463dfbf4fe
Fix incorrect parameter encoding when using URLs rewriting
...
A parameter with quotes or other special characters should be url encoded.
Incorrect encoding could happen when using search queries like this one:
modified:">=2023-04-01"
2023-04-19 21:37:19 -07:00
af8159b4bb
Allow full name to be retrieved by SSO ReverseProxy
...
Expand on #4585 by also getting the user's full name from the Reverse Proxy:
If a ReverseProxy provides more than REMOTE_USER, such as email, it might
as well also provide the user's full name.
2023-02-18 17:28:39 -08:00
4bf3b0d459
Fix various compatibility issues with PHP 8
2022-02-08 22:20:20 -08:00
f5bb55bdb8
PHP 8 Compatibility
2022-02-05 11:49:03 -08:00
71123b0f37
Add missing CSRF checks
2021-06-05 14:59:12 -07:00
33c3b32cda
Allow email to be retrieve by SSO ReverseProxy
...
If REMOTE_EMAIL header is set, use it as user email.
If REVERSE_PROXY_DEFAULT_DOMAIN is set but not REMOTE_EMAIL, use the current construct.
2020-08-28 22:59:59 -07:00
8777fc7561
Added PUT method using CURLOPT_CUSTOMREQUEST
2020-06-14 11:45:42 -07:00
35602c0880
Change string indexing from {0} to [0] (deprecated in PHP 7.4)
2019-11-09 11:46:53 -08:00
9eb42aae33
Add missing curl_close()
2019-06-04 16:40:58 -07:00
4ebcf84d47
Display cURL error message in logs
2019-06-04 15:57:07 -07:00
b26776e529
Add cURL support to HTTP Client
...
- Add HTTP_PROXY_EXCLUDE option when cURL is used
- Show HTTP client backend in about page
- Fallback to legacy Stream Contexts if cURL extension is not available
2019-06-03 20:00:49 -07:00
29b1357cd2
Make HTTP client timeout configurable
2018-07-05 14:39:58 -07:00
f92eb448cb
Add response body to InvalidStatusException
2018-03-02 13:41:37 -08:00
ebe04e672c
Improve HTTP client to raise exceptions
2018-03-02 12:05:41 -08:00
9ddefa979a
Add CSRF check for task and project files upload
2018-01-29 15:56:30 -08:00
ccd177ada6
Store PHP sessions in the database
2017-12-12 15:04:28 -08:00
2cac4c811d
Add workaround when IE11 submit corrupted multipart/form-data
2017-01-14 13:44:57 -05:00
544da3150a
Add P3P headers to avoid potential issues with IE
2016-11-09 19:11:51 -05:00
4364559805
Handle HTTP header X-Real-IP to get IP address
2016-07-16 14:11:14 -04:00
cf7bac1860
Added config parameter to allow self-signed certificates for the HTTP client
2016-06-05 15:42:22 -04:00
a08339059b
Improve background workers
2016-06-05 14:19:07 -04:00
872dc79dbd
Do not execute controller if the response is already sent
2016-05-25 21:28:33 -04:00
20052c7dd2
User import is now a popover
2016-05-15 21:20:46 -04:00
67b8361649
Refactoring: added controlled middleware and changed response class
2016-05-15 18:31:47 -04:00
11858be4e8
Filter refactoring
2016-04-09 22:42:17 -04:00
c7cceade96
Handle state in OAuth2 client
2016-03-27 12:23:18 -04:00
820c929ab3
Added avatar image upload
2016-03-26 14:43:41 -04:00
6ef83d0e05
Add unit test for transition model
2016-02-29 22:40:26 -05:00
a22476ffdf
Added support for HTTP header "X-Forwarded-Proto: https"
2016-02-28 20:00:11 -05:00
bb040cfb78
Simplify code to handle ajax popover and redirects
2016-01-30 22:25:16 -05:00
5c92f46786
Add external links for tasks with plugin api
2016-01-30 20:38:20 -05:00
8baa417ece
Move default-src CSP rule to ClassProvider
...
It was impossible to override the default-src CSP rule inside a plugin. This commit
fixes this limitation by moving the assignation of the rule from Response class to
ClassProvider.
2016-01-23 18:47:47 +01:00
27b9b7a727
Minor code improvements
2016-01-16 22:29:29 -05:00
ff149c354e
Remove global variable
2016-01-16 22:07:46 -05:00
5a6cd48df1
Remove global
2016-01-16 22:03:59 -05:00
5b45a082d9
Remove arguments of beforeAction() method
2015-12-30 14:54:54 +01:00
6f9af3659c
Added the possiblity to define custom routes from plugins
2015-12-22 19:06:03 +01:00
e9fedf3e5c
Rewrite of the authentication and authorization system
2015-12-05 20:31:27 -05:00
37ef906998
Avoid Safari to append .html at the end of downloaded files
2015-11-21 11:30:45 -05:00
d84bf429d6
Fix bug in daily project summary CSV export
2015-11-14 15:35:59 -05:00
a2ebc6c3b2
Move some classes to namespace Core\Http
2015-10-25 18:11:49 -04:00
Frédéric Guillot
peter
mildis
wilypomegranate
Lőrinczy, Zsigmond
Marien Fressinaud