GitLab

Three new hooks are added:

local_init_user() - called after $USER is initialised.  This is useful
for changing the user's theme before $THEME is initialised.

local_register_submit() - called when the registration form is
successfully submitted, but before the submitted values are saved to
usr_registration.  This is useful for remembering the properties or
preferences of the logged-out user when the form was submitted.

local_post_register() - called after a user has successfully been
created and logged in during registration.  This is useful when
properties of the user (which may have been saved to usr_registration
by local_register_submit()) need to be transferred to the newly
registered user.

Change-Id: Ifcb19737bdcecb550185624f2fd78e541690a337
Signed-off-by: Richard Mansfield <richard.mansfield@catalyst.net.nz>

Earlier versions of postgres are now unsupported, and this change will
fix the upgrade failure in bug #961728.

Change-Id: I2b7ea46515142d0d3fc601cf8ec99e15a85bc933
Signed-off-by: Richard Mansfield <richard.mansfield@catalyst.net.nz>

This changes the internal authentication plugin to use
bcrypt instead of sha1.

It also introduces a fast hash (SHA512) for bulk operations.
This hash is updated on user login to the bcrypt hash.

Bug #843568

See https://wiki.mahara.org/index.php/Developer_Area/Specifications_in_Development/Improve_Password_Storage

Change-Id: Ibf2f71bb5b5a5279dbc16ccda781ad99e81c59b8
Signed-off-by: Hugh Davenport <hugh@catalyst.net.nz>

This commit adds a Command Line Interface install and upgrade mechanism.
This should provide for unattended installations and upgrades.

Change-Id: I7eaff22f76e30345102405b302bb12fdbd897d4c
Signed-off-by: Andrew Robert Nicols <andrew.nicols@luns.net.uk>

This partly reverts commit b8ff08c6
which was done to fix bug #829674.

The is_https() function should only be used when checking for the
presence of https in the wwwroot.

Change-Id: Ifeec5422e26b8a7205baf2816a99c7a77b33b933
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

As per Francois' comment in the bug
https://bugs.launchpad.net/mahara/+bug/829674/comments/1

Change-Id: I03d99dbc93ea57d16240d0904c6bd670534f82b5
Signed-off-by: Melissa Draper <melissa@catalyst.net.nz>

Currently use of a proxy such as nginx to force https usage results
in a bit of loopiness. This patch adds the sslproxy setting and when
this is set, mandates that the wwwroot be a https address.

Change-Id: Ic4cfe048202cea60098e60e57adb99a0cb594619
Signed-off-by: Melissa Draper <melissa@catalyst.net.nz>

This reverts commit fb38dd95.

It turns out that we do need the wwwroot to be in the database
because the code that sends forum posts via email runs in php
cli mode and is needs to get the hostname of the site to embed
in the headers.

While not specifically mentioned in bug #794490, it was spitting
out warnings in the logs.

Conflicts:

	htdocs/lib/db/upgrade.php
	htdocs/lib/version.php

Change-Id: I36b33ac72eee01f71056a45c706f2fc8674620ec
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

The redirect to HTTPS added in 02cf299a
was causing problems when cron was running using PHP cli (bug #792290).

Change-Id: I991f51d2cc9272e5f33e5f4b7486d3565924d8c7
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

Test by appending each directory in PHP_SELF to DOCUMENT_ROOT
when the realpath of that is the same as dirname(__FILE__) then
stop processing.

For most users there is little performance hit, only a few will
have more than say two levels above DOCUMENT_ROOT

If nothing can be autoconfigured, use a default of root (ie no
path)

Bug #780237

Change-Id: I60339a180ac043ab0b89c3a49ff5f2485112f567
Signed-off-by: Hugh Davenport <hugh@catalyst.net.nz>

Bug #783282

Change-Id: I45b5116d74298fba213fcdd4a9d993a4d0650917
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

wwwroot will be autogenerated on every page load if it is not set in the config
file. There are some implications of storing it in the database, it particular
it affects the hostname and protocol changes. Since its autogeneration takes
just 2ms there is no much sense keeping it in the database.

Change-Id: I7c08539c6ad4e4c5fba819a459b7f60bb1d9741e
Signed-off-by: Ruslan Kabalin <ruslan.kabalin@luns.net.uk>

These closing tags are unnecessary and against our coding
guidelines. Let's get rid of them all in one go.

Change-Id: Ia94f103e525185597ee3780a3839d7577cdd0c29
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

Signed-off-by: Ruslan Kabalin <ruslan.kabalin@luns.net.uk>

Change-Id: Id7eae48294768b7192ac3921c316f2d8288de38f
Signed-off-by: Ruslan Kabalin <ruslan.kabalin@luns.net.uk>

bug #643503

Change-Id: I74bb2e6a5e431103d40561baea39914346e5f7a6
Signed-off-by: Melissa Draper <melissa@catalyst.net.nz>

Change-Id: I25214a83290a1948a6cedcadb5937fa6fcdbaff6
Signed-off-by: Darryl Hamilton <darrylh@catalyst.net.nz>

Change-Id: I9c04ac01f65c983a54015e370fd592b8a4bfc147
Signed-off-by: Darryl Hamilton <darrylh@catalyst.net.nz>

Signed-off-by: Richard Mansfield <richard.mansfield@catalyst.net.nz>

Signed-off-by: Dan Marsden <dan@catalyst.net.nz>

Signed-off-by: ¨Lorena <lorena.paoletti@gmail.com>
(cherry picked from commit 3fccdaa6ddb13526084b195e7fcf9b8ec12bf01e)

Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>

There is a new optional setting called $cfg->httpswwwroot. The reason we
have a new setting instead of simply substituting 'http://' with
'https://' in $cfg->wwwroot, like Moodle currently does, is that this
prevents people from using non-standard ports in their HTTPS setups.
This may be necessary if you want to run both Moodle and Mahara on the
same host/ip and use HTTPS logins for both of them.
Signed-off-by: Iñaki Arenaza <iarenaza@eps.mondragon.edu>

Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>

(cherry picked from commit 7d017d1d)

Now Mahara will actually crash and burn if the database isn't UTF8, rather than just bitching about it.

It's time we put an end to the madness.

Reads in themeconfig.php for all themes. Allows the theme objects to set
their own fields if necessary.

The root theme is now 'raw', and this cannot be changed. All themes
extend from the raw theme.

A bunch of fields were added to do with the widths and colours of the
columns. Now, it's technically possible for a Mahara site to have
sideblocks on the left, or sideblocks on both sides, and the widths of
these columns can be set in pixels or percent.

It's broken because it corresponds to the theme of the site, rather than
the theme the user is looking at the site with. I don't think this ever
resulted in any broken images however.

If we don't, a 'config.php' earlier on the include path can wreak havoc.
This appears to happen on some windows based setups.

(cherry picked from commit 3f9bdf5c)

Now no longer counts SET NAMES 'utf8' as a write. This means most pages
show as doing no writes, which is correct. 0 writes showed up as blank
in the footer, so tweaked the code appropriately.

This ensures the db type is set correctly for adodb when it goes looking
for a driver. It used to work fine, until we stopped including ddl on
every page.

If we don't, defaults for log levels and other such things aren't
specified, which can lead to problems when an error occurs while
connecting to the database.