AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-02-28 02:44:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,848 Commits 7 Branches 16 Tags
7561364e9171ae97a26d6c7b7fc47ccc40e2f8fc
Commit Graph

2848 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
johnnyq
991e2bd4d4 Merge branch 'master' of github.com:johnnyq/itflow 2022-04-01 15:59:26 -04:00
johnnyq
6866addeee Minor Fixups 2022-04-01 15:58:18 -04:00
Johnny
28688cc670 Merge pull request #425 from wrongecho/ui 
2FA small changes
 2022-04-01 15:55:02 -04:00
Marcus Hill
51a6ba6084 Allow admins to disable 2FA for users 2022-04-01 19:53:49 +01:00
Marcus Hill
ab77051299 Add a line break / heading between main settings and 2FA to prevent mis-clicks 2022-04-01 19:36:01 +01:00
wrongecho
cf739accc9 Update README docs link 2022-04-01 13:06:03 +01:00
Johnny
d6737cce6d Merge pull request #424 from itflow-org/wrongecho-patch-2 
Create SECURITY.md
 2022-03-29 17:48:29 -04:00
Johnny
c941ca8ee7 Merge pull request #423 from itflow-org/wrongecho-patch-1 
Update issue templates
 2022-03-29 17:48:16 -04:00
Johnny
f89902caa3 Merge pull request #422 from wrongecho/misc 
Allow client to close ticket from portal
 2022-03-29 17:47:46 -04:00
wrongecho
6840939860 Create SECURITY.md 2022-03-29 22:12:17 +01:00
wrongecho
cbcb31a705 Update issue templates 
As discussed, feature requests & support should go to the forum leaving GitHub for actual issues/bugs with the code.

Related to #338
 2022-03-29 21:42:21 +01:00
Marcus Hill
441591d39e Allow client to close ticket from portal 2022-03-29 21:16:02 +01:00
johnnyq
bb1dfef2e4 DB Structure Modified Fixed config_backup vars 2022-03-29 13:39:23 -04:00
johnnyq
eac5a53e9e Fix Var name in Cron 2022-03-29 13:04:02 -04:00
johnnyq
8c98163e1c DB Structure Updated 2 new settings config_backup_enable and config_backup_path. This is to fix an issue where not specifying the full backup path would cause cron to error out and not run completely 2022-03-29 12:59:42 -04:00
Johnny
bb24cc7112 Merge pull request #421 from wrongecho/misc2 
Client portal + permission bug fix
 2022-03-28 19:15:01 -04:00
Marcus Hill
390e52f7bd Consolidate if statement 2022-03-28 22:56:21 +01:00
Marcus Hill
b957d40bdb Move contact ticket access check to function. Add ability for client to close ticket 2022-03-28 22:50:23 +01:00
Johnny
512a2d03eb Merge pull request #419 from wrongecho/client-portal 
Tidy client portal login page
 2022-03-28 17:07:00 -04:00
johnnyq
1b0d3474a7 Fix Client portal index.php, removed unused vars and functions, fix code indentation and syntax 2022-03-28 17:03:38 -04:00
Marcus Hill
0020c5708a Fix = vs == role check mistake 2022-03-28 21:48:20 +01:00
Marcus Hill
a3edfb70bc Tidy client portal 2022-03-28 21:37:27 +01:00
Johnny
f7252f24e8 Merge pull request #414 from aftechro/patch-7 
Updated index.php
 2022-03-28 16:27:21 -04:00
Johnny
f6930f820e Merge pull request #416 from aftechro/patch-9 
Updated ticket.php
 2022-03-28 16:27:10 -04:00
Johnny
5509f73e82 Merge pull request #417 from wrongecho/security-fixes 
Security fixes
 2022-03-28 16:26:59 -04:00
wrongecho
1d09562606 Merge pull request #418 from wrongecho/readme 
Update README.md with new repo links
 2022-03-28 21:04:30 +01:00
Marcus Hill
ec5911f95e Update README.md with new repo links 2022-03-28 21:02:36 +01:00
Marcus Hill
9a183774cb Escape server http host/uri submitted to database during setup 2022-03-28 20:47:12 +01:00
Marcus Hill
4ba313f752 Fix potential sql injection in delete_file if param add_location was also specified - post.php 2022-03-28 20:45:31 +01:00
Marcus Hill
d83906508d Fix potential sql injection in add_company - post.php 2022-03-28 20:39:35 +01:00
Johnny
e1e3ffd786 Merge pull request #413 from wrongecho/misc 
Misc small changes/fixes
 2022-03-28 10:43:08 -04:00
johnnyq
c4fb8cf4d2 Added Red text to login message to show error has occurred to client portal login 2022-03-28 10:42:29 -04:00
johnnyq
42f47e948d Cleanup Client Login page and correct indentation of code structure 2022-03-28 10:30:48 -04:00
Johnny
dd160f6ae6 Merge pull request #415 from aftechro/patch-8 
Updated login.php
 2022-03-28 10:16:16 -04:00
AFTECH.RO
8555b032fe Updated ticket.php 
small UI changes, as well added close ticket to contact
@wrongecho or @johnnyq please have a look at the close button functionality, so the contacts can close the ticket too
 2022-03-27 23:32:11 +01:00
AFTECH.RO
c784774162 Updated login.php 
Changed login page - same UI as admin logo
 2022-03-27 23:29:53 +01:00
AFTECH.RO
8f3cb64158 Updated index.php 
small changes to UI
 2022-03-27 23:28:15 +01:00
Marcus Hill
bba68f4d17 Name uploaded files with provided name, if specified 2022-03-27 23:00:45 +01:00
Marcus Hill
9040fdf847 Misc small changes/fixes 2022-03-27 22:26:22 +01:00
Johnny
aafb6a677f Merge pull request #412 from wrongecho/misc 
Misc incl SQL Injection / XSS fixes
 2022-03-27 15:05:07 -04:00
Marcus Hill
816ba87485 SQL Injection / XSS fixes 2022-03-27 20:02:16 +01:00
johnnyq
ee97c479bf Change to PHP Default tmp Path for checking DB changes on update. This prevents data being written to a common /tmp path on shared hosting environments 2022-03-27 14:54:13 -04:00
Johnny
974cac0e86 Merge pull request #411 from wrongecho/perms 
Role-based access permissions
 2022-03-27 14:44:29 -04:00
Johnny
f4d25a79b6 Merge pull request #410 from wrongecho/ticket-collision-detection 
Show who else is viewing the same open ticket as you
 2022-03-27 14:42:32 -04:00
Marcus Hill
4650947241 Fix client portal priority 2022-03-27 19:00:43 +01:00
wrongecho
e2142ec444 Minor readme edits 2022-03-27 17:06:33 +01:00
Marcus Hill
c3fadfab3b Add role based access for API functions 2022-03-27 16:03:41 +01:00
Marcus Hill
747baf5548 Add role-based access control 2022-03-27 15:47:30 +01:00
Marcus Hill
a6a7bf1f30 Restrict user (agent) create/edit/delete actions to admins only 2022-03-27 15:39:27 +01:00
Marcus Hill
e6a314d233 Prevent tech/accountant from performing certain tasks as per access matrix 2022-03-27 15:32:40 +01:00