Commits · 6c1a5927d80fac226a78e92b79e50821197adb43 · Nikola Balog / erp5 · GitLab

05 Feb, 2016 2 commits
- ERP5SecurityManager: Use _person_cache in request to store path of user · 6c1a5927
  Cédric Le Ninivin authored Jan 20, 2016
  
  6c1a5927
- erp5_base: ERP5 Login reference can be edited. Login cannot be edited in validated state · c1958228
  Cédric Le Ninivin authored Jan 20, 2016
  
  c1958228
19 Jan, 2016 4 commits
- erp5_credential: Fix Update Credential Cookie on Credential Update for ERP5 Login · 283416a4
  Cédric Le Ninivin authored Jan 19, 2016
  
  283416a4
- erp5_credential: Do not accept Credential Update Synchronously when password is included · a5978e11
  Cédric Le Ninivin authored Jan 18, 2016
```
The presence of the password in the Credential Update should not change the processing workflow
of the Credential Update. For Now we just update the password and leave to rest to normal process
```
  a5978e11
- ERP5Security: fix getUserByLogin to work with ERP5 Login · dcb5eecb
  Cédric Le Ninivin authored Jan 18, 2016
  
  dcb5eecb
- erp5_credential: fix ERP5Site_newCredentialRecovery to use ERP5 Login · 6ab2ed8a
  Cédric Le Ninivin authored Jan 18, 2016
  
  6ab2ed8a
14 Jan, 2016 4 commits
- test: check if assignment change is effective immediately. · 6ee39f47
  Kazuhiko Shiozaki authored Dec 04, 2015
  
  6ee39f47
- erp5_credential: support ERP5 Login. · 64cdd322
  Kazuhiko Shiozaki authored Dec 01, 2015
  
  64cdd322
- erp5_core, erp5_base : move change password action and form from erp5_core to erp5_base. · d5442e7d
  Kazuhiko Shiozaki authored Dec 02, 2015
  
  d5442e7d
- ERP5Security: Use a dedicated Login document to handle authentication. · 73e08c0b
  Kazuhiko Shiozaki authored Nov 04, 2015
  
  73e08c0b
13 Jan, 2016 5 commits
- erp5_web_renderjs_ui: fix entering a new search query should reset the pagination · c064d05e
  Tristan Cavelier authored Jan 13, 2016
```
bug #20160107-9E3B60
```
  c064d05e
- erp5_run_my_doc: add bt/test_dependency_list. · e4b480d5
  Kazuhiko Shiozaki authored Jan 13, 2016
  
  e4b480d5
- web: chain Domain & Base Domain to category_publication_workflow · 2ed71c73
  Jérome Perrin authored Dec 28, 2015
  
  2ed71c73
- core: chain Domain with edit_workflow · 91945a88
  Jérome Perrin authored Dec 28, 2015
  
  91945a88
- fixup! forge: action to add and properly register a skin folder on a business template · 8a8e0fd8
  Jérome Perrin authored Jan 13, 2016
```
Fix property name for skin layer ordering on the skin folder.
```
  8a8e0fd8
12 Jan, 2016 25 commits
- ERP5Type: remove obsolete comment/assertion in a monkey-patch to ZODB.Connection · 723722f5
  Julien Muchembled authored Jan 12, 2016
```
See also http://git.erp5.org/gitweb/neoppod.git/commitdiff/54d692c?js=1
("client: drop monkey-patch that is not mandatory anymore for NEO")
```
  723722f5
- erp5_user_tutorial: Fix test to reset listbox correctly · 827772dd
  Gabriel Monnerat authored Jan 12, 2016
  
  827772dd
- [erp5_web_renderjs_ui_test] Ensure preference page is correctly loading · 6bc791e1
  Romain Courteaud authored Jan 12, 2016
  
  6bc791e1
- do not raise when value is optional and value is not of the wanted type · 861441e0
  Aurel authored Jan 12, 2016
```
this restore the behaviour of the code before commit 8e073789
```
  861441e0
- ZSQLCatalog: cleanup duplicate security declarations. · c4886de0
  Kazuhiko Shiozaki authored Jan 08, 2016
  
  c4886de0
- workflow: guard transition by 'Modify portal content' permission by default. · 8316dcce
  Kazuhiko Shiozaki authored Dec 15, 2015
  
  8316dcce
- testExplanation() -> _testExplanation(). · 2d0eeaaf
  Kazuhiko Shiozaki authored May 27, 2015
  
  2d0eeaaf
- Make Id Generator security declarations consistent. · c4ac239a
  Vincent Pelletier authored Apr 01, 2014
  
  c4ac239a
- permissions guard check should also respect caller's proxy roles like roles guard. · 3fbddb7f
  Kazuhiko Shiozaki authored Dec 16, 2015
  
  3fbddb7f
- Add a proxy role and a guard in Order_applyTradeCondition. · 77fa7de1
  Kazuhiko Shiozaki authored Dec 12, 2013
  
  77fa7de1
- add a test to check security declarations in methods. · 8b96998e
  Kazuhiko Shiozaki authored Nov 14, 2013
  
  8b96998e
- explicitly check if PUT() is called with PUT request method. · 3b2430b6
  Kazuhiko Shiozaki authored Oct 25, 2013
  
  3b2430b6
- Add more security declarations. · f84e2f62
  Kazuhiko Shiozaki authored Dec 16, 2015
  
  f84e2f62
- call InitializeClass to apply security declaration in mixins. · 175d43ad
  Kazuhiko Shiozaki authored Oct 15, 2013
  
  175d43ad
- manage_afterAdd, manage_afterClone and manage_beforeDelete should be private. · fd1a7c2b
  Kazuhiko Shiozaki authored Oct 08, 2013
  
  fd1a7c2b
- monkey patch ExternalMethod so that we have Guard like DCWorkflow.Transition. · fe3a1740
  Kazuhiko Shiozaki authored Dec 16, 2015
  
  fe3a1740
- SelectionTool management methods should not be added in FolderMixIn. · 2548346d
  Kazuhiko Shiozaki authored Oct 03, 2013
```
Also methods without a security declaration should not be added.
```
  2548346d
- Add class security in DCWorkflow.Variables.Variables. · 1a97187a
  Kazuhiko Shiozaki authored Oct 15, 2013
  
  1a97187a
- Rewrite Base_getPossibleWorkflowActionItemList by External Method instead of... · 121f35ef
  Kazuhiko Shiozaki authored Oct 02, 2013
```
Rewrite Base_getPossibleWorkflowActionItemList by External Method instead of Python Script having a Manager proxy role.

Because now proxy role in script affects workflow transition guard checks.
```
  121f35ef
- patch DCWorkflow.Guard.check so that is respects caller's proxy roles. · d60df70b
  Kazuhiko Shiozaki authored Sep 16, 2013
  
  d60df70b
- CredentialRequest_init can be called by Anonymous, that will not have Owner role. · 69c232ab
  Kazuhiko Shiozaki authored Sep 25, 2013
  
  69c232ab
- add Owner proxy role in proxy role scripts where we call newContent. · d6a6a4c5
  Kazuhiko Shiozaki authored Sep 25, 2013
```
because we loose existing roles in proxy role scripts and init scripts require Owner role in context.
```
  d6a6a4c5
- respect caller script's proxy roles in checking Python Script guard. · 91a3e907
  Kazuhiko Shiozaki authored Sep 25, 2013
  
  91a3e907
- init/afterClone script should be guarded by 'Owner role in the object'. · abf7491b
  Kazuhiko Shiozaki authored Sep 25, 2013
  
  abf7491b
- monkey patch PythonScript so that we have Guard like DCWorkflow.Transition. · bad1a707
  Kazuhiko Shiozaki authored Sep 25, 2013
  
  bad1a707