ouyang/snipe-it
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,339 Commits 84 Branches 293 Tags
97f97e3590ef00a98eb030ca8dfc0b19b5411710
Commit Graph

877 Commits

Author SHA1 Message Date
Mathieu Kooiman 6020de6321 Fix hard to exploit stored XSS possibility: code wrongly expected people to only be able to submit entries from <select> 2016-03-13 14:25:46 +01:00
snipe 9bb2ffcf9a Skip escaping on permissons array 2016-02-16 10:36:26 -08:00
snipe a78874d986 Fixes #1768 - XSS vulnerability in user create/display 2016-02-16 10:33:25 -08:00
snipe e5b2163ffe Use helper for company selectlist, added missing language strings 2016-02-12 14:08:35 -08:00
snipe 98db6fe9df Fixes #1741 - adds serial to checkout email 2016-02-09 14:23:45 -08:00
snipe 771e21d9f7 Fixes #832 - show activated status in user listing 2016-01-27 21:02:18 -08:00
snipe 3fd9df62f4 Redirect back to user listing on save 2016-01-27 20:48:34 -08:00
snipe e70dab64a2 Fixes #1686 - added notes to model 2016-01-27 20:39:19 -08:00
snipe 0896ca6517 Fixes #1670 - first name validates for one letter 2016-01-22 10:40:16 -08:00
snipe 28b89f3ddb Use location list helper for dropdown 2016-01-15 15:21:34 -08:00
snipe 0d3a4813ce Fixes #1631 - delete image on asset edit 2016-01-13 18:00:06 -08:00
snipe 77632cdfb0 Allow optional status change on checkin 2016-01-13 08:04:52 -08:00
snipe 1908499379 Fixes #1626 - correctly show deleted models 2016-01-13 07:34:02 -08:00
snipe 7da0ffc325 Fixes #1623 - disallow admins to edit permissions on users 2016-01-13 06:51:56 -08:00
snipe b30edfd9d6 Use locations dropdown 2016-01-13 04:50:55 -08:00
snipe 4c4e0ce5c5 Get assetlog with user 2016-01-13 03:58:01 -08:00
snipe 76220b7884 Fixes #1601 - bulk update now honors un-requestable 2016-01-12 20:00:51 -08:00
snipe bb88b85a02 Removed erroneous blade that led to confusing UX 2016-01-11 18:48:49 -08:00
snipe dad816ba25 Removed debugging echo 2016-01-11 18:48:33 -08:00
snipe 4037200fad Additional fields for user import 2016-01-11 18:39:40 -08:00
snipe 9800786485 Fixes #1597 and allows non-numeric employee number 2016-01-11 18:16:52 -08:00
Daniel Dreier 3e2fc13af5 Updated the LDAP import to get the correct email field setting. 2016-01-07 10:03:42 -06:00
snipe 962e7531a6 Fix for changing asset model from model with custom fields to one without 2016-01-06 18:04:55 -08:00
Brady Wetherington d7b91d88d6 Allow setting 'no custom fields' from having a customfieldset enabled 
in a model.
 2016-01-05 13:53:09 -08:00
snipe 6f04cf9f61 Merge pull request #1554 from snipe/final_custom_fields_tweaks 
Final custom fields tweaks
 2015-12-30 16:32:16 -08:00
Brady Wetherington 4cb0e40abb Eager-Load CustomFieldsets and CustomFields with relations 2015-12-30 16:08:40 -08:00
Brady Wetherington ad144e127c Pertains to one of the elements in #1397 - timestamps and user_id's for Custom Fields 2015-12-30 15:58:51 -08:00
snipe 2f4e54c8a6 Merge remote-tracking branch 'origin/develop' 2015-12-30 15:47:00 -08:00
snipe 7c06cba647 More LDAP login fixes 2015-12-30 14:53:49 -08:00
snipe 1d9e014bfa More auth tweaks :( 2015-12-30 12:57:41 -08:00
snipe 506af72d83 Superadmin check in bulk delete users 2015-12-29 20:03:08 -08:00
snipe a7a82e5fbc Fixes #1541 2015-12-29 19:41:50 -08:00
snipe 23da312fff Put deleted_at back in users collection for restore functionality 2015-12-29 19:35:31 -08:00
snipe 2888103d1a More updates for #1433 
This is a paired down version of the previous auth. Rather than trying to authenticatr with Sentry at every turn, check for valid LDAP and then once all those LDAP additions/updates are set, then try to auth with the credentials the user provided.
 2015-12-29 19:12:22 -08:00
snipe 689832036e Merge pull request #1517 from dmeltzer/for-asset-maintence-and-consum 
Fix Asset Maintenance date and consumable counts
 2015-12-29 15:10:14 -08:00
snipe 90340a7111 Merge pull request #1535 from dmeltzer/fix-1531-proper 
Clear checkout and checkin fields when returning an asset.
 2015-12-29 11:38:07 -08:00
snipe 8742bf26b4 Merge pull request #1521 from twistedR/enhancement/ldap-self-signed-cert-support 
Add option to allow ignoring SSL Cert verification.
 2015-12-29 11:34:07 -08:00
snipe aeeb273d4c Merge pull request #1423 from thehereward/develop 
TidyUp: Remove unreachable code.
 2015-12-29 10:15:36 -08:00
Daniel Meltzer 5f6ba2a148 Clear the expected checkin and last checkout dates when checking an item back in. Fixes #1531 2015-12-28 12:41:24 -05:00
Hereward Mills 0cb3a9265e Fix PHPDocs that contained incorrect params tags. 2015-12-24 11:20:05 +00:00
Raveesh 96a5f437f2 Add option to allow ignoring SSL Cert verification. 2015-12-24 02:17:06 -05:00
Daniel Meltzer 50be3eed4a Fix Two issues with Asset Maintenance. 
1) If a start and end date were given when creating an asset, asset_maintenance_time was not set.
2) AssetMaintenancesController::getDataTable would return 'time' instead of 'asset_maintenance_time', causing the field not to display.
 2015-12-23 20:02:20 -05:00
Daniel Meltzer 3b7da8f379 Fix consumable count in categories. This adds new methods to Category, consumables consumablesCount and a generic count. It also refactors CatgoriesController to use the count method rather than having it determine the category type. 2015-12-23 20:02:09 -05:00
snipe 5967dbae64 Company helper, updated bulk view to show model number 2015-12-22 11:39:42 -08:00
snipe f42a3c8918 Added company to bulk edit 2015-12-22 11:12:26 -08:00
snipe b76f014669 Better handling for invalid locations 2015-12-22 02:40:31 -08:00
Daniel Dreier 0c27717c20 Added check and error message for trying to accept an asset that was not 
checked out to that user.
 2015-12-18 14:51:51 -06:00
snipe ce1565a545 Re-commented mac address - bad merge :-/ 2015-12-18 12:08:08 -05:00
snipe ac5527e7d3 Merge branch 'hotfixes/custom_reports_fix' into develop 2015-12-18 12:06:35 -05:00
snipe 865468d091 Fix for location error 2015-12-18 12:06:11 -05:00