sysPass

mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-02 22:54:08 +01:00

Author	SHA1	Message	Date
RubénD	36d0c8861e	Fix/url regex (#1842 ) * fix: Tweak URL's regex to avoid XSS. Thanks to @rgavilan for the feedback! Closes #1840. Signed-off-by: Rubén D <nuxsmin@syspass.org> * chore: Update dependencies. Signed-off-by: Rubén D <nuxsmin@syspass.org> * chore: Use `ENT_QUOTES` flag for all `htmlspecialchars` calls. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-06-18 09:50:59 +02:00
RubénD	b1e7edd761	fix: Return safe url for accounts. (#1839 ) Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-06-16 08:32:21 +02:00
RubénD	4da4d03173	fix: Fix XSS on some URLs (#1832 ) * fix: Fix XSS when displaying URL on search account view. Signed-off-by: Rubén D <nuxsmin@syspass.org> * fix: Fix XSS when displaying URL on account view. Signed-off-by: Rubén D <nuxsmin@syspass.org> * fix: Fix XSS when displaying some URLs. Signed-off-by: Rubén D <nuxsmin@syspass.org> * fix: Fix XSS when displaying some URLs. Signed-off-by: Rubén D <nuxsmin@syspass.org> * chore: Bump version number. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-06-04 09:39:22 +02:00
Rubén D	e1f7374378	chore: Minor code tweaks. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-05-26 07:27:34 +02:00
Rubén D	0fb21d58ad	fix: Wrong variable syntax. Thanks to @riccimatic for the notice! Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-05-26 07:20:35 +02:00
Rubén D	ec686eec5d	fix: Prevent XSS on all output variables. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2022-05-25 07:08:47 +02:00
Rubén D	a55548f4c4	* [MOD] Update dependencies * [FIX] Fix displaying install page when the app is already installed. Thanks to @kmmndr for the notice. Closes #1629 * [FIX] Fix issue when dropping DB user after an errored installation. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2020-12-20 15:25:20 +01:00
Rubén D	749a45fd0a	* [FIX] Do not allow deleting Plugins from the UI. Thanks to @yawnbros for the feedback. Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-12-21 11:30:54 +01:00
Rubén D	a299760683	* [FIX] Wrong behavior when viewing PDF files. Thanks to @m-shirokov for the notice. Closes #1501 * [MOD] Minor code tweaks Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-12-16 00:40:02 +01:00
Rubén D	54e84f17cf	* [FIX] Wrong behavior when displaying account notes tooltip with multiple lines. Thanks to @MagikEh for the feedback. Closes #1432 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-08-23 00:15:19 +02:00
Rubén D	3f79d69336	* [FIX] Wrong URL when application URL setting is set. Thanks to @kalxasus for the notice. Closes #1395 * [MOD] Update Authenticator version in composer.json Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-07-20 23:30:47 +02:00
Rubén D	da9dc6f3ab	* [FIX] LDAP group filter wasn't applied when importing. Thanks to @twindscheif for the notice. Closes #1390 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-07-20 22:00:47 +02:00
Rubén D	98a68f47c5	* [FIX] Client custom fields were not created/saved. Thanks to @ZUNbado and @sf32738 for the notice. Closes #1375 * [MOD] Minor code tweaks Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-07-20 21:44:04 +02:00
Rubén D	b5559b52eb	* [FIX] Skip over initialization when upgrade is needed. Thanks to @Envikia and @alexseys for the notice. Closes #1355 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-07-20 20:51:28 +02:00
Rubén D	01a8339f5b	* [MOD] Display XML export download icon on demo mode Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-27 13:44:27 +02:00
Rubén D	6197c52af1	* [MOD] Update copyright date * [MOD] Code cleanup Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-27 02:48:18 +02:00
Rubén D	6e1f04ddc5	* [FIX] Wrong limit for maximum file size. Thanks to @javierlm for the feedback. Closes #1313 * [MOD] Typo in translation. Related #1313 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-27 00:39:27 +02:00
Rubén D	b8022166ba	* [FIX] Wrong behavior when disabling remote syslog * [MOD] Increase account's name length up to 100 characters long. Related #1071 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-27 00:34:13 +02:00
Rubén D	830d7839ac	* [FIX] Wrong behavior when saving LDAP server. Thanks to @lreiher for the feedback. Closes #1277 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-27 00:08:31 +02:00
Rubén D	b721eafced	* [FIX] Wrong behavior when updating user's password. Thanks to @vrdominguez for the feedback. Closes #1293 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-26 23:07:56 +02:00
Rubén D	f7c2a67c41	* [FIX] Wrong encoding in text area. Thanks to @pierrehenrymuller for the feedback. Closes #1296 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-26 21:08:52 +02:00
Rubén D	e17e80d665	* [ADD] Added search for accounts name by regular expression. Closes #1311 * [FIX] Fixed wrong behavior when search operator was set Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-25 23:20:00 +02:00
Rubén D	752d05c1c6	* [MOD] Improved logging messages * [MOD] Unlocked PHP 7.3 * [FIX] No debug messages when debug mode is activated Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-23 20:50:15 +02:00
Rubén D	28ea9a14d9	* [FIX] Fixed wrong behavior when setting password complexity length. . Thanks to @andrucha97 for the feedback. Closes #1280 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-22 00:46:24 +02:00
Rubén D	2318796c00	* [FIX] Fixed wrong behavior when searching for accounts on accounts manager. Thanks to @Weptun for the feedback. Closes #1271 * [ADD] Added missing tests * [MOD] Code cleanup Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-04-21 23:12:45 +02:00
Rubén D	5f37d466dd	* [ADD] Allow to change the account's owner and main group when the user is the account's owner. Related #705 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-24 23:32:45 +01:00
Rubén D	4e26b3918e	* [ADD] Allow to set account's owner when creating or copying the account. Related #1264 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-24 22:15:42 +01:00
Rubén D	1ec8d26e3a	* [ADD] Application URL for handling requests through reverse proxy. Thanks to @rob42 for the feedback. Closes #1218 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-24 20:48:34 +01:00
Rubén D	5e8861e42f	* [ADD] Allow to enable email notifications only for account access requests. Thanks to @jorgemfm for the feedback. Closes #1157 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-23 20:00:38 +01:00
Rubén D	7fd6df7502	* [FIX] Wrong encoding when displaying account's password. Thanks to @DDH112 for the feedback. Closes #1257 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-23 12:59:57 +01:00
Rubén D	3b14d1d030	* [FIX] Wrong behavior when copying account's tags. Thanks to @leBasti91 for the feedback. Closes #1256 * [FIX] Wrong behavior when selecting template's view * [MOD] Improved plugins availability detection and skip weird event log entries Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-23 12:43:49 +01:00
Rubén D	b859311f86	Merge branch 'v3.0' into v3.1 # Conflicts: # lib/SP/Services/Install/Installer.php	2019-02-07 20:57:16 +01:00
Rubén D	fda9466260	* [FIX] Wrong behavior when displaying profiles on item presets. Thanks to @DDH112 for the feedback. Closes #1223 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-02-07 19:54:15 +01:00
Rubén D	3ea87a4ecc	* [MOD] Improved plugins data handling by encrypting the plugin's data Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-30 00:04:05 +01:00
Rubén D	a2ecef2141	Merge branch 'master' into v3.1 # Conflicts: # .travis.yml # lib/SP/Services/Install/Installer.php	2019-01-26 13:12:28 +01:00
Rubén D	26261c0789	* [FIX] Wrong behavior when importing CSV. Thanks to @hoboristi for the feedback. Closes #1211 * [FIX] Wrong behavior when displaying passwords with scpecial characters. Thanks to @opeshm for the feedback. Closes #1207 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-26 12:00:29 +01:00
Rubén D	a65d261ba8	* [FIX] Fixed wrong behavior when session is timed out Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-26 11:25:25 +01:00
Rubén D	221005f9f8	* [FIX] Upgrade not needed when updating between v3 releases. Thanks to @vmarion89 for the feedback. Closes #1210	2019-01-24 14:24:49 +01:00
Rubén D	e90efd3759	* [FIX] Upgrade not needed when updating between v3 releases. Thanks to @vmarion89 for the feedback. Closes #1210	2019-01-24 14:13:34 +01:00
Rubén D	12c37790e8	* [FIX] Wrong behavior when clicking on sysPass top-left logo. Thanks to @pierrehenrymuller for the feedback. Related #1209	2019-01-24 11:55:51 +01:00
Rubén D	ccc7ce9cfa	Merge branch '3.0' into v3.0 Conflicts: app/modules/web/Controllers/Helpers/Grid/EventlogGrid.php app/modules/web/Controllers/Helpers/Grid/TrackGrid.php public/js/app-actions.js public/js/app-actions.min.js	2019-01-24 11:39:28 +01:00
Rubén D	75dc0190a8	Merge branch 'master' into v3.0	2019-01-24 11:15:26 +01:00
Rubén D	006a4a970c	* [MOD] Display additional information about internal versions	2019-01-24 11:13:47 +01:00
Rubén D	0a34ec61f4	* [FIX] Wrong behavior when upgrading custom fields, public links and API tokens from v2	2019-01-24 11:04:58 +01:00
Rubén D	0fbaccf8a1	* [MOD] Improved plugins handling by moving items' data to new database table. * [MOD] Added plugins upgrade process Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-22 01:18:03 +01:00
Rubén D	5dcc450326	* [MOD] Bump version&build numbers * [FIX] Wrong behavior when setting security token on log/audit module. Thanks to @schleyk for the feedback. Closes #1182 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-20 12:06:39 +01:00
Rubén D	1cd6eb0f89	* [FIX] Wrong behavior when logging in using Authenticator plugin. Redirection was wrong when using URI sub-path * [MOD] Minor UI tweaks Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-20 11:23:30 +01:00
Rubén D	f1d9230554	* [FIX] Wrong behavior when checking saved search filters in context. Thanks to @fprina for the feedback. Related #1178 Signed-off-by: Rubén D <nuxsmin@syspass.org>	2019-01-19 09:38:54 +01:00
Rubén D	535b799662	* [FIX] Wrong behavior when refreshing data from event log or tracks management. Thanks to @schleyk for the feedback. Closes #1182 * [MOD] Improved config loading	2019-01-16 09:07:24 +01:00
Rubén D	79e25917bd	* [FIX] Forced string type juggling for custom fields data. Thanks to @sem174 for the feedback. Closes #1195	2019-01-15 18:07:40 +01:00

1 2 3 4 5 ...

303 Commits