tyler.durden
/
icingaweb2
mirror of https://github.com/Icinga/icingaweb2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
14,085 Commits 117 Branches 70 Tags 80 MiB
Commit Graph

2115 Commits

Author SHA1 Message Date
Johannes Meyer 2432d055e6 Raise library requirements 2023-09-21 16:35:31 +02:00
Johannes Meyer 4a8d171aec migrations/index: Let the migrate all button submit the migration form 2023-09-19 14:37:55 +02:00
Yonas Habteab 99e8a2322d Don't render migrate button in detailed file list view 2023-09-19 14:37:55 +02:00
Yonas Habteab 26cae8b882 Rename `MigrationHook` -> `DbMigrationHook` 2023-09-19 14:37:55 +02:00
Yonas Habteab 2657f032dc Allow to automatically fix missing grants & elevalte database users 
Co-authored-by: Johannes Meyer
 2023-09-19 14:37:55 +02:00
Yonas Habteab 73b1041816 Fix phpstan claims & php code sniffer errors 2023-09-19 14:37:55 +02:00
Yonas Habteab fdadba59ca Fix form with mulitple buttons doesn't recognize whether it's been submitted 2023-09-19 14:37:55 +02:00
Yonas Habteab 1da5487066 Introduce `MigrationsController` & add pending migrations list in about view 2023-09-19 14:37:55 +02:00
Yonas Habteab a9db85ed71 Introduce `application/migrations` permission 2023-09-19 14:37:55 +02:00
Yonas Habteab faaebaeffb Forward failed requests for routes with pending migrations 2023-09-19 14:37:55 +02:00
Yonas Habteab 2daa1447b7 Introduce `MigrationForm` class 2023-09-19 14:37:55 +02:00
raviks789 91ad755759 Remove redundant gravatar in contact detail 
The gravatar for contacts was never correctly rendered in the detailed page. Hence it will be
completely removed.
 2023-09-07 13:38:02 +02:00
Sukhwinder Dhillon 8739a9da73
Fix setup wizard (#5094) 2023-09-07 13:37:10 +02:00
Eric Lippmann 1b91a93e34 Make `host` optional for `oci` database resources 
`oci` uses Zend's `Oracle` adapter, which does not use this setting at
all.
 2023-09-07 08:51:22 +02:00
Tobias Tiederle e66f76e881 configure landing page using environment variable 2023-09-07 08:49:21 +02:00
raviks789 4e8107c231 RoleForm: Replace static inline styles with css class 
The static inline style for resetriction text element is replaced with css class `role-restriction-text`
to avoid Content-Security-Policy violations.
 2023-08-28 16:40:37 +02:00
raviks789 afd2a65df6 Add `nonce` attribute to `<style>` elements 
`nonce` attribute needs to be set on the style elements to avoid CSP violations.
 2023-08-28 16:40:37 +02:00
raviks789 da1bf7048d Remove inline scripts 
Remove inline scripts present in `layout.phtml` and `logout.phtml` to prevent CSP violation.
 2023-08-28 16:40:37 +02:00
raviks789 459f4198c3 Replace static inline styles with css class 
The static inline styles are replaced with css class to avoid Content-Security-Policy violations.
 2023-08-28 16:30:12 +02:00
Yonas Habteab 3b7f054534 Initiate full page reload upon `CSP` config change 2023-08-28 12:42:32 +02:00
Eric Lippmann 0bac6cfe07 Config: Add setting to enable strict CSP 2023-08-24 16:02:06 +02:00
Yonas Habteab 55b4a5eb63 StaticController: Pass only strings to `str_pad` as first argument 2023-08-23 10:53:15 +02:00
raviks789 6353f79528 `VersionCommand`: Avoid using deprecated `${}` string interpolation 2023-08-23 10:53:15 +02:00
Sukhwinder Dhillon ee9d139a3a PhpDoc: Fix incorrect `@param` and `@return` type hints 2023-08-23 10:53:15 +02:00
Sukhwinder Dhillon 01b93024f6 CreateTicketLinks: Variable `$ticket` is always set, but can be emtpy 2023-08-23 10:53:14 +02:00
Sukhwinder Dhillon 4d3765b22f PreferenceForm: Fix `Variable '$disabled' is probably undefined` 
- Remove obsolete `value` attribute
 2023-08-23 10:53:14 +02:00
Sukhwinder Dhillon 143347634f NavigationConfigForm: Fix `Variable '$classPath' is probably undefined` 2023-08-23 10:53:14 +02:00
Sukhwinder Dhillon c501e3e2e1 AddMemberForm: Fix `Variable '$userName' is probably undefined` 2023-08-23 10:53:14 +02:00
Sukhwinder Dhillon 0198054943 CreateMembershipForm: Fix `Variable '$groupName' is probably undefined` 2023-08-23 10:53:14 +02:00
raviks789 0476046ce6 `AuthenticationController`: Use correct name case for method `AesCrypt::getIV()` 2023-08-23 10:53:14 +02:00
raviks789 89630bf0de `ResourceConfigForm`: Import class `Zend_Form_Element` 
Class `Zend_Form_Element` is the return type of the method `getForceCreationCheckBox()`. Hence the class should be imported.
 2023-08-23 10:53:14 +02:00
raviks789 2eb3b6c405 `ResourceConfigForm`: Fix return type for `edit()` and `remove()` methods 2023-08-23 10:53:14 +02:00
raviks789 eff262cafd `PreferenceForm`: Use correct number of arguments for method `Preferences::get()` 2023-08-23 10:53:14 +02:00
Johannes Meyer c40cfb41a8 RoleForm: Force a suffix for all element names 
fixes #4973
 2023-06-22 15:04:19 +02:00
Alexander A. Klimov 3784fe80b7 LoggingConfigForm: on Docker default to webserver log 2023-01-24 11:23:34 +01:00
Johannes Meyer e542982de0 Fix some reflected XSS bugs 
fixes #4979
 2023-01-12 09:55:57 +01:00
Johannes Meyer 965aac11ef RoleController: Always perform a permission check 2022-12-07 11:56:17 +01:00
Johannes Meyer ec7fb82a94 login: Don't redirect to external resources 
fixes #4945
 2022-12-07 11:54:45 +01:00
Alexander A. Klimov a3100d378b SshResourceForm: fix XSS by escaping user-defined resource name 
in the tooltip of the message shown instead of the private key.
 2022-12-01 11:35:11 +01:00
Johannes Meyer 4d0e42787a ConfigForm: Remove empty sections 
fixes #4939
 2022-11-02 16:07:53 +01:00
Johannes Meyer 5059a782a8 RoleForm: Use the `<details>` tag 2022-10-10 10:42:45 +02:00
Dirk Goetz d5d714b1ee Fix gravatar: set content-type header and size 
Fixes #2254
 2022-06-15 09:03:12 +02:00
Johannes Meyer d25854ebce Drop class `Icinga\Web\Hook\TicketHook` 2022-06-14 14:24:30 +02:00
Johannes Meyer a29159a0a1 Remove remaining IE adjustments 2022-06-13 16:41:15 +02:00
Sukhwinder Dhillon a38d5ccac6 Revert "Form: Process request parameter _frameUpload" 
This reverts commit fc481e527b.
 2022-06-13 15:50:52 +02:00
Johannes Meyer e050ea53ee RoleController: Include domain of a domain-aware backend.. 
..when suggesting user names of it
 2022-06-13 15:09:42 +02:00
Sukhwinder Dhillon 09d378ab65 ApplicationConfigForm: Remove loop and simplify the code 2022-05-27 14:02:11 +02:00
Sukhwinder Dhillon a250202fa3 ApplicationConfigForm: Remove not required Form elements 2022-05-27 14:02:11 +02:00
Sukhwinder Dhillon aad2419545 Remove obsolete `config_backend` option and not required code 
The user preferences backend is now always a `db`.
 2022-05-27 14:02:11 +02:00
Sukhwinder Dhillon 8ff1a22df7 Set preferences store type to `Db` and make it non-configurable 2022-05-27 13:55:48 +02:00