Commits · f95567f78f734481760d01b1f470d596804c08c1 · mahara / mahara

30 Apr, 2015 1 commit

Bug 1450297: require artefact/file/lib.php in a safer way · 53e0c284

Robert Lyon authored Apr 30, 2015



Change-Id: I93bfa145149494abf8ad9d766079b987701b779f
Signed-off-by: Robert Lyon <robertl@catalyst.net.nz>

53e0c284

21 Apr, 2015 1 commit

Group admin of no institution was unable to update group (Bug #1420590) · 0f0b141d

Robert Lyon authored Mar 02, 2015



It was wanting to check if the user was in the correct institution to
edit the group - but was wailing if the user was in group 'mahara' or
no institution.

Change-Id: Ia77cb601774bdde6a2a176a0ed26760e4ccd8ea8
Signed-off-by: Robert Lyon <robertl@catalyst.net.nz>

0f0b141d

13 Apr, 2015 1 commit

Allowing the tinymce imagebrowser to have lang strings (Bug #1440947) · b804652e

Bob Lyon authored Apr 08, 2015 and

Robert Lyon committed Apr 13, 2015



when the tinymce is not on the view/blocks.php page

Change-Id: Ie477c41ac2143fae2017f4d3251daa11cf41f97b
Signed-off-by: Bob Lyon <bob@katipo.co.nz>

b804652e

05 Feb, 2015 1 commit
- patch to change all "text/javascript" to "application/javascript" (bug 1396426) · c24077ce
  Patrick O'Keeffe authored Jan 13, 2015 and Robert Lyon committed Feb 05, 2015
```
Change-Id: I448b74850bb387c8d9569a3df72da3927ca691d9
```
  c24077ce
22 Apr, 2014 1 commit

Upgraded TinyMCE to 4.0.16 (Bug #1282341) · 442ade4e

Jono Mingard authored Feb 21, 2014



Also changed image popup plugin (used in Journal) to be an actual plugin
which should be easy to integrate into other pages

Change-Id: If57572f34afb1ac4abf012bab32a3966dcfd41ce
Signed-off-by: Jono Mingard <jonom@catalyst.net.nz>

442ade4e

14 Oct, 2013 1 commit

Updating the license info and the copyright date (Bug #1211621) · bd2a72a5

Robert Lyon authored Sep 27, 2013



- have updated copyright for the pages that had existing copyright
notices (except for the lib/pieforms/ section as i'm not too sure if
that needs changing as it is a different Catalyst IT product)

Change-Id: I11c65ad26cb9cd856cf16b1dccbd4223ba086645
Signed-off-by: Robert Lyon <robertl@catalyst.net.nz>
Signed-off-by: Aaron Wells <aaronw@catalyst.net.nz>

bd2a72a5

18 Mar, 2013 1 commit

Fix stored XSS in TinyMCE editor (Bug #1153423) · 37172529

Hugh Davenport authored Mar 11, 2013



This patch fixes a stored XSS in the TinyMCE editor, which could be
reproduced where the editor was present. The input was stored which
meant that any future collaborators could be affected by any malicious
payload in the XSS.

The patch works by escaping the defaultvalue of the wsyiwyg form
element, which is the value stored the database.

CVE 2013-1426

Change-Id: Iecf5f1e520e6499db5a0f78493ce119a352b6a91
Signed-off-by: Aaron Wells <aaronw@catalyst.net.nz>

37172529

04 Sep, 2012 1 commit

Blog post with only images or allowed embed codes cannot be submitted · 49b37dfa

Son Nguyen authored Sep 04, 2012


(Bug #1023630)

When striping HTML tags from WYSIWYG editor for checking required rules,
allow <img>,<iframe>,<object>,<embed> tags

Change-Id: I12d63d153bee4ef6169a3a6c7252d2491e505056
Signed-off-by: Son Nguyen <son.nguyen@catalyst.net.nz>

49b37dfa

13 May, 2011 1 commit

Remove closing tags from PHP files · 33013eec

Francois Marier authored May 12, 2011



These closing tags are unnecessary and against our coding
guidelines. Let's get rid of them all in one go.

Change-Id: Ia94f103e525185597ee3780a3839d7577cdd0c29
Signed-off-by: Francois Marier <francois@catalyst.net.nz>

33013eec

13 Apr, 2011 1 commit

Introduce admin setting for controling HTML editor setting globally (bug #548225) · 71487aa5

Ruslan Kabalin authored Apr 06, 2011



This makes possible to override user setting with global setting or letting
user to choose.

Change-Id: I7647fde82d8e06055e310cd04034cb58f1ca86e1
Signed-off-by: Ruslan Kabalin <ruslan.kabalin@luns.net.uk>

71487aa5

21 Jul, 2010 1 commit
- Fix failure of mceFocus command in FF · 546b47ac
  Richard Mansfield authored Jul 21, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  546b47ac
06 Jul, 2010 1 commit
- Temp workaround for tinymce focus error in ff · 5778ca49
  Richard Mansfield authored Jul 06, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  5778ca49
23 Apr, 2010 1 commit
- Fix wysiwyg element to allow pieforms autofocus to work on tinymce instances · 51d1516d
  Richard Mansfield authored Apr 23, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  51d1516d
22 Apr, 2010 1 commit
- Remove no-longer-used focus variable · 00bc6cea
  Richard Mansfield authored Apr 23, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  00bc6cea
15 Feb, 2010 2 commits
- Don't try to focus tinymce editor until after initialisation (hopefully fixes #519674) · a3cf5e96
  Richard Mansfield authored Feb 15, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  a3cf5e96
- Only call mceFocus on the first editor in a form · c27a1236
  Richard Mansfield authored Feb 15, 2010
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  c27a1236
03 Nov, 2009 1 commit
- Remove tinymce fullscreen mode in view editor (bug 2996) · bc6438d7
  Richard Mansfield authored Nov 03, 2009
```
Signed-off-by: Richard Mansfield <richardm@catalyst.net.nz>
```
  bc6438d7
15 Sep, 2009 1 commit
- Add 2009 to copyright years · d7adf1bc
  Richard Mansfield authored Sep 16, 2009
  
  d7adf1bc
24 Mar, 2009 1 commit
- Disable change page check for IE in edit site pages (see bug 3201) · aa4a2ef8
  Richard Mansfield authored Mar 24, 2009
  
  aa4a2ef8
11 Nov, 2008 1 commit
- Don't run clean_text over wysiwyg form elements · a3724530
  Richard Mansfield authored Nov 12, 2008
  
  a3724530
16 Feb, 2008 2 commits
- Changed the author of Catalyst related files to be Catalyst IT Ltd rather than anyone's name. · e3193135
  Nigel McNie authored Feb 16, 2008
```
The name is largely irrelevant as it's only the creator of the file.
```
  e3193135
- More files now say they are copyright to 2008. · 92569dba
  Nigel McNie authored Feb 16, 2008
  
  92569dba
29 Jan, 2008 2 commits

Trigger tinyMCE to save all elements on the page when submitting a form.... · 22f4f945
Nigel McNie authored Jan 29, 2008
```
Trigger tinyMCE to save all elements on the page when submitting a form. Removes a workaround from pieforms.
```
22f4f945

Use the pieform hooks to load/remove TinyMCE instances. This means that they... · bf2da80c

Nigel McNie authored Jan 29, 2008

Use the pieform hooks to load/remove TinyMCE instances. This means that they get loaded and reloaded properly when the forms are submitted by AJAX.

bf2da80c

04 Dec, 2007 1 commit
- Upgrade the license to GPLv3 · 8e88a74f
  Francois Marier authored Dec 04, 2007
```
Signed-off-by: Andrew McMillan
```
  8e88a74f
17 Aug, 2007 1 commit
- Removed an unnecessary debugging line · 57a17bb3
  Nigel McNie authored Aug 11, 2007
  
  57a17bb3
06 Mar, 2007 1 commit
- Fixed check for whether a wysiwyg element is required · ed1342e5
  Nigel McNie authored Mar 06, 2007
  
  ed1342e5
11 Feb, 2007 1 commit

Fixed gaping security hole when not using the wysiwyg editor, also made · 2a47a427

Nigel McNie authored Feb 12, 2007

sure that the formatting remained reasonably consistent between switching
from the WYSIWYG editor to the textarea and back

2a47a427

18 Jan, 2007 1 commit
- A better error message when the wysiwyg element has no content and · 00ce9fd9
  Nigel McNie authored Jan 18, 2007
```
it's required
```
  00ce9fd9
17 Jan, 2007 1 commit
- Don't add the WYSIWYG class twice. If headdata is requested and the page · 4e70948f
  Nigel McNie authored Jan 18, 2007
```
is public, make sure to include the tinymce editor
```
  4e70948f
16 Jan, 2007 1 commit
- Fix wysiwyg element for pieforms 0.2 change · e2f07489
  Nigel McNie authored Jan 17, 2007
  
  e2f07489
08 Jan, 2007 1 commit
- No commit message · 43476db1
  Martyn Smith authored Jan 08, 2007
```
No commit message
```
  43476db1
07 Jan, 2007 1 commit
- Changed most forms to be pieforms 0.2.0 compliant. A _huge_ change! It's · 7538d3c9
  Nigel McNie authored Jan 08, 2007
```
likely some stuff still doesn't work properly...
```
  7538d3c9
09 Dec, 2006 1 commit
- Implemented WYSIWYG textarea element, checking user preferences · ae93a39c
  Nigel McNie authored Dec 10, 2006
  
  ae93a39c
08 Dec, 2006 1 commit
- Moved the mahara based extensions to pieforms into their own directory · 28295202
  Nigel McNie authored Dec 08, 2006
  
  28295202
07 Dec, 2006 1 commit
- $LARGE amount of admin screen refactoring. Now it's all in saner · a0e20e2e
  Nigel McNie authored Dec 07, 2006
```
categories, i18n-ised, correctly menued and y2k compliant.
```
  a0e20e2e
20 Nov, 2006 1 commit
- Changed form library to be upstream now. Nigel will maintain an svn · 394c42ae
  Nigel McNie authored Nov 21, 2006
```
checkout for the moment.

Modified all forms to use the new one.
```
  394c42ae
13 Nov, 2006 1 commit
- Removed some debug lines. Made sure action is set correctly. Do ajax · 5f5dc05f
  Nigel McNie authored Nov 14, 2006
```
requests by the correct method. Call message/error javascript functions
with better parameters
```
  5f5dc05f
07 Nov, 2006 1 commit
- fixing more invalid headers. We're now CLEAN. Please don't break it :) · 5a829e57
  Penny Leach authored Nov 08, 2006
  
  5a829e57
31 Oct, 2006 1 commit
- Gave the WYSIWYG function the correct name. · aa73a27a
  Nigel McNie authored Nov 01, 2006
  
  aa73a27a