 romainq
|
65aaea630b
XSS: Fixed a regression caused by the fix [3994]. Object hyperlinks were escaped twice causing accuented characters displayed as '´'. The API DBObject::MakeHyperLink has been clarified and the original fix moved elsewhere. The XSS injection that was not handled correctly prior to [3994] was in the display of an external key in the details of an object. To reproduce easily, inject some malicious characters in the name of the organization 'Demo' and view any object owned by Demo.
|
9 rokov pred |
 dflaven
|
53e0da0c73
Support "recusrive placeholders" (i.e. $this->org_id->code$) inside notifications... when using the HTML notation (i.e. -> becomes ->)
|
9 rokov pred |
|
dflaven
|
6ae7b96076
Regression: properly initialize mandatory date (and time) attributes when using a custom date/time format.
|
9 rokov pred |
|
romainq
|
05edb4d1da
Internal: added DBObject::RegisterURLMakerClass, to allow for overriding the standard behavior of template placeholders such as $this->org_id->hyperlink(portal)$
|
9 rokov pred |
|
dflaven
|
08e01b9eb7
Enhancement: Date and time formats are now configurable in iTop !! (beta version, beware!)
|
9 rokov pred |
|
romainq
|
7a8b8a628b
XSS: Correctly escape the name of an object when it is displayed within an hyperlink
|
9 rokov pred |
|
romainq
|
9d63033e48
Internal: Implemented DBObject::ExecActions, enables scripting object preset/modifications
|
9 rokov pred |
|
romainq
|
93b70a293b
ResetStopWatch could not be used as a lifecycle action: the symptom is "The action has failed".
|
9 rokov pred |
|
romainq
|
8174660c0d
Custom fields: track the changes and improve the robustness with regards to the Exception thrown by the handler. Also fixed an issue with DBObject, causing the custom fields to be written several times if invoking DBUpdate more than once. Theoretically, this issue affects any type of attribute.
|
9 rokov pred |
|
romainq
|
0489e8e5e8
Custom fields: alpha version.
|
9 rokov pred |
|
romainq
|
6b50994607
#1210 (reopened) ...fixed a regression on commit [r3936]: dependent fields could not be loaded when there are link set attribute in the current form
|
9 rokov pred |
|
dflaven
|
ccf403a397
(HTML) Formatted Case Logs, Description and Notifications with inline images uploaded as Attachments. Beta Version !!
|
9 rokov pred |
|
dflaven
|
dfb4164e0d
#1176: empty placeholders are represented by an empty string as in previous version.
|
9 rokov pred |
|
romainq
|
7f46108d88
New type of attribute: AttributeMetaEnum.
|
9 rokov pred |
|
dflaven
|
e10f75b167
#1049: CSV import (and edition) of n:n links. The Differences() function is NOT commutative: the original value (i.e. the one from the database) must the the first argument.
|
9 rokov pred |
|
romainq
|
8a28723b1e
Could not add more than one link between a given server and a given network device. This is a regression in 2.2.0 beta. This issue affect N-N links where duplicates are allowed. One single link is being affected in the standard datamodel.
|
9 rokov pred |
|
romainq
|
2428e8c26a
#1111 Could not attach a UserRequest to a Problem (1-N links). Could not detach either! This fix requires attention: it is assumed that an item of a link set, if it is "modified" then its key to the current object has already been set.
|
9 rokov pred |
|
romainq
|
895fcba8bc
Log REST/JSON calls (config: 'log_rest_service' => true ; stored as EventRestService)
|
9 rokov pred |
|
romainq
|
9b3c28f6d1
Optimization: when displaying an object details, do not check data synchro for each and every attribute (the cache did exist but was inoperant)
|
10 rokov pred |
|
romainq
|
5ed735e8d0
#942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application.
|
10 rokov pred |
|
dflaven
|
af849fbd7f
#1078: Properly record the history of LinkedSet(Indirect)
|
10 rokov pred |
|
romainq
|
c09b913411
New lifecycle action SetCurrentPerson. Also improved the existing lifecycle action SetCurrentUser to prevent from calling it on an external key that is not pointing to users (!= contact), and if the target attribute is a string, then store the friendlyname there.
|
10 rokov pred |
|
romainq
|
51c07f3900
#1079 DBWriteLinks deleting related objects
|
10 rokov pred |
|
dflaven
|
2c4841693c
Integration of the new way to compute relations into the datamodel (ComputeImpactedItems)
|
10 rokov pred |
|
romainq
|
d07331fe20
Modules implementing a lifecycle written in PHP (and having actions executed on transitions) do not work until 2.1.0. The compatibility patch had been implemented but it was not working. Good candidate for a retrofit to the branch 2.1.0
|
10 rokov pred |
|
romainq
|
c89f6ecfb0
Rework of the relation diagrams: implemented MetaModel::GetRelatedObjectsDown (still not taking the redundancy into account)
|
10 rokov pred |
|
romainq
|
8ecee4985a
XML Modelization of the relations: reworked toward an asymetric definition (downstream: A impacts B, upstream: B depends on A)
|
10 rokov pred |
|
romainq
|
f2a3b8237f
XML Modelization of the relations, with full support of the previous way (by implementing a method GetRelationQueries). Still, the standard data model has not been migrated to the new format.
|
10 rokov pred |
|
dflaven
|
3b81a3919d
#803: template placeholders are now built on demand. Yes !!
|
10 rokov pred |
|
romainq
|
e8ba1bf791
Internal: fixed the caching of DBObject::ToArgs()
|
10 rokov pred |
