1
0
mirror of https://github.com/e107inc/e107.git synced 2025-01-18 05:09:05 +01:00

3305 Commits

Author SHA1 Message Date
Cameron
94bf1efda2 Issue #4783 Added new field for meta-news-title. New prefs added for SEO Title and Description character limits. 2022-06-06 17:28:23 -07:00
Cameron
0ffd69a946 Open new-author link in new window. 2022-06-02 13:47:33 -07:00
Cameron
8ec6e3a0dd Addition linkwords test. 2022-05-29 11:18:24 -07:00
Cameron
903f51561f Fixes #4766 User-audit login event data. 2022-05-10 10:21:05 -07:00
Cameron
cf20dfc36b Fixes #4759 - javascript missing in admin notify. 2022-04-20 09:54:48 -07:00
Cameron
d06a4c27b9 Modified Update routine to say v2.3.3. 2022-04-18 15:23:05 -07:00
Cameron
6f3b855fc3 Changed version to 2.3.3 (git) 2022-04-07 15:43:08 -07:00
Cameron
a6e1c0b897 Updated version for release. 2022-04-07 14:56:12 -07:00
Cameron
af0a6a5924 Issue #4748, Issue #4514 2022-04-06 10:15:11 -07:00
Cameron
196f952db8 Closes #4514 Theme developers can now set the default style, just as they would with the default layout. 2022-04-06 08:37:13 -07:00
Cameron
22b9bd1721 Updated e107.org urls. 2022-04-04 14:46:42 -07:00
Cameron
55980a29a8 Generated PHPDoc for all classes in e107_handlers where one was missing. toNumber() updated to always return int or float. 2022-04-04 10:54:24 -07:00
Cameron
813f2bf38f Fix for mod-security being triggered by Media Manager wildcard filter 2022-04-02 13:03:01 -07:00
Cameron
e801b02dee Closes #4744 - Media-Manager default set to Grid. New CSS grid added. Extra tests added for toGlyph(). Added wildcard mime-type filters in Media-Manager. 2022-04-02 09:34:06 -07:00
Cameron
025ff07aab Fixes #4737 Removal of type="text/javascript" and type="text/css" 2022-03-31 08:24:34 -07:00
Cameron
057cc8e35b Closes #4702 - Added news_modified field. 2022-03-14 14:03:34 -07:00
Cameron
d2f311e511 Fixes #4639 - Added batchExport to Admin > Navigation 2022-03-10 13:13:48 -08:00
Cameron
17b860c30b Fixes #4664 - sorting by signature returned no results. 2022-03-10 11:31:46 -08:00
Cameron
fd42d2325f Issue #4657 - Improved handling to prevent multiple sessions running on the same user account. 2022-01-13 11:18:31 -08:00
Cameron
a617918256 Avoid PHP warnings. 2022-01-10 15:23:27 -08:00
Cameron
7de11ed496 Added tokens to some links. 2022-01-01 13:05:17 -08:00
Cameron
90108eab3c Checking of remote file-types during import and other cleanup. 2021-12-17 11:31:37 -08:00
Cameron
0d8f3e9086 PHPDoc fixes and code optimization. 2021-12-03 14:58:33 -08:00
Cameron
f8d5157121 Updated ver.php to v2.3.2 (git)
Removed closing PHP tag from generated ver.php file during build.
2021-12-02 14:51:18 -08:00
Cameron
cf7bfb39d5 Version set to v2.3.1 2021-12-02 14:23:33 -08:00
Cameron
c064dcb4f0 Fixes #4621 - "Members" missing from pref dropdown. 2021-12-02 08:56:11 -08:00
Cameron
577bcb89e1 Fix for long text in Admin control panel. Check for missing intl extension when non-English languages in use and display alert on PHPInfo page when missing. 2021-12-01 11:59:49 -08:00
Cameron
0171ab4e84 Library path fix. 2021-11-26 12:43:23 -08:00
Cameron
2c9afc83ee More PHP 8.1 fixes. 2021-11-26 12:36:25 -08:00
Cameron
0830d730f6 Issue #4576 Added pattern validation to extended field name input to prevent possible SQL errors. 2021-11-26 09:46:18 -08:00
Cameron
9d6a9611e2 PHP 8.1 fixes. 2021-11-25 10:18:53 -08:00
Cameron
4aa66c1732 strftime() added to php_compatibility_handler.php and all references updated. README updated. dateAlternativeTest updated to pass on Windows. (TBD) 2021-11-25 08:51:32 -08:00
Cameron
1f5ec4038c Updated dev info 2021-11-23 13:45:24 -08:00
Cameron
35808e5eb9 Issue #4609 - Was still failing in earlier PHP versions. More tests added. 'empty' attribute added to news_render_type 2021-11-04 13:58:05 -07:00
Cameron
73dfbf0d74 Issue #4299 - PHP8 fatal error fixes 2021-10-17 08:43:07 -07:00
Cameron
8d968d2ee3 e107.org URL updates. 2021-10-16 13:18:45 -07:00
Cameron
567b5022f2 Fix for customfields Youtube video preview not displaying after selection. 2021-09-29 10:44:21 -07:00
Cameron
5ecc0beca6 Issue #6 LANS added. Clear system cache before checking for updates. Extra checks to e_parse to avoid possible errors. 2021-09-28 08:13:27 -07:00
Cameron
66d8081580 Added new field to navigation links table: link_rel 2021-09-27 10:22:14 -07:00
Cameron
171cac87b1 Admin-UI type=datestamp and batch=true was producing unexpected results in the batch filter. Now provides an option for setting the current date/time. 2021-09-23 12:37:30 -07:00
Cameron
45bb6c2f35 Custom meta-image option added to Pages. 2021-09-23 12:01:26 -07:00
Cameron
4747ad3c6e
Merge pull request #4547 from Deltik/fix/4546
Deprecate `e_parse::toJS()`
2021-09-15 12:18:41 -07:00
Cameron
2682aeaa27 Token checks added. 2021-09-14 13:28:03 -07:00
Cameron
3e52f29087
Merge pull request #4554 from Deltik/php-8.1
PHP 8.1 compatibility
2021-09-10 14:38:31 -07:00
Cameron
3844bec9cc Fix for missing LAN 2021-09-10 09:18:04 -07:00
Cameron
daf0008705 Added 'nolist' attribute to e_user.php settings() method for hiding fields within admin/users.php listing. 2021-09-06 12:13:18 -07:00
Nick Liu
20882920a0
Fix all PHP 8.1 test failures
* `strftime()` has been replaced with a polyfill based on `DateTime`.
* Explicit type casts/assertions added where required by PHP 8.1
* `filter_var(…, FILTER_SANITIZE_STRING)` replaced with `strip_tags()`
  or HTML entity encoding of quotation marks, depending on a guess of
  what the intended "sanitization" was
* `http_build_query()` usage type mismatches fixed
* Removed usages of the `FILE_TEXT` constant
* To avoid breaking PHP 5.6 compatibility (function return types),
  `e_session_db` no longer implements `SessionHandlerInterface`.
  Instead, the alternative non-OOP invocation of
  `session_set_save_handler()` is used instead to apply the session
  handler.
* The shim for `strptime()` still calls the native function if available
  but now suppresses the deprecation warning.

* `e_db_pdo` explicitly asks for `PDO::ATTR_STRINGIFY_FETCHES` to
  maintain consistent behavior with past versions of PHP.
* `e_db_mysql` explicitly sets `mysqli_report(MYSQLI_REPORT_OFF)` to
  maintain consistent behavior with past versions of PHP.

* Removed pointless random number generator seed from `banner` plugin
* Workaround for `COUNT(*)` SQL query in
  `validatorClass::dbValidateArray()` without a proper API for avoiding
  SQL injection
2021-09-04 15:06:19 +02:00
Nick Liu
f6d6d1b185
Deprecate e_parse::toJS()
`e_parse::toJS()`, documented with the description

> Convert text blocks which are to be embedded within JS

, does not protect strings from injections, which appears to be its
primary use.  Additionally, it performs multiple unrelated string
modifications:

* Replace Windows line breaks with a literal `\\n` (which would later be
  parsed as `\n` in JavaScript/JSON)
* Does not modify Unix line breaks (`\n`), which is inconsistent with
  the Windows line break behavior
* Removes HTML tags
* Replaces HTML entities as `htmlentities()` does

This method cannot be fixed because its usages are inconsistent.  Most
notably, some usages surround the method's output in single quotes while
others surround it with double quotes.  Strings cannot be JSON-encoded
without confounding quotation mark styles.

All core usages of `e_parse::toJS()` have been replaced with
alternatives, which are also documented in the method's DocBlock.

Fixes: #4546
2021-08-31 00:11:14 +02:00
Cameron
7973e10dea Debug code removal. Rel prev/next added. 2021-08-13 11:53:21 -07:00
Cameron
32618817d1 Character counting display added to meta description on admin News and Page inputs. 2021-08-12 11:51:55 -07:00