Ralf Becker
|
ff3ae9815d
|
never invalidate session in sharing, as we cant regenerate it (and we dont need to)
|
2017-11-07 13:02:39 +01:00 |
|
Ralf Becker
|
719b2ff834
|
also log if _check_script_tag was able to disarm XSS automatic
|
2017-11-07 12:23:11 +01:00 |
|
Ralf Becker
|
cfe9204f77
|
allow sql fragments in Api\Storage\Base::delete as in other places
|
2017-11-06 16:43:23 +01:00 |
|
Ralf Becker
|
790fa8c71d
|
allow sql fragments in Api\Storage\Base::delete as in other places
|
2017-11-06 16:24:30 +01:00 |
|
Ralf Becker
|
0d99d129dc
|
deny sharing owner rights (chmod, chgrp, set eACL) and disable eACL tab
|
2017-11-06 14:52:12 +01:00 |
|
nathangray
|
dda47ca863
|
Disable extended ACL for readonly shares
|
2017-11-03 10:28:27 -06:00 |
|
Ralf Becker
|
4ebf79d0e1
|
* Sharing/Collabora: allow to use Collabora on writable shares (EPL only)
|
2017-11-03 12:43:09 +01:00 |
|
nathangray
|
ef7956f34b
|
Make sure lang gets passed on to registration
|
2017-11-02 11:13:29 -06:00 |
|
nathangray
|
069d49afba
|
Disable copy / paste for readonly shares
|
2017-11-02 09:43:08 -06:00 |
|
Ralf Becker
|
3689b3d645
|
* Filemanager/Sharing: deny rename, move, mkdir and rmdir on readonly share
|
2017-11-02 13:34:10 +01:00 |
|
Hadi Nategh
|
3465c40b50
|
Remove unsafe-eval CSP for CKEditor
|
2017-11-02 11:02:16 +01:00 |
|
Ralf Becker
|
0813403b5b
|
* All apps: get sharing working with files attached to application entries
|
2017-10-31 10:51:59 +01:00 |
|
Ralf Becker
|
b9594ea357
|
fix typo
|
2017-10-31 10:49:12 +01:00 |
|
Ralf Becker
|
b5574da397
|
remove system call used for PHP < 5.3.1
|
2017-10-31 09:55:23 +01:00 |
|
Ralf Becker
|
a4526c98cb
|
store CalDAV/CardDAV log in user spezific log directories
|
2017-10-30 15:00:42 +01:00 |
|
nathangray
|
616c11c1fb
|
Fix wrong table name
|
2017-10-27 17:48:42 +02:00 |
|
nathangray
|
0d14155472
|
Fix minimum fs_id was not returning proper value
|
2017-10-27 17:43:40 +02:00 |
|
nathangray
|
90ce0cc7b6
|
Add a function to get the lowest fs_id for a path
|
2017-10-27 17:43:40 +02:00 |
|
Ralf Becker
|
12dbfca137
|
check cookies for XSS attempts
|
2017-10-27 16:52:34 +02:00 |
|
nathangray
|
5750904809
|
Fix setlocale to be able to find locales on Ubuntu
|
2017-10-27 10:54:39 +02:00 |
|
Ralf Becker
|
5b573abef7
|
do not allow path traversal and htmlencode displayed path
|
2017-10-26 13:16:52 +02:00 |
|
nathangray
|
fdb47ab168
|
Merge calendar events into user account if there is one over user contact
|
2017-10-26 09:16:02 +02:00 |
|
Ralf Becker
|
77b42dd9a4
|
always send X-Content-Type-Options: nosniff
It does not harm and stops unpredictable results from browsers changing our content-types
(FF 50+ now also supports nosniff)
|
2017-10-25 17:35:30 +02:00 |
|
Hadi Nategh
|
fdb3202b6b
|
Add new config to the admin site configuration in order to be able to upload a custom header logo
|
2017-10-23 13:23:52 +02:00 |
|
nathangray
|
b8f8a014fa
|
Move all tests under api/src into api/tests
|
2017-10-23 10:14:14 +02:00 |
|
nathangray
|
24de1dff3b
|
Move PHPUnit tests from test to tests subdirectory
|
2017-10-23 09:51:28 +02:00 |
|
Ralf Becker
|
c88e6e0237
|
disabling E_DEPRECATED, as contrib apps wont work under PHP 7.1 with having eg. contructors with same name as the class
|
2017-10-21 12:03:10 +02:00 |
|
nathangray
|
d3c596a443
|
- Add a parameter to pass in the class of the notification to use so we can pass in a test one
- Explicitly tell notification what type of message (plain or html) we're giving it
|
2017-10-21 11:29:05 +02:00 |
|
Hadi Nategh
|
ff4396030a
|
Fix CKEditor Browse Server button to open vfsSelect
|
2017-10-20 18:55:22 +02:00 |
|
nathangray
|
accd6187e2
|
Get date widget duration test working again
|
2017-10-20 09:56:47 +02:00 |
|
nathangray
|
9e6ecce1d0
|
Move tests into app/tests subdirectory (not app/inc/test or app/test)
|
2017-10-18 18:30:54 +02:00 |
|
nathangray
|
237d81ce36
|
Move tests into app/tests subdirectory (not app/inc/test or app/test)
|
2017-10-18 15:43:35 +02:00 |
|
nathangray
|
865fd6405d
|
Move sanity check to a pre-condition check
|
2017-10-18 11:47:28 +02:00 |
|
Ralf Becker
|
1d7fb9fe90
|
improve check $GLOBALS[egw] is correctly initilized
|
2017-10-18 09:10:39 +02:00 |
|
nathangray
|
cd49f6568d
|
Replace the lost boolean cast
|
2017-10-17 16:48:35 +02:00 |
|
nathangray
|
88a3f3b1d4
|
Run test in UTC, so dates match our expectations
|
2017-10-17 15:40:05 +02:00 |
|
nathangray
|
6fad74c710
|
Fix test had no assertions
|
2017-10-17 13:29:17 +02:00 |
|
nathangray
|
8b1a8d38f5
|
Revert db10b21fa7
|
2017-10-17 12:48:46 +02:00 |
|
nathangray
|
db10b21fa7
|
Fix child actions under 'More...' did not inherit the inheritable attributes
|
2017-10-13 11:13:17 -06:00 |
|
nathangray
|
63a3940d68
|
Addressbook - adjust calendar event participants to match when merging contacts
|
2017-10-13 09:35:36 -06:00 |
|
Hadi Nategh
|
052bef84ce
|
W.I.P vfsSelect Widget:
- Fix upload feature not working
|
2017-10-13 13:22:45 +02:00 |
|
Hadi Nategh
|
5b76210218
|
W.I.P vfsSelect Widget:
- Fix mime types not being shown
- Fix name being displayed encoded in save2vfs mail
|
2017-10-12 17:45:46 +02:00 |
|
Hadi Nategh
|
2c721c95b2
|
W.I.P. VFS Select Widget:
- Add name and dialog_title as new attributes
- Fix SaveToVfs, SaveAttachmentToVfs, SaveAllToVfs in mail
- Fix button tile
|
2017-10-12 13:19:42 +02:00 |
|
Hadi Nategh
|
448cc8975f
|
W.I.P of VFS Select widget restructure
|
2017-10-11 18:27:42 +02:00 |
|
Hadi Nategh
|
de65d91dc7
|
Rmove fields for none private cutomfields when name refers to a single custom field
|
2017-10-06 16:27:37 +02:00 |
|
nathangray
|
0183635c02
|
Add permission check for collabora before setting actions to open in editor
|
2017-10-05 09:55:06 -06:00 |
|
Ralf Becker
|
6a3a944828
|
fix uncaught exception if Collabora is not configured or reachable
|
2017-10-05 11:00:38 +02:00 |
|
nathangray
|
1868b40359
|
Set up merge to open editable documents if collabora is there
|
2017-10-04 14:15:47 -06:00 |
|
nathangray
|
285eb8494b
|
Addressbook - Merging contacts now keeps all distribution lists, and it works now
|
2017-09-27 09:00:46 -06:00 |
|
Ralf Becker
|
1ae0f29f01
|
return "400 Bad Request" if propfind contains invalid elements or more then one
|
2017-09-26 19:13:05 +02:00 |
|