Commit Graph

6571 Commits (4b952ae7bbfd71c357d11e143d49bde50b875478)

Author SHA1 Message Date
Till Breuer 1aeba033dc Restrict possible watchers to project members in any case 11 years ago
Markus Kahl f7355c1820 include ForbiddenAttributeProtection in correct file (model instead of controller) 11 years ago
Markus Kahl 01ac1315f9 safe mass assignment in member#create 11 years ago
Markus Kahl c84afbdce3 use permitted params for member update 11 years ago
Markus Kahl 0fca8ddf31 use strong params instead of attr_protected in member 11 years ago
Hagen Schink c4926e62ed Prevents leaving project scope 11 years ago
Nils Kenneweg 26bcbb6254 correct timelines horizontal lines positions. 11 years ago
Philipp Tessenow b7e5eba60b we have to set @query.project before adding filters, so that we can determine which filters the user may set 11 years ago
Johannes Wollert 16a54ea416 pretend to be a nested ressource when searching for stuff 11 years ago
Christian Ratz 71a122356d fixed layout bug for login dropdown 11 years ago
Martin Linkhorst cff149afe7 use correct action name for displaying the types tab, see #825f42c if you want to know more 11 years ago
Hagen Schink 1a61404f3f Fixes tests 11 years ago
Hagen Schink 55b27b1477 Uses permitted params in wiki controller 11 years ago
Hagen Schink 0c0599a6e9 Enables ForbiddenAttributesProtection for wiki 11 years ago
Jens Ulferts adb62846a4 replaces rjs and inline js with unobstrusive js 11 years ago
ulferts 47f667a65c fixes label on work packages of version 11 years ago
Johannes Wollert 0bbc874145 fixes bulk edit submit link 11 years ago
Hagen Schink bcef83eb09 Improves custom field handling 11 years ago
Philipp Tessenow 864aa7132f less duplicated code in queries logic 11 years ago
Philipp Tessenow c5480569c4 prepare_query need to be called AFTER update_attributes to ensure invariants 11 years ago
Philipp Tessenow 0b375065c1 allow enumerations with custom fields 11 years ago
Philipp Tessenow a107e4d3c2 shorten css transistions to 200ms 11 years ago
Philipp Tessenow 1970491ef8 use permitted params in QueryControllier 11 years ago
Philipp Tessenow 0d0985367b sort methods of PermittedParams class 11 years ago
Hagen Schink 7fc57dddf1 Adds comments with high-level explanations 11 years ago
Christian Ratz c6676fac4e fixed small layout bug 11 years ago
Hagen Schink 7480794664 Fixes time entry link 11 years ago
Hagen Schink 6c91fc9f17 Fixes time entry link title 11 years ago
Hagen Schink 79bb8ad5be Fixes work package anchor 11 years ago
Hagen Schink d1d877d9c3 Fixes message url 11 years ago
Hagen Schink 030b792bc4 Passes activity to activitied type 11 years ago
Hagen Schink 7a13c70dbc Fixes time entry and news activity provider 11 years ago
Hagen Schink b8813ed8e5 Passes activity to activity providers 11 years ago
Hagen Schink 997809d96e Fixes work package activity link with anchor 11 years ago
Hagen Schink 6b10de7234 Fixes source code layout 11 years ago
Hagen Schink 7450d1b3bd Fixes changeset activity provider 11 years ago
Hagen Schink 579b40134e Adds I18n dependency to base class 11 years ago
Hagen Schink 9ec3a4d18c Fixes wiki activity provider 11 years ago
Hagen Schink 4faf4a5b58 Unifies activity journal projection 11 years ago
Hagen Schink 5179dc8916 Improves method complexity 11 years ago
Hagen Schink 2ef12e1ccd Unifies project definition 11 years ago
Hagen Schink cbd0729098 Prevents calls to not defined methods 11 years ago
Hagen Schink 7319279e41 Unifies event filling 11 years ago
Hagen Schink 97a199eb91 Moves activity provider to separate files 11 years ago
Philipp Tessenow 23c513dc0b it should not be possible anymore to update/create enumerations so that they have a non existent type 11 years ago
Philipp Tessenow f099413192 introduce render_400 (bad request) method in application controller 11 years ago
Markus Kahl 3140385015 fixed double root elements in various other views 11 years ago
Markus Kahl 1282548b0e fixed double root nodes for projects 11 years ago
Markus Kahl 6a89896ead fixed double root node for planning_elements 11 years ago
Philipp Tessenow 4f4067a891 enable ForbiddenAttributesProtection in query.rb 11 years ago