b780c4f504
BUG Tweak DBHTMLText::Plain to avoid treating some chinese characters as line breaks.
2020-07-09 13:33:43 +12:00
01d3b4fd96
FIX: Set many-many-through joinRecord on newly added records.
...
When many-many-through relations are queried, a joinRecord is set on
each DataObject in the list to provide the extra fields defined on
the connector object. This didn’t previously happen when the record
was first add()ed to a list. This fixes that bug.
2020-07-02 15:18:12 +12:00
f72491f7f4
Linting fix
2020-06-08 09:35:00 +12:00
d4165db690
Update getter name to getCMSCompositeValidator
2020-05-28 12:23:35 +12:00
2765b65f42
Use ReflectionClass for CompositeValidator tests
2020-05-28 11:18:46 +12:00
bca4be77ed
Update name to CompositeValidator. Add docblocks
2020-05-28 11:18:46 +12:00
b45a3561df
Implemented PR feedback. Added some initial test cov
2020-05-28 11:18:46 +12:00
acccdd8a1c
Merge branch '4.5' into 4
2020-05-26 14:31:06 +12:00
42bb28965c
Merge branch '4.4' into 4.5
2020-05-26 14:30:27 +12:00
395893b559
Merge branch '4.3' into 4.4
2020-05-26 14:30:02 +12:00
86fcb9e29c
Merge branch '4.2' into 4.3
2020-05-26 14:29:16 +12:00
080ce157ce
Fix various typos in comments
2020-05-16 10:34:53 +01:00
21129b1624
Use short array syntax across the framework's codebase
2020-05-16 10:34:45 +01:00
b1b61f866e
FIX Set nonce style on unit tests
2020-05-13 16:07:31 +12:00
1d19051c10
Add sha1 and md5 hashing options in resource URL
2020-05-12 18:14:03 +12:00
7dc6b36c16
Unique key for DataObject ( #9400 )
...
NEW Unique key for DataObject
2020-05-04 09:10:51 +12:00
33b0b6985a
Update file paths for autoloading compatibility
2020-04-25 10:28:28 +01:00
237b2d5f74
Convert array delcarations to short array syntax
2020-04-20 18:58:09 +01:00
f94078d963
Merge pull request #9408 from chrometoasters/pulls/classes-with-extension
...
Add ClassInfo method to get all classes with a given extension applied
2020-04-20 20:11:01 +12:00
cb36aab80c
Merge branch '4.5' into 4
2020-04-15 14:49:19 +12:00
e968f5cb86
DOCS: Remove outdated TODO
2020-04-14 15:00:08 +05:45
2c5deceeb4
FIX Filter out all FULLTEXT BOOLEAN chars
...
The query might still work depending on where these chars are placed,
but it seems weird to only remove *some* of the valid chars here.
See https://dev.mysql.com/doc/refman/5.6/en/fulltext-boolean.html
Note that the query runs both the actual boolean query with chars,
and then a separate relevance search without them.
2020-04-09 10:32:45 +12:00
c6b698cb02
NEW Allow InnoDB for FULLTEXT indexes
...
MyISAM used to be the only one to support it, now InnoDB has caught up.
Unless an engine is set specifically in create_table_options,
this will auto-convert existing MyISAM tables to InnoDb.
Fixes #9242
2020-04-09 10:32:45 +12:00
5bf2ac83ee
Merge branch '4.5' into 4
2020-04-01 19:23:47 +01:00
1fb574a5bd
NEW: Variadic URL parameter matches for url_handlers ( #9438 )
...
* Add wildcard URL parameter matches for url_handlers
* Extra tests for wildcard parameters
* Add a PHP warning if more params appear after wildcard param
2020-03-25 09:16:13 +13:00
30c3b127c1
NEW Add ClassInfo method to get all classes with a given extension applied
2020-03-24 10:48:35 +13:00
37e8720fe5
Linting
2020-03-17 16:21:46 +13:00
7ad5f1bb14
BUGFIX: Ensure diff arrays are one-dimensional
2020-03-17 15:57:28 +13:00
667495eaf9
Merge branch '4.5' into 4
2020-03-06 10:53:28 +13:00
687435a2f1
Merge branch '4.4' into 4.5
2020-03-06 10:52:22 +13:00
bba0f2f72f
BUGFIX: Fixed issue where TimeField_Readonly would only show "(not set)" instead of the value
2020-02-24 09:59:00 -04:00
affd43052a
Merge branch '4.5' into 4
2020-02-17 18:11:23 +13:00
acd7d94167
Merge branch '4.4' into 4.5
2020-02-17 13:07:26 +13:00
49fda52b12
Merge pull request #94 from silverstripe-security/fix/cve-2019-19325
...
CVE-2019-1935
2020-02-17 12:54:40 +13:00
ad1b00ec7d
[CVE-2019-19325] XSS through non-scalar FormField attributes
...
Silverstripe Forms allow malicious HTML or JavaScript to be inserted
through non-scalar FormField attributes, which allows performing XSS (Cross-Site Scripting)
on some forms built with user input (Request data). This can lead to phishing attempts
to obtain a user's credentials or other sensitive user input.
There is no known attack vector for extracting user-session information or credentials automatically,
it required a user to fall for the phishing attempt.
XSS can also be used to modify the presentation of content in malicious ways.
2020-02-17 09:58:29 +13:00
c31de772ab
Merge pull request #8838 from creative-commoners/pulls/4/slash-means-root
...
Use '/' as an alternative designation for root in routing
2020-02-14 11:29:32 -08:00
9d1d59d8d1
NEW Accept / as designation for root URL controller
2020-02-14 14:41:10 +13:00
9d5c3ef20e
Merge branch '4.4' into 4.5
2020-02-11 16:45:15 +13:00
99786dda22
ORM Column now supports related table lookup
2020-01-28 15:46:30 +13:00
6650d81324
BUG Fix extra blank Group being created when creating a new Group ( #9325 )
...
* Fix extra blank Group being created when creating a new Group
* Update tests to reflect expected behavior
* Improved tests
2019-11-27 09:32:33 +13:00
91e4aa90f1
Merge branch '4.4' into 4.5
2019-11-20 11:09:23 +13:00
8219491705
Merge branch '4.3' into 4.4
2019-11-20 11:08:35 +13:00
ea2a2b4786
FIX Adjust HTMLEditorField tests to support alt attr changes in assets
...
The default behaviour of the alt attribute has changed from using the
filename to applying an empty value.
2019-11-14 12:04:37 +13:00
e2bea6b41f
API Add `withConfig` method ( #9011 )
...
* With config functionality added.
* Update docs/en/02_Developer_Guides/04_Configuration/00_Configuration.md
2019-10-31 16:12:04 +13:00
e76601e5c8
BUG FormAction title property cannot be set if useButtonTag is false
2019-10-29 17:21:45 +13:00
17f4cc6e30
Merge pull request #9281 from creative-commoners/pulls/4/textfield-tip-ui
...
NEW: Add support for Tip UI in TextField
2019-10-23 16:50:43 +13:00
bed3f2b3c6
NEW Add type declarations to Tip API, add TippableFieldInterface
2019-10-23 10:46:22 +13:00
195417b061
NEW Extract Tip from TextField, add test coverage
2019-10-22 17:04:58 +13:00
e59625fe5a
NEW Add ability to define image size preset for the TinyMCE editor. ( #9276 )
...
* NEW Add ability to define image size preset for the TinyMCE editor.
* DOC Explain how to define image size pre-sets
2019-10-22 11:50:28 +13:00
33a28394d6
Merge branch '4.4' into 4
2019-10-18 15:59:28 +13:00
0cf5d4cbe2
Merge branch '4.3' into 4.4
2019-10-18 15:58:13 +13:00
46b9530d88
PSR2 linting fixes
2019-10-18 15:31:39 +13:00
7873efde9c
Merge branch '4.4' into 4
2019-10-18 10:58:19 +13:00
dcbe6d0310
Merge branch '4.3' into 4.4
2019-10-18 10:57:35 +13:00
d7752b7945
Run PSR2 Lint cleaner
2019-10-04 13:26:31 +13:00
7db524bd90
FIX DebugViewFrendlyErrorFormatter handle of admin_email
2019-10-04 10:26:54 +13:00
047ac060c4
Merge pull request #9265 from emteknetnz/feature/noopener
...
Add noopener attribute to links with a target
2019-10-03 14:42:50 +13:00
887f198b07
Add rel attribute to link elements with a target attribute
2019-10-03 14:03:12 +13:00
af6644f762
Merge pull request #9240 from chrometoasters/pulls/db-readonly-transactions-support
...
NEW Introduce supported database transaction mode check
2019-09-25 10:02:53 +12:00
b002ef1171
Merge branch '4.4' into 4
2019-09-24 17:26:50 +12:00
0d27f32cc9
FIX Add 'legal empty attributes' to allow empty alt values on imgs
...
In some situations, a caption is used in place of a value in the alt
attribute, and in others an image may be cosmetic and not in need of an
alt attribute value (though the alt attribute must still be rendered in
this case).
2019-09-24 11:44:12 +12:00
3cfc21c405
Merge pull request #9241 from open-sausages/pulls/4.4.3/fix-file-permission
...
Fix administrators not being able to see files that are restricted to groups
2019-09-23 11:13:26 -07:00
6a1c6ecec6
Fix administrators not being able to see files that are restricted to groups
...
Resolves https://github.com/silverstripe/silverstripe-asset-admin/issues/777
2019-09-23 16:44:28 +12:00
bcbf90a837
NEW Introduce supported database transaction mode check
2019-09-16 14:44:15 +12:00
aa6b244db9
Merge branch '4.4' into 4
2019-09-13 18:11:46 -07:00
592ab6abc1
Merge branch '4.3' into 4.4
2019-09-13 18:11:34 -07:00
9a76d4adb4
Merge pull request #9181 from kinglozzer/8762-shortcode-templates
...
NEW: Use templates to render embed shortcodes (closes #8762 )
2019-09-13 17:58:32 -07:00
233e0e7aa0
ENH PasswordExpirationMiddleware implementation ( #9207 )
2019-09-12 14:34:06 +12:00
da6582f593
NEW: Remove web installer, move to separate package ( #9231 )
...
* Remove installer
* Remove exposed install files
* Replace Dev/Install classes still in use
* Update changelog
* FIX make the grid field actions consistent to what they look like on pages
Resolves https://github.com/silverstripe/silverstripe-admin/issues/904
* Docs changes
2019-09-11 13:10:25 +12:00
591b88a9bc
BUG Allow infinite loop when calling DataObject::writeComponent() recursively
2019-09-10 14:15:28 +12:00
e8c2f963fd
FIX Member::getLastName() now correctly returns the Member surname
2019-09-06 12:12:27 -07:00
dd40d53e6b
Merge branch '4.4' into 4
2019-09-04 09:46:33 +12:00
24015c7767
Merge branch '4.3' into 4.4
2019-09-04 09:42:09 +12:00
77ba8391c4
FIX Byte Order Marks (BOM) are now stripped when importing CSV files
2019-08-29 14:54:57 +12:00
759601741d
NEW: Use templates to render embed shortcodes ( closes #8762 )
2019-08-21 09:32:16 +01:00
a5d6b998fc
Merge branch '4.4' into 4
2019-08-16 16:40:39 +12:00
11a7d6ccb4
Rename test to be clearer about its intent
...
Co-Authored-By: Guy Marriott <guy@scopey.co.nz>
2019-08-16 09:49:36 +12:00
bae7e32680
FIX Member::changePassword() no longer applies password validation rules to the hashed value
2019-08-16 09:06:07 +12:00
f354e2018d
FIX Set minimum test scores and password length for Members while running fixtured DataObject tests
2019-08-15 15:23:11 +12:00
45f86658ca
Merge branch '4.4' into 4
2019-08-14 09:31:05 +12:00
4b44272367
Merge branch '4.3' into 4.4
2019-08-14 09:30:53 +12:00
d63e4b520c
Merge branch '4.2' into 4.3
2019-08-14 09:30:41 +12:00
f3132c89d7
Merge pull request #9170 from open-sausages/pulls/4/add-option-to-disable-user-agent-session-check
...
API Add option to disable user-agent header session validation
2019-08-08 11:47:07 +12:00
b3093b7a1a
BUGFIX: Allow state to be shared across nested GridFields
2019-08-07 23:09:51 +12:00
4380d7d155
API Add option to disable user-agent header session validation
2019-08-06 22:00:01 +12:00
0672f8b76b
NEW HTTPRequest now has hasSession() to determine whether a session exists for it
2019-08-02 11:29:23 +12:00
c1ffc4edfb
Added unit tests for multiple relationship sorting
2019-07-29 10:45:10 -03:00
cb91f5fa06
NEW Added SRI support for Requirements::css, Requirements::javascript ( #9139 )
2019-07-21 09:51:22 +02:00
22b514c421
#9114 - DBText::ContextSummary() cuts line breaks
...
ContextSummary() was cutting the HTML which was added by nl2br because
it expected plain text elements as it's stripping and replacing text.
Instead this fix changes the behaviour to apply the nl2br after the text
changes have been made. That way we can't cut anything in the middle of
a HTML tag, but new lines, or paragraphs are replaced by BRs after,
should they exist.
- Added tests to ensure text is not cut in the middle of a sentence.
- Added test to ensure that <br>'s are added in the correct place should
the summary span between new lines.
2019-07-19 12:43:20 +12:00
29a663c65d
Merge branch '4.4' into 4
2019-07-15 09:24:49 +12:00
d667d64f13
Merge branch '4.3' into 4.4
2019-07-15 09:18:17 +12:00
fcd7a1e63e
FIX core memory limit test
2019-07-12 16:30:25 +12:00
7ef13e7ef6
FIX Confirmation components to respect SS_BASE_URL ( #9074 )
2019-07-05 16:05:41 +12:00
844d2ef134
NEW DBDate and DBDatetime now support modify() with a strtotime() style adjustment string ( #9105 )
2019-07-05 15:57:23 +12:00
e3aa0ff63a
Added unit tests for config condition if PHP extension is loaded
2019-07-03 10:32:41 -03:00
96e7914f23
FIX: Fix MySQLQuery::seek() and Query::rewind() to fix repeated iteration
...
API: Query::seek() and Query::rewind() no longer return a value.
Although breaking an API inside a patch release may seem odd, this in
fact is correcting a long-standing bug in our implementation of
Iterator::rewind(), so I think it’s appropriate.
https://github.com/silverstripe/silverstripe-framework/issues/9097
2019-07-03 09:20:05 +12:00
6a8c6703d1
Remove `use_gzip` from HTMLEditorField since it's been removed by TinyMCE codebase ( #7261 )
...
* Remove `use_gzip` from HTMLEditorField
* DOCS Mention remove use_gzip in changelog
2019-06-21 09:27:48 +12:00
d04e54c1be
Merge branch '4.4' into 4
2019-06-10 17:33:30 +12:00
c747b1f8d3
Merge branch '4.3' into 4.4
2019-06-10 17:32:07 +12:00
f766555d61
Merge branch '4.2' into 4.3
2019-06-10 17:27:05 +12:00
Maxime Rainville
Sam Minnee
cpenny
Daniel Hensby
Michal Kleiner
Steve Boyd
Brett Tasker
Mojmir Fendek
Garion Herman
Serge Latyntcev
mattclegg
Ingo Schommer
Daniel Hensby
Aaron Carlino
UndefinedOffset
Maxime Rainville
Guy Marriott
Andre Kiste
Damian Mooyman
Dylan Wagstaff
Robbie Averill
bergice
Robbie Averill
Loz Calver
Robbie Averill
Chee Wai
Simon Gow
Saophalkun Ponlu