nik/davical
1
0
Fork 0
mirror of https://gitlab.com/davical-project/davical.git synced 2026-01-27 00:33:34 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
4,018 Commits 11 Branches 58 Tags 14 MiB
Commit Graph

70 Commits

Author SHA1 Message Date
Andrew Ruthven
b4bcc6cc25 Fix DAV:current-user-principal for iPhone devices 
iPhone devices incorrectly implement DAV:current-user-principal from
RFC 5397. They assume that current-user-principal is the href for the
resource being queried. The RFC says it should be the current resource.

See: https://gitlab.com/davical-project/davical/-/issues/335
 2025-01-27 23:27:45 +13:00
Andrew Ruthven
734d5c1f99 The public access endpoint is public.php 2025-01-22 14:48:24 +13:00
Andrew Ruthven
5826f5c3cf Cache password credentials received, and if they succeed or fail. 
This is intended to reduce the load on external authentication sources
as most (all?) CalDAV clients use HTTPBasicAuth to authenticate and
if an external source is used, every request we receive requires
external authentication. This can place a large load on those external
sources.

Closes #254.
 2024-05-03 23:34:42 +12:00
Andrew Ruthven
0c2bb61891 Add missing ChangeLog and CREDITS entries 2024-04-14 23:48:16 +12:00
Andrew Ruthven
781ecff224 Update for stonewall's contribution 2024-04-14 22:42:18 +12:00
Andrew Ruthven
786a9f5591 Remove the IMAP auth drivers 
The PHP imap module is being retired. Closes #324.
 2024-04-02 21:41:26 +13:00
Andrew Ruthven
d2d36399d3 Create the Timezone if we need to 
Detected now due to a change from a few years ago to use a clean database
for each set of tests.
 2024-04-01 18:34:33 +13:00
Andrew Ruthven
ec9159fd69 Fix some warnings about using undefined keys, simplify dns strings 
Fixes:
- PHP Warning:  Trying to access array offset on value of type null in inc/iSchedule.php on line 83
- PHP Warning:  Undefined array key "t" in inc/iSchedule.php on line 165
- PHP Warning:  Undefined array key "t" in inc/iSchedule.php on line 167
- PHP Warning:  Undefined array key "p" in inc/iSchedule.php on line 184

Concatenate the DNS entry we're going to look up once rather than everytime
we need it.
 2024-04-01 18:34:33 +13:00
Andrew Ruthven
4e03cb1343 Include the request ID used in logging in the Fatal Error message. 2024-03-11 00:41:37 +13:00
Andrew Ruthven
19ec65eb3f Add entry for extending date ranges 2024-03-04 00:44:12 +13:00
Andrew Ruthven
9c10ef5eb2 Support start or end missing from free-busy-query REPORT 
Previously if either start or end were missing then the current time was
used. This would almost never be the expected behaviour.
 2024-03-03 21:30:21 +13:00
Florian Schlichting
4301a795ac release davical 1.1.12 2023-03-13 22:00:55 +01:00
Andrew Ruthven
b40c96debb If time-range is set, only return matching events. 
Closes #280
 2023-03-12 20:19:10 +01:00
Andrew Ruthven
4a2db83b7c Update ChangeLog 2023-03-12 20:19:02 +01:00
Andrew Ruthven
c3970f3be2 Fix RRULE for BYHOUR, BYMINUTE and BYSECOND 
Closes #283.
 2023-02-15 07:28:35 +00:00
Andrew Ruthven
533d407196 Update ChangeLog 2023-01-18 00:11:57 +13:00
Andrew Ruthven
0c2f55cd66 Update the ChangeLog for my fixes over the past week 2023-01-18 00:10:46 +13:00
Andrew Ruthven
2791d7b8c3 Update the ChangeLog for my fixes over the past week 2023-01-08 12:13:32 +13:00
Andrew Ruthven
6abf645d00 Fix minor typo 2022-12-30 17:41:30 +13:00
Florian Schlichting
88670bfa39 release davical 1.1.11 2022-10-04 14:05:19 +02:00
Andrew Ruthven
4a9190462c Fix regression tests following Piotr's fix in 467a6bf8900bd0c37f30e74b4adeb6ef801d4eb5 2021-09-19 02:08:33 +12:00
Andrew Ruthven
9d520ab56d Don't check for magic quotes on PHP 8 or newer - functions removed. 
This fix removes complaints about trying to call non-existant functions
as they have been removed from PHP 8. This closes #234.
 2021-09-18 21:50:07 +12:00
Florian Schlichting
9da21ad116 release davical 1.1.10 2021-03-01 21:24:48 +08:00
Florian Schlichting
55d485045f release 1.1.9.3 2020-04-13 22:43:07 +02:00
Florian Schlichting
699d077834 release 1.1.9.2: also check CSRF token in collection-edit.php 2019-12-12 00:25:20 +08:00
Jim Fenton
e2070c9b7a release 1.1.9 2019-12-03 15:10:05 -08:00
Florian Schlichting
4af9595f4d release 1.1.8 2019-01-30 22:53:08 +01:00
Florian Schlichting
05397d635c release 1.1.6 2018-01-12 00:15:36 +01:00
Florian Schlichting
3ba605288f release 1.1.6 2017-10-25 11:48:43 +02:00
Florian Schlichting
129e962050 Update ChangeLog and CREDITS 2017-01-23 23:03:11 +01:00
Florian Schlichting
658daa6d60 release 1.1.4 2016-01-11 23:57:09 +01:00
Florian Schlichting
1c5c03f5fd ChangeLog uses tabs, not leading whitespace 2016-01-09 00:27:43 +01:00
Florian Schlichting
8ef7966690 Update ChangeLog, add Debian bug closers 2016-01-09 00:05:24 +01:00
Christoph Anton Mitterer
1d54f57533 removed debian/README.Debian 
* Removed debian/README.Debian which didn’t contain any useful information.
 2013-09-02 14:53:47 +12:00
Christoph Anton Mitterer
35e471013b support Apache’s REDIRECT_REMOTE_USER CGI env var 
* In places where the CGI variable REMOTE_USER is read, support alternatively
  REDIRECT_REMOTE_USER, which is used by the Apache HTTPD Server instead, when a
  redirect was used.

Note: This alone is not enough yet, to fully support it in DAViCal. An analogous
      change (commit 29ddd89baaf65bda2560e51665a2e761abef4147) is necessary in
      AWL.
 2013-09-02 14:53:33 +12:00
Christoph Anton Mitterer
82757beba4 RFC compliant CGI AUTH_TYPE usage 
* Handle the content of the CGI AUTH_TYPE variable case-insensitively as defined
  by RFC 3875 Section 4.1.1.
 2013-09-02 14:53:12 +12:00
Christoph Anton Mitterer
c092a6153e make debug files pathnames more FHS compliant 
* Changed the pathnames of the debug files to be a bit more FHS compliant.
 2013-09-02 14:40:46 +12:00
Christoph Anton Mitterer
4ae44558c7 update addresses to the new canonical location 
* Updated all addresses of the canonical git upstream repository and the issue
  tracker to the new ones.

Conflicts:
	po/de.po
	po/es_AR.po
	po/es_ES.po
	po/es_MX.po
	po/es_VE.po
	po/et.po
	po/fr.po
	po/hu.po
	po/it.po
	po/ja.po
	po/nb_NO.po
	po/nl.po
	po/pl.po
	po/pt_BR.po
	po/pt_PT.po
	po/ru.po
	po/sv.po
 2013-09-02 14:40:33 +12:00
Christoph Anton Mitterer
ea1ca0be0c escape version string to prevent XSS for sure 
* HTML escape the remotely retrieved version string printed to the HTML in order
  to prevent and attacks (if this would have been possible at all in 12
  characters).

The version string read from the davical.org webserver might be changed by an
attacker in order to perform XSS.
Even though this is highly unlikley (there are only 12 characters used) it's
better to HTML escape any such string that is printed to HTML.

This was originally reported at:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703290
 2013-09-02 14:38:05 +12:00
Christoph Anton Mitterer
8e60bb3124 set line endings of most text files to LF 
* Changed the end-of-line encodings of all non-Windows-related and non-autogenerated text files to use UNIX LF (lots of them had mixed LF/CRLF).

Conflicts:
	inc/caldav-PUT-functions.php
 2013-09-02 14:37:23 +12:00
Andrew McMillan
8f3175248a A corrected change to fix the case of the language name everywhere. 2013-03-06 23:56:40 +13:00
Andrew McMillan
bb4ef7f6a4 Release changes for version 1.1.2 2013-03-06 22:30:27 +13:00
Andrew McMillan
7e51fa8541 Release 1.1.1 2012-07-11 08:39:11 +12:00
Andrew McMillan
4ee76f91ff Release 1.1.0 2012-06-17 23:16:25 +12:00
Andrew McMillan
927a98482f Release 1.0.2 2012-01-14 10:46:56 +13:00
Andrew McMillan
70f6587a18 Release 1.0.0 2012-01-04 16:48:45 +13:00
Andrew McMillan
bb8bf75e8f Release 0.9.9.7 2011-10-24 20:27:43 +13:00
Andrew McMillan
105af2c1b1 Preparing to release 0.9.9.6 2011-09-24 12:59:23 +12:00
Andrew McMillan
7f44fedf70 Changelogs for 0.9.9.5 2011-09-11 00:47:32 +12:00
Andrew McMillan
d1e380fa43 Ready for release 0.9.9.4 for real this time... 2010-12-28 02:15:22 +13:00