nik/davical
1
0
Fork 0
mirror of https://gitlab.com/davical-project/davical.git synced 2026-06-29 08:20:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,703 Commits 11 Branches 63 Tags 15 MiB
Commit Graph

3703 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Ruthven
1818d6a85f Test for mstilkerich/awl-fix_support_anyof_propfilter 2021-02-05 00:44:04 +13:00
Andrew Ruthven
f94b000cc1 Correctly exclude cards where TYPE is not set on TEL records. 
Commit f1bc3b0dc00d42bb6c3053559230690ae1a6745b in AWL fixed this behaviour.
 2021-02-04 23:14:49 +13:00
Andrew Ruthven
963772a0f0 Fix the test result and hopefully make the description clearer 2021-02-04 23:08:05 +13:00
Andrew Ruthven
7c37035201 I always get whitespace changes 2021-02-04 22:20:19 +13:00
Andrew Ruthven
55fde81b50 Add a bit more info about various suites, and how to time timezone 2021-02-04 22:15:10 +13:00
Andrew Ruthven
b00fc5d5e6 Merge remote-tracking branch 'origin/master' 2021-02-04 22:09:18 +13:00
Florian Schlichting
75f62a81f6 fix PHP8 deprecation warnings: "Required parameter X follows optional parameter Y" 
Deprecated: Required parameter $username follows optional parameter $attributes in inc/drivers_ldap.php on line 190
Deprecated: Required parameter $passwd follows optional parameter $attributes in inc/drivers_ldap.php on line 190
Deprecated: Required parameter $ua_string follows optional parameter $min_age in inc/external-fetch.php on line 42

As explained in https://www.php.net/manual/en/migration80.deprecated.php,
    If a parameter with a default value is followed by a required
    parameter, the default value has no effect. This is deprecated as of
    PHP 8.0.0 and can generally be resolved by dropping the default
    value, without a change in functionality
 2021-02-03 23:25:51 +08:00
Jan Hicken
6cdbfcf226 Add default value for errcontext variable in error handler function 
This variable is no longer passed in PHP 8.0.

It cannot be removed however, because it would not be backwards
compatible.
 2021-02-03 14:57:57 +00:00
Jan Hicken
f376be164e Use brackets instead of curly braces for string offset access 
Curly braces have been deprecated in PHP 7.4 and unsupported in PHP 8.0.
 2021-02-03 14:57:57 +00:00
Florian Schlichting
39bfe88887 CI: add build_buster_latestphp 
this helps to identify issues with new PHP versions before they appear
in Debian

note: debuild sanitizes PATH, needs --prepend-path=/usr/local/bin so
that the (non-Debian) php cli can be found
 2021-02-03 22:39:18 +08:00
Florian Schlichting
d6c1c87fc6 CI: build and test on Debian unstable, then several stable releases relevant to our users 
stable releases currently include bullseye + buster + stretch; would be
nice if we could add Fedora or Gentoo or Arch ...
 2021-02-03 01:18:16 +08:00
Florian Schlichting
8239519ca3 Normalize "100 Continue" headers 
apache2 in bullseye has stopped sending these for some reason, but we
want to be able to test in both newer and older environments
 2021-02-03 00:42:58 +08:00
Andrew Ruthven
18c19b8fad Test case for awl-fix_abookquery_negated_propnotdef 2021-02-02 16:21:46 +00:00
Andrew Ruthven
bd075897bb Merge branch 'awl-fix_abookquery_paramtextmatch' 2021-02-01 23:28:36 +13:00
Andrew Ruthven
f250d2deb5 Test case for negated values in awl-fix_abookquery_paramtextmatch 2021-02-01 23:27:42 +13:00
Andrew Ruthven
405af5e8d8 Merge branch 'awl-fix_abookquery_negated_propnotdef' 2021-01-31 21:34:24 +13:00
Andrew Ruthven
351b853948 Merge branch 'piotrfilip/davical-freebusy_count_fix' 2021-01-25 00:08:34 +13:00
Piotr Filip
e98bf7b682 fix: events with recurrence rule are sometimes counted one too many times in freebusy 2021-01-25 00:08:13 +13:00
Piotr Filip
bc1bbd3da0 test: remove dependency on the current date 2021-01-25 00:08:13 +13:00
Andrew Ruthven
33509866fb Update test results with new timezone data 2021-01-25 00:02:42 +13:00
Andrew Ruthven
99d9264320 Ignore zones.h and zones.tab 2021-01-24 23:47:11 +13:00
Andrew Ruthven
1c25d643e4 To start with there are no timezones in a fresh database 2021-01-24 23:44:40 +13:00
Andrew Ruthven
3817f2f61a Make the runs deterministic 2021-01-24 23:43:43 +13:00
Andrew Ruthven
b15e320fb7 Fix up update-tzdata.sh so it'll run 
On my Debian Sid system, the readlink commands return the empty string.
Given we use these as output files and the files to fetch, I figure
that using hardcoded names is better.
 2021-01-24 23:23:58 +13:00
Andrew Ruthven
696426bc81 Test case for awl-fix_abookquery_negated_propnotdef 2021-01-24 21:05:18 +13:00
Andrew Ruthven
9252a329d2 Test case for awl-fix_abookquery_paramtextmatch 2021-01-24 19:30:45 +13:00
Andrew Ruthven
e6a5fe8cb9 Test case for awl-fix_abookquery_paramtextmatch 2021-01-24 19:28:22 +13:00
Andrew Ruthven
65c0882672 Add help option for regression tests 2021-01-24 18:56:43 +13:00
Andrew Ruthven
b684e2468e Update some more results based on current regression tests 2021-01-24 00:27:04 +13:00
Andrew Ruthven
d06c74b297 Add test secondary (or more) properties 
This tests commit 1ef4c75 in AWL.
 2021-01-24 00:02:31 +13:00
Adrian Bunk
2a9ce31d1e Bug#962653: davical: diff for NMU version 1.1.9.3-1.1 debian/1.1.9.3-1.1 2020-07-06 14:37:43 +08:00
Florian Schlichting
3e8e7f21ab gitlab-ci: use latest Debian stable (fixes #221) 2020-04-14 17:56:34 +02:00
Florian Schlichting
55d485045f release 1.1.9.3 r1.1.9.3 2020-04-13 22:43:07 +02:00
Florian Schlichting
e64fd2b868 LSID logins were removed from AWL, drop related bits in davical 2020-04-04 17:44:12 +02:00
Florian Schlichting
699d077834 release 1.1.9.2: also check CSRF token in collection-edit.php r1.1.9.2 2019-12-12 00:25:20 +08:00
Florian Schlichting
007bf95589 use foreach() instead of deprecated each() (fixes #190) 2019-12-06 18:21:08 +08:00
Florian Schlichting
e2c6b927c8 HTTP_REFERER will usually be unset for caldav requests, prevent "Undefined index" warnings 2019-12-06 18:17:18 +08:00
nielsvangijzen
c8a0ca4531 Fix CSRF not being checked in collection-edit.php 2019-12-06 09:30:16 +01:00
Jim Fenton
a3acb770ac release 1.1.9.1: fix XSS function lost in rebuild of always.php r1.1.9.1 2019-12-03 16:35:08 -08:00
Jim Fenton
e2070c9b7a release 1.1.9 r1.1.9 2019-12-03 15:10:05 -08:00
Jim Fenton
072207e1c8 Merge branch '194-confidential-issue' 2019-12-03 14:39:40 -08:00
nielsvangijzen
1a917b30eb Addressed comments made by @puck42 2019-11-29 09:58:46 +01:00
Andrew Ruthven
d3a8771d01 Merge branch 'cprn/davical-master' 2019-11-26 23:00:09 +13:00
Andrew Ruthven
65ce5d443e Fix syntax 2019-11-26 22:51:37 +13:00
Andrew Ruthven
8e7866c550 Use a placeholder for another instance of collection_id 2019-11-26 22:24:49 +13:00
nielsvangijzen
86a8ec5302 Added CSRF to the application (took in account backwards compatibility) 
Mitigated the XSS vulnerabilities reported by HackDefense
Advisories for said vulnerabilities can be found here:
https://hackdefense.com/publications/cve-2019-18345-davical-caldav-server-vulnerability
https://hackdefense.com/publications/cve-2019-18346-davical-caldav-server-vulnerability
https://hackdefense.com/publications/cve-2019-18347-davical-caldav-server-vulnerability
 2019-10-28 11:55:11 +01:00
Milan Crha
710bc6cccd Add missing 'break;' into RRule.php 2019-06-19 09:20:56 +00:00
Cyprian Guerra
2ba1d64b0c fixing Invalid parameter number: :collection_id 2019-03-28 10:52:32 +01:00
Florian Schlichting
75d4db9afb two more PHP5 curl 2019-03-11 22:46:37 +01:00
Andrew Ruthven
afe69f22d3 We need PHP curl, not specifically PHP5 curl 2019-03-07 16:15:34 +13:00