Dan Brown
75f225d6dc
Updated translations with latest Crowdin changes ( #5065 )
2024-07-14 16:39:50 +01:00
Dan Brown
adb7bf7016
Codemirror: Enabled non-standard self-closing tags
...
For #5078
2024-07-14 16:36:36 +01:00
Dan Brown
897bb338f9
CSP: Updated handling of drawio URL to consider port
...
Previously if a custom port was used in the DRAWIO option it would not
be considered in the CSP handling, which would block loading.
Added test to cover.
For #5107
2024-07-14 16:06:18 +01:00
Dan Brown
767699a066
OIDC: Fixed incorrect detection of group detail population
...
An empty (but valid formed) groups list provided via the OIDC ID token
would be considered as a lacking detail, and therefore trigger a lookup
to the userinfo endpoint in an attempt to get that information.
This fixes this to properly distinguish between not-provided and empty
state, to avoid userinfo where provided as valid but empty.
Includes test to cover.
For #5101
2024-07-14 14:21:16 +01:00
Dan Brown
7161f22706
Dependancies: Updated composer & npm deps
2024-07-14 13:55:46 +01:00
Dan Brown
ddec8097b7
Merge pull request #5096 from DanielGordonIT/normalize-file-extensions
...
Wraps file extension comparison components in strtolower()
2024-07-14 13:51:55 +01:00
Dan Brown
95c3cc5c00
Styles: Improved callout RTL support
...
Will now adapt using logical styles where supported, will fallbacks
to old fixed LTR positioning where not supported.
For #5104
2024-07-14 12:21:07 +01:00
Dan Brown
60c53705ca
Merge pull request #5069 from mueller-contria/5068-allowed_iframe_sources_in_phpunit_xml
...
Add ALLOWED_IFRAME_SOURCES to phpunit.xml
2024-07-14 12:06:17 +01:00
Dan Brown
ce697ab0f5
Readme: Added sponsor, removed road map section
...
Road map section was very much outdated and redundant so removing to
avoid confusion.
2024-07-09 14:37:29 +01:00
DanielGordonIT
ca310966b2
Actually add the test this time
2024-07-05 03:59:49 +00:00
DanielGordonIT
25f92ce584
Add test to verify different case on extensions works
2024-07-04 19:48:12 -04:00
DanielGordonIT
9b0ef85f77
Wraps file extension comparison components in strtolower()
...
This avoids the issue where replacing file.PNG with newfile.png fails due to "PNG" not being equal to "png"
2024-07-03 15:50:25 -04:00
Dan Brown
14837e34fb
Readme: Added sponsor practinet
2024-06-28 22:28:06 +01:00
Dan Brown
e30aae3399
Sponsors: Added Schroeck IT Consulting
2024-06-13 16:46:39 +01:00
Stefan Mueller
b81f2b52d0
Add ALLOWED_IFRAME_SOURCES to phpunit.xml
...
Fix for bug #5068
test_frame_src_csp_header_set fails, when .env-file has
customized ALLOWED_IFRAME_SOURCES
2024-06-13 12:41:05 +02:00
Dan Brown
c096b20d9c
Updated translator & dependency attribution before release v24.05.2
2024-06-10 11:42:37 +01:00
Dan Brown
11a7ccc37e
SAML: Set static type to pass static checks
...
Not totally clear if underlying code can actually return null, but
playing it safe to remain as-is for now for patch release.
2024-06-10 10:31:35 +01:00
Dan Brown
d9b9e6c0b1
Updated translations with latest Crowdin changes ( #5022 )
2024-06-10 10:16:34 +01:00
Dan Brown
f18d42f08e
Merge pull request #5036 from bradenterpstra01/development
...
Fixed incorrect code shortcut reference
2024-06-09 23:23:28 +01:00
Dan Brown
4986f008b9
Merge pull request #5052 from michaelortnerit/development
...
Update docker-compose.yml
2024-06-09 23:20:01 +01:00
Dan Brown
a8ce199e0d
Pages: Fixed unused changelog on first page publish
...
Included test to cover.
For #5056
2024-06-09 17:18:23 +01:00
Dan Brown
c77e8730d6
Deps: Updated php packages via composer
2024-06-09 17:03:29 +01:00
Dan Brown
3406846c82
Images: Updated GIF handling to use native methods
...
Changes GIF image thumbnail handling to direcly load via gd instead of
going through interventions own handling (which supports frames) since
we don't need animation for our thumbnails, and since performance issues
could arise with GIFs that have large frame counts.
For #5029
2024-06-09 17:00:58 +01:00
Dan Brown
bddc6ae66b
Roles: Added max validation for role external auth id field
...
For #5037
2024-06-08 20:33:34 +01:00
Michael Ortner
bd6e3c022f
Update docker-compose.yml
...
Remove the version: because it is obsolete. See: https://docs.docker.com/compose/compose-file/04-version-and-name/#version-top-level-element-optional
2024-06-04 15:07:09 +02:00
bradenterpstra01
8759fff116
Update wysiwyg.blade.php
...
Remove the Shift for the numeric shortcut for incline code.
Ctrl+8 instead of Ctrl+Shift+8
I assume Mac is the same but I do not have a Mac to test with.
2024-05-29 18:01:48 -04:00
Dan Brown
6019d2ee14
MFA: Tweaked backup code wording
...
It was not clear before as it could be taken that the system would
securely store the codes.
Closes #5017
2024-05-23 11:30:53 +01:00
Dan Brown
f937bf3abb
Updated translator & dependency attribution before release v24.05.1
2024-05-21 11:06:08 +01:00
Dan Brown
586e8963a8
Updated translations with latest Crowdin changes ( #4994 )
2024-05-21 11:04:27 +01:00
Dan Brown
bdfa76ed9a
Deps: Updated php/composer packages
2024-05-20 17:28:53 +01:00
Dan Brown
d133f904d3
Auth: Changed email confirmations to use login attempt user
...
Negates the need for a public confirmation resend form
since we can instead just send direct to the last session login attempter.
2024-05-20 17:23:15 +01:00
Dan Brown
69af9e0dbd
Routes: Added throttling to a range of auth-related endpoints
...
Some already throttled in some means, but this adds a simple ip-based
non-request-specific layer to many endpoints.
Related to #4993
2024-05-20 14:00:58 +01:00
Dan Brown
72c5141dec
File Uploads: Added basic validation response formatting
...
Tested via app-level validation file limit, and then also with nginx
file post limit.
For #4996
2024-05-18 21:18:15 +01:00
Dan Brown
5651d2c43d
Config: Reverted change to cache directory
...
Change made during Laravel 10 updates to align (Laravel made this change
much earlier in 5.x series) but it caused issues due to folder not
pre-existing and due to potentiall permission issues.
(CLI could create this during update, with non-compatible permissions
for webserver).
For #4999
2024-05-18 20:40:26 +01:00
Dan Brown
fc236f930b
Dark Mode: Fixed setting labels missing dark mode handling
...
Fixes #5018
2024-05-18 20:37:49 +01:00
Dan Brown
570af500f4
WYSIWYG: Added justify cell range cleanup
...
To help override & gain control of setting text alignment in tables.
- Adds support of clearing "align" attributes in certain operations.
- Updates cell range action handling to dedupe execcommand handling.
- Adds clearing of additional alignment classes on direction control.
Closes #5011
2024-05-16 14:59:30 +01:00
Dan Brown
38913288d8
Devdocs: Fixed visual theme system lang folder reference
...
Made some other minor updates while there.
Fixes #4998
2024-05-16 14:15:26 +01:00
Dan Brown
c14d7d9509
Merge pull request #5008 from KiDxS/fix-notification-preferences-url-in-email
...
Fixed notification preferences URL in email
2024-05-16 14:11:15 +01:00
Angelo Geant Gaviola
79f5be4170
Fixed notification preferences URL in email
2024-05-14 17:04:23 +08:00
Dan Brown
a3a776d4a6
Updated translator & dependency attribution before release v24.05
2024-05-11 15:47:38 +01:00
Dan Brown
2b9b0f91cb
Updated translations with latest Crowdin changes ( #4890 )
2024-05-11 15:15:10 +01:00
Dan Brown
424e8f503e
Readme: Updated sponsor list
2024-05-10 11:02:20 +01:00
Dan Brown
d206129f3d
Deps: Updated composer dependencies
2024-05-05 16:30:04 +01:00
Dan Brown
baad7fa9cb
Merge pull request #4987 from BookStackApp/audit_api
...
Addition of Audit Log API Endpoint
2024-05-05 16:14:09 +01:00
Dan Brown
d54c7b4783
Audit Log: Fixed bad reference to linked entity item
2024-05-05 16:05:21 +01:00
Dan Brown
67df127c26
API: Added to, and updated, testing to cover audit log additions
2024-05-05 15:44:58 +01:00
Dan Brown
3946158e88
API: Added audit log list endpoint
...
Not yested covered with testing.
Changes database columns for more presentable names and for future use
to connect additional model types.
For #4316
2024-05-04 16:28:18 +01:00
Dan Brown
dd251d9e62
Merge branch 'nesges/development' into development
2024-05-04 14:00:40 +01:00
Dan Brown
5c28bcf865
Registration: Reviewed added simple honeypot, added testing
...
Also cleaned up old RegistrationController syntax.
Review of #4970
2024-05-04 13:59:41 +01:00
Dan Brown
7b3b28d3f8
Merge pull request #4972 from johnroyer/fix-typo-in-language-file
...
remove space at the beginning of description
2024-05-03 19:16:23 +01:00