AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
818 Commits 6 Branches 15 Tags 166 MiB
Commit Graph

74 Commits

Author SHA1 Message Date
Marcus Hill c5e976d995 Add index.php files to upload directories to prevent file traversal 2022-01-07 18:35:23 +00:00
johnnyq 7112463e41 Commit Tidy allow public_cert to be null and move public_cert before notes 2022-01-04 11:35:34 -05:00
Marcus Hill dfbf0c788a Check that config.php is writable at the start of setup. 2022-01-04 03:21:04 +00:00
johnnyq ebb37c0f06 Fix Spelling mistake 2022-01-02 00:28:38 -05:00
johnnyq d5fcfeb417 Setup Fixes regarding user checks 2022-01-02 00:14:48 -05:00
johnnyq 2c76573471 Fixed Syntax error under setup 2022-01-01 18:30:06 -05:00
johnnyq 02f247a047 Incorrect DBHost Var Fix 2022-01-01 17:39:49 -05:00
johnnyq 0250ac0623 Forgot full php tag 2022-01-01 17:27:31 -05:00
johnnyq cf3c0a6410 Fixed a vulnerability in the setup.php file and other code cleanups. Thanks to the person that wishes to remain anonymous for reporting and providing a patch Also added a notice to readme to not use this web app during beta for production use 2022-01-01 17:02:31 -05:00
johnnyq 119e491865 Added Refferal Datasets on new company 2021-12-28 20:54:17 -05:00
johnnyq 05702c4a1b More Audit logging fixes and added proper permissions and added common datasets when a company is added 2021-12-28 18:53:48 -05:00
johnnyq d752a57132 Var Fixes in setup 2021-12-22 14:00:26 -05:00
johnnyq 1983c9f373 Mis-spelling causing breakge 2021-12-22 13:48:22 -05:00
johnnyq 89242870ca Fix Setup Incorrect Table Name for User Company Relation 2021-12-22 13:41:56 -05:00
johnnyq ba584a57e0 BREAKING CHANGES - Many DB Updates - NOT POSSIBLE TO EASILY UPGRADE TO THIS - Completely reworked User Company Access Permssions, started working on Client Role so Clients can access their data and a bunch of other small fixes 2021-12-22 13:08:24 -05:00
johnnyq 4604280efe This Update will break your login as we updated the password hash from MD5 to a salted hash using hash_password and password_verify techniques, fixed an unauthenticated persistent XSS Vulnerbility which would affect if someone spoofed their IP with a javascript code and then a logged in read the logs. The flaw was discovered by @bambilol #214 also fixed some other bugs. 2021-12-13 12:21:55 -05:00
johnnyq 0976a08730 Removed default currency and default country under settings added a company currency to the company table. Now currency default and country default uses company country and currency, updated the currency symbol to use companies currency under dashboard, expenses, profit loss reports 2021-11-19 20:45:57 -05:00
johnnyq 6c80fa177d DB Update, reworked upcoming tagging feature in SQL, Added Province and Postal Code to address labels, changed the field document_details to document_content in SQL 2021-11-08 18:07:36 -05:00
johnnyq 50cd239cd4 Added all country currencies 2021-11-04 00:31:19 -04:00
johnnyq 72cf61ab61 Switched State to a text field instead of select field in all areas where state exist also added all countries to the country list 2021-11-04 00:20:33 -04:00
johnnyq a939588cf2 New File upload logic complete Breaking changes New db dump 2021-09-21 22:22:55 -04:00
johnnyq d5facbfc23 Removed all Input masks for phone numbers, now need to work on formating phone numbers for display based off digit length 2021-09-11 21:51:36 -04:00
johnnyq f3053ffbd4 BREAKING CHANGES: Major Backend Code Changes Updated Foreign keys to prepend their table names ex invoice_client_id, switched most queries over to JOIN instead of = Combined contacts and location into client removed client email, phone etc fields, tons of small bug fixes, and other small UI changes all across the board 2021-08-27 23:14:06 -04:00
johnnyq 4f8759162e Added more beginning and ending white space triming to input vars 2021-08-10 15:39:20 -04:00
johnnyq b8d8a51a3b Added Password Reveal to all password fields, also updated the password update logic 2021-08-09 23:34:34 -04:00
johnny@pittpc.com cd2ea38c5b Lowercase ty in QTY, fixed issue in setup where it would not take the selected currency type 2021-03-27 15:52:00 -04:00
johnny@pittpc.com 5b5afa772c Add Receipt link to edit Expense if one was uploaded 2021-02-15 19:56:09 -05:00
johnny@pittpc.com 6f46f2ec87 More Currency Code Updates, would like to do conversions and add currency icons at a later date also set default country so it doesnt have to be selected each time 2021-02-14 18:06:32 -05:00
johnny@pittpc.com 66f9e2b10f Removed Records per page as a setting and added it as session variable define at 10 by default when logged in DB Structure Updated 2021-02-10 13:40:28 -05:00
johnny@pittpc.com 59a5d3a44f Added Recurring Auto Increment Number and Prefix DB Structure Updated 2021-02-08 20:01:08 -05:00
johnny@pittpc.com 1ad28386f8 Fixed editing user profile 2021-02-07 22:38:24 -05:00
johnny@pittpc.com 639661b2fe Fixed add user not adding a user due to an unused db field 2021-02-07 22:13:30 -05:00
johnny@pittpc.com d2b37a8940 Added new category buttons to certian dropdowns to quickly add a category without going to setting then category also a few fixes here and there 2021-02-06 15:03:11 -05:00
johnny@pittpc.com 46e0147026 Some Small fixes in setup 2021-02-05 15:36:08 -05:00
johnny@pittpc.com 71d5ce1c10 Updated UI on setup, fixed logo upload with add copany, better wording during setup 2021-02-05 14:17:18 -05:00
johnny@pittpc.com 6d23b87f7c Moved Company info out of settings and into the companies table, updated pdf, invoice, quotes, guest view, post, setup 2021-02-04 21:54:50 -05:00
johnny@pittpc.com 88933e09f7 Rework Company user relationships initial work started on user permissions 2021-01-29 21:28:12 -05:00
johnny@pittpc.com 65ed2317dc Moved Country in Setup to bottom below address info 2021-01-20 12:34:19 -05:00
johnny@pittpc.com 9aa978c920 Move records per page as a config option per company DB Structure has updated 2021-01-15 20:10:53 -05:00
johnny@pittpc.com 7203d29410 Added Auto Focus to first fields in Setup 2020-09-25 15:34:13 -04:00
johnny@pittpc.com a14ec04d5a Initial work on switching companies, added error if not able to connect to database 2020-04-04 20:55:06 -04:00
johnny@pittpc.com 1c98e61cf8 Added initial country support for Canada 2020-03-30 20:01:59 -04:00
johnny@pittpc.com 08c4aa1bce finished porting over to select2 2019-11-22 21:17:19 -05:00
johnny@pittpc.com c3e754466b Corrected setup for adminlte CSS framework 2019-11-19 20:04:38 -05:00
johnny@pittpc.com bc61b59244 Fixed password issue causing SQL escape characters to add slashes remove mysqli_real_escape_string as its not needs, md5 produces no sql escape characters by default so it it does not need santized 2019-09-24 14:52:53 -04:00
johnny@pittpc.com 5f51bc4cc9 Fixed base_url var in setup, added single quotes in phone number for setup removed starting_location in setup as this is not used anymore and caused the setting table not to populate remove auto increment for settings in the new db dump this should fix the login issues after setup 2019-09-23 22:18:39 -04:00
johnny@pittpc.com f4557a961d Updated Quote and Invoice GUI further adding footers to the html printables, added Quote view with details and an alert 2019-09-14 22:57:48 -04:00
johnny@pittpc.com 9050f4b03a More Security fixes escaping search and sortby GET vars 2019-08-31 15:38:16 -04:00
johnny@pittpc.com 2d44222ad9 Fixed incorrect account balance under add revenue 2019-08-26 17:14:11 -04:00
johnny@pittpc.com a176de7245 Modified setup.php to create a subfolder of the user_id under users, removed some uneeded config.php from setup.php 2019-08-25 00:25:23 -04:00