BookStack

mirror of https://github.com/BookStackApp/BookStack.git synced 2024-07-07 20:02:40 +00:00

Author	SHA1	Message	Date
Dan Brown	7d94da10fb	Merge branch 'v21.04.x'	2021-05-24 13:08:51 +01:00
Dan Brown	c7322a71f7	Added theme add social driver redirect configuration callback Allows someone using the theme system to configure the social driver before a redirect action occurs, by passing a callback as an additional param to the theme 'addSocialDriver' method.	2021-05-24 12:55:45 +01:00
Dan Brown	2c3523f6a1	Updated image permission setting logic To ensure thhat the visibility is still set on local storage options since the previous recent changes could cause problems where in scenarios where the server user could not read images uploaded by the php process user. Closes #2758	2021-05-24 12:09:28 +01:00
Dan Brown	ba8ba5c634	Added testing to favourite system - Also removed some old view service references. - Updated TopFavourites query to be based on favourites table and join in the views instead of the other way around, so that favourites still show even if they have no views.	2021-05-23 14:34:36 +01:00
Dan Brown	db9aa41096	Started writing testing for favourites	2021-05-16 01:07:20 +01:00
Dan Brown	68ef6a842f	Fixed issue thrown upon empty markdown content save Closes #2741	2021-05-15 17:33:53 +01:00
Dan Brown	7be7d7d1e7	Updated not-found image path handling to have better ux Added test to cover. Started refactoring some of the app error handling in the process of this. Fixes #2696	2021-05-08 18:49:58 +01:00
Dan Brown	7f8f3080c5	Removed php8-only 'mixed' type from test method	2021-05-08 13:23:28 +01:00
Dan Brown	9cf4191079	Reviewed and updated SAML2 authncontext option Added tests to cover. Changed default to align with existing default. Added env option parsing. For #1998	2021-05-08 13:07:25 +01:00
Dan Brown	a083ceaf44	Fixed item export with deleted creator/updated Added test to cover. Fixes #2733	2021-05-05 22:52:08 +01:00
Dan Brown	43b6633183	Filtered scripts in custom HTML head for exports Since it appeared to cause problems in some scenarios. Related to #2490	2021-05-03 23:59:52 +01:00
Dan Brown	83b576eb19	Prevented "Recently Viewed" homepage list showing non-user-viewed items Triggered when the user has no/limited views. Added a test to cover. Closes #2703	2021-04-27 21:05:01 +01:00
Dan Brown	ec827da5a5	Updated public view test case to be more reliable Was failing due to either common name or view share being sticky across requests.	2021-04-20 22:14:01 +01:00
Dan Brown	20528a2442	Fixed error thrown when owner existed but the creator did not Added test to cover. For #2687	2021-04-20 21:04:38 +01:00
Dan Brown	5c9c1d1a4b	Updated shelf sort to allow default sort, added testing Done during review of #2515	2021-03-21 23:06:15 +00:00
Dan Brown	06706a2d9c	Added user filter to audit log Included testing to cover. Closes #2472	2021-03-21 15:04:32 +00:00
Dan Brown	8e5067ee91	Performed fixes for failing tests on php8 - Commands that run a truncate DB action failed due to messing up the test transations so we mnaully work around that now to ensure a transaction exists for the test to cleanup afterwards. - Updated dompdf lib version	2021-03-20 16:25:02 +00:00
Dan Brown	829fecd338	Updated app to PHP7.3 min supported version, For php8 support - Updated remaining dependancies - Upped min versions used - Updated GH actions to drop 7.2 and include 8.0 - Updated phpunit & tests to 9.x	2021-03-20 15:35:39 +00:00
Dan Brown	691db40a33	Added login/register theme events	2021-03-19 21:54:50 +00:00
Dan Brown	2ae89f2c32	Added the possibility of social provider extension via theme Also started docs page	2021-03-19 16:22:47 +00:00
Dan Brown	9d37af9453	Added web-middleware based theme events	2021-03-17 12:56:56 +00:00
Dan Brown	a5d2a26fcc	Added testing for the back-end theme system done so far	2021-03-16 17:55:19 +00:00
Dan Brown	1420f239fc	Made session cookie path dynamic based on APP_URL	2021-03-16 13:03:07 +00:00
Dan Brown	71ccb90ef4	Amended owned by search filter to use slugs	2021-03-15 18:27:03 +00:00
Dan Brown	c8564b7792	Merge branch 'search-owned-by-me' of git://github.com/benediktvolke/BookStack into benediktvolke-search-owned-by-me	2021-03-15 18:21:09 +00:00
Dan Brown	215c69acb2	Merge image name cleaning functions Updated testing for changes and to check existing of new expected file name. Related to #2611	2021-03-14 23:20:21 +00:00
Dan Brown	c1f67372a7	Merge branch 'master' of git://github.com/webfoersterei/BookStack into webfoersterei-master	2021-03-14 22:55:30 +00:00
Dan Brown	a644f64c6b	Merge branch 'v0.31.x'	2021-03-13 15:37:44 +00:00
Dan Brown	339d4ec355	Fixed misalignment of page and chapter parent book Could occur when a chapter was moved with deleted pages. Fixes #2632	2021-03-13 15:18:37 +00:00
Dan Brown	3c57cbc567	Updated testing for user slugs	2021-03-10 23:04:18 +00:00
Timo Förster	745d15d200	Allow uploads of files containing dots in filename. Closes BookStackApp/BookStack#2217	2021-03-04 22:27:20 +01:00
Dan Brown	4d4a57d1bf	Converted some tests from BrowserKit, Updated shared helpers	2021-03-03 22:11:00 +00:00
Benedikt Volke	cf489453c9	Add test for new search tag	2021-02-14 11:40:02 +01:00
Dan Brown	6a4b020dd8	Removed user and revision links in export meta Closes #2526	2021-02-12 20:58:01 +00:00
Dan Brown	1a4797abc4	Updated update-url command to handle array values Also added message to clear the cache after running. For #2546	2021-02-11 23:14:37 +00:00
Dan Brown	c09300c06f	Split command tests out to indavidual test files	2021-02-11 22:42:36 +00:00
Dan Brown	ae353bb3f4	Updated update-url command to look at setting values For #2546 Need to consider new JSON-array based setting values.	2021-02-10 23:47:58 +00:00
Dan Brown	b0f4500c34	Added env option for setting dark mode default Also allowed config-centralised default user settings for this change and bought existing user-level view options into that default settings system to be cleaner in code usage. For #2081	2021-02-07 23:12:05 +00:00
Dan Brown	af032f8993	Tweaked LDAP TLS Implementation - Moved the ldap function out to our separate service for easier testing. - Added testing for the option. - Moved tls_insecure part back up above connection start as found more reliable there. Done a lot of real-connection testing during this review. Used wireshare to ensure TLS connection does take place. Found LDAP_TLS_INSECURE=false can action unreliably, restarting php-fpm helped. Tested both trusted and untrusted certificates.	2021-02-07 20:00:04 +00:00
Dan Brown	9a05223e7d	Merge branch 'v0.31.x'	2021-02-06 14:22:19 +00:00
Dan Brown	a7e3c26fe3	Fixed markdown content on revision restore Closes #2496	2021-02-06 14:14:38 +00:00
Dan Brown	37de4e2e0a	Added test for markdown page revision restore Also added md change detection in revision saving.	2021-02-06 13:51:05 +00:00
Dan Brown	7843d8f054	Added recycle-bin test to cover type deletions	2021-02-06 13:22:31 +00:00
Dan Brown	f25e585008	Moved sketchy file samples to base64 equivilents Hides them from AV systems. Done some test helper cleaning while at it. Related to #1571	2021-02-06 00:16:27 +00:00
Dan Brown	44c41e9e4d	Updated footer links to be a configurable list Made so footer link ordering, names and urls can be set. Cleaned up some of the setting-service and added support for array setting types, which are cleaned on entry and stored as json with a new type indicator column on the settings table for auto-decode. Also added testing to cover this feature. Related to #1973 and #854	2021-01-31 00:23:15 +00:00
Dan Brown	0dac9c68f0	Changed how the cache is mocked in status test	2021-01-28 23:13:55 +00:00
Dan Brown	6eda1c1fb2	Added status endpoint For #2467	2021-01-17 13:21:57 +00:00
Dan Brown	28c706fee3	Added strikethrough support to back-end md rendering Needed to tweak the default library strikethrough extension so that it uses the same element as front-end. Added testing to cover. For #2470.	2021-01-10 23:01:11 +00:00
Dan Brown	e5a96b0cb0	Added test case for avatar failed fetch Fixed non-imported log issue while there. For #2449	2021-01-10 13:29:13 +00:00
Dan Brown	526be33ab2	Fixed page copying not retaining content Was when there was no markdown content. Added tests to cover both HTML and markdown scenarios. Also removed old console.log Related to #2463	2021-01-09 19:39:09 +00:00
Dan Brown	831f441879	Added in table + tasklist markdown rendering For parity with markdown-it renderer. Added tests to cover. For #2452	2021-01-09 19:04:23 +00:00
Dan Brown	bbfb330b92	Added check of owner field for manage-permissions-own This permission was still checking based on created-by. Updated testing to specifically check the owner since the tests were passing by the fact of matching creator and owner. Fixes #2445	2021-01-04 18:07:39 +00:00
Dan Brown	20729a618f	Fixed markdown content not stored on first page save HTML content was still saved. This changes makes the back-end check for md content instead of html to ensure that gets stored in cases where both are sent to the system. Closes #2446	2021-01-04 17:52:08 +00:00
Dan Brown	14ea6c9de3	Made fixes/updates during pre-release review - Fixed page editor default focus not working as expected due to misnamed attribute. - Added owned_by to relevant areas of the API including the docs. - Made book relation on page accessible even if deleted since it could cause an issue on views, such as audit trail, when the relation is accessed when the book is deleted.	2021-01-03 22:29:58 +00:00
Dan Brown	024b0d8a64	Fixed restore revision save order, Added restore summary testing Found during review of #2353, A revision would be stored before a restore which would result with a duplicate revision and the new summary would be assigned against the wrong content. This change saves the revison after restore and adds test to check the content and summary text.	2021-01-02 16:42:05 +00:00
Dan Brown	92922288dd	Added iframe CSP, improved session cookie security Added iframe CSP headers with configuration via .env. Updated session cookies to be lax by default, dynamically changing to none when iframes configured to allow third-party control. Updated cookie security to be auto-secure if a https APP_URL is set. Related to #2427 and #2207.	2021-01-02 02:43:50 +00:00
Dan Brown	588fd7d165	Fixed short editor in firefox and optimised some queries Optimised permission fetching so that it won't initialise a bunch of models for the role permissions and instead does a manual query to get the data directly.	2021-01-02 01:22:41 +00:00
Dan Brown	de989ffa9a	Tested new ownership + (delete/change) systems	2021-01-01 23:58:53 +00:00
Dan Brown	e408067b10	Fixed test helper method signature	2020-12-30 22:25:10 +00:00
Dan Brown	4c580d1571	Added owners to entity creation and updated tests	2020-12-30 22:18:28 +00:00
Dan Brown	f1e1a745b0	Fixed failing home test after changes in last commit Also made a restriction test more reliable. Also renamed restrictionstest to entitypermissionstest to be more consistent with newer app wording.	2020-12-18 21:44:35 +00:00
Dan Brown	20bb76afdb	Fixed changed namespaces for merged test	2020-12-18 20:04:48 +00:00
Dan Brown	cf04a0d818	Merge branch 'v0.30.x'	2020-12-18 14:16:13 +00:00
Dan Brown	2acef3c2ec	Fixed issue where restricted page content in plaintext export The content of pages made non-viewable to a user via permissions, within a visible parent, could be seen via the plaintext export option. Before v0.30.6 this would have applied only to scenarios where all pages within the chapter were made non-visible. In v0.30.6 this would make all pages within the chapter visible. As per #2414	2020-12-18 13:56:00 +00:00
Dan Brown	9884cca00c	Merge branch 'v0.30.x'	2020-12-17 21:47:59 +00:00
Dan Brown	3f3fad7113	Fixed book-tree-gen page visibility issue When book trees were generated, pages in chapters where ALL pages within were not supposed to be visibile, would be visible due to the code falling back on the raw relation which would not account for permissions. This has now been changed so that a custom 'visible_pages' attribute is set and used by any book tree structures, to ensure it does not fall back to the raw relation. Added an extra test to cover. For #2414	2020-12-17 17:31:18 +00:00
Dan Brown	6c09334ba0	Fixed issue where page export contain system would miss images	2020-12-06 22:23:21 +00:00
Dan Brown	65b2c90522	Merge branch 'v0.30.x'	2020-12-06 21:32:01 +00:00
Dan Brown	884664bfe9	Ensured base64 images are read from image upload folder Also removed unused storage systems and updated testing.	2020-12-06 15:34:18 +00:00
Dan Brown	57754c8211	Added testing to cover the pages API	2020-11-28 16:30:30 +00:00
Dan Brown	ef1b98019a	Fixed some mis-refactoring and split search service Search service broken into index and runner tools.	2020-11-22 00:17:45 +00:00
Dan Brown	c7a2d568bf	Moved models to folder, renamed managers to tools Tools seems to fit better since the classes were a bit of a mixed bunch and did not always manage. Also simplified the structure of the SlugGenerator class. Also focused EntityContext on shelves and simplified to use session helper.	2020-11-21 23:20:54 +00:00
Dan Brown	da37700ac2	Implemented user, api_tokem & role activity logging Also refactored some role content, primarily updating the permission controller to be RoleController since it only dealt with roles.	2020-11-20 18:53:01 +00:00
Dan Brown	712ccd23c4	Updated activities table format Renamed some columns to be more generic and applicable. Removed now redundant book_id column. Allowed nullable entity morph columns for non-entity activity. Ran tests and made required changes.	2020-11-08 00:03:19 +00:00
Dan Brown	ee7e1122d3	Removed use of book_id in activity	2020-11-07 23:15:13 +00:00
Dan Brown	c157dc3490	Organised activity types and moved most to repos Repos are generally better since otherwise we end up duplicating things between front-end and API. Types moved to by CONST values within a class for better visibilty of usage and listing of types.	2020-11-07 22:37:27 +00:00
Dan Brown	4824ef2760	Merge pull request #2283 from BookStackApp/recycle_bin Recycle Bin Implementation	2020-11-07 15:10:17 +00:00
Dan Brown	b4da081552	Checked over recycle bin parent/child flows	2020-11-07 15:05:13 +00:00
Dan Brown	ec3aeb3315	Added recycle bin auto-clear lifetime functionality	2020-11-07 13:58:23 +00:00
Dan Brown	68b1d87ebe	Added test coverage of recycle bin actions	2020-11-07 13:19:23 +00:00
Dan Brown	483cb41665	Started testing work for recycle bin implementation	2020-11-06 12:54:39 +00:00
Dan Brown	474770af51	Merge branch 'fixes' of git://github.com/imanghafoori1/BookStack into imanghafoori1-fixes	2020-10-31 22:11:27 +00:00
Dan Brown	6d8b0605a0	Merge branch 'xss_and_redir_patch' of git://github.com/PercussiveElbow/BookStack into xss_and_redirect	2020-10-31 15:19:33 +00:00
Dan Brown	349162ea13	Prevented possible XSS via link attachments This filters out potentially malicious javascript: or data: uri's coming through to be attached to attachments. Added tests to cover. Thanks to Yassine ABOUKIR (@yassineaboukir on twitter) for reporting this vulnerability.	2020-10-31 15:01:52 +00:00
PercussiveElbow	bbd1384acb	XSS and redirect fixes with test cases	2020-10-27 01:34:51 +00:00
imanghafoori	704b808e9e	fixes from laravel-microscope	2020-10-16 18:40:10 +03:30
Dan Brown	465d405926	Updated page content related links on content id changes For #2278	2020-09-28 22:26:50 +01:00
Dan Brown	8b0f5e7000	Updated draw.io references to diagrams.net Related to #2044	2020-09-28 20:45:38 +01:00
Dan Brown	d48ac0a37d	Removed redundant test Now replaced in recent commit by one that checks actual message gets displayed on the redirect page. Redirect page changed to login page.	2020-09-26 18:24:05 +01:00
Dan Brown	9985046685	Added test for includes on book export Related to #2227	2020-09-26 16:54:24 +01:00
Dan Brown	53ec794e53	Fixed issue where SAML login not notifiy on existing user Added testing to cover Fixes #2263	2020-09-26 16:43:06 +01:00
Dan Brown	31eec34b5d	Moved decode and updated page plaintext decode test	2020-09-19 15:13:18 +01:00
Dan Brown	2e39e45886	Added test to check text gen decodes HTML entities	2020-09-19 14:58:18 +01:00
Dan Brown	78bf044a7a	Added audit log interface - Displays the currently tracked activities in the system. Related to #2173 and #1167	2020-09-19 12:06:45 +01:00
Dan Brown	ff1ee2d71f	Updated flow to ensure /register/confirm route is used where needed Was accidentally skipped during previous updates. Will now be used on saml, ldap & standard registration where required. Uses session to know if the email was just sent and, if so, show the confirmation route.	2020-09-05 17:26:48 +01:00
Jasper Weyne	23402ae812	Initial unit tests for OpenID	2020-08-04 21:30:17 +02:00
Dan Brown	87a5340a05	Prevented email confirmation exception throw on registration Was preventing any other registration actions from taking place such as LDAP/SAML group sync. Email confirmation should be actioned by middleware on post-registration redirect. Added testing to cover. Tested for LDAP, SAML and normal registration with email confirmation required to ensure flows work as expected. Fixes #2082	2020-08-04 17:54:50 +01:00
Dan Brown	5f1ee5fb0e	Removed role 'name' field from database The 'name' field was really redundant and caused confusion in the codebase, since the 'Display' name is often used and we have a 'system_name' for the admin and public role. This fixes #2032, Where external auth group matching has confusing behaviour as matching was done against the display_name, if no external_auth field is set, but only roles with a match 'name' field would be considered. This also fixes and error where the role users migration, on role delete, would not actually fire due to mis-matching http body keys. Looks like this has been an issue from the start. Added some testing to cover. Fixes #2211. Also converted phpdoc to typehints in many areas of the reviewed code during the above.	2020-08-04 14:55:01 +01:00
Dan Brown	a9f02550f0	Removed joint_permissions auto_increment id Removed auto_incrementing id and set a primary key of the [role_id, entity_type, entity_id, action] instead since this table could recieve a lot of activity, especially when permission regeneration was automated, leading to very high auto_increment counts which could max out the integer limit. Also updated some RolesTest comment endpoints to align with recent route changes. Should fix #2091	2020-08-04 13:02:31 +01:00
Dan Brown	7590ecd37c	Updated some comment elements and standardised more JS - Updated comment routes to be simpler. - Updated comments JS to align better with updated component system. - Documented available global JS functions/services. - Removed redundant controller method. - Added window.$events helpers for validation messages and success/error. - Updated JS events system to not be class based for simplicity. - Added window.trans_plural method to handle pluralisation/replacements where you already have the translation string itself. Fixes #1836	2020-07-28 18:19:18 +01:00
Dan Brown	2c0fdf83c1	Updated public-login redirect to check url Direct links to the login pages for public instances could lead to a redirect back to an external page upon login. This adds a check to ensure the URL is a URL expected from the current bookstack instance, or at least under the same domain. Fixes #2073	2020-07-28 16:29:06 +01:00
Dan Brown	2ed0317129	Updated functionality for logging failed access - Added testing to cover. - Linked logging into Laravel's monolog logging system and made log channel configurable. - Updated env var names to be specific to login access. - Added extra locations as to where failed logins would be captured. Related to #1881 and #728	2020-07-28 12:59:43 +01:00
Dan Brown	8213ea9a71	Fixed issue where URL params in image names would cause loading failure Updated file name handling to route through str:slug to be cleaned up a little. Added testing to cover. Fixes #2161	2020-07-25 11:18:40 +01:00
Dan Brown	02dc3154e3	Converted image-manager to be component/HTML based Instead of vue based.	2020-07-25 00:20:58 +01:00
Dan Brown	b6aa232205	Fixed issue where more images than expected could be deleted When deleting images, images within the same directory, that have a suffix of the delete image name, would also be deleted. Added test to cover.	2020-07-24 23:41:59 +01:00
Dan Brown	3bfd26bf86	Converted the page editor from vue to component	2020-07-05 21:18:17 +01:00
Dan Brown	9d6f574494	Updated attachment tests to align with front-end changes	2020-07-04 17:04:26 +01:00
Jasper Weyne	07a6d7655f	First basic OpenID Connect implementation	2020-07-01 23:27:50 +02:00
Dan Brown	8dc9689c6d	Removed tests for removed ajax tag route	2020-06-29 23:46:08 +01:00
Dan Brown	8bc3e0f31a	Merge branch 'master' of git://github.com/drzippie/BookStack into drzippie-master	2020-06-27 17:11:11 +01:00
Dan Brown	715dee2d0e	Converted search filters to not be vue based	2020-06-27 13:29:00 +01:00
Antonio Cortés (DrZippie)	d617dba61c	removed test_slug_multi_byte_lower_casing and added new test test_slug_multi_byte_url_safe	2020-06-25 18:42:28 +02:00
Dan Brown	71e7dd5894	Removed failing URL test - Was found that the test was not testing the actual situation anyway. - A work-around in the request creation, within testing, just happened to result in the desired outcome. For reference: https://github.com/laravel/framework/pull/32345	2020-05-23 12:56:31 +01:00
Dan Brown	3502abdd49	Fixed revision issues caused by page fillable changes	2020-05-23 12:28:14 +01:00
Dan Brown	19bfc8ad37	Prevented entity "Not Found" events from being logged - Added testing to cover, which was more hassle than thought since Laravel did not have built in log test helpers, so: - Added Log testing helper. Related to #2110	2020-05-23 11:28:59 +01:00
Dan Brown	00c0815808	Fixed issue where updated page content would not be indexed - Also updated html field of pages to not be fillable. (Since HTML should always go through app id parsing) Related to #2042	2020-05-23 00:46:13 +01:00
Dan Brown	8a6cf0cdec	Added chapters to the API	2020-05-23 00:28:41 +01:00
Dan Brown	24bad5034a	Updated API auth to allow public user if given permission	2020-05-22 22:34:18 +01:00
Dan Brown	9666c8c0f7	Updated shelf-list view to enforce view permissions for child books - Aligned shelf-homepage behaviour to match - Updated testing to cover. For #2111	2020-05-12 22:21:45 +01:00
Dan Brown	413cac23ae	Added command to regenerate comment content	2020-05-01 23:41:47 +01:00
Dan Brown	3c26e7b727	Updated comment md rendering to be server-side	2020-05-01 23:24:11 +01:00
Dan Brown	8ce38d2158	Fixed not shown existing-email warning on new ldap user - Reduced the amount of different exceptions from LDAP attempt so they can be handled more consistently. - Added test to cover. - Also cleaned up LDAP tests to reduce boilterplate mocks. Fixes #2048	2020-04-26 12:13:00 +01:00
Dan Brown	519283e643	Authenticated admins on all guards upon login For #2031	2020-04-25 18:19:22 +01:00
Dan Brown	79a949836b	Fixed incorrect API listing total when offset set Fixes #2043	2020-04-25 16:38:11 +01:00
Dan Brown	50669e3f4a	Added tests and translations for dark-mode components	2020-04-11 20:44:23 +01:00
Dan Brown	d4df18098f	Cleaned up the activity service - Added test to ensure activity on entity delete works as expected.	2020-04-10 20:55:33 +01:00
Dan Brown	7b8fe5fbc6	Added book-export endpoints to the API	2020-04-10 16:05:17 +01:00
Dan Brown	29705a25ce	Reviewed and added testing for BookShelf API implementation - Tweaked how books are passed on update to prevent unassignment if parameter is not provided. - Added books to validation so they show in docs. - Added request/response examples. - Added tests to cover. - Added child book info to shelf info. Review of #1908	2020-04-10 15:19:18 +01:00
Dan Brown	ba1be9d710	Updated password reset process not to indicate if email exists - Intended to prevent enumeration to check if a user exists. - Updated messages on both the reqest-reset and set-password elements. - Also updated notification auto-hide to be dynamic based upon the amount of words within the notification. - Added tests to cover. For #2016	2020-04-10 13:38:08 +01:00
Dan Brown	053cbbd5b6	Updated view-change endpoints to be clearer, separated books and shelf - Separated books-list and shelf-show view types to be saved separately. During review of #1755	2020-04-10 12:49:16 +01:00
Dan Brown	47e645909e	Reviewed #1688 , Show parent shelves on books page - Moved list to the left of the page to align with other navigational items. - Hid list of no shelves, to help hide shelf references if not in use. - Tweaked test to ensure it wasn't finding shelf name in breadcrumb rather than list being tested.	2020-04-09 17:29:22 +01:00
Dan Brown	898cedf536	Merge branch 'feature/#1598' of git://github.com/cw1998/BookStack into cw1998-feature/#1598	2020-04-09 17:18:37 +01:00
Dan Brown	e83d2eedbb	Added "update-url" command to find/replace url in the database - Also aligned format of command descriptions. Targeted most common columns. Have not done revisions for the sake of keeping that content true to how it was originally stored but could cause unexpected behaviour. For #1225	2020-04-09 16:59:26 +01:00
Dan Brown	5f61620cc2	Added support for changing the draw.io instance URL - Allowed DRAWIO env option to be passed as URL to point to instance. - Updated tests to check URL gets passed to pages correctly. - Update default URL to be the default theme. For #826	2020-04-05 17:27:16 +01:00
Dan Brown	f94fd44ff6	Updated styles to use logical properties/values - Intended to improve RTL support in the interface. - Also adds hebrew to language dropdown since that was missing. Related to #1794	2020-04-05 13:07:19 +01:00
Dan Brown	f84bf8e883	Updated test files to be PSR-4 compliant Closes #1924	2020-04-04 01:16:05 +01:00
Dan Brown	7f6cbead33	Performed review of "public intended" functionality provided in #1817 - Updated logic to take url from referrer rather than pass as a query parameter. - Added tests to cover functionality. - Updated 404 page with login action button if not signed in. - Updated 404 page with text to indicate permissions may be affecting visibility. Related to #1817 and #1706	2020-03-14 18:29:31 +00:00
Dan Brown	59aefe5371	Updated social auth to take name from email if empty - Added tests to cover. Fixes #1853	2020-03-10 19:09:22 +00:00
Dan Brown	34616ac195	Updated lanauge lists to match latest translations	2020-03-04 22:14:25 +00:00
Dan Brown	01b95d91ba	Fixed side-effect in binary LDAP handling - Was not stripping prefix when sending value to LDAP server in search. - Updated test to cover.	2020-02-15 22:35:15 +00:00
Dan Brown	29cc35a304	Added dump_user_details option to LDAP and added binary attribute decode option Related to #1872	2020-02-15 20:31:23 +00:00
Dan Brown	6caedc7a37	Fixed issues preventing breadcrumb navigation menus from opening - Added tests to cover endpoint Fixes #1884	2020-02-15 19:09:33 +00:00
Dan Brown	5978d9a0d3	Updated cover image methods so image parameter is not optional but still nullable	2020-02-15 18:38:36 +00:00
Dan Brown	ea3c3cde5a	Added test to ensure shelf cover image gets set on create Related to #1897	2020-02-15 18:34:02 +00:00
Dan Brown	14363edb73	Fixed LDAP error thrown by not found user details - Added testing to cover. Related to #1876	2020-02-15 14:44:36 +00:00
Dan Brown	49386b42da	Updated email test send to show error on failure - Added test to cover - Closes #1874	2020-02-15 14:13:15 +00:00
Dan Brown	3991fbe726	Checked over and aligned registration option behavior across all auth options - Added tests to cover	2020-02-02 17:31:00 +00:00
Dan Brown	e6c6de0848	Simplified guard names and rolled out guard route checks - Included tests to cover for LDAP and SAML - Updated wording for external auth id option. - Updated 'assertPermissionError' test case to be usable in BrowserKitTests	2020-02-02 13:10:21 +00:00
Dan Brown	5d08ec3cef	Fixed failing tests caused by auth changes	2020-02-02 12:00:41 +00:00
Dan Brown	be554b9c79	Added configurable API throttling, Handled API errors standardly	2020-01-18 15:03:28 +00:00
Dan Brown	1350136ca3	Fixed bad test class name	2020-01-18 14:07:43 +00:00
Dan Brown	64455307b1	Added a few test to cover api docs pages	2020-01-18 10:04:13 +00:00
Dan Brown	04a8614136	Filled out base Book API endpoints, added example responses	2020-01-12 14:45:54 +00:00
Dan Brown	a8595d8aaf	Fixed test class names + add perm. check to api session auth	2020-01-01 17:01:36 +00:00
Dan Brown	a7a97a53f1	Added API listing filtering & cleaned ApiAuthenticate returns API listing endpoint filter can be found via &filter[name]=my+book query parameters. There are a range of operators that can be used such as &filter[id:gte]=4	2020-01-01 16:33:47 +00:00
Dan Brown	55abf7be24	Added tests to cover API config and listing code	2019-12-30 20:48:23 +00:00
Dan Brown	3cacda6762	Added expiry checking to API token auth - Added test to cover to ensure its checked going forward	2019-12-30 19:51:41 +00:00
Dan Brown	3d11cba223	Added testing coverage to API token auth	2019-12-30 19:42:46 +00:00
Dan Brown	2cfa37399c	Fixed some empty-expiry conditions of token ui flows	2019-12-29 20:18:37 +00:00
Dan Brown	692fc46c7d	Removed token 'client' text, avoid confusion w/ oAuth - Instead have a token_id and a secret. - Displayed a 'Token ID' and 'Token Secret'.	2019-12-29 20:07:28 +00:00
Dan Brown	832fbd65af	Added testing coverage to user API token interfaces	2019-12-29 19:46:46 +00:00
Dan Brown	e06f9f7fe3	Removed setting override system due to confusing behaviour - Was only used to disable registration when LDAP was enabled. - Caused saved option not to show on settings page causing confusion. - Extended setting logic where used to take ldap into account instead of global override. - Added warning on setting page to show registration enable setting is not used while ldap is active. For #1541	2019-12-22 13:19:17 +00:00
Dan Brown	32e7f0a2e6	Made display thumbnail generation use original data if smaller Thumbnail generation would sometimes create a file larger than the original, if the original was already well optimized, therefore making the thumbnail counter-productive. This change compares the sizes of the original and the generated thumbnail, and uses the smaller of the two if the thumbnail does not change the aspect ratio of the image. Fixes #1751	2019-12-22 12:44:49 +00:00
Dan Brown	5491bd62a2	Fixed test failing due to redirect changes - Also set APP_THEME param during testing to avoid local conflicts	2019-12-21 13:48:44 +00:00
Dan Brown	f9fa6904b9	Made LDAP auth ID attribute configurable - Allows the field that gets stored as the "External Authentication ID" to be configurable. Defined as LDAP_ID_ATTRIBUTE=uid in .env. - Added test to cover usage. - Also now auto-lowercases when searching for attributes in LDAP response since PHP always provides them as lower case. Closes #592.	2019-12-16 12:40:21 +00:00
Dan Brown	017703ff1a	Updated page delete to return to chapter if within one - Added test to cover Closes #1715	2019-12-16 11:54:53 +00:00
Dan Brown	02af69ddf2	Added command to copy shelf permissions Has options to run for all or to specify a slug for a specific shelf. Closes #1091	2019-12-11 21:22:03 +00:00
Dan Brown	c33ef4b9b2	Added tests to cover saml and added controller middleware	2019-11-17 19:15:37 +00:00
Dan Brown	488325f459	Added the ability to auto-load config from metadata url	2019-11-17 14:44:26 +00:00
Dan Brown	3a17ba2cb9	Started using OneLogin SAML lib directly - Aligned and formatted config options. - Provided way to override onelogin lib options if required. - Added endpoints in core bookstack routes. - Provided way to debug details provided by idp and formatted by bookstack. - Started on test work - Handled case of email address already in use.	2019-11-17 13:26:43 +00:00
Dan Brown	d64c358c4f	Updated sort logic to handle chapter to book scenario - Extended tests out to cover	2019-10-29 22:33:09 +00:00
Dan Brown	6a1b6a97f9	Added test for page move into chapter	2019-10-29 22:25:53 +00:00
Dan Brown	28184c6bfc	Merge branch 'fix/#1662' of git://github.com/cw1998/BookStack into cw1998-fix/#1662	2019-10-27 16:44:41 +00:00
Dan Brown	99ce3067c7	Added test to check custom theme lang items	2019-10-26 18:07:14 +01:00
Dan Brown	1366fc45ce	Added tests to cover test email sends - Also tweaked wording of 'E-mail' to 'Email' to remain consistent with the rest of the app. Related to #1696 and #1719	2019-10-23 20:25:51 +01:00
Dan Brown	f37131a5bf	Removed old Translation Service + Provider Was no longer needed due to only being there to perform language extension for de_informal but now this is done by crowdin instead so it's redundant. Same goes for checking and formatting scripts. Also removed comment advising deletion form settings.php language list since this is now auto-copied to languages anyway. Related to #1261	2019-10-19 00:04:49 +01:00
Dan Brown	31f5786e01	Entity Repo & Controller Refactor (#1690 ) * Started mass-refactoring of the current entity repos * Rewrote book tree logic - Now does two simple queries instead of one really complex one. - Extracted logic into its own class. - Remove model-level akward union field listing. - Logic now more readable than being large separate query and compilation functions. * Extracted and split book sort logic * Finished up Book controller/repo organisation * Refactored bookshelves controllers and repo parts * Fixed issues found via phpunit * Refactored Chapter controller * Updated Chapter export controller * Started Page controller/repo refactor * Refactored another chunk of PageController * Completed initial pagecontroller refactor pass * Fixed tests and continued reduction of old repos * Removed old page remove and further reduced entity repo * Removed old entity repo, split out page controller * Ran phpcbf and split out some page content methods * Tidied up some EntityProvider elements * Fixed issued caused by viewservice change	2019-10-05 12:55:01 +01:00
Christopher Wilkinson	4ad4dfa55a	Show bookshelves that a book belongs to on a book view Closes #1598	2019-09-27 00:45:22 +01:00
Christopher Wilkinson	2f94f078e3	Fix Book form (create) returning to the full books list on cancel Fixes #1662 Added a small block of logic to determine the correct URL to attribute to the cancel button on a given page create form. If adding a book from a bookshelf, return to the bookshelf. If editing a book, return to the book. In all other cases, return to the full books list.	2019-09-26 22:51:24 +01:00
Dan Brown	7cd956b24b	Removed some unused parameters and fixed env test logic	2019-09-20 01:18:59 +01:00
Dan Brown	8b550991a4	Refactored some core entity actions - Created BookChild class to share some page/chapter logic. - Gave entities the power to generate their own permissions and slugs. - Moved bits out of BaseController constructor since it was overly sticky. - Moved slug generation logic into its own class. - Created a facade for permissions due to high use. - Fixed failing test issues from last commits	2019-09-20 00:18:28 +01:00
Dan Brown	60d0f96cd7	Extracted some methods into a BookRepo	2019-09-15 23:28:23 +01:00
Dan Brown	cbf9d701af	Updated to laravel 6	2019-09-14 14:12:39 +01:00
Dan Brown	140298bd96	Updated to Laravel 5.8	2019-09-13 23:58:40 +01:00
Dan Brown	7a4425473b	Fixed URL gen issue causing incorrect scheme to be used For #1613	2019-09-01 12:07:51 +01:00
Dan Brown	aea5319256	Merge branch 'docker-development-environment' of git://github.com/timoschwarzer/BookStack into timoschwarzer-docker-development-environment	2019-08-26 21:24:56 +01:00
Dan Brown	7cc17934a8	Made MD editor display a sandboxed iframe - Also added escaping of srcdoc elements in escape logic. Related to #1531	2019-08-26 12:16:50 +01:00
Dan Brown	2dfe6c2d56	Fixed failing test and added more accessibility improvements - Updated linked images to have obvious focus styles - Added proper role to notifications - Made dropdown list focus styles a bit nicer. - Updated book list chapter child slide down to be keyboard activatable. Related to #1320	2019-08-25 17:21:25 +01:00
Dan Brown	eab0ca9648	Covered new invite system with testing Closes #316	2019-08-18 13:55:28 +01:00
Timo Schwarzer	9357620d55	Add docker development environment	2019-08-12 16:43:39 +02:00
Dan Brown	20c36d58a6	Merge pull request #1527 from BookStackApp/129-page-templates Page Templates Implementation	2019-08-11 20:21:17 +01:00
Dan Brown	5fdab3b8af	Updated template test to be more stable	2019-08-11 20:10:27 +01:00
Dan Brown	de3e9ab094	Added ability to use templates - Added replace, append and prepend actions for template content into both the WYSIWYG editor and markdown editor. - Added further testing to cover.	2019-08-11 20:04:43 +01:00
Dan Brown	421dd93ffd	Merge branch 'v0.26'	2019-08-06 21:50:56 +01:00
Dan Brown	f417675b1d	Prevented normal users from changing own email To address #1542 Updates to only allow email changes by users with the users-manage role permission.	2019-08-06 21:29:42 +01:00
Dan Brown	2955f414dd	Added iframe JS and data url escaping Related to #1531	2019-08-06 21:08:24 +01:00
Dan Brown	2ebbc6b658	Merge branch 'master' into 129-page-templates	2019-08-04 16:26:38 +01:00
Dan Brown	4b0c4e621a	Replaced use of custom 'baseUrl' helper with 'url' Also changed up how base URL setting was being done by manipulating incoming request URLs instead of altering then on generation.	2019-08-04 14:26:39 +01:00
Dan Brown	1e7df28238	Set export service to set correct svg image mimetype For #1538	2019-07-17 22:37:19 +01:00
Dan Brown	8fcb0e6820	Merge branch 'v0.26'	2019-07-10 20:30:36 +01:00
Dan Brown	c732970f6e	Hardened page content script escaping Increased range of tests to cover. Fixes #1531	2019-07-10 20:17:22 +01:00
Dan Brown	94441832c5	Removed old translation endpoint tests	2019-07-07 13:54:17 +01:00
Dan Brown	71167426bb	Started implementation of page template	2019-07-07 13:45:46 +01:00
Dan Brown	5c70413784	Fixed incorrect testing vars and reset env vars in config test	2019-06-25 22:52:07 +01:00
Dan Brown	762d1d7595	Allowed different storage types for images and attachments - Added new env and config vars to allow this. - Also added tests for awkward config logic including fallback for new env vars. Closes #1302	2019-06-23 16:01:15 +01:00
Dan Brown	fbb2b7ac6a	Updated page nav header shift logic to be accurate Added tests to cover. Fixes #542	2019-06-16 11:32:38 +01:00
Dan Brown	3ad1b42a74	Updated page delete to handle inactive custom homepage correctly Fixes #1447	2019-05-27 12:40:19 +01:00
Dan Brown	35e6635379	Fixed chapter description not showing in book exports Closes #1465	2019-05-25 15:21:02 +01:00
Dan Brown	8ae35f645a	Fixed faulty baseUrl rewrites Fixes #1452 May help #1377	2019-05-19 16:25:05 +01:00
Dan Brown	896f88174a	Updated page navigation logic to ignore empty headers Fixes #1429	2019-05-15 21:02:11 +01:00
Dan Brown	97ffbaa740	Fixed issue where books titles could be leaked via shelf home view - Also added test to cover Fixes #1425	2019-05-07 22:42:48 +01:00
Dan Brown	ad542f0407	Prevented potential inline JS event usage - Removes 'on*' attributes from elements. - Also updated script logic to remove scripts instead of escaping. - All JS injection removal now uses DomDocument + xpath parsing.	2019-05-05 13:53:37 +01:00
Dan Brown	8c190324ac	Updated existing image tests to reflect changes - Also added some new tests	2019-05-04 18:11:19 +01:00
Dan Brown	aeb1fc4d49	Started rewriting back-end image managment	2019-04-21 15:52:29 +01:00
Dan Brown	4e49d06182	Merge branch 'fix/registraion-form-validation' of git://github.com/cw1998/BookStack into cw1998-fix/registraion-form-validation	2019-04-21 12:24:39 +01:00
Dan Brown	2bb06463d5	Added deeper content id de-duplication Closes #1393	2019-04-21 12:22:41 +01:00
Dan Brown	0bc5ccba32	Add revision restore confirm and changed http method Closes #1321	2019-04-20 13:25:16 +01:00
Dan Brown	6c66a8935a	Added test to check page HTML id de-duplication Relates to #1393	2019-04-20 13:01:56 +01:00
Dan Brown	c24764018a	Updated ldap server option parsing to work with protocol and port - Aligns with PHP behaviour where ports is ignore for full LDAP URI. - Added tests to check format being passed to LDAP is as expected. - May be related to #1220 - Related to #1386 and #1278	2019-04-16 22:47:53 +01:00
Christopher Wilkinson	c8cf6731e2	Add min length validation on name on register form & add sign up link	2019-04-16 12:18:51 +01:00
Dan Brown	c380c10d54	Prevented bad duplicate IDs causing major exception Related to #1393	2019-04-15 21:20:32 +01:00
Dan Brown	7f3f6e65b9	Aligned item creation wording and updated shelf-book-add logic	2019-04-15 20:45:04 +01:00
Christopher Wilkinson	50a9c71de0	Add tests for creating a book and adding directly to a shelf	2019-04-15 09:27:17 +01:00
Christopher Wilkinson	faa3a8b842	Add button to add a book directly from a shelf view	2019-04-15 09:27:17 +01:00
Dan Brown	9406b4d4c9	Updated view toggle to store date Also added test for user list order preferences	2019-04-14 13:01:51 +01:00
Dan Brown	b12ae6d11b	Added bookshelves to breadcrumbs - Updated breadcrumb dropdown switchers and back-end sibling code to handle new breadcrumbs. - Added breadcrumb view composer and EntityContext system to mangage tracking if in the context of a bookshelf.	2019-04-07 18:28:11 +01:00
Dan Brown	7cda9b026e	Updated tests to suit layout changes, Updated 404 page - Also replaced 'or' usage in templates with null coalescing operator	2019-04-06 18:36:17 +01:00
Dan Brown	193e2ffebe	Prevent dbl exts. on img upload, Randomized attachment upload names	2019-03-24 19:08:21 +00:00
Dan Brown	f5fe524e6c	Added extension whitelist for image uploads - A continuation of the security issues addressed in v0.25.3	2019-03-21 19:43:15 +00:00
Dan Brown	37b91b6b0e	Hardened image file validation by removing custom validation - Added test to check PHP files cannot be uploaded as an image.	2019-03-20 23:59:55 +00:00
Dan Brown	44c537de1a	Performed some LDAP service/test cleanup	2019-03-10 10:54:19 +00:00
Dan Brown	6bccf0e64a	Merge branch 'feature-ldap-attributes' of git://github.com/dfanara/BookStack into dfanara-feature-ldap-attributes	2019-03-10 10:31:09 +00:00
Dan Brown	042a6f9760	Updated shelf menu item to show on custom permission - Extended new 'userCanOnAny' helper to take a entity class for filtering. Closes #1201	2019-03-09 21:15:45 +00:00
Dan Brown	5c9b528517	Abstracted userCanCreatePage helper to work for any permisison - Added test to cover scenario where someone with create-own permission would want to copy a viewable item into a container entity that they own.	2019-03-09 16:50:22 +00:00
Daniel Fanara	6d20bdc1fb	Preserve original display_name_attribute configuration values.	2019-03-09 01:13:30 -05:00
Daniel Fanara	502ea608bf	Issue #1306 - Unit Tests for LdapService Changes	2019-03-09 01:08:49 -05:00
Dan Brown	0e0a17cc30	Prevented page text content includes Avoids possible permission issues where included content shown in search or preview where the user would not normally have permission to view the included content. Closes #1178	2019-01-05 17:18:40 +00:00
Dan Brown	50e5527483	Added test to cover "users" header link in correct permission conditions	2019-01-05 15:22:47 +00:00
Dan Brown	70ad707c3c	Tweaked profile page anchor links and swapped register/login links Also added test for login/register links on non-auth app view Relates to #1146	2019-01-05 15:01:16 +00:00
Dan Brown	a2087fe3ff	Made delete permissions a requirement for move operations Closes #1200	2019-01-05 14:39:40 +00:00
Dan Brown	2317bf2350	Added check for last admin on role change Will show error message if last admin and admin role is removed. Closes #1124 Also cleaned up user controller a little.	2018-12-30 16:11:58 +00:00
Dan Brown	68017e2553	Added testing for avatar fetching systems & config Abstracts imageservice http interaction. Closes #1193	2018-12-23 15:34:38 +00:00
Dan Brown	f4ea5f1f55	Updated page exports to use absolute time format For #1065	2018-12-22 16:35:04 +00:00
Dan Brown	26ec1cc3dc	Added proper escaping to LDAP filter operations To cover #1163	2018-12-20 20:04:09 +00:00
Dan Brown	651ae2f3be	Fixed failing language test after addition of formatter	2018-12-16 15:46:02 +00:00
Dan Brown	323bff7d6d	Extended translations system for arrays & extension Extended the base Laravel translation system to allow a locale to be based upon another. Also adds functionality to take base & fallback locales into account when fetching an array of translations. Related to work done in #1159	2018-12-12 20:46:27 +00:00
Dan Brown	178b5af83a	Added google select_account test Also cleaned the function naming a little to be more descriptive of the work they do.	2018-11-10 14:52:43 +00:00
Dan Brown	ffc1aa873e	Merge branch 'v0.24-dev'	2018-11-04 15:36:40 +00:00
Dan Brown	19b7093438	Fixed redirect issue when custom app url in use Fixes #956 & #1048 Also added tests to cover this url logic. Also removed debugbar during tests to maybe improve test speed.	2018-11-04 15:18:27 +00:00
Dan Brown	85f330c79a	Extracted many page-specific repo methods into page-specific repo	2018-10-13 11:27:55 +01:00
Dan Brown	919660678b	Re-structured the app code to be feature based rather than code type based	2018-09-25 12:30:50 +01:00
Dan Brown	9243c635f2	Made search test a little more consistent	2018-09-23 15:15:44 +01:00
Dan Brown	7b32aa163f	Added Bookshelves to search system. Also cleaned up and made search indexing system a little more efficient. Closes #1023	2018-09-23 12:34:30 +01:00
Dan Brown	da58c41ab6	Prevented attachDefaultRole from trying to re-attach if already existing Fixes #1003 Added test to cover	2018-09-22 22:09:34 +01:00
Dan Brown	3f58800ed1	Added ability to configure revision limit	2018-09-22 17:30:42 +01:00
Dan Brown	1cb6ae39c8	Added base RTL support For #939 - Adds way to check if current language is RTL via config system. - Made TinyMCE default direction be based on current language text direction. - Fixed bullet points to be RTL compatible. - Set page content body to have direction based on content.	2018-09-22 13:18:26 +01:00
Dan Brown	e3e484e561	Added custom head content to exports Closes #981 Also fixed incorrect download tests.	2018-09-22 11:53:40 +01:00
Dan Brown	e60d11ee04	Altered social auto-reg to be configurable per service - Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env options for each social auth system. - Auto-register will allow registration from login, even if registration is disabled. - Auto-confirm-email indicates trust and will mark new registrants as 'email_confirmed' and skip 'confirmation email' flow. - Also added covering tests.	2018-09-21 18:05:06 +01:00
Dan Brown	131fcae4c7	Merge pull request #947 from BookStackApp/bookshelves Bookshelves	2018-09-21 15:29:52 +01:00
Dan Brown	c8d893fac7	Updated 404 test to not fail based on random long name	2018-09-21 15:24:29 +01:00
Dan Brown	b59e5942c8	Added testing coverage for Bookshelves Created modified TestResponse so we can use DOM operations in new Testcases as we move away from the BrowserKit tests.	2018-09-21 15:15:16 +01:00
Dan Brown	81eb642f75	Added bookshelves homepage options - Updated homepage selection UI to be more scalable - Cleaned homepage selection logic in code - Added seed test data for bookshelves - Added bookshelves to permission system	2018-09-20 15:27:30 +01:00
Abijeet	08b967607f	Changes as per code review, and fixes failing test cases. Signed-off-by: Abijeet <abijeetpatro@gmail.com>	2018-09-16 20:44:09 +05:30
Abijeet	0c8b6b7324	Final tweaks after code review and fixing failing test cases.	2018-09-16 01:12:36 +05:30
Abijeet	54ca4487fa	Adds tests and few fixes. Signed-off-by: Abijeet <abijeetpatro@gmail.com>	2018-09-15 21:05:51 +05:30
Dan Brown	098128aafb	Added test to cover new language autodetect config option	2018-08-12 13:34:14 +01:00
Dan Brown	f421d83627	Added ability to set custom ldap group -> role mapping Added input in role form to allow matching against custom names. Changed default mapping to use role display name instead of the hidden DB name.	2018-07-15 19:34:42 +01:00
Dan Brown	17bca662a7	Added tests to cover ldap group mapping Also updated .env.example formatting. Updated how LdapRepo uses Ldap so can be mocked by testing.	2018-07-15 17:57:25 +01:00
Dan Brown	2bcc159fd6	Allowed creating pages in visible chapters in invisible books Fixes permissions with test to cover in the event a page is created, with permission, in a chapter but the user does not have permission to see the parent book. Fixes #912	2018-07-14 14:12:29 +01:00
Dan Brown	6b84a76af1	Merge branch 'drawing_updates'	2018-05-27 19:42:25 +01:00
Dan Brown	2bd6ba9895	Added maintenance view with image-cleanup	2018-05-27 19:40:07 +01:00
Dan Brown	61c9324229	Removed old image versions test	2018-05-20 17:12:44 +01:00
Dan Brown	13ad0031d6	Drawings now generate revisions, not replace Updated drawing update test to accomodate. Image deletion system now takes revisions into account.	2018-05-13 17:41:35 +01:00
Abijeet	47cb99a2d6	Added test cases. Signed-off-by: Abijeet <abijeetpatro@gmail.com>	2018-05-12 13:07:28 +05:30
Dan Brown	eb5069ca66	Attempted to fix failing time-based test	2018-04-22 20:06:46 +01:00
Dan Brown	67e0c3d2a5	Improved export base64 encoding of images Now will use set storage mechanism to find image files. Fixes #786 Added test to cover	2018-04-22 12:23:43 +01:00
Dan Brown	cdb1c7ef88	Added destination permission checking to entity move	2018-04-14 18:47:13 +01:00
Dan Brown	0f7b0ad45a	Added ability to copy a page In 'More' menu alongside move. Allows you to move if you have permission to create within the new target parent. Closes #673	2018-04-14 18:00:16 +01:00
Dan Brown	1a72208d27	Added configurable robots.txt file. Deleted old static file. Default output depends on app-public setting. Otherwise can be overidden in `.env` file via `ALLOW_ROBOTS` Otherwise view file can be customized. Fixes #779	2018-03-31 12:41:40 +01:00
Dan Brown	582158f70e	Added tags to chapters and books Closes #121	2018-03-30 14:09:51 +01:00
Dan Brown	23f90ed6b4	Ensured uploaded system images remain public Also added tests to cover local_secure image storage. Fixes #725	2018-03-25 12:41:52 +01:00
Dan Brown	1a9f676416	Updated create routes to prevent slug clashes Fixes #758	2018-03-25 11:34:42 +01:00
Dan Brown	1ad6fe1cbd	Added togglable script escaping to page content Configurable via 'ALLOW_CONTENT_SCRIPTS' env variable. Fixes #575	2018-03-17 15:52:42 +00:00
Dan Brown	81fa021083	Finished migrated from icon-font to SVG	2018-02-17 19:49:00 +00:00
Dan Brown	548dcd4db1	Fixed error when accessing non-authed attachment Also updated attachment tests to use standard test-case. Fixes #681	2018-02-11 12:37:02 +00:00
Dan Brown	59e809be16	Added command to add a new admin user Closes #609	2018-01-28 18:09:26 +00:00
Dan Brown	ec050a5eef	Fixed validation issue on register post Added test to cover and also cleaned up RegisterController comments. Fixes #670	2018-01-28 17:15:30 +00:00
Dan Brown	ead4b14d94	Updated user profile image delete to delete all uploads Also moved test and made more comprehensive	2018-01-28 14:08:14 +00:00
Sampath Kumar	35e00ddb95	#630 : Deleting user's profile pics on deleting of user account (#646 ) * Issue-630: Fixed issue with deleting user profile pics when deleting a user. * Issue #630: Deleting user's profile pics on deleting of user account * Issue-630: Added test case for deleting user	2018-01-28 13:50:24 +00:00
Dan Brown	faf7c55fdd	Actually fixed the BaseURL this time 🤦	2018-01-28 13:33:50 +00:00
Dan Brown	ba6eb6727a	Fixed test failing from missing baseURL Also updated image upload test to delete before upload to prevent failed tests breaking subsequent tests.	2018-01-28 13:27:41 +00:00
Dan Brown	88d09a2a3b	Added drawing endpoint tests Also refactored ImageTests away from BrowserKit Also added image upload type validation.	2018-01-28 13:18:28 +00:00
Abijeet	e269cc7ea7	Adds test case for sorting permissions. Signed-off-by: Abijeet <abijeetpatro@gmail.com>	2017-12-31 20:17:08 +05:30
Dan Brown	96b8c403a8	Fixed failing book view test Also ensured setting system localcache is cleared correctly	2017-12-30 16:09:27 +00:00
Dan Brown	359b1b40a2	Fixed broken table/ol/ul page includes Fixes #640	2017-12-30 15:50:33 +00:00
Dan Brown	1aa4d0dc59	Merge branch 'feature-613' of git://github.com/Abijeet/BookStack into Abijeet-feature-613	2017-12-29 16:25:15 +00:00
Dan Brown	afe781bc39	Enabled session in 404 responses Fixes #634	2017-12-28 13:19:02 +00:00
Abijeet	d5a2529775	Adds test cases and fixes an issue with the permission checking. Signed-off-by: Abijeet <abijeetpatro@gmail.com>	2017-12-26 15:46:20 +05:30
Dan Brown	a5e49f642b	Merge branch 'disable-comments' of git://github.com/Abijeet/BookStack into Abijeet-disable-comments	2017-12-07 19:15:26 +00:00
Dan Brown	261e57fc4e	Converted books view setting to user setting Also cleaned up/moved new CSS and removed redundant new book methods.	2017-12-06 16:34:26 +00:00
Dan Brown	bc1302a8d8	Merge branch 'BookStackApp-master' of git://github.com/OsmosysSoftware/BookStack into OsmosysSoftware-BookStackApp-master	2017-12-06 15:52:54 +00:00
Dan Brown	eeb2b8cbe5	Prevented finding of check script in lang tests	2017-12-06 11:17:34 +00:00
Dan Brown	873b1099f8	Updated to laravel 5.5 Closes #590	2017-11-19 15:56:19 +00:00
Abijeet	6a54733f2b	Adding testcases for comments disable / enable setting.	2017-11-16 23:32:36 +05:30
Dan Brown	d89440d198	Fixed required email confirmation with domain restriction Added test to cover scenario. Closes #573	2017-11-11 18:09:48 +00:00
Dan Brown	711ba258f1	Prevented mulitple hypens incorrectly in slug Added test to check slug format. Fixes #589	2017-11-11 16:27:29 +00:00
Dan Brown	f094837709	Added test to cover multi-byte slugs Also removed check for 'mb_' functions since mbstring is a dependancy	2017-11-11 16:15:08 +00:00
Dan Brown	0d5d77d8ab	Updated search test to fit with new tokenization	2017-10-15 19:24:06 +01:00
Dan Brown	db51cee2d8	Prevented custom homepage being deleted Fixes #546	2017-10-15 19:14:46 +01:00
Dan Brown	74a5e3113e	Fixed page includes erroring on save Closes #514	2017-09-20 21:03:40 +01:00
Dan Brown	621142a46e	Removed outdated translations and updated tests	2017-09-09 18:41:59 +01:00
Bharadwaja G	c1a1bc0135	Books grid view	2017-09-04 20:27:52 +05:30
Bharadwaja G	6200948eec	Merge branch 'master' of git://github.com/BookStackApp/BookStack into BookStackApp-master Conflicts: app/Http/Controllers/BookController.php resources/lang/en/common.php resources/views/books/create.blade.php resources/views/books/form.blade.php resources/views/books/index.blade.php resources/views/users/edit.blade.php tests/Entity/EntityTest.php	2017-08-29 12:19:00 +05:30
Dan Brown	0a402e3c63	Made custom home ignore permissions and added tests Closes #126 and #372	2017-08-28 13:55:39 +01:00
Dan Brown	2f8b8c580d	Resolved current failing tests	2017-08-26 14:41:46 +01:00
Bharadwaja G	7f902e41c7	Resolved conflicts	2017-08-24 12:21:43 +05:30
Dan Brown	e9831a7507	Merge branch 'master' of git://github.com/Abijeet/BookStack into Abijeet-master	2017-08-01 19:24:33 +01:00
Dan Brown	c1fc06ae34	Merge branch 'master' of git://github.com/Cyber-Duck/BookStack into Cyber-Duck-master	2017-07-27 16:20:38 +01:00
Dan Brown	ec83f83017	Added breadcrumbs to pages in entity select Fixes #391	2017-07-27 16:10:58 +01:00
Dan Brown	f200b4183d	Defined LDAP constant for testing without LDAP installed	2017-07-22 17:22:31 +01:00
Dan Brown	33642c20ec	Fixed faulty text rendering calls and LDAP tests	2017-07-22 17:10:52 +01:00
Clément Blanco	245294fbc5	Trying to make the tests green.	2017-07-17 14:42:08 +01:00
Clément Blanco	f38bc75ab4	Trying to make the tests green.	2017-07-17 14:21:41 +01:00
Clément Blanco	3407900abb	Trying to make the tests green.	2017-07-17 14:18:03 +01:00
Nilesh Deepak	3079a9f4de	Reverted required changes.	2017-07-15 19:07:32 +05:30
Nilesh Deepak	a7d2cfdee2	Resolving test cases	2017-07-15 19:03:02 +05:30
Nilesh Deepak	a149e87ca7	Resolving test cases	2017-07-15 19:00:23 +05:30
Nilesh Deepak	854fd52a27	Resolving test cases	2017-07-15 18:57:09 +05:30
Nilesh Deepak	3d808ac75f	Test for cover image	2017-07-15 18:39:13 +05:30
Nilesh Deepak	39b924f158	Merge branch 'master' of https://github.com/OsmosysSoftware/BookStack	2017-07-15 18:37:55 +05:30
Nilesh Deepak	a488ef6b00	Test for cover image.	2017-07-15 18:36:49 +05:30
abijeetp	6d66c38c12	Fixes issues with the test case, now creating a user with the required profile setting.	2017-07-15 18:00:39 +05:30
Nilesh Deepak	0c70416b5c	Test books display options.	2017-07-15 16:33:52 +05:30
Nilesh Deepak	770f30c3a8	Test books display options.	2017-07-15 16:29:42 +05:30
Nilesh Deepak	9872767f20	Test for cover image upload	2017-07-15 16:19:35 +05:30
abijeetp	832f8eaa94	Fixes the test case related to UserProfileTest.	2017-07-15 15:50:42 +05:30
Nilesh Deepak	1ed74b8598	Test for grid and list layout selection.	2017-07-15 13:19:49 +05:30
Nilesh Deepak	fd36978c13	Test for layout selection.	2017-07-15 12:26:57 +05:30
Nilesh Deepak	1278a0b818	Test for layout selection.	2017-07-15 11:40:51 +05:30
Nilesh Deepak	6a6516ddd5	Test for layout selection.	2017-07-15 11:31:43 +05:30
Nilesh Deepak	1fe8f13503	Cover image test case	2017-07-14 18:36:50 +05:30
Nilesh Deepak	8f3adcda5d	Cover image test case	2017-07-14 18:02:45 +05:30
Dan Brown	4db2c274e2	Prevent empty-state actions visible without permission. Fixes #411	2017-07-02 15:59:40 +01:00
Dan Brown	cbff801aec	Added test to cover `f99c8ff`. Closes #409	2017-07-02 15:40:42 +01:00
Abijeet	574ee820a9	#47 - Fixes the issues with the test case.	2017-06-13 02:37:50 +05:30
Abijeet	7d02f77e67	#47 - Added more test cases to test the APIs and permission for comments.	2017-06-13 02:31:17 +05:30
Dan Brown	5570e858e5	Made more efficiency improvements to permission system	2017-04-30 11:38:58 +01:00
Dan Brown	1859a4d356	Refactored permission system components Split joint permission creation into chunks Fixes #374	2017-04-29 22:01:43 +01:00
Dan Brown	ad4642c2c4	Enabled translation when not logged in Reads from the Accept-Language HTTP header. Also fixed some encoding for ES translations. Fixes #375	2017-04-29 16:47:41 +01:00
Dan Brown	9e704fcae4	Updated testing database connection issue	2017-04-23 17:51:01 +01:00
Dan Brown	82e2c523e6	Fixed chapter breadcrumbs and testing issues	2017-04-22 14:08:12 +01:00
Dan Brown	a323b0d49c	Allowed child entity permissions to override parent permissions Updated elements of a page display and sidebar render to allow child permissions to work even when parent entitites have permission set. This allows a page with a 'view' permission to be viewable even when the parent book or chapter is not viewable. Fixes #366	2017-04-22 13:39:34 +01:00
Dan Brown	4c985aac7e	Added page revision counting Adds stored revision counts to pages and the revisions themselves. Closes #321	2017-04-20 20:58:54 +01:00
Dan Brown	5fee7c4db1	Merge pull request #340 from BookStackApp/search_system Implementation of new search system	2017-04-16 11:01:00 +01:00
Dan Brown	a15b179676	Updated testcases for new search system. Finishes implementation of new search system. Closes #271 Closes #344 Fixes #285 Fixes #269 Closes #64	2017-04-16 10:47:44 +01:00
Dan Brown	cc0ce7c630	Fixed bug preventing page revision restore Added regression tests to cover. Fixes #341	2017-03-23 22:19:14 +00:00
Dan Brown	4499ae84bb	Made fixes to es languge files and users page Fixed PHP formatting error in ES lang file and added tests to cover. Made user edit page more responsive on smaller devices. Fixed 'cancel' button on profile screen when the user does not have permission to manage users.	2017-03-05 15:34:54 +00:00
Dan Brown	d4e790d3cf	Added lang tests and update export text keys	2017-03-05 15:10:06 +00:00
Dan Brown	253132afdf	Added chapter export options Closes #177	2017-02-26 14:25:02 +00:00
Dan Brown	eded8abded	Added book export and created export tests to cover In reference to #177	2017-02-26 13:26:51 +00:00
Dan Brown	0abed1afe5	Added clear activity/revision commands. Cleaned commands. Added testing to cover each command. Removed example laravel inspire command. Standardised command names to be behind 'bookstack' naming. In reference to #320.	2017-02-26 09:16:24 +00:00
Dan Brown	387047f262	Fixed inaccessible revisions, added regression tests Fixes #309	2017-02-25 12:29:01 +00:00
Dan Brown	a6128a1df1	Merge bugfixes from branch 'v0.14'	2017-02-05 21:24:15 +00:00
Dan Brown	6638ee47d3	Fixed entities wrongly visible on 404 Also ensured header state as expected on 404. In reference to BookStackApp/website#9	2017-02-05 21:19:29 +00:00
Dan Brown	d369d315a7	Fixed non-browserkit testcase and seeder issues	2017-02-05 14:37:50 +00:00
Dan Brown	7c9937e924	Converted sort tests to non browserkit testing Added testing to cover book sort endpoint. Closes #283	2017-02-05 14:20:59 +00:00
Dan Brown	33a2999a57	Namespaced tests to align with new laravel default	2017-02-04 11:58:42 +00:00
Dan Brown	6669998c10	Upgraded to Laravel 5.4	2017-01-25 19:35:40 +00:00
Dan Brown	2d4034f3b7	Added transclusion tests and fixed other tests	2017-01-21 16:16:27 +00:00
Dan Brown	dabf149411	Added user setting system and added user-lang option Supports #115	2017-01-15 16:27:24 +00:00
Dan Brown	581c382f65	Fixed image delete permission issue Also fixed missing translations and wrote tests to cover issue. Fixes #258	2017-01-08 19:19:30 +00:00
Dan Brown	f2917fc462	Added tests to cover social login actions Closes #244	2017-01-02 14:56:58 +00:00
Dan Brown	8453191dfb	Finished refactor of entity repos Removed entity-specific repos and standardised the majority of repo calls to be applicable to all entity types	2017-01-02 11:07:27 +00:00
Dan Brown	7f9de2c8ab	Started refactor to merge entity repos	2017-01-01 16:05:44 +00:00
Dan Brown	0775cd09a1	Extracted text for remaining views	2016-12-04 14:08:04 +00:00
Dan Brown	96075dee7b	Extracted text from page views & standardised breadcrumbs	2016-12-03 18:35:40 +00:00
Dan Brown	57dc53ceff	Extracted text from book & chapter views	2016-11-17 13:33:07 +00:00
Dan Brown	e639600ba5	Renamed files to attachments	2016-11-12 14:12:26 +00:00
Dan Brown	600055bc73	Fixed tag searches and added tag search regression test Fixes #222	2016-11-12 13:21:16 +00:00
Dan Brown	ac80723058	Merge fixes from branch 'v0.12'	2016-11-12 11:40:54 +00:00
Dan Brown	2af0021c2b	Fixed image tests after amends to url system	2016-10-30 12:58:01 +00:00
Dan Brown	0f2eaccb39	Added quick test to cover hypen breakage	2016-10-30 12:15:11 +00:00
Dan Brown	8b43b91057	Improved password reset flow with notifications. Also added links to sign-in/register. Fixed links in emails sent out. Fixes #210 and #218.	2016-10-30 11:36:57 +00:00
Dan Brown	91220239e5	Added in attachment tests	2016-10-23 15:25:04 +01:00
Dan Brown	3b7d223b0c	Updated and added tests for new default user system Closes #138	2016-09-29 17:07:58 +01:00
Dan Brown	9dc9724e15	Laravel 5.3 upgrade (#189 ) * Started move to laravel 5.3 * Started updating login & registration flows for laravel 5.3 update * Updated app emails to notification system * Fixed registations bugs and removed email confirmation model * Fixed large portion of laravel post-upgrade issues * Fixed and tested LDAP process	2016-09-17 18:22:04 +01:00
Dan Brown	f83de5f834	Fixed single word quoted search terms Fixes #170	2016-08-25 17:17:26 +01:00
Dan Brown	92d393537c	Merge branch 'v0.11'	2016-08-14 13:09:44 +01:00
Dan Brown	2d958e88bf	Fixed entities created with blank slugs. Fixes #156.	2016-08-13 13:53:04 +01:00
Dan Brown	42976ca48c	Fixed revision-based redirect on new pages	2016-07-26 18:16:40 +01:00
Dan Brown	7b6c88f17c	Fixed error on image deletion Also Added tests to cover image upload and deletion. Fixes #136.	2016-07-01 20:13:30 +01:00
Dan Brown	9baa96d41c	Added chapter move actions. Closes #86	2016-06-25 15:31:38 +01:00
Dan Brown	bc49784797	Added tests to cover page_move features	2016-06-12 12:48:06 +01:00
Dan Brown	e80ae76856	Added auto-suggestions to tag names and values	2016-05-15 20:12:53 +01:00
Dan Brown	b80184cd93	Renamed attribute to tags & continued interface Also fixed page create route broken in last commit	2016-05-13 21:20:21 +01:00
Dan Brown	1fa079b466	Started the page attributes interface	2016-05-12 23:12:05 +01:00
Dan Brown	fcfb9470c9	Added further attribute endpoints and added tests	2016-05-07 14:29:43 +01:00
Dan Brown	3a1cda5802	Updated ldap so extension not required in testing	2016-05-02 11:38:07 +01:00
Dan Brown	75a4fc905b	Major permission naming refactor and database migration cleanup	2016-05-01 22:33:56 +01:00
Dan Brown	05666efda9	Added hidden public role to fit with new permissions system	2016-05-01 19:36:53 +01:00
Dan Brown	a81a56706e	Rolled out new permissions system throughout application	2016-04-24 16:54:20 +01:00
Dan Brown	8933179017	Prevented drafts from showing up in a book sort Added tests to cover regresssion. In reference to #100.	2016-04-15 19:51:27 +01:00
Dan Brown	8e614ecb6e	Updated tests to match recent email confirmation changes	2016-04-03 12:34:10 +01:00
Dan Brown	e9b596d3bc	Merge bugfixes from branch 'v0.8'	2016-03-30 21:49:25 +01:00
Dan Brown	097d9c9f3c	Updated entity restrictions to allow permissions, Not just restrict Also changed wording from 'Restrictions' to 'Permissions' to keep things more familiar and to better reflect what they do. Referenced in issue #89.	2016-03-30 20:15:44 +01:00
Dan Brown	dc2978824e	Added basic system tests for markdown editor, Added extra test helpers Added test helpers for checking if an element exists / does not exist on a page. Also fixed markdown editor bugs found while creating tests.	2016-03-29 20:13:23 +01:00
Dan Brown	4656c12f6d	Fixed bug causing editing notification to always show Updated tests to prevent happening again	2016-03-13 14:33:43 +00:00
Dan Brown	5283919d24	Added new page drafts and started image entity attaching Closes #80.	2016-03-13 12:04:08 +00:00
Dan Brown	bf7852ce85	Organised test files & added page update draft tests Also cleaned styling for new autosave ui parts. Closes #36.	2016-03-12 16:31:02 +00:00
Dan Brown	5e7a4c7fb5	Fixed incorrect recents pages on homescreen Fixed the bug causing the recently updated pages to be exaclty the same as the recently create pages. Also added in tests to prevent regression.	2016-03-05 22:54:53 +00:00
Dan Brown	8e6248f57f	Added restriction tests and fixed any bugs in the process Also updated many styles within areas affected by the new permission and roles system.	2016-03-05 18:09:21 +00:00
Dan Brown	268db6b1d0	Added a whole load of permission & role tests	2016-03-05 12:09:09 +00:00
Dan Brown	8e274a5a84	Refactored some permission controls and increased testing for roles system	2016-03-02 22:35:01 +00:00
Dan Brown	473261be35	Finished initial implementation of custom role system	2016-02-27 19:24:42 +00:00
Dan Brown	54e3122540	Added smarter page finding so changing the page name does not break old urls Added page & book slug history to revisions so they can be looked up if a page is not found.	2016-02-25 20:01:59 +00:00
Dan Brown	61577cf6bf	Added entity-specific search results pages. Cleaned & Fixed search results bugs Added search result pages for pages, chapters and books. Limited the results on the global search as it just listed out an infinate amount. Fixed styling on new detailed page listings and also removed the 'bars' from the side to create a cleaner view. Fixed bad sql fulltext query format that may have thrown off searches. Reduced the number of database queries down a thousand or so.	2016-02-21 12:53:58 +00:00
Dan Brown	8eb2960950	Added recently created & updated page listings Closes #46.	2016-02-20 18:51:01 +00:00
Dan Brown	86fbc9a936	Added tests for profile pages	2016-02-18 19:32:07 +00:00
Dan Brown	4442a2e6d1	Started work on user profile pages	2016-02-16 21:25:11 +00:00
Dan Brown	d32460070f	Made ldap auth use the 'dn' if a 'uid' is not present. Fixes #56	2016-02-08 19:45:01 +00:00
Dan Brown	7bcd967fd9	Increased LDAP testing and fixed any Auth-based bugs found	2016-01-17 15:20:07 +00:00
Dan Brown	0821672e70	Cleaned tests up, Started LDAP tests, Created LDAP wrapper	2016-01-15 23:21:47 +00:00
Dan Brown	d3709de035	Added more tests to increase test coverage	2016-01-02 14:48:35 +00:00
Dan Brown	f60a0c3b76	Improved 404 page and updated tests for empty search	2016-01-01 09:03:40 +00:00
Dan Brown	445f939822	Fixed issue with searching invalid chars and page-content compiliation	2015-12-29 15:37:13 +00:00
Dan Brown	497747e621	Fixed issue with deleted users in page revision list & extended tests to cover.	2015-12-15 19:53:46 +00:00
Dan Brown	af33156369	Fixed name retrieval on missing users and added tests to cover along with some test helper methods	2015-12-15 19:27:36 +00:00
Dan Brown	f1c2866fbc	Added Popular books list with relevant tests	2015-12-02 20:22:41 +00:00
Dan Brown	5e21ecc526	Fixed crash on public entitiy viewing	2015-12-01 21:14:39 +00:00
Dan Brown	62338e4a8f	Added further tests, Fixed speed_update issues, improved search result query count	2015-11-29 17:33:25 +00:00
Dan Brown	13fa1080dc	Added tests for user crud	2015-10-18 16:06:06 +01:00
Dan Brown	144eb69cad	Added 404 page and extra tests	2015-09-29 21:25:03 +01:00
Dan Brown	fd3929e809	Started Social Auth Testing	2015-09-22 21:07:50 +01:00
Dan Brown	1b736ac045	Added tests for confirmed registration	2015-09-21 20:54:11 +01:00
Dan Brown	e8dd7fda1f	Added some basic registration testing	2015-09-10 20:28:53 +01:00
Dan Brown	88049476fe	Change application namespace to BookStack	2015-09-10 19:31:09 +01:00
Dan Brown	713827f941	Tweaked some styles and started automated testing. Fixes #11 .	2015-09-02 18:26:33 +01:00
Dan Brown	eaa1765c7a	Initial commit	2015-07-12 20:01:42 +01:00

... 7 8 9 10 11 ...

838 Commits