1. 07 Oct, 2019 1 commit
  2. 02 Apr, 2018 1 commit
  3. 28 Mar, 2018 1 commit
  4. 27 Mar, 2018 2 commits
  5. 26 Mar, 2018 1 commit
  6. 08 Mar, 2018 1 commit
  7. 05 Mar, 2018 2 commits
    • Robert Lyon's avatar
      Bug 1748782: Fix clash of 'active' values in user search results · 6b8396d6
      Robert Lyon authored and Kristina Hoeppner's avatar Kristina Hoeppner committed
      
      
      We were confusing user active with auth active values from db call
      So changed the auth 'active' to 'authactive'
      
      Also add warning message to top of admin/users/edit.php page to
      indicate that user has expired (similar to when user is suspended)
      
      behatnotneeded
      
      Change-Id: I437665cffa6f2d372ef4c5c39fad7bec183e3a2d
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      6b8396d6
    • Gregor Anzelj's avatar
      Bug 845263: Password policy · 9c26c145
      Gregor Anzelj authored and Robert Lyon's avatar Robert Lyon committed
      Improve the password policy enforcement and configuration in Mahara.
      Have a pre-defined password policy of a minimum of 8 characters with
      type "alphanumeric mixed case + symbols".
      
      Also allow site administrators to set the desired password policy in
      Site Options > Security Settings. In all locations where password
      is set, the password input should also include a password strength
      indicator.
      
      Change-Id: I020af58a6cf1635fe295f5434783ce5b6f6daacb
      9c26c145
  8. 01 Mar, 2018 1 commit
  9. 25 Feb, 2018 1 commit
  10. 19 Feb, 2018 1 commit
  11. 16 Feb, 2018 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1734178: allow user to delete own account · 9837f182
      Cecilia Vela Gurovic authored and Robert Lyon's avatar Robert Lyon committed
      added settings
      
      - institution level: reviewselfdeletion
          0 if the institution does not require approval
            from an admin to delete an account
          1 if the institution requires an admin to approve
            account deletion requests from users
          if not set, it takes the value from the site's
          default
      
      - site level: defaultreviewselfdeletion
        (Site options->User Settings -> Review account before self-deletion)
          1 if the site's default is requiring approval
          null otherwise
      
      Account deletion by a user
      
      when a user accesses to the account settings, a
      'Delete account' button is displayed.
      
      This will:
      - If the user belongs to an institution that requires
        approval (or does not have the settings but the site
        requires approval by default)
          then a notification will be sent to the admins
          of the institutions that require approval that
          the user belongs to
      - if the user belongs to institutions and none of them
        require approval (or does not have the setting
        but the site does not require approval by default)
          then the account is deleted
      - if the user does not belong to any institution
          then the action will depend on the setting of
          the 'mahara' institution or sites default if
          'mahara' doesn't have the setting
      
      Approval by institution admins
      
      An institution admin can see the pending deletion
      requests in Admin menu-> Institution -> Pending deletions
      After approving/denying a request, the user
      that requested the account deletion will receive
      a notification
      
      behatnotneeded
      Change-Id: I4ccd9c798cab065ec557eaddf7dfc3a51920b6d0
      9837f182
  12. 14 Feb, 2018 5 commits
  13. 12 Feb, 2018 3 commits
  14. 08 Feb, 2018 2 commits
  15. 05 Feb, 2018 2 commits
    • Maria Sorica's avatar
      Bug 1734174: Add the after login privacy page · 44a6284e
      Maria Sorica authored
      Upon login, if the user has not yet agreed to the most
      recent Privacy statement versions, he will be redirected
      to this page.
      
      On install admin user accepts default privacy
      
      behatnotneeded
      
      Change-Id: I6afc3d4d4db0676782a8b1501a962862108eab6b
      44a6284e
    • Cecilia Vela Gurovic's avatar
      Bug 1739688: 'Strict privacy switch' · ae6c3fd9
      Cecilia Vela Gurovic authored
      Created switch in site options. When set to 'yes',
      it disables the multiple institution per user switch.
      
      To do: When set to 'yes', force user to accept T&C
      and privacy statement. Will be resolved in another
      bug report #1741799
      
      behatnotneeded
      
      Change-Id: Ie62fb34a6c7cbf8e5b9bce93e76dc7c4a05376b9
      ae6c3fd9
  16. 24 Jan, 2018 3 commits
  17. 23 Jan, 2018 3 commits
  18. 22 Jan, 2018 1 commit
  19. 19 Jan, 2018 1 commit
  20. 21 Dec, 2017 1 commit
    • Robert Lyon's avatar
      Bug 1732565: Allow for faster indexing of large sites into elasticsearch · aac8315f
      Robert Lyon authored
      
      
      Currently if you index 386,000 records at 10,000 at a time
      - default cron at every 5 mins takes 195 mins (3.25 hours)
      - cron set to every minute should take 39 mins (but if indexing not
        finished the following minute may be skipped)
      
      With fast_index.php it starts next index straight after last finishes
      so runs thru at optimal speed
      - took only 25 minutes (almost 66% faster than per minute cron and way
      faster than default cron speed)
      
      behatnotneeded
      
      Change-Id: I65bfb19ab6481a95bafb120d3139d37e0ef28f92
      Signed-off-by: Robert Lyon's avatarRobert Lyon <robertl@catalyst.net.nz>
      aac8315f
  21. 17 Dec, 2017 1 commit
  22. 30 Nov, 2017 1 commit
  23. 30 Oct, 2017 1 commit
    • Cecilia Vela Gurovic's avatar
      Bug 1660237: removed old mobile api · d7018426
      Cecilia Vela Gurovic authored and Robert Lyon's avatar Robert Lyon committed
      removed code from htdocs/api/module/ files and replace it with a json reply error message.
      removed the 'allowmobileuploads' config variable since it is only used by the old mobile api.
      removed the 'mobileuploadtoken' values in usr_account_preferences since they are only used by old mobile api. The new mahara mobile uses external_tokens table to store its access tokens.
      
      behatnotneeded
      
      Change-Id: I02e94079fc83aa6a81534b70446f7e8ab2ebd7a4
      d7018426
  24. 22 Oct, 2017 1 commit
    • Kristina Hoeppner's avatar
      Bug 1719824: Correct lang strings · 19f91088
      Kristina Hoeppner authored
      Correct capitalization and a couple of language
      strings relating to access to the reporting
      section for staff.
      
      behatnotneeded
      
      Change-Id: Ib8cd4851f49dcc10c4cd57636bdde9283d4be2a7
      19f91088
  25. 19 Oct, 2017 1 commit
  26. 28 Sep, 2017 1 commit