Commit Graph

961 Commits

Author SHA1 Message Date
Damen Hansen
d5893bf23c
Update 01_File_Management.md
Changed very small typo in setAllowedExtensions. Changed Extensiones to Extensions.
2020-07-13 14:20:27 +12:00
Garion Herman
d408a4e714 Merge branch '4.6' into 4 2020-07-13 12:28:14 +12:00
Garion Herman
fbe0f5a981 Merge branch '4.5' into 4.6 2020-07-13 12:27:02 +12:00
Maxime Rainville
0eb476916d DOC Explain how to implement a custom QueryPermissionChecker 2020-07-10 17:59:49 +12:00
Maxime Rainville
87c041b92d
DOC Add extra information on how to customise a file HTTP response
* DOC Add extra information on how to customise an file HTTP response
* Apply suggestions from code review
Co-authored-by: Robbie Averill <robbie@averill.co.nz>
2020-06-30 15:54:42 +12:00
James Cocker
b4a3cc700a
Fixes getCMSFields TabSet example
Current example results in: "[Emergency] Uncaught InvalidArgumentException: TabSet can only contain instances of other Tab or Tabsets"
2020-06-29 16:37:26 +01:00
Loz Calver
64688dbc10
Merge pull request #9563 from shoosah/patch-1
Update 02_HTTP_Cache_Headers.md
2020-06-29 09:46:28 +01:00
Sherry Shahbazi
04872742eb
Update 02_HTTP_Cache_Headers.md 2020-06-29 15:54:17 +12:00
mr-macedawg
d7885adf34
Update 09_Casting.md
Changed SS_DateTime to DBDatetime as SS_DateTime was changed to DBDateTime in version 4.0
2020-06-29 12:15:01 +10:00
Sam Minnée
714c4cba9c
Merge pull request #9546 from andrewandante/feature/disambiguate_first_methods_on_lists
deprecate First and Last in order to disambiguate for array lists
2020-06-23 14:46:29 +12:00
Guy Marriott
4df45f4fe0
Merge pull request #9550 from jakxnz/pulls/4/docs-regarding-cached-get-ones
Added documentation regarding some cached ORM scenarios
2020-06-17 09:04:07 -07:00
Jackson Darlow
6813c0f7e8 Added documentation regarding some cached ORM scenarios 2020-06-17 17:17:04 +12:00
Andrew Aitken-Fincham
7c95237e8d update template docs, move deprecation to 5.0, capitalise Is 2020-06-15 12:25:13 +01:00
Jackson Darlow
ae1a883b32 Added mention of Session.timeout to secure_coding docs 2020-06-12 14:43:37 +12:00
Indy Griffiths
63fd20093e
DOCS fix incorrect Injector YAML examples 2020-05-26 22:30:01 +12:00
Maxime Rainville
a24a923d0c
DOC Create dedicated article about limiting allowed file types (#9505) 2020-05-20 20:36:51 +12:00
Michal Kleiner
21129b1624
Use short array syntax across the framework's codebase 2020-05-16 10:34:45 +01:00
Maxime Rainville
10efe79b93
DOC Explain how to configure a low level application middleware (#9504) 2020-05-07 11:22:32 +12:00
Mojmir Fendek
7dc6b36c16
Unique key for DataObject (#9400)
NEW Unique key for DataObject
2020-05-04 09:10:51 +12:00
Dustin Quam
e344b66dbe
Fixed broken link to the module creation docs 2020-05-01 12:19:32 -05:00
Robbie Averill
8bd9f48669
Merge pull request #9501 from mattclegg/1588075087
DOCS: Fix typos & grammer
2020-04-28 09:42:03 -07:00
mattclegg
76bc7524a7
DOCS: Fix typos & grammer 2020-04-28 17:50:39 +05:45
Serge Latyntcev
cb36aab80c Merge branch '4.5' into 4 2020-04-15 14:49:19 +12:00
Serge Latyntcev
a9c05f3287 Merge branch '4.4' into 4.5 2020-04-15 14:48:59 +12:00
Serge Latyntcev
cf898a2672 Merge branch '4.3' into 4.4 2020-04-15 14:47:59 +12:00
Maxime Rainville
7da77be5ce Merge branch '4.5' into 4 2020-04-15 08:22:27 +12:00
Maxime Rainville
de8fd82c55 Merge branch '4.4' into 4.5 2020-04-14 14:18:18 +12:00
Serge Latyntcev
eaa69530be DOC CMS 3.x file migration section about versioned files 2020-04-14 10:53:21 +12:00
mattclegg
6a640f1498
DOCS: Example should show how to disable VersionedGridfieldDetailForm as it's enabled by default 2020-04-13 17:34:55 +05:45
Maxime Rainville
4b0345bee7 DOC Explain how to use the new file migation sub tasks in the 4.4.6/4.5.2 changelogs 2020-04-13 17:16:29 +12:00
Loz Calver
f1c74c3570
Merge pull request #9415 from botzkobg/4
Form validation should throw ValidationException
2020-04-08 09:33:20 +01:00
tdenev
1d85981537 Refactoring the form validation in the action to be more readable and in the SS standards based on the code review 2020-04-07 22:46:32 +01:00
tdenev
d6fc7fe804 Fix issue with the GridField documenation - many_many_extraFields code example 2020-04-05 18:53:21 +01:00
Dan Hensby
5bf2ac83ee
Merge branch '4.5' into 4 2020-04-01 19:23:47 +01:00
Loz Calver
5952a7ce71
Merge pull request #9444 from mattclegg/docs-13_i18n
[DOCS] Example should be valid YAML
2020-03-27 16:34:40 +00:00
mattclegg
ba3deb9b72
[DOCS] Example should be valid YAML 2020-03-27 20:31:25 +05:45
Daniel Hensby
1fb574a5bd
NEW: Variadic URL parameter matches for url_handlers (#9438)
* Add wildcard URL parameter matches for url_handlers

* Extra tests for wildcard parameters

* Add a PHP warning if more params appear after wildcard param
2020-03-25 09:16:13 +13:00
Robbie Averill
5002f514b3
FIX Capitalisation fixes in welcome back message (#9439) 2020-03-23 15:54:30 +13:00
Garion Herman
8be411541d
Merge pull request #9430 from mattclegg/patch-3
[DOCS] Update link to reactjs_redux_and_graphql
2020-03-16 17:15:52 +13:00
Matt Clegg
101c189c16
[DOCS] Missing line termination in example 2020-03-14 15:19:17 +05:45
Matt Clegg
ecb4cd889e
[DOCS] Update link to reactjs_redux_and_graphql 2020-03-13 14:28:23 +05:45
Serge Latyntcev
335cc1245e DOC TagsToShortcodeTask name typo fixed in the File migration guide 2020-03-03 13:55:05 +13:00
botzko
a1f0f2f45d Form validation should throw ValidationException instead of calling unexisting method "addErrorMessage()" 2020-02-21 23:55:38 +00:00
Zubair
9733060d1c
Fix Related section at bottom of document 2020-02-21 09:53:57 -05:00
Tyler Trout
b7391fd34f
Update 02_FixtureFactories.md
- Removed duplicate `use SilverStripe\Core\Injector\Injector;`
- Changed $myPageObj to $MyObjectObj
2020-02-17 16:49:52 -05:00
Maxime Rainville
affd43052a Merge branch '4.5' into 4 2020-02-17 18:11:23 +13:00
Maxime Rainville
acd7d94167 Merge branch '4.4' into 4.5 2020-02-17 13:07:26 +13:00
Serge Latyntcev
ad1b00ec7d [CVE-2019-19325] XSS through non-scalar FormField attributes
Silverstripe Forms allow malicious HTML or JavaScript to be inserted
through non-scalar FormField attributes, which allows performing XSS (Cross-Site Scripting)
on some forms built with user input (Request data). This can lead to phishing attempts
to obtain a user's credentials or other sensitive user input.
There is no known attack vector for extracting user-session information or credentials automatically,
it required a user to fall for the phishing attempt.
XSS can also be used to modify the presentation of content in malicious ways.
2020-02-17 09:58:29 +13:00
Guy Marriott
c31de772ab
Merge pull request #8838 from creative-commoners/pulls/4/slash-means-root
Use '/' as an alternative designation for root in routing
2020-02-14 11:29:32 -08:00
Garion Herman
29943f9049
API TestSession request methods now use the correct HTTP method (#8987)
* API TestSession request methods now use the correct HTTP method

* DOCS Update requests section in Functional Testing to reflect API change
2020-02-14 16:01:06 +13:00