Steve Boyd
8024551376
[CVE-2020-26138] Validate custom multi-file uploads
2021-06-02 16:24:23 +12:00
Steve Boyd
7f97734a20
[CVE-2020-25817] Prevent loading of xml entities
2021-06-02 16:24:17 +12:00
Steve Boyd
8167c6f3ef
DOC Update references to graphql basic-auth
...
Co-authored-by: Garion Herman <garion@silverstripe.com>
Co-authored-by: Maxime Rainville <maxime@silverstripe.com>
2021-06-02 16:24:09 +12:00
Steve Boyd
8b28c5647b
MNT Added 4.8.0-rc1 changelog
2021-05-17 12:05:10 +12:00
Steve Boyd
dde1e7a5c2
Update translations
2021-05-17 10:53:21 +12:00
Steve Boyd
a6ccc86f94
Merge branch '4.7' into 4.8
2021-05-03 14:21:37 +12:00
Steve Boyd
e6aeff6468
Merge branch '4.6' into 4.7
2021-05-03 14:21:20 +12:00
Steve Boyd
0810779606
MNT Update 4.8.0-beta1 changelog
2021-05-03 11:12:23 +12:00
Steve Boyd
59c126a098
MNT Added 4.8.0-beta1 changelog
2021-05-03 11:06:49 +12:00
Steve Boyd
56180d65b6
Merge branch '4.7' into 4
2021-04-30 11:18:42 +12:00
Andre Kiste
8b33945db2
Merge pull request #9918 from creative-commoners/pulls/4.7/help-popover
...
ENH Update keep me signed in tooltip text
2021-04-28 10:26:24 +12:00
Garion Herman
debf1ae9fb
Merge pull request #9887 from lekoala/patch-18
2021-04-24 21:05:29 +12:00
Maxime Rainville
67a008365a
Merge pull request #9743 from kinglozzer/treedropdown-root-id
...
NEW: Expose TreeDropdownField root node ID in schema
2021-04-23 18:06:23 +12:00
Maxime Rainville
440c7cad35
MNT Add test to cover TreeDropdownField::TreeBaseId
2021-04-23 17:53:54 +12:00
Daniel Hensby
c18a5f92a2
Merge pull request #9919 from pine3ree/patch-3
...
fix typo in core constants phpdoc block
2021-04-21 23:50:11 +01:00
maks
12a6f7bd0f
fix typo in core constants phpdoc block
2021-04-20 18:25:24 +02:00
Maxime Rainville
37ee3a923f
Merge pull request #9917 from creative-commoners/pulls/4/rememberloginhash-getset
...
API Methods to override logout_accross_devices
2021-04-20 09:49:36 +12:00
Steve Boyd
3d7868449f
Merge branch '4.7' into 4
2021-04-19 16:39:15 +12:00
Steve Boyd
bcccc63d33
API Methods to override logout_accross_devices
2021-04-19 13:13:35 +12:00
Loz Calver
097da7aed5
Merge pull request #9916 from chrometoasters/bugfix/absolute-base-url-generation
...
[BUGFIX] Prevent call getHeader() on null HTTPRequest object
2021-04-16 09:15:15 +01:00
Steve Boyd
d9e8dd42c0
ENH Update keep me signed in tooltip text
2021-04-16 09:44:05 +12:00
Maxime Rainville
fdd23a3675
Merge branch '4.7' into 4
2021-04-14 11:35:58 +12:00
Maxime Rainville
0e4527824c
Merge branch '4.6' into 4.7
2021-04-14 11:16:04 +12:00
Maxime Rainville
6fc25e4e96
RFC Add chunk method to DataList to iterate over large dataset ( #8940 )
2021-04-14 07:49:44 +12:00
Steve Boyd
d52500482a
Merge pull request #9900 from creative-commoners/pulls/4.7/help
...
ENH Better describe the 'keep me signed in' checkbox
2021-04-13 16:02:51 +12:00
André Kiste
e2777ded8e
• Add missing string
...
• Move attribute to login-forms
2021-04-13 15:33:49 +12:00
Kunal Hari
31c5ab2069
[BUGFIX] Prevent call getHeader() on null HTTPRequest object
2021-04-13 14:06:21 +12:00
André Kiste
bbcc187c02
Update conflicting translations.
...
Revert removal of translations.
2021-04-12 11:42:57 +12:00
Andre Kiste
dcdc25500b
Merge pull request #9909 from creative-commoners/pulls/4/remember-thirty
...
ENH Reduce default token period from 90 to 30 days
2021-04-08 12:39:22 +12:00
André Kiste
8692aabe9b
Use new designs
2021-04-08 12:32:12 +12:00
Steve Boyd
7ec838f9c2
Merge pull request #9908 from sunnysideup/patch-15
...
PATCH: fix param in docblock ... add \ to FormField::__construct
2021-04-07 09:56:40 +12:00
Steve Boyd
160ed6f3f1
Merge pull request #9882 from creative-commoners/pulls/4/doc-composite-validator
...
DOC Clarify return value for CompositeValidator::getValidatorsByType()
2021-04-06 15:26:16 +12:00
Steve Boyd
1c7fd287a1
ENH Reduce default token period from 90 to 30 days
2021-04-06 13:22:10 +12:00
Nicolaas
b75860b195
PATCH: fix param in docblock ... add \ to FormField::__construct
2021-04-05 19:43:41 +12:00
Steve Boyd
5872dce76d
Merge pull request #9907 from sunnysideup/patch-14
...
adding use SilverStripe\Security\Member; to make sure linting works
2021-04-02 11:38:37 +13:00
Nicolaas
2ecd8b34ee
adding use SilverStripe\Security\Member; to make sure linting works
...
adding `use SilverStripe\Security\Member;` to make sure that linting works.
2021-04-01 23:36:36 +13:00
Maxime Rainville
66fa597b3b
FIX Better handling of remember me token when login across devices is disabled ( #9895 )
...
* BUG Make sure remember me tokens are not invalidated when logging out without the logout_across_devices flag
* Remove unneeded comment
2021-03-31 11:31:52 +13:00
André Kiste
44fae4497b
Better describe the 'keep me signed in' checkbox
2021-03-30 13:19:55 +13:00
Nicolaas
504e20320e
Update DBBoolean.php ( #9893 )
2021-03-24 12:05:33 +13:00
Steve Boyd
169c06131a
Merge pull request #9748 from tom890180/4.6
...
Merge the "Merge pull request #9565 from tom890180/check_items_exist" to 4.6
2021-03-23 11:01:30 +13:00
Steve Boyd
47855e3e49
Merge pull request #9579 from scttw/patch-1
...
DOC Update 04_Rendering_Templates.md
2021-03-23 10:00:59 +13:00
Daniel Hensby
2f62688a79
Merge pull request #9891 from christopherdarling/patch-19
...
remove unused class import Convert
2021-03-22 18:59:58 +00:00
Christopher Darling
daa9060c1a
remove unused class import Convert
...
Was missed from PR b02a6fa02d
2021-03-22 14:34:13 +00:00
Thomas Portelange
fc40e0b98a
Test that email is trimmed
2021-03-22 09:03:43 +01:00
Thomas Portelange
22b2d58b5a
Update src/Security/Member.php
...
Co-authored-by: Steve Boyd <emteknetnz@gmail.com>
2021-03-22 09:02:18 +01:00
Thomas Portelange
19052e6924
Update src/Security/Member.php
...
Co-authored-by: Steve Boyd <emteknetnz@gmail.com>
2021-03-22 09:02:13 +01:00
Thomas Portelange
0586c55e62
prevent spaces in emails
...
so this is not the first time a customer of mine is just copy pasting stuff in emails fields and somehow, a space at the end skips validation. this update ensure there is no space before or after the email, it would probably save a lot of time for everyone to have this build in.
it's probably better to fix it here rather than at form level because this also happens for csv imports etc
2021-03-19 10:11:02 +01:00
Steve Boyd
358efdb51d
Merge pull request #9879 from jchenevey/patch-1
...
DOC Update 02_cors.md
2021-03-19 12:29:14 +13:00
Aaron Carlino
9e766dbaad
DOCS: Fix incorrect CSRF graphql documentation
2021-03-18 17:10:48 +13:00
Maxime Rainville
7db8913914
Merge branch '4.7' into 4
2021-03-15 14:37:16 +13:00