Commit Graph

44 Commits

Author SHA1 Message Date
Johannes Meyer 84622bf27b Fix some XSS vulnerabilities
Only a real issue with <= IE9 as other browsers properly escape
urls prior transmission.

Signed-off-by: Eric Lippmann <eric.lippmann@icinga.com>
2018-07-16 09:53:30 +02:00
Eric Lippmann d18d05ccee Introduce ApplicationStateHook
refs #2835
2018-07-09 16:28:25 +02:00
Thomas Gelf a352c9daf9 body.phtml: provide a fallback in case no...
...inlineLayout has been given.

fixes #3120
2017-11-21 13:30:58 +01:00
Johannes Meyer f6166b3ab6 ActionController: Allow to control which inline view script to use
This also affects that rerendering the layout does only have any effect
in case of XHR requests and is not overwritten anymore in this case.
Since this property was previously private, this should not break anything.
2017-06-28 11:14:01 +02:00
Eric Lippmann 39c7451664 Implement announcements
refs #11198
2016-11-29 15:24:34 +01:00
Eric Lippmann 5e51bb9c74 Make notifications accessible 2016-01-22 13:35:51 +01:00
Eric Lippmann 1b744fe335 Remove tabindex from header-logo 2016-01-18 12:50:27 +01:00
Eric Lippmann 637f09aa5a Support theming #header-logo
refs #10705
2015-12-10 13:34:54 +01:00
Eric Lippmann a7c6535bf9 Support theming for the header logo
refs #10705
2015-12-07 13:52:14 +01:00
Thomas Gelf fe72a1c36e body.phtml: img urls are now allowed in icon()
No no more need for ../ hacks :)
2015-10-01 17:12:26 +02:00
Johannes Meyer 57e08e92d4 Do not mark relative urls as absolute
refs #5600
refs #10169
2015-09-22 14:12:08 +02:00
Johannes Meyer 63e639caf0 Handle module identification directly in the ActionController
Fixes some issues with more complex customisations in a
module's controller.
Obsoletes: 93f8297344
2015-08-19 13:39:46 +02:00
Johannes Meyer 71cb484299 Show the full layout for anonymous clients
fixes #9892
2015-08-12 16:47:31 +02:00
Eric Lippmann 81aad9d6a6 Rename Notifiation::getMessages() to popMessages()
Because the call to popMessages()--before getMessages()--automatically resets the notification messages on the instance, popMessages() is a much better name for the method.

refs #9660
2015-07-30 13:45:39 +02:00
Eric Lippmann 07849e0fea lib: Rename Authentication/Manager to Authentication/Auth
refs #9660
2015-07-28 17:08:55 +02:00
Alexander A. Klimov 0ba4d24880 Move notifications to the bottom of the page
refs #8247
2015-05-29 14:17:12 +02:00
Johannes Meyer c0deeefe00 Re-add dashboard link to the upper left logo
fixes #8592
2015-03-06 13:44:14 +01:00
Marius Hein 936bfd43b0 Skip Links: Remove logo focus and move links into the menu 2015-02-16 10:57:31 +01:00
Johannes Meyer 3d0fbc833d Hide the Icinga logo from screen readers
refs #8360
2015-02-12 13:49:31 +01:00
Marius Hein ca4477de5b Skip Links: Add to body and create style
refs #7933
2015-02-12 13:13:47 +01:00
Thomas Gelf b5f336583f layout/body: protect containers from renderLayout
IMO this should be stripped before, this is just an additional
security measure.

refs #6935
2014-08-19 10:10:23 +02:00
Thomas Gelf 216f0f3f55 isIframe: clean up, load less html and js
We use isIframe only when we have no JS, therefore it makes no sense
to load JS files in an iFrame. Also removed sidebar.
2014-06-22 16:30:06 +02:00
Thomas Gelf 216c2ca770 Autorefresh: should work also on initial page load
fixes #6296
2014-06-21 01:54:32 +02:00
Thomas Gelf c8e2cd109e Accessibility: add roles and missing alt tag 2014-06-20 15:02:19 +02:00
Eric Lippmann 7c67a2ffff body.phtml: Remove out-commented PHP code 2014-06-06 14:36:44 +02:00
Thomas Gelf 5bd1d97f5e Use module name and more whenn rendering the body, drop module-container 2014-03-17 17:11:56 +01:00
Thomas Gelf fcd05dfe81 Improve click/site behaviour 2014-03-09 23:30:37 +01:00
Thomas Gelf 296d8c7969 Send notifications on site reload and via XHR 2014-03-07 23:15:51 +00:00
Thomas Gelf e52c2f5fb0 Set data(icingaUrl) also in the initial body 2014-03-06 09:19:48 +00:00
Thomas Gelf 715cad86d5 No more layout container handling outside of layout.phtml
* Also added a few base-targets to get rid of hard-coded JS rules
2014-03-04 10:52:37 +00:00
Thomas Gelf 57caacb93f Merge branch 'feature/fanzzzy-5481' into feature/master-1
Conflicts:
	application/controllers/AuthenticationController.php
	application/controllers/ErrorController.php
	application/views/scripts/authentication/login.phtml
	library/Icinga/Application/ApplicationBootstrap.php
	library/Icinga/Web/Controller/ActionController.php
	library/Icinga/Web/Hook.php
	library/Icinga/Web/Widget/Dashboard.php
2014-03-04 09:42:25 +00:00
Thomas Gelf a41bfcbfaf Restructure outer layout 2014-02-25 10:13:36 +00:00
Thomas Gelf 0f3f18f793 Layout restructured 2014-02-21 14:03:47 +00:00
Markus Frosch 971a87c608 Fixed executable flags on normal files.
Refs #5040
2014-02-18 09:42:13 +01:00
Marius Hein 51188daa45 Implenent TopBar hook and status summary as hook in monitoring
refs #5597
2014-02-11 17:12:17 +01:00
Eric Lippmann f96974fc79 Modules/Doc: Use Icinga\Web\Menu for the toc
refs #4820
2014-02-11 15:13:18 +01:00
Thomas Gelf 654953d9d6 New menu, still unfinished 2014-02-03 16:03:05 +00:00
Alexander Klimov b9c86ac1f5 Change copyright year to 2014 2014-01-24 12:19:18 +01:00
Eric Lippmann ca1d50ae53 Rename Icinga 2 Web to Icinga Web 2 2013-10-23 15:11:06 +02:00
Jannis Moßhammer 6d26240d6d Add Main detail state to url, renderhelper, container tests
-   The ActionController is now able to render a seperate detail view
-   All list scripts select the currently active row from the detail view with
    the 'active' class
-   Autosubmit is now again attached to the onchange attribute (to prevent issues
    when js can't load correctly)
-   Logout is now recognized and causes a page refresh (will be made more generic)
-   Add history mock for testing url changes
-   Update all grids to implement the app/mainDetailGrid component

refs #4611
2013-09-23 13:56:57 +02:00
Eric Lippmann 05d08fb0b8 Fix Bootstrap typed wrong
refs #4601
2013-09-04 17:12:44 +02:00
Jannis Moßhammer 57e66c247a Add sort widget, change js path from module to app, small style fixes
refs #4601
2013-09-04 15:22:00 +02:00
Jannis Moßhammer dc2aad75d1 Modify application templates for proper bootstrap usage
refs #4550
2013-08-23 10:27:16 +02:00
Jannis Moßhammer 1378ca9844 Remove and reorganize stylesheets, add boostrap 3
refs #4550
2013-08-23 10:27:16 +02:00