Franck Villaume [Sat, 10 Dec 2016 12:41:37 +0000 (13:41 +0100)]
update debian changelog -> 6.0.5
Franck Villaume [Fri, 9 Dec 2016 17:01:50 +0000 (18:01 +0100)]
prepare 6.0.5
Franck Villaume [Fri, 9 Dec 2016 16:43:33 +0000 (17:43 +0100)]
regenerate fusionforge.pot for 6.0.5
Roland Mas [Fri, 9 Dec 2016 13:13:51 +0000 (14:13 +0100)]
Fixed Git testsuite for SSL
Roland Mas [Wed, 7 Dec 2016 11:14:41 +0000 (12:14 +0100)]
Added missing authorization checks to SOAP API
Roland Mas [Wed, 7 Dec 2016 14:30:06 +0000 (15:30 +0100)]
Sanitize input to block XSS attacks
Roland Mas [Fri, 2 Dec 2016 13:08:57 +0000 (14:08 +0100)]
Added testsuite for session improvements
Roland Mas [Thu, 1 Dec 2016 15:45:51 +0000 (16:45 +0100)]
Added session expiration (1 hour by default)
Roland Mas [Tue, 29 Nov 2016 10:32:56 +0000 (11:32 +0100)]
Force secure session cookies when relevant
Roland Mas [Thu, 1 Dec 2016 14:41:05 +0000 (15:41 +0100)]
Disable directory listing on FusionForge URLs
Roland Mas [Thu, 1 Dec 2016 15:03:04 +0000 (16:03 +0100)]
Check that submits come from correct forms
By tweaking the "double-submit" prevention logic, we can ensure that all
submits actually come from real forms (and that the form was displayed
less than 10 minutes ago), and so prevent CSRF attacks.
Roland Mas [Tue, 6 Dec 2016 08:52:26 +0000 (09:52 +0100)]
Fixed call to parent class constructor
Franck Villaume [Fri, 25 Nov 2016 14:09:13 +0000 (15:09 +0100)]
fix [#838] error message on wrong characters in filename
Franck Villaume [Fri, 18 Nov 2016 11:14:36 +0000 (12:14 +0100)]
fix [#835], [#836]: forum redirection cache
Franck Villaume [Sun, 6 Nov 2016 12:17:55 +0000 (13:17 +0100)]
scmcvs plugin: fix install.sh
Roland Mas [Mon, 17 Oct 2016 13:54:13 +0000 (15:54 +0200)]
Fixed cvs-pserver wrapper
Roland Mas [Fri, 14 Oct 2016 10:44:27 +0000 (12:44 +0200)]
Fetch config where appropriate
Roland Mas [Fri, 14 Oct 2016 08:52:01 +0000 (10:52 +0200)]
-plugin-scmcvs uses xinetd, not openbsd-inetd
Roland Mas [Fri, 14 Oct 2016 08:51:43 +0000 (10:51 +0200)]
Re-enable RPM packaging of -plugin-scmcvs
Roland Mas [Fri, 14 Oct 2016 07:06:04 +0000 (09:06 +0200)]
Re-enable scmcvs handling on Red-Hat-like systems
Roland Mas [Thu, 13 Oct 2016 10:56:53 +0000 (12:56 +0200)]
Added a testsuite for scmcvs plugin
Roland Mas [Thu, 13 Oct 2016 16:43:44 +0000 (18:43 +0200)]
Fixed CVS repository browser
Roland Mas [Thu, 13 Oct 2016 11:24:49 +0000 (13:24 +0200)]
Create CVS repository path if needed
Roland Mas [Thu, 13 Oct 2016 16:43:21 +0000 (18:43 +0200)]
Fixed anonymous access for scmcvs
Roland Mas [Thu, 13 Oct 2016 10:56:22 +0000 (12:56 +0200)]
Convert scmcvs plugin from inetd to xinetd
Franck Villaume [Wed, 12 Oct 2016 18:21:06 +0000 (20:21 +0200)]
sync CHANGES
PKeidel [Wed, 12 Oct 2016 14:19:22 +0000 (16:19 +0200)]
Bugfix for [#833] SOAP Fileupload is broken
Signed-off-by: Franck Villaume <franck.villaume@trivialdev.com>
Roland Mas [Tue, 11 Oct 2016 10:15:41 +0000 (12:15 +0200)]
Force installation of dpkg-dev on Debian-likes
The install scripts run dpkg-vendor, which is part of the dpkg-dev
package, which is not installed by default.
Franck Villaume [Sat, 8 Oct 2016 09:48:20 +0000 (11:48 +0200)]
centos 7 EPEL provides moin package. No backport needed
Franck Villaume [Fri, 30 Sep 2016 07:33:09 +0000 (09:33 +0200)]
SVN -> Git
Franck Villaume [Thu, 29 Sep 2016 09:52:54 +0000 (11:52 +0200)]
sync CHANGES
Matthieu Imbert [Thu, 29 Sep 2016 09:51:56 +0000 (11:51 +0200)]
svn-pre-create-dav-activities.d-6.0
- pre-create ./dav/activities.d in svn repos
Signed-off-by: Matthieu Imbert <matthieu.imbert@inria.fr>
Signed-off-by: Franck Villaume <franck.villaume@trivialdev.com>
Franck Villaume [Tue, 16 Aug 2016 17:28:33 +0000 (19:28 +0200)]
fix [#828] fix downloadcsv missing vote values
Franck Villaume [Sun, 24 Jul 2016 17:28:27 +0000 (19:28 +0200)]
sync CHANGES
Franck Villaume [Fri, 1 Jul 2016 11:28:37 +0000 (13:28 +0200)]
scmgit: fix get activity on private project
Franck Villaume [Sun, 24 Jul 2016 14:19:15 +0000 (16:19 +0200)]
fix [#809] moinmoin plugin: httpd permissions & 404 on CentOS
Franck Villaume [Sat, 23 Jul 2016 12:58:54 +0000 (14:58 +0200)]
plugin scmsvn: fix viewvc.cgi: invalid arguments to setopt on CentOS
Franck Villaume [Sat, 23 Jul 2016 10:13:01 +0000 (12:13 +0200)]
fix PM Task CSV import [#823]
Roland Mas [Tue, 5 Jul 2016 07:02:17 +0000 (09:02 +0200)]
Removed Olivier Berger from uploaders
Franck Villaume [Fri, 24 Jun 2016 08:25:49 +0000 (10:25 +0200)]
fix [#819]: delete artifact with vote throw constraint violation
Roland Mas [Wed, 15 Jun 2016 11:53:22 +0000 (13:53 +0200)]
Reset global variables in activity() method
activity() can be called multiple times in a single request (with
upcoming globalactivity plugin), so the global vars need to be reset to
avoid leaking across projects.
Franck Villaume [Tue, 14 Jun 2016 18:46:12 +0000 (20:46 +0200)]
upgrade selenium to latest version
Franck Villaume [Tue, 14 Jun 2016 18:37:17 +0000 (20:37 +0200)]
debian fix: php5
Franck Villaume [Tue, 14 Jun 2016 15:12:41 +0000 (17:12 +0200)]
disable mediawiki. currently unmaintained plugin
mirabilos [Wed, 1 Jun 2016 08:40:47 +0000 (10:40 +0200)]
escape all characters illegal in PostgreSQL identifiers [#816]
• probably only works for ASCII, but we have group names as input
so that should be no problem
• $ is special in PostgreSQL but also disallowed by ANSI C
• we need to stay compatible to previous encodings at all cost
• NAMEDATALEN is 64, which could be a problem, we should have
used the numeric ID in the first place, but that’s now not
doable any more to not break existing installations
mirabilos [Wed, 1 Jun 2016 08:35:22 +0000 (10:35 +0200)]
make common function for transliterating DB names; part of [#816] fix
Roland Mas [Tue, 8 Dec 2015 09:48:11 +0000 (10:48 +0100)]
Also refresh NSS for groups
Roland Mas [Tue, 7 Jul 2015 16:29:13 +0000 (18:29 +0200)]
Added helper script to force refresh of NSS tables
Roland Mas [Thu, 26 Feb 2015 12:19:12 +0000 (13:19 +0100)]
Ensure constraint will be satisfied before trying to set it up
Roland Mas [Thu, 26 Feb 2015 12:04:20 +0000 (13:04 +0100)]
Set "deleted" artifacts to "closed" in order to be able to continue upgrade
Roland Mas [Thu, 26 Feb 2015 10:31:41 +0000 (11:31 +0100)]
Made ADD CONSTRAINT more resilient (by adding DROP CONSTRAINT IF EXISTS beforehand)
Roland Mas [Wed, 18 May 2016 10:43:00 +0000 (12:43 +0200)]
[#814] Stop using MD5 password in authldap plugin
Franck Villaume [Wed, 4 May 2016 11:40:59 +0000 (13:40 +0200)]
fix [#813] SVN activity crashes in case of private repository
Roland Mas [Mon, 2 May 2016 08:57:24 +0000 (10:57 +0200)]
Fixed Lintian warning
Roland Mas [Fri, 22 Apr 2016 13:46:05 +0000 (15:46 +0200)]
Fixed bashisms in post-install scripts
Roland Mas [Fri, 22 Apr 2016 13:01:24 +0000 (15:01 +0200)]
Not ready for a -2 upload yet
Roland Mas [Fri, 22 Apr 2016 12:51:17 +0000 (14:51 +0200)]
More packaging fixes for php7.0 transition
Roland Mas [Fri, 22 Apr 2016 11:32:23 +0000 (13:32 +0200)]
Release 6.0.4
Roland Mas [Fri, 22 Apr 2016 11:32:13 +0000 (13:32 +0200)]
Update CHANGES for 6.0.4
Roland Mas [Fri, 22 Apr 2016 11:19:45 +0000 (13:19 +0200)]
Update translation file
Roland Mas [Tue, 19 Apr 2016 09:20:34 +0000 (11:20 +0200)]
Fixed references to constructor in derived classes
Roland Mas [Tue, 19 Apr 2016 08:29:17 +0000 (10:29 +0200)]
Keep compatibility with Debian 8
Roland Mas [Tue, 19 Apr 2016 08:22:05 +0000 (10:22 +0200)]
Rename Error to FFError in more places
Roland Mas [Tue, 19 Apr 2016 08:07:50 +0000 (10:07 +0200)]
Also rename Error to FFError in testsuite too
Roland Mas [Tue, 19 Apr 2016 08:06:13 +0000 (10:06 +0200)]
Update Debian packaging for PHP 7.0 transition
Roland Mas [Tue, 19 Apr 2016 07:49:58 +0000 (09:49 +0200)]
Rename Error class to FFError for PHP7
Roland Mas [Tue, 19 Apr 2016 07:31:22 +0000 (09:31 +0200)]
[#812] Missing global variable in report function
Roland Mas [Fri, 8 Apr 2016 15:32:24 +0000 (17:32 +0200)]
Better detection of inactive users
Roland Mas [Thu, 7 Apr 2016 13:37:57 +0000 (15:37 +0200)]
Use different capitalization for ProjectB
Using a capitalization consistent with that of ProjectA should help
avoid weird testsuite failures (that I suspect come from locale
shenanigans in sorting)
Roland Mas [Thu, 24 Mar 2016 16:26:18 +0000 (17:26 +0100)]
Added tests for pagination in search results
Roland Mas [Thu, 24 Mar 2016 15:35:28 +0000 (16:35 +0100)]
Fixed /etc/hosts to also include FQDN
Franck Villaume [Tue, 22 Mar 2016 09:41:14 +0000 (10:41 +0100)]
fix [#811] plugin scmsvn: better error handling when no commit exist
Franck Villaume [Tue, 15 Mar 2016 20:41:58 +0000 (21:41 +0100)]
fix [#810] docman folder tree: support Chrome browser, open/close folders
Roland Mas [Thu, 10 Mar 2016 14:34:01 +0000 (15:34 +0100)]
Added script to rebuild full-text indices
Roland Mas [Thu, 10 Mar 2016 13:54:28 +0000 (14:54 +0100)]
Make full-text search configuration configurable
This allows setting up, e.g. a French instance of FusionForge, where
search uses French dictionaries and rules for normalizing lexemes.
Roland Mas [Fri, 11 Mar 2016 09:20:52 +0000 (10:20 +0100)]
Use configured path for SCM repos
Roland Mas [Thu, 10 Mar 2016 10:39:06 +0000 (11:39 +0100)]
Removed obsolete code
Franck Villaume [Sun, 21 Feb 2016 18:43:44 +0000 (19:43 +0100)]
fix [#808]: invalid UseNewInfoFmtStrings keyword with CVS 1.11
Franck Villaume [Sun, 21 Feb 2016 11:58:45 +0000 (12:58 +0100)]
fix [#656] remove html in tooltip.
Franck Villaume [Sun, 21 Feb 2016 11:32:15 +0000 (12:32 +0100)]
remove useless var
Franck Villaume [Fri, 19 Feb 2016 18:39:41 +0000 (19:39 +0100)]
code style & use getIntFromRequest to handle number of shown tasks
Franck Villaume [Sun, 14 Feb 2016 18:40:31 +0000 (19:40 +0100)]
sync CHANGES
Franck Villaume [Sun, 14 Feb 2016 18:39:42 +0000 (19:39 +0100)]
rss tasks: move to db_result + db_construct_qpa
Franck Villaume [Sun, 14 Feb 2016 17:31:38 +0000 (18:31 +0100)]
fix [#805] typo SFDLVPR vs. SFDVLPR
Franck Villaume [Wed, 3 Feb 2016 19:02:24 +0000 (20:02 +0100)]
rss: task, cleaner code. start to use db_query functions
Franck Villaume [Sun, 31 Jan 2016 16:57:17 +0000 (17:57 +0100)]
rss new releases: use util_make_url, use frs module directly
Franck Villaume [Sun, 31 Jan 2016 10:01:21 +0000 (11:01 +0100)]
clean up, empty line
Franck Villaume [Sun, 31 Jan 2016 09:56:52 +0000 (10:56 +0100)]
search engine plugin: add missing licence, use util_make_url when needed, remove broken image
Franck Villaume [Sat, 30 Jan 2016 18:17:59 +0000 (19:17 +0100)]
rss project: remove double header, add missing rss tasks & tracker
Franck Villaume [Sat, 30 Jan 2016 17:16:04 +0000 (18:16 +0100)]
rss docman: remove hardcoded http, use util_make_url & drop useless commented code
Franck Villaume [Sat, 30 Jan 2016 16:32:12 +0000 (17:32 +0100)]
rss: use rss2.0 for projects, remove duplicate rss 0.91 news, fix rss activity when group_id is 0
Franck Villaume [Sat, 30 Jan 2016 16:28:42 +0000 (17:28 +0100)]
rss: fix label, use proper SQL query to filter groups
Franck Villaume [Sat, 30 Jan 2016 13:57:17 +0000 (14:57 +0100)]
rss activity: add missing categories, fix url
Franck Villaume [Thu, 28 Jan 2016 21:59:11 +0000 (22:59 +0100)]
rss utils, add missing licence, fix link, fix deprecated php function
Franck Villaume [Thu, 28 Jan 2016 21:39:14 +0000 (22:39 +0100)]
add missing licence
Franck Villaume [Sun, 24 Jan 2016 19:33:22 +0000 (20:33 +0100)]
fix [#802] wrong browsing history in scmgit
Franck Villaume [Fri, 22 Jan 2016 18:57:55 +0000 (19:57 +0100)]
account management system: fix UNIX sysCreateUser, no unix_gid anymore
Franck Villaume [Sun, 17 Jan 2016 09:36:33 +0000 (10:36 +0100)]
Merge branch 'Branch_5_3' into 6.0
Franck Villaume [Sun, 17 Jan 2016 09:36:09 +0000 (10:36 +0100)]
fix syntax test. Empty line
Matthieu Imbert [Thu, 14 Jan 2016 16:15:00 +0000 (17:15 +0100)]
add missing systasks for vhost creation/update in site_admin
Signed-off-by: Franck Villaume <franck.villaume@trivialdev.com>