1. 19 Sep, 2013 1 commit
  2. 04 Sep, 2013 2 commits
  3. 02 Sep, 2013 1 commit
    • Aaron Wells's avatar
      Changing PluginAuth API to specifically indicate whether Auth requires remote username · 20512fdb
      Aaron Wells authored
      Bug 1160093: This adds a few new methods to the Auth class, which represents an auth instance:
      
       - is_parent_authority(): Indicates whether this auth instance is a parent authority or not
       - get_parent_authority(): Gets the ID of this auth instance's parent authority
       - needs_remote_username(): Indicates whether this auth instance needs the user to have a
            remote username setting (in auth_remote_user table)
      
      I've also updated the SAML and XMLRPC auth types, which are the only ones that use remote username.
      And I've updated create_user() to automatically populate auth_remote_user() for auth
      instances that use it.
      
      Note that an auth instance of ANY type will need a remote username if it's the parent to another
      authority (the parent feature allows a user to log in via the parent or the child auth instance;
      so it's quite possible for the user to have different usernames in the two of them. Currently
      only XMLRPC uses the parent auth feature.)
      
      Lastly, also updated the documentation of LiveUser->create_user() to indicate that it only
      uses the $remoteauth parameter as a boolean (which was true even before my code changes).
      
      Change-Id: I39b1b74e68cdbc9c2632b886655caaaece1bd312
      20512fdb
  4. 28 Aug, 2013 1 commit
  5. 21 Aug, 2013 2 commits
    • Hugh Davenport's avatar
      Fix permissions of group area (Bug #1034180) · 1172c2a6
      Hugh Davenport authored
      
      
      A user should not be able to view/publish an artefact if
      - they don't have view/publish permission of that artefact
      - they don't have view permission of all parents of that artefact
      
      A user should not be able to edit an artefact if
      - they don't have edit permission of that artefact
      - they don't have edit permission of the immediate parent of that artefact
      - they don't have view permission of any parents below the immediate
      
      This is similar to the UNIX permissions, you shouldn't be able to view
      a directory unless all directories below have read (r) and executeable (x)
      bits set. The same for editing, you need write (w) permissions of the
      immediate parent, and rx for all parents.
      
      In Mahara, there are no executeable bits, but it can be assumed
      that view is basically the same as rw for container artefacts, and the same
      as r for non container artefacts.
      
      Change-Id: I4f84aca05dd08d02b05fbe084e4724f78c8681a0
      Signed-off-by: default avatarHugh Davenport <hugh@catalyst.net.nz>
      1172c2a6
    • Robert Lyon's avatar
      Merging flexible layouts + artefact chooser panel + new UI changes · 8b34dc82
      Robert Lyon authored
      
      
      - Bugs #1201258, #1181010, #1199563
      
      As these are all integrated together it is easier to test them as
      one patchset.
      
      Change-Id: I5ce68a4ea2de1de8b9deeb7d95380fcdcae095a0
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      8b34dc82
  6. 15 Aug, 2013 1 commit
  7. 12 Aug, 2013 1 commit
  8. 23 Jun, 2013 1 commit
    • Son Nguyen's avatar
      Email address in the 'Required profile fields' form must be validated · 032b155d
      Son Nguyen authored
      
      
      (bug #1045563)
      
      When an user complete the required profile field,
      1. Check if the email address has been taken
      2. Send a validation email to this address
      
      3. If an email has been sent, display the status message.
      
      When an user validate his/her email address
      4. if it is the primary email, update the email field of the table
      'usr' in DB
      
      Change-Id: Ie3f8268bee9890c7f568a399da4332bb5ab44447
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      032b155d
  9. 18 Jun, 2013 1 commit
    • Aaron Wells's avatar
      Making links to directory index.php files more explicit · 1c56a922
      Aaron Wells authored
      Bug #1150831: Some links to directory index.php files left off the
      trailing slash,
      i.e. "{$WWWROOT}/view". This caused unnecessary redirects and greater
      potential for
      errors in users' web server setups. While I was at it, for all links to
      directories
      other than $WWWROOT itself, I changed them to be explicitly links to
      "index.php".
      
      Also fixed the Windows-style line endings in homeinfo.tpl
      
      Fix all implicit links
      
      Change-Id: I87b285713e5cb1cfe785ceedd2702e5c2578058b
      1c56a922
  10. 17 Jan, 2013 1 commit
  11. 16 Jan, 2013 1 commit
  12. 15 Jan, 2013 1 commit
    • Ali Kaye's avatar
      Bug #1097564 Include contact information · 731e8115
      Ali Kaye authored
      
      
      Modified mahara.php and lib.php so that when
       a user with an expired account tries to log in
      they are told 'Sorry, your account has expired.
      You can contact the site administrator to have
      the account reactivated,' with a link to the
      'Contact Us' page.
      
      Change-Id: I6b461d40e37a88ac513649a1d4a6d83c5d3711a4
      Signed-off-by: default avatarAli Kaye <alexandrakaye.student@wegc.school.nz>
      731e8115
  13. 20 Nov, 2012 1 commit
  14. 19 Nov, 2012 1 commit
  15. 10 Sep, 2012 1 commit
  16. 09 Sep, 2012 1 commit
  17. 07 Sep, 2012 2 commits
  18. 06 Sep, 2012 1 commit
  19. 03 Sep, 2012 2 commits
  20. 29 Aug, 2012 1 commit
  21. 17 Aug, 2012 1 commit
  22. 13 Aug, 2012 1 commit
  23. 08 Aug, 2012 1 commit
  24. 06 Aug, 2012 1 commit
  25. 03 Aug, 2012 1 commit
  26. 01 Aug, 2012 1 commit
  27. 31 Jul, 2012 1 commit
  28. 30 Jul, 2012 1 commit
  29. 28 Jul, 2012 1 commit
  30. 25 Jul, 2012 1 commit
  31. 17 Jul, 2012 1 commit
  32. 12 Jul, 2012 1 commit
  33. 04 Jul, 2012 1 commit
  34. 03 Jul, 2012 3 commits