1. 05 Mar, 2018 1 commit
    • Gregor Anzelj's avatar
      Bug 845263: Password policy · 9c26c145
      Gregor Anzelj authored and Robert Lyon's avatar Robert Lyon committed
      Improve the password policy enforcement and configuration in Mahara.
      Have a pre-defined password policy of a minimum of 8 characters with
      type "alphanumeric mixed case + symbols".
      
      Also allow site administrators to set the desired password policy in
      Site Options > Security Settings. In all locations where password
      is set, the password input should also include a password strength
      indicator.
      
      Change-Id: I020af58a6cf1635fe295f5434783ce5b6f6daacb
      9c26c145
  2. 25 Feb, 2018 1 commit
  3. 16 Feb, 2018 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1734178: allow user to delete own account · 9837f182
      Cecilia Vela Gurovic authored and Robert Lyon's avatar Robert Lyon committed
      added settings
      
      - institution level: reviewselfdeletion
          0 if the institution does not require approval
            from an admin to delete an account
          1 if the institution requires an admin to approve
            account deletion requests from users
          if not set, it takes the value from the site's
          default
      
      - site level: defaultreviewselfdeletion
        (Site options->User Settings -> Review account before self-deletion)
          1 if the site's default is requiring approval
          null otherwise
      
      Account deletion by a user
      
      when a user accesses to the account settings, a
      'Delete account' button is displayed.
      
      This will:
      - If the user belongs to an institution that requires
        approval (or does not have the settings but the site
        requires approval by default)
          then a notification will be sent to the admins
          of the institutions that require approval that
          the user belongs to
      - if the user belongs to institutions and none of them
        require approval (or does not have the setting
        but the site does not require approval by default)
          then the account is deleted
      - if the user does not belong to any institution
          then the action will depend on the setting of
          the 'mahara' institution or sites default if
          'mahara' doesn't have the setting
      
      Approval by institution admins
      
      An institution admin can see the pending deletion
      requests in Admin menu-> Institution -> Pending deletions
      After approving/denying a request, the user
      that requested the account deletion will receive
      a notification
      
      behatnotneeded
      Change-Id: I4ccd9c798cab065ec557eaddf7dfc3a51920b6d0
      9837f182
  4. 05 Feb, 2018 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1739688: 'Strict privacy switch' · ae6c3fd9
      Cecilia Vela Gurovic authored
      Created switch in site options. When set to 'yes',
      it disables the multiple institution per user switch.
      
      To do: When set to 'yes', force user to accept T&C
      and privacy statement. Will be resolved in another
      bug report #1741799
      
      behatnotneeded
      
      Change-Id: Ie62fb34a6c7cbf8e5b9bce93e76dc7c4a05376b9
      ae6c3fd9
  5. 30 Nov, 2017 1 commit
  6. 30 Oct, 2017 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1660237: removed old mobile api · d7018426
      Cecilia Vela Gurovic authored and Robert Lyon's avatar Robert Lyon committed
      removed code from htdocs/api/module/ files and replace it with a json reply error message.
      removed the 'allowmobileuploads' config variable since it is only used by the old mobile api.
      removed the 'mobileuploadtoken' values in usr_account_preferences since they are only used by old mobile api. The new mahara mobile uses external_tokens table to store its access tokens.
      
      behatnotneeded
      
      Change-Id: I02e94079fc83aa6a81534b70446f7e8ab2ebd7a4
      d7018426
  7. 22 Oct, 2017 1 commit
    • Kristina Hoeppner's avatar
      Bug 1719824: Correct lang strings · 19f91088
      Kristina Hoeppner authored
      Correct capitalization and a couple of language
      strings relating to access to the reporting
      section for staff.
      
      behatnotneeded
      
      Change-Id: Ib8cd4851f49dcc10c4cd57636bdde9283d4be2a7
      19f91088
  8. 19 Oct, 2017 1 commit
  9. 21 Sep, 2017 1 commit
  10. 09 Sep, 2017 1 commit
    • Robert Lyon's avatar
      Bug 1697248: More updates for report navigation and reports · c3d9acba
      Robert Lyon authored
      
      
      This patch will contain the fixes for:
      
      - Navigation placement
      - Collaboration report
      - CSV's of reports
      - Overview page for the graphs
      - Making Institution selector a select2 field
      - Moving all configs for reports into the modal and combine 3rd level
      menu with submenu choices in select2 field
      - Ignore non logged in users from user activity report
      - Move more variables for reports into sticky (session) vars
      - Allow results to be fetched from elasticsearch
      
      Change-Id: I725b7615ac3cd6b1d9b6352bae9f6be0d5161e1b
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      c3d9acba
  11. 21 Mar, 2017 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1657565: App-style navigation · bf6d8b64
      Cecilia Vela Gurovic authored
        Hide the dropdown menu site and institution level adding option
          to enable in config.php
          $cfg->dropdownmenuenabled= true
      
        Separate normal navigation menu from admin navigation menu
          and place it next to user menu at the top right
      
        Make the navigation changes in all themes but keep old raw theme
          unchanged in raw_old directory
      
      behatnotneeded: Are added in a separate commit
      Change-Id: If15680e17486f5bf607c3b0bf84d9086f4179e7d
      bf6d8b64
  12. 08 Nov, 2016 1 commit
  13. 21 Jul, 2016 1 commit
  14. 23 Jun, 2016 1 commit
  15. 08 Jun, 2016 1 commit
    • Aaron Wells's avatar
      Bug 1590293: Correcting inconsistencies in session expiration · 4bed19a1
      Aaron Wells authored
      1. Add some documentation to session.php explaining what
      the session.gc_maxlifetime ini setting does.
      
      2. If we can't access $CFG->session_timeout, use a timeout of
      an hour instead of the PHP default of 24 minutes.
      
      3. Limit $CFG->session_timeout to 30 days, because we're already
      enforcing that limit in session.php
      
      4. Add "usr_session.mtime" column so that we can delete old sessions
      based on inactivity instead of creation date.
      
      5. Make the cron delete old session files as soon as they've expired,
      rather than padding that an additional two days.
      
      Change-Id: I9da2b26217774566b1131e997724359715edb2fe
      behatnotneeded: Covered by existing tests
      4bed19a1
  16. 19 Apr, 2016 1 commit
  17. 21 Mar, 2016 1 commit
    • Robert Lyon's avatar
      Bug 1539262: Removing unnecessary $smarty PAGEHEADING lines · e82c0fcb
      Robert Lyon authored
      
      
      As they are set to TITLE we can just assign TITLE to PAGEHEADING in
      the smarty function call.
      
      We can later override the PAGEHRADING with
      $smarty->assign('PAGEHEADING', string); if we need to.
      
      Have also updated a few files where TITLE was not defined.
      
      behatnotneeded - everything should work as before
      
      Change-Id: I3ea592cd37344e68c6e90a3c64947cf99db59471
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      e82c0fcb
  18. 09 Dec, 2015 1 commit
  19. 20 Oct, 2015 1 commit
  20. 19 Oct, 2015 1 commit
  21. 16 Oct, 2015 1 commit
  22. 07 Oct, 2015 1 commit
  23. 20 Sep, 2015 1 commit
  24. 17 Aug, 2015 1 commit
  25. 30 Jul, 2015 1 commit
  26. 23 Jul, 2015 1 commit
    • Robert Lyon's avatar
      Bug 1467368: Allowing the main menu structure to be cached · ec41d0e0
      Robert Lyon authored and Aaron Wells's avatar Aaron Wells committed
      
      
      This will allow the rendering of the main nav to use less resources.
      
      The cached menus are saved for each institution into the
      institution_config table for these types of menus:
      
      adminnav     - site administration navigation
      instadminnav - institution admin navigation
      staffnav     - site staff admin navigation
      inststaffnav - institution staff admin navigation
      standardnav  - navigation seen in normal section of site
      
      To clear cache menus call clear_menu_cache($institution)
      
      Change-Id: I3b58090830b6d28f10f24e23abeef775c6863aa5
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      ec41d0e0
  27. 06 Jul, 2015 1 commit
  28. 23 Jun, 2015 1 commit
  29. 15 Jun, 2015 4 commits
  30. 22 Mar, 2015 1 commit
  31. 13 Mar, 2015 1 commit
  32. 09 Mar, 2015 1 commit
  33. 04 Mar, 2015 1 commit
  34. 21 Jan, 2015 1 commit
  35. 16 Jan, 2015 1 commit
  36. 14 Jan, 2015 1 commit
  37. 22 Sep, 2014 1 commit