AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,819 Commits 6 Branches 15 Tags 166 MiB
Commit Graph

1819 Commits

Author SHA1 Message Date
Marcus Hill f2efa79c57 Escape potential HTML data from ticket fields 2023-01-02 15:48:47 +00:00
Marcus Hill 4b10a2ac68 Improve security of password reset token for client portal 2023-01-02 15:38:40 +00:00
Marcus Hill 3ea7406c2e Better name azure client id variable as to not be confusing with itflow client ids 2023-01-02 15:27:29 +00:00
Marcus Hill e32439cc4c Escape potential HTML from ticket fields 2023-01-02 15:24:30 +00:00
Marcus Hill 67b306795b Sanitize portal session vars against sql/html code 2023-01-02 15:17:58 +00:00
Marcus Hill fcdeee6321 SQL Escape client name field to prevent potentially breaking SQL queries 2023-01-02 15:06:51 +00:00
Marcus Hill d86285aafd SQL Escape domain/cert/client/ticket fields to prevent them potentially breaking SQL queries 2023-01-02 15:03:56 +00:00
Marcus Hill f150b3cb27 Tidy comment 2023-01-02 14:57:46 +00:00
Marcus Hill b1bb854328 Escape potential HTML in ticket prefix 2023-01-02 14:56:04 +00:00
Marcus Hill 72fd102e57 SQL Escape tech username. The username is added to most log entries meaning that a simple apostrophe in the name breaks all logging for the user 2023-01-02 14:54:49 +00:00
Marcus Hill 5460825ece Replace stripslashes with strip_tags 2023-01-02 14:44:46 +00:00
Marcus Hill dcf0bb67d1 Escape potential HTML characters in client name 2023-01-02 14:41:14 +00:00
Marcus Hill 447f20c91c Escape potential HTML characters in the API Key name, as this is used in logs 2023-01-02 14:38:52 +00:00
Marcus Hill 1aa87ccaeb API Key error wording 2023-01-02 14:37:56 +00:00
Marcus Hill cf8713fc73 Fix software read API query via key 2023-01-02 14:34:59 +00:00
Marcus Hill 5a35f508c6 Remove unrequired trim & strip tags - only needs sql escape 2023-01-02 14:32:17 +00:00
Marcus Hill 8687f56eb0 Remove unrequired trim & strip tags - only needs sql escape 2023-01-02 14:31:29 +00:00
Marcus Hill 2454961389 Escape special characters in a shared doc/file/login name to prevent potentially breaking the ajax sharing log query 2023-01-02 14:14:30 +00:00
Marcus Hill b37778b7a1 Escape potential HTML and limit output from SQL query to required fields when calling merge ticket details ajax query 2023-01-02 14:00:37 +00:00
Marcus Hill 79dc34da92 Escape potential HTML characters in usernames (ticket collision detection) 2023-01-02 13:48:16 +00:00
Marcus Hill 3bf4d7a1f1 Remove test file 2023-01-02 13:03:41 +00:00
Marcus Hill f5a2b1df68 Rename & disable unused stripe test page 2023-01-02 12:56:51 +00:00
Marcus Hill 17850f3510 Remove test/old client print and client header pages 2023-01-02 12:50:42 +00:00
Marcus Hill 8ea674d35e Remove unused assets.php file 2023-01-02 12:45:13 +00:00
Johnny 3fd62cd16e
Merge pull request #545 from wrongecho/tidy 
Code Style Tidying
 2023-01-01 15:56:34 -05:00
Johnny 94d8ec5360
Merge pull request #544 from wrongecho/cert-expiring-circle 
Show expiring certs in the client side navbar
 2023-01-01 15:56:14 -05:00
Johnny 070d9ac1f5
Merge pull request #543 from wrongecho/dashboards 
Add a basic technical dashboard
 2023-01-01 15:55:39 -05:00
Johnny c7381195ac
Merge pull request #542 from wrongecho/contact-important-db-fix 
Add contact_important DB field to database updater
 2023-01-01 15:55:23 -05:00
Marcus Hill dd00f48e5b Portal code style tidy 2023-01-01 16:05:48 +00:00
Marcus Hill ff741c223e API code style tidy 2023-01-01 16:00:07 +00:00
Marcus Hill 6746edda1a Misc tidying code spacing & formatting in accordance with SonarCloud/PSR 2023-01-01 15:41:21 +00:00
Marcus Hill 60ece6ee00 Tidy sidenav too 2023-01-01 14:42:40 +00:00
Marcus Hill 86327b3595 Tidy 2023-01-01 14:40:06 +00:00
Marcus Hill a07dfb45e0 Tidy 2023-01-01 14:33:13 +00:00
Marcus Hill 4d1b13d85e Small tidy 2023-01-01 14:15:31 +00:00
Marcus Hill 93773a6ca3 Add yellow circle to certificate nav menu if expiring 2023-01-01 14:12:44 +00:00
Marcus Hill 66d692d0f6 Add domain and cert expiring numbers to tech dashboard 2023-01-01 14:02:00 +00:00
Marcus Hill d255f05192 Remove unused monthly recurring query 2023-01-01 13:45:47 +00:00
Marcus Hill fa24516ad5 Redirect techs to technical dashboard instead of clients.php page 2023-01-01 13:42:08 +00:00
Marcus Hill 07986954f5 Redirect/show techs to technical dashboard on login/navbar 2023-01-01 13:41:29 +00:00
Marcus Hill 4ec88257d7 Add basic outline for technical dashboard 2023-01-01 13:40:54 +00:00
Marcus Hill 40789eff32 Deduplicate sql payment years query 2023-01-01 13:40:18 +00:00
Marcus Hill d2bbf3436a Adjust contact_important field to after contact_password_reset_token instead 2023-01-01 11:26:58 +00:00
Marcus Hill ab34712bd9 Add contact_important DB field to database updater 2023-01-01 11:25:12 +00:00
johnnyq 807d374b90 Merge branch 'master' of github.com:itflow-org/itflow 2022-12-31 15:54:51 -05:00
johnnyq e943faecf0 Added Important Functionality to Contacts, Cleaned up UI elements in the contacts and users modals. Added partial User and contact Invite functionality. 2022-12-31 15:54:34 -05:00
Johnny 51a7e59c16
Merge pull request #541 from wrongecho/license-export 
Add more fields to software CSV export
 2022-12-31 14:38:30 -05:00
Johnny edf071c677
Merge pull request #540 from wrongecho/portal-user-instructions 
Add option on the contact edit modal to send client a welcome email
 2022-12-31 14:38:04 -05:00
Johnny 8db42df93e
Merge pull request #536 from wrongecho/ticket-emails 
Ticket closure emails
 2022-12-31 14:37:50 -05:00
Marcus Hill 7fd2d0677c Add more fields to software CSV export 2022-12-31 18:20:31 +00:00