Wavyzz/dolibarr
2
0
Fork 1
mirror of https://github.com/Dolibarr/dolibarr.git synced 2025-12-18 07:21:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
34,955 Commits 36 Branches 190 Tags
7c4b901b0a7098e74e487fa3837f3d2310723fcd
Commit Graph

992 Commits

Author SHA1 Message Date
Laurent Destailleur
5d9e35a3ed Fix: CSRF protection is enabled only if MAIN_SECURITY_CSRF is set. 2009-09-14 01:56:24 +00:00
Laurent Destailleur
070b160450 New: Add option MAIN_ONLY_LOGIN_ALLOWED to lock login to any user that is not value of constant. 
For example MAIN_ONLY_LOGIN_ALLOWED=admin will lock login to any login except admin.
This make possible to make maintenance works.
A page to add/remove this constant will be added later in system-tools
 2009-08-30 01:39:40 +00:00
Laurent Destailleur
534c8d8dbf Fix: Can't add product line to supplier order. 2009-08-28 22:46:40 +00:00
Laurent Destailleur
756ca4499a Qual: Ajax code is simpler and now works with IE6 2009-08-27 23:31:50 +00:00
Laurent Destailleur
c296965865 Fix: Some ajax features was broken 2009-08-27 22:20:01 +00:00
Laurent Destailleur
d2e3e207a6 Work on import module 2009-08-23 00:15:30 +00:00
Laurent Destailleur
000e40eb80 Perf: Some speed enhancements 2009-08-22 16:07:46 +00:00
Laurent Destailleur
c7e3ffbadb Typo fix 2009-08-21 20:22:46 +00:00
Laurent Destailleur
2b26eb5b4a Add a print icon to show a page to print without menus. 2009-08-19 20:57:15 +00:00
Laurent Destailleur
061a90ec1d New: Can add parameter &optioncss=print on url to have a page ready to print (menu removed) 2009-08-19 16:51:55 +00:00
Laurent Destailleur
944345b625 New: Can add parameter &optioncss=print on url to have a page ready to print (menu removed) 2009-08-19 16:26:12 +00:00
Laurent Destailleur
f52a4182a4 Fix: Pb with popu calendar in EI8 and security options of IE6 2009-08-13 12:32:22 +00:00
Laurent Destailleur
c11cef6d47 Add help link to online wiki 2009-08-12 12:59:14 +00:00
Laurent Destailleur
b1bb20c1bf New: First try to support right to left languages (ar_AR) 2009-08-11 12:28:30 +00:00
Laurent Destailleur
13a3de8d90 Fix: "Now" link works when date popup is not used. 
New: Add option to hide help in menu.
 2009-08-09 19:25:17 +00:00
Laurent Destailleur
e5475f0b28 Add hidden option MAIN_US_MINI_JS to use minified version of large javascript 2009-08-09 11:37:32 +00:00
Laurent Destailleur
6b8d5ae8a2 Add hidden option MAIN_US_MINI_JS to use minified version of large javascript 2009-08-09 11:22:19 +00:00
Laurent Destailleur
863b83c4db Look: Try an enhancement in background in eldy theme 
Look: Link to online help is more clear.
 2009-08-09 00:35:17 +00:00
Laurent Destailleur
b1ff004e6f Enhancement of install/upgrade process: If database version differs from programs version, the install page is automatically called. 2009-08-08 16:26:06 +00:00
Laurent Destailleur
1d600dd2f8 Qual: Usage of smarty templates by some modules is now cleaner. 2009-08-02 17:13:59 +00:00
Laurent Destailleur
378b96d504 Removed deprecated option. Use the conf->module->enabled instead. 2009-08-02 16:47:06 +00:00
Laurent Destailleur
5652291f8b Fix: W3C 2009-07-07 15:34:55 +00:00
Laurent Destailleur
8dc1e4ec30 Doc 2009-07-06 13:20:52 +00:00
Regis Houssin
32915db864 Security: just one token 2009-07-03 09:04:29 +00:00
Laurent Destailleur
b9971792ff Perf: Several speed optimizing after using the Google Page Speed plugin for firebug 2009-06-15 14:26:34 +00:00
Laurent Destailleur
f5a2f6eaaa Fix: Pb with the token post protection 2009-06-15 12:15:51 +00:00
Laurent Destailleur
28dd72e17a New: Prepare correct management of timezones 
Fix: Bad support of timeouts.
 2009-06-14 16:25:23 +00:00
Laurent Destailleur
25b608c9f6 Fix: Restore the picto title in gif format because the png transparency is not supported on IE6 (54% of users). 2009-06-14 12:38:45 +00:00
Laurent Destailleur
7b68ed8cd5 Qual: Removed deprecated source code 2009-06-10 19:51:00 +00:00
Laurent Destailleur
8732364f01 Qual: Now module services and products are two completely separated modules. 2009-06-08 18:14:37 +00:00
Laurent Destailleur
3c591db844 Restore changes after 27 may due to from savannah Crash. 2009-06-03 23:05:52 +00:00
Laurent Destailleur
b309cd1380 Fix: W3C 2009-05-27 14:32:19 +00:00
Regis Houssin
fa55e65e54 Fix: Disables token renewal in Ajax request 2009-05-26 17:01:18 +00:00
Laurent Destailleur
003208bc96 Disable the CSRF protection if we are in a development instance (to be able to do test and send post from tools). 2009-05-24 19:04:25 +00:00
Laurent Destailleur
e86917a148 Renamed conf->cookie_cryptkey into conf->file->cookie_cryptkey. The goal is to have all parameters defined inside file conf.php to be in $conf->file->xxx. Excep for database that are stored in $conf->db (historic reasons). This make code easier to understand and to know origine of a value (file or database). 2009-05-24 00:19:06 +00:00
Regis Houssin
f45caf216f Add: just used cookie for remind last user and last entity 
Look: use cookie for view logo of last used entity
 2009-05-23 17:44:36 +00:00
Regis Houssin
1420692e53 Add: view last user and last entity in login page if cookie is enabled 2009-05-23 15:35:02 +00:00
Regis Houssin
23ce17b308 Add: entity cookie just used for the login page 2009-05-22 15:38:09 +00:00
Regis Houssin
6f163a94a8 Add: entity cookie just used for the login page 2009-05-22 15:24:32 +00:00
Laurent Destailleur
8e167d3f80 Qual: Now creation of session is done before the loading of conf. This make code much easier to understand. 2009-05-22 00:20:45 +00:00
Laurent Destailleur
fb0e668fc0 Qual: Now creation of session is done before the loading of conf. This make code much easier to understand. 2009-05-21 22:28:05 +00:00
Laurent Destailleur
e4090f63b1 Session name DOLSESSID_databasename is replace with DOLSESSID_dolibarrwebinstance. This remove a key read in conf.class.php used to name session because, to make code simpler, we will need to create session before the conf is loaded. This is also most secure because it is possible to use 2 dolibarr instances even if database names are same on two different mysql server. 
Add also comments on code to remember to simplify things.
 2009-05-21 21:37:45 +00:00
Laurent Destailleur
9d57b9ec71 Add message to avoid to search 2009-05-21 17:45:13 +00:00
Laurent Destailleur
9a38002c46 Session name DOLSESSID_databasename is replace with DOLSESSID_dolibarrwebinstance. This remove a key read in conf.class.php used to name session because, to make code simpler, we will need to create session before the conf is loaded. This is also most secure because it is possible to use 2 dolibarr instances even if database names are same on two different mysql server. 
Add also comments on code to remember to simplify things.
 2009-05-21 13:37:18 +00:00
Regis Houssin
ee350b7352 Fix: ouverture d'une session temporaire de securite pour stocker une de cryptage aléatoire pour 
encryption du cookie
 2009-05-20 18:23:02 +00:00
Regis Houssin
3786711822 Fix: ouverture d'une session temporaire de securite pour stocker une de cryptage aléatoire pour 
encryption du cookie
 2009-05-20 18:18:25 +00:00
Regis Houssin
1437913f39 Fix: remplace rand par mt_rand plus performant 2009-05-19 21:51:08 +00:00
Regis Houssin
572a89e1d3 Fix: protection faille CSRF 2009-05-19 21:08:17 +00:00
Regis Houssin
63cbd5a24e Fix: protection faille CSRF 2009-05-19 20:59:20 +00:00
Regis Houssin
91624baceb Add: a color picker 
Add: define a background color/image in mailing
 2009-05-19 13:27:44 +00:00