AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-02-28 10:54:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
4,096 Commits 7 Branches 16 Tags
bab66bf769184d38722db00b4df7171ce61c78dd
Commit Graph

69 Commits

Author SHA1 Message Date
Hugo Sampaio
bab66bf769 updated 
fixed domain url from config to prevent open redirect issue and encoded uri
 2024-05-03 09:34:50 -03:00
Hugo Sampaio
b8c529c2ec Enable URL Recovery from logout 2024-04-27 09:30:41 -03:00
johnnyq
888552724a Set Timezone in all places and it needs to be set in and sperated it into a seperate include 2024-04-17 12:53:11 -04:00
johnnyq
2f4ddd85ca Fix PHP UTC issue, new PHP updates did not not respect System TimeZone 2024-03-21 14:23:16 -04:00
o-psi
1f3799ebe3 Update Calendar to Full Calendar 6.1.10 2024-02-14 20:21:19 +00:00
johnnyq
4dae89dabc The option to set the timezone in PHP was disabled to prevent inconsistencies with MariaDB/MySQL, which utilize the system's timezone, Although can still select timezone in the app the system time will overide it. So its best to set timezone on the system itself 2024-02-08 13:01:54 -05:00
johnnyq
435206dded Properly fetch the user dashboard settings 2023-12-21 16:56:02 -05:00
johnnyq
297148bc63 DB Update add User settings to enable / disable Dashboard Items Financial and Technical 2023-12-21 16:36:31 -05:00
o-psi
53c11edc8c Update constructs to not have parenthesis. 2023-10-20 15:25:52 -05:00
johnnyq
33c1e72dcc Fix Wrong Timezone var name 2023-10-15 12:15:48 -04:00
johnnyq
537f18efd2 Fix Incorrect var when setting timezone 2023-10-08 20:03:16 -04:00
johnnyq
6760997beb Set Company Timezone properly upon login 2023-10-04 22:38:29 -04:00
johnnyq
3f5c1c270a Fix Certificate Renewals 2023-09-11 18:20:59 -04:00
johnnyq
747b7de143 Feature: Force MFA Part 3 - Enforce MFA by redirecting users to their user_profile to setup MFA if Force MFA is checked, next up is to lock them there until 2FA is set 2023-09-06 00:08:21 -04:00
johnnyq
ce2ba6d3d2 Feature: Records per page is now user specific and persists with logout/login sessions 2023-08-17 19:42:42 -04:00
johnnyq
48fe49cf77 BREAKING CHANGES - MAKE FULL BACKUP BEFORE PROCEEDING - Requires Manual Intervention on files see Forum Post Make sure you run the Database update directly after update. This Removes Multi-Company Functionality. Fixes issues with Reponsive tables and bunch of other UI and small Fixes 2023-03-11 16:16:46 -05:00
johnnyq
a711bed38c Add sme more htmlemtities for consistency 2023-03-05 20:06:42 -05:00
johnnyq
8a91ae0e46 More updating with new sanitize function and more logging and alerting cont 2023-02-16 22:26:38 -05:00
Marcus Hill
f92dc108e2 Tidy 
- Move some scripts to their own js files
- Move some duplicate code blocks to functions
- General tidy & spacing cleanups (#538)
 2023-02-04 22:09:56 +00:00
Marcus Hill
8c64753b6e Convert to 4 spaces; General tidy 2023-02-02 15:59:48 +00:00
Marcus Hill
531bd25f27 Convert custom function names to camelCase 2023-01-26 22:03:31 +00:00
Marcus Hill
10362f86ef Convert custom function names to camelCase 2023-01-26 21:58:27 +00:00
Marcus Hill
b98439d74a Remove unused variable assignment. was calling get_os with no parameters, so nothing was ever returned anyway. Get_os instead can now be given the user agent to determine the OS 2023-01-25 22:59:28 +00:00
johnnyq
6c5e92dd3c Only show notifications belonging to the logged in user and system notifications where notification_user_id = 0 2023-01-25 12:59:26 -05:00
wrongecho
b19c7a6f49 Merge branch 'master' into code-tidy 2023-01-23 19:21:43 +00:00
Marcus Hill
a270e3a42c Remove redundant closing PHP tags 2023-01-21 17:30:51 +00:00
Marcus Hill
d73b3cb960 Correct typos 2023-01-21 17:22:27 +00:00
Marcus Hill
2c3ebb3bbb Tidy codestyle - spaces between parenthesis and curly braces 2023-01-21 17:09:39 +00:00
Marcus Hill
fb5a27843c Add isset check on check_login to prevent undefined errors 2023-01-21 13:48:53 +00:00
johnnyq
7f3ec8ccda Fixed where os and browser would return the os and browser of the currently logged in user for every row 2023-01-20 21:27:55 -05:00
Marcus Hill
72fd102e57 SQL Escape tech username. The username is added to most log entries meaning that a simple apostrophe in the name breaks all logging for the user 2023-01-02 14:54:49 +00:00
Marcus Hill
5cbd0fad0d Move role validation to functions.php 2022-05-07 17:25:30 +01:00
Marcus Hill
fca1627c33 Remove delete user post.php code. Deleting users means we'll lose all tickets/replies which isn't great. 
Correct user archive behaviour so when users are archived they can no longer login. Need to add ability for quick disable/enable of user accounts, as using archive as permanent.
Refactor "You are not permitted to do that!" wording into a constant instead.
 2022-04-15 13:29:27 +01:00
Marcus Hill
9040fdf847 Misc small changes/fixes 2022-03-27 22:26:22 +01:00
johnnyq
05e7b160b1 DB Structure Update table name alerts is now notifications also update the fields accordingly to the notifications table - Reworked Notifications a bit 2022-02-21 21:21:13 -05:00
johnnyq
16968e0b97 Added Locale option for company, this works in conjunction with the way the currency is displayed 2022-02-18 11:14:14 -05:00
johnnyq
0aec371ccd Add Software Licnee Version and License Type as well as the beginnings to assign licneses to devices and or users 2022-02-18 00:27:00 -05:00
johnnyq
f2f9f22545 Started using new php function for Currency formatting as this is best preactice, removed Client Access and removed certian user roles 2022-02-17 17:41:30 -05:00
johnnyq
bb972e8de3 Store full user agent, we can always parse it later 2022-02-04 17:04:28 -05:00
Marcus Hill
25b58c21c8 Add Secure flag (HTTPS only) to cookies 2022-01-09 13:56:45 +00:00
Marcus Hill
8d5a8edada Add httponly setting to cookies in check_login before session starts there too. Extension of pull #253 2022-01-09 13:19:59 +00:00
johnnyq
cf3c0a6410 Fixed a vulnerability in the setup.php file and other code cleanups. Thanks to the person that wishes to remain anonymous for reporting and providing a patch Also added a notice to readme to not use this web app during beta for production use 2022-01-01 17:02:31 -05:00
johnnyq
e978cd142e More Audit Logging work, fixed a bunch of small bugs along the way 2021-12-31 15:33:41 -05:00
johnnyq
33400894d5 Updates and Fixings to Audit Logs, added client tag selection for mass email campaigns 2021-12-28 18:16:54 -05:00
johnnyq
a9fb11e3ef Fixed client details page as functions was declared twice 2021-12-23 10:58:16 -05:00
johnnyq
25b5cb3d40 Moved Functions above check login so that check login can use some of the functions, Moved Fingerprinting to check login instead of in functions as its a more appropriate place 2021-12-22 17:24:54 -05:00
johnnyq
ba584a57e0 BREAKING CHANGES - Many DB Updates - NOT POSSIBLE TO EASILY UPGRADE TO THIS - Completely reworked User Company Access Permssions, started working on Client Role so Clients can access their data and a bunch of other small fixes 2021-12-22 13:08:24 -05:00
johnnyq
f02e94d585 Started adding IP and User agent to audit logs, log when a user logs out, Merged logout into post.php 2021-12-09 16:12:57 -05:00
johnnyq
0976a08730 Removed default currency and default country under settings added a company currency to the company table. Now currency default and country default uses company country and currency, updated the currency symbol to use companies currency under dashboard, expenses, profit loss reports 2021-11-19 20:45:57 -05:00
johnnyq
209bd7da4d Remove Currency Selection from invoice, quote and recurring as this will be determined by your company currency in settings, the payment is what matters as this is where it will be converted 2021-08-29 22:07:46 -04:00