Wavyzz/dolibarr
2
0
Fork 1
mirror of https://github.com/Dolibarr/dolibarr.git synced 2026-02-25 06:14:29 +01:00
Code Issues Packages Projects Releases Wiki Activity
151,292 Commits 39 Branches 191 Tags
1da17070f5395cd4796bd4178985948da6505840
Commit Graph

12964 Commits

Author SHA1 Message Date
Laurent Destailleur
e9a8a4efca Update security.lib.php 2025-11-25 18:50:47 +01:00
Jon Bendtsen
3f90e51792 fix too many parentasies 2025-11-25 18:50:47 +01:00
Jon Bendtsen
966a69bab0 Qual: DENY access to Thirdparty when module is enabled, but no permissions at all 2025-11-25 18:50:47 +01:00
Laurent Destailleur
9b0fd0ec5c Merge branch 'develop' of git@github.com:Dolibarr/dolibarr.git into develop 2025-11-25 18:30:42 +01:00
Laurent Destailleur
c5c0b85498 Debug v23 2025-11-25 18:18:02 +01:00
Frédéric FRANCE
d2ed8fed4f can specify user timezone if no session (#36344) 
* can specify user timezone if no session

* Update functions.lib.php

* Update functions.lib.php

---------

Co-authored-by: Laurent Destailleur <eldy@destailleur.fr>
 2025-11-24 19:43:48 +01:00
Laurent Destailleur
9394f24cf7 Merge branch '18.0' of git@github.com:Dolibarr/dolibarr.git into 19.0 2025-11-24 16:15:26 +01:00
Laurent Destailleur
b1a4520059 Merge branch '17.0' of git@github.com:Dolibarr/dolibarr.git into 18.0 2025-11-24 16:10:29 +01:00
MDW
9db4c30918 Qual: Add automatic_activation property (DolibarrModules) (#36386) 
* Qual: Add automatic_activation property (DolibarrModules)

- Add `automatic_activation` property to store country-specific activation reasons
- Add public to class constants (PSR-2/php-cs-fixer)

* Qual: Simplify $module_activation test in admin.lib.php

The test for $module_activation has been simplified after declaring the property in DolibarrModules.
 2025-11-24 15:05:05 +01:00
Florian Mortgat
5a61cc9393 FIX DA027383: permissions not checked on HRM evaluation card (#36328) (#36399) 
Permissions involved:
- hrm->evaluation->readall: the user can view anyone's evaluations
- hrm->evaluation->read: the user can only view their or their subordinates' evaluations
 2025-11-24 14:57:20 +01:00
Laurent Destailleur
3ced7b6de7 CSS 2025-11-23 21:10:40 +01:00
Laurent Destailleur
53e926371b Debug v23 2025-11-23 16:15:59 +01:00
Laurent Destailleur
8facedc1b6 Fix CI 2025-11-23 01:47:00 +01:00
Laurent Destailleur
89d8b553c1 Debug v23 2025-11-22 16:23:07 +01:00
Laurent Destailleur
d571285a37 Merge branch 'develop' of git@github.com:Dolibarr/dolibarr.git into 
develop
 2025-11-21 19:14:00 +01:00
Laurent Destailleur
424484a4c3 Debug v23 2025-11-21 19:11:32 +01:00
Frédéric FRANCE
561d4deb06 clean code (#36363) 
Co-authored-by: Laurent Destailleur <eldy@destailleur.fr>
 2025-11-21 18:34:09 +01:00
Frédéric FRANCE
9d4260c858 fix Ci (#36354) 
* fix Ci

* Update html.form.class.php

* fix

* remove duplicate
 2025-11-21 17:26:29 +01:00
Laurent Destailleur
b8190e137e Merge branch '22.0' of github.com:Dolibarr/dolibarr into develop 2025-11-21 15:18:08 +01:00
Laurent Destailleur
f68f7c3da8 Debug v23 2025-11-21 01:02:48 +01:00
Laurent Destailleur
6e6253f40d Close #36120 2025-11-21 00:16:06 +01:00
Laurent Destailleur
bbc100b6d3 Close #36120 2025-11-21 00:07:31 +01:00
Laurent Destailleur
09da2b2365 Merge manually to close #34719. Need to add API_IN_TOKEN_TABLE=1 for the 
transition to use several API tokens per user.
 2025-11-20 23:51:37 +01:00
Laurent Destailleur
b77e3a4cca Merge branch 'develop' into new-api-rest-tokens 2025-11-20 21:31:20 +01:00
Laurent Destailleur
e43d252b91 Fix CI 2025-11-20 20:35:11 +01:00
Laurent Destailleur
a94ab3874d Close #35819 by using a new function dol_clone_in_array() 2025-11-20 19:40:57 +01:00
Laurent Destailleur
141fa57511 Debug v23 2025-11-20 17:05:34 +01:00
Laurent Destailleur
18c30daf11 Debug v23 2025-11-20 17:04:53 +01:00
Laurent Destailleur
0bfd72a995 Merge branch '22.0' of git@github.com:Dolibarr/dolibarr.git into develop 2025-11-20 12:00:49 +01:00
Laurent Destailleur
10c0de4467 Merge branch '21.0' of git@github.com:Dolibarr/dolibarr.git into 22.0 2025-11-20 11:55:18 +01:00
Laurent Destailleur
ae131796d6 Merge branch '21.0' of git@github.com:Dolibarr/dolibarr.git into 21.0 2025-11-20 11:51:51 +01:00
Laurent Destailleur
ecda16a5f6 Merge branch '19.0' of git@github.com:Dolibarr/dolibarr.git into 20.0 2025-11-20 11:48:23 +01:00
Laurent Destailleur
515a615915 Merge branch '18.0' of git@github.com:Dolibarr/dolibarr.git into 19.0 2025-11-20 11:44:40 +01:00
Laurent Destailleur
cef8905f02 Clean code 2025-11-20 11:19:49 +01:00
Frédéric FRANCE
46d6714fe0 clean code (#36317) 
* clean code

* clean code

* clean doc

* clean doc

* clean doc

* clean doc

* fix

* fix

* fix

* fix

---------

Co-authored-by: Laurent Destailleur <eldy@destailleur.fr>
 2025-11-20 01:47:46 +01:00
Laurent Destailleur
71fd5f2f62 Merge branch 'develop' into new-api-rest-tokens 2025-11-19 21:26:41 +01:00
Florian Mortgat
c0850d9a3f FIX DA027383: permissions not checked on HRM evaluation card (#36328) 
Permissions involved:
- hrm->evaluation->readall: the user can view anyone's evaluations
- hrm->evaluation->read: the user can only view their or their subordinates' evaluations
 2025-11-19 19:19:55 +01:00
ThomasNgr-OpenDSI
eaa05a482f Allow to view ticket linked files from public interface (#32410) 2025-11-19 15:26:59 +01:00
Yamil Esteban Garcia
6d5835e90f FIX Move 'holiday' from old path array to new one (#36308) 
* Remove 'supplier_invoice' from old path array

* Update module path in arrayforoldpath

Sorry Eldy, I was confused. You are absolutely right, it is already corrected.

---------

Co-authored-by: Laurent Destailleur <eldy@destailleur.fr>
 2025-11-19 14:09:05 +01:00
Laurent Destailleur
77e66216dc Fix ci 2025-11-19 12:15:48 +01:00
Laurent Destailleur
5ccab94697 Fix CI 2025-11-19 12:12:07 +01:00
Laurent Destailleur
0a6489a55f Fix CI 2025-11-19 11:59:33 +01:00
Laurent Destailleur
8a8ed7fa67 Fix CI 2025-11-19 11:28:58 +01:00
Laurent Destailleur
75d1f27730 Fix CI 2025-11-19 11:16:24 +01:00
Laurent Destailleur
613a4bab2d Fix CI 2025-11-19 10:57:11 +01:00
Laurent Destailleur
d858764b15 Add config param $dolibarr_main_restrict_eval_methods with whitelist of 
functionsallowed in dol_eval. Advisory GHSA-x3w7-24rq-gvc5
 2025-11-19 03:44:24 +01:00
Laurent Destailleur
9818c76f7f MAIN_DISALLOW_STRING_OBFUSCATION_IN_DOL_EVAL replaced with 
MAIN_ALLOW_OBFUSCATION_METHODS_IN_DOL_EVAL
 2025-11-18 23:34:23 +01:00
Laurent Destailleur
947389b072 NEW Disable by default obfuscation methods and function in extrafields 
evaluable strings. Can re-enable with
MAIN_ALLOW_OBFUSCATION_METHODS_IN_DOL_EVAL=1
 2025-11-18 22:45:56 +01:00
Laurent Destailleur
bcde1eb545 NEW Add filter on agenda event progression on agenda page 2025-11-18 21:59:47 +01:00
Laurent Destailleur
b748ffd528 Secure the dol_eval 2025-11-18 18:57:17 +01:00