[Rt-commit] rt branch, 4.0-trunk, updated. rt-4.0.0rc8-149-g0f6598b
Alex Vandiver
alexmv at bestpractical.com
Fri Apr 15 09:40:50 EDT 2011
The branch, 4.0-trunk has been updated
via 0f6598b82a3cc2e3a54a34dfc494aa27f9c036cd (commit)
via e77f11b09699ecc530f747d2fdc027ad331206dc (commit)
via c32b1967f8498a6abc5d683e7837c7b5ef7dbde2 (commit)
via 9b72895e7da56c497622e1d4b3d112bb95c1612c (commit)
via 88689bec08c3e93aa03aec4d9c3caf6246819a68 (commit)
via df67f7ae35f342faf55aecac7754cf942b32e83c (commit)
via f076f1babcd6fe7bb5e48fd04d05b428e24f1fc4 (commit)
via 895a4ccfe07bf20205985d194447cb892987919c (commit)
via 55270e6a59860edf0abfd9ad1cb8f0ea8cbbcfbe (commit)
via ce5c889e50780107e8815bff217f4146b01abcad (commit)
via daa0516c1b8950e20a697c927fe975b1763bd4d3 (commit)
via dacf74182d03d26d439351ce1a2fcfdfe2d714fc (commit)
via 8a16709443df76fa4b85c128e80654e059e9ed7c (commit)
via bdd86d0c01d0eb038ec684a939c25209ef26bed7 (commit)
via cd56539cc47e93a513a172fbb929a58c23ee4059 (commit)
via 3647c30aadb0476449f4928f4d25aefa7d465b6b (commit)
via d84c91b7c59b0b6caecb42c75dfc647877aa0941 (commit)
via fc220228834e60f42b53875b1db619e41d7346b0 (commit)
via 8d44583a52442271697c08961e8700fa20c00255 (commit)
via 86812b5c0b27984cc0ed4bd086fe8a17f1b7644e (commit)
via 2dcacd03350c5664855cda54c46bc8f8e8eaa296 (commit)
via 4c1be2c8ffee6fe69357efc16a4ab055955abb4c (commit)
via 2bf2ff20926304713031224ddc47ee501cdbada6 (commit)
via 34d86395c8d1351484390815e55f28b8d6974aa7 (commit)
via 54d03a7f6e0622c50b53117eb005638a874d461c (commit)
via a410481b08a7897f7d3c567ffb45cf985c2ec8ed (commit)
via f177355bc3858256c7ad0a47ccec6e14cd861c3d (commit)
via bd0ebe51688df364ac11b63728b771b67eb09f09 (commit)
via 007046d1c5bc9392cccdfa1ebb8e968e1d674b80 (commit)
via 104271918a70389a2f1f824451083555666fb79f (commit)
via d9a4f208930e7ca1f54d4f3dd7b578977715ae99 (commit)
via fd3cbb5caa64b5f206811ff01bb5aacd736412c8 (commit)
via 0e5e4222cedd91ad7423c03baf36cf447f85d356 (commit)
via 4be435eb9b1160f517e69d28a50859892024de55 (commit)
via 70fdf5ce99bd16d6838035afb514a538a5ca5d79 (commit)
via 0d40bae17fd2d6d12b2d896f038527880c4a0963 (commit)
via b8609fbafd8797100e47b3bf0d6cd556eba3c161 (commit)
via 75d1edd176cfa33db49421de2375c4abfac80559 (commit)
via 63979ac6895aacacbaf88ca0d7f276802517b391 (commit)
via e3646bc826680bb1b81ca00e581e4028368bae15 (commit)
via b6d14dc41fccb5ed1874771e6ce5b7150bec2891 (commit)
via 90041d856eb8709ff92f4a0222fde961263b08ac (commit)
via 33d44c6df2bcbda81952a8327759c3dbf2bec3ec (commit)
via cc01217166f2d554a35aeb2e60a005eba088f1a2 (commit)
via 52df246eea72348f62da5e9d6b935e249ba58be1 (commit)
via 0c0a8acbeab8a214b237aa3e61d785ec75a87031 (commit)
via 33a2809762a7edf18c8f2646eda988d140fb32da (commit)
via 8fc002641d0e2f25599db03d96a3a8171587a170 (commit)
via 86dff4a2fa8be4463c73d396f327ee672fe43117 (commit)
via 0c329f440ec58babfb40909e8c4fee6f2b3ad32f (commit)
via 3dd139645f7cc811e30e9cb8549d63d26e3536bc (commit)
via 9137ba7a9783422a0f28931fcd79c24c09c621a6 (commit)
via b30b9c03d30d44ae55d77b835c28873c266fe2a3 (commit)
via e0c9ae52bbe10b956748fed7d9dfe751de73552e (commit)
via e4d227b08996432e0dfda3e5a788befe21cc1d9d (commit)
via 732f498d917891f53834941c796272528a6a909c (commit)
via dd5674412d2a35de4fd8e3468660a871852ede60 (commit)
via 0ada4b41e6c71394c9287e65f67f777310c703a8 (commit)
via 7bbf1e18046495cc65545b4a8eb323ca118ab90c (commit)
via b1310722101583ef8edaedf16557dcffc247822b (commit)
via 791b3aad4f13a3ae959223320e9f8b4a8237857e (commit)
via b3667c8af4fdc4b8adc0700fb9b0db34c67b9e46 (commit)
via 4502b16e1c009199edbf0829ad07911e3a756424 (commit)
via 15973add6d6773a4b31dc0b913d929be259dc957 (commit)
via 2d947149496aaccd8fe8f53b80670bba162a5095 (commit)
via 2203986c5e87839a77d437058db8bc4c10a852c0 (commit)
from 76478c3bb11aaa264b870b14a4db5cb8234f312d (commit)
Summary of changes:
etc/RT_Config.pm.in | 45 +-
lib/RT/CustomFieldValues/External.pm | 84 +-
lib/RT/Interface/Web.pm | 35 +-
lib/RT/Interface/Web/Handler.pm | 9 +
lib/RT/SearchBuilder.pm | 51 +-
lib/RT/Shredder.pm | 21 +-
lib/RT/Tickets.pm | 41 +-
share/html/Admin/Tools/Theme.html | 14 +-
share/html/Elements/Header | 3 +-
share/html/Helpers/Autocomplete/CustomFieldValues | 23 +-
share/html/NoAuth/Logout.html | 3 +-
.../html/{m/logout => NoAuth/RichText/autohandler} | 10 +-
share/html/Search/Chart | 4 +-
share/html/Search/Chart.html | 4 +-
share/html/Search/Elements/Chart | 3 +-
share/html/Search/Elements/SelectPersonType | 2 +-
share/html/SelfService/Create.html | 2 +-
share/html/SelfService/Update.html | 4 +-
share/html/Ticket/Attachment/dhandler | 4 -
share/po/ar.po | 8696 --------------------
share/po/bg.po | 274 +-
share/po/cs.po | 274 +-
share/po/da.po | 274 +-
share/po/de.po | 478 +-
share/po/el.po | 274 +-
share/po/en.po | 10 +-
share/po/en_GB.po | 218 +-
share/po/es.po | 274 +-
share/po/et.po | 274 +-
share/po/fi.po | 274 +-
share/po/fr.po | 1112 ++--
share/po/he.po | 298 +-
share/po/hr.po | 274 +-
share/po/hu.po | 274 +-
share/po/id.po | 274 +-
share/po/is.po | 274 +-
share/po/it.po | 274 +-
share/po/ja.po | 386 +-
share/po/lt.po | 274 +-
share/po/lv.po | 278 +-
share/po/mk.po | 274 +-
share/po/nb.po | 274 +-
share/po/nl.po | 274 +-
share/po/nn.po | 274 +-
share/po/pl.po | 274 +-
share/po/pt.po | 274 +-
share/po/pt_BR.po | 460 +-
share/po/pt_PT.po | 302 +-
share/po/rt.pot | 264 +-
share/po/ru.po | 274 +-
share/po/sl.po | 278 +-
share/po/sv.po | 280 +-
share/po/tr.po | 274 +-
share/po/zh_CN.po | 286 +-
share/po/zh_TW.po | 274 +-
t/api/tickets_overlay_sql.t | 30 +-
t/web/charting.t | 69 +
t/web/compilation_errors.t | 2 +-
t/web/path-traversal.t | 40 +
t/web/private-components.t | 44 +
t/web/query_builder.t | 29 +-
t/web/richtext-autohandler.t | 13 +
62 files changed, 6045 insertions(+), 13918 deletions(-)
copy share/html/{m/logout => NoAuth/RichText/autohandler} (90%)
delete mode 100644 share/po/ar.po
create mode 100644 t/web/charting.t
create mode 100644 t/web/path-traversal.t
create mode 100644 t/web/private-components.t
create mode 100644 t/web/richtext-autohandler.t
- Log -----------------------------------------------------------------
commit 0f6598b82a3cc2e3a54a34dfc494aa27f9c036cd
Merge: 76478c3 e77f11b
Author: Alex Vandiver <alexmv at bestpractical.com>
Date: Fri Apr 15 09:39:30 2011 -0400
Merge branch '4.0.0-releng' into 4.0-trunk
Conflicts:
etc/RT_Config.pm.in
diff --cc etc/RT_Config.pm.in
index a3c5168,9e398ec..60e951b
--- a/etc/RT_Config.pm.in
+++ b/etc/RT_Config.pm.in
@@@ -1678,20 -1698,21 +1698,31 @@@ Should rejection notes from approvals b
Set($ApprovalRejectionNotes, 1);
+ =item C<$DisallowExecuteCode>
+
+ If set to a true value, the C<ExecuteCode> right will be removed from
+ all users, B<including> the superuser. This is intended for when RT is
+ installed into a shared environment where even the superuser should not
+ be allowed to run arbitrary Perl code on the server via scrips.
+
+ =cut
+
+ Set($DisallowExecuteCode, 0);
+
-=back
+=item C<@ExtraSecurity>
+
+This is a list of extra security measures to enable that help keep your RT
+safe. If you don't know what these mean, you should almost certainly leave the
+defaults alone.
+ Clickjacking - Enables framekiller javascript and adds an X-Frame-Options:
+ DENY header to all requests
+
+=cut
+Set( @ExtraSecurity, qw(Clickjacking) );
+=back
=head1 Authorization and user configuration
diff --cc share/html/Elements/Header
index d636bf0,1eb7f09..1097973
--- a/share/html/Elements/Header
+++ b/share/html/Elements/Header
@@@ -54,10 -54,9 +54,11 @@@
<head>
<title><%$Title%></title>
+ <& /Elements/Framekiller &>
+
% if ($Refresh && $Refresh =~ /^(\d+)/ && $1 > 0) {
- <meta http-equiv="refresh" content="<% $Refresh %>" />
+ % my $URL = $m->notes->{LogoutURL}; $URL = $URL ? ";URL=$URL" : "";
+ <meta http-equiv="refresh" content="<% "$1$URL" %>" />
% }
<link rel="shortcut icon" href="<%RT->Config->Get('WebImagesURL')%>favicon.png" type="image/png" />
-----------------------------------------------------------------------
More information about the Rt-commit
mailing list