Changesets: MantisBT
|
master 63e33b24 2013-10-19 22:53 Details Diff |
Travis: before_script added tracing Added some echo statements and separators in the output to make it easier to see in the logs where things went wrong in case of failure. |
||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 165c0069 2013-10-19 12:01 Details Diff |
Remove our last closing PHP tag at end of file (some remaining in libs) | ||
| mod - bug_stick.php | Diff File | ||
|
master-1.2.x 26c7c41a 2013-10-19 11:49 Details Diff |
Localisation updates from http://translatewiki.net. | ||
| mod - lang/strings_turkish.txt | Diff File | ||
|
master 2a5d8432 2013-10-19 11:47 Details Diff |
Fix regression: Sorting by category not working | ||
| mod - core/columns_api.php | Diff File | ||
|
master 12de8464 2013-10-19 11:04 Details Diff |
Fix regression in account_sponsor_page.php introduced in commit fbd654083f061fcfcc8dc7229953cc44737889fa Wrong bug links in account_sponsor_page.php Regression introduced in commit fbd654083f061fcfcc8dc7229953cc44737889fa |
||
| mod - account_sponsor_page.php | Diff File | ||
|
master-1.2.x ad929d48 2013-10-19 10:36 Committer: dregad Details Diff |
Fix 0016513: XSS in account_sponsor_page.php project names account_sponsor_page.php.php does not correctly sanitise project names. It is thus possible for a malicious user with project manager access permissions (or higher) to let users execute malicious JavaScript when visiting account_sponsor_page.php. |
Affected Issues 0016513 |
|
| mod - account_sponsor_page.php | Diff File | ||
|
master 0002d106 2013-10-19 10:36 Details Diff |
Fix 0016513: XSS in account_sponsor_page.php project names account_sponsor_page.php.php does not correctly sanitise project names. It is thus possible for a malicious user with project manager access permissions (or higher) to let users execute malicious JavaScript when visiting account_sponsor_page.php. |
Affected Issues 0016513 |
|
| mod - account_sponsor_page.php | Diff File | ||
|
master cd68989e 2013-10-19 08:12 Details Diff |
Travis: before_script use variable for hostname | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 69852bf0 2013-10-19 08:09 Details Diff |
Travis: before_script set crypto through installer | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 11084b0d 2013-10-19 07:58 Details Diff |
Travis: before_script refactor db setup | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 7e090029 2013-10-19 07:56 Details Diff |
Travis: before_script improve mantisbt parameters setting Instead of hardcoding the http query string directly in the cURL call, we now build it from an associative array, which makes maintenance and addition of new install parameters more easy. |
||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 15beef12 2013-10-19 07:49 Details Diff |
Travis: before_script use here-doc for bootstrap | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 0030145c 2013-10-19 07:48 Details Diff |
Travis: before_script use here-doc for apache config Use bash instead of sh |
||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master-1.2.x 0ac2a04f 2013-10-19 07:45 Details Diff |
Travis: branch spec switch from white- to blacklist Instead of only building master and master-1.2.x, we now build all branches except master-2.0.x. This allows users who fork the main repo and create feature branches have them go through the build process |
||
| mod - .travis.yml | Diff File | ||
|
master b2ed27e9 2013-10-19 07:45 Details Diff |
Travis: branch spec switch from white- to blacklist Instead of only building master and master-1.2.x, we now build all branches except master-2.0.x. This allows users who fork the main repo and create feature branches have them go through the build process |
||
| mod - .travis.yml | Diff File | ||
|
master b4ce7d19 2013-10-19 03:50 Paul Richards Details Diff |
Merge branch 'master' of github.com:mantisbt/mantisbt | ||
| mod - account_page.php | Diff File | ||
| mod - account_update.php | Diff File | ||
| mod - api/soap/mc_issue_api.php | Diff File | ||
| mod - config_defaults_inc.php | Diff File | ||
| mod - core.php | Diff File | ||
| mod - core/constant_inc.php | Diff File | ||
| mod - core/email_api.php | Diff File | ||
| mod - lang/strings_english.txt | Diff File | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master b8b4134d 2013-10-18 15:16 Details Diff |
Remove usage of obsolete option use_iis The option use_iis has been obsoleted in commit 5b0fdc544c7c09d96fee98b40fbe2c19476e97c1 Some ports from master-1.2.x didn't consider the removal. |
||
| mod - config_defaults_inc.php | Diff File | ||
| mod - core.php | Diff File | ||
|
master d4316ba7 2013-10-18 11:30 Details Diff |
soap api: remove stray error_log |
Affected Issues 0015196 |
|
| mod - api/soap/mc_issue_api.php | Diff File | ||
|
master dc3266a4 2013-10-18 02:04 Details Diff |
Fix infinite loop when adding email recipients Commit fbd654083f061fcfcc8dc7229953cc44737889fa introduced a regression preventing the addition of bugnotes as a PHP Fatal error: Maximum execution time of 30 seconds exceeded was triggered. Fixes 0016507 |
Affected Issues 0016507 |
|
| mod - core/email_api.php | Diff File | ||
|
master 5ea4f8ff 2013-10-17 21:20 Details Diff |
Fixes 0014486: Secure session login is false security while changing password does not require old password - Require current password to change it. - Require re-auth (similar to admin page) when accessing account page so that email can't be changed without a recent login. |
Affected Issues 0014486 |
|
| mod - account_page.php | Diff File | ||
| mod - account_update.php | Diff File | ||
| mod - core/constant_inc.php | Diff File | ||
| mod - lang/strings_english.txt | Diff File | ||
|
master 481f604c 2013-10-17 13:59 Details Diff |
travis: use sudo to write to config_inc.php file | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 25f6c1c2 2013-10-17 13:52 Details Diff |
travis: set up the master salt to allow SOAP tests to run | ||
| mod - scripts/travis_before_script.sh | Diff File | ||
|
master 60c216d8 2013-10-17 12:01 Paul Richards Details Diff |
Merge branch 'master' of github.com:mantisbt/mantisbt | ||
| rm - Soap.php | Diff | ||
| mod - admin/install.php | Diff File | ||
| mod - admin/schema.php | Diff File | ||
| mod - api/soap/mc_issue_api.php | Diff File | ||
| mod - api/soap/mc_tag_api.php | Diff File | ||
| mod - config_defaults_inc.php | Diff File | ||
| mod - core/bug_api.php | Diff File | ||
| mod - core/bugnote_api.php | Diff File | ||
| mod - core/category_api.php | Diff File | ||
| mod - core/constant_inc.php | Diff File | ||
| mod - core/database_api.php | Diff File | ||
| mod - core/file_api.php | Diff File | ||
| mod - core/helper_api.php | Diff File | ||
| mod - core/plugin_api.php | Diff File | ||
| mod - core/sponsorship_api.php | Diff File | ||
| mod - core/tag_api.php | Diff File | ||
| mod - docbook/Admin_Guide/en-US/Configuration.xml | Diff File | ||
| add - javascript/install.js | Diff File | ||
| mod - lang/strings_english.txt | Diff File | ||
| mod - manage_proj_ver_edit_page.php | Diff File | ||
| mod - tag_view_page.php | Diff File | ||
| rm - test.php | Diff | ||
| mod - tests/soap/CategoryTest.php | Diff File | ||
|
master e23da69a 2013-10-17 07:46 Details Diff |
Various fixes and improvements to the installer Fixes 0009701 0016357 0007632 (and potentially others as well) |
Affected Issues 0007632, 0009701, 0016357, 0016423 |
|
| mod - admin/install.php | Diff File | ||
| add - javascript/install.js | Diff File | ||
|
master be00a3b9 2013-10-17 07:43 Details Diff |
Install: perform DB version check while connected as admin This avoids the issue where the call to ServerInfo() only works on MySQL if the database is open, which may not be the case when testing with database user (e.g. if user does not exist or does not have access) Fixes 0007635 |
Affected Issues 0007635 |
|
| mod - admin/install.php | Diff File | ||
