- 27 Jan, 2017 1 commit
-
-
Tristan Cavelier authored
-
- 19 Jan, 2017 12 commits
-
-
Jérome Perrin authored
-
Jérome Perrin authored
just test for truth instead of checking in [list of false instance] fix typos and remove unused variables.
-
Jérome Perrin authored
-
Jérome Perrin authored
Login_isPasswordValid is no longer used.
-
Jérome Perrin authored
When reseting password through portal_password, we should check new password comply with policy. Because user is not logged in at this stage, we expose a new method `PasswordTool.analyzePassword` that checks the password is valid for this reset key.
-
Jérome Perrin authored
-
Jérome Perrin authored
This is a change in the API, previously only "messages id" were returned. To make it easier to reuse analyzePassword in other contexts, we now return the message directly.
-
Jérome Perrin authored
-
Jérome Perrin authored
isPasswordValid returns a boolean value, so we should check it's true rather than <= 0
-
Jérome Perrin authored
method signature should not contain self
-
Jérome Perrin authored
-
Vincent Pelletier authored
If it is the case *and* the action script does not redirect, the password will be in user's browser history. There can be two different reasons to not redirect: - not following the API (ie, intentionally not redirecting) - letting an exception reach ZPublisher Also, if the non-redirection causes an HTML page to be rendered, resources loaded by that page will have a referrer containing the password, leaking it to potentially foreign servers.
-
- 18 Jan, 2017 10 commits
-
-
Kazuhiko Shiozaki authored
-
Cédric Le Ninivin authored
-
Tristan Cavelier authored
obj.convert(format="png") != obj.convert(format=u"png")
-
Romain Courteaud authored
-
Romain Courteaud authored
-
Romain Courteaud authored
-
Romain Courteaud authored
-
Cédric Le Ninivin authored
-
Cédric Le Ninivin authored
-
Jérome Perrin authored
When checking constraints, ignore lines where the node is an acquired organisation, we should only consider lines where node is an account.
-
- 17 Jan, 2017 13 commits
-
-
Cédric Le Ninivin authored
-
Xiaowu Zhang authored
-
Xiaowu Zhang authored
-
Xiaowu Zhang authored
-
Cédric Le Ninivin authored
erp5_travel_expense: Improve Front page and fix CSS on image modal erp5_travel_expense: Router redirect to front page
-
Xiaowu Zhang authored
-
Xiaowu Zhang authored
-
Cédric Le Ninivin authored
-
Cédric Le Ninivin authored
erp5_travel_request: Add missing Preference PropertySheet
-
Cédric Le Ninivin authored
erp5_travel_expense: Add mission Administration erp5_travel_expense: Add missing category erp5_travel_expense: Make Expense document publication customizable by script erp5_travel_expense: Add mission jio_view action on Service
-
Cédric Le Ninivin authored
erp5_travel_expense: Also remove Title from expense view in app erp5_travel_expense: Remove all form of titles
-
Xiaowu Zhang authored
-
Yusei Tahara authored
-
- 16 Jan, 2017 1 commit
-
-
iv authored
-
- 14 Jan, 2017 1 commit
-
-
Gabriel Monnerat authored
erp5_web_renderjs_ui: Wait the jio database creation before render the panel because createJio is an asynchronous method In erp5_launcher_nojqm.js, panel is rendered without wait the jio database creation. Then, if we call any jio method in panel, the application raises an exception because there is no storage.
-
- 13 Jan, 2017 2 commits
-
-
Jérome Perrin authored
-
Jérome Perrin authored
Fixes [#20161227-D1FA4](https://nexedi.erp5.net/bug_module/20161227-D1FA4) Also modernize code by using set() and not using ERP5Site_getAuthenticatedMemberPersonValue
-