Commit Graph

3400 Commits

Author SHA1 Message Date
botzko
a1f0f2f45d Form validation should throw ValidationException instead of calling unexisting method "addErrorMessage()" 2020-02-21 23:55:38 +00:00
Zubair
9733060d1c
Fix Related section at bottom of document 2020-02-21 09:53:57 -05:00
Serge Latyntcev
6c39962b7a Merge branch '4.5' into 4 2020-02-19 10:21:11 +13:00
Serge Latyntcev
6c2f179a43 Merge branch '4.4' into 4.5 2020-02-19 10:20:50 +13:00
Bernard Hamlin
765810b013
Update CVE number to CVE-2019-19325 2020-02-19 09:58:12 +13:00
Tyler Trout
b7391fd34f
Update 02_FixtureFactories.md
- Removed duplicate `use SilverStripe\Core\Injector\Injector;`
- Changed $myPageObj to $MyObjectObj
2020-02-17 16:49:52 -05:00
Maxime Rainville
affd43052a Merge branch '4.5' into 4 2020-02-17 18:11:23 +13:00
Maxime Rainville
5fd16cd7e1 Add 4.5.1 changelog 2020-02-17 17:47:23 +13:00
Maxime Rainville
7ce2abf74d Merge remote-tracking branch 'origin/4.4' into 4.5 2020-02-17 14:43:38 +13:00
Maxime Rainville
a9598eec3f Added 4.4.5 changelog 2020-02-17 14:02:57 +13:00
Maxime Rainville
acd7d94167 Merge branch '4.4' into 4.5 2020-02-17 13:07:26 +13:00
Steve Boyd
08cc057049
Merge pull request #9404 from creative-commoners/pulls/4/minor-lockstep-release-docs
DOCS Add note to update minimum core requirements in minor releases
2020-02-17 10:11:34 +13:00
Serge Latyntcev
ad1b00ec7d [CVE-2019-19325] XSS through non-scalar FormField attributes
Silverstripe Forms allow malicious HTML or JavaScript to be inserted
through non-scalar FormField attributes, which allows performing XSS (Cross-Site Scripting)
on some forms built with user input (Request data). This can lead to phishing attempts
to obtain a user's credentials or other sensitive user input.
There is no known attack vector for extracting user-session information or credentials automatically,
it required a user to fall for the phishing attempt.
XSS can also be used to modify the presentation of content in malicious ways.
2020-02-17 09:58:29 +13:00
Guy Marriott
c31de772ab
Merge pull request #8838 from creative-commoners/pulls/4/slash-means-root
Use '/' as an alternative designation for root in routing
2020-02-14 11:29:32 -08:00
Garion Herman
29943f9049
API TestSession request methods now use the correct HTTP method (#8987)
* API TestSession request methods now use the correct HTTP method

* DOCS Update requests section in Functional Testing to reflect API change
2020-02-14 16:01:06 +13:00
Ingo Schommer
bf5a46901c
DOCS Web worker concurrency caveats (#9223) 2020-02-14 15:23:20 +13:00
Garion Herman
be71f34cac DOCS Add documentation covering Root URL Handler behaviour 2020-02-14 14:41:10 +13:00
Garion Herman
a2beabd430 DOCS Add note to update minimum core requirements in minor releases 2020-02-11 14:19:03 +13:00
Guy Marriott
73990ac189
Merge pull request #9399 from creative-commoners/broken-link
DOCS fix a broken link
2020-02-06 16:07:40 -08:00
brynwhyman
b60def66dd DOCS fix a broken link 2020-02-07 12:49:17 +13:00
Dylan Wagstaff
3a99a57d41
Merge pull request #9385 from mooror/patch-1
Updated the "Template Syntax" Documentation
2020-02-04 11:03:22 +13:00
Steve Boyd
566b81f326
Merge pull request #9392 from creative-commoners/pulls/4/document-tweak-releases
DOC Add documentation for tweak releases
2020-02-03 15:33:36 +13:00
Garion Herman
4ce63e4460 DOC Tweak wording on detach-tagged-base explanation [ci skip] 2020-02-03 15:20:47 +13:00
Garion Herman
efb1ebdd1a DOC Add documentation for tweak releases 2020-02-03 14:53:40 +13:00
Ingo Schommer
daf32f2327 DOCS Removed Damian as core committer :( 2020-01-31 12:20:01 +13:00
Benjamin Blake
7c32a848aa
Updated the "Template Syntax" Documentation
Added a notice to the "Variables" section of the "Template Syntax" documentation to warn developers about common template variable gotchas
2020-01-27 15:18:40 -07:00
Valentino Pesce
24c28e4457
Docs: Fix link to Middleware not found
Fix link to Middleware not found in page Rate Limiting
2020-01-25 19:21:15 +01:00
Robbie Averill
a98a2d9c7f
Merge pull request #9379 from tiller1010/patch-1
Update to link
2020-01-24 12:41:44 -08:00
Loz Calver
87ad14dad3
Merge pull request #9371 from Greg808/patch-1
added addExtraClass
2020-01-24 09:20:16 +00:00
Tyler Trout
4a1c91f91d
Update to link
Clicking "ReactJS in SilverStripe" on https://docs.silverstripe.org/en/4/developer_guides/customising_the_admin_interface/cms_layout/ directs to 404.
2020-01-20 09:47:43 -05:00
Valentino Pesce
0c5fda2003
Docs: Fix route that doesn't exist 2020-01-19 19:03:35 +01:00
Aaron Carlino
681ed4f78a DOC: Fix unterminated injector callout block 2020-01-17 10:47:16 +13:00
Greg808
67725fe271
added addExtraClass
I am not quiet sure if this is needed but if you want to only add the custom action to the GridField action menu than you need to add the extra classes otherwise it would add it to the action menu and to the gridfield.
2020-01-13 13:05:39 +01:00
Michael Andrewartha
bc5aa53ed9
Adding SS_ENVIRONMENT_TYPE to documentation
Before running a dev/build the first time, you need to specify dev as your environment type. The variable wasn't mentioned as part of the list so I've added it. Let me know if it's not clear about the difference between the states, or it should be better documented here somehow.
2020-01-13 22:59:06 +13:00
Benjamin Blake
7ca70d353b
Updated "Extensions and DataExtensions" Docs
Updated the new notice to make it use more imperative language (credit @NightJar)
2020-01-12 15:22:00 -07:00
Benjamin Blake
61af8b00ab
Updated "Extensions and DataExtensions" docs
Corrected a typo and add more information to hopefully clarify the text.
2020-01-12 14:56:55 -07:00
Benjamin Blake
74f7606080
Updated "Extensions and DataExtensions" Docs
Added a notice to the "Owner" section that will remind developers of the limitations of the owner system when it comes to private and protected properties and methods
2020-01-12 14:47:28 -07:00
Garion Herman
6229d014e0
Merge pull request #9363 from conny-nyman/docs/search_filters
DOC Updated search filter modifiers documentation
2020-01-13 08:49:12 +13:00
Conny Nyman
2bd5f8cbcf DOC Updated search filter modifiers documentation to mention that they only work on data lists 2020-01-11 11:09:24 +02:00
Ingo Schommer
c61881a4c0
DOCS Clearer create module instructions (#9365)
* DOCS Clearer create module instructions

Incl. link to skeleton

* Update docs/en/02_Developer_Guides/05_Extending/00_Modules.md

Co-Authored-By: Garion Herman <garion@silverstripe.com>

Co-authored-by: Garion Herman <garion@silverstripe.com>
2020-01-08 10:41:28 +13:00
Maxime Rainville
5a082e74b6
Merge pull request #9349 from open-sausages/pulls/4/doc-new-release-life-cyle
Update the documentation to reflect our new release lifecyle
2020-01-08 09:14:44 +13:00
Maxime Rainville
34ce2609f4
Adjusting the stated beta period
Co-Authored-By: Bryn Whyman <bryn.whyman@silverstripe.com>
2020-01-07 10:14:32 +13:00
Maxime Rainville
d9f48e76bc
Some minor sentence rewording
Co-Authored-By: Bryn Whyman <bryn.whyman@silverstripe.com>
2020-01-07 10:08:32 +13:00
Valentino Pesce
c8c1c86d70
FIX: module link "recaptcha" not found 2019-12-23 15:38:27 +01:00
Garion Herman
81497776f3 DOC Tweak names and link in 4.5.0 changelog 2019-12-20 09:53:30 +13:00
Andrew Aitken-Fincham
910f5efbf2 fix markdown tables for url variables documentation 2019-12-19 10:54:45 +00:00
Serge Latyntcev
eaf6bca706 Merge branch '4.5' into 4 2019-12-19 11:26:38 +13:00
Serge Latyntcev
08eaed4190 Added 4.5.0 changelog 2019-12-19 11:24:04 +13:00
Serge Latyntcev
e1a1459df3 Added 4.5.0-rc2 changelog 2019-12-19 11:23:31 +13:00
Maxime Rainville
3f15957b5f DOC New release lifecycle 2019-12-18 17:05:11 +13:00
Robbie Averill
9fb4c75393
Merge pull request #9299 from open-sausages/pulls/4/rfc-8996
DOC RFC-8996 clarify public APIs
2019-12-13 18:02:55 -08:00
Matt Peel
1633ddea9c
Fix PHP versions in upgrade guide
Make versions less generic, and add note about following PHP's supported versions guide
2019-12-10 12:17:55 +13:00
Serge Latyntcev
c5cd54e5d8 DOC RFC-8996 clarify public APIs 2019-12-09 08:57:16 +13:00
Tristan
aad33e36d7
Change from "Team" to Team::class
To be consistent with the rest of the doc
2019-11-28 11:34:41 +13:00
Nicolaas
d1fc27d03a
MINOR: clearer distinction between class names and actual names 2019-11-26 15:57:45 +13:00
Stevie Mayhew
8e27a4f978
Merge pull request #9334 from open-sausages/pulls/4/doc-gridfield-protected-method
DOC Explain how to use the new protected getGridField and getGridFieldConfig methods on ModelAdmin
2019-11-26 07:45:55 +13:00
Loz Calver
f4713d95f6
Merge pull request #9333 from creative-commoners/pulls/4/canonicalurlmiddleware-docs
DOCS Add note about applying forceSSL to non-live environments
2019-11-25 11:37:30 +00:00
Maxime Rainville
b21c69d814 DOC Explain how to use the new protected getGridField and getGridFieldConfig methods on ModelAdmin 2019-11-25 12:41:24 +13:00
Garion Herman
bf38997b6e DOCS Add note about applying forceSSL to non-live environments 2019-11-25 12:14:26 +13:00
Serge Latyntcev
7f7111f6f3 Doc add RC changelogs 2019-11-20 17:14:54 +13:00
Serge Latyntcev
f67e15b8ee Merge branch '4.5' into 4 2019-11-20 11:12:49 +13:00
Aaron Carlino
e520a2b990 Fix broken callout tags 2019-11-19 13:53:43 +13:00
Ingo Schommer
cca6d8e1be DOCS Remove archive download references (#9250)
See https://github.com/silverstripe/silverstripe-framework/issues/9232.

Also simplifies composer instructions a bit:
- Removes composer update --no-dev references, that's a bit of an edge case that people can just discover on getcomposer.org if they need it
- Changed example from the unused and oudated silverstripe/forum to silverstripe/blog
- Updated example versions to 4.x
- Remove "updating composer" section, it now tells you if its out of date
- Remove ss-auto-git-ignore module reference. The module hasn't been updated in ages, and it's much less necessary now that all relevant modules are on composer
- Add .env example config to getting started docs, I didn't realise it was stripped from the default --prefer-dist composer install
2019-11-18 20:02:00 +13:00
Aaron Carlino
6888901468
NEW: Update docs to be compliant with Gatsby site (#9314)
* First cut

* Temporarily disable composer.json for netlify build

* POC

* New recursive directory query, various refinements

* Fix flexbox

* new styled components plugin

* Apply frontmatter delimiters

* Mobile styles, animation

* Search

* Redesign, clean up

* Nuke the cache, try again

* fix file casing

* Remove production env file

* ID headers

* Move app to new repo

* Add frontmatter universally

* Hide children changelogs

* Add how to title

* New callout tags

* Revert inline code block change

* Replace note callouts

* Fix icons

* Repalce images

* Fix icon

* Fix image links

* Use proper SQL icon
2019-11-18 17:58:33 +13:00
Serge Latyntcev
84d0d75e96 Added 4.5.0-rc1 changelog 2019-11-18 17:18:05 +13:00
Robbie Averill
022abd8d8d
Merge pull request #9303 from sachajudd/docs/impact-ratings
DOCS Update SilverStripe Contributing Code GitHub labels
2019-11-14 09:07:10 -08:00
DorsetDigital
999d277311
Change example domains
The current examples use an actual, real-world domain.   Have changed to the 'example.com' domain, reserved by IANA for this kind of purpose.
2019-11-14 08:35:08 +00:00
Serge Latyntcev
efc9bec5e6 Added 4.5.0-alpha1 changelog 2019-11-14 14:39:41 +13:00
DorsetDigital
7e361b6127
Doc: Remove old reference to theme
Update siteconfig doc to remove reference to setting the current theme.
2019-11-09 10:28:05 +00:00
Mojmir Fendek
e2bea6b41f API Add withConfig method (#9011)
* With config functionality added.
* Update docs/en/02_Developer_Guides/04_Configuration/00_Configuration.md
2019-10-31 16:12:04 +13:00
Serge Latyntcev
2d4cbf8fef DOC Describe our current branch naming conventions 2019-10-30 15:31:36 +13:00
Sacha Judd
11621b66dc DOCS Update SilverStripe Contributing Code GitHub labels
[ci skip]
2019-10-30 10:48:16 +13:00
Sam Minnée
e6ea109127
Merge pull request #9298 from ScopeyNZ/pulls/4/update-method-visibility-docs
DOCS Update contribution guidelines around method visibility
2019-10-23 11:52:20 +13:00
Serge Latyntsev
bd2ccf70fa
Merge pull request #9282 from open-sausages/pulls/4/docs/clarify-basic-auth
DOCS Clarify BasicAuth limitations
2019-10-22 14:01:51 +13:00
Maxime Rainville
e59625fe5a
NEW Add ability to define image size preset for the TinyMCE editor. (#9276)
* NEW Add ability to define image size preset for the TinyMCE editor.
* DOC Explain how to define image size pre-sets
2019-10-22 11:50:28 +13:00
Guy Marriott
6458697663
DOCS Update contribution guidelines around method visibility
This is in response to the RFC discussion in #8996
2019-10-21 11:00:16 -07:00
jeremy
7900d2aeb1
Update docs/en/02_Developer_Guides/06_Testing/00_Unit_Testing.md
Better worded

Co-Authored-By: Robbie Averill <robbie@averill.co.nz>
2019-10-18 11:23:44 +11:00
jeremy
1197b94415
Update Test documentation about database behaviours
This update is based on what I have experienced and this conversation on Slack https://silverstripe-users.slack.com/archives/C6PLF83H9/p1571281365001600
2019-10-18 10:38:23 +11:00
Ingo Schommer
36ceaa00dd DOCS Update demo links
Promote the new landing page: https://www.silverstripe.org/try

[ci-skip]
2019-10-11 13:48:29 +13:00
Ingo Schommer
8dcda91538 DOCS Clarify BasicAuth limitations 2019-10-10 10:41:39 +13:00
Guy Marriott
3a1904d1bb DOCS Update contact information for translations docs 2019-10-04 09:44:39 -07:00
Serge Latyntcev
7dfc35d204 DOC Fix the required NodeJS version for CMS custamisation 2019-10-01 14:27:23 +13:00
Loz Calver
daf995da63
Fix syntax error in DataList docs 2019-09-30 09:36:12 +01:00
Serge Latyntcev
a706e37ec3 DOC Fix Contribution guide broken links 2019-09-30 13:36:19 +13:00
Serge Latyntsev
80b282b605 DOC Forget about google groups 2019-09-26 14:39:38 +12:00
Maxime Rainville
d7f5ed3e65 DOC Substituce old apache syntax for Require 2019-09-25 16:59:48 +12:00
Robbie Averill
d95fe203b8
Merge pull request #9263 from creative-commoners/pulls/4/js-api-docs-semver-warning
DOC Add warning about Semver status of modern JS / GraphQL tooling
2019-09-24 18:17:29 -07:00
Aaron Carlino
b0a17f5df1 Update changelog 2019-09-25 11:23:57 +12:00
Garion Herman
637a891b8c DOC Include link to semver.org in modern JS / GQL warning 2019-09-25 11:22:04 +12:00
Garion Herman
3db0fa46b5 DOC Add warning about Semver status of modern JS / GraphQL tooling 2019-09-25 10:26:06 +12:00
Serge Latyntcev
88fde6e7c3 Merge branch '4.4' into 4 2019-09-24 17:29:06 +12:00
Serge Latyntcev
50a1aa4c4d Merge branch '4.3' into 4.4 2019-09-24 17:28:31 +12:00
Aaron Carlino
b002ef1171 Merge branch '4.4' into 4 2019-09-24 17:26:50 +12:00
Serge Latyntcev
26a4fb38ba Added 4.3.6 changelog 2019-09-24 17:20:48 +12:00
Aaron Carlino
79a89e751d Added 4.4.4 changelog 2019-09-24 17:05:26 +12:00
Aaron Carlino
c1047fac32 DOCS: Add docs for versioned files migration 2019-09-24 16:04:22 +12:00
Aaron Carlino
28057e3a71 DOCS: Add FileShortcodeProvider change to changelog 2019-09-24 16:03:48 +12:00
Aaron Carlino
1f92b21a04 DOCS: Add FileShortcodeProvider change to changelog 2019-09-24 16:03:48 +12:00
Aaron Carlino
8ee5e621fd DOCS: Add docs for versioned files migration 2019-09-24 16:00:51 +12:00
Aaron Carlino
99ab3c6421 DOCS: Add FileShortcodeProvider change to changelog 2019-09-24 16:00:51 +12:00
Serge Latyntcev
f185dfb2c5 DOC Clarify that Security release is a SilverStripe Core release 2019-09-18 11:19:55 +12:00
Christopher Darling
c8f274de80
DOCS fix DataList::exclude() code example 2019-09-15 20:34:18 +01:00
Robbie Averill
b8e81983b9 DOCS Update PSR-12 compliance in GridField_ActionProvider docs code examples
[ci skip]
2019-09-13 18:09:10 -07:00
Robbie Averill
ed47f43133
Merge pull request #9169 from jakxnz/patch-1
Update 04_Create_a_GridField_ActionProvider.md
2019-09-13 18:05:51 -07:00
Ingo Schommer
229df95fe9 DOCS Warning about protected file serving in 4.x 2019-09-13 18:01:44 -07:00
Serge Latyntsev
233e0e7aa0 ENH PasswordExpirationMiddleware implementation (#9207) 2019-09-12 14:34:06 +12:00
Aaron Carlino
da6582f593 NEW: Remove web installer, move to separate package (#9231)
* Remove installer

* Remove exposed install files

* Replace Dev/Install classes still in use

* Update changelog

* FIX make the grid field actions consistent to what they look like on pages

Resolves https://github.com/silverstripe/silverstripe-admin/issues/904

* Docs changes
2019-09-11 13:10:25 +12:00
Andre Kiste
75cd9dc944
Merge pull request #9202 from open-sausages/pulls/4/document-ss32-variant-migration
DOC Explain how to mgirate SS3.2 variants
2019-09-11 11:47:28 +12:00
Matt Peel
7083f016c1
Update secure coding standards
As of SS4.0.0 and the introduction of TrustedProxyMiddleware, the default now if no trusted proxies are defined is that nothing is a trusted proxy, whereas in SS3 a missing declaration was treated as everything being allowed.
2019-09-10 12:55:24 +12:00
Andre Kiste
23719af2a1
Apply suggestions from code review
Typos
2019-09-09 13:36:53 +12:00
Maxime Rainville
c165561580
Fix typos
Co-Authored-By: Robbie Averill <robbie@averill.co.nz>
2019-09-09 09:06:40 +12:00
Robbie Averill
66ca1c925f
Merge pull request #9217 from silverstripe/doc-node10
Update recommended node version in contrib docs
2019-09-06 11:54:41 -07:00
Robbie Averill
23b40557e8
Reduce version for Node 10 to SilverStripe 4.4
[ci skip]

Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-06 11:54:14 -07:00
Ingo Schommer
e3f06c4468 DOCS Remove uservoice mentions
See https://forum.silverstripe.org/t/a-new-way-to-manage-feature-ideas/2264
2019-09-06 16:01:30 +12:00
Sam Minnée
614e99a899
Update recommended node version in contrib docs 2019-09-04 18:55:47 +12:00
Ingo Schommer
9d1d70ba8e
Apply suggestions from code review
Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-04 15:34:36 +12:00
Ingo Schommer
8d7069ef83
Update docs/en/00_Getting_Started/index.md
Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-04 15:33:41 +12:00
Ingo Schommer
79bd50ecce
Update docs/en/00_Getting_Started/index.md
Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-04 15:33:31 +12:00
Ingo Schommer
b34e0bde8a
Update docs/en/00_Getting_Started/00_Server_Requirements.md
Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-04 15:32:41 +12:00
Ingo Schommer
ab09e151a0
Update docs/en/00_Getting_Started/00_Server_Requirements.md
Co-Authored-By: Garion Herman <garion@silverstripe.com>
2019-09-04 15:31:24 +12:00
Ingo Schommer
ccb4118e74 DOCS Public webroot requirement 2019-09-03 18:51:53 +12:00
Ingo Schommer
f93fcd66ef DOCS Moved install guides to forum
We don't keep them updated, and they're better placed in a wiki entry on our forum:
https://forum.silverstripe.org/c/tips
2019-09-03 18:39:56 +12:00
Ingo Schommer
1977ab5ee2 DOCS Remove IIS install docs
This is so outdated it borders on being useless.
I've moved it to the forum as a starting point for our dear Microsoft adventurers instead:
https://forum.silverstripe.org/t/microsoft-iis-webserver-and-sql-server-support/2245
2019-09-03 18:39:56 +12:00
Ingo Schommer
ca5b1cbf61 DOCS Rewrite server requirements
* Remove overly specific PHP RNG instructions (that's just built into PHP7 through random_bytes now, which will throw if no suitable RNG is available)
 * Remove PHP 5 RNG requirements, since we don't support that PHP release any mre
 * Remove verbose explanation of PHP 5.6 support
 * Remove conflicting instructions for PHP memory limits
 * Remove version numbers from supporetd databases other than MySQL, it's up to the community modules to define that
 * Remove Oracle support (code is nine years old!)
 * Make "community supported" status clearer on databases, people can draw their own conclusions as open source users on Github
 * Remove IIS version number, I think we should just stick to "needs web.config" and not give the impression that this is actively tested
 * Remove mention of OSes for web servers, that's kind of irrelevant in today's hosting world (containers, PaaS, etc)
 * Shorten install instructions in favour of a "quickstart" and point to lessons instead
 * Remove mention of archive download option, we really shouldn't promote this - composer is the de-facto standard
 * Add generic descriptions of the hosting environment considerations without going too much into specifics
 * Remove Apache version number, we don't test on different versions, and really mostly rely on mod_rewrite working properly. Laravel does the same (doesn't claim specific Apache version support)
2019-09-03 18:38:15 +12:00
Ingo Schommer
d77c6514b4 DOCS Remove Nginx/HHVM guide
HHVM isn't supported any more, PHP 7 is where it's at
2019-09-03 15:58:18 +12:00
Ingo Schommer
5fc4a05a48 DOCS Remove MySQL SSL instructions
Only a tiny fraction of this is specific to SilverStripe,
and that is already covered under the environment variables elsewhere
2019-09-03 15:57:57 +12:00
Serge Latyntsev
296dc6a489 DOC Fix versioned snapshot image markdown (#9209) 2019-09-02 13:29:08 +12:00
Maxime Rainville
534e59faad DOC Explain how to mgirate SS3.2 variants 2019-08-28 15:08:55 +12:00
Robbie Averill
0f85fb108f
Merge pull request #9193 from open-sausages/pulls/4/docs-remove-lighthttpd
DOCS Remove Lighty docs
2019-08-26 15:02:26 +12:00
Ingo Schommer
1162b11b20 DOCS Remove Lighty docs
They don't account for protected files, or clear public webroot hosting.
I think this is more of a stackoverflow or forum.silverstripe.org article,
not something we should pretend to have official support for (or check for completeness and secure configuration)
2019-08-26 14:15:06 +12:00
Fred Condo
5a534e3ba5 DOCS: update nginx config to protect .protected
This change replicates what the apache .htaccess for the .protected
assets folder does.
2019-08-20 13:13:59 -07:00
Guy Marriott
f676672f76
Merge branch '4.4' into 4 2019-08-19 16:10:30 +12:00
Guy Marriott
a6614d8a77
Added 4.4.3 changelog 2019-08-19 15:01:22 +12:00
James Cocker
f68fac2c47
4.4.0 Upgrade Docs: Clarified that the shortcode task isn't run automatically 2019-08-16 14:42:16 +01:00
Ryan Potter
fa325d2360
Update pagination code snippet
Update pagination snippet to use summarised pagination.
2019-08-13 15:17:38 +12:00
Aaron Carlino
684f5311a0 Merge branch '4.4' into 4 2019-08-13 12:15:39 +12:00
Aaron Carlino
8cfd3f07ba Added 4.4.2 changelog 2019-08-12 16:08:07 +12:00
Robbie Averill
4936d265a2
DOCS Remove statement about a strict error when overloading PDOQuery constructor
Constructors are not bound by method signature match rules in PHP
2019-08-09 09:16:31 +12:00
Maxime Rainville
4380d7d155 API Add option to disable user-agent header session validation 2019-08-06 22:00:01 +12:00
Jackson Darlow
753b02d915
Update 04_Create_a_GridField_ActionProvider.md
Added missing parameters to boilerplate method
2019-08-06 13:36:45 +12:00
Jackson Darlow
9f7aad3b8f
Update 04_Create_a_GridField_ActionProvider.md 2019-08-06 13:32:44 +12:00
Robbie Averill
3224c9971b Merge branch '4.4' into 4 2019-08-02 11:24:54 +12:00
Robbie Averill
3b96c51688 Merge branch '4.3' into 4.4 2019-08-02 11:24:45 +12:00
Robbie Averill
2d2b0b82f0 DOCS Fix incorrect rendering of note on list item
[ci skip]
2019-07-25 12:03:12 +02:00
Robbie Averill
f1d8a04928
DOCS Fix broken markdown links for docs.silverstripe.org
[ci skip]
2019-07-22 13:02:57 +02:00
Robbie Averill
2a1394bed7 Merge branch '4.4' into 4 2019-07-19 10:46:00 +02:00
Robbie Averill
40f06fafa9 Merge branch '4.3' into 4.4 2019-07-19 10:45:44 +02:00
Robbie Averill
c7b15eaef5 Merge branch '4.2' into 4.3 2019-07-19 10:45:29 +02:00
Robbie Averill
c8eaf00d66
Revert "Added link to broaden description on SSL sertificates" 2019-07-18 17:36:57 +02:00
MatthewBellwood
4b29f06de2
Added link to broaden description on SSL sertificates 2019-07-18 17:44:52 +03:00
Ingo Schommer
4d93e48b10
DOCS Add silverstripe/login-forms (#9112)
See https://github.com/silverstripe/recipe-cms/issues/26.
Dependant on https://github.com/silverstripe/silverstripe-installer/pull/257.
2019-07-16 10:11:37 +12:00
Serge Latyntcev
29a663c65d Merge branch '4.4' into 4 2019-07-15 09:24:49 +12:00
Serge Latyntcev
d667d64f13 Merge branch '4.3' into 4.4 2019-07-15 09:18:17 +12:00
UndefinedOffset
571a4d9ace NEW: Added support for config condition if PHP extension is loaded 2019-07-02 14:55:36 -03:00
Sam Minnee
4b15c90c72 DOCS: Change default database connector. 2019-07-01 10:37:19 +12:00
Saophalkun Ponlu
6a8c6703d1 Remove use_gzip from HTMLEditorField since it's been removed by TinyMCE codebase (#7261)
* Remove `use_gzip` from HTMLEditorField

* DOCS Mention remove use_gzip in changelog
2019-06-21 09:27:48 +12:00
Ingo Schommer
0a6096a1bb
DOCS File migration background notes (#9058) 2019-06-21 08:47:40 +12:00
Robbie Averill
dcf4c64704
Merge pull request #9077 from lerni/ss-log-example-config-docs-fix
fix #9075 log example yml-config in docs
2019-06-19 20:17:43 +12:00
lerni
0c7458cd21 add single quotes 2019-06-19 08:21:31 +02:00
Serge Latyntcev
5be0c15587 Doc / Fix link to SS-2019-022 in changelogs 2019-06-19 15:14:16 +12:00
lerni
e652b3e421 fix #9075 log example yml-config in docs 2019-06-18 09:17:25 +02:00
Robbie Averill
ca0949057d
Merge pull request #9076 from open-sausages/pulls/4/docs-cascade-publish-delete
DOCS Clarify cascade publish/delete perm checks
2019-06-18 18:09:24 +12:00
Ingo Schommer
732dfe5aaa DOCS Clarify cascade publish/delete perm checks
We decided during implementation not to check permissions explicitly on cascading objects due to performance concerns.
For example, when publishing a page with embedded images, publish permissions on the image are implied - even if Image->canPublish() would return false for this author.

See https://github.com/silverstripe-security/security-issues/issues/57
2019-06-18 16:27:29 +12:00
Ingo Schommer
49c04bf9cc
DOCS Shortcode upgrade section 2019-06-18 09:20:38 +12:00
Guy Marriott
bb5b610636
Merge branch '4.4' into 4 2019-06-17 08:58:50 +12:00
Serge Latyntsev
2e33456e46 Mention versioned snapshots in the versions documentation (#9057)
* Mention versioned snapshots in the versions documentation

* Add screenshot
2019-06-16 23:52:30 +12:00
Guy Marriott
0294029f92
DOCS Remove confusing API change from changelog
This change was removing a method that was added in 4.4.0 also - this makes it not a breaking change for SemVer
2019-06-13 10:46:48 +12:00
Robbie Averill
4eb5800532 Merge pull request #9055 from open-sausages/pulls/4/release-docs-update
DOCS: Ensure minor releases follow security release steps
2019-06-12 11:47:39 +12:00
Aaron Carlino
a21bd9eff8 MINOR: Ensure minor releases follow security release steps 2019-06-12 10:57:09 +12:00
Rob Ingram
663e23fae3
Update 03_Track_member_logins.md
The extension point for members has changed from `memberLoggedIn` to `afterMemberLoggedIn`.
2019-06-12 10:13:20 +12:00
Maxime Rainville
62cdc43e78 DOC Add missing reference to TagToShortcodeTask. 2019-06-11 15:17:25 +12:00
Aaron Carlino
731646f49d Merge branch '4.4' into 4 2019-06-11 11:48:18 +12:00
Aaron Carlino
92edb68c0c DOCS: Add React 16 information 2019-06-11 11:47:33 +12:00
Guy Marriott
c57584dada DOCS Adding information about better buttons to the release changelog (#9049) 2019-06-11 11:47:17 +12:00
Aaron Carlino
e2894b414b Added 4.4.1 changelog 2019-06-11 11:47:17 +12:00
Aaron Carlino
3c92501dc5 DOCS: Add React 16 information 2019-06-11 10:46:21 +12:00
Guy Marriott
dad80f5acd DOCS Adding information about better buttons to the release changelog (#9049) 2019-06-11 08:28:04 +12:00
Juan Molina
ef5f2a526f
Minor revision, broken link
Minor typos and broken link corrected, added some typographic consistency.
2019-06-10 18:46:14 +02:00
Aaron Carlino
054dbd6ae5 Added 4.3.4 changelog 2019-06-10 22:49:06 +12:00
Aaron Carlino
960a7bb5ae Added 4.2.5 changelog 2019-06-10 22:48:57 +12:00
Aaron Carlino
c5d3f82576 Added 4.4.1 changelog 2019-06-10 17:37:24 +12:00
Aaron Carlino
d04e54c1be Merge branch '4.4' into 4 2019-06-10 17:33:30 +12:00
Aaron Carlino
c747b1f8d3 Merge branch '4.3' into 4.4 2019-06-10 17:32:07 +12:00
Aaron Carlino
f766555d61 Merge branch '4.2' into 4.3 2019-06-10 17:27:05 +12:00
Serge Latyntcev
ca56e8d78e [CVE-2019-12246] Denial of Service on flush and development URL tools 2019-06-10 17:23:56 +12:00
Maxime Rainville
addf98a5e0 DOC Improve File migration do 2019-06-07 17:09:52 +12:00
blueskies79
cad84974d2
Update Config example namespace
I think it's handy to add this namespace to the docs ;-)
2019-06-06 11:43:28 +02:00
Ingo Schommer
30496144b9 DOCS More detail on queuedjobs file migrations 2019-06-05 15:10:09 +12:00
Guy Marriott
0520d77461
API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards (#9008)
API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards
2019-05-31 09:56:39 +12:00
Loz Calver
487beb40ce
Merge pull request #9004 from blueskies79/patch-2
Update 04_Data_Types_and_Casting
2019-05-30 09:23:06 +01:00
Maxime Rainville
5b6d0946f4 API Add extension points to MigrateFileTask (#8994)
* API Add extension points to MigrateFileTask

* Apply suggestions from code review

Co-Authored-By: Guy Marriott <guy@scopey.co.nz>
2019-05-28 09:24:01 +12:00
Maxime Rainville
9bfce8c1a4 API Add extension points to MigrateFileTask (#8994)
* API Add extension points to MigrateFileTask

* Apply suggestions from code review

Co-Authored-By: Guy Marriott <guy@scopey.co.nz>
2019-05-28 09:19:05 +12:00
Robbie Averill
d873779956 API checkHistoricalPasswords(), characterStrength() and minLength() are now correctly deprecated from 4.5.0 onwards 2019-05-27 09:12:32 +12:00
blueskies79
c7eede1d66
Reverted DBField & list both [Field] and [DBField]
I changed the list of types to the suggested format for clarity and changed Field back to DBField as suggested.
2019-05-26 15:40:25 +02:00
blueskies79
f08915ccf2
Update 04_Data_Types_and_Casting
This is a suggestion to update the docs to use the actual type names used in code. All the examples use the non-DB type names (ie: 'Wheels' => 'Int') but the bulleted list suggests it should be 'Wheels' => 'DBInt'. This is a bit confusing for new SS developers. Could we change this?
2019-05-23 12:09:59 +02:00
Robbie Averill
5851979096
Merge pull request #9002 from open-sausages/pulls/4/docs-file-access
DOCS Clarified file permission control
2019-05-23 15:38:07 +12:00
Robbie Averill
f06439f81e
Merge pull request #9003 from sminnee/min-php71-ss45
API: Drop PHP 5.6 and PHP 7.0 support in SS 4.5
2019-05-23 13:57:06 +12:00
Sam Minnee
ac35344041 API: Drop PHP 5.6 and PHP 7.0 support in SS 4.5
This was discussed and agreed in #8556. The two changes are 
composer.json and travis. The docs have also been updated. No other
code changes have been made.
2019-05-23 13:10:45 +12:00
Ingo Schommer
75f87ac409 DOCS Grammar fixes 2019-05-23 10:38:56 +12:00
Ingo Schommer
1cb22b665d DOCS Clarify different file access types
[ci-skip]
2019-05-23 09:25:46 +12:00
Ingo Schommer
74c869f362 DOCS Note about custom File->canView()
See https://github.com/silverstripe/silverstripe-framework/issues/8493

[ci-skip]
2019-05-23 09:14:36 +12:00
Ingo Schommer
c82c1520fc DOCS Clarified file permission control
[ci-skip]
2019-05-23 09:08:08 +12:00
Robbie Averill
e948c5eb1e DOCS Update "release numbering" to document the fact that lock step releases are not required (#9000)
* DOCS Update "release numbering" to document the fact that lock step releases are not required

[ci skip]

* DOCS Update "making a SilverStripe core release" to clarify recipe versus module without lock step

Also adds note about peer reviewing the plan before release

[ci skip]
2019-05-22 10:16:24 +12:00
Guy Marriott
b9a8f64ef0
Update wording in example in syntax docs 2019-05-20 16:38:55 +12:00
Ingo Schommer
71e9f2faad DOCS Clarify CVE process
[skip ci]
2019-05-15 13:30:59 +12:00
Robbie Averill
ec71cdd103
Merge pull request #8982 from jmfederico/patch-4
Fix link to related lesson
2019-05-15 09:14:32 +12:00
Federico Jaramillo Martínez
368c88d59a
Fix link to related lesson 2019-05-14 12:06:17 -05:00
Federico Jaramillo Martínez
207cf75dc4
Fix link to npmjs 2019-05-14 07:20:49 -05:00
Federico Jaramillo Martínez
08e08160c1
Fix link to es6features 2019-05-14 07:18:09 -05:00
Sebastian Kalicki
e83edf7e94
Update 00_Configuration.md 2019-05-09 11:28:11 +02:00
Vinnie
168a4fe489
Update docs for GridField_ActionMenuItem required parameters
I found these errors while going through this tutorial,
missing ```use use SilverStripe\Forms\GridField\GridField;```

interface GridField_ActionMenuItem required parameters on  getTitle() and getGroup()

incorrect if statement on getExtraData() - $field is not defined
2019-05-09 09:01:54 +12:00
Aaron Carlino
2bdf1eac0a Merge branch '4.4' into 4 2019-05-06 16:03:35 +12:00
Aaron Carlino
ba15972d5c Added 4.4.0-rc1 changelog 2019-05-06 15:36:07 +12:00
Aaron Carlino
4a0f62fafd Added 4.4.0-rc1 changelog 2019-05-06 15:01:01 +12:00
Guy Marriott
ed7aaff7da
Merge branch '4.4' into 4 2019-05-03 09:47:13 +12:00
Ingo Schommer
1f78e8ae80 NEW Clean up secureassets module artefacts (#8948)
See https://github.com/silverstripe/silverstripe-assets/issues/231
2019-05-02 21:05:19 +12:00
Andre Kiste
48db515fbd NEW Fix folder permissions (#8950)
* Add `FixFilePermissionsHelper` subtask
* Changed name to folder permissions, added more loggin
2019-05-02 16:28:57 +12:00
Ingo Schommer
0696045e59 NEW Legacy thumbnail migration task (#8924)
* NEW Legacy thumbnail migration task

See https://github.com/silverstripe/silverstripe-assets/issues/235
Makes a start at https://github.com/silverstripe/silverstripe-assets/issues/219 as well

* API Removed migrate_legacy_file support

For the vast majority of sites, you really don't want to run your file migration as part of dev build.
The step is involved enough to warrant it's own task.
I don't think this is an API change, since the setting won't have affect
for anyone who has already enabled it - they would've already done the one-off migration.

See https://github.com/silverstripeltd/open-sourcerers/issues/91
and https://github.com/silverstripe/silverstripe-assets/issues/235
2019-05-02 09:33:53 +12:00
Ingo Schommer
2e5c7b9f2d Merge remote-tracking branch 'origin/4.4' into 4 2019-04-30 13:34:27 +12:00
Sam Minnée
2c09c83899 DOC: Add breakdown of PHP support by version (#8947)
Currently, this information requires that you open different pages and blogposts and and compare the information yourself.
This is more helpful.
2019-04-30 13:07:15 +12:00
Andre Kiste
0c6c57f1ef Add getFieldMap method to retrieve a list of all fields for any giv… (#8892)
* Add `getFieldMap` method to retrieve a list of all fields for any given class

* Add `TagsToShortcodeTask` to upgrading guide

Adding after the file migration part as this is where it makes the most sense to run it.

* `getFieldMap` accepts an array

* Move to `DataObjectSchema`

* Add `HTMLVarchar` to documentation
Minor refactoring

* Add test for checking that `subclassesfor` works without the base class
Add test `DataObjectSchema::getFieldMap` returns the correct array

* Remove cms dependency
2019-04-30 10:43:14 +12:00
Adrian Humphreys
e648fd31f9 Docs: Update Dynamic_Default_Fields.md (#8941) 2019-04-30 09:00:09 +12:00
Garion Herman
5c4367f46b Use environment variables in example SMTP config
Currently the email documentation provides an example of how to use the SMTP adapter in SwiftMailer, but this example hardcodes the password in the config file which is a security issue. It is possible to reference environment variables instead, so we should document and encourage this.
2019-04-30 08:59:54 +12:00
Adrian Humphreys
212a99c904 Add info around namespacing with controllers 2019-04-30 08:59:29 +12:00
Ingo Schommer
da91f44c00 DOCS File migration changes for 4.4.0 (#8910)
* DOCS File migration changes for 4.4.0

See https://github.com/silverstripe/silverstripe-versioned/issues/177

* Update docs/en/02_Developer_Guides/14_Files/03_File_Security.md

Co-Authored-By: chillu <ingo@silverstripe.com>

* Corrected statements on archived/versioned files

* Corrected statement on filesystem paths of protected vs. public

* Update docs/en/02_Developer_Guides/14_Files/03_File_Security.md

Co-Authored-By: chillu <ingo@silverstripe.com>

* Clarify redirect behaviour
2019-04-30 08:59:25 +12:00
Matt Peel
a61cb1de99 Fix reference to webconfig.php, an invalid file
The upgrading docs reference webconfig.php, which is incorrect and has never existed. I presume the docs mean to reference web.config, which is the IIS configuration file.

I've also fixed a couple of minor spelling mistakes and mentioned Apache for htaccess and IIS for web.config so people know what they're for.

[ci skip]
2019-04-30 08:55:03 +12:00
Maxime Rainville
e95dde8f1e DOC Update change log to reference updated migration task (#8945)
* DOC Update change log to reference updated migration task

* Update docs/en/04_Changelogs/4.4.0.md
2019-04-30 08:50:33 +12:00
Maxime Rainville
54cb591f54 DOC Update change log to reference updated migration task (#8945)
* DOC Update change log to reference updated migration task

* Update docs/en/04_Changelogs/4.4.0.md
2019-04-30 08:45:29 +12:00
Adrian Humphreys
4155b9f483 Docs: Update Dynamic_Default_Fields.md (#8941) 2019-04-29 10:21:13 +12:00
Garion Herman
cb37172947
Use environment variables in example SMTP config
Currently the email documentation provides an example of how to use the SMTP adapter in SwiftMailer, but this example hardcodes the password in the config file which is a security issue. It is possible to reference environment variables instead, so we should document and encourage this.
2019-04-29 09:53:22 +12:00
Adrian Humphreys
8206538f31
Add info around namespacing with controllers 2019-04-26 14:22:04 +12:00
Ingo Schommer
15396116e5 DOCS File migration changes for 4.4.0 (#8910)
* DOCS File migration changes for 4.4.0

See https://github.com/silverstripe/silverstripe-versioned/issues/177

* Update docs/en/02_Developer_Guides/14_Files/03_File_Security.md

Co-Authored-By: chillu <ingo@silverstripe.com>

* Corrected statements on archived/versioned files

* Corrected statement on filesystem paths of protected vs. public

* Update docs/en/02_Developer_Guides/14_Files/03_File_Security.md

Co-Authored-By: chillu <ingo@silverstripe.com>

* Clarify redirect behaviour
2019-04-24 14:00:48 +12:00
Matt Peel
91f168955d Fix reference to webconfig.php, an invalid file
The upgrading docs reference webconfig.php, which is incorrect and has never existed. I presume the docs mean to reference web.config, which is the IIS configuration file.

I've also fixed a couple of minor spelling mistakes and mentioned Apache for htaccess and IIS for web.config so people know what they're for.

[ci skip]
2019-04-21 01:29:47 +12:00
Erlend Mongstad
80b097eb68
Added missing Permission class to example
Following the example will give the following error;

```[Emergency] Uncaught Error: Class {my namespace}\Permission not found```

Added the missing class
2019-04-17 02:36:13 +02:00
Robbie Averill
6b07b2c47c Update docs/en/02_Developer_Guides/01_Templates/How_Tos/03_Disable_Anchor_Links.md
Fix code styling

Co-Authored-By: DorsetDigital <DorsetDigital@users.noreply.github.com>
2019-04-16 22:32:55 +01:00
DorsetDigital
321ef827b8
Update 03_Disable_Anchor_Links.md
Update example code for disabling anchors on a per-instance basis.  The previous code was unclear and statically called a non-static method on SSViewer  (presumably this was SS3 code)
2019-04-16 21:22:27 +01:00
Christopher Darling
fcef36b7fa
DOCS composer autoload examples should be psr-4
currently 'psr4'
2019-04-15 06:55:01 +01:00
Robbie Averill
8a06682e31 Merge branch '4.3' into 4
# Conflicts:
 #	src/ORM/Connect/DBSchemaManager.php
2019-04-11 11:24:17 +12:00
Ingo Schommer
fcdc146996 DOCS Limitations of publishall
Fixes https://github.com/silverstripe/silverstripe-cms/issues/2406
2019-04-10 10:42:49 +12:00
Al
9a43952385
Fix formatting
Last code block was not closed
2019-04-10 08:22:51 +12:00
Ingo Schommer
d04ef04999 DOCS Upgrading guide known issues and self-update 2019-04-09 08:24:15 +12:00
Guy Marriott
a9d57f5bfb
Merge pull request #8241 from creative-commoners/pulls/4.3/separate-logging
Separate core error logging from standard LoggerInterface
2019-04-05 08:49:09 +13:00
Hayden Shaw
30775aa428
DOCS HistoryViewerField updates
* Add missing rollback operation in scaffolding example
* Update block_id references to id  to allow query to read query to run successfully in conjunction with HistoryViewerField
2019-04-02 16:59:52 +13:00
Robbie Averill
d816989f2e
Merge pull request #8893 from open-sausages/pulls/4/docs-critical-security-fixes
DOCS Limited "critical security fixes" release lines
2019-04-02 13:14:14 +13:00
Anton Smith
167881cc38 Update path 2019-04-02 12:46:19 +13:00
Ingo Schommer
af7e055574 DOCS Limited "critical security fixes" release lines
We're adopting CVSS (https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator),
which allows us to classify the impact of security issues
based on industry standard metrics.

While there is still a lot of room for interpretation,
it is more objective than our previous system of "critical/high/medium/low",
with one sentence descriptions on how we interpret that "severity rating".

This effectively changes our process to only apply
security fixes to release lines in "limited support" (currently 3.6 and 3.7)
if they're considered "critical" (CVSS > 9.0).

We've already limited preannounces to CVSS >7.0 in these docs.
2019-04-01 17:08:13 +13:00
Rob McGrail
7396f57088
Change case in link
Link doesn't resolve on https://docs.silverstripe.org/en/4/upgrading/upgrading_module/ because of the capital letter
2019-03-29 10:42:31 +13:00
Andre Kiste
f3535972e4 DOC Add more clear instructions on handling upgrade conflicts (#8836)
* Add more clear instructions on handling upgrade conflicts

* More module upgrading info

* Make it make sense

* Tweak sentence
2019-03-26 16:20:53 +13:00
DorsetDigital
abe76e9b29
Update 02_RSSFeed.md
Change file name to PageController to match code.
Change example code to use parameter in `Link()` method rather than using concatenation
2019-03-23 13:22:37 +00:00
Guy Marriott
5243ec2179
Merge pull request #8811 from Juanitou/patch-5
Correct typo and commit hash in 4.3.1 changelog
2019-03-23 10:03:18 +13:00