Packages/TYPO3.CMS.git
6 years ago[RELEASE] Release of TYPO3 4.6.12 77/13777/1 TYPO3_4-6-12
TYPO3 Release Team [Wed, 15 Aug 2012 10:37:51 +0000 (12:37 +0200)]
[RELEASE] Release of TYPO3 4.6.12

Change-Id: I7961760c56be03b9dac82964eefe44c00d6306ee

6 years ago[SECURITY] XSS in install tool
Mario Rimann [Wed, 15 Aug 2012 10:19:18 +0000 (12:19 +0200)]
[SECURITY] XSS in install tool

In the "Basic Configuration" section, some configuration values are
rendered without proper escaping both as input fields or as
regular content of the page. These values are htmlspecialchars-
treated now.

For the "All Configuration" form, all input fields and text area fields get now htmlspecialchars-treated.

Change-Id: Ic40340c9d0a4242d31a7202c140b9ba0d1f88184
Fixes: #21634
Releases: 6.0, 4.7, 4.6, 4.5
Security-Commit: 3b42f81101b537481734204308ad7ce99fd99cb5
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13754
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] Page Link Target vulnerable to XSS
Markus Bucher [Wed, 15 Aug 2012 10:19:10 +0000 (12:19 +0200)]
[SECURITY] Page Link Target vulnerable to XSS

This patch adds htmlspecialchars to page link target to prevent
XSS.

Change-Id: I9e1ab1ac22c7bc1225f1d3d3234865e1e603656b
Fixes: #32653
Releases: 6.0, 4.7, 4.6, 4.5
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13753
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] XSS in validateForm
Markus Bucher [Wed, 15 Aug 2012 10:19:03 +0000 (12:19 +0200)]
[SECURITY] XSS in validateForm

Properly quote the form name and field list
for the JavaScript validation

Fixes: #25052
Releases: 6.0, 4.7, 4.6, 4.5

Change-Id: I98bfef92b5595ab343a49e1cba1d8b2563d1d8aa
Security-Commit: d832f7be6bad577ba0be08a7382b421a433ee07f
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13752
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] XSS in TCE forms
Christian Kuhn [Wed, 15 Aug 2012 10:18:56 +0000 (12:18 +0200)]
[SECURITY] XSS in TCE forms

Properly encode field labels that are set via TSConfig.

Fixes: #25356
Releases: 6.0, 4.7, 4.6, 4.5

Change-Id: I23fc1de4ceeab54e1d3d97bc27870a0c070b6038
Security-Commit: 8ddba7927a643e94b491cafd5f348551fdea84ca
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13751
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] XSS in Scheduler Example Task
Mario Rimann [Wed, 15 Aug 2012 10:18:48 +0000 (12:18 +0200)]
[SECURITY] XSS in Scheduler Example Task

The scheduler test-task that sends an email does not properly
sanitize the input of the email field when rendering the editing
form of that task.

Change-Id: Idb4c998fd712552fbb80af77c2856d46aadbf44a
Fixes: #30967
Releases: 6.0, 4.7, 4.6, 4.5
Security-Commit: 5ee5c9798fdb04b106b72ab941532e7a68f43a98
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13750
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] HTML5 support in RemoveXSS
Franz G. Jahn [Wed, 15 Aug 2012 10:18:41 +0000 (12:18 +0200)]
[SECURITY] HTML5 support in RemoveXSS

Add support for HTML5 tags and attributes in RemoveXSS.

Change-Id: I2a5545a703ad149eb5eb5f308ba1857b1af5cd30
Fixes: #37127
Releases: 6.0, 4.7, 4.6, 4.5
Security-Commit: 440c49e1d129be446f3e28e8db77407bb4d095e1
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13749
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] Information Disclosure in the Configuration Module
Mario Rimann [Wed, 15 Aug 2012 10:18:35 +0000 (12:18 +0200)]
[SECURITY] Information Disclosure in the Configuration Module

The configuration module showed the encryption key as plaintext.
For this view, the encryption key is masked and it's length is
shown instead, e.g. "***** (length: 96 characters)"

Change-Id: I8ed5ee014f686fdf8ff527c0b569218c51a9bcaa
Fixes: #39345
Releases: 6.0, 4.7, 4.6, 4.5
Security-Commit: 585cf4f52ff4e946f31371f4cb6fde33d398d4d4
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13748
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] Untrusted GP data is unserialized in old CSH handling
Helmut Hummel [Wed, 15 Aug 2012 10:18:27 +0000 (12:18 +0200)]
[SECURITY] Untrusted GP data is unserialized in old CSH handling

Using the old and already deprecated CSH handling in TYPO3 backend,
untrusted GP data is unserialized. Validate the submitted data with
an hmac.

Change-Id: Ifc93c7d853c2b0df59dd12ab95a7ce1ee4a28a8e
Fixes: #33520
Releases: 6.0, 4.7, 4.6, 4.5
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13747
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] XSS in Indexed Search statistics
Steffen Gebert [Wed, 15 Aug 2012 10:18:20 +0000 (12:18 +0200)]
[SECURITY] XSS in Indexed Search statistics

Indexed Search statistics module is vulnerable to
persistent XSS attack injected by arbitrary frontend users.

Change-Id: I084bffd1e0b489e6f061f5672f7fb12b3bab1aee
Fixes: #31927
Releases: 6.0, 4.7, 4.6, 4.5
Security-Commit: 62ae11e97b563746bed0884d8f3d52d8fc3ea84a
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13746
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[SECURITY] t3lib_div::quoteJSvalue allows XSS
Helmut Hummel [Wed, 15 Aug 2012 10:18:14 +0000 (12:18 +0200)]
[SECURITY] t3lib_div::quoteJSvalue allows XSS

When t3lib_div::quoteJSvalue() was used with second
parameter set to TRUE closing HTML script tags were
not escaped correctly.

Now every character except harmless ones is encoded
to a hex representation.

Change-Id: I98d752ca13abb8655eb1fc06c003d9228c61b952
Releases: 6.0, 4.7, 4.6, 4.5
Fixes: #23226
Security-Commit: 5df5647a9ed543de5451f4ab4baa6767218d89db
Security-Bulletin: TYPO3-CORE-SA-2012-004
Reviewed-on: http://review.typo3.org/13745
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[TASK] Set TYPO3 version to 4.6.12-dev
TYPO3 Release Team [Wed, 8 Aug 2012 12:35:45 +0000 (14:35 +0200)]
[TASK] Set TYPO3 version to 4.6.12-dev

Change-Id: Id1292157b43692274d65a9368cf5bc2309451988
Reviewed-on: http://review.typo3.org/13522
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[RELEASE] Release of TYPO3 4.6.11
TYPO3 Release Team [Wed, 8 Aug 2012 12:35:36 +0000 (14:35 +0200)]
[RELEASE] Release of TYPO3 4.6.11

Change-Id: Id1ab668a1706f3ce60a607be0dfa3b8b437d2841
Reviewed-on: http://review.typo3.org/13521
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[TASK] Raise submodule pointer
TYPO3 Release Team [Wed, 8 Aug 2012 12:29:26 +0000 (14:29 +0200)]
[TASK] Raise submodule pointer

Change-Id: Id23a7e439025f7b7b1824923fd6bd5adebbc8217
Reviewed-on: http://review.typo3.org/13519
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[BUGFIX] Exception "Could not create directory"
Michael Klapper [Tue, 7 Aug 2012 11:46:08 +0000 (13:46 +0200)]
[BUGFIX] Exception "Could not create directory"

The thrown exception is not that helpful while information
about the path is missing.

Change-Id: I3d3411a4ebcce8b1bfecbeb12aba58ceafa89ce4
Fixes: #39583
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/13498
Reviewed-by: Tolleiv Nietsch
Tested-by: Tolleiv Nietsch
6 years ago[BUGFIX] Pass $fieldName when processing FlexForm DS in t3lib_transferData
Claus Due [Sat, 4 Aug 2012 15:57:52 +0000 (17:57 +0200)]
[BUGFIX] Pass $fieldName when processing FlexForm DS in t3lib_transferData

This change simply adds $fieldName to the "real" call to process
the FlexForm's DS. The argument is already supported on the target
class and the value of the argument for the dispatching method in
t3lib_transferData already is properly filled with the correct name.

Change-Id: Ief2f07bca064ae4eed248bb058b4884bcdc7ed96
Releases: 4.5, 4.6, 4.7, 6.0
Fixes: #39527
Reviewed-on: http://review.typo3.org/13472
Reviewed-by: Jigal van Hemert
Tested-by: Jigal van Hemert
6 years ago[BUGFIX] t3lib_db - expects parameter 1 to be resource, boolean given
Michael Klapper [Fri, 3 Aug 2012 10:23:35 +0000 (12:23 +0200)]
[BUGFIX] t3lib_db - expects parameter 1 to be resource, boolean given

The method t3lib_db::debug_check_recordset should use
"is_resource" to be sure we have a proper database resource object.

Change-Id: I18f25760d53d3bd3d8e396b40dbf3727b3bf33c8
Fixes: #39509
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/13440
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] unlink issues warnings for lock files
Markus Klein [Sat, 3 Dec 2011 20:08:54 +0000 (14:08 -0600)]
[BUGFIX] unlink issues warnings for lock files

t3lib_lock issues warnings for non-existent lock files.

Change-Id: I88fe35d5d21fb4137b32ca34d6ed16c091d40431
Fixes: #32282
Releases: 4.7, 4.6, 4.5, 4.4
Reviewed-on: http://review.typo3.org/12832
Reviewed-by: Marcus Schwemer
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] IRRE childs don't expand in Internet Explorer
Stefan Aebischer [Thu, 12 Jul 2012 17:30:26 +0000 (18:30 +0100)]
[BUGFIX] IRRE childs don't expand in Internet Explorer

document.getElementsByName doesn't always extend the returned DOM
Elements with prototype.js specific methods in Internet Explorer.
This patch uses the $$() selector to retrieve the needed DOM
Elements, as it always extends the returned Elements with
prototype.js specific methods (e.g. remove())

Change-Id: I083ca8b55a3b95757408a159f39f7b22cacf9c8f
Fixes: #38849
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/13411
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] t3lib_db::exec_SELECTgetRows method annotation
Nicole Cordes [Tue, 31 Jul 2012 14:48:20 +0000 (16:48 +0200)]
[BUGFIX] t3lib_db::exec_SELECTgetRows method annotation

The function returns a NULL value if a sql error occurs.

Change-Id: Ic508aa5ba2034c0a230f5fad56690979ed576bf4
Fixes: #39417
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/13407
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Properly check disabled versioning within tcemain
Tolleiv Nietsch [Sat, 4 Feb 2012 08:53:31 +0000 (09:53 +0100)]
[BUGFIX] Properly check disabled versioning within tcemain

Setting $GLOBALS['TCA'][$table]['ctrl']['versioningWS'] = FALSE; isn't
fully working within tcemain because some isset() checks don't
look at the value atm.

Change-Id: I736e37ed04ef44ec26b7ab7ef7d2124656a73c0f
Fixes: #33625
Releases: 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12833
Reviewed-by: Marcus Schwemer
Reviewed-by: Georg Ringer
Tested-by: Georg Ringer
6 years ago[BUGFIX] PHP warnings may show up in the List module
Dmitry Dulepov [Thu, 24 Nov 2011 15:19:02 +0000 (17:19 +0200)]
[BUGFIX] PHP warnings may show up in the List module

If the table is defined in $TCA but it misses "columns" array,
there will be a warning in the List module when searching for
any phrase. Implement a check that "columns" entry exists and
write a log message if it does not.

Change-Id: Ib3cfff2a3f5c5f70d61a6a31f7563510878b0e97
Resolves: #22152
Releases: 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12821
Reviewed-by: Marcus Schwemer
Tested-by: Marcus Schwemer
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Shell command arguments are not escaped
Dmitry Dulepov [Mon, 21 Nov 2011 14:54:52 +0000 (16:54 +0200)]
[BUGFIX] Shell command arguments are not escaped

Shell command arguments should be escaped with escapeshellarg()
PHP function, which adds single quotes around the argument and
escapes all single quotes inside the argument.

Change-Id: I195c159048a69535b6f863f9f598613be49a0db7
Resolves: #31278
Releases: 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12856
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
6 years ago[BUGFIX] RTE transformation transforms LF/CR between div and hr into space
Stanislas Rolland [Fri, 29 Jul 2011 15:49:50 +0000 (11:49 -0400)]
[BUGFIX] RTE transformation transforms LF/CR between div and hr into space

Fix the issue and add test cases.

Change-Id: I2220e897c7e2a4861f286767015ced76229cd068
Resolves: #26815
Releases: 4.5, 4.6, 4.7
Reviewed-on: http://review.typo3.org/13017
Reviewed-by: Wouter Wolters
Tested-by: Wouter Wolters
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] Exclude E_STRICT from errors with PHP 5.4
Philipp Gampe [Sat, 7 Jul 2012 15:14:45 +0000 (17:14 +0200)]
[BUGFIX] Exclude E_STRICT from errors with PHP 5.4

The main entry points have been refactored, but some places have been
forgotten leading to E_STRICT errors flooding the log.

Refactor all places to use the same code:
error_reporting(E_ALL & ~(E_STRICT | E_NOTICE | E_DEPRECATED));

Change-Id: Iff2040357fc7cc04224820f4685202aeed996865
Resolves: #35154
Fixes: #38691
Releases: 4.6
Reviewed-on: http://review.typo3.org/12691
Reviewed-by: Markus Klein
Reviewed-by: Marcus Schwemer
Tested-by: Marcus Schwemer
Tested-by: Markus Klein
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
6 years ago[TASK] Always return a boolean in t3lib_div::validPathStr
Andy Grunwald [Tue, 3 Jul 2012 17:49:50 +0000 (19:49 +0200)]
[TASK] Always return a boolean in t3lib_div::validPathStr

In t3lib_div::validPathStr() a boolean (TRUE) is returned,
if this is a valid path string. If it is NOT a valid path string,
then nothing will be returned. In the doc comment,
there is a return type "boolean" mentioned.

Just return a boolean, if it is not a valid path string.

Change-Id: I1124d59d189107faefa871ed58fcb2b255800a13
Fixes: #38604
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12668
Reviewed-by: Andy Grunwald
Reviewed-by: Oliver Klee
Reviewed-by: Marcus Schwemer
Tested-by: Marcus Schwemer
Reviewed-by: Georg Ringer
Tested-by: Georg Ringer
6 years ago[BUGFIX] Invalid fallback for non-localized labels
Xavier Perseguers [Tue, 24 Jul 2012 14:10:30 +0000 (16:10 +0200)]
[BUGFIX] Invalid fallback for non-localized labels

Whenever a record is not translated, Pootle exports the localization file
with only the "source" element and no "target" element.

Change-Id: Ib4b849abdeff4b045af7a7bcd8550719f814557f
Fixes: #39220
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/13024
Reviewed-by: Xavier Perseguers
Tested-by: Xavier Perseguers
6 years ago[TASK] Improve error message of "broken rootline"
Georg Ringer [Fri, 13 Jan 2012 11:29:53 +0000 (12:29 +0100)]
[TASK] Improve error message of "broken rootline"

Currently it is hard to get the reason why the error
"broken rootline" appears. Therefore the error msg can be
improved by adding the ID and fields which are queried.

Change-Id: I78cae5c34af9094e46c705942631ab555347637f
Resolves: #33082
Releases: 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/13008
Reviewed-by: Georg Ringer
Tested-by: Georg Ringer
6 years ago[BUGFIX] stdWrap numRows fails due to wrong SELECT clause
Ernesto Baschny [Tue, 17 Jul 2012 16:03:03 +0000 (18:03 +0200)]
[BUGFIX] stdWrap numRows fails due to wrong SELECT clause

Exclude aggregate functions count(), sum(), max(),
min(), avg() in if statement inside
tslib_cObj::sanitizeSelectPart().

Change-Id: I0e28e382cbfaaafa8d715044322a2c8ce1364ba4
Fixes: #34152
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12998
Reviewed-by: Ernesto Baschny
Tested-by: Ernesto Baschny
6 years ago[BUGFIX] Update extension must invalidate autoloader cache
Philipp Gampe [Fri, 17 Feb 2012 13:51:50 +0000 (14:51 +0100)]
[BUGFIX] Update extension must invalidate autoloader cache

Change-Id: I253c1a9259cc8e5bf8c3271e34bf3a00dd1d0366
Fixes: #33895
Releases: 4.5, 4.6, 4.7
Reviewed-on: http://review.typo3.org/12970
Reviewed-by: Oliver Klee
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[TASK] Raise submodule pointer
TYPO3 Release Team [Sat, 21 Jul 2012 15:56:16 +0000 (17:56 +0200)]
[TASK] Raise submodule pointer

Change-Id: I4ec2839623376753fdf0ada3bb23a5021a42eaee
Reviewed-on: http://review.typo3.org/12978
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[BUGFIX] QT movies prefixed abusively in Media CE
Francois Suter [Tue, 17 Jul 2012 13:38:50 +0000 (15:38 +0200)]
[BUGFIX] QT movies prefixed abusively in Media CE

If some prefixes are defined (either base URL or absRefPrefix),
the Media CE will apply such prefix to any Quicktime movie
even if said movie is referenced by an absolute URL.

Change-Id: Id47f14118fd819af70f6b6af4dd6899de3dcf492
Fixes: #39026
Releases: 6.0,4.7,4.6,4.5
Reviewed-on: http://review.typo3.org/12928
Reviewed-by: Francois Suter
Tested-by: Francois Suter
6 years ago[BUGFIX] Send sane HTTP response in showpic on error
Christian Kuhn [Wed, 18 Jul 2012 09:37:29 +0000 (11:37 +0200)]
[BUGFIX] Send sane HTTP response in showpic on error

Currently, if showpic.php requests fail, exceptions are thrown. Those are
usually converted to a HTTP response 500 (internal server error) by the
production exception handler. Crawlers react on 500 by trying to index
the resource again later.

This is changed to now set specific response codes. If the paramters are
incorrect or broken, an 410 (Gone) will be sent, informing users and
crawlers that the resource is not available under this URL. Crawlers
like googleBot will then stop requesting the resource.

In case all parameters are ok, but the image itself is not found, a 404
will be sent to the client. Crawlers will try to index the resource
again only if there are still links pointing to the resource.

Change-Id: I606937fa9953b88be5edf940201e0153223ae0e6
Fixes: #39052
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12917
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Remove bogus template in template analyzer
Helmut Hummel [Fri, 15 Jun 2012 20:16:31 +0000 (22:16 +0200)]
[BUGFIX] Remove bogus template in template analyzer

Since the implementation of #22169 a bogus template icon
appeared in the template analyzer.
This is because the call to processTemplate was accidentally
moved outside the if construct which checks if there are
ext_typoscript_*.txt files for the extensions.

Change-Id: Ib3de6000df411ee4cb3bbd88f38514d5fcc6653e
Fixes: #38104
Releases: 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12810
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
6 years ago[BUGFIX] Drag&Drop inside the root page of the pagetree isn't possible
Stefan Galinski [Thu, 28 Jun 2012 08:25:05 +0000 (10:25 +0200)]
[BUGFIX] Drag&Drop inside the root page of the pagetree isn't possible

In case there is no page (except the root page) within TYPO3, you can't
use the drag and drop functionality in the page tree to create the first
page.

Change-Id: I4f4aed78916f1ab0ebf9bbc1baad2b2743e9d1b2
Fixes: #24626
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12436
Reviewed-by: Christian Kuhn
Reviewed-by: Ernesto Baschny
Tested-by: Ernesto Baschny
6 years ago[BUGFIX] Check if user is allowed to paste page to pagetree
Max Roesch [Sat, 14 Apr 2012 17:41:48 +0000 (19:41 +0200)]
[BUGFIX] Check if user is allowed to paste page to pagetree

The user rights have checks for new / edit / delete, but paste was missing
leading to an error. Page actions 'paste into' and 'page after' now checks
if the user has rights for adding new pages to the current page.

Change-Id: I7823b96895f9e73c02894a1db893c0e48a36c938
Fixes: #33546
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/11066
Reviewed-by: Wouter Wolters
Reviewed-by: Ernesto Baschny
Tested-by: Ernesto Baschny
6 years ago[BUGFIX] Add rootline workspace overlay for backend_layouts.
Timo Webler [Thu, 19 Apr 2012 06:56:21 +0000 (08:56 +0200)]
[BUGFIX] Add rootline workspace overlay for backend_layouts.

When fetching the rootline inside a workspace
make sure to fetch the correct overlay.

Change-Id: I9cee018d0c6fa22213fbc9ded68f33af38825f57
Fixes: #36313
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/10630
Reviewed-by: Stefan Neufeind
Reviewed-by: Philipp Gampe
Reviewed-by: Ernesto Baschny
Tested-by: Ernesto Baschny
6 years ago[BUGFIX] accessibilityWrap ignores simple value
Jigal van Hemert [Mon, 9 Jul 2012 21:09:54 +0000 (23:09 +0200)]
[BUGFIX] accessibilityWrap ignores simple value

Radio buttons with accessibilityWrap must use simple value
if no complex configuration is supplied. An extra dot prevented
this.

Change-Id: Ib2624725990f5f40be5e26b5fdfd0c8564e72cb3
Fixes: #38791
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12730
Reviewed-by: Jigal van Hemert
Tested-by: Jigal van Hemert
6 years ago[BUG] t3lib_div::getFilesInDir order differs from order in Filelist
Benjamin Mack [Fri, 6 Jul 2012 08:58:54 +0000 (10:58 +0200)]
[BUG] t3lib_div::getFilesInDir order differs from order in Filelist

Files with uppercase letters are sorted before all lowercase file
names due to a bug in getFilesInDir(). This behavior is seen in
the browse_links function, but not in the general file list module.
The fix does the sorting independently from the uppercase
characters.

Change-Id: Ib7f69f91f57c5a4ec76d95a879ce86ada8288f13
Resolves: #18771
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12686
Reviewed-by: Benjamin Mack
Tested-by: Benjamin Mack
6 years ago[BUGFIX] RTE: Importing google webfonts breaks style sheet parsing
Stanislas Rolland [Thu, 5 Jul 2012 16:37:07 +0000 (12:37 -0400)]
[BUGFIX] RTE: Importing google webfonts breaks style sheet parsing

Problem: The imported css file does not contain any css rule.
Solution: Check for the presence of css rules in the imported file.
Note: Thanks to Robert Volk.

Change-Id: I218f09e0e7e9ceafb28465363d4e4b4cc8d612bd
Releases: 4.5, 4.6, 4.7, 6.0
Resolves: #36316
Reviewed-on: http://review.typo3.org/12682
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] RTE spellcheck issue on Windows server
Stanislas Rolland [Thu, 5 Jul 2012 14:14:33 +0000 (10:14 -0400)]
[BUGFIX] RTE spellcheck issue on Windows server

Problem: There is no command "cat" on windows systems. The equivalent
for these systems would be "type".
Solution: Use "type" when OS is Windows.

Change-Id: I838f87e7a2aa2a36e506953808c9a6a3e4dc2adf
Releases: 4.5, 4.6, 4.7, 6.0
Resolves: #36438
Reviewed-on: http://review.typo3.org/12636
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] RTE 4.6: Force IE9 to use IE8 mode in frontend
Stanislas Rolland [Thu, 5 Jul 2012 04:34:23 +0000 (00:34 -0400)]
[BUGFIX] RTE 4.6: Force IE9 to use IE8 mode in frontend

Problem: The TYPO3 4.6 backend uses IE8-compatibility mode. The RTE may
not behave correctly in IE9 native mode.
Solution: When the RTE is included in the frontend, force
IE8-compatibility mode to be used on the page.

Change-Id: I95f348585ddadb5d5589389ca60174a025120534
Releases: 4.6
Resolves: #38658
Reviewed-on: http://review.typo3.org/12618
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[TASK] Set TYPO3 version to 4.6.11-dev
TYPO3 Release Team [Wed, 4 Jul 2012 09:28:48 +0000 (11:28 +0200)]
[TASK] Set TYPO3 version to 4.6.11-dev

Change-Id: I3ab632491171971ab7b46b694b6ad47ee1a492b5
Reviewed-on: http://review.typo3.org/12598
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[RELEASE] Release of TYPO3 4.6.10
TYPO3 Release Team [Wed, 4 Jul 2012 09:28:38 +0000 (11:28 +0200)]
[RELEASE] Release of TYPO3 4.6.10

Change-Id: If34f7014918dbc9b69009e1396feb268b449f264
Reviewed-on: http://review.typo3.org/12597
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[SECURITY] XSS in swfupload
Oliver Hader [Wed, 4 Jul 2012 08:30:40 +0000 (10:30 +0200)]
[SECURITY] XSS in swfupload

There is a known XSS vulnerability in swfupload which isn't
fixed yet. Thanks to the Wordpress project for providing a
fix - we just borrowed that code.

Change-Id: I46bb8dcc7ef2a452f7faa117bf93cd207671c31e
Fixes: #38578
Releases: 6.0, 4.7, 4.6, 4.5
Security-Bulletin: TYPO3-CORE-SA-2012-003
Reviewed-on: http://review.typo3.org/12592
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[TASK] Raise submodule pointer
TYPO3 Release Team [Wed, 4 Jul 2012 08:53:36 +0000 (10:53 +0200)]
[TASK] Raise submodule pointer

Change-Id: I0cda56289f3ea79436293116b3faef90175cddd6
Reviewed-on: http://review.typo3.org/12586
Reviewed-by: TYPO3 Release Team
Tested-by: TYPO3 Release Team
6 years ago[BUGFIX] Exclude E_STRICT from exceptionalErrors
Mario Rimann [Mon, 2 Jul 2012 20:41:33 +0000 (22:41 +0200)]
[BUGFIX] Exclude E_STRICT from exceptionalErrors

From PHP 5.4, E_STRICT became part of E_ALL. This leads to lots of runtime
notice exceptions when using PHP 5.4. To avoid that, E_STRICT needs to be
excluded from error reporting.

Change-Id: I7cb7c2151444ee863cdb163c9aa7544fae43da5c
Fixes: #35154
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12529
Tested-by: Steffen Ritter
Reviewed-by: Steffen Ritter
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[BUGFIX] IRRE records can't be expanded without an hidden field
Oliver Hader [Fri, 29 Jun 2012 16:52:52 +0000 (18:52 +0200)]
[BUGFIX] IRRE records can't be expanded without an hidden field

If no hidden field in TCA for IRRE child records, this will
lead to JavaScript errors on expanding the accordant child
record in the TCEforms view.

This regression has been introduced in issue #34303

Change-Id: Iecb93cd34d7430a0cedc478c58903dce5180ab83
Fixes: #37615
Related: #34303
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12576
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[BUGFIX] TSFE->additionalFooterData for USER_INT
Oliver Hader [Thu, 7 Jun 2012 09:13:24 +0000 (11:13 +0200)]
[BUGFIX] TSFE->additionalFooterData for USER_INT

TSFE->additionalFooterData was introduced with TYPO3 4.3, but
only for the purpose of t3lib_PageRenderer. The definition of
this property is e.g. missing at all in tslib_fe and besides
that, the handling for USER_INT/COA_INT objects is not there
at all.

Change-Id: Iddda782efea19d65763a4cb0295a066067cf22a7
Fixes: #29254
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11860
Reviewed-on: http://review.typo3.org/12571
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7
Stanislas Rolland [Tue, 3 Jul 2012 17:49:59 +0000 (13:49 -0400)]
[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7

Problem: When using IE9, the RTE does not work correctly when using
compatibility modes IE8 or IE7. In particular, the style sheets are not
parsed, because they are not loaded in the same order as with the
specified compatibility version.
Solution: Check whether compatibility mode is activated and avoid
reliance on order.

Change-Id: I9265739ee594b62a99e7dacac61152bc263240cc
Releases: 4.5, 4.6, 4.7, 6.0
Resolves: #38574
Reviewed-on: http://review.typo3.org/12548
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years agoRevert "[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7"
Stanislas Rolland [Tue, 3 Jul 2012 17:30:19 +0000 (19:30 +0200)]
Revert "[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7"

This reverts commit 53b58c826230f1a057b6feab403db874ae68f541

Should avoid reliance on order of stylesheets.

Change-Id: I1489dd7fdce8f96922a8e516019770845efea88c
Reviewed-on: http://review.typo3.org/12547
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7
Stanislas Rolland [Tue, 3 Jul 2012 14:38:47 +0000 (10:38 -0400)]
[BUGFIX] In IE9, RTE does not work correctly in compat modes IE8/IE7

Problem: When using IE9, the RTE does not work correctly when using
compatibility modes IE8 or IE7. In particular, the style sheets are not
parsed, because they are not loaded in the same order as with the
specified compatibility version.
Solution: Check whether compatibility mode is activated.

Change-Id: Ia75acef5d58cc97dc4e8ae40ce3e7cfbe8e75811
Releases: 4.5, 4.6, 4.7, 6.0
Resolves: #38574
Reviewed-on: http://review.typo3.org/12539
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] Custom HTML tags no longer malformed in IE
Bart Dubelaar [Mon, 19 Mar 2012 14:44:34 +0000 (15:44 +0100)]
[BUGFIX] Custom HTML tags no longer malformed in IE

Custom HTML tags would get malformed while editing in IE.
If a tag is not present in HTML4 and the document mode
of IE is lower than IE9 Standards, then the tag is not
present in the DOM and not parsed correctly.
This is fixed by specifying possible custom tags in TSconfig
and creating dummy instances of the tags before loading
the contents in the DOM, also known as the Shiv trick.

Change-Id: Ibabaac405328789f47da1c00f343cf5b88608c60
Fixes: #34786
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12512
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] Remove a rather dubious unit test for Redis cache backend
Christian Kuhn [Sun, 1 Jul 2012 09:40:53 +0000 (11:40 +0200)]
[BUGFIX] Remove a rather dubious unit test for Redis cache backend

The password test is not very useful and fails with younger redis
versions. It was already removed in TYPO3.FLOW3 with commit
e06bd9bb0a3e602a6b067d91b94e88cd78d96135

Change-Id: Iae7372c54c3c8befd08cbdccfb578f6986e1d588
Resolves: #38511
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12490
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] canBeInterpretedAsInteger fatals if given an object
Philipp Gampe [Wed, 25 Jan 2012 18:05:16 +0000 (19:05 +0100)]
[BUGFIX] canBeInterpretedAsInteger fatals if given an object

If an object without a string representation is given to
t3lib_utility_math::canBeInterpretedAsInteger($var), the
method will throw a fatal error.

Assume that an object or an array can never be an integer.
<http://php.net/manual/en/language.types.integer
.php#language.types.integer.casting.from-other>

Change-Id: I95e5fe6a5c9f798b5f249c3c14b8cfd4bedd3afe
Fixes: #33446
Releases: 4.6,4.7
Reviewed-on: http://review.typo3.org/12085
Reviewed-by: Susanne Moog
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Fix unit test failure if gif compress is disabled
Susanne Moog [Sat, 30 Jun 2012 13:45:00 +0000 (15:45 +0200)]
[BUGFIX]  Fix unit test failure if gif compress is disabled

If gif_compress is disabled in the install tool, the
test gifCompressFixesPermissionOfConvertedFileIfUsingGd
fails, as the method it tests only does things if
gif_compress is enabled.

Change-Id: I91603452e43188cd38afeb3ca8b38e2913848e66
Fixes: #38501
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12475
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] VariableFrontend initializeObject not called
Daniel Pötzinger [Thu, 12 Apr 2012 17:59:38 +0000 (19:59 +0200)]
[BUGFIX] VariableFrontend initializeObject not called

The method is protected and is not called in the container then

Change-Id: I03ab47aa1030e782d14304d9371fc62b9c5aed18
Fixes: #35915
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12471
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Remove class of td if "No CSS styles for this table" is set
Juergen Furrer [Tue, 5 Jun 2012 18:05:14 +0000 (20:05 +0200)]
[BUGFIX] Remove class of td if "No CSS styles for this table" is set

Change-Id: I75f1a27b4ef1a94831d6d80f8d0d8d649fc8d1ca
Fixes: #37618
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12468
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Markers (%s) are not replaced in TCEmain error messages
Bart Dubelaar [Fri, 20 Apr 2012 19:17:57 +0000 (21:17 +0200)]
[BUGFIX] Markers (%s) are not replaced in TCEmain error messages

Change-Id: I33d8840390deba3e8a2ac5a188fd6fb089b91b5f
Fixes: #36290
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12465
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Fatal error in configuration ($BE_USER->uc)
Susanne Moog [Wed, 25 Jan 2012 19:23:29 +0000 (20:23 +0100)]
[BUGFIX] Fatal error in configuration ($BE_USER->uc)

This happens because an object is handed over as $arr[$key].
In this case convert $arr[$key] to array.

Change-Id: I128de2da656a3d4782bcb9b8b2a9519aade6ce9f
Fixes: #33444
Releases: 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/12461
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[TASK] Add travis configuration file
Helmut Hummel [Fri, 29 Jun 2012 21:35:53 +0000 (23:35 +0200)]
[TASK] Add travis configuration file

For details read the ticket description.

Change-Id: Ibc22c62e7bb490e1871db92bbc09cd7e56581fa3
Resolves: #38357
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12458
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
6 years ago[BUGFIX] Reports: Wrong indication for saltedpasswords
Markus Klein [Sun, 15 Apr 2012 08:55:23 +0000 (10:55 +0200)]
[BUGFIX] Reports: Wrong indication for saltedpasswords

The reports module shows a wrong status indication for saltedpasswords
if it is configured to forceSalted.

Change-Id: I24347b9872d11a388ef4084f2db9ef70821dc840
Fixes: #36093
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10547
Reviewed-by: Philipp Gampe
Reviewed-by: Stefan Neufeind
Reviewed-by: Oliver Klee
Reviewed-by: Stefan Galinski
Tested-by: Stefan Galinski
6 years ago[BUGFIX] Declaration of tx_rtehtmlarea_base::drawRTE() not compatible
Stanislas Rolland [Thu, 28 Jun 2012 19:49:14 +0000 (15:49 -0400)]
[BUGFIX] Declaration of tx_rtehtmlarea_base::drawRTE() not compatible

Solution: First parameter should be defined as reference so as to be
compatible with the definition of t3lib_rteapi::drawRTE().

Change-Id: I16adc2a616f80e867c7986319f7ffeb69f5f160c
Releases: 4.5, 4.6, 4.7, 6.0
Resolves: #37541
Reviewed-on: http://review.typo3.org/12428
Reviewed-by: Stanislas Rolland
Tested-by: Stanislas Rolland
6 years ago[BUGFIX] IRRE hide/unhide broken
dkd-egerer Sascha Egerer [Sun, 15 Apr 2012 14:36:14 +0000 (16:36 +0200)]
[BUGFIX] IRRE hide/unhide broken

hide/unhide is broken when inline record is not opened before

Change-Id: Ibfd018cc24ae5a0e3768800ea5161376879cf6a8
Resolves: #34303
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10695
Reviewed-by: Stefan Neufeind
Reviewed-by: Marcus Schwemer
Tested-by: Marcus Schwemer
Reviewed-by: Wouter Wolters
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[TASK] PHP 5.4 adjustments
Markus Klein [Tue, 6 Mar 2012 10:42:54 +0000 (11:42 +0100)]
[TASK] PHP 5.4 adjustments

Small adjustments for PHP 5.4 compatibility.

Change-Id: Ic33ea5ca0085cc28e8b17426d84f3598cad55d78
Resolves: #34685
Releases: 4.8, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11502
Reviewed-by: Wouter Wolters
Reviewed-by: Sebastian Fischer
Reviewed-by: Oliver Klee
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Ensure $output is used as string
Peter Niederlag [Tue, 17 Apr 2012 07:26:22 +0000 (09:26 +0200)]
[BUGFIX] Ensure $output is used as string

Problem was introduced by new API t3lib_befunc::helpTextArray()
which changed ::helpText()

Change-Id: Idc055446333bfaec008944e41b434e844fcbd241
Fixes: #36194
Relates: #23798
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/10559
Reviewed-by: Oliver Klee
Reviewed-by: Mattias Nilsson
Tested-by: Mattias Nilsson
Reviewed-by: Wouter Wolters
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] fe_adminLib.inc uses undefined function
Sven Burkert [Thu, 22 Dec 2011 08:50:41 +0000 (02:50 -0600)]
[BUGFIX] fe_adminLib.inc uses undefined function

fe_adminLib.inc calls preg_spliti() which does not exist.

Change-Id: I7c16c2590ddc193fcad99e970ab8c6975e369261
Fixes: #32773
Releases: 4.7, 4.6, 4.5, 4.4
Reviewed-on: http://review.typo3.org/12084
Reviewed-by: Oliver Klee
Reviewed-by: Wouter Wolters
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Properly load existing usergroups in task
Bart Dubelaar [Mon, 23 Apr 2012 09:13:30 +0000 (11:13 +0200)]
[BUGFIX] Properly load existing usergroups in task

The create backend user task did not properly load
the usergroups of an existing user, because it wrongly
assumes that the groups are provided as array.
Actually the groups are provided as raw DB field,
thus no conversion is needed.

Change-Id: Ia704e071f6565f1a892e5f5c8d4c2b83a106f32f
Fixes: #36300
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12262
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Unnecessary warning in css_styled_content (division by zero)
Thomas Layh [Wed, 2 May 2012 14:10:06 +0000 (16:10 +0200)]
[BUGFIX] Unnecessary warning in css_styled_content (division by zero)

If tt_content.image.20.maxW is not set, PHP throws a warning about
division by zero. This is not necessary. After that the variable
$scale is not set. This patch checks if $netW is greater zero and
otherwise the else condition will set $scale to 1.

Change-Id: Icd876b33d543080e486e0184c8af34c9a3831738
Fixes: #36777
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/12077
Reviewed-by: Thomas Layh
Tested-by: Thomas Layh
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[BUGFIX] Hide the field "Selected Pages" for menu type "Sitemap"
Marco Huber [Fri, 13 Apr 2012 14:35:47 +0000 (16:35 +0200)]
[BUGFIX] Hide the field "Selected Pages" for menu type "Sitemap"

The field "Selected Pages" is never used in the content element
"Menu/Sitemap" with menu type "Sitemap". So it should not be
shown in the backend.

Change-Id: I9464ff29fc9fd9864a404cfb14f0545b3e186366
Fixes: #35944
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/12015
Reviewed-by: Markus Klein
Reviewed-by: Wouter Wolters
Reviewed-by: Stefan Galinski
Tested-by: Stefan Galinski
6 years ago[BUGFIX] redirect to referrer when changing password
Jigal van Hemert [Sun, 1 Jan 2012 22:05:47 +0000 (23:05 +0100)]
[BUGFIX] redirect to referrer when changing password

The referrer and referrerDomains redirect options must be ignored after
changing the password, otherwise you would end up on the page where the
change password form was displayed (which shows an error message now).
An extra option to ignore the referrer redirects is introduced for this.

Change-Id: I26abdf74a3d55000eb88dbcda63fa032c0bd0557
Fixes: #21943
Releases: 4.5, 4.6, 4.7
Reviewed-on: http://review.typo3.org/11753
Reviewed-by: Markus Klein
Tested-by: Markus Klein
Reviewed-by: Jigal van Hemert
Tested-by: Jigal van Hemert
6 years agoBUGFIX] Illegal string offset
Jigal van Hemert [Mon, 28 May 2012 20:32:44 +0000 (22:32 +0200)]
BUGFIX] Illegal string offset

Check if parameter is an array before using it as an array in
getPagePath() and getPageInfo()

Change-Id: Idc2d36bc68496cd11ece18193ac662d30e7348e0
Fixes: #37553
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11667
Reviewed-by: Jigal van Hemert
Tested-by: Jigal van Hemert
6 years ago[TASK] Set TYPO3 version to 4.6.10-dev
TYPO3 v4 Release Team [Tue, 22 May 2012 10:10:33 +0000 (12:10 +0200)]
[TASK] Set TYPO3 version to 4.6.10-dev

Change-Id: Ibce2d595a5a4488ecc8fcd3bffb1d13cdaa82564
Reviewed-on: http://review.typo3.org/11442
Reviewed-by: TYPO3 v4 Release Team
Tested-by: TYPO3 v4 Release Team
6 years ago[RELEASE] Release of TYPO3 4.6.9
TYPO3 v4 Release Team [Tue, 22 May 2012 10:10:24 +0000 (12:10 +0200)]
[RELEASE] Release of TYPO3 4.6.9

Change-Id: I55ca9e46c52e0be35f090736fff368eb81955bec
Reviewed-on: http://review.typo3.org/11441
Reviewed-by: TYPO3 v4 Release Team
Tested-by: TYPO3 v4 Release Team
6 years ago[TASK] Raise submodule pointer
TYPO3 v4 Release Team [Tue, 22 May 2012 09:54:39 +0000 (11:54 +0200)]
[TASK] Raise submodule pointer

Change-Id: Icab7d9914103db01598b8088c72871c7066c3baa
Reviewed-on: http://review.typo3.org/11436
Reviewed-by: TYPO3 v4 Release Team
Tested-by: TYPO3 v4 Release Team
6 years ago[BUGFIX] Pagetree: Copying large branches duplicates branch
Steffen Gebert [Sat, 11 Feb 2012 15:52:03 +0000 (16:52 +0100)]
[BUGFIX] Pagetree: Copying large branches duplicates branch

Copying large branches (500+ pages, depending on the server) has a big
problem: The AJAX request is answered too late (after Ext.Direct
timeout), so Ext.Direct will resend the request. This will copy the
branch once again. So the copied branch appears twice after copying.

The whole process fails with a connection timeout error message and the
user has to reload the page tree.

Change-Id: I2f0aa73357674751e7745654383f420802f0eb17
Resolves: #26993
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11335
Reviewed-by: Susanne Moog
Tested-by: Susanne Moog
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[TASK] Add a comment for require_once in t3lib_error_ErrorHandler
Oliver Klee [Sun, 20 May 2012 16:03:51 +0000 (18:03 +0200)]
[TASK] Add a comment for require_once in t3lib_error_ErrorHandler

These require_once calls are needed to make the exception classes
available even if the autoloader is not loaded at this point yet.

The comment point this out and (hopefully) keeps people from deleting
the require_once calls as part of some clean up.

Resolves: #37335
Relates: #23444, #36061

Change-Id: Ie226b67f44ea0c3cbd17fa9e52018dbf8d8b58d4
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11388
Reviewed-by: Xavier Perseguers
Tested-by: Xavier Perseguers
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] PHP warning when a language pack does not exist
Xavier Perseguers [Wed, 9 May 2012 07:48:05 +0000 (09:48 +0200)]
[BUGFIX] PHP warning when a language pack does not exist

If PHP warnings are not catched, file_get_contents issues a warning
message whenever a file cannot be retrieved.

Change-Id: I511739d2aeb31d2f946abab80f6edf4deb127d6f
Fixes: #36976
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/11355
Reviewed-by: Oliver Hader
Tested-by: Oliver Hader
6 years ago[BUGFIX] DB field names exceed max length with 'zzz_deleted'
Tolleiv Nietsch [Wed, 1 Feb 2012 08:30:40 +0000 (09:30 +0100)]
[BUGFIX] DB field names exceed max length with 'zzz_deleted'

MySQL allows a maximum of 64 characters for column and table names.
When prefixing them with 'zzz_deleted' this limit might be reached
by accident. (e.g. with
'zzz_deleted_tx_powermail_tellAFriendForm_receiverEmailContentField')

The patch avoids the overstepping 64 characters.

At the same time the prefixed and shortened field names are more
likely to have the same name, therefore the names are cut
from the beginning.

Change-Id: I5fa03d17288090c9db6a47e097bbca0ce583a6e4
Fixes: #33580
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/11329
Reviewed-by: Philipp Gampe
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Regression of "better condition in versionOL of t3lib_tstemplate"
Andy Grunwald [Wed, 9 May 2012 08:45:56 +0000 (10:45 +0200)]
[BUGFIX] Regression of "better condition in versionOL of t3lib_tstemplate"

versionOL in t3lib_tstemplate can cause a fatal error for
scripts like eID that run in frontend mode, but without a full
blown frontend environment.

The patch replaces the frontend check with a more specific test
for the required methods.

Change-Id: I9920cf185883d35c2121077b62e34c76ace72a94
Related: #31139, #25144
Resolves: #36981
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11098
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
Reviewed-by: Susanne Moog
Tested-by: Susanne Moog
6 years ago[BUGFIX] Properly quote regexp in Install Tool
Jigal van Hemert [Fri, 30 Mar 2012 20:46:39 +0000 (22:46 +0200)]
[BUGFIX] Properly quote regexp in Install Tool

Characters with a special meaning must be properly quoted
if they appear in a regular expression.

Change-Id: I2587acb9d0f61a441be6e13dcaba7b7ca0fc82bc
Releases: 6.0, 4.7, 4.6, 4.5
Resolves: #35410
Reviewed-on: http://review.typo3.org/11322
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Install Tool: Settings added by extensions can be edited
Ernesto Baschny [Thu, 26 Jan 2012 11:45:05 +0000 (12:45 +0100)]
[BUGFIX] Install Tool: Settings added by extensions can be edited

Change-Id: I13f3ec8a1f10029ce2b6e421bcc97be2e1276ca3
Fixes: #25213
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11321
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Wrong DB fields usage in TCEmain
Felix Nagel [Wed, 16 May 2012 13:11:52 +0000 (15:11 +0200)]
[BUGFIX] Wrong DB fields usage in TCEmain

The fix for issue #35260 introduced a new bug in method
t3lib_TCEmain::getPreviousLocalizedRecordUid() by adding a
field in a query in the wrong place. In particular, this breaks
the localization of tt_content elements used with IRRE.

This patch fixes the problem by separating the list of fields
used for selecting and for sorting.

Change-Id: I1173a61a073cf3c0b9583a64259949ea688f30df
Fixes: #37221
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11293
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Missing bottom margin in the page tree
Stefan Galinski [Fri, 13 Apr 2012 14:01:04 +0000 (16:01 +0200)]
[BUGFIX] Missing bottom margin in the page tree

This fixes the UI issue with the deletion overlay and drag&drop
with nodes at the very bottom of the page tree viewport too.

Change-Id: I5cee23ea9441fcd1910a998547772bc3f2e53fb5
Fixes: #35182
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/11259
Reviewed-by: Stefan Galinski
Tested-by: Stefan Galinski
6 years ago[BUGFIX] Wrong label reference for backend_layout
Markus Klein [Mon, 14 May 2012 12:37:08 +0000 (14:37 +0200)]
[BUGFIX] Wrong label reference for backend_layout

tbl_pages.php references non-existing labels.
Actually they have different names.

Change-Id: Iacad60ae562cb738410177e554473badc78df2b4
Releases: 6.0, 4.7, 4.6, 4.5
Fixes: #37158
Reviewed-on: http://review.typo3.org/11195
Reviewed-by: Wouter Wolters
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Pagetree doesn't expands to the last saved state
Stefan Galinski [Thu, 10 May 2012 17:51:11 +0000 (19:51 +0200)]
[BUGFIX] Pagetree doesn't expands to the last saved state

Change-Id: I0518d9dd06c7d126dfe5d885e4b2751b7e7462b6
Releases: 6.0, 4.7, 4.6, 4.5
Fixes: #36459
Reviewed-on: http://review.typo3.org/11189
Reviewed-by: Stefan Galinski
Tested-by: Stefan Galinski
6 years ago[BUGFIX] Page cache expiry calculation fails
Francois Suter [Wed, 4 Apr 2012 13:21:52 +0000 (15:21 +0200)]
[BUGFIX] Page cache expiry calculation fails

The calculation of the page cache expirationy timestamp based on
property config.cache.xx = table:yy fails in some specific
scenarios, name when there are records having either a start time
in the future but no end time, or an end time in the future
and no start time. Contrary to what is being done so far, calculation
must be performed separately for each time field to avoid
interferences.

Change-Id: I39f08a84255233952bd2fd51f28972bb1fe9affa
Fixes: #35684
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/11095
Reviewed-by: Francois Suter
Tested-by: Francois Suter
6 years ago[BUGFIX] Slider Wizard value not set when used in a flexform
Wouter Wolters [Tue, 27 Mar 2012 17:19:57 +0000 (19:19 +0200)]
[BUGFIX] Slider Wizard value not set when used in a flexform

When the Slider Wizard is used in a flexform the value is given
as XML, which is not handled correctly. When the Slider is used in
a flexform, retrieve the value with t3lib_flexformtools.

Change-Id: I59d967bc2a782f7f3f392c1fe035dc0c60ef6e75
Fixes: #34012
Releases: 4.5,4.6,4.7,6.0
Reviewed-on: http://review.typo3.org/11038
Reviewed-by: Tolleiv Nietsch
Tested-by: Tolleiv Nietsch
6 years ago[BUGFIX] Fix math test on 32 bit systems
Helmut Hummel [Sat, 5 May 2012 10:13:41 +0000 (12:13 +0200)]
[BUGFIX] Fix math test on 32 bit systems

Change-Id: I0408c5a6998eefd6dd38543c061523b851bda749
Fixes: #36860
Releases: 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/11013
Reviewed-by: Helmut Hummel
Tested-by: Helmut Hummel
Reviewed-by: Christian Kuhn
6 years ago[BUGFIX] EM: improve action icons alignment
Francois Suter [Fri, 27 Apr 2012 07:41:21 +0000 (09:41 +0200)]
[BUGFIX] EM: improve action icons alignment

In both extensions list of the new EM (available and import), the
action icons are flush with the top of each table row. Instead
they should be aligned with the extension icon.

Change-Id: I9a69382d7cb5a8fad8ae568fc37d689ebf1f788f
Fixes: #36611
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10976
Reviewed-by: Francois Suter
Tested-by: Francois Suter
6 years ago[BUGFIX] EM: misplaced tooltips
Francois Suter [Fri, 27 Apr 2012 07:18:26 +0000 (09:18 +0200)]
[BUGFIX] EM: misplaced tooltips

In the local list of extensions, the tooltips on the first two action
columns are misplaced. Tooltips from the second one override those
from the first one.

Change-Id: I62a7931ca24b78817e1ae2495e06bdbf708cf3a3
Fixes: #36610
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/10970
Reviewed-by: Francois Suter
Tested-by: Francois Suter
6 years ago[BUGFIX] EM: avoid cropping action columns
Francois Suter [Fri, 27 Apr 2012 07:09:51 +0000 (09:09 +0200)]
[BUGFIX] EM: avoid cropping action columns

In some browsers the action icons of the new EM disappear, to be
replaced by an ellipsis (...). This is due to ExtJS using
"text-overflow: ellipsis" and some browsers miscalculating the
width of the column. This text-overflow directive is not necessary
as the icons fit nicely anyway.

Change-Id: I26ae9c679b6419a723e98ebb66c726f5ddb3fe77
Fixes: #30900
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10878
Reviewed-by: Jigal van Hemert
Tested-by: Jigal van Hemert
6 years ago[BUGFIX] t3lib_div::getUrl() throws a warning on nonexisting local file
Philipp Gampe [Fri, 20 Apr 2012 18:45:49 +0000 (20:45 +0200)]
[BUGFIX] t3lib_div::getUrl() throws a warning on nonexisting local file

During #35847 the silent operator was removed from file_get_content()
which should not have happend.

Change-Id: Ifb12b5f5b20234f1a218c43d4f3882de16b7f0a0
Related: #35847
Fixes: #36380
Releases: 4.6, 4.5
Reviewed-on: http://review.typo3.org/10854
Reviewed-by: Wouter Wolters
Tested-by: Wouter Wolters
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] New task button missing after deleting task
Alexander Jahn [Mon, 23 Apr 2012 07:45:06 +0000 (09:45 +0200)]
[BUGFIX] New task button missing after deleting task

Change-Id: I7b0dd0ef83d8fe62aeaf12849bcf87b00801eacc
Fixes: #36296
Releases: 6.0, 4.7, 4.6
Reviewed-on: http://review.typo3.org/10852
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] cropHTML with dash in html element
Jakub Cernek [Fri, 10 Jun 2011 20:52:00 +0000 (22:52 +0200)]
[BUGFIX] cropHTML with dash in html element

Allow dash in regular expression of cropHTML function. It is needed
for recognition of W3C non-standard TYPO3 'link' element syntax.
(e.g. <link email@example.org - mail "Open email window">
email@example.org</link>)

Change-Id: Id2bd9bbcffc4c55f1ba9cd24bb456e927c6f2d6d
Fixes: #26915
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10691
Reviewed-by: Stefan Neufeind
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Wrong HTTP protocol in combination with a proxy
Michael Staatz [Fri, 13 Apr 2012 18:46:11 +0000 (20:46 +0200)]
[BUGFIX] Wrong HTTP protocol in combination with a proxy

When a reverse proxy is configured in $TYPO3_CONF_VARS and you call
t3lib_div::getIndpEnv('TYPO3_SSL') it returns the wrong protocol.

You can reproduce this in the following way:
If realUrl has the configuration to take the next higher level in the
page tree in the case of not finding the current page then the protocol
will be changed by the static method t3lib_div::getIndpEnv('TYPO3_SSL')

Change-Id: I40817be254a330e9d083cf45ccb25500571ebc4b
Fixes: #36004
Releases: 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10684
Reviewed-by: Michael Staatz
Tested-by: Michael Staatz
Reviewed-by: Stefan Neufeind
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Remove duplicate domain from FE copyright comment
Tomita Militaru [Fri, 27 Apr 2012 09:31:44 +0000 (12:31 +0300)]
[BUGFIX] Remove duplicate domain from FE copyright comment

Since typo3.com was replaced by typo3.org, current frontend copyright
comment shows duplicate domain in copyright:
TYPO3 is copyright 1998-2012 of Kasper Skaarhoj. Extensions are
copyright of their respective owners. Information and contribution
at http://typo3.org/ and http://typo3.org/

Change-Id: Id0647274974032f20a1b5a050e439ed43213bcdb
Fixes: #36164
Releases: 4.5, 4.6, 4.7, 6.0
Reviewed-on: http://review.typo3.org/10849
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Show phpinfo() header title
Tomita Militaru [Thu, 26 Apr 2012 16:06:51 +0000 (19:06 +0300)]
[BUGFIX] Show phpinfo() header title

This is a no-brainer, fixes the bug with the title of
phpinfo() in the Install Tool being hidden from CSS.

Change-Id: I7b4e1a9f30b88a4758516502cf6c816e96763890
Fixes: #34686
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10846
Reviewed-by: Christian Kuhn
Tested-by: Christian Kuhn
6 years ago[BUGFIX] Hide relations to deleted records
Francois Suter [Tue, 24 Apr 2012 15:46:10 +0000 (17:46 +0200)]
[BUGFIX] Hide relations to deleted records

When displaying a column containing MM-relations in Web > List
view, deleted records will show up, because the MM relations still
exist and the foreign table is not checked for deleted records.

Additionally an empty result in this case should display "N/A"
just like for the other situations.

Change-Id: I78969ca83b464889c646fd6de4784886cdbeaaf2
Fixes: #21713
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10813
Reviewed-by: Francois Suter
Tested-by: Francois Suter
6 years ago[BUGFIX] Localize command must preserve type
Francois Suter [Thu, 29 Mar 2012 11:16:42 +0000 (13:16 +0200)]
[BUGFIX] Localize command must preserve type

When the TCEmain command "localize" is used on a table that has
a type attribute, this type is not copied automatically. This
may lead to a discrepancy between the parent record and its
translations. The type must be copied when localizing.

Change-Id: Ia0027d839e7213190c3425dfbdd6e9efc0fcfdde
Fixes: #35361
Releases: 6.0, 4.7, 4.6, 4.5
Reviewed-on: http://review.typo3.org/10703
Reviewed-by: Francois Suter
Tested-by: Francois Suter