AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,396 Commits 6 Branches 15 Tags 166 MiB
Commit Graph

1396 Commits

Author SHA1 Message Date
Marcus Hill 87cdc1929a Move logs after shared links in side nav 2022-04-02 16:49:23 +01:00
Marcus Hill 2c632a85d0 Create shared links page for each client, with option to deactivate links 2022-04-02 16:41:07 +01:00
Marcus Hill cab2cc923a Improve share features: default modal to 1, cleanup expired/used links 2022-04-02 15:37:17 +01:00
wrongecho cf739accc9
Update README docs link 2022-04-01 13:06:03 +01:00
Johnny d6737cce6d
Merge pull request #424 from itflow-org/wrongecho-patch-2 
Create SECURITY.md
 2022-03-29 17:48:29 -04:00
Johnny c941ca8ee7
Merge pull request #423 from itflow-org/wrongecho-patch-1 
Update issue templates
 2022-03-29 17:48:16 -04:00
Johnny f89902caa3
Merge pull request #422 from wrongecho/misc 
Allow client to close ticket from portal
 2022-03-29 17:47:46 -04:00
wrongecho 6840939860
Create SECURITY.md 2022-03-29 22:12:17 +01:00
wrongecho cbcb31a705
Update issue templates 
As discussed, feature requests & support should go to the forum leaving GitHub for actual issues/bugs with the code.

Related to #338
 2022-03-29 21:42:21 +01:00
Marcus Hill 441591d39e Allow client to close ticket from portal 2022-03-29 21:16:02 +01:00
johnnyq bb1dfef2e4 DB Structure Modified Fixed config_backup vars 2022-03-29 13:39:23 -04:00
johnnyq eac5a53e9e Fix Var name in Cron 2022-03-29 13:04:02 -04:00
johnnyq 8c98163e1c DB Structure Updated 2 new settings config_backup_enable and config_backup_path. This is to fix an issue where not specifying the full backup path would cause cron to error out and not run completely 2022-03-29 12:59:42 -04:00
Johnny bb24cc7112
Merge pull request #421 from wrongecho/misc2 
Client portal + permission bug fix
 2022-03-28 19:15:01 -04:00
Marcus Hill 390e52f7bd Consolidate if statement 2022-03-28 22:56:21 +01:00
Marcus Hill b957d40bdb Move contact ticket access check to function. Add ability for client to close ticket 2022-03-28 22:50:23 +01:00
Johnny 512a2d03eb
Merge pull request #419 from wrongecho/client-portal 
Tidy client portal login page
 2022-03-28 17:07:00 -04:00
johnnyq 1b0d3474a7 Fix Client portal index.php, removed unused vars and functions, fix code indentation and syntax 2022-03-28 17:03:38 -04:00
Marcus Hill 0020c5708a Fix = vs == role check mistake 2022-03-28 21:48:20 +01:00
Marcus Hill a3edfb70bc Tidy client portal 2022-03-28 21:37:27 +01:00
Johnny f7252f24e8
Merge pull request #414 from aftechro/patch-7 
Updated index.php
 2022-03-28 16:27:21 -04:00
Johnny f6930f820e
Merge pull request #416 from aftechro/patch-9 
Updated ticket.php
 2022-03-28 16:27:10 -04:00
Johnny 5509f73e82
Merge pull request #417 from wrongecho/security-fixes 
Security fixes
 2022-03-28 16:26:59 -04:00
wrongecho 1d09562606
Merge pull request #418 from wrongecho/readme 
Update README.md with new repo links
 2022-03-28 21:04:30 +01:00
Marcus Hill ec5911f95e Update README.md with new repo links 2022-03-28 21:02:36 +01:00
Marcus Hill 9a183774cb Escape server http host/uri submitted to database during setup 2022-03-28 20:47:12 +01:00
Marcus Hill 4ba313f752 Fix potential sql injection in delete_file if param add_location was also specified - post.php 2022-03-28 20:45:31 +01:00
Marcus Hill d83906508d Fix potential sql injection in add_company - post.php 2022-03-28 20:39:35 +01:00
Johnny e1e3ffd786
Merge pull request #413 from wrongecho/misc 
Misc small changes/fixes
 2022-03-28 10:43:08 -04:00
johnnyq c4fb8cf4d2 Added Red text to login message to show error has occurred to client portal login 2022-03-28 10:42:29 -04:00
johnnyq 42f47e948d Cleanup Client Login page and correct indentation of code structure 2022-03-28 10:30:48 -04:00
Johnny dd160f6ae6
Merge pull request #415 from aftechro/patch-8 
Updated login.php
 2022-03-28 10:16:16 -04:00
AFTECH.RO 8555b032fe
Updated ticket.php 
small UI changes, as well added close ticket to contact
@wrongecho or @johnnyq please have a look at the close button functionality, so the contacts can close the ticket too
 2022-03-27 23:32:11 +01:00
AFTECH.RO c784774162
Updated login.php 
Changed login page - same UI as admin logo
 2022-03-27 23:29:53 +01:00
AFTECH.RO 8f3cb64158
Updated index.php 
small changes to UI
 2022-03-27 23:28:15 +01:00
Marcus Hill bba68f4d17 Name uploaded files with provided name, if specified 2022-03-27 23:00:45 +01:00
Marcus Hill 9040fdf847 Misc small changes/fixes 2022-03-27 22:26:22 +01:00
Johnny aafb6a677f
Merge pull request #412 from wrongecho/misc 
Misc incl SQL Injection / XSS fixes
 2022-03-27 15:05:07 -04:00
Marcus Hill 816ba87485 SQL Injection / XSS fixes 2022-03-27 20:02:16 +01:00
johnnyq ee97c479bf Change to PHP Default tmp Path for checking DB changes on update. This prevents data being written to a common /tmp path on shared hosting environments 2022-03-27 14:54:13 -04:00
Johnny 974cac0e86
Merge pull request #411 from wrongecho/perms 
Role-based access permissions
 2022-03-27 14:44:29 -04:00
Johnny f4d25a79b6
Merge pull request #410 from wrongecho/ticket-collision-detection 
Show who else is viewing the same open ticket as you
 2022-03-27 14:42:32 -04:00
Marcus Hill 4650947241 Fix client portal priority 2022-03-27 19:00:43 +01:00
wrongecho e2142ec444
Minor readme edits 2022-03-27 17:06:33 +01:00
Marcus Hill c3fadfab3b Add role based access for API functions 2022-03-27 16:03:41 +01:00
Marcus Hill 747baf5548 Add role-based access control 2022-03-27 15:47:30 +01:00
Marcus Hill a6a7bf1f30 Restrict user (agent) create/edit/delete actions to admins only 2022-03-27 15:39:27 +01:00
Marcus Hill e6a314d233 Prevent tech/accountant from performing certain tasks as per access matrix 2022-03-27 15:32:40 +01:00
Marcus Hill 42d917a0f4 Comments 2022-03-26 18:11:03 +00:00
Marcus Hill fb4da53026 Show who else is viewing the same open ticket as you 2022-03-26 18:05:20 +00:00