57f587a78b
Allow book, shelf, settings & profile form input validation to skip image
2020-03-04 00:17:53 +01:00
d3737d5a87
Remove redundant getImageValidationRules method
2020-03-04 00:17:49 +01:00
5cd56f63ff
Change check to verify that request is present and contains a file
2020-03-04 00:17:45 +01:00
1859c7917f
added api functionality to handle book Shelves
2020-02-23 11:41:49 +06:00
01b95d91ba
Fixed side-effect in binary LDAP handling
...
- Was not stripping prefix when sending value to LDAP server in search.
- Updated test to cover.
2020-02-15 22:35:15 +00:00
29cc35a304
Added dump_user_details option to LDAP and added binary attribute decode option
...
Related to #1872
2020-02-15 20:31:23 +00:00
6caedc7a37
Fixed issues preventing breadcrumb navigation menus from opening
...
- Added tests to cover endpoint
Fixes #1884
2020-02-15 19:09:33 +00:00
5978d9a0d3
Updated cover image methods so image parameter is not optional but still nullable
2020-02-15 18:38:36 +00:00
98ab3c1ffb
Merge branch 'new_bookshelf_cover_fix' of git://github.com/TBK/BookStack into TBK-new_bookshelf_cover_fix
2020-02-15 18:34:45 +00:00
ccd50fe918
Aligned export styles a little better and fixed potential DOMPDF css error
...
- Removed different PDF template used on pages.
- Updated export view files to have the intended format passed.
- Shared the export CSS amoung the export templates.
Should hopefully address #1886
2020-02-15 15:34:06 +00:00
14363edb73
Fixed LDAP error thrown by not found user details
...
- Added testing to cover.
Related to #1876
2020-02-15 14:44:36 +00:00
49386b42da
Updated email test send to show error on failure
...
- Added test to cover
- Closes #1874
2020-02-15 14:13:15 +00:00
9533e0646e
Fix for missing cover on create new shelf
2020-02-14 20:33:07 +01:00
c1fe81466f
Fixed 'interaction_required' response for azure
...
Azure Conditional Access policy 2FA returns 'interaction_required' 400 response https://github.com/SocialiteProviders/Providers/issues/208
2020-02-12 15:03:55 +01:00
12a9a45747
Log failed accesses
2020-02-09 10:01:33 +01:00
9d77cca734
Cleaned setting section redirect path
2020-02-02 17:57:21 +00:00
b4f2b73590
Updated settings-save action to return to the same section
2020-02-02 17:35:16 +00:00
3991fbe726
Checked over and aligned registration option behavior across all auth options
...
- Added tests to cover
2020-02-02 17:31:00 +00:00
e6c6de0848
Simplified guard names and rolled out guard route checks
...
- Included tests to cover for LDAP and SAML
- Updated wording for external auth id option.
- Updated 'assertPermissionError' test case to be usable in BrowserKitTests
2020-02-02 13:10:21 +00:00
5d08ec3cef
Fixed failing tests caused by auth changes
2020-02-02 12:00:41 +00:00
e743cd3f60
Added files missed in previous commit
2020-02-02 10:59:03 +00:00
3470a6a140
Aligned SAML2 system with LDAP implementation in terms of guards and UI
2020-02-01 16:11:56 +00:00
7728931f15
Set more appropriate login validation and broken up LDAP guide a bit
2020-02-01 14:30:23 +00:00
575b85021d
Started alignment of auth services
...
- Removed LDAP specific logic from login controller, placed in Guard.
- Created safer base user provider for ldap login, to be used for SAML
soon.
- Moved LDAP auth work from user provider to guard.
2020-02-01 11:42:22 +00:00
92690d1ae9
Moved socal auth routes to their own controller
...
Also cleaned some phpdocs and extracted register actions to their own
service.
2020-01-26 14:42:50 +00:00
5ff89a1abb
Added danish to language arrays
2020-01-18 16:10:16 +00:00
be554b9c79
Added configurable API throttling, Handled API errors standardly
2020-01-18 15:03:28 +00:00
b9fb655b60
Added "Getting Started" API docs
2020-01-18 14:03:11 +00:00
8016f1121e
Refined docs view, Added example requests
2020-01-18 09:48:30 +00:00
45b5e631e2
Added a view for the API docs
2020-01-15 20:18:02 +00:00
bed2498667
Started work on generating API docs
2020-01-12 16:25:14 +00:00
04a8614136
Filled out base Book API endpoints, added example responses
2020-01-12 14:45:54 +00:00
a8595d8aaf
Fixed test class names + add perm. check to api session auth
2020-01-01 17:01:36 +00:00
a7a97a53f1
Added API listing filtering & cleaned ApiAuthenticate returns
...
API listing endpoint filter can be found via &filter[name]=my+book query
parameters. There are a range of operators that can be used such as
&filter[id:gte]=4
2020-01-01 16:33:47 +00:00
3cacda6762
Added expiry checking to API token auth
...
- Added test to cover to ensure its checked going forward
2019-12-30 19:51:41 +00:00
3d11cba223
Added testing coverage to API token auth
2019-12-30 19:42:46 +00:00
6f1b88a6a6
Change email confirmation from own middle to trait
...
Email confirmation middleware caused more mess than good, As caused
priority issues and it depended on auth actions. Instead its now a trai
used on auth middlewares.
Also used 'EncryptCookies' middleware on API instead of custom
decryption in custom middleware since we'd need to do replicate all the
same actions anyway. Shouldn't have too much effect since it only
actions over cookies that exist, of which none should be there for most
API requests.
Also split out some large guard functions to be a little more readable
and appease codeclimate.
2019-12-30 15:49:20 +00:00
349b4629be
Extracted API auth into guard
...
Also implemented more elegant solution to allowing session auth for API
routes; A new 'StartSessionIfCookieExists' middleware, which wraps the
default 'StartSession' middleware will run for API routes which only
sets up the session if a session cookie is found on the request. Also
decrypts only the session cookie.
Also cleaned some TokenController codeclimate warnings.
2019-12-30 14:51:28 +00:00
3de55ee645
Linked new API token system into middleware
...
Base logic in place but needs review and refactor to see if can better
fit into Laravel using 'Guard' system. Currently has issues due to
cookies in use from active session on API.
2019-12-30 02:16:07 +00:00
80a50f1ecb
added rtl support for hebrew + added to localMap
2019-12-29 23:06:54 +02:00
23ad8024ec
resolved conflict
2019-12-29 23:03:10 +02:00
da03e34c67
added he locale to configuration
2019-12-29 23:01:45 +02:00
2cfa37399c
Fixed some empty-expiry conditions of token ui flows
2019-12-29 20:18:37 +00:00
692fc46c7d
Removed token 'client' text, avoid confusion w/ oAuth
...
- Instead have a token_id and a secret.
- Displayed a 'Token ID' and 'Token Secret'.
2019-12-29 20:07:28 +00:00
832fbd65af
Added testing coverage to user API token interfaces
2019-12-29 19:46:46 +00:00
dccb279c84
Built out interfaces & endpoints for API token managment
2019-12-29 17:03:52 +00:00
d336ba6874
Started work on API token controls
...
- Added access-api permission.
- Started user profile UI work.
- Created database table and model for tokens.
- Fixed incorrect templates down migration :(
2019-12-29 13:02:26 +00:00
04137e7c98
Started core API route work
2019-12-28 14:58:07 +00:00
6f9cad2106
Merge pull request #1793 from abublihi/master
...
Fix An Exception
2019-12-27 16:52:07 +00:00
e06f9f7fe3
Removed setting override system due to confusing behaviour
...
- Was only used to disable registration when LDAP was enabled.
- Caused saved option not to show on settings page causing confusion.
- Extended setting logic where used to take ldap into account instead of
global override.
- Added warning on setting page to show registration enable setting is
not used while ldap is active.
For #1541
2019-12-22 13:19:17 +00:00
32e7f0a2e6
Made display thumbnail generation use original data if smaller
...
Thumbnail generation would sometimes create a file larger than the
original, if the original was already well optimized, therefore making
the thumbnail counter-productive. This change compares the sizes of the
original and the generated thumbnail, and uses the smaller of the two if
the thumbnail does not change the aspect ratio of the image.
Fixes #1751
2019-12-22 12:44:49 +00:00
f9fa6904b9
Made LDAP auth ID attribute configurable
...
- Allows the field that gets stored as the "External Authentication ID"
to be configurable. Defined as LDAP_ID_ATTRIBUTE=uid in .env.
- Added test to cover usage.
- Also now auto-lowercases when searching for attributes in LDAP
response since PHP always provides them as lower case.
Closes #592 .
2019-12-16 12:40:21 +00:00
017703ff1a
Updated page delete to return to chapter if within one
...
- Added test to cover
Closes #1715
2019-12-16 11:54:53 +00:00
afa501e75b
Recall previous route when manually clicking login
2019-12-14 08:41:22 +01:00
02af69ddf2
Added command to copy shelf permissions
...
Has options to run for all or to specify a slug for a specific shelf.
Closes #1091
2019-12-11 21:22:03 +00:00
615a050856
Merge branch 'settings-color-selector' of git://github.com/james-geiger/BookStack into james-geiger-settings-color-selector
2019-12-07 20:36:39 +00:00
23a716a3ac
Fix "Declaration of Middleware\TrustProxies::handle should be compatible with Fideloper\Proxy\TrustProxies::handle"
2019-11-20 14:00:20 +03:00
c33ef4b9b2
Added tests to cover saml and added controller middleware
2019-11-17 19:15:37 +00:00
ebb3724892
Added onelogin attribution and tweaks after testing saml with onelogin
2019-11-17 17:00:42 +00:00
6d899f3b17
Added icon for saml, added saml to register page, updated complete env
2019-11-17 16:07:06 +00:00
aef6eb81e4
Added SAML singleLogoutService capabilities
2019-11-17 15:40:36 +00:00
488325f459
Added the ability to auto-load config from metadata url
2019-11-17 14:44:26 +00:00
3a17ba2cb9
Started using OneLogin SAML lib directly
...
- Aligned and formatted config options.
- Provided way to override onelogin lib options if required.
- Added endpoints in core bookstack routes.
- Provided way to debug details provided by idp and formatted by
bookstack.
- Started on test work
- Handled case of email address already in use.
2019-11-17 13:26:43 +00:00
9bba84684f
Appeased codeclimate by extracting out external_auth_id group matching
2019-11-16 15:24:09 +00:00
8169c725d5
Started review of SAML implementation
...
- Updated PHPdoc of SAML service to use type hinting instead.
- Updated groups to only sync if enabled.
- Updated names of some config props.
- Removed a couple of unused config props.
- Added exception to handle no email on SAML response.
2019-11-16 14:42:51 +00:00
bb1f43cbd8
Merge branch 'feature/saml' of git://github.com/Xiphoseer/BookStack into Xiphoseer-feature/saml
2019-11-16 12:42:45 +00:00
6cd26e23a8
Allow toggling between grid and list view in shelf view (shelves.show)
2019-10-30 11:23:42 +01:00
189a598d56
Merge branch 'master' of github.com:BookStackApp/BookStack
2019-10-29 22:34:12 +00:00
d64c358c4f
Updated sort logic to handle chapter to book scenario
...
- Extended tests out to cover
2019-10-29 22:33:09 +00:00
e108808a32
Merge branch 'feature_move_page_into_chapter' of git://github.com/philjak/BookStack into philjak-feature_move_page_into_chapter
2019-10-29 22:26:11 +00:00
bea983ab85
Download and assign avatar when creating LDAP user in database. Fixes issue #1161
2019-10-29 22:18:02 +00:00
7368ff3e6a
No need to save page
2019-10-28 16:53:48 +01:00
4daeb9daa6
Check if parent is a chapter. If so, move into Book and assing page to chapter.
2019-10-28 15:33:28 +01:00
e26474f233
Merge branch 'feature_bugfix_save_book_cover' of git://github.com/philjak/BookStack into philjak-feature_bugfix_save_book_cover
2019-10-27 17:03:02 +00:00
4763b899b6
Made it possible to override translations via theme system
2019-10-26 18:07:14 +01:00
a2370f7c9d
Merge branch 'feature-send-test-email' of git://github.com/timoschwarzer/BookStack into timoschwarzer-feature-send-test-email
2019-10-23 19:53:51 +01:00
bc38fd3ac4
entity needs to be saved after image upload and associate
2019-10-22 11:18:08 +02:00
f37131a5bf
Removed old Translation Service + Provider
...
Was no longer needed due to only being there to perform
language extension for de_informal but now this is done by crowdin
instead so it's redundant. Same goes for checking and formatting
scripts.
Also removed comment advising deletion form settings.php language list
since this is now auto-copied to languages anyway.
Related to #1261
2019-10-19 00:04:49 +01:00
f1d7699df5
Updated Korean to be correct country code
2019-10-18 14:27:41 +01:00
e6fe299c4f
added additional color settings into UI
...
Adds new options in the customization section of the settings to change the shelf, book, chapter, page, and draft colors.
2019-10-17 13:46:18 -05:00
df98deb59d
Added Turkish to locale system
2019-10-17 14:01:19 +01:00
61a9139bf0
Add feature to send test e-mails
2019-10-16 08:24:33 +02:00
31f5786e01
Entity Repo & Controller Refactor ( #1690 )
...
* Started mass-refactoring of the current entity repos
* Rewrote book tree logic
- Now does two simple queries instead of one really complex one.
- Extracted logic into its own class.
- Remove model-level akward union field listing.
- Logic now more readable than being large separate query and
compilation functions.
* Extracted and split book sort logic
* Finished up Book controller/repo organisation
* Refactored bookshelves controllers and repo parts
* Fixed issues found via phpunit
* Refactored Chapter controller
* Updated Chapter export controller
* Started Page controller/repo refactor
* Refactored another chunk of PageController
* Completed initial pagecontroller refactor pass
* Fixed tests and continued reduction of old repos
* Removed old page remove and further reduced entity repo
* Removed old entity repo, split out page controller
* Ran phpcbf and split out some page content methods
* Tidied up some EntityProvider elements
* Fixed issued caused by viewservice change
2019-10-05 12:55:01 +01:00
4ad4dfa55a
Show bookshelves that a book belongs to on a book view
...
Closes #1598
2019-09-27 00:45:22 +01:00
7cd956b24b
Removed some unused parameters and fixed env test logic
2019-09-20 01:18:59 +01:00
8b550991a4
Refactored some core entity actions
...
- Created BookChild class to share some page/chapter logic.
- Gave entities the power to generate their own permissions and slugs.
- Moved bits out of BaseController constructor since it was overly
sticky.
- Moved slug generation logic into its own class.
- Created a facade for permissions due to high use.
- Fixed failing test issues from last commits
2019-09-20 00:18:28 +01:00
f7a5a0705b
Moved shelf book append logic
2019-09-19 18:20:09 +01:00
615b2de433
Simplified activity facade interface
...
Also cleaned up any other bits along the way.
2019-09-19 18:03:17 +01:00
2a2cc858f0
Refactored notification showing and global view data
2019-09-19 15:12:10 +01:00
60d0f96cd7
Extracted some methods into a BookRepo
2019-09-15 23:28:23 +01:00
d28abf24d4
Split out export actions into own controllers
2019-09-15 22:33:27 +01:00
3281925375
Standardised how request is injected into controller methods
...
Puts it in-line with how Laravel recommend.
2019-09-15 18:53:30 +01:00
be08dc1588
Ran phpcbf and updated helpers typehinting
2019-09-15 18:29:51 +01:00
b1566099a3
Added laravel stats package and enabled debugbar models
2019-09-15 18:07:00 +01:00
cbf9d701af
Updated to laravel 6
2019-09-14 14:12:39 +01:00
140298bd96
Updated to Laravel 5.8
2019-09-13 23:58:40 +01:00
6917ea088f
Upgraded app to Laravel 5.7
2019-09-06 23:36:16 +01:00
213e9d2941
Upgraded to Laravel 5.6
2019-09-06 22:14:39 +01:00
7a4425473b
Fixed URL gen issue causing incorrect scheme to be used
...
For #1613
2019-09-01 12:07:51 +01:00
7cc17934a8
Made MD editor display a sandboxed iframe
...
- Also added escaping of srcdoc elements in escape logic.
Related to #1531
2019-08-26 12:16:50 +01:00
9fbef8cd1b
Re-orged readme and added a11y info
...
- Also tweaked default theme color a tad to better fit in Level A
standard.
2019-08-25 16:19:56 +01:00
ae93a6ed07
Converted primary color use to css variable
...
- Removed all existing SCSS usage of primary color.
- Cut down custom styles injection to just be css vars.
- Reduced button styles so default button is primary.
- Updated button styles to lighten/brighten on hover & active states even
when a custom color is set.
- Removed unused scss color vars.
- Updated default BookStack blue to achieve better accessibility.
2019-08-25 12:40:04 +01:00
b27a5c7fb8
Made a mass of accessibility improvements
...
- Changed default focus styles
- Updated dropdowns with keyboard navigation
- Updated modals with esc exiting
- Added accessibility attirbutes where needed
- Made many more elements focusable
- Updated hover effects of many items to also apply when focused within
Related to #1320 and #1198
2019-08-24 18:29:02 +01:00
666213a4d4
Removed html dir tag for now, Updated lang format
2019-08-18 18:57:35 +01:00
3acea12f1c
Merge branch 'unicode' of git://github.com/kostasdizas/BookStack into kostasdizas-unicode
2019-08-18 18:51:20 +01:00
eab0ca9648
Covered new invite system with testing
...
Closes #316
2019-08-18 13:55:28 +01:00
42d8548960
Finished new user invite flow
2019-08-18 13:11:30 +01:00
e5155a5dcb
Refactored confirm actions to their own controller
2019-08-18 10:47:59 +01:00
44330bdd24
Start user invite system
2019-08-17 15:52:33 +01:00
20c36d58a6
Merge pull request #1527 from BookStackApp/129-page-templates
...
Page Templates Implementation
2019-08-11 20:21:17 +01:00
de3e9ab094
Added ability to use templates
...
- Added replace, append and prepend actions for template content into
both the WYSIWYG editor and markdown editor.
- Added further testing to cover.
2019-08-11 20:04:43 +01:00
8e723f10dc
Add error messages, fix LDAP error
2019-08-07 15:31:10 +02:00
03dbe32f99
Refactor for codestyle
2019-08-07 12:07:21 +02:00
bda0082461
Add login and automatic registration; Prepare Group sync
2019-08-06 23:42:46 +02:00
421dd93ffd
Merge branch 'v0.26'
2019-08-06 21:50:56 +01:00
f417675b1d
Prevented normal users from changing own email
...
To address #1542
Updates to only allow email changes by users with the users-manage role
permission.
2019-08-06 21:29:42 +01:00
2955f414dd
Added iframe JS and data url escaping
...
Related to #1531
2019-08-06 21:08:24 +01:00
3c41b15be6
Initial work on SAML integration
2019-08-05 20:06:39 +02:00
2ebbc6b658
Merge branch 'master' into 129-page-templates
2019-08-04 16:26:38 +01:00
83ef086470
Added missing locale option
2019-08-04 16:10:04 +01:00
71ebb9df8b
Removed unused config item
...
Left in by mistake during development
2019-08-04 14:41:08 +01:00
4b0c4e621a
Replaced use of custom 'baseUrl' helper with 'url'
...
Also changed up how base URL setting was being done
by manipulating incoming request URLs instead of
altering then on generation.
2019-08-04 14:26:39 +01:00
30da105812
Started refactor of URL system to better extend Laravel
2019-07-21 21:32:08 +01:00
1e7df28238
Set export service to set correct svg image mimetype
...
For #1538
2019-07-17 22:37:19 +01:00
8fcb0e6820
Merge branch 'v0.26'
2019-07-10 20:30:36 +01:00
c732970f6e
Hardened page content script escaping
...
Increased range of tests to cover.
Fixes #1531
2019-07-10 20:17:22 +01:00
71167426bb
Started implementation of page template
2019-07-07 13:45:46 +01:00
15c39c1976
Updated JS translations to be inserted from back-end
...
Removes old awkward JS translations endpoint.
New system still a little akward in code but not now in process.
Also extracted out page editors into their own files.
Closes #1258
2019-07-06 14:52:25 +01:00
97fdfa6ebe
Moved config dir into app dir
...
Closes #1506
2019-07-06 13:44:50 +01:00
762d1d7595
Allowed different storage types for images and attachments
...
- Added new env and config vars to allow this.
- Also added tests for awkward config logic including fallback for new
env vars.
Closes #1302
2019-06-23 16:01:15 +01:00
f08668706f
Updated page-nav to show more title content
...
Will now be truncated using CSS instead of being truncated on PHP side.
Closes #1206 .
2019-06-16 12:08:07 +01:00
fbb2b7ac6a
Updated page nav header shift logic to be accurate
...
Added tests to cover.
Fixes #542
2019-06-16 11:32:38 +01:00
86f56dd22b
Added locale and text direction to html templates
2019-06-11 23:01:08 +01:00
282c45f088
Updated roadmap & dev version, removed dupe locale mappings
2019-06-11 22:45:41 +01:00
3ad1b42a74
Updated page delete to handle inactive custom homepage correctly
...
Fixes #1447
2019-05-27 12:40:19 +01:00
13c0386e84
Updated string functions to use mulitbyte versions where needed
...
Fixes #816
2019-05-25 16:15:19 +01:00
8ae35f645a
Fixed faulty baseUrl rewrites
...
Fixes #1452
May help #1377
2019-05-19 16:25:05 +01:00
0a0ceb382e
Doubled image upload display thumb size
...
Related to #1108
2019-05-19 14:52:17 +01:00
896f88174a
Updated page navigation logic to ignore empty headers
...
Fixes #1429
2019-05-15 21:02:11 +01:00
d62d2384cb
Updated guest settings system to format value as per non-guest
...
Fixes #1431
2019-05-07 22:56:48 +01:00
97ffbaa740
Fixed issue where books titles could be leaked via shelf home view
...
- Also added test to cover
Fixes #1425
2019-05-07 22:42:48 +01:00
ba09dad1fe
Fixed shelf activity display & updated book sort operation
2019-05-05 15:54:22 +01:00
3f83c548f8
Ran phpcbf
2019-05-05 14:54:37 +01:00
ad542f0407
Prevented potential inline JS event usage
...
- Removes 'on*' attributes from elements.
- Also updated script logic to remove scripts instead of escaping.
- All JS injection removal now uses DomDocument + xpath parsing.
2019-05-05 13:53:37 +01:00
8c190324ac
Updated existing image tests to reflect changes
...
- Also added some new tests
2019-05-04 18:11:19 +01:00
79f6dc00a3
Change image-selector to not use manager
...
- Now changes the images directly for user, system & cover.
- Extra permission checks added to edit & delete actions.
2019-05-04 15:50:29 +01:00
cb832a2c10
Started diversion to not using image manager for cover/system/user
2019-04-27 14:55:23 +01:00
a87ae16010
Started extraction of image controller to separate controllers
2019-04-27 14:18:00 +01:00
aeb1fc4d49
Started rewriting back-end image managment
2019-04-21 15:52:29 +01:00
4e49d06182
Merge branch 'fix/registraion-form-validation' of git://github.com/cw1998/BookStack into cw1998-fix/registraion-form-validation
2019-04-21 12:24:39 +01:00
2bb06463d5
Added deeper content id de-duplication
...
Closes #1393
2019-04-21 12:22:41 +01:00
6c66a8935a
Added test to check page HTML id de-duplication
...
Relates to #1393
2019-04-20 13:01:56 +01:00
c24764018a
Updated ldap server option parsing to work with protocol and port
...
- Aligns with PHP behaviour where ports is ignore for full LDAP URI.
- Added tests to check format being passed to LDAP is as expected.
- May be related to #1220
- Related to #1386 and #1278
2019-04-16 22:47:53 +01:00
c8cf6731e2
Add min length validation on name on register form & add sign up link
2019-04-16 12:18:51 +01:00
c380c10d54
Prevented bad duplicate IDs causing major exception
...
Related to #1393
2019-04-15 21:20:32 +01:00
7f3f6e65b9
Aligned item creation wording and updated shelf-book-add logic
2019-04-15 20:45:04 +01:00
d3cd369247
Fix phpcs issues
2019-04-15 09:27:17 +01:00
faa3a8b842
Add button to add a book directly from a shelf view
2019-04-15 09:27:17 +01:00
ee58bea8b7
Updated user references to be app-default-supporting functions
2019-04-14 13:19:33 +01:00
9406b4d4c9
Updated view toggle to store date
...
Also added test for user list order preferences
2019-04-14 13:01:51 +01:00
b12ae6d11b
Added bookshelves to breadcrumbs
...
- Updated breadcrumb dropdown switchers and back-end sibling code to handle new breadcrumbs.
- Added breadcrumb view composer and EntityContext system to mangage
tracking if in the context of a bookshelf.
2019-04-07 18:28:11 +01:00
221a483b40
Standardised view referencing to dot-notation
2019-04-07 12:00:09 +01:00
0a06e2bce3
Actioned some todo items, Cleaned old grid css
2019-04-07 09:57:48 +01:00
d9cde4123d
Fixed entity excerpt function signature misalignment
2019-04-06 18:47:27 +01:00
7cda9b026e
Updated tests to suit layout changes, Updated 404 page
...
- Also replaced 'or' usage in templates with null coalescing operator
2019-04-06 18:36:17 +01:00
745a0bb98d
Updated custom homepage views
2019-04-06 17:31:59 +01:00
aedff7dc6d
Added book selector to books sort
...
Now more efficient rather than listing all books in the system.
2019-04-06 16:59:04 +01:00
17969c0bbf
Added shelves and search shortcuts to profile page
2019-04-06 16:21:20 +01:00
37bf7f11e4
Implemented new design in entity selector
...
- Also showed entity path in search.
- Cleaned popular entity fetch logic.
- Cleaned entity selector JS code a little
2019-03-30 16:54:15 +00:00
53a26a365c
Merge branch 'master' into 2019-design
2019-03-30 13:17:29 +00:00
193e2ffebe
Prevent dbl exts. on img upload, Randomized attachment upload names
2019-03-24 19:08:21 +00:00
f5fe524e6c
Added extension whitelist for image uploads
...
- A continuation of the security issues addressed in v0.25.3
2019-03-21 19:43:15 +00:00
37b91b6b0e
Hardened image file validation by removing custom validation
...
- Added test to check PHP files cannot be uploaded as an image.
2019-03-20 23:59:55 +00:00
8b7bee7c67
Updated standard entity lists
2019-03-17 15:07:03 +00:00
5f2d226f09
Merge branch 'master' into 2019-design
2019-03-10 21:40:02 +00:00
44c537de1a
Performed some LDAP service/test cleanup
2019-03-10 10:54:19 +00:00
6bccf0e64a
Merge branch 'feature-ldap-attributes' of git://github.com/dfanara/BookStack into dfanara-feature-ldap-attributes
2019-03-10 10:31:09 +00:00
042a6f9760
Updated shelf menu item to show on custom permission
...
- Extended new 'userCanOnAny' helper to take a entity class for
filtering.
Closes #1201
2019-03-09 21:15:45 +00:00
5c9b528517
Abstracted userCanCreatePage helper to work for any permisison
...
- Added test to cover scenario where someone with create-own permission
would want to copy a viewable item into a container entity that they
own.
2019-03-09 16:50:22 +00:00
6be2d3f28c
Merge branch 'Copy-For-View-Only' of git://github.com/mark-james/BookStack into mark-james-Copy-For-View-Only
2019-03-09 16:12:12 +00:00
502ea608bf
Issue #1306 - Unit Tests for LdapService Changes
2019-03-09 01:08:49 -05:00
55b07c7076
Issue #1306 - Specify display name attribute from LDAP
2019-03-08 23:55:11 -05:00
98a4359198
Updated user language select to use correct default
...
- Updated localisation system to take note of system defaul locale
before replacing the current locale
Fixes #1316
2019-03-07 21:09:23 +00:00
035a0d8efb
Added experimental breadcrumb traversal
2019-02-24 15:57:35 +00:00
f1e571a57c
Made shelf listing more unique & efficient
...
- Now includes listing of all books within.
2019-02-16 17:13:01 +00:00
a112c11df8
Re-ordered and updated main settings page
2019-02-16 14:17:35 +00:00
3286f29a61
Merge branch 'master' into 2019-design
2019-02-09 14:58:38 +00:00
5325870271
Updated auth pages to new design, Removed public layout
2019-02-03 17:34:15 +00:00
138f5d5c4f
Updated user and shelf views to new design
2019-02-03 13:45:45 +00:00
20988962fe
Migrated a whole load more page/chapter/shelf views
2019-02-02 11:41:41 +00:00
32603362a6
Updated a bunch of book views
2019-01-31 20:37:12 +00:00
5ef0992d5b
PHPCS related fixes.
2019-01-27 15:59:23 +05:30
36424a24b5
Added ability for date format strings to be localized by back-end
...
Requires the locale to be installed on the system-side.
Closes #1214
2019-01-19 12:11:18 +00:00
0efed43389
Converted more views to new layout and made breadcrumbs more flexible
2019-01-13 15:54:55 +00:00
163a57cf70
Merge branch 'master' into 2019-design
2019-01-13 14:10:27 +00:00
0e0a17cc30
Prevented page text content includes
...
Avoids possible permission issues where included content shown in search or preview
where the user would not normally have permission to view the included content.
Closes #1178
2019-01-05 17:18:40 +00:00
a2087fe3ff
Made delete permissions a requirement for move operations
...
Closes #1200
2019-01-05 14:39:40 +00:00
19770d2792
Use joint_permissions to determine is a user has an available page or chapter to copy.
2019-01-02 16:55:28 +11:00
99c6d70c51
Initial updates to allow for page copy when the user can read the page but can't update it.
2018-12-31 17:01:49 +11:00
2317bf2350
Added check for last admin on role change
...
Will show error message if last admin and admin role is removed.
Closes #1124
Also cleaned up user controller a little.
2018-12-30 16:11:58 +00:00
68017e2553
Added testing for avatar fetching systems & config
...
Abstracts imageservice http interaction.
Closes #1193
2018-12-23 15:34:38 +00:00
b56fc21aaf
Abstracted user avatar fetching away from gravatar
...
Still uses gravatar as a default.
Updated URL placeholders to follow LDAP format.
Potential breaking config change: `GRAVATAR=false` replaced by `AVATAR_URL=false`
Builds upon #1111
2018-12-22 19:29:19 +00:00
d673bf61c2
Merge branch 'custom-avatar-provider' of git://github.com/Vinrobot/BookStack into Vinrobot-custom-avatar-provider
2018-12-22 18:18:14 +00:00
7c8edf5673
Merge pull request #1096 from christophert/add-ldaptlsinsecure
...
Add option to disable LDAPS Certificate Validation
2018-12-22 16:38:50 +00:00
26ec1cc3dc
Added proper escaping to LDAP filter operations
...
To cover #1163
2018-12-20 20:04:09 +00:00
7f6929d716
Re-enabled plaintext view for email notifications
...
Updated mail notifications to set the HTML and plaintext views since before
no plaintext version was being created.
Closes #1182
2018-12-16 20:44:57 +00:00
323bff7d6d
Extended translations system for arrays & extension
...
Extended the base Laravel translation system to
allow a locale to be based upon another.
Also adds functionality to take base & fallback locales into account when fetching
an array of translations.
Related to work done in #1159
2018-12-12 20:46:27 +00:00
4c574c22a8
Implemented functionality to make books sort function
...
Also changed public user settings to be stored in session rather than DB.
Cleaned existing list view type logic.
2018-12-07 18:33:53 +00:00
4a872012c5
Merge branch 'master' into 2019-design
2018-11-11 11:44:35 +00:00
5e6c039b08
Added config to change Gravatar URL
2018-11-10 16:11:11 +01:00
178b5af83a
Added google select_account test
...
Also cleaned the function naming a little to be more descriptive of the
work they do.
2018-11-10 14:52:43 +00:00
4be0c567cc
Merge pull request #1063 from justein230/master
...
Add select account parameter for google authorization
2018-11-10 14:32:28 +00:00
038b2418f7
Fixed baseURL helper when no app url is set
...
Also cleaned variable naming to be more obvious
2018-11-09 21:29:30 +00:00
2ca8038df2
Removed return from documentation for function redirectToSocialProvider
2018-11-04 11:07:04 -08:00
89de328439
Merge branch 'master' of https://github.com/BookStackApp/BookStack
2018-11-04 11:04:30 -08:00
c37e73b626
Moved redirect functionality back to start register and log in functions
2018-11-04 10:48:55 -08:00
0283ab11b5
Added function for redirect with parameters for Socialite
2018-11-04 10:40:06 -08:00
ffc1aa873e
Merge branch 'v0.24-dev'
2018-11-04 15:36:40 +00:00
19b7093438
Fixed redirect issue when custom app url in use
...
Fixes #956 & #1048
Also added tests to cover this url logic.
Also removed debugbar during tests to maybe improve test speed.
2018-11-04 15:18:27 +00:00
8e7f703af7
fix how the option is set, change handle to NULL
2018-10-27 16:58:10 -04:00
6c14c09880
Add ability to disable LDAP certificate validation
2018-10-27 16:14:19 -04:00
89be30ff0e
Started on a design update
...
- Added base of new grid system.
- Added new margin/padding/visiblity helpers.
- Made header collapse to overflow menu on mobile.
2018-10-16 18:49:56 +01:00
216358c6e4
Added Google select account functionality to login
2018-10-13 15:14:06 -07:00
57d99130ee
Added environment variable for google select account option.
2018-10-13 14:50:58 -07:00
79afec9737
Revert "Added else clause"
...
This reverts commit 77d7f764f1
2018-10-13 14:31:29 -07:00
85f330c79a
Extracted many page-specific repo methods into page-specific repo
2018-10-13 11:27:55 +01:00
77d7f764f1
Added else clause
2018-10-12 22:50:02 -07:00
a76599bd2a
Add select account parameter for google authorization
...
Useful for choosing an account if a default account is outside the scope of a G Suite organization.
2018-10-12 11:52:13 -07:00
495d18814a
Updated various classes to take EntityProvider instead of separate entities
2018-09-25 18:00:40 +01:00
257a5a23ec
Fleshed out entity provided and optimized imports
2018-09-25 16:58:03 +01:00
919660678b
Re-structured the app code to be feature based rather than code type based
2018-09-25 12:30:50 +01:00
7b32aa163f
Added Bookshelves to search system.
...
Also cleaned up and made search indexing system a little more efficient.
Closes #1023
2018-09-23 12:34:30 +01:00
be4f3d62cd
Merge branch 'fix/ru-locale' of git://github.com/mullinsmikey/BookStack into mullinsmikey-fix/ru-locale
2018-09-22 22:29:03 +01:00
da58c41ab6
Prevented attachDefaultRole from trying to re-attach if already existing
...
Fixes #1003
Added test to cover
2018-09-22 22:09:34 +01:00
3f58800ed1
Added ability to configure revision limit
2018-09-22 17:30:42 +01:00
1cb6ae39c8
Added base RTL support
...
For #939
- Adds way to check if current language is RTL via config system.
- Made TinyMCE default direction be based on current language text
direction.
- Fixed bullet points to be RTL compatible.
- Set page content body to have direction based on content.
2018-09-22 13:18:26 +01:00
5c2e3f4e56
Extracted download response logic into controller method
...
Fixes incorrect 'Content-Disposition' header value.
Fixes #581
2018-09-22 11:34:09 +01:00
c47b578599
Fixed formatting via phpcbf
2018-09-21 18:48:47 +01:00
e60d11ee04
Altered social auto-reg to be configurable per service
...
- Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env
options for each social auth system.
- Auto-register will allow registration from login, even if registration
is disabled.
- Auto-confirm-email indicates trust and will mark new registrants as
'email_confirmed' and skip 'confirmation email' flow.
- Also added covering tests.
2018-09-21 18:05:06 +01:00
7ad8314bd7
Merge branch 'feature/autoregistration_social_login' of git://github.com/ibrahimennafaa/BookStack into ibrahimennafaa-feature/autoregistration_social_login
2018-09-21 16:14:52 +01:00
131fcae4c7
Merge pull request #947 from BookStackApp/bookshelves
...
Bookshelves
2018-09-21 15:29:52 +01:00
b59e5942c8
Added testing coverage for Bookshelves
...
Created modified TestResponse so we can use DOM operations in new
Testcases as we move away from the BrowserKit tests.
2018-09-21 15:15:16 +01:00
8ff969dd17
Updated so permission effect admins more
...
Asset permissions can now be configured for admins.
joint_permissions will now effect admins more often.
Made so shelves header link will hide if you have no bookshelves view
permission.
2018-09-20 19:48:08 +01:00
6eead437d8
Added bookshelf permission control UI and copy-down ability
2018-09-20 19:16:11 +01:00
81eb642f75
Added bookshelves homepage options
...
- Updated homepage selection UI to be more scalable
- Cleaned homepage selection logic in code
- Added seed test data for bookshelves
- Added bookshelves to permission system
2018-09-20 15:27:30 +01:00
47b08888ba
Added bookshelf view, update, delete
...
- Enabled proper ordering of Books in a shelf.
- Improved related item destroy for all entities.
2018-09-16 19:34:09 +01:00
08b967607f
Changes as per code review, and fixes failing test cases.
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-09-16 20:44:09 +05:30
0c8b6b7324
Final tweaks after code review and fixing failing test cases.
2018-09-16 01:12:36 +05:30
81d3bdc168
Removes the BadRequestException class added earlier.
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-09-15 21:08:00 +05:30
54ca4487fa
Adds tests and few fixes.
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-09-15 21:05:51 +05:30
25da4d9a8b
Added a success message on deletion of revision.
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-09-15 16:08:20 +05:30
714c7bbd3a
Adds code to delete the revision.
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-09-15 15:15:42 +05:30
e0b479efef
UTF-8 slugs & UI fixes
2018-09-11 22:42:25 +04:00
b89411c108
Copied book content, Added create routes
...
Added view control
Added pivot table for books relation
Added control to assign books
2018-08-27 14:18:09 +01:00
d2f5313f92
add missing @param in method comment
2018-08-21 12:44:42 -04:00
572e75b783
Update UserRepo.php
2018-08-20 21:19:25 -04:00
d2a9b312e9
Fixed LDAP group sync using wrong user filter
...
LDAP group sync was trying to find users based on the external_auth_id
which is not garunteed to match the username entered so somtimes
the search for a user would fail.
This passes the username to the group sync.
Picked up by @yoyokko in #959 .
2018-08-19 15:24:42 +01:00
b224a2c8a0
attempt to fix unit test error for admin creation
2018-08-16 21:52:16 +00:00
fe6dfcedf9
implement social auto registration feature
2018-08-16 21:26:54 +00:00
92c9837157
Fixed incorrect type error in LDAP group sync
...
Should fix #951
2018-08-12 13:28:40 +01:00
fcb93dc7c8
Added option to disable public lang autodetect
...
Also cleaned up localization middleware a little.
Closes #944
2018-08-12 13:10:55 +01:00
b5a2d3c1c4
Merge remote-tracking branch 'origin' into bookshelves
2018-08-04 11:35:01 +01:00
c83a51f7e2
Merge pull request #904 from lommes/903-socialite-discord
...
add everything needed to use discord as social login provider
2018-07-29 16:18:10 +01:00
f421d83627
Added ability to set custom ldap group -> role mapping
...
Added input in role form to allow matching against custom names.
Changed default mapping to use role display name instead of the hidden
DB name.
2018-07-15 19:34:42 +01:00
be2ca9d4bb
Refactored out the LDAP repo
2018-07-15 18:21:45 +01:00
17bca662a7
Added tests to cover ldap group mapping
...
Also updated .env.example formatting.
Updated how LdapRepo uses Ldap so can be mocked by testing.
2018-07-15 17:57:25 +01:00
1776204870
Merge branch 'master' of git://github.com/brennanmurphy/BookStack into brennanmurphy-master
2018-07-14 14:17:55 +01:00
2bcc159fd6
Allowed creating pages in visible chapters in invisible books
...
Fixes permissions with test to cover in the event a page is created,
with permission, in a chapter but the user does not have permission to
see the parent book.
Fixes #912
2018-07-14 14:12:29 +01:00
37aa8b05f8
Update files to PSR-2 standards
2018-07-02 17:27:43 +00:00
d640cc1eee
LDAP groups sync to Bookstack roles.
...
Closes #75
2018-07-02 17:09:39 +00:00
93795b6eda
add everything needed to use discord as social login provider
2018-06-28 09:01:36 +02:00
4948b443b6
Started work on bookshelves
2018-06-24 13:38:19 +01:00
6b84a76af1
Merge branch 'drawing_updates'
2018-05-27 19:42:25 +01:00
2bd6ba9895
Added maintenance view with image-cleanup
2018-05-27 19:40:07 +01:00
1df0bcaf85
Made image cleanup safer
...
Also fixed drawing update in markdown editor.
Added shortcut for MD editor to view drawing manager.
2018-05-27 14:33:50 +01:00
c31e6a03ce
Added command to clean-up old images, Unfinished
2018-05-20 18:16:01 +01:00
8c4c8cd95b
Updated secure-images option to not effect image name
...
Instead only the image path is altered.
Also fixed image manger mode not changing on button press.
2018-05-20 16:47:53 +01:00
0c9c1e4c6b
Reverted work on revisions
...
Improved linkage of drawings and image manager.
Updated image updates to create new versions.
2018-05-20 16:41:14 +01:00
6e7adcc095
Embedded SVG icons in css/js files
...
Allows removal of hacky /icon endpoint solution.
Fixes PDF exports with WKHTML and allows the icon to show in HTML
exports.
Fixes #796
2018-05-20 11:55:23 +01:00
a1ecdcacba
Fixed attachment error handling, Allowed all link types
...
Related to #812
2018-05-20 11:06:10 +01:00
63f96c1c6f
Reorganised home and robots views
...
Extracted home view sidebar into own view.
Moved home and robot views into 'common' folder so that we only have
layouts in the top-level views folder.
2018-05-20 10:11:56 +01:00
8df9dab80a
Merge branch 'master' into feature/615
2018-05-20 09:51:45 +01:00
6cdb943916
Started work on revisions in image manager
2018-05-19 18:44:40 +01:00
d3d8ddbe52
Improved 404 handling and fixed editor error
...
404 handling now not a hack-around and uses Laravel 'fallback' routes
instead. Prevents errors with the session when you have mulitple errors
on a page where a post/put/delete is made.
2018-05-19 17:01:33 +01:00
13ad0031d6
Drawings now generate revisions, not replace
...
Updated drawing update test to accomodate.
Image deletion system now takes revisions into account.
2018-05-13 17:41:35 +01:00
d5b922aa50
Started work on drawing revisions
...
Improved sidebar and selection styling of image manager.
Allowed image manager imageType to be changed on open.
Created models for image revisions.
2018-05-13 12:07:38 +01:00
86b2ddbd28
Implemented displaying of the books list on home page.
2018-05-10 09:05:18 +05:30
71b6f09128
Applied phpcs findings
2018-04-22 12:25:32 +01:00
67e0c3d2a5
Improved export base64 encoding of images
...
Now will use set storage mechanism to find image files.
Fixes #786
Added test to cover
2018-04-22 12:23:43 +01:00
a50153d221
Slimmed down testing DB sized and improved permission caching
2018-04-14 22:17:47 +01:00
cdb1c7ef88
Added destination permission checking to entity move
2018-04-14 18:47:13 +01:00
0f7b0ad45a
Added ability to copy a page
...
In 'More' menu alongside move.
Allows you to move if you have permission to create within the new
target parent.
Closes #673
2018-04-14 18:00:16 +01:00
0ade9b5b9b
Refactored moment.js out of app
...
Reduces bundle size by 25%
2018-04-01 14:10:44 +01:00
1a72208d27
Added configurable robots.txt file.
...
Deleted old static file.
Default output depends on app-public setting.
Otherwise can be overidden in `.env` file via `ALLOW_ROBOTS`
Otherwise view file can be customized.
Fixes #779
2018-03-31 12:41:40 +01:00
58a6b2df7d
Merge branch 'master' of github.com:BookStackApp/BookStack
2018-03-30 14:10:36 +01:00
582158f70e
Added tags to chapters and books
...
Closes #121
2018-03-30 14:09:51 +01:00
2fc513984d
PSR2 fixes after running `./vendor/bin/phpcbf`
...
Signed-off-by: Abijeet <abijeetpatro@gmail.com>
2018-03-28 01:07:01 +05:30
23f90ed6b4
Ensured uploaded system images remain public
...
Also added tests to cover local_secure image storage.
Fixes #725
2018-03-25 12:41:52 +01:00
1e015af3c9
Fixed incorrect search logic in last commit
...
Incorrect cross-entity pagination could lead to hidden entities.
2018-03-24 19:05:56 +00:00
f101c1a622
Made search more efficient and tweaked weighting
...
Added per-entity weighting changes.
Now Books score higher than chapters which score higher than pages.
Reduced queries required on search by only searching once but at a
higher count to see if there's another page.
2018-03-24 18:46:31 +00:00
TBK
osmansorkar
Dan Brown
ch0wm3in
benrubson
Lior Broshi
Daniel Seiler
abublihi
jakob
James Geiger
Timo Schwarzer
Christopher Wilkinson
Kostas Dizas
Christopher Wilkinson
Daniel Fanara
abijeet
Mark James
Vinrobot
Justin Stein
Christopher Tran
Michael Mullins
Ibrahim Ennafaa
Ibrahim Ennafaa
Brennan Murphy
Timo B