summaryrefslogtreecommitdiffstats
path: root/lib/redmine
Commit message (Collapse)AuthorAgeFilesLines
* Updates for 3.3.6 release.Jean-Philippe Lang2018-01-081-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17164 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r17062 from trunk to 3.3-stable (#27516)Toshi MARUYAMA2017-12-071-13/+14
| | | | | | | | | | | mercurial: work around faulty parsing of early command options Use -sVALUE and --long=VALUE instead of "-s VALUE" and "--long VALUE" respectively. Contributed by Yuya Nishihara. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17072 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r17061 from trunk to 3.3-stable (#27516)Toshi MARUYAMA2017-12-071-5/+5
| | | | | | | | | | | | mercurial: separate command options and positional arguments with "--" We don't have much problems here thanks to hgtarget(path) and CGI.escape(), which prepends a repository path and encodes "=" character respectively, but it's better to not rely on the side effect of these functions. Contributed by Yuya Nishihara. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17071 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r17060 from trunk to 3.3-stable (#27516)Toshi MARUYAMA2017-12-071-0/+15
| | | | | | | | | | | | | | | | | | | | | | | | mercurial: reject malicious command argument We've got a security report from the Phabricator team, which basically says --config and --debugger arguments can be injected anywhere to lead to an arbitrary command execution. https://secure.phabricator.com/rPa7921a4448093d00defa8bd18f35b8c8f8bf3314 This is a fundamental issue of the argument parsing rules in Mercurial, which allows extensions to populate their parsing rules and such extensions can be loaded by "--config extensions.<name>=". There's a chicken and egg problem. We're working on hardening the parsing rules, but which won't come in by default as it would be a behavior change. This patch adds a verification to reject malicious command arguments as a last ditch. The subsequent patches will fix the problem in more appropriate way. Contributed by Yuya Nishihara. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17070 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r17027 to 3.3-stable (#26410).Go MAEDA2017-11-251-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17029 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Updates for 3.3.5 release.Jean-Philippe Lang2017-10-151-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@17006 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16948 from trunk to 3.3-stable (#26645)Toshi MARUYAMA2017-08-081-1/+1
| | | | | | git: remove "--no-color" option from "git --version" for git 2.14 compatibility. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16950 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Updates for 3.3.4 release.Jean-Philippe Lang2017-07-021-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16746 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16622 to r16625 (#26055).Jean-Philippe Lang2017-06-071-4/+12
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16630 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16574 (#25760).Jean-Philippe Lang2017-06-061-4/+2
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16620 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16568 (#25634).Jean-Philippe Lang2017-05-271-1/+4
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16570 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16532.Jean-Philippe Lang2017-04-091-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16533 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16500 to r16503 (#25503).Jean-Philippe Lang2017-04-083-3/+25
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16523 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16428 from trunk to 3.3-stable (#25371)Toshi MARUYAMA2017-03-241-1/+1
| | | | | | git: use '--no-renames' option in 'show' command. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16429 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16422 from trunk to 3.3-stable (#25371)Toshi MARUYAMA2017-03-201-0/+3
| | | | | | Git 2.9 compatibility. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16424 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16329 from trunk to 3.3-stable (#24999)Toshi MARUYAMA2017-02-051-40/+41
| | | | | | Mercurial 4.1 compatibility. git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16330 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16227 (#24869).Jean-Philippe Lang2017-01-291-2/+2
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16290 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16092.Jean-Philippe Lang2017-01-071-2/+3
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16145 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r16142 (3.3.2 release).Jean-Philippe Lang2017-01-071-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16143 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15958 (#24296).Jean-Philippe Lang2016-11-261-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@16005 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15898.Jean-Philippe Lang2016-10-101-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15899 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15813 (#23587).Jean-Philippe Lang2016-10-021-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15878 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15846 (#23841).Jean-Philippe Lang2016-10-021-6/+6
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15867 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15645 (#23269).Jean-Philippe Lang2016-08-201-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15746 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15607 (#23246).Jean-Philippe Lang2016-07-101-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15614 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15536 and r15541 (#23083).Jean-Philippe Lang2016-06-181-7/+14
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15560 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15539 and r15550 (#23067).Jean-Philippe Lang2016-06-181-1/+3
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15557 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15501 to r15508 (#15880).Jean-Philippe Lang2016-06-121-2/+16
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15513 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15431 to r15435 (#22924, #22925, #22926).Jean-Philippe Lang2016-06-043-2/+59
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15440 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Merged r15429 (#22911).Jean-Philippe Lang2016-06-041-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15438 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Set version to 3.3.0.Jean-Philippe Lang2016-05-211-3/+3
|\ | | | | | | git-svn-id: http://svn.redmine.org/redmine/branches/3.3-stable@15423 e93f8b46-1217-0410-a6f0-8f06a7374b81
| * Set version to 3.3.0.Jean-Philippe Lang2016-05-211-2/+2
|/ | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15422 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Child nodes should only be rendered if the user is actually authorized to ↵Jean-Philippe Lang2016-05-081-2/+3
| | | | | | | | see them (#15880). Patch by Jan Schulz-Hofen. git-svn-id: http://svn.redmine.org/redmine/trunk@15393 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Replace Date.today with User.current.today (#22320).Jean-Philippe Lang2016-05-074-13/+13
| | | | | | | | | | | | | | Depending on the offset between a user's configured timezone and the server timezone, Date.today may be more or less often wrong from the user's perspective, leading to things like issues marked as overdue too early or too late, or yesterday / tomorrow being displayed / selected where 'today' is intended. A test case illustrating the problem with Issue#overdue? is included Patch by Jens Kraemer. git-svn-id: http://svn.redmine.org/redmine/trunk@15379 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Use HTML5 date input fields instead of text fields with jquery ui date ↵Jean-Philippe Lang2016-05-071-2/+2
| | | | | | | | pickers (#19468). Patch by Jan Schulz-Hofen. git-svn-id: http://svn.redmine.org/redmine/trunk@15375 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Updates for 3.2.2 release.Jean-Philippe Lang2016-05-051-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15365 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Make sure we only invoke Imagemagick if this is actually an image (#22721).Jean-Philippe Lang2016-05-041-0/+5
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15362 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Removes #move_to= (#12909).Jean-Philippe Lang2016-04-181-16/+0
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15339 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Replaces acts_as_list with an implementation that handles #position= (#12909).Jean-Philippe Lang2016-04-171-0/+134
| | | | | | Objects are reordered using the regular attribute writer #position= and AR callbacks. git-svn-id: http://svn.redmine.org/redmine/trunk@15335 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Text in the "removed" part of a diff is double-escaped (#22115).Jean-Philippe Lang2016-03-261-3/+5
| | | | | | Patch by Felix Schäfer. git-svn-id: http://svn.redmine.org/redmine/trunk@15287 e93f8b46-1217-0410-a6f0-8f06a7374b81
* include ::I18n::Backend::Pluralization (#21856)Toshi MARUYAMA2016-03-241-0/+1
| | | | | | Contributed by Vasil Kovalevsky. git-svn-id: http://svn.redmine.org/redmine/trunk@15281 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Send a single email to admins like other notifications (#21421).Jean-Philippe Lang2016-03-201-1/+2
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15266 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Hide custom field link values from being shown when value is empty (#21944).Jean-Philippe Lang2016-03-151-1/+1
| | | | | | Patch by Anders Thomsen. git-svn-id: http://svn.redmine.org/redmine/trunk@15250 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Updates copyright for 2016.Jean-Philippe Lang2016-03-1368-68/+68
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15238 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Updates for 3.2.1 release.Jean-Philippe Lang2016-03-131-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15236 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Typo (#21421).Jean-Philippe Lang2016-01-231-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15095 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Add optional user parameter to I18n#format_time to (#21421).Jean-Philippe Lang2016-01-231-2/+2
| | | | | | This is useful for mails where times should be displayed in the timezone of the recipient - not the current user causing the mail to be sent. git-svn-id: http://svn.redmine.org/redmine/trunk@15094 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Tab left/right buttons for project menu (#20632).Jean-Philippe Lang2016-01-161-1/+1
| | | | | | Patch by Felix Gliesche. git-svn-id: http://svn.redmine.org/redmine/trunk@15067 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Accept dots in JSONP callback (#13718).Jean-Philippe Lang2016-01-161-1/+1
| | | | git-svn-id: http://svn.redmine.org/redmine/trunk@15066 e93f8b46-1217-0410-a6f0-8f06a7374b81
* Add .sql to mime-types (#21738).Jean-Philippe Lang2016-01-161-1/+1
| | | | | | Patch by Benedikt Huss. git-svn-id: http://svn.redmine.org/redmine/trunk@15059 e93f8b46-1217-0410-a6f0-8f06a7374b81
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-09 09:32:43 +0000