a2d30a100c
LdapQuery: Make all applied filters case-insensitive
...
LDAP peforms case-insensitive checks by default so do we now.
fixes #3650
2019-04-23 14:36:08 +02:00
1d341f9253
LdapConnection: Include the normalized hostname in all informational messages
...
refs #3639
2019-04-23 10:55:23 +02:00
d998bd9894
LdapConnection: Normalize the hostname in all cases, not just for LDAPS
...
refs #3639
2019-04-23 10:54:40 +02:00
0be1053197
Merge pull request #3748 from Icinga/feature/sortable-announcements-page-3414
...
Sortable announcements page
2019-04-18 14:51:16 +02:00
b50091fc21
Merge pull request #3747 from Icinga/bugfix/setuptimezone
...
ApplicationBootstrap#setupTimezone(): ensure a vaild default timezone to be set in any case
2019-04-17 14:46:22 +02:00
4d0a9fb289
DbConnection: Rename getTimezoneOffset() to defaultTimezoneOffset()
...
refs Icinga/icingaweb2-module-director#1837
2019-04-17 12:30:33 +02:00
9d30cfc3b7
IniParser: Add work-around for php bug 76965
...
refs #3733
2019-04-17 10:00:42 +02:00
14b6e40562
DbConnection: Set current user's timezone on the connection
...
resolves #3525
2019-04-16 15:57:27 +02:00
db3cc699f7
ArrayDatasource: Store any type of key as a key column's value
...
fixes #3510
2019-04-16 13:26:48 +02:00
37df008d7f
AnnouncementIniRepository: Don't transform retrieved timestamps to DateTime
...
refs #3414
2019-04-16 13:03:16 +02:00
032ca7ae50
SimpleQuery: Fail in case of missing order columns
...
refs #3414
2019-04-16 12:01:49 +02:00
e22d7daab6
SimpleQuery: Don't fail to order results based on sequenced column arrays
...
refs #3414
2019-04-16 12:00:55 +02:00
5d4cdfe13f
ApplicationBootstrap#setupTimezone(): ensure a vaild default timezone to be set in any case
2019-04-16 10:35:36 +02:00
8fc467ca3c
Merge pull request #3714 from ignasr/fix/ldaps-port-3713
...
use the correct LDAPS port
2019-04-12 09:36:33 +02:00
12ee9580a9
When using LDAPS, check if the Host field has hostnames with ports and use the value from Port field if not.
2019-04-12 08:57:52 +02:00
3fe810ecf9
Form: Properly preserve defaults from DateTimePicker elements
...
fixes #3612
2019-04-10 10:51:36 +02:00
ccc2f487f6
Merge pull request #3706 from Icinga/fix/multiline-values-in-ini-files-broken-3705
...
Fix multiline values in ini files broken
2019-04-05 08:44:46 +02:00
915c7b8fe5
Merge pull request #3504 from Icinga/fix/collapsible-sidebar-issues-3187
...
Fix collapsible sidebar issues
2019-03-21 09:09:27 +01:00
b3b80fdc31
Make active first-level nav items better distinguishable
2019-03-20 11:07:39 +01:00
61b0d8aa90
Add icon with first letter of the li if there is no icon set else default to icon-circle
2019-03-20 11:07:39 +01:00
9b1f49413d
use the correct LDAPS port
...
refs #3713
2019-03-08 18:49:20 +01:00
769d490631
config: Escape and unescape line breaks in ini values
...
refs #3705
2019-03-04 12:16:06 +01:00
403c2d3495
Merge pull request #3481 from marianrh/feature/optionally-disable-mysql-server-certificate-validation
...
Allow disabling MySQL server certificate validation by setting ssl_do_not_verify_server_cert
2019-02-26 10:39:21 +01:00
b6e8151582
Merge pull request #3677 from Icinga/fix/escaped-ini-characters-3648
...
Fix escaped ini characters
2019-02-26 10:03:54 +01:00
57f54b0f76
Merge pull request #3667 from Icinga/bugfix/undefined-offset-100-3589
...
Format::seconds(): handle negative values as expected
2019-02-26 09:59:24 +01:00
a487f83f99
Loader: fix indentation...
...
...it's too early in the morning, wrong .vimrc on this system - sorry.
2019-02-20 05:48:04 +01:00
7868216d04
Loader: close clicommands directory after use
...
fixes #3688
2019-02-20 05:36:08 +01:00
ed7ecb32a5
IniParser: Properly unescape special characters in section names and option values
...
refs #3648
Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com>
2019-02-05 11:30:55 +01:00
9571d1059f
Fix URLs in our image helper having multiple params
2019-01-25 09:20:55 +01:00
c04b2594a6
Format::seconds(): handle negative values as expected
...
refs #3589
2019-01-17 16:40:27 +01:00
08c879249b
Auth: do not ask for unrelated group membership
...
If a specific User-Backend has been assigned to a Group Backend, and
the User has been authenticated by another User-Backend, then there is
no need to ask the unrelated Groups Backend for membership.
2018-12-18 14:51:13 +01:00
4081a85d90
Introduce Icinga\Util\Environment to manage limits
...
And replace the code in Icinga\File\Pdf with the new helper.
2018-12-05 15:42:48 +01:00
87da1e76cd
Respect php.ini limits when exporting to PDF
2018-12-05 15:12:03 +01:00
a95e645236
Merge pull request #3643 from Icinga/feature/db-oracle-hostname-optional
...
DbConnection: Make host optional for Oracle connections
2018-12-05 15:09:46 +01:00
ecfaf7cede
GridChart: Fix compatibility issues with PHP 7.3
2018-12-05 14:57:21 +01:00
2df8132c46
DbConnection: Make host optional for Oracle connections
2018-12-04 15:50:53 +01:00
075eb17005
Use continue <N> in case statements to fix ErrorException with PHP 7.3.
...
```
Fatal error: Uncaught ErrorException: "continue" targeting switch is equivalent to "break". Did you mean to use "continue 2"?
```
2018-11-23 18:34:56 +01:00
081b90e92f
Raise version to 2.6.2
2018-11-20 12:39:21 +01:00
d919e23d0b
Merge pull request #3585 from Icinga/feature/enhanced-ldap-logging
...
Feature/enhanced ldap logging
2018-11-15 11:28:47 +01:00
0c06ec7431
Merge pull request #3558 from Icinga/fix/permission-test-in-hook-has
...
Fix permission test in Hook::has()
2018-11-15 11:26:07 +01:00
1268c16a7f
Merge pull request #3588 from Icinga/fix/problems-the-world-has-and-ever-will
...
Fix problems the world has and ever will
2018-11-15 11:25:48 +01:00
b4afdf4115
DbConnection: do not fail for MySQL 8
...
fixes #3611
2018-11-08 11:11:37 +01:00
39f5b5e2cd
LdapConnection: Ensure port and timeout are numbers
2018-10-16 14:44:01 +02:00
3f782460dc
LdapConnection: Add timeout setting with a useful default value
2018-10-16 14:35:50 +02:00
86ae8c12df
IniParser: Use mode INI_SCANNER_RAW to parse ini files
2018-10-10 09:44:11 +02:00
4e6b936862
helpers/url: Properly escape image urls
2018-10-10 09:44:11 +02:00
77bb1944db
Web: Setup the logger earlier in the bootstrap process
...
Previously only ERROR got logged (to syslog only) up until
setupLogger() was called. This prevented any other message
level from being logged. It's now required to be able to
log in the Auth singleton. It also fixes the problem that
during setupSession() some warnings were never visible
due to the same reason.
2018-10-08 14:03:34 +02:00
2f9037e545
Auth: Log which groups were identified for the user being authenticated
2018-10-08 14:02:26 +02:00
d8e3f23342
LdapCapabilities: Log which attributes were discovered
2018-10-08 10:34:27 +02:00
3c69a63ce3
LdapUserGroupBackend: Log what the ambiguity check does
2018-10-08 10:34:27 +02:00
ae469311be
Fix uninitialized array and module in Cli\Command
2018-09-24 13:48:22 +02:00
65591c829f
Update Cli.php
2018-09-08 01:37:33 +03:00
a55e32b1a1
Return non-zero on display usage
...
`Icingacli` should return non-zeno status code when display usage messages
for example for invalid commands
https://github.com/Icinga/icinga2/issues/6585#issuecomment-418681789
It is good for automation and helps mitigate typing errors
2018-09-05 22:16:25 +03:00
7e4b92b714
Fix permission test in Hook::has()
...
Before, only the first hook for the given type was tested. If this hook
belonged to a not permitted module, Hook::has() returned false. Though
there may have been other hooks which are permitted.
2018-08-16 17:03:42 +02:00
34eadb7f29
Enable `$currentUser` placeholder in restrictions
...
implements #3493
2018-08-08 15:15:02 +02:00
b3e0b5d587
Raise version to 2.6.1
2018-08-02 12:46:39 +02:00
0f075b034b
Respect permissions in Hook::has()
2018-07-26 11:51:23 +02:00
c0f99539ff
Raise version to v2.6.0
2018-07-19 09:27:11 +02:00
dd9e8c8ba9
Revert "Merge pull request #3487 from Icinga/fix/web-bootstrap"
...
This reverts commit b12b905076c633c86db7#3500
2018-07-18 15:29:55 +02:00
121bd545d1
Merge pull request #3530 from Icinga/feature/enforce-a-named-identity-for-audit-logs
...
AuditHook: Enforce a named identity and allow to pass a explicit time
2018-07-18 15:27:45 +02:00
f28f7150fc
AuditHook: Enforce a named identity and allow to pass a explicit time
2018-07-18 14:45:00 +02:00
7d47875241
Introduce PdfexportHook
2018-07-18 14:22:18 +02:00
5e40405a12
Allow disabling MySQL server certificate validation by setting ssl_do_not_verify_server_cert
...
Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com>
2018-07-16 11:41:13 +02:00
84622bf27b
Fix some XSS vulnerabilities
...
Only a real issue with <= IE9 as other browsers properly escape
urls prior transmission.
Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com>
2018-07-16 09:53:30 +02:00
6cddd6beed
Merge pull request #3508 from Icinga/fix/filter-entries-are-deleted-when-pushing-enter-3454
...
FilterEditor: Add a hidden submit button to the start of the form's m…
2018-07-10 09:28:35 +02:00
b88c6b0a6e
Merge pull request #3516 from Icinga/feature/application-state-hook
...
Application state hook
2018-07-10 09:14:26 +02:00
47405127d0
Add config to hide/show pplication state messages
...
refs #2835
2018-07-09 16:28:28 +02:00
d18d05ccee
Introduce ApplicationStateHook
...
refs #2835
2018-07-09 16:28:25 +02:00
303637df3c
Merge pull request #3452 from Icinga/feature/drop-php-lt-56-support
...
Drop support for PHP < 5.6
2018-07-09 09:18:18 +02:00
6e6251604b
FilterEditor: Add a hidden submit button to the start of the form's markup
...
When pushing enter our JS mimics what a browser would do. And that is
pushing the first submit button found in the form. Without this, that's
a delete button of the first logical junction. (the root condition)
fixes #3454
2018-07-06 10:41:49 +02:00
189b519135
Merge pull request #3486 from Icinga/fix/request-parses-json-without-respecting-content-type-3484
...
Fix that Request parses json without respecting content type
2018-07-05 13:19:27 +02:00
1f677e64f6
ActionController: Force HTTP redirects in method redirectHttp()
...
That's what its name implies, right? The counterpart is redirectXhr(),
which does still its job. redirectNow() on the other hand is for the
lazy people.
2018-07-04 14:44:03 +02:00
8cbff87af1
Request: Parse the POST body only as JSON if it's really JSON
...
refs #3484
2018-07-04 11:09:11 +02:00
842e5603a1
Request: Introduce method extractMediaType
...
refs #3484
2018-07-04 11:09:11 +02:00
8990d6f46e
Drop support for PHP < 5.6
2018-07-03 13:11:36 +02:00
d6c4df7a5d
Use password_hash and password_verify
2018-07-03 13:08:06 +02:00
faaff42096
Revert "Introduce PasswordHelper for safer passwords"
...
This reverts commit f57277aa96
2018-07-03 13:08:06 +02:00
966148e8f0
Merge pull request #3463 from kobmaki/feature/Allow-to-interface-with-sqlite-databases-3381
...
Support SQLite resources
2018-06-28 11:42:00 +02:00
0433dc4166
Bootstrap modules at last
...
We initialize modules before we set up the user backend and other
singletons. But modules may access those in order to check the
permissions of the authenticated user for example. With this fix,
modules are loaded once all other bootstrap tasks have been completed.
refs #3470
2018-06-27 09:52:00 +02:00
4b5cf47cce
Introduce SQLite resource type
...
refs #3381
Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com>
2018-06-27 09:40:22 +02:00
c633c86db7
Merge pull request #3480 from Icinga/fix/revert-persistent-db-connections
...
No longer support persistent database connections
2018-06-27 09:36:37 +02:00
4d42c043e4
Remove traces of persistent db connections
2018-06-22 15:36:46 +02:00
af35794006
Revert "lib/db: Allow to configure persistent connections"
...
This reverts commit 4763b6b20a
2018-06-22 14:43:32 +02:00
6f1d8668a0
Fix line exceeds 120 characters
2018-06-22 11:04:48 +02:00
ee60a8df99
Don't let AutoRefreshForm handle API requests
...
refs #2749
2018-06-22 11:03:07 +02:00
235e75d054
Form: handle API requests as expected
...
refs #2749
2018-06-22 11:03:07 +02:00
880a0a254f
DateTimePicker: support *nix timestamps
...
refs #2749
2018-06-22 11:03:07 +02:00
a444b8adf5
Request: support JSON as POST data format
...
refs #2749
2018-06-22 11:03:07 +02:00
73473a3bb9
Fix tests
...
refs #2635
2018-06-22 09:57:10 +02:00
906c1668a4
Split Json::encode() into Json::encode() and Json::sanitize()
...
refs #2635
2018-06-21 16:01:53 +02:00
02b60633ff
Auto-sanitize only in the monitoring module
...
refs #2635
2018-06-20 18:05:12 +02:00
1a94a21263
Prefer Json::encode() over json_encode()
...
refs #2635
2018-06-20 18:05:11 +02:00
9219cea776
Json::encode(): auto-sanitize bad UTF-8 strings
...
refs #2635
2018-06-20 18:05:11 +02:00
3f66bd7437
Auth: Log login/logout activities to the audit log
...
refs #2563
2018-06-08 14:21:15 +02:00
9da9f1237d
Introduce class Icinga\Application\Hook\AuditHook
...
refs #2584
2018-06-08 14:21:15 +02:00
96303f53f8
Merge pull request #3213 from Icinga/feature/drop-php-5-3-support
...
Drop PHP 5.3 support
2018-05-08 03:03:36 -04:00
4bea67e756
Merge pull request #3315 from Icinga/bugfix/php-7-2-support-3185
...
Don't call session_start() after ini_set()
2018-05-07 05:44:52 -04:00
fc1f6e13ab
Drop PHP 5.3 support
2018-05-07 11:36:54 +02:00
60295f3407
Merge pull request #3443 from Icinga/fix/search-over-customvars-results-in-sql-error-2508
...
Fix search over customvars results in sql error 2508
2018-05-07 04:18:22 -04:00
cbc77cb7b2
Web: Implement method getMenu() using Icinga\Web\Menu and deprecate it
...
refs #2338
2018-04-30 10:30:58 +02:00
Johannes Meyer
Alexander A. Klimov
ignasr
Eric Lippmann
Jennifer Mourek
Thomas Gelf
Markus Frosch
Markus Frosch
Bas Couwenberg
Marius Hein
Max Kozlov
Oliver Rahner
Marian Rainer-Harbach
Uwe Ebel