Commit Graph

1660 Commits (d3f08205fbafa8a137069e9e82370d4dea78f431)

Author SHA1 Message Date
Sami Mokaddem 8b4b47775c
chg: [alignments:acl] Reflected ACL logic from individuals to alignments 2023-09-08 09:11:52 +02:00
Sami Mokaddem 367012af36
fix: [individual:edit] Select individuals based on their id and not their user_id 2023-09-07 16:43:30 +02:00
Sami Mokaddem 5aefc37837
chg: [users:edit] Allow users to self edit 2023-09-07 16:11:47 +02:00
Sami Mokaddem 08d2e193dd
chg: [user-settings:edit] Prevent assigning a setting to another user 2023-09-07 15:14:26 +02:00
Sami Mokaddem d46143a37f
chg: [command:summary] Added data about the modified entity 2023-09-07 15:01:13 +02:00
Sami Mokaddem 01356824a2
chg: [navigation:tags] Updated UI to reflect users' permissions 2023-09-06 10:42:08 +02:00
Sami Mokaddem bde01882d9
fix: [navigation:CRUDAction-auditlogs] Make ordering by created field unambigous and hide audit button to non-admin users 2023-09-06 10:17:06 +02:00
Sami Mokaddem 7377e77204
chg: [navigation:individuals] Only show edit and deletion buttons if users are allowed to do it 2023-09-06 09:48:16 +02:00
Sami Mokaddem 3514f8bd7c
chg: [genericElements:numberOfElement] Added parameter to show or not the `show all` option 2023-09-06 09:18:40 +02:00
Sami Mokaddem e7e5c0aebd
chg: [ACL:tags] Relaxed ACL on tags for index and view pages.
FIXME: Adapt changes in the UI to hide add/edit buttons and add link to the sidebar
2023-09-05 10:56:48 +02:00
Sami Mokaddem 9e18f4f0bb
chg: [ACL:individual/add] Allow `org-admin`s to create new individuals 2023-09-05 10:49:23 +02:00
Sami Mokaddem 883f0eb44a
fix: [userSettings:add] Aded check to avoid duplicated setting for the same user 2023-09-05 10:46:25 +02:00
Sami Mokaddem a3c23f46d5
fix: [mailinglist:ACL] Fixed bug in ACL check for access 2023-09-05 10:33:08 +02:00
iglocska 8d819bd2ac
Merge branch 'develop' 2023-09-04 15:25:27 +02:00
iglocska 012e120db2
chg: [version] bump 2023-09-04 15:25:04 +02:00
iglocska 3e5ae5271e
chg: [misisng] change 2023-09-04 15:23:21 +02:00
iglocska 78152a884a
Merge branch 'main' into develop 2023-09-04 15:22:42 +02:00
Sami Mokaddem 26cbaf0129
chg: [command:summary] Consider perm meta-fields addition/deletion as uesr edit 2023-09-04 14:43:53 +02:00
Sami Mokaddem 9be8105565
chg: [config] Force usage of secure cookie for session and csrf protection 2023-09-04 10:30:51 +02:00
Sami Mokaddem 279c69c510
fix: [userSettings:edit] Correctly pre-select user to be edited 2023-09-04 09:34:44 +02:00
Sami Mokaddem 1ea7c796ac
chg: [component:CRUD] Include meta-fields in REST queries and clever pagination support for REST queries 2023-08-29 14:57:48 +02:00
Sami Mokaddem 633ae86886
chg: [command:summary] Added support of user MetaFields
Allow to show addition and deletion of user metafields such as the ones used for permissions
2023-08-29 14:53:03 +02:00
iglocska 8e616180ba
fix: [security] user settings editable by arbitrary user fixed
- as reported by Infigo on behalf of ENISA
2023-08-23 15:08:23 +02:00
iglocska d7bf8af5b1
fix: [internal] user add fix attempt #2 2023-06-28 15:01:26 +02:00
iglocska 82bf3a74c1
chg: [internal] fetch first role if no default is set 2023-06-28 14:59:31 +02:00
Andras Iklody a11f935969
Update INSTALL.md 2023-06-28 10:21:33 +02:00
Andras Iklody 7df03db087
Update INSTALL.md
some minor fixes
2023-06-28 10:18:36 +02:00
iglocska 47a8f4f57e
Merge branch 'develop' 2023-05-31 09:42:39 +02:00
iglocska 5028b4cf24
chg: [version] bump 2023-05-31 09:42:15 +02:00
iglocska 6e33d78996
Merge branch 'main' into develop 2023-05-26 16:15:58 +02:00
iglocska 52e8a5c6a6
new: [enumerations] added enumerations system
- for string entry fields, simply add lists of values to convert the text entry for values
- helps with maintaining accurate lists
- currently the fields that are valid targets are organisations.nationality, organisations.sector, organisations.type
2023-05-26 16:13:52 +02:00
iglocska 011f7f452c
new: [enumerations] schema update added 2023-05-26 16:01:01 +02:00
iglocska 41749ae5a8
fix: [users] added the country information to the index / view 2023-05-25 16:22:49 +02:00
iglocska 7a8eb6ba50
chg: [CRUD] allow for sorting on related model fields
- some hacks to resolve issues with sorting on related fields
2023-05-25 16:11:21 +02:00
Luciano Righetti 47ff4db826 fix: fix tests, move e2e tests to a separate suite 2023-04-07 14:08:27 +02:00
Luciano Righetti 9ba00dc334 fix: check for required plugins online, the number makes the test fragile as debug plugins may or not be present when running the tests 2023-04-07 11:39:37 +02:00
Luciano Righetti 4ebdbf8ba3 fix: fix most of the tests 2023-04-06 18:00:46 +02:00
Luciano Righetti 9b7c693bb9 fix: fix some deprecation notices in 8.2 2023-04-06 17:59:22 +02:00
Luciano Righetti d1cd1da67f chg: [temp] run actions in this branch 2023-04-06 09:43:40 +02:00
Luciano Righetti fe124bb658 fix: nodejs deprecation notice 2023-04-06 09:40:01 +02:00
Luciano Righetti b733ca169e fix: update target php version 2023-04-06 09:35:54 +02:00
Sami Mokaddem abd5dab605
chg: [command:importer] Make sure to use the latest known version of the template 2023-03-31 13:56:06 +02:00
Sami Mokaddem 1ea0bb9be6
chg: [command:importer] Make sure to use the latest known version of the template 2023-03-31 13:55:48 +02:00
Sami Mokaddem 3ae32606cc
Merge branch 'main' into develop 2023-03-30 16:14:53 +02:00
Sami Mokaddem 5cb65f8fc1
fix: [genericElements:formInfo] Removed unused portion of code 2023-03-30 16:14:15 +02:00
Sami Mokaddem 5f1c99cd53
fix: [security] blind SQL injection in searchAll
- As reported by Zigrin Security
2023-03-25 09:23:45 +01:00
Sami Mokaddem 7df0169ecf
fix: [meta-template-name-directory] Do not access property from null object 2023-03-23 14:44:05 +01:00
Sami Mokaddem 768bbcb996
fix: [meta-template-direcotry:index] Pass baseurl to the anonymous function 2023-03-23 14:29:22 +01:00
Sami Mokaddem 8e2718a0ae
fix: [metaTemplateDirectory:index] No static call anymore 2023-03-23 13:35:45 +01:00
Sami Mokaddem 727c21bd23
fix: [template:registration] Correct usage of modal parameters 2023-03-23 10:42:02 +01:00