Fix CI

Merge branch '20.0' of git@github.com:Dolibarr/dolibarr.git into 21.0
Merge branch '19.0' of git@github.com:Dolibarr/dolibarr.git into 20.0
2025-12-05 09:08:09 +01:00 · 2025-12-04 21:47:02 +01:00 · 2025-12-04 19:51:48 +01:00 · 2025-12-04 19:07:33 +01:00 · 2025-12-04 18:53:04 +01:00 · 2025-12-04 18:40:23 +01:00
11 changed files with 51 additions and 33 deletions
--- a/.github/workflows/ci-on-release.yml
+++ b/.github/workflows/ci-on-release.yml
@@ -0,0 +1,24 @@
+name: "CI-RELEASE"
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  trigger-docker:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Generate a token
+        id: generate-token
+        uses: actions/create-github-app-token@v2
+        with:
+          app-id: ${{ vars.RELEASE_DOCKER_ID }}
+          private-key: ${{ secrets.RELEASE_DOCKER_SECRET }}
+
+      - uses: peter-evans/repository-dispatch@v4
+        with:
+          token: ${{ steps.generate-token.outputs.token }}
+          repository: Dolibarr/dolibarr-docker
+          event-type: new-release
+          client-payload: '{"version": "${{ github.event.release.tag_name }}"}'
--- a/htdocs/core/actions_addupdatedelete.inc.php
+++ b/htdocs/core/actions_addupdatedelete.inc.php
@@ -426,7 +426,7 @@ if ($action == "update_extras" && GETPOSTINT('id') > 0 && !empty($permissiontoad

 	$object->oldcopy = dol_clone($object, 2);  // @phan-suppress-current-line PhanTypeMismatchProperty

-	$attribute = GETPOST('attribute', 'alphanohtml');
+	$attribute = GETPOST('attribute', 'aZ09');

 	$error = 0;

--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -1173,8 +1173,8 @@ function GETPOSTDATE($prefix, $hourTime = '', $gm = 'auto')
 	$m = array();
 	if ($hourTime === 'getpost') {
 		$hour   = GETPOSTINT($prefix . 'hour');
-		$minute = GETPOSTINT($prefix . 'minute');
-		$second = GETPOSTINT($prefix . 'second');
+		$minute = GETPOSTINT($prefix . 'min');
+		$second = GETPOSTINT($prefix . 'sec');
 	} elseif (preg_match('/^(\d\d):(\d\d):(\d\d)$/', $hourTime, $m)) {
 		$hour   = intval($m[1]);
 		$minute = intval($m[2]);
@@ -15220,8 +15220,8 @@ function buildParamDate($prefix, $timestamp = null, $hourTime = '', $gm = 'auto'
 	if ($hourTime === 'getpost' || ($timestamp !== null && dol_print_date($timestamp, '%H:%M:%S') !== '00:00:00')) {
 		$TParam = array_merge($TParam, array(
 			$prefix . 'hour'   => intval(dol_print_date($timestamp, '%H')),
-			$prefix . 'minute' => intval(dol_print_date($timestamp, '%M')),
-			$prefix . 'second' => intval(dol_print_date($timestamp, '%S'))
+			$prefix . 'min' => intval(dol_print_date($timestamp, '%M')),
+			$prefix . 'sec' => intval(dol_print_date($timestamp, '%S'))
 		));
 	}

--- a/htdocs/core/lib/security.lib.php
+++ b/htdocs/core/lib/security.lib.php
@@ -992,14 +992,14 @@ function checkUserAccessToObject($user, array $featuresarray, $object = 0, $tabl
 		$checkonentitydone = 0;

 		// Array to define rules of checks to do
-		$check = array('adherent', 'banque', 'bom', 'don', 'mrp', 'user', 'usergroup', 'payment', 'payment_supplier', 'payment_sc', 'product', 'produit', 'service', 'produit|service', 'categorie', 'resource', 'expensereport', 'holiday', 'salaries', 'website', 'recruitment', 'chargesociales', 'knowledgemanagement'); // Test on entity only (Objects with no link to company)
+		$check = array('adherent', 'banque', 'bom', 'don', 'mrp', 'user', 'usergroup', 'payment', 'payment_supplier', 'payment_sc', 'product', 'produit', 'service', 'produit|service', 'categorie', 'resource', 'expensereport', 'holiday', 'salaries', 'website', 'recruitment', 'chargesociales', 'knowledgemanagement', 'stock'); // Test on entity only (Objects with no link to company)
 		$checksoc = array('societe'); // Test for object Societe
 		$checkparentsoc = array('agenda', 'contact', 'contrat'); // Test on entity + link to third party on field $dbt_keyfield. Allowed if link is empty (Ex: contacts...).
 		$checkproject = array('projet', 'project'); // Test for project object
 		$checktask = array('projet_task', 'project_task'); // Test for task object
 		$checkhierarchy = array('expensereport', 'holiday', 'hrm');	// check permission among the hierarchy of user
 		$checkuser = array('bookmark');	// check permission among the fk_user (must be myself or null)
-		$nocheck = array('barcode', 'stock'); // No test
+		$nocheck = array('barcode'); // No test

 		//$checkdefault = 'all other not already defined'; // Test on entity + link to third party on field $dbt_keyfield. Not allowed if link is empty (Ex: invoice, orders...).

--- a/htdocs/hrm/evaluation_agenda.php
+++ b/htdocs/hrm/evaluation_agenda.php
@@ -105,8 +105,9 @@ $permissiontoread = $user->hasRight('hrm', 'evaluation', 'read'); // Used by the
 // Security check (enable the most restrictive one)
 //if ($user->socid > 0) accessforbidden();
 //if ($user->socid > 0) $socid = $user->socid;
-//$isdraft = (($object->status == $object::STATUS_DRAFT) ? 1 : 0);
-//restrictedArea($user, $object->module, $object->id, $object->table_element, $object->element, 'fk_soc', 'rowid', $isdraft);
+$isdraft = $object->status == Evaluation::STATUS_DRAFT ? 1 : 0;
+restrictedArea($user, $object->element, $object, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
+
 if (!isModEnabled('hrm')) {
 	accessforbidden();
 }
--- a/htdocs/hrm/evaluation_contact.php
+++ b/htdocs/hrm/evaluation_contact.php
@@ -71,10 +71,8 @@ $permission = $user->hasRight('hrm', 'evaluation', 'write');
 // Security check (enable the most restrictive one)
 //if ($user->socid > 0) accessforbidden();
 //if ($user->socid > 0) $socid = $user->socid;
-//$isdraft = (($object->status == $object::STATUS_DRAFT) ? 1 : 0);
-//restrictedArea($user, $object->element, $object->id, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
-//if (empty($conf->hrm->enabled)) accessforbidden();
-//if (!$permissiontoread) accessforbidden();
+$isdraft = $object->status == Evaluation::STATUS_DRAFT ? 1 : 0;
+restrictedArea($user, $object->element, $object, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);



--- a/htdocs/hrm/evaluation_document.php
+++ b/htdocs/hrm/evaluation_document.php
@@ -94,16 +94,12 @@ $permissiontoadd  = $user->hasRight('hrm', 'evaluation', 'write'); // Used by th
 $permissiontoread = $user->hasRight('hrm', 'evaluation', 'read');

 // Security check (enable the most restrictive one)
-//if ($user->socid > 0) accessforbidden();
-//if ($user->socid > 0) $socid = $user->socid;
-//$isdraft = (($object->status == $object::STATUS_DRAFT) ? 1 : 0);
-//restrictedArea($user, $object->element, $object->id, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
-if (empty($conf->hrm->enabled)) {
-	accessforbidden();
-}
-if (!$permissiontoread) {
-	accessforbidden();
-}
+
+$isdraft = $object->status == Evaluation::STATUS_DRAFT ? 1 : 0;
+restrictedArea($user, $object->element, $object, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
+
+if (!isModEnabled('hrm')) accessforbidden();
+if (!$permissiontoread) accessforbidden();


 /*
--- a/htdocs/hrm/evaluation_note.php
+++ b/htdocs/hrm/evaluation_note.php
@@ -75,10 +75,10 @@ $permissiontoread = $user->hasRight('hrm', 'evaluation', 'read');  // Used by th
 // Security check (enable the most restrictive one)
 //if ($user->socid > 0) accessforbidden();
 //if ($user->socid > 0) $socid = $user->socid;
-//$isdraft = (($object->status == $object::STATUS_DRAFT) ? 1 : 0);
-//restrictedArea($user, $object->element, $object->id, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
-//if (empty($conf->hrm->enabled)) accessforbidden();
-//if (!$permissiontoread) accessforbidden();
+$isdraft = (($object->status == Evaluation::STATUS_DRAFT) ? 1 : 0);
+restrictedArea($user, $object->element, $object, $object->table_element, '', 'fk_soc', 'rowid', $isdraft);
+if (empty($conf->hrm->enabled)) accessforbidden();
+if (!$permissiontoread) accessforbidden();


 /*
--- a/htdocs/product/inventory/card.php
+++ b/htdocs/product/inventory/card.php
@@ -54,9 +54,9 @@ $include_sub_warehouse = !empty(GETPOST('include_sub_warehouse')) ? GETPOST('inc
 $hookmanager->initHooks(array('inventorycard', 'globalcard')); // Note that conf->hooks_modules contains array

 if (!getDolGlobalString('MAIN_USE_ADVANCED_PERMS')) {
-	$result = restrictedArea($user, 'stock', $id);
+	$result = restrictedArea($user, 'stock', $id, 'inventory&stock');
 } else {
-	$result = restrictedArea($user, 'stock', $id, '', 'inventory_advance');
+	$result = restrictedArea($user, 'stock', $id, 'inventory&stock', 'inventory_advance');
 }

 // Initialize a technical objects
--- a/htdocs/product/inventory/inventory.php
+++ b/htdocs/product/inventory/inventory.php
@@ -71,9 +71,9 @@ $totalExpectedValuation = 0;
 $totalRealValuation = 0;
 $hookmanager->initHooks(array('inventorycard')); // Note that conf->hooks_modules contains array
 if (!getDolGlobalString('MAIN_USE_ADVANCED_PERMS')) {
-	$result = restrictedArea($user, 'stock', $id);
+	$result = restrictedArea($user, 'stock', $id, 'inventory&stock');
 } else {
-	$result = restrictedArea($user, 'stock', $id, '', 'inventory_advance');
+	$result = restrictedArea($user, 'stock', $id, 'inventory&stock', 'inventory_advance');
 }

 // Initialize a technical objects
--- a/htdocs/product/stock/card.php
+++ b/htdocs/product/stock/card.php
@@ -85,8 +85,7 @@ if (!$sortorder) {
 $hookmanager->initHooks(array('warehousecard', 'stocklist', 'globalcard'));

 // Security check
-//$result=restrictedArea($user,'stock', $id, 'entrepot&stock');
-$result = restrictedArea($user, 'stock');
+$result=restrictedArea($user,'stock', $id, 'entrepot&stock');

 $object = new Entrepot($db);
 $extrafields = new ExtraFields($db);
Author	SHA1	Message	Date
Laurent Destailleur	a9d2c95fdd	Fix CI	2025-12-04 21:47:02 +01:00
Laurent Destailleur	3068a778da	Merge branch '20.0' of git@github.com:Dolibarr/dolibarr.git into 21.0	2025-12-04 19:51:48 +01:00
Laurent Destailleur	9d307a4238	Merge branch '19.0' of git@github.com:Dolibarr/dolibarr.git into 20.0	2025-12-04 19:07:33 +01:00
Laurent Destailleur	222cd76799	Merge branch '18.0' of git@github.com:Dolibarr/dolibarr.git into 19.0	2025-12-04 18:53:04 +01:00
Laurent Destailleur	47799b88cf	Merge branch '17.0' of git@github.com:Dolibarr/dolibarr.git into 18.0	2025-12-04 18:40:23 +01:00
Laurent Destailleur	78ca968db6	Merge pull request #36517 from atm-florianm/SEC/commented-out-restrictedArea SEC: FIX #36430 permissions not checked on other tabs of HRM evaluation card	2025-12-04 18:37:46 +01:00
Laurent Destailleur	aa8fac1deb	Merge pull request #36429 from atm-adrien/FIX/MulticompanyStockCompatibility FIX : Implementation of multi-company compatibility with inventory/warehouse management	2025-12-04 10:42:35 +01:00
Eric - CAP-REL	2ebdcfda5c	Merge pull request #35788 from Easya-Solutions/18_allow_credit_invoice_on_situation FIX : remove useless condition to create credit on situation invoice …	2025-12-04 09:56:30 +01:00
Eric - CAP-REL	70431043af	Merge pull request #36398 from Easya-Solutions/18.0_fix-invoice-card-variables FIX undefined variables on create invoice from shipment card (backport from v20)	2025-12-04 09:30:56 +01:00
lvessiller-opendsi	ad37ece7bc	Merge pull request #36494 from atm-florianm/FIX/155/date/minute-second-vs-min-sec FIX 18.0: `GETPOSTDATE()` and `buildParamDate()` assumed wrong HTTP param names	2025-12-04 09:27:44 +01:00
atm-florian	a1476fd221	SEC: permissions not checked on other tabs of HRM evaluation card	2025-12-03 17:11:14 +01:00
atm-florian	0e1c580f11	FIX 18.0: GETPOSTDATE and buildParamDate assumed HTTP param names 'minute' and 'second' instead of 'min' and 'sec'	2025-12-01 13:47:50 +01:00
Laurent Destailleur	4223ff08ce	Merge pull request #36491 from Easya-Solutions/18.0_fix-update-extras FIX not remove value of others extra-fields on update extras action	2025-12-01 13:10:08 +01:00
VESSILLER	d16f8b68db	FIX not remove value of others extra-fields on update extras action	2025-12-01 11:14:16 +01:00
Laurent Destailleur	f4bcf47008	Merge pull request #36467 from emheyarssi/35061 FIX #35061	2025-11-29 11:28:03 +01:00
marc	5c6b4f62c8	FIX #35061 Signed-off-by: marc <marc.baur@ptmsoft.fr>	2025-11-28 18:25:00 +01:00
Laurent Destailleur	d8891130f5	Merge pull request #36463 from vold-lu/18.0 NEW: Automatically release docker image for each GitHub release	2025-11-28 18:13:47 +01:00
Aloïs Micard	b2f9de7489	Add new workflow to trigger Docker build	2025-11-28 17:27:32 +01:00
Adrien Raze	c1c2358e75	FIX : Implementation of multi-company compatibility with inventory/warehouse management	2025-11-26 12:30:22 +01:00
VESSILLER	1cd3ca3222	FIX undefined variables on create invoice from shipment card (backport from v20)	2025-11-24 10:30:08 +01:00
tnegre	8ddf9f6075	FIX : remove useless condition to create credit on situation invoice (#35786 )	2025-10-16 11:57:49 +02:00