Changesets: LimeSurvey
|
master aa287360 2021-01-15 12:57:49 Committer: GitHub Details Diff |
Fixed issue #16910: Any plugin public function can be done without any control on rights (#1706) Dev: allowedPublicMethods to null by default, used only for compatible plugin Dev: add Permission checker on getPluginSettings and saveSettings |
Affected Issues 16910 |
|
| mod - application/controllers/admin/PluginHelper.php | Diff File | ||
| mod - application/core/plugins/AuditLog/AuditLog.php | Diff File | ||
| mod - application/core/plugins/AuthLDAP/AuthLDAP.php | Diff File | ||
| mod - application/core/plugins/Authdb/Authdb.php | Diff File | ||
| mod - application/core/plugins/Authwebserver/Authwebserver.php | Diff File | ||
| mod - application/core/plugins/ComfortUpdateChecker/ComfortUpdateChecker.php | Diff File | ||
| mod - application/core/plugins/ExportR/ExportR.php | Diff File | ||
| mod - application/core/plugins/ExportSTATAxml/ExportSTATAxml.php | Diff File | ||
| mod - application/core/plugins/PasswordRequirement/PasswordRequirement.php | Diff File | ||
| mod - application/core/plugins/UpdateCheck/UpdateCheck.php | Diff File | ||
| mod - application/core/plugins/customToken/customToken.php | Diff File | ||
| mod - application/core/plugins/expressionFixedDbVar/expressionFixedDbVar.php | Diff File | ||
| mod - application/core/plugins/expressionQuestionForAll/expressionQuestionForAll.php | Diff File | ||
| mod - application/core/plugins/expressionQuestionHelp/expressionQuestionHelp.php | Diff File | ||
| mod - application/core/plugins/mailSenderToFrom/mailSenderToFrom.php | Diff File | ||
| mod - application/core/plugins/oldUrlCompat/oldUrlCompat.php | Diff File | ||
| mod - application/core/plugins/statFunctions/statFunctions.php | Diff File | ||
| mod - application/libraries/PluginManager/PluginBase.php | Diff File | ||
|
master 7ae3274e 2021-01-15 12:38:38 Details Diff |
Dev: Psalm fixes | ||
| mod - application/models/Interfaces/PermissionInterface.php | Diff File | ||
| mod - application/models/services/PermissionManager.php | Diff File | ||
|
master 90a0d9c0 2021-01-15 12:31:01 Details Diff |
Dev: PSR-12 fixes | ||
| mod - application/models/Traits/PermissionTrait.php | Diff File | ||
|
master 09d860d5 2021-01-15 12:26:17 Details Diff |
Dev: PSR-12 fixes for service classes | ||
| mod - application/models/services/FilterImportedResources.php | Diff File | ||
| mod - application/models/services/IpAddressAnonymizer.php | Diff File | ||
| mod - application/models/services/PermissionManager.php | Diff File | ||
|
master 476256bd 2021-01-15 12:18:00 Committer: GitHub Details Diff |
Merge pull request #1709 from Shnoulle/develop_permission_Fixes_14551 Develop permission fixes 14551 |
||
| mod - application/config/internal.php | Diff File | ||
| mod - application/controllers/SurveysGroupsPermissionController.php | Diff File | ||
| mod - application/controllers/ThemeOptionsController.php | Diff File | ||
| mod - application/controllers/admin/SurveysGroupsController.php | Diff File | ||
| mod - application/controllers/admin/surveypermission.php | Diff File | ||
| add - application/extensions/UserPermissionsWidget/UserPermissionsWidget.php | Diff File | ||
| add - application/extensions/UserPermissionsWidget/assets/script.js | Diff File | ||
| add - application/extensions/UserPermissionsWidget/views/table.php | Diff File | ||
| add - application/models/Interfaces/PermissionInterface.php | Diff File | ||
| mod - application/models/LSActiveRecord.php | Diff File | ||
| mod - application/models/Permission.php | Diff File | ||
| mod - application/models/Survey.php | Diff File | ||
| mod - application/models/SurveysGroups.php | Diff File | ||
| mod - application/models/SurveysInGroup.php | Diff File | ||
| mod - application/models/TemplateConfiguration.php | Diff File | ||
| add - application/models/Traits/PermissionTrait.php | Diff File | ||
| add - application/models/services/PermissionManager.php | Diff File | ||
| mod - application/views/SurveysGroupsPermission/subviews/currentUsersList.php | Diff File | ||
| mod - application/views/SurveysGroupsPermission/subviews/setPermissionForm.php | Diff File | ||
| mod - application/views/SurveysGroupsPermission/subviews/viewCurrents.php | Diff File | ||
| mod - application/views/admin/surveysgroups/surveySettings.php | Diff File | ||
| mod - application/views/admin/surveysgroups/update.php | Diff File | ||
| mod - tests/unit/models/PermissionTest.php | Diff File | ||
|
master d8b68676 2021-01-15 09:31:31 trischi80 Details Diff |
Merge remote-tracking branch 'origin/develop' into task/zoho-L41-T206-refactor-controller-assessments | ||
| mod - .htaccess | Diff File | ||
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/helpers/update/updatedb_helper.php | Diff File | ||
| mod - application/models/Token.php | Diff File | ||
| mod - application/models/TokenDynamic.php | Diff File | ||
|
master 1a556713 2021-01-14 20:16:34 LimeSurvey Translations Bot Details Diff |
Updated translation: Catalan by valdomir, qualitatuvic Updated translation: Czech by jelen1 Updated translation: Finnish by c_schmitz Updated translation: French (France) by AlainR Updated translation: Croatian by rovinj Updated translation: Italian by lfanfoni Updated translation: Kannada by yogiks Updated translation: Polish by elissa Updated translation: Portuguese (Portugal) by samarta Updated translation: Romanian by cdorin Updated translation: Czech (Informal) by jelen1 Updated translation: Italian (Informal) by lfanfoni Updated translation: Polish (Informal) by elissa |
||
| mod - locale/_template/limesurvey.pot | Diff File | ||
| mod - locale/ca/ca.mo | Diff File | ||
| mod - locale/cs-informal/cs-informal.mo | Diff File | ||
| mod - locale/cs/cs.mo | Diff File | ||
| mod - locale/fi/fi.mo | Diff File | ||
| mod - locale/fr/fr.mo | Diff File | ||
| mod - locale/hr/hr.mo | Diff File | ||
| mod - locale/it-informal/it-informal.mo | Diff File | ||
| mod - locale/it/it.mo | Diff File | ||
| mod - locale/pl-informal/pl-informal.mo | Diff File | ||
| mod - locale/pl/pl.mo | Diff File | ||
| mod - locale/pt/pt.mo | Diff File | ||
| mod - locale/ro/ro.mo | Diff File | ||
|
3.x-LTS 91986645 2021-01-14 20:16:12 LimeSurvey Translations Bot Details Diff |
Updated translation: Bulgarian by baximvt Updated translation: Catalan by qualitatuvic Updated translation: Slovak by jelen1 |
||
| mod - locale/_template/limesurvey.pot | Diff File | ||
| mod - locale/bg/bg.mo | Diff File | ||
| mod - locale/ca/ca.mo | Diff File | ||
| mod - locale/sk/sk.mo | Diff File | ||
|
master e3c517f6 2021-01-14 19:14:17 Details Diff |
Fixed issue 16853: Inconsistent filter behaviour when create token Fixed issue [security] #16884: LimeSurvey registration emails can be abused (thanks to winfried) Dev: remove flattenText in controller Dev: add some rules, leave LSYii_Validators Dev: use filter_var / FILTER_SANITIZE_STRING for attribute # Conflicts: # application/controllers/admin/tokens.php # Conflicts: # application/controllers/admin/tokens.php |
Affected Issues 16853 |
|
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/models/Token.php | Diff File | ||
| mod - application/models/TokenDynamic.php | Diff File | ||
|
master af64ca0c 2021-01-14 19:11:21 Details Diff |
Fixed issue 16853: Inconsistent filter behaviour when create token Fixed issue [security] #16884: LimeSurvey registration emails can be abused (thanks to winfried) Dev: remove flattenText in controller Dev: add some rules, leave LSYii_Validators Dev: use filter_var / FILTER_SANITIZE_STRING for attribute # Conflicts: # application/controllers/admin/tokens.php |
Affected Issues 16853 |
|
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/models/Token.php | Diff File | ||
| mod - application/models/TokenDynamic.php | Diff File | ||
|
master bc836cdd 2021-01-14 12:55:08 Details Diff |
Small update fix | ||
| mod - application/helpers/update/updatedb_helper.php | Diff File | ||
|
master 46e3b045 2021-01-14 12:03:51 trischi80 Details Diff |
dev: changing unit test url for assessment | ||
| mod - tests/data/views/adminSurveyViews.php | Diff File | ||
|
master 025223aa 2021-01-14 11:55:28 trischi80 Details Diff |
dev: merging develop with updatedb conflicts | ||
| mod - application/config/version.php | Diff File | ||
| mod - application/helpers/update/updatedb_helper.php | Diff File | ||
|
master 58806ca0 2021-01-14 11:53:55 trischi80 Details Diff |
Merge remote-tracking branch 'origin/develop' into task/zoho-L41-T206-refactor-controller-assessments # Conflicts: # application/config/version.php # application/helpers/update/updatedb_helper.php |
||
| mod - application/config/version.php | Diff File | ||
| mod - application/controllers/admin/globalsettings.php | Diff File | ||
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/extensions/TopbarWidget/views/includes/listquestionsTopbarLeft_view.php | Diff File | ||
| mod - application/helpers/questionHelper.php | Diff File | ||
| mod - application/helpers/update/updatedb_helper.php | Diff File | ||
| mod - application/models/Permission.php | Diff File | ||
| mod - application/models/SurveysGroups.php | Diff File | ||
| mod - application/models/Token.php | Diff File | ||
| mod - application/views/admin/token/bounce.php | Diff File | ||
| mod - application/views/survey/questions/answer/multiplenumeric/config.xml | Diff File | ||
| mod - docs/release_notes.txt | Diff File | ||
|
master 3050fbbc 2021-01-14 11:00:13
|
Dev: Fixed formatting. | ||
| mod - application/controllers/AssessmentController.php | Diff File | ||
|
master e207e69b 2021-01-14 10:27:48
|
Dev: Fixed spelling issue. | ||
| mod - application/controllers/AssessmentController.php | Diff File | ||
|
master 503ab84b 2021-01-14 10:00:45 trischi80 Details Diff |
dev: adding input field for answeroptions if assessment is activated | ||
| mod - application/controllers/QuestionAdministrationController.php | Diff File | ||
|
3.x-LTS 25ddd89c 2021-01-13 17:52:39 Committer: GitHub Details Diff |
Fixed issue 16859: Survey list navigator in homle page broke with Multiviews (#1667) Dev: disable Multiviews via htaccess |
Affected Issues 16859 |
|
| mod - .htaccess | Diff File | ||
|
master 1bd848df 2021-01-13 17:52:39 Details Diff |
Fixed issue 16859: Survey list navigator in homle page broke with Multiviews (#1667) Dev: disable Multiviews via htaccess |
Affected Issues 16859 |
|
| mod - .htaccess | Diff File | ||
|
master 3198576f 2021-01-13 17:52:39 Details Diff |
Fixed issue 16859: Survey list navigator in homle page broke with Multiviews (#1667) Dev: disable Multiviews via htaccess |
Affected Issues 16859 |
|
| mod - .htaccess | Diff File | ||
|
3.x-LTS c12c9d46 2021-01-13 17:47:27 Committer: GitHub Details Diff |
Fixed issue 16853: Inconsistent filter behaviour when create token (#1666) Dev: remove flattenText in controller Dev: add some rules, leave LSYii_Validators Dev: use filter_var / FILTER_SANITIZE_STRING for attribute |
Affected Issues 16853 |
|
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/models/Token.php | Diff File | ||
| mod - application/models/TokenDynamic.php | Diff File | ||
|
master 54bff900 2021-01-13 17:33:39
Committer: GitHub Details Diff |
Fixed issue: wrong port and TLS description in bounce email/smtp settings (#1639) * Fixed issue: wrong port and TLS description in bounce email/smtp settings Dev: As per imap_open() manual {hostname/ssl} could be actually both SSL or implicit TLS connection depending on PHP configuration/version, which almost always uses standard IMAPS/POP3S ports. And {hostname/tls} means that a client requires a server to allow STARTTLS which usually runs on the same port as plain text IMAP/POP3. Make sure we won't set wrong port here if an administrator didn't specify one. Dev: The same goes for SMTP connection and PHPMailer library. If "tls" is specified the SMTPSecure option in the library initiates STARTTLS support not the implicit TLS connection, see https://github.com/PHPMailer/PHPMailer/blob/master/src/PHPMailer.php#L2024 Dev: While at it, inform administrators that not using SSL/TLS or StartTLS makes a connection very insecure. Dev: Also, make values lowercase as most of their default options in the code are lowercase. * Fixed issue: wrong port and TLS description in bounce email/smtp settings Dev: fix setting description in the comments too * Fixed issue: wrong port and TLS description in bounce email/smtp settings Dev: Convert the values already set in the database to lowercase too. * Fixed issue: wrong port and TLS description in bounce email/smtp settings Dev: one more place to convert the value already set in the database to lowercase |
||
| mod - application/config/email.php | Diff File | ||
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/views/admin/globalsettings/_bounce.php | Diff File | ||
| mod - application/views/admin/globalsettings/_email.php | Diff File | ||
| mod - application/views/admin/token/bounce.php | Diff File | ||
|
master d4518b51 2021-01-13 15:19:20
|
Fixed issue 16922: Add new question to group button not working |
Affected Issues 16922 |
|
| mod - application/models/QuestionGroup.php | Diff File | ||
| mod - application/views/questionGroupsAdministration/group_view.php | Diff File | ||
|
3.x-LTS 9dc61667 2021-01-13 11:21:15 Details Diff |
Fixed issue 15655: Cannot set SMTP/bounce password containing certain characters |
Affected Issues 15655 |
|
| mod - application/controllers/admin/tokens.php | Diff File | ||
|
master 5abde121 2021-01-13 11:20:17 Details Diff |
Merge branch 'master' into develop | ||
| mod - application/controllers/admin/globalsettings.php | Diff File | ||
| mod - application/controllers/admin/tokens.php | Diff File | ||
| mod - application/views/admin/token/bounce.php | Diff File | ||
