Commit graph

562 commits

Author SHA1 Message Date
Jan Böhmer
a9b3dcd2c2 Do the color inversion for the IC logos when darkmode is enabled, the logos are then shown as white on black background.
This fixes issue #242
2023-03-11 19:48:42 +01:00
Jan Böhmer
31f9145d3f Fixed jump to letter buttons on IC logos page 2023-03-11 19:43:43 +01:00
Jan Böhmer
5aaba102a7 Improved rendering of attachment icons 2023-03-06 00:01:54 +01:00
Jan Böhmer
4a30819ea5 Show error messages for attachments file field 2023-03-05 23:26:06 +01:00
Jan Böhmer
27969a1f65 Replaced leftover bootstrap_4 form theme usages with BS5 2023-03-05 23:12:44 +01:00
Jan Böhmer
222e76ce47 Added option to search in internal part number (enabled by default)
This should fix issue #232
2023-03-04 23:37:38 +01:00
Jan Böhmer
49e521404a Show if SAML is enabled in the server info tool 2023-03-04 17:27:09 +01:00
Jan Böhmer
6230ad971b Merge branch 'keycloak' 2023-03-04 17:15:50 +01:00
Jan Böhmer
f9fd015ecb Show configured and effective maximum file size in server info page. 2023-03-03 23:42:02 +01:00
Jan Böhmer
e0635f7ead Show maximum allowed file size below the upload field for attachments 2023-03-02 23:38:23 +01:00
Jan Böhmer
5f39d8e594 Properly escape user provided data in trans with data to prevent possible XSS attack vectors. 2023-02-26 00:52:00 +01:00
Jan Böhmer
6ff60e556e Properly escape user provided data in trans with data to prevent possible XSS attack vectors. 2023-02-26 00:41:08 +01:00
Sascha Lenk
dc906bfb0f
vulnerability XSS fix
The "trans with" command is not automatically escaping the string, so this is a XSS (Cross-Site Scripting) vulnerability.
Tested string: https://URL-TO-PART-DB-SERVER/de/parts/search?keyword=%22'%3E%3Cqss%20a%3D X147208852Y1_1Z%3E

QUALYS Enterprise WAS Scan Report classifies this as level 5 security risk
2023-02-25 22:42:03 +01:00
Jan Böhmer
c5904303e3 Allow to configure SAML via env variables 2023-02-22 00:50:51 +01:00
Jan Böhmer
97c3b9002a Mark SAML users as so in database and disable local password changing then. 2023-02-21 00:29:50 +01:00
Jan Böhmer
c0b74d83a5 Started to work on interfacing with keycloak 2023-02-20 22:10:24 +01:00
Jan Böhmer
05ab3c3b7b Fixed image display style for odd shaped (very small) images. 2023-02-20 00:24:12 +01:00
Jan Böhmer
9d1cd0477a Fixed problems with non-unique prototype names when using nested collection type, which prevented to create nested entries with mulitple new sub entries.
We now use a unique prototype name for every collection field. This fixes issue #219
2023-02-19 22:39:26 +01:00
Jan Böhmer
1e998fccbb Put delete option on multiaction select in its own optgroups so it does not look like it belongs to the project optgroup 2023-02-19 21:58:55 +01:00
Jan Böhmer
5f6671a5aa Link to docs.part-db.de 2023-02-09 00:14:36 +01:00
Jan Böhmer
8f646e7e7b Fixed toast position on large screens 2023-02-06 22:47:41 +01:00
Jan Böhmer
39765f05dd Improved styling of part multiselect action 2023-02-06 00:33:57 +01:00
Jan Böhmer
7ff1584eb9 Fixed multi-part action selectors. 2023-02-06 00:08:32 +01:00
Jan Böhmer
b8da4c62d0 Show first steps on homepage when no parts were created yet. 2023-02-05 21:37:48 +01:00
Jan Böhmer
8447b8b42a Removed links to old author pages (which do not work anymore) 2023-02-05 21:12:44 +01:00
Jan Böhmer
c088742dda Added possibility to save parts and create an empty one 2023-02-05 21:00:26 +01:00
Jan Böhmer
13de2afc28 Improved styling of the parts info page 2023-02-05 20:50:19 +01:00
Jan Böhmer
5ea791eac7 Improved styling of image in structural entity select 2023-02-05 20:23:52 +01:00
Jan Böhmer
08b60cd149 Restrict small user avatar picture size to square 2023-02-05 20:06:53 +01:00
Jan Böhmer
a925597565 Show entity preview image on admin page 2023-02-05 20:00:11 +01:00
Jan Böhmer
3546385ed2 Moved favicon.ico to web root folder, as this is the location where a browser expects it
This prevents that the browser calls the PHP router to search for the (non-existing) favicon.icon
2023-02-05 00:18:07 +01:00
Jan Böhmer
a128f40358 Renamed AdminPages/ templates folder to recommended snake_case style 2023-02-04 23:34:39 +01:00
Jan Böhmer
1559b669df Renamed form/ templates folder to recommended snake_case style 2023-02-04 23:21:36 +01:00
Jan Böhmer
12d4c2f4d9 Renamed label_system templates folder to recommended snake_style style 2023-02-04 23:15:11 +01:00
Jan Böhmer
06f86176b6 Renamed log_system template folder to recommended snake_case style 2023-02-04 23:09:36 +01:00
Jan Böhmer
9097220026 Renamed parts/ templates folder to recommended snake_case style 2023-02-04 23:05:39 +01:00
Jan Böhmer
e8efe81f79 Renamed projects/ template folder to recommended camel_case style 2023-02-04 23:03:32 +01:00
Jan Böhmer
5696f32a04 Renamed security template folder to recommended snake_case style 2023-02-04 22:59:43 +01:00
Jan Böhmer
dd5691f199 Renamed tools templates to the recommended snake_case style 2023-02-04 22:55:16 +01:00
Jan Böhmer
29e46d5d05 Renamed users templates folder to recommended snake_case 2023-02-04 22:49:28 +01:00
Jan Böhmer
d804184073 Fixed exception when mass creation of non structural entities failed. 2023-02-03 23:27:49 +01:00
Jan Böhmer
3a9a6bbe76 Fixed styling of mass import hint on admin pages 2023-02-03 23:20:48 +01:00
Jan Böhmer
2e18065d5a Replaced all occurances of bootstrap-select with tomSelect
All choice fields should now use tomselect by default to improve user UX
2023-02-02 00:36:42 +01:00
Jan Böhmer
4a8480edce Correctly render the Google Auth QRCode in darkmode 2023-02-01 23:17:03 +01:00
Jan Böhmer
08c97282a3 Allow to configure which themes should be available via parameters.yaml 2023-02-01 23:15:02 +01:00
Jan Böhmer
489b3e2c21 Use webpack entrypoints for bootstrap and bootswatch themes
This allows us to utilize the webpack versioning mechanism, to avoid display issues, when upgrading bootstrap
2023-02-01 22:58:39 +01:00
Jan Böhmer
672d55624f Fixed CurrencyEntityType 2023-01-29 19:27:51 +01:00
Jan Böhmer
8d5427a1c3 Use tomselect for StructuralEntityType 2023-01-29 18:52:24 +01:00
Jan Böhmer
f085402cba Show server time in system info page
This is useful for debugging issues with 2FA or wrong timestamps.
2023-01-29 13:09:54 +01:00
Jan Böhmer
07f95bc6ea Added possibility to create nested structures of elements using Mass Import 2023-01-28 23:24:45 +01:00