more user friendly mime type names:
  application/pdf --> PDF file (application/pdf)
2009-04-17 06:28:19 +00:00
Ralf Becker
823a3ab4c0 "allow to disable one of multiple checkboxes" 2009-04-15 21:07:33 +00:00
Ralf Becker
6f34257730 "allow to specifiy an onclick handler for vfs widget (instead of using download-url or filemanager to display dirs)" 2009-04-15 21:06:41 +00:00
Ralf Becker
2b73958407 "title for ro-image of buttons" 2009-04-15 09:16:04 +00:00
Ralf Becker
68f15f6c5a "fixed bug reported on German list: all new calendar events in trunk are private" 2009-04-15 09:11:03 +00:00
Ralf Becker
95a0339cc9 "fixing the fix ;-)
addslashes does to much --> now quoting only quotes"
2009-04-09 12:44:56 +00:00
Ralf Becker
592488908e "fixed filemanger bug: actions dont work for filenames containing commas
--> allow to enclose comma-separated checkbox and radio-button option values in quotes (\"), so they can contain commas
eg. file-names containing commas in the filemanager"
2009-04-09 11:49:16 +00:00
Ralf Becker
bd8ba08bc3 allowing stream-wrappers to specify an other mime-type for directories 2009-04-08 09:54:13 +00:00
Ralf Becker
e33b55efa3 "- only show thumbnail for image types with support (eg. not for tiff)
- resolve symlinks for links"
2009-04-07 19:37:50 +00:00
Ralf Becker
73aeaa3cad "add link title only, if id is numeric" 2009-04-04 17:41:15 +00:00
Klaus Leithoff
3e0ff9b004 prevent strpos to fail, if lable is empty 2009-04-03 14:01:24 +00:00
Ralf Becker
f1855baac2 "fixed typo" 2009-04-03 13:27:01 +00:00
Ralf Becker
b7444a9598 "fix for bug #2025: Database error in Timesheet with selected view category/date" 2009-04-01 20:01:54 +00:00
Ralf Becker
bfab75389c "replace ambiguous auto-id with (an exact match of) table_name.autoid" 2009-04-01 13:01:16 +00:00
Klaus Leithoff
1f6bba4aba handling the doubling of select/multiselect -cfs in advanced search,, adding empty entry for radio-cfs in advanced search, allowing to edit readonly cfs when in advanced search. 2009-04-01 08:22:01 +00:00
Ralf Becker
1dbec93dc9 "fixed broken extended search in addressbook:
form get's summited via ajax (without the _FILES array), which caused the process_show for 'files' to stall the the ajax request
--> get's ignored now"
2009-03-30 16:36:25 +00:00
Ralf Becker
9937f44e5a "- using exceptions instead of die with function_backtrace --> gives nicer traces (specially with ajax)
- fixed typo in get_array"
2009-03-30 16:34:04 +00:00
Ralf Becker
7caeef71fd "Do NOT trim decrypted string, as it contains binary data (it is compressed) and can be demaged by that.
This might be a problem if a mcrypt alogrithm is used, that pad decrypted strings with \"\0\". (I tried rtrim($str,\"\0\"), but that still failed)"
2009-03-27 15:35:54 +00:00