 dflaven
|
32a4ceba39
More fixes for Trac#446: XSS vulnerabilities with vectors containing double quotes
|
13 lat temu |
 romainq
|
c9314e861b
Internal: it is possible to override the user authorized organizations
|
14 lat temu |
|
dflaven
|
919018612c
Apply organization filtering to subclasses of Organization as well.
|
14 lat temu |
 etaloc
|
13f548e3a5
update after test made by Erwan
|
14 lat temu |
|
dflaven
|
388ef91064
Support an abstract "Organization" class: if it's the case don't create any Org neither Person during the setup.
|
14 lat temu |
|
romainq
|
e6aa593bb3
Fixed regression (HKeys)
|
14 lat temu |
|
dflaven
|
43d36788a5
Added support for an abstract Organization (or Person) class during setup !
|
14 lat temu |
|
dflaven
|
c62b94c12a
- Use the new HierarchicalKeys for Organization and Locations and use the hierarchy of organization for the profiles/user rights.
|
14 lat temu |
|
romainq
|
b31df568aa
#415 Could not limit user on some organization (symptom: wrong queries... org_id does not exist...)
|
14 lat temu |
|
dflaven
|
7d0c6fe7d0
Fixed the creation of the "Portal" profile that now behaves like a standard profile and therefore requires the proper rights.
|
14 lat temu |
|
romainq
|
6f4cc7cc44
Optimizations:
|
14 lat temu |
|
romainq
|
b2fa746250
Optimization in the setup: 10 queries to insert the 1500 action grant records
|
14 lat temu |
|
dflaven
|
584f54a7a4
Fixed Trac#313: Provider contracts are filtered on the 'provider_id' - for filtering in the UI via the drop-down list of Organizations and for the security profiles ("Allowed Organizations"). The mapping for 'org_id', if any, is now taken into account by the security.
|
14 lat temu |
|
romainq
|
c997b9d56a
#305 Specified the charset in any call to htmlentities()
|
14 lat temu |
|
dflaven
|
4c371e2ad4
Patch for supporting a data model without any Person.
|
14 lat temu |
|
dflaven
|
aea2cdc6b7
Patch for supporting a data model without any Person.
|
14 lat temu |
|
dflaven
|
4b840888aa
Patch for supporting a data model without any Organization.
|
14 lat temu |
|
dflaven
|
c0d3970b95
Patch to support a different data model where contacts are not part of an org
|
14 lat temu |
|
romainq
|
c08371169d
User profiles: created in dedicated module itop-profiles-itil
|
14 lat temu |
|
dflaven
|
6d21fe3fcc
Bug fix: create the admin accounts with its linked profile (admin) in one operations since profiles are now mandatory when creating/updating a user.
|
14 lat temu |
|
romainq
|
329ecc57b4
Improved security
|
15 lat temu |
|
romainq
|
69a1fb61c0
Fixed bug: losing links profiles/user when editing profiles
|
15 lat temu |
|
romainq
|
8634607929
New profile: Portal User (and link from a ticket to the user portal)
|
15 lat temu |
|
romainq
|
25ee3dfa05
#255 Added the profile "Problem Manager"
|
15 lat temu |
|
romainq
|
b5fdc2ea2a
Grant Summary on profiles was saying no for everything
|
15 lat temu |
|
romainq
|
753de81bc1
#251 Allow configuration managers to modify/delete Contacts
|
15 lat temu |
|
romainq
|
f69e30ebc7
Simplified user management by profile (optimization for viewing a huge list of objects)
|
15 lat temu |
|
romainq
|
b29840d192
Could not search on Contacts while being allowed to search on persons/teams
|
15 lat temu |
|
romainq
|
57d44e2f77
Improved the internal KPI reporting tools
|
15 lat temu |
|
romainq
|
c973dfd743
Optimized roughly the load of user management data, and added a mean for quick profiling (to enable, add the setting log_duration)
|
15 lat temu |
