mirror/php-e107
1
0
Fork 0
mirror of https://github.com/e107inc/e107.git synced 2025-01-17 20:58:30 +01:00
Code Issues Releases Wiki Activity
13,752 Commits 2 Branches 22 Tags
Commit Graph

5355 Commits

Author SHA1 Message Date
Cameron
5ddc27766d Composer update 2022-05-29 12:08:49 -07:00
Cameron
6f34dc9f29 Issue #4778 - Additional date-filter options added. 2022-05-22 13:19:21 -07:00
Cameron
9a198e4cc6 Removal of binary files. 2022-05-17 16:07:50 -07:00
Nick Liu
7994746dab
PHP bug 66773 workaround in Hybridauth 
In PHP 7.0.12 and earlier, a class could not be loaded with the same
name as another class in a different namespace.  This commit patches the
Hybridauth dependency to avoid PHP bug 66773.  Unfortunately, the fix
will be rolled back any time Hybridauth is updated or overwritten.

PHP bug link: https://bugs.php.net/bug.php?id=66773

(cherry picked from commit 539c3f1a672330d460a8cffa63adc63902ae4da4)
 2022-05-11 21:41:01 -05:00
Cameron
903f51561f Fixes #4766 User-audit login event data. 2022-05-10 10:21:05 -07:00
Cameron
7a9610740a Updated dependencies 
- hybridauth (3.7.1 => v3.8.0)
- minify (1.3.66 => 1.3.68)
 2022-05-06 11:01:54 -07:00
Cameron
dec2941882 Issue #4757 - Make IP readable in email notification on user_changed_ip trigger. 2022-05-05 09:26:00 -07:00
Cameron
327616002e Fixes #4761 - Related Summary parsing as BODY instead of SUMMARY. 2022-04-21 15:35:42 -07:00
Cameron
c2fc8fce0a Issue #4757 Prevent infinite loop and possible PHP 8.1 errors. 2022-04-21 10:54:43 -07:00
Cameron
4d6a5ea310 Fixes #4758 Admin-UI hidden field $parms were not being applied. 2022-04-19 07:15:23 -07:00
Cameron
64b1cdcbc2 Fixes #4757 and adds user_ip_changed trigger. 2022-04-18 15:09:12 -07:00
Cameron
f8b04b64d4 Fixes #4751 - Form tabs issue. Test added. 2022-04-07 13:11:56 -07:00
Cameron
9b5a76cd0f Corrected theme install pref defaults. Theme Manager now prompting again about default content and display modified prefs when detected. 2022-04-07 08:15:30 -07:00
Cameron
02a7e08902 Fixes #4750 - News image placeholder. Adds another news-grid layout. 2022-04-06 12:09:58 -07:00
Cameron
196f952db8 Closes #4514 Theme developers can now set the default style, just as they would with the default layout. 2022-04-06 08:37:13 -07:00
Cameron
6eff4cb5f7 Closes #4748 - Bootstrap5 Theme enhancements. Bootswatch 5. 2022-04-05 19:49:08 -07:00
Cameron
45372f285c Fixes #4747 - wysiwyg editor value retention. 2022-04-05 09:56:25 -07:00
Cameron
ba82fec626 Closes #4745 - check for xml/install.xml during plugin installation. 2022-04-04 18:30:33 -07:00
Cameron
412b0b2efe Reducing e_SECURITY_LEVEL to 3 with disable ValidateRemoteAddr. 2022-04-04 14:47:53 -07:00
Cameron
22b9bd1721 Updated e107.org urls. 2022-04-04 14:46:42 -07:00
Cameron
55980a29a8 Generated PHPDoc for all classes in e107_handlers where one was missing. toNumber() updated to always return int or float. 2022-04-04 10:54:24 -07:00
Cameron
bf10c58c50
Merge pull request #4741 from Jimmi08/user-last-visit-shortcodes 
Fixes #4665 correct user last visit information
 2022-04-02 12:41:52 -07:00
Cameron
e801b02dee Closes #4744 - Media-Manager default set to Grid. New CSS grid added. Extra tests added for toGlyph(). Added wildcard mime-type filters in Media-Manager. 2022-04-02 09:34:06 -07:00
Jimmi08
2fa73df934 #4665 correct user last visit information 
CLOSES #4665
 2022-04-02 14:57:37 +02:00
Cameron
9e8e7966a5 Fixes #4740 - news category link on print pages. 2022-04-01 12:00:37 -07:00
Cameron
91f90202a4
Merge pull request #4732 from Jimmi08/load-bbcode-buttons-only-if-HTML-is-allowed-for-user 
Fixes #4708 load bbcode buttons only if posting HTML is allowed for user
 2022-04-01 11:13:31 -07:00
Cameron
c510885b43
Merge pull request #4735 from Jimmi08/rank-issue-for-first-level 
Fixes #4670 ranks issue for first level
 2022-04-01 11:06:05 -07:00
Cameron
025ff07aab Fixes #4737 Removal of type="text/javascript" and type="text/css" 2022-03-31 08:24:34 -07:00
Jimmi08
79a300e7bb #4670 ranks issue for first level 
CLOSES #4670
 2022-03-31 12:55:32 +02:00
Jimmi08
64dcf0c056 #4665 load bbcode buttons only if HTML is allowed for user 
CLOSES #4665

Tested scenarios:

- site wysiwyg on, html access  -  result tinymce
- site wysiwyg on,  no html access  - result bbcodes
- site wysiwyg off,  forum wysiwyg on,  no html access  - result bbcodes
- site wysiwyg off,  forum wysiwyg on,  html access  - result tinymce

It worked like this before too, but bbcodes were always rendered (not visible with tinymce)
 2022-03-31 12:22:04 +02:00
Cameron
e1059b8001 Fixes #4711 - BS4/5 button classes in TinyMce. 2022-03-27 12:10:41 -07:00
Cameron
f6d0164f94 Composer update. 2022-03-27 10:23:34 -07:00
Cameron
3d3b2ec85d PHP Notice fix. 2022-03-15 13:48:32 -07:00
Cameron
748fd4b9b6 Fixes #4700 - linkwords inconsistencies. 2022-03-12 11:50:27 -08:00
Cameron
7fd6fdf478 Fixes #3778 - SEF URL issue on custom page comments. Also introduces pageHelper class with use added to e_related, e_search and e_sitelink. 2022-03-11 12:23:31 -08:00
Cameron
2400c1ef09 Fixes #4698 - Load front-end inline editing javasript only when necessary. 2022-03-10 11:08:27 -08:00
Cameron
7952e9188b Notify admins when script access is disabled. 2022-03-07 12:40:45 -08:00
Cameron
ce489e5b0f Upgraded intervention/image (2.7.0 => 2.7.1) 
Upgraded phpmailer/phpmailer (v6.5.3 => v6.6.0)
 2022-03-06 14:25:23 -08:00
Nick Liu
169efa09b9
e_parse::toAttributes(): New API to concatenate HTML attributes 
`e_parse::toAttributes()` is an expansion of the formerly private method
`e_form::attributes()`. Now, all client code can use
`e_parse::toAttributes()` to make it easy to concatenate variable-length
HTML attributes. Values are guaranteed to be encoded so that they cannot
escape an HTML attribute value.

All client code usages are encouraged to build HTML tags with this new
method to prevent cross-site scripting (XSS) attacks and prevent
breaking the HTML validity due to improperly escaped HTML attributes.

This new method is an extension to `e_parse::toAttribute()`, which
escaped one single HTML attribute value.
 2022-02-06 16:49:56 +01:00
Cameron
2097778cc5 Experimental schema template added to FAQs. 2022-02-04 13:26:52 -08:00
Cameron
c17b985441 Experimental schema template 2022-02-04 12:04:21 -08:00
Cameron
c3d65075d0 Extracted toGlyphEmbed() method from toGlyph() and fixed some backward compatibility issues. 2022-01-27 16:50:42 -08:00
Cameron
24f0dcadb6 Issue #4657 - Add to rolling log. 2022-01-20 09:02:28 -08:00
Cameron
4a0b8a7aa3 Issue #4657 - drop session instead of trigger login failure. (which can causing auto-bans) 2022-01-20 08:39:16 -08:00
Nick Liu
754c29d230
#4661: Don't double-encode ampersand in e_form::thead() 
I guessed the `filter_var(…, FILTER_SANITIZE_STRING)` intention
mentioned in 20882920a0b68937570264949512acc0c4841dbd.  I guessed wrong.
This fixes the guess to be just HTML tag removal.

Fixes: https://github.com/e107inc/e107/issues/4661
 2022-01-17 13:20:34 +01:00
Nick Liu
f1a2f2e768
#4633: Default to user_tracking "session" in user_model.php 
Second part of
https://github.com/e107inc/e107/commit/94f3162

Fixes: #4633
 2022-01-17 09:59:05 +01:00
Cameron
56bb8200a1 Corrected PHP 8.1 warnings. 2022-01-13 11:31:20 -08:00
Cameron
fd42d2325f Issue #4657 - Improved handling to prevent multiple sessions running on the same user account. 2022-01-13 11:18:31 -08:00
Cameron
a617918256 Avoid PHP warnings. 2022-01-10 15:23:27 -08:00
Cameron
7de11ed496 Added tokens to some links. 2022-01-01 13:05:17 -08:00