tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-22 14:05:37 +02:00
Code Issues Projects Releases Wiki Activity
16,900 Commits 31 Branches 527 Tags 162 MiB
3.7
Commit Graph

16900 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Steve Boyd
88a4e69de6
Merge pull request #10037 from LiamKearn/patch-1 
Fix(Docs-Format): Warning format missing entry tag.
 2021-08-05 14:27:40 +12:00
LiamKearn
ed78b60479
Update 04_Secure_Coding.md 
Fix(Format): Warning format missing entry tag.
 2021-07-30 20:50:40 +10:00
Daniel Hensby
d68a50aeaa
Merge pull request #9962 from creative-commoners/pulls/3.7/test-is-array 
FIX Handle invalid table names
 2021-06-02 08:58:13 +01:00
Steve Boyd
ff75f6edc1 FIX Handle invalid table names 2021-06-02 17:38:25 +12:00
Daniel Hensby
2228bf3be7
Merge pull request #9904 from tristan-mastrodicasa/patch-1 
Typo Correction
 2021-05-14 13:56:49 +01:00
Tristan
9dcfa4079a
Typo Correction 2021-03-31 09:15:26 -04:00
Sam Minnée
ef0c503ff6
Merge pull request #9831 from muppsy007/php74-continue-warning 2021-01-20 13:40:52 +13:00
Aaron Cooper
e372e52e93
FIX Mitigate continue; warning when run on PHP 7.3+ (fixes #9826) 
PHP 7.3+ issues a warning when continue; is used inside a switch statement, as it has the same behaviour as break; HTMLBBCodeParser.php had such a continue; statement that is intended to skip to the the next record of the foreach that the switch sits inside. continue 2; needs to be used here.
 2021-01-19 15:05:28 +13:00
Robbie Averill
c877954eef
Merge pull request #9653 from baikho/patch-1 
Update 05_Coding_Conventions.md
 2020-08-26 12:14:32 -07:00
Sang Lostrie
28a81bb97d
Update 05_Coding_Conventions.md 
Fixed typo
 2020-08-26 19:44:11 +01:00
Robbie Averill
9567a9e768
Merge pull request #9642 from samoser/patch-1 
PATCH: Prevents calling strpos with empty needle
 2020-08-18 10:29:38 -07:00
Samuel Amoser
69a8836910
PATCH: Prevents calling strpos with empty needle 
We happen to run into this warning:
```
[Warning] strpos(): Empty needle
Line 2618 in ./framework/i18n/i18n.php

2618    strpos($theme, (string)Config::inst()->get('SSViewer', 'theme')) === 0
```
I suggest to test the needle against emptyness before invoking strpos.
 2020-08-18 15:16:07 +02:00
Robbie Averill
38306217ba
Merge pull request #9598 from Zauberfisch/patch-5 
Fixed php7.4 deprecation notice for magic quotes
 2020-07-29 14:41:47 -07:00
Zauberfisch
e3dd84caef Fixed php7.4 deprecation notice for magic quotes 2020-07-17 05:09:54 +02:00
Maxime Rainville
f2b8946407 Added 3.7.5 changelog 2020-07-14 13:39:39 +12:00
Maxime Rainville
c96e9d2fe5 [CVE-2020-9311] Add public disclosure statement to changelog 2020-07-14 13:26:54 +12:00
Maxime Rainville
074b28cf93 [CVE-2019-19326] Add changelog for CVE-2019-19326 2020-07-14 13:26:46 +12:00
Maxime Rainville
98926e4e6c [CVE-2019-19326] Stop honouring X-HTTP-Method-Override header, X-Original-Url header and _method POST variable. Add SS_HTTPRequest::setHttpMethod(). 2020-07-14 13:25:55 +12:00
Maxime Rainville
d3b23e7024 [CVE-2020-9311] Escape First Name when displaying re-login screen 2020-07-14 13:24:12 +12:00
Serge Latyntcev
8f9bb9d03a Merge tag '3.7.4' into 3.7 
Release 3.7.4
 2020-06-30 11:14:16 +12:00
Robbie Averill
b1adf2190b
Merge pull request #9535 from td204/3.7 
array_key_exists() on objects is deprecated
 2020-06-03 10:36:11 -07:00
terry
b175798fab array_key_exists() on objects is deprecated 2020-06-03 15:24:30 +02:00
Loz Calver
5fbfd4f84c
Merge pull request #9449 from dhensby/pulls/php74-support 
Fix deprecated php syntax
 2020-04-01 14:24:15 +01:00
Dan Hensby
6c8dc0fd99
Fix deprecated php syntax 2020-04-01 14:03:03 +01:00
Robbie Averill
3f3f6854fe
Merge pull request #9437 from indygriffiths/patch-1 
DOCS Fix formatting and syntax of YAML configuration page
 2020-03-19 19:25:25 -07:00
Indy Griffiths
fdefa50a19
DOCS Fix formatting and syntax of YAML configuration page 2020-03-20 14:54:17 +13:00
Maxime Rainville
a381c787b8
Merge pull request #9343 from creative-commoners/v3.7.3-is-php7.3-compatible 
DOCS include mention of PHP 7.3 compatibility for v3.7.3+
 2019-12-06 17:52:26 +13:00
brynwhyman
efd68473f8 DOCS include mention of 7.3 compatibility 
Version 3.7.3 is compatible with <=7.3
 2019-12-02 11:44:54 +13:00
Robbie Averill
c61a9e3f26
DOCS Fix "Configure Nginx" page title, was Lighttpd 2019-11-29 10:42:03 -08:00
Aaron Carlino
42ab512306 Fix broken callout tags 2019-11-20 10:45:27 +13:00
Aaron Carlino
54e7223d98 NEW: Docs rebuild for compliance with Gatsby (#9316) 
* Rewrite callout blocks

* Rewrite frontmatter

* Replace missing frontmatter

* Replace note callouts

* Fix icons

* Hide children

* Tidy up code blocks

* Replace legacy code blocks with fenced
 2019-11-20 10:44:53 +13:00
Aaron Carlino
b1dc89ef8a Added 3.7.4 changelog 2019-09-24 16:51:42 +12:00
Serge Latyntcev
e7469dadb0 Merge branch '3.6' into 3.7 2019-09-24 14:26:53 +12:00
Aaron Carlino
a6763298fe
Merge pull request #92 from silverstripe-security/pulls/3.6/cve-2019-12203 
[CVE-2019-12203] Session fixation in "change password" form
 2019-09-24 11:00:22 +12:00
Serge Latyntcev
a86093fee6 [CVE-2019-12203] Session fixation in "change password" form 
A potential account hijacking may happen if an attacker has physical access to
victim's computer to perform session fixation. Also possible if the targeted application contains an XSS vulnerability.
Requires the victim to click the password reset link sent to their email.
If all the above happens, attackers may reset the password before the actual user does that.
 2019-09-24 10:57:40 +12:00
Aaron Carlino
afcd966740
MINOR: Fix travis. Use trusty (#9256) 2019-09-24 10:56:44 +12:00
Serge Latyntcev
014c99a128 Merge branch '3.6' into 3.7 2019-09-23 13:54:16 +12:00
Garion Herman
53f5c3d0e5
Merge pull request #9196 from creative-commoners/pulls/3.7/pass-member-to-access 
FIX Member argument is now passed to LeftAndMain::alternateAccessCheck()
 2019-08-27 14:35:39 +12:00
Robbie Averill
7d901a6d9b FIX Member argument is now passed to LeftAndMain::alternateAccessCheck() 2019-08-27 11:23:02 +12:00
Robbie Averill
8c41dbb8b4
Merge pull request #9110 from open-sausages/pulls/3.7/boldy-into-the-php74-futur-goes-silverstripe-iii 
BUG Require a PHP7.4 compatible fork of phpunit-mock-objects
 2019-07-19 14:38:41 +02:00
Robbie Averill
f72e80689e DOCS Move PHP 7.4 notes to an unreleased 3.7.4 changelog file 2019-07-19 14:13:51 +02:00
Maxime Rainville
329fcfd700 DOC Add a note about our PHP 7.4 fork of phpunit/phpunit-mock-objects 2019-07-15 13:34:08 +12:00
Maxime Rainville
b250e14ace BUG Require PHP7.4 compatible fork of phpunit-mock-objects 2019-07-12 14:45:06 +12:00
Robbie Averill
d8014d3110 DOCS Update PHPdoc on Authenticator::set_default_authenticator() to show param name 2019-07-01 11:58:30 +12:00
Loz Calver
0692e26cc7
Bump Travis memory limit 2019-05-13 10:26:30 +01:00
Loz Calver
49cafeeaf1
Merge pull request #8855 from sminnee/ss3-php74 
NEW: Add PHP 7.4’s daily snapshot to the travis suite (SS 3.7)
 2019-05-13 09:45:18 +01:00
Robbie Averill
e57beefb43
Merge pull request #8920 from tractorcow/pulls/3.7/backport-parsererror-fix 
BUG Back-port silverstripe-admin#769 to 3.7
 2019-04-15 14:38:17 +12:00
Damian Mooyman
ad3c58f2d8
BUG Back-port https://github.com/silverstripe/silverstripe-admin/pull/769 to 3.7, fix parsererror issue 2019-04-15 14:02:40 +12:00
Sam Minnee
0bf03a3e77 NEW: Add PHP 7.4’s daily snapshot to the travis suite. 
Also clean up the PHP 7.3 build.

This will help avoid any inadvertent 7.4 failures; IMO the sooner we
add new releases to the test mix the better.

If this ends up creating intermittent failures outside of our control
I would recommend rolling back entirely rather than adding to
allowed_failures.

The main goal of testing PHP 7.4 on SS3 sites is to let us keep 
upgrading PHP versions regularly until the end of SS3’s life.
 2019-03-13 14:21:21 +13:00
Robbie Averill
e968454465
Merge pull request #8821 from open-sausages/pulls/3.6/restore-dynamic-field-assigment 
BUG Renable the ability to do dynamic assignment with DBField
 2019-02-27 09:52:21 +11:00