Activity
From 2013-11-22 to 2013-12-21
2013-12-21
-
15:50 Revision f8fdcea7: [BUGFIX] isValidUrl() idna converts whole URI
- GeneralUtility::isValidUrl() idna converts whole URI instead of
domain only.
The expensive idna_convert() is called ... -
14:11 Revision 8379b1af: [BUGFIX] Fix message for install tool warning
- Fix incorrect message for install tool login attempt warning.
Resolves: #54531
Releases: 6.2, 6.1
Change-Id: I40f34b... -
11:03 Revision 28b91ac6: [BUGFIX] Folder::getFiles directly calls Factory::createFileObject
- Folder::getFiles implements the logic of creating file objects
itself, after retrieving the information from the driv... -
- The method FileRepository::getFileIndexRecordsForFolder
retrieves the Index Records for files in a given folder using...
2013-12-20
-
- Fix incorrect message for install tool login attempt warning.
Resolves: #54531
Releases: 6.2, 6.1
Change-Id: I40f34b... -
11:02 Revision 6aaa9bf4: [TASK] UX enhancement for EXT:documentation
- Rework the documentation module according to the
discussion with the TYPO3 Usability Team.
Resolves: #54067
Releases...
2013-12-19
-
16:22 Revision 57106fbf: [TASK] Set TYPO3 version to 6.2-dev
- Change-Id: Ia6a172bcc88924db714005165d92added4bb4a1a
Reviewed-on: https://review.typo3.org/26493
Reviewed-by: TYPO3 R... -
- Change-Id: I59ca5042eda854c6d3daf02b54c23bb3acd615ff
Reviewed-on: https://review.typo3.org/26492
Reviewed-by: TYPO3 R... -
15:23 Revision 75f9c586: [TASK] Setup travis notifications
- Since the travis ci service changed the notification
policy to not notify authors of commits on failed
builds, we nee... -
14:51 Revision 9562f0d6: [TASK] Update NEWS.md for system categories
- The following changes to system categories should be mentioned
in NEWS.md:
* activation by default on pages and tt_c... -
- This reverts commit 2d6e8deae30794afb1967c38857f49b10060f38d
This merge broke travis unit and functional tests.
Needs... -
- New fields were added to the tt_content table to be used when creating
categories-based menus (of pages or content el... -
07:51 Revision 2d6e8dea: [BUGFIX] Replace the table definition manipulation by signals
- During installation of extensions the Extension Manager does
not take the Category API into account. The code to do s... -
01:17 Revision c578371a: [TASK] Mark PathUtility::stripPathSitePrefix as internal
- This is a follow up to 7efcf2a4 which marks the newly
introduced method as internal.
https://review.typo3.org/25851
...
2013-12-18
-
23:30 Revision befa7993: [TASK] oncontextmenu: Avoid duplicating onclick-functionality
- Where onclick and oncontextmenu behave the same avoid duplicating
JavaScript-code and simply call the click()-functio... -
- Avoid having to use the substr/strlen-magic.
Also strlen(PATH_site) can be statically cached.
Change-Id: I0ef942e331... -
- Since #53655, reviewed at https://review.typo3.org/25481 the indexer
takes care of updating file objects and index re... -
- Under certain circumstances the Failsafe Package Manager
could interfer with the Update Package Manager in the Instal... -
- Due some regressions on side of travis
(https://github.com/travis-ci/travis-ci/issues/1710) an older git version
is u... -
- Due some regressions on side of travis
(https://github.com/travis-ci/travis-ci/issues/1710) an older git version
is u... -
- Due some regressions on side of travis
(https://github.com/travis-ci/travis-ci/issues/1710) an older git version
is u... -
- Due to the nature of the Flow Package Manager, packages cannot
be activated and directly used during runtime. Before ... -
- ElementBrowser calls Folder::getFiles() with wrong parameters.
Properly implement the file extensions filter.
Resolv... -
- ElementBrowser calls Folder::getFiles() with wrong parameters.
Properly implement the file extensions filter.
Resolv... -
15:58 Revision 26406761: [BUGFIX] Use correct file data variable in Indexer
- The processChangedAndNewFiles() method in the Indexer class now uses
the $fileIndexEntry variable for retrieving a fi... -
- The system extension filemetadata adds access restriction fields
for selecting frontend user groups as known from tt_... -
15:44 Revision fc696569: [BUGFIX] Moving files and folders doesn't update hashes
- The ResourceStorage does not properly make use of the Indexer.
As result the indexRecord is not properly updated afte... -
- ElementBrowser calls Folder::getFiles() with wrong parameters.
Properly implement the file extensions filter.
Resolv... -
- If an editor has got no file mounts, an uncaught exception
is shown in the element browser.
Fix this by checking if ... -
14:46 Revision e4590fe0: [BUGFIX] felogin: Unknown modifier in regular expression
- A regular expression in FrontendLoginController
contains an unknown modifier. Fix it by replacing the
/ to # at the b... -
- A regular expression in FrontendLoginController
contains an unknown modifier. Fix it by replacing the
/ to # at the b... -
- A regular expression in FrontendLoginController
contains an unknown modifier. Fix it by replacing the
/ to # at the b... -
- This fixes a wrong parsing of \r\n characters for radio
button options.
Resolves: #53727
Releases: 6.2, 6.1, 6.0
Cha... -
- ElementBrowser::isReadOnlyFolder is not required any more because the
check if the folder is writable has been moved ... -
- ElementBrowser::isReadOnlyFolder is not required any more because the
check if the folder is writable has been moved ... -
- ElementBrowser::isReadOnlyFolder is not required any more because the
check if the folder is writable has been moved ... -
- Icons in the pagetree should show cursor:pointer on hover.
This changed with ExtJS-upgrade in #52933 because of
x-uns...
2013-12-17
-
- Change-Id: Id2dc49c9a5e5ca3ede14bc82218dd9ccdc7628ca
Resolves: #54123
Releases: 6.2
Reviewed-on: https://review.typo3... - 01:50 Revision 7317b652: [BUGFIX] fileadmin is hardcoded in install tool
- In the class "DefaultFactory", "fileadmin" is hardcoded.
The function "getDefaultStructureDefinition"
must take care ... -
- Fix superfluous comparison against boolean in
OpendocsController::checkAccess
Change-Id: I0682042848f2f25856506d5949... -
- Fix superfluous comparison against boolean in
DataHandler::versionizeRecord
Change-Id: I345917b9eb29f3cbb39a137f6249... -
- Fix superfluous comparison against boolean in
RelationHandler::readForeignField
Change-Id: I77f17dee6a14da7779dfe8e3... -
- Fix superfluous comparison against boolean in
Laguage::getLanguages
Change-Id: Idbf4c1f234eb1c60c01ea130095759ef49ce...
2013-12-16
-
- With commit 6eb7a54 performance optimized class
instantiation code has been committed. This code
removed the side eff...
2013-12-14
-
- PHP reflection has quite an overhead in performance.
Use a switch construct like in Flow instead to
instantiate class... -
- This patch prevents the creation of sys_refindex entries that point to no
table and no record.
Additionally it fixes...
2013-12-13
-
10:10 Revision 77fd61d1: [BUGFIX] Followup Fluid Template Fallback paths
- In the previously merged patch are some glitches and a regression:
- The usage (and test for existence) of deprecated... -
- Since the labels and values of select items are run through
htmlspecialchars by the FormEngine there is no need to us... -
- Since the labels and values of select items are run through
htmlspecialchars by the FormEngine there is no need to us... -
- Since the labels and values of select items are run through
htmlspecialchars by the FormEngine there is no need to us... -
06:34 Revision deb7bf3a: [TASK] Fix travis builds
- Due some regressions on side of travis
(https://github.com/travis-ci/travis-ci/issues/1710) an older git version
is u...
2013-12-12
-
- Needed to workaround a login-problem with IE11.
ExtJS tries to clear a cookie with different settings than when
sett... -
- Needed to workaround a login-problem with IE11.
ExtJS tries to clear a cookie with different settings than when
sett... -
- Needed to workaround a login-problem with IE11.
ExtJS tries to clear a cookie with different settings than when
sett... -
- Needed to workaround a login-problem with IE11.
ExtJS tries to clear a cookie with different settings than when
sett...
2013-12-11
-
- To make sure calls to filesize() etc. return correct values the PHP
method clearstatcache() is called in the LocalDri...
2013-12-10
-
- Change-Id: I31292d3e414fb00cdcad3660ce84f0e5c02a3d38
Reviewed-on: https://review.typo3.org/26238
Reviewed-by: TYPO3 R... -
- Change-Id: I4119f8f03f8205e8c0bc9f524bac9267e3d2da9a
Reviewed-on: https://review.typo3.org/26237
Reviewed-by: TYPO3 R... -
- Change-Id: Icdadc54348d6491619dd8dd51595e8664b101968
Reviewed-on: https://review.typo3.org/26235
Reviewed-by: TYPO3 R... -
- Change-Id: I87726750c92e85a2d28f6bd1bd1665cbef1a520a
Reviewed-on: https://review.typo3.org/26234
Reviewed-by: TYPO3 R... -
- Change-Id: If1b8bfdaf5bbd7d036e3dd382e72ea2f695ac303
Reviewed-on: https://review.typo3.org/26231
Reviewed-by: TYPO3 R... -
- Change-Id: I19333c4d3ad23dfddfab620cbe92edd1922d8c8a
Reviewed-on: https://review.typo3.org/26230
Reviewed-by: TYPO3 R... -
- Change-Id: I3073c38f3df08f909e9d29b58acbd8f1671272c9
Reviewed-on: https://review.typo3.org/26227
Reviewed-by: TYPO3 R... -
- Change-Id: Ied61f0997ee99da6866d4c3d43fd46ed213c6c83
Reviewed-on: https://review.typo3.org/26226
Reviewed-by: TYPO3 R... -
- The second typolink parameter, that is the target, can be abused to
introduce XSS code into the generated link. Escap... -
10:55 Revision 226d624a: [SECURITY] XSS in colorpicker wizard
- Encode user-input in JavaScript context for colorpicker.
Change-Id: I1121d6d20c90e476a2d0ea4f000b180e843a4ce0
Fixes:... -
10:55 Revision fdd3d3f1: [SECURITY] Prevent editor controlled hmac content
- An hmac of the editor controlled auto respond message was used to verifiy
the correctness of this message on submit. ... -
10:55 Revision f51afe2f: [SECURITY] XSS in backend user adminstration
- Change-Id: I88807af69635d75f1fbefc62b4672e945397fb07
Fixes: #48691
Releases: 6.2, 6.1, 6.0
Security-Commit: 715b2c58c... -
- It has been possible for authenticated editors
to show content of arbitrary tables and fields
that are defined in TCA... -
- The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulne... -
- Usage of unverified input parameters in wizard URL leads to a possible
XSS vulnerability in backend_layout wizard.
Th... -
- The tree Display/* ViewHelpers introduce a XSS vulnerability by
using unescaped parameters in HTML.
Change-Id: I0dad... -
- As parameters passed to an ErrorObject can be user input, the
output of those parameters in the ActionController::err... -
- If the TCEforms wizard "add" is used, the original opened document
is closed and a new one is created in which you th... -
- The second typolink parameter, that is the target, can be abused to
introduce XSS code into the generated link. Escap... -
- Encode user-input in JavaScript context for colorpicker.
Change-Id: If3da2b476a98efa67815bf84095843ab2f65949f
Fixes:... -
- An hmac of the editor controlled auto respond message was used to verifiy
the correctness of this message on submit. ... -
- Change-Id: Ie4a34a40e167b7fe54da29d16e1e962668218907
Fixes: #48691
Releases: 6.2, 6.1, 6.0
Security-Commit: be70b6e6d... -
- It has been possible for authenticated editors
to show content of arbitrary tables and fields
that are defined in TCA... -
- The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulne... -
- Usage of unverified input parameters in wizard URL leads to a possible
XSS vulnerability in backend_layout wizard.
Th... -
- The tree Display/* ViewHelpers introduce a XSS vulnerability by
using unescaped parameters in HTML.
Change-Id: I6b99... -
- As parameters passed to an ErrorObject can be user input, the
output of those parameters in the ActionController::err... -
- If the TCEforms wizard "add" is used, the original opened document
is closed and a new one is created in which you th... -
- The second typolink parameter, that is the target, can be abused to
introduce XSS code into the generated link. Escap... -
- Encode user-input in JavaScript context for colorpicker.
Change-Id: I83790887c4239d62b6783fd6269169085607b7d4
Fixes:... -
- An hmac of the editor controlled auto respond message was used to verifiy
the correctness of this message on submit. ... -
- Change-Id: I1d31daf0dbc0dfa0ae49c17be9e6e85a85b8bea2
Fixes: #48691
Releases: 6.2, 6.1, 6.0
Security-Commit: 6fae30c4a... -
- It has been possible for authenticated editors
to show content of arbitrary tables and fields
that are defined in TCA... -
- The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulne... -
- The CMS core ships a utility class helping extension authors
to create frontend-extension which need a mail-based opt... -
- Usage of unverified input parameters in wizard URL leads to a possible
XSS vulnerability in backend_layout wizard.
Th... -
- The tree Display/* ViewHelpers introduce a XSS vulnerability by
using unescaped parameters in HTML.
Change-Id: I2cb3... -
- As parameters passed to an ErrorObject can be user input, the
output of those parameters in the ActionController::err... -
- If the TCEforms wizard "add" is used, the original opened document
is closed and a new one is created in which you th... -
- An hmac of the editor controlled auto respond message was used to verifiy
the correctness of this message on submit. ... -
- Encode user-input in JavaScript context for colorpicker.
Change-Id: I0de44c590d5af304ef854628d6f5eab0c0b681ca
Fixes:... -
- The second typolink parameter, that is the target, can be abused to
introduce XSS code into the generated link. Escap... -
- Add escaping on extension meta data when rendering.
Change-Id: I6f65cb5fb4f0d290349c15c03a3d52f4b0d18fda
Fixes: #208... -
- It has been possible for authenticated editors
to show content of arbitrary tables and fields
that are defined in TCA... -
- The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulne... -
- The CMS core ships a utility class helping extension authors
to create frontend-extension which need a mail-based opt... -
- Usage of unverified input parameters in wizard URL leads to a possible
XSS vulnerability in backend_layout wizard.
Th... -
- As parameters passed to an ErrorObject can be user input, the
output of those parameters in the ActionController::err... -
- If the TCEforms wizard "add" is used, the original opened document
is closed and a new one is created in which you th... -
- The second typolink parameter, that is the target, can be abused to
introduce XSS code into the generated link. Escap... -
- Encode user-input in JavaScript context for colorpicker.
Change-Id: Ia5d181bb74f3cbe2d2b7c75097655f9c7593b70d
Fixes:... -
- An hmac of the editor controlled auto respond message was used to verifiy
the correctness of this message on submit. ... -
- Add escaping on extension meta data when rendering.
Change-Id: I64cb5f23281ddb6c63439bf33aaeac1b1fa803b4
Fixes: #208... -
- It has been possible for authenticated editors
to show content of arbitrary tables and fields
that are defined in TCA... -
- The eID script of the openid extension does not
validate the given redirect url, leading to
an open redirection vulne... -
- The CMS core ships a utility class helping extension authors
to create frontend-extension which need a mail-based opt... -
- Usage of unverified input parameters in wizard URL leads to a possible
XSS vulnerability in backend_layout wizard.
Th... -
- As parameters passed to an ErrorObject can be user input, the
output of those parameters in the ActionController::err... -
- If the TCEforms wizard "add" is used, the original opened document
is closed and a new one is created in which you th...
2013-12-08
-
- This reverts commit 8e022bcbea4f7775ce10fee30b4682a6047c461c
Merged a Feature after Feature Freeze is not acceptable... -
14:50 Revision 8e022bcb: [FEATURE] Fallback/default case for SwitchViewhelper
- In order to provide the full functionality known from the
switch/case PHP function, a default case possibility is
int... -
- Change-Id: I26b7697cdc4b40e007b89898491761105d0ba696
Resolves: #54282
Releases: 4.5
Reviewed-on: https://review.typo3... -
- A superflous function was used, that does not exist in Extbase 1.3.
Change-Id: Ib25d21c53afc47a36fe44e4317abd78e736d... -
- The filemetadata extension adds additional fields to the sys_file_metadata
table. The field creator_tool is defined i...
2013-12-07
-
- The Context-Menu of files misses the editing pen allowing
to directly edit the metadata of the file. Currently it
onl...
2013-12-06
-
- When the file list has been reworked to use FAL instead of
plain PHP file functions the feature to go one level up ha... -
- Fix superfluous comparison against boolean in
CronCommand::dayMatchesCronCommand
Change-Id: Ia1d852ffbbc772dd89587d3...
2013-12-04
- 19:54 Revision 0bbcf358: [BUGFIX] ClassAliasMap, Tx_ VH namespace and closing tag throws Exception
- When using aliased ViewHelper class names and old Tx_ namespace in
template and ViewHelper uses closing tag (not self...
2013-12-02
-
- Since the Release of Microsoft IE 11 there is no "MSIE" hint in
its user agent header anymore. Therefore the existing... -
- Since the Release of Microsoft IE 11 there is no "MSIE" hint in
its user agent header anymore. Therefore the existing... -
- Since the Release of Microsoft IE 11 there is no "MSIE" hint in
its user agent header anymore. Therefore the existing... -
- Since the Release of Microsoft IE 11 there is no "MSIE" hint in
its user agent header anymore. Therefore the existing... -
- Since the Release of Microsoft IE 11 there is no "MSIE" hint in
its user agent header anymore. Therefore the existing... -
- This reverts commit d361b2999c8ba8d1cdb218ead4f60ef1de9fe458
The change I6821bafa51372c50d8903c63d62ea44933bc12b3 do... -
- This reverts commit d361b2999c8ba8d1cdb218ead4f60ef1de9fe458
The change I6821bafa51372c50d8903c63d62ea44933bc12b3 do... -
- Regression-fix for change from:
https://review.typo3.org/25057
Resolves: #54117
Releases: 6.1, 6.0
Change-Id: I0de15... -
- Regression-fix for change from:
https://review.typo3.org/25057
Resolves: #54117
Releases: 6.1, 6.0
Change-Id: I0de15... -
- Needed to workaround a login-problem with IE11.
ExtJS tries to clear a cookie with different settings than when
sett...
2013-12-01
-
- The defaultTypoScript_setup has a different configuration than
defaultTypoScript_constants.
Make them equal.
Resolve... -
- TYPO3 4.7 is in extended maintenance mode, which actually means
only security fixes and blocking fixes upon RM approv... -
11:52 Revision a4408f87: [BUGFIX] Faulty and superfluous code in import/export module
- There is faulty and superfluous code in import/export module:
* ModuleFunctionController does not work at all, this p... -
- The LegacyClassesForIde.php contains some class definition
which extend non-existing or wrong classes.
Also fix some...
2013-11-30
-
- Remove second (no longer evaluated) _GP() function call parameter.
Resolves: #54106
Releases: 6.2
Change-Id: I5b8f64... -
15:24 Revision ec3a2d40: [BUGFIX] Missing phpinfo() module in install tool
- Adds phpinfo() information in System Environment section from
the Install Tool, after warning / error messages.
Fixe...
2013-11-29
-
- writeLocalConfiguration() and writeAdditionalConfiguration()
have return statements like:
return $result === FALSE ? ... -
17:02 Revision 309e93ac: [BUGFIX] ext:adodb Restrict connection wizard to admins
- In the unlikely case ext:datasources is used, there is a potential
information disclosure that content of this table ... -
- In the unlikely case ext:datasources is used, there is a potential
information disclosure that content of this table ... -
- In the unlikely case ext:datasources is used, there is a potential
information disclosure that content of this table ... -
- In the unlikely case ext:datasources is used, there is a potential
information disclosure that content of this table ... -
- Extension adodb can be used together with TER extension "datasource".
ext:adodb delivers a wizard and flexform code t... -
- Remove some ancient and obsolete patch files from ext:adodb/doc.
Change-Id: Ib2183abb3358de8b4d7e1dad71731b1df96a9a8... - 00:53 Revision c8f46f48: [TASK] Use array access instead of traversing hook array
- Instead of making a slow array traversal simply check if there is
a hook object for the cObject being rendered by usi... -
- From 3.4.0, released June 9, 2011
To 3.4.1.1, released March 29, 2013
Change-Id: I009c472975262f1813711b8b204518c9f1...
2013-11-28
-
- Fix superfluous comparison against boolean in
InlineElement::renderForeignRecord().
Change-Id: I75bb1625ad7ead08e8e3... -
- GeneralUtility::inList() does a comparison resulting in a boolean value.
Then based on this value it will return TRUE... -
18:53 Revision 9c57542d: [TASK] Replace URLs of bugs.typo3.org with forge.typo3.org
- The old issue tracker on http://bugs.typo3.org will be shut down
by the end of 2013.
Therefore replace *all* occurre...
2013-11-27
-
- The option disableDocModuleInAB has already been removed in the
documentation since TYPO3 4.2 according to
http://wik...
2013-11-26
-
23:14 Revision 542bd7da: [BUGFIX] Distinguish unassigend columns and colPos 0
- When using backend layout columns without a colPos value they should be
just placeholders with the label "not assigne... -
- When using backend layout columns without a colPos value they should be
just placeholders with the label "Not assigne... -
- Change-Id: Ieed877790ff7dd42dc60a159dbedfd7eedde94c1
Reviewed-on: https://review.typo3.org/25701
Reviewed-by: TYPO3 R... -
- Change-Id: I67ec110eb3695d53e63165a6c15f8bc662b3ab03
Reviewed-on: https://review.typo3.org/25700
Reviewed-by: TYPO3 R... -
- Change-Id: Ie5b5357e3979d5299e147f1afdebe7df042470ea
Reviewed-on: https://review.typo3.org/25699
Reviewed-by: TYPO3 R... -
- Change-Id: I5519d03da62894d133df316dbb675a4651f850f1
Reviewed-on: https://review.typo3.org/25698
Reviewed-by: TYPO3 R... -
- Change-Id: Idae23920cd4114c89451f2831897e4461b052037
Reviewed-on: https://review.typo3.org/25697
Reviewed-by: TYPO3 R... -
- Change-Id: Ib149ef8c34c30fdebace1863e342df5f3292cebc
Reviewed-on: https://review.typo3.org/25696
Reviewed-by: TYPO3 R... -
- Change-Id: I0c80cd295e4146fb8c5c9ac2c9e3188d18f5959e
Reviewed-on: https://review.typo3.org/25695
Reviewed-by: TYPO3 R... -
- Change-Id: I3e7c742865cf45eb50918e3de4029fa60beea15d
Reviewed-on: https://review.typo3.org/25694
Reviewed-by: TYPO3 R... -
- The t3skin extension adds icon sprites for each language. And that's
great, but not so great that it calls addIconSpr... -
- The t3skin extension adds icon sprites for each language. And that's
great, but not so great that it calls addIconSpr... -
- The t3skin extension adds icon sprites for each language. And that's
great, but not so great that it calls addIconSpr...
2013-11-24
-
21:39 Revision 93ed8d21: [BUGFIX] TS: Allow "0" as strPad.padWith
- Replaces the test with empty() by isset() and
strlen() > 0. So other strings which are
handled by PHP as empty can be... -
- Replaces the test with empty() by isset() and
strlen() > 0. So other strings which are
handled by PHP as empty can be... -
21:02 Revision 28b7bb5d: [BUGFIX] Fix ordering of stages in action dropdown
- If multiple stages exist and a user is member of only a few stages,
then in many cases the ordering of the stages is ... - 21:00 Revision 96944c08: [BUGFIX] Reload list module on clickmenu action
- This solves the problem of a not refreshing list module
when the clickmenu of an element is used to copy/move the
ele... - 20:59 Revision aed6051c: [BUGFIX] Reload list module on clickmenu action
- This solves the problem of a not refreshing list module
when the clickmenu of an element is used to copy/move the
ele... -
- * add missing class properties, that are used in the code
* fix invalid PHPDoc variable types
* remove unused variabl... - 18:54 Revision 70c3e793: [BUGFIX] Page module: Allow to paste in empty columns
- Since quite a long time it was not possible to paste a content
element into an empty column of the page module. This ... -
- The hardcoded username "admin" is removed from the HTML template
since the username can now be freely chosen.
Resolv...
2013-11-22
-
- The class loader can now use all available cache backends
for retrieval of class loading information.
Using it with ... -
- Resolves: #53811
Releases: 6.2
Change-Id: I14574f3725bc77b130255d8f70cedabd78d74947
Reviewed-on: https://review.typo3...
Also available in: Atom