tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-31 01:34:09 +02:00
Code Issues Packages Projects Releases Wiki Activity
5,411 Commits 126 Branches 76 Tags
Commit Graph

1805 Commits

Author SHA1 Message Date
Eric Lippmann
4ef5f0c813 monitoring/security: Guard delete comment action 2015-02-03 16:11:56 +01:00
Eric Lippmann
6517f8e2be security: Activate permissions 2015-02-03 16:08:35 +01:00
Eric Lippmann
338d067aba Add license header 
fixes #7788
 2015-02-03 15:51:04 +01:00
Eric Lippmann
08fd000496 Remove any topbar related stuff 
It's not used anywhere.
 2015-02-03 12:42:02 +01:00
Alexander Klimov
a6cea24934 Platform::zendClassExists(): don't fail if a Zend class file doesn't exist 2015-02-03 12:22:23 +01:00
Markus Frosch
cb08b25e17 Remove executable flags from some PHP libraries 
Note: dompdf.php is actually a CLI script, but has no shebang and is not used
in Icingaweb2.

Fixes #8345
 2015-02-03 10:50:50 +01:00
Johannes Meyer
7989b48248 Fix ldap auth when the userNameAttribute holds multiple values 
fixes #8246
 2015-02-03 10:15:54 +01:00
Thomas Gelf
f8c5bf6819 Web\Hook: support hook base classes in modules 
refs #8207
 2015-02-02 17:44:29 +01:00
Thomas Gelf
3596e7ce62 FilterEditor: use preserved params 
fixes #7904
 2015-02-02 17:07:54 +01:00
Eric Lippmann
9d6906bd64 Save user dashboards to Icinga Web 2's configuration directory 
fixes #8056
 2015-02-02 15:06:29 +01:00
Eric Lippmann
52c40bdc5b lib/SimpleQuery: Increase default limit to 25 
Please follow the referenced issues.

fixes #8337
refs #8339
 2015-02-02 14:16:27 +01:00
Eric Lippmann
94193abdc0 lib: Fix User::can() 2015-02-02 14:16:26 +01:00
Eric Lippmann
9ac9342107 Revert "lib: Reduce else { if { to elseif { in User::can()" 
This reverts commit e5b0b528747c2ff76b0568f8ca6929e61b072495.
 2015-02-02 14:16:26 +01:00
Eric Lippmann
5a1ebf9c89 lib: Implement Tab::getUrl() 2015-02-02 14:16:26 +01:00
Johannes Meyer
bf470125c3 Merge branch 'master' into feature/create-missing-directories-when-creating-inis-8219 
Conflicts:
	modules/monitoring/library/Monitoring/MonitoringWizard.php
 2015-01-30 16:21:42 +01:00
Johannes Meyer
f5a651664c Create the enabledModules directory when necessary only as well 
refs #8219
 2015-01-30 16:16:12 +01:00
Johannes Meyer
9426a5bd23 Use File::create() in Config::saveIni() to create missing nested directories 
refs #8219
 2015-01-30 15:43:02 +01:00
Johannes Meyer
fdcec046e0 Make File::create(.., $recursive = true) create missing nested directories 
refs #8219
 2015-01-30 15:42:22 +01:00
Eric Lippmann
e5b0b52874 lib: Reduce else { if { to elseif { in User::can() 2015-01-30 11:20:05 +01:00
Eric Lippmann
df29dd0e7c Implement Form::hasPermission() and Form::getPermission() 2015-01-30 09:35:01 +01:00
Eric Lippmann
2faf5f0ca1 Throw SecurityException in ActionController::assertPermission() 2015-01-30 09:34:19 +01:00
Johannes Meyer
63305fdf9a Add Icinga\Application\Config::saveIni() 
Simplifies saving INI files. Icinga\File\Ini\IniWriter does already require an
instance of Icinga\Application\Config so it's obvious to give "Config" the
task to initialize the writer.. We do also have a central place to handle
creating missing ancestor directories now.

refs #8219
 2015-01-30 09:32:08 +01:00
Eric Lippmann
375345f837 lib: Add SecurityException 
All assertPermission() calls must throw this exception.
 2015-01-30 09:06:10 +01:00
Johannes Meyer
3e128732b8 Apply a limit to results fetched via Ldap\Connection::fetchRow() 
fixes #7993
 2015-01-29 17:29:11 +01:00
Johannes Meyer
6e533f223e Log warnings emitted by ldap_control_paged_result_response() as debug 
Such a warning is emitted as well in case it's not critical. That is passing
an alternative overall result limit using ldap_search() to the server causes
it being applied across pages so ldap_control_paged_result_response()
does not indicate the "end" of the resultset just by adjusting the cookie
but by emitting the warning as well.
 2015-01-29 17:12:59 +01:00
Johannes Meyer
9ff0bbcfc0 Fix that Icinga\Protocol\Ldap\Connection does not correctly apply limits 2015-01-29 17:07:58 +01:00
Johannes Meyer
97cc37b99c Move php version check from ...\Ldap\Query to ...\Ldap\Connection 
refs #8261
refs #6176
 2015-01-29 15:59:03 +01:00
Johannes Meyer
2a115e71d4 Add support for paged LDAP search results 
fixes #8261
refs #6176
 2015-01-29 15:53:15 +01:00
Marius Hein
dd483d98df LessCompiler: Remove useless argument 
refs #6417
 2015-01-29 14:04:47 +01:00
Marius Hein
c1df1f822e ifont: Reorganize files and drop use less attributes 
fixes #6417
 2015-01-29 11:25:37 +01:00
Johannes Meyer
3a983e8859 Merge branch 'master' into feature/improve-autologin-setup-8274 2015-01-28 18:01:15 +01:00
Marius Hein
4abb30e55b Merge branch 'master' into bugfix/ie8-fixes-6417 2015-01-28 17:08:56 +01:00
Marius Hein
9d05190517 ifont: Fix empty font glyphs for IE8 
The embedded font is included inline in the stylesheets. IE falls back and
tries to load one of the other font sources which was not exported by the web
server. This fix moves the fontello directory to public and add add a
prefix path to the embedded stylesheet.

refs #6417
 2015-01-28 17:06:55 +01:00
Johannes Meyer
6fde4eec30 Show all tabs except "Add to Dashboard" when issuing a command 
refs #8279
 2015-01-28 12:50:29 +01:00
Eric Lippmann
c53b1d27e9 lib: Deprecate Data\Filterable because of ... 
addFilter and applyFilter do the same in all usages.
addFilter could be replaced w/ getFilter()->add().
We must no require classes implementing this interface to implement redundant methods over and over again.
The interface must be moved to the namespace Icinga\Data\Filter.
It lacks documentation.
 2015-01-27 14:33:46 +01:00
Johannes Meyer
47b27fcfe4 setup: Look for the authentication.ini instead of the config.ini 
The config.ini does not include any settings mandatory to operate
Icinga Web 2, but the authentication.ini does.

refs #8134
 2015-01-27 13:34:59 +01:00
Johannes Meyer
50fc85d7ff Rename authentication type "autologin" to "external" 
refs #8274
 2015-01-27 09:49:36 +01:00
Johannes Meyer
d452f3218d Use "ini" as preferences store in case preferences are not configured 
refs #8234
 2015-01-23 16:25:24 +01:00
Johannes Meyer
2a543bb5ae Rename the preference setting type' to store' 
refs #8234
 2015-01-23 16:25:23 +01:00
Eric Lippmann
7bd42b476f bootstrap: Load setup module in case the setup token exists 
The web setup may write the config.ini even if it errors. Thus our bootstrap
has to load the setup module whenever the setup.token exists.
Another approach would to write the config.ini in our web setup at the very end.
 2015-01-23 15:27:52 +01:00
Johannes Meyer
14a4aaeb77 Revert "Fix that when chosing to not to store preferences an invalid config is created" 
This reverts commit 6284da451e2a3f1fecf8935f04701d889445203c.
 2015-01-23 15:23:43 +01:00
Johannes Meyer
6284da451e Fix that when chosing to not to store preferences an invalid config is created 
fixes #8234
 2015-01-23 14:42:09 +01:00
Eric Lippmann
cd8822ceff lib: Add View::hasPermission() 2015-01-23 09:36:45 +01:00
Eric Lippmann
6da3cb8403 lib: Reorder auth related functions in the ActionController 2015-01-23 09:36:05 +01:00
Eric Lippmann
44de790cc9 Security: Temporary grant all permissions 2015-01-22 17:12:49 +01:00
Eric Lippmann
ef0a7c0e77 Revert "Security: Temporary grant all permissions" 
This reverts commit 9b7e75a616e753e25cda033c86fab44e1281d7e9.

Patching function hasPermission is not enough. A fix will follow.
 2015-01-22 17:11:53 +01:00
Eric Lippmann
0f13c0428c Controller: Introduce method assertHttpMethod() 
We have actions where only certain HTTP methods, e.g. POST are allowed but they are not restricted yet.
Controller::assertHttpMethod() takes a number of allowed HTTP methods and responds with HTTP 405 in case
the current request's method is not one of the given methods.
 2015-01-22 15:47:16 +01:00
Eric Lippmann
9b7e75a616 Security: Temporary grant all permissions 
We'll introduce permissions and restrictions in the next hours. Because our web setup
does not configure permissions yet, all permissions are granted for all users from now on.
 2015-01-22 15:20:38 +01:00
Eric Lippmann
f16aac5154 Security: Sort permissions only if not empty 2015-01-22 15:20:19 +01:00
Johannes Meyer
94d727dbb8 Fix error in Icinga\Web\Form in case the label decorator is missing 
Zend_Form::getDecorator() returns false instead of null in case the
decorator is not found.
 2015-01-22 09:21:50 +01:00