22 Mar, 2016

1 commit

08 Mar, 2016

1 commit

  • 320f1f19   Don't crash with invalid parameters ... Browse Dir » 
    For example http://cirandas.net/dtygel/blog?month=10&year=2011/wp-login.php
crashes on date parsing

Answering request as if no date arguments were passed.

Closes !419

Signed-off-by: Rodrigo Souto <rodrigo@colivre.coop.br>
Signed-off-by: Braulio Bhavamitra <braulio@eita.org.br>
    Braulio Bhavamitra
     

07 Mar, 2016

1 commit

03 Mar, 2016

1 commit

26 Feb, 2016

1 commit

  • 80ebad1f   Added filter section on profile members list ... Browse Dir » 
    - Adds use of filtered members to mailing queue executed by send_mail action

Signed-off-by: Gustavo Jaruga <darksshades@gmail.com>
Signed-off-by: Marcos Ronaldo <marcos.rpj2@gmail.com>
Signed-off-by: Michel Felipe de Oliveira Ferreira <michel.ferreira@serpro.gov.br>
    Michel Felipe
     

25 Feb, 2016

2 commits

  • ea20a3dc   Merge branch 'fix-article-comments-ordering' into 'master' ... Browse Dir » 
    Fix article comments ordering

Fix article's comments ordering bug (had wrong logic before correction) and pagination missing bug (js was overwriting pagination after ajax request).

References:

https://softwarepublico.gov.br/gitlab/softwarepublico/softwarepublico/issues/630
https://softwarepublico.gov.br/gitlab/softwarepublico/softwarepublico/issues/632

See merge request !792
    Rodrigo Souto
     
  • 1c3dc68d   Merge branch 'dbm-private-files' into 'master' ... Browse Dir » 
    Dbm private files

Also rewriting the file visualization to work consistently with every
file type. Here is the overall basic behavior now:

  * If the request is passed with view=true, content is displayed
    as an article content.
    * If the file has an inline visualization (like images) it's already
      displayed.
    * If not, a download link is displayed.
  * If the request is passed with view=false, the file is provided
    straight, without any noosfero layout being loaded.

  * If the file is private:
    * And the user accesses its public filesystem path, apache (this is
      done by noosfero-apache) will redirect the request to rails
      path so that the rails server will provide it considering
      appropriate permissions.
    * And the user accesses its rails path, rails server will provide as
      well.
  * If the file is public:
    * And the user accesses its public filesystem path, apache will
      provide the file.
    * And the user accesses its rails path, rails server will redirect
      to its public filesystem path so that apache provides the file.

The feature and debian package were tested and are still available for testing on: http://private-files.dev.colivre.net

See merge request !797
    Antonio Terceiro
     

23 Feb, 2016

2 commits

  • d85c8a1f   Fixes bug on forum topic creation ... Browse Dir »
    1 
    Closes #167
- When a topic is created in a forum, the parent_id was not being set.

Signed-off-by: Tallys Martins <tallysmartins@yahoo.com.br>
    Tallys Martins
     
  • 3af4b045   private-articles: creating dbm files do filter private files access thorugh web server ... Browse Dir » 
    Also rewriting the file visualization to work consistently with every
file type. Here is the overall basic behavior now:

  * If the request is passed with view=true, content is displayed
    as an article content.
    * If the file has an inline visualization (like images) it's already
      displayed.
    * If not, a download link is displayed.
  * If the request is passed with view=false, the file is provided
    straight, without any noosfero layout being loaded.

  * If the file is private:
    * And the user accesses its public filesystem path, apache (this is
      done by noosfero-apache) will redirect the request to rails
      path so that the rails server will provide it considering
      appropriate permissions.
    * And the user accesses its rails path, rails server will provide as
      well.
  * If the file is public:
    * And the user accesses its public filesystem path, apache will
      provide the file.
    * And the user accesses its rails path, rails server will redirect
      to its public filesystem path so that apache provides the file.
    Rodrigo Souto
     

22 Feb, 2016

5 commits

16 Feb, 2016

1 commit

11 Feb, 2016

1 commit

05 Feb, 2016

1 commit

04 Feb, 2016

1 commit

02 Feb, 2016

1 commit

11 Dec, 2015

1 commit

07 Dec, 2015

1 commit

03 Dec, 2015

1 commit

18 Nov, 2015

1 commit

  • 7be7e7c6   Add custom field feature to core ... Browse Dir »
    1 
    Custom fields can be added to any profile through the admin panel
in the 'Fields' section. They have the same behaviour as the current
Noosfero's fields (active, signup, required and privacy).

Signed-off-by: Fabio Teixeira <fabio1079@gmail.com>
Signed-off-by: Gustavo Coelho <gust.rod.coelho@gmail.com>
Signed-off-by: Joenio Costa <joenio@colivre.coop.br>
Signed-off-by: Macartur de Sousa <macartur.sc@gmail.com>
Signed-off-by: Marcos Ramos <ms.ramos@outlook.com>
Signed-off-by: Marcos Ronaldo <marcos.rpj2@gmail.com>
Signed-off-by: Pedro de Lyra <pedrodelyra@gmail.com>
Signed-off-by: Tallys Martins <tallysmartins@gmail.com>
    Marcos Pereira
     

13 Nov, 2015

2 commits

  • 42b3475d   Merge branch 'master' of gitlab.com:noosfero/noosfero Browse Dir »
    Leandro Santos
     
  • b164af65   API improvements: ... Browse Dir »
    3 
    - Add several endpoints
- Add some API documentation
- Fix plugins API hotspot

Signed-off-by: Victor Costa <vfcosta@gmail.com>
Signed-off-by: Leandro Nunes dos Santos <leandronunes@gmail.com>
Signed-off-by: Evandro Junior <evandrojr@gmail.com>
Signed-off-by: Rodrigo Souto <rodrigo@colivre.coop.br>
Signed-off-by: Caio SBA <caio@colivre.coop.br>
Signed-off-by: Carlos Purificacao <carloseugenio@gmail.com>
Signed-off-by: Ábner Silva de Oliveira <abner.oliveira@serpro.gov.br>
Signed-off-by: Aurelio A. Heckert <aurelio@colivre.coop.br>
Signed-off-by: Evandro Magalhaes Leite Junior <evandro.leite@serpro.gov.br>
Signed-off-by: Marcelo Júnior <maljunior@gmail.com>
Signed-off-by: Michel Felipe de Oliveira Ferreira <michel.ferreira@serpro.gov.br>
Signed-off-by: Larissa Reis <larissa@colivre.coop.br>
Signed-off-by: ABNER SILVA DE OLIVEIRA <abner.oliveira@serpro.gov.br>
Signed-off-by: Luciano Prestes Cavalcanti <lucianopcbr@gmail.com>
Signed-off-by: Marcos Ronaldo <marcos.rpj2@gmail.com>
Signed-off-by: Simião Carvalho <simiaosimis@gmail.com>
Signed-off-by: Gabriel Silva <gabriel93.silva@gmail.com>
    Marcos Pereira
     

12 Nov, 2015

1 commit

03 Nov, 2015

2 commits

28 Oct, 2015

1 commit

13 Oct, 2015

1 commit

  • 66c7b785   Block store: improve usability of adding/moving blocks ... Browse Dir » 
    Signed-off-by: Victor Costa <vfcosta@gmail.com>
Signed-off-by: Francisco Marcelo de Araújo Lima Júnior <francisco.lima-junior@serpro.gov.br>

Conflicts:
	app/controllers/my_profile/profile_design_controller.rb
	app/helpers/boxes_helper.rb
	app/helpers/layout_helper.rb
	app/views/layouts/_javascript.html.erb
	public/stylesheets/application.css
	test/functional/environment_design_controller_test.rb
	test/functional/profile_design_controller_test.rb
    Victor Costa
     

03 Oct, 2015

1 commit

02 Oct, 2015

4 commits

26 Sep, 2015

2 commits

  • 48f51755   Require login for all pages when environment is private ... Browse Dir »
    1 
      This fixes a bug in which some pages (eg. a profile page) were visible
  to unlogged users even if the environment has enabled "show content
  only to members".

  The problem happened because some controllers use `before_filter
  :login_required` so they can apply it to some specific methods,
  effectively overriding the one set in `application_controller`. That
  before filter set in `application_controller` is the one used to make
  the environment private when that feature is enabled, so when a
  controller overrides it, some methods are not required login even when
  the environment is private. So I fixed the problem by using a
  different `before_filter` to take care specifically of private
  environments.

  Now every page requires login when an environment is private, except
  the pages in `account_controller` necessary for login and signup.
    Larissa Reis
     
  • 18dcc058   content_viewer: defer @page.hit Browse Dir »
    Braulio Bhavamitra
     

24 Sep, 2015

1 commit

  • ef41c154   Allow user to remove article or profile image ... Browse Dir »
    2 
    Additional improvements include:

- Makes 'Remove Image' checkbox optional
- Very ugly css hack to hide duplicated labels in some forms. I couldn't
find another way to avoid the labels generated by labelled_form_for nor
could I skip adding labels inside the helper since it's supposed to be
generic.
    Larissa Reis
     

16 Sep, 2015

1 commit

15 Sep, 2015

1 commit