- Feb 11, 2020
-
-
Oliver Hader authored
Branch "master" of removed system extensions was outdated and not available anymore. Resolves: #90358 Related: #90350 Releases: 10.2, 9.3, 9.2, 8.7 Change-Id: If019ec6d334e127a49c14e346f9e2fbd0cdfbf58 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/63203 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
- Dec 17, 2019
-
-
Oliver Hader authored
Change-Id: I4483812169b1018e536e8a2ab436a9a6c34e85c6 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62730 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
Change-Id: Ic0ae2c8bd12b5af114774753a93f2c1150362a87 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62729 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
Change-Id: I2a8852435282bdd22cd19ce34374a4afac3247a6 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62728 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
Change-Id: Icb5a05d964912a59e6aea6822714e44c677a3954 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62727 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Frank Naegler authored
Resolves: #89005 Releases: master, 9.5, 8.7 Security-Commit: bb72a2eb30bd30933efa97368ccb98977a05a4d3 Security-Bulletin: TYPO3-CORE-SA-2019-026 Change-Id: I17afc01166ee9626fa825b5af8cf298caddfec1c Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62714 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Frank Naegler authored
Resolves: #89452 Releases: master, 9.5, 8.7 Security-Commit: f38d2ac58d9ac991d97e9d0112351593b723349a Security-Bulletin: TYPO3-CORE-SA-2019-025 Change-Id: Id77910cdcd1c18a40ca3dca4d0bb707aa85a7980 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62713 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Andreas Fernandez authored
The Extension Manager and Language Pack Manager receive Zip archives as input from foreign sources and extract them on the disk. However, the previous approach is considered insecure as the target directory is not checked per file and directory traversal was possible. This patch adds a new service class that handles the extraction of Zip archives via PHP's internal ZipArchive class, which can handle such cases on its own. Resolves: #88764 Releases: master, 9.5, 8.7 Security-Commit: 7f700472b4be3b012cbde2ce58b400d7f1c143f6 Security-Bulletin: TYPO3-CORE-SA-2019-024 Change-Id: I2b121ef3b2ce3588aae8cefdcceb9317d9f3f6da Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62712 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Andreas Fernandez authored
FAL currently filters invalid characters from file names stored by its API. However, this sanitization took no effect when the file was placed by e.g. uploads via FTP, which doesn't trigger FAL. This patch adds a missing `htmlspecialchars` call when the file extension is rendered and could not be sanitized before due to mentioned circumstances. Resolves: #88931 Releases: master, 9.5, 8.7 Security-Commit: 8e2219c5e1b402ecca884b70e202ab13c0e95df7 Security-Bulletin: TYPO3-CORE-SA-2019-023 Change-Id: I9b3fa811eed37f887a2929bc6f10aacc9bcc2ef5 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62711 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
In order to avoid XSS through typolink, anchor text is encoded correctly to be used in a HTML context. Fallback link texts of links to pages are encoded per default in case lib.parseFunc has not been configured. Resolves: #88635 Releases: master, 9.5, 8.7 Security-Commit: 1bd95ac9a73260b0edd5e0608fb0207d52daa3e7 Security-Bulletin: TYPO3-CORE-SA-2019-022 Change-Id: I53c884e748a825c47cdfcfdcfa92dc249f3986a5 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62710 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Frank Naegler authored
Resolves: #88629 Releases: master, 9.5, 8.7 Security-Commit: e179b6dd34bb47f2af28c58c19a14f46ae8f9f52 Security-Bulletin: TYPO3-CORE-SA-2019-021 Change-Id: Ifd513f543f9be44285322136f89992c00be0fbcd Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62709 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
The ext:felogin recovery process is using a non-typesafe comparison which might be exploited with a probability of 0.000000294% and is storing the recovery token as plain MD5-hash in database. In order to streamline the process non-typesafe comparison is using PHP's hash_equals() method; for keeping backward compatibility just HMAC-SHA1 is applied to the recovery token in database. Since exploitations to this scenario are very unlikely (for a 50% chance an attacker would have to trigger the creation of around 170 million recovery requests) it is not handled with a security workflow - but using the public workflow. Resolves: #89952 Releases: master, 10.2, 9.5, 8.7 Change-Id: Idcb7b7d6eb418124dc17f1707284b6abe8a8b63b Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62693 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Andreas Fernandez authored
Resolves: #89970 Releases: master Change-Id: I5b7e22c853993e7434c086c22a3898eefbe07899 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62694 Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
- Dec 03, 2019
-
-
Benni Mack authored
Change-Id: I09bb29716abb1a7b1f4c8010c1d98c15ae90d808 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62523 Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Benni Mack <benni@typo3.org>
-
Andreas Fernandez authored
Resolves: #89837 Related: #89813 Releases: master Change-Id: Idfb9274c7a5415e6bef7dee61a6ca65728d96674 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62522 Tested-by: Susanne Moog <look@susi.dev> Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Daniel Siepmann <coding@daniel-siepmann.de> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Benni Mack authored
Some changes were made: - Upgrade Wizard works - Visibility on RedirectHandler is sorted out - TreeUidListProvider is removed - cObject does everything already, less dependencies - PasswordChangeEvent is actually executed now (and works!) - RedirectConfiguration now has a factory - Do not use ConnectionPool as dependency as it contains state - Most "final" and "private" were put back to "protected" (as the rest of core) - except events - Additional hmac check in Repository - Add lifetime validation of hash in changePassword action as well Resolves: #89828 Related: #84262 Releases: master Change-Id: I813a2fc86c8e4f61fd923467aa761246187af901 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62516 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Alexander Schnitzler <review.typo3.org@alexanderschnitzler.de> Tested-by: Oliver Hader <oliver.hader@typo3.org> Reviewed-by: Alexander Schnitzler <review.typo3.org@alexanderschnitzler.de> Reviewed-by: Oliver Hader <oliver.hader@typo3.org>
-
Oliver Hader authored
Building reflection cache in ClassSchema on static class properties will lead to side-effects. For instance when ConnectionPool is analyzed for being used with Extbase dependency injection and has been used already during runtime - which is very likely - static property $connections is going to hold all runtime connections. https://www.php.net/manual/en/reflectionclass.getdefaultproperties.php: > This method only works for static properties when used on internal > classes. The default value of a static class property can not be > tracked when using this method on user defined classes. That's why default values of static properties are not resolved anymore. Resolves: #89830 Releases: master Change-Id: I0040c3e4327d084b3192017874154ab5d8466508 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62518 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Alexander Schnitzler <review.typo3.org@alexanderschnitzler.de> Tested-by: Susanne Moog <look@susi.dev> Reviewed-by: Alexander Schnitzler <review.typo3.org@alexanderschnitzler.de> Reviewed-by: Susanne Moog <look@susi.dev>
-
Susanne Moog authored
composer require --dev typo3/testing-framework:~6.1.0 Also reverts changes to tests for phpunit 8.3 only. Resolves: #89833 Releases: master Change-Id: I834f70452775ea18960da162bb2affe459b8556a Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62519 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Tested-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de>
-
Georg Ringer authored
Simplify the UI of the toolbar by hiding the select field if there is only one option to choose from which doesn't make sense. Resolves: #89829 Releases: master Change-Id: I6e58aae1bab25777bca21f058524e447f569d73a Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62517 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Markus Klein <markus.klein@typo3.org> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Joerg Kummer <typo3@enobe.de> Reviewed-by: Markus Klein <markus.klein@typo3.org> Reviewed-by: Benni Mack <benni@typo3.org>
-
Susanne Moog authored
The testing framework has been reworked and slimmed down. To make use of it, tests had to be adjusted. composer require --dev typo3/testing-framework:"~6.0.0" Resolves: #89815 Releases: master Change-Id: Ib0a8d7436070ef17be96a5f4011f796dd15b09fd Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62502 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Georg Ringer <georg.ringer@gmail.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Benni Mack <benni@typo3.org>
-
- Dec 02, 2019
-
-
Andreas Fernandez authored
In case an old installation still has empty values stored in `EXTCONF/lang/availableLanguages` (which has been fixed in #63546), e.g. the language matrix in the "Manage Language Packs" is unusable. This patch therefore removes empty values from the mentioned configuration, as similar solved in the old issue. Resolves: #89772 Related: #63546 Releases: master, 9.5 Change-Id: Id7473e5f17878d84914fec4df629ac6617256b55 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62497 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Tested-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Georg Ringer <georg.ringer@gmail.com>
-
Michael Telgkamp authored
- Pagetree is focusable via tab key - Keyboard navigation with arrow keys inside pagetree is enabled - Implement accessible tree structure for tree nodes (role=tree) Resolves: #86818 Releases: master Change-Id: Ic948fb0de8461a8c5b4b5297b94e5cb94465ec42 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62051 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Georg Ringer <georg.ringer@gmail.com> Tested-by: Richard Haeser <richard@maxserv.com> Reviewed-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Richard Haeser <richard@maxserv.com>
-
Susanne Moog authored
Some change log entries should be documented in extension manuals or in ViewHelpers. The missing docs have been added. Resolves: #89827 Releases: master Change-Id: I6c76dc2d532b151275c60e85feb44f227ca80919 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62515 Tested-by: Daniel Siepmann <coding@daniel-siepmann.de> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Daniel Siepmann <coding@daniel-siepmann.de> Reviewed-by: Georg Ringer <georg.ringer@gmail.com>
-
Daniel Siepmann authored
There were some minor syntax issues within changelog that are now fixed. They prevented: * Rendering of lists * Rendering of code blocks * Rendering of inline code Resolves: #89825 Releases: master Change-Id: Ic272e989e7841eac8c6f04f4819354b0926cd6df Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62510 Reviewed-by: Oliver Bartsch <bo@cedev.de> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Jan Stockfisch <typo3@jan-stockfisch.de> Reviewed-by: Daniel Goerz <daniel.goerz@posteo.de> Tested-by: Susanne Moog <look@susi.dev> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Daniel Goerz <daniel.goerz@posteo.de>
-
Benni Mack authored
Extbase's old signal slot dispatcher / core should not use classes that are not explicitly required for the miminum packages. Resolves: #89823 Releases: master Change-Id: I41f7e378ed3d99e62daebfdd5631ef0234761772 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62508 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Richard Haeser <richard@maxserv.com> Tested-by: Daniel Goerz <daniel.goerz@posteo.de> Reviewed-by: Richard Haeser <richard@maxserv.com> Reviewed-by: Daniel Goerz <daniel.goerz@posteo.de>
-
Andreas Fernandez authored
The issue #89687 introduced a smaller response for page tree nodes by moving sane default attributes to JavaScript and overriding with the actual result. However, this is also done if a new page is created via drag&drop, the attribute get in a mixed state and page tree hurts itself in confusion. The default attributes are now applied only if no DataHandler command is invoked. Additionally, some variables in TreeController were wrongly used, which has been fixed as well. Resolves: #89822 Related: #89687 Releases: master, 9.5 Change-Id: Ia91b02eaf534cb1ce65a09e1c78fa6343630bdcf Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62507 Tested-by: Claus Due <claus@phpmind.net> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Tymoteusz Motylewski <t.motylewski@gmail.com> Reviewed-by: Claus Due <claus@phpmind.net> Reviewed-by: Daniel Goerz <daniel.goerz@posteo.de> Reviewed-by: Tymoteusz Motylewski <t.motylewski@gmail.com>
-
Andreas Fernandez authored
docker-compose is updated to use the latest cumulative update (cu) of MSSQL 2017. Since mssql is probably still eager to fail, its stages are executed at last in the nightly builds now. Resolves: #89826 Releases: master, 9.5, 8.7 Change-Id: Ic1e8195f9b4f90747b5843d03630fd453ebe0bc6 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62511 Tested-by: Anja Leichsenring <aleichsenring@ab-softlab.de> Reviewed-by: Anja Leichsenring <aleichsenring@ab-softlab.de>
-
Benni Mack authored
There are numereous places where reflection is used in our test cases to inject dependencies, however there are methods available doing so, so the tests can be adapted, which will speed up tests. In addition, the $callInaccessibleMethod() function is also replaced by the accessible mock functionality, resulting in faster results than reflection. Resolves: #89824 Releases: master Change-Id: Ia2fc8a8ee4d3b5fc7b0d2de8759a7e5e9ceb7b87 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62503 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Tested-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de>
-
Benni Mack authored
Using the freshly released version 2.6.8 in our packages adds PHP 7.4 support for Fluid Standalone. composer req "typo3fluid/fluid:^2.6.8" Resolves: #89819 Releases: master, 9.5, 8.7 Change-Id: I986b3f8e73e3114af3aef9f65b42c3bf109f9f39 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62504 Reviewed-by: Oliver Klee <typo3-coding@oliverklee.de> Reviewed-by: Benni Mack <benni@typo3.org> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org>
-
Andreas Fernandez authored
Resolves: #89820 Related: #89813 Change-Id: I165dbb813079fbb0f25ac7b1c8ab57f292f73b16 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62506 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Reviewed-by: Susanne Moog <look@susi.dev>
-
Benni Mack authored
The following new PSR-14 events are added: TYPO3\CMS\Core\Configuration\Event\ModifyLoadedPageTsConfigEvent TYPO3\CMS\Backend\Authentication\Event\SwitchUserEvent TYPO3\CMS\Backend\Controller\Event\BeforeFormEnginePageInitializedEvent TYPO3\CMS\Backend\Controller\Event\AfterFormEnginePageInitializedEvent TYPO3\CMS\Backend\LoginProvider\Event\ModifyPageLayoutOnLoginProviderSelectionEvent TYPO3\CMS\Impexp\Event\BeforeImportEvent TYPO3\CMS\Install\Service\Event\ModifyLanguagePackRemoteBaseUrlEvent TYPO3\CMS\Linkvalidator\Event\BeforeRecordIsAnalyzedEvent TYPO3\CMS\Seo\Event\ModifyUrlForCanonicalTagEvent TYPO3\CMS\Workspaces\Event\AfterCompiledCacheableDataForWorkspaceEvent TYPO3\CMS\Workspaces\Event\AfterDataGeneratedForWorkspaceEvent TYPO3\CMS\Workspaces\Event\GetVersionedDataEvent TYPO3\CMS\Workspaces\Event\SortVersionedDataEvent They replace the following "old" signals with a deprecation layer: TYPO3\CMS\Backend\LoginProvider\UsernamePasswordLoginProvider::getPageRenderer TYPO3\CMS\Backend\Controller\EditDocumentController::preInitAfter TYPO3\CMS\Backend\Controller\EditDocumentController::initAfter TYPO3\CMS\Backend\Utility\BackendUtility::getPagesTSconfigPreInclude TYPO3\CMS\Beuser\Controller\BackendUserController::switchUser TYPO3\CMS\Impexp\Utility\ImportExportUtility::afterImportExportInitialisation TYPO3\CMS\Lang\Service\TranslationService::postProcessMirrorUrl TYPO3\CMS\Linkvalidator\LinkAnalyzer::beforeAnalyzeRecord TYPO3\CMS\Seo\Canonical\CanonicalGenerator::beforeGeneratingCanonical TYPO3\CMS\Workspaces\Service\GridDataService::SIGNAL_GenerateDataArray_BeforeCaching TYPO3\CMS\Workspaces\Service\GridDataService::SIGNAL_GenerateDataArray_PostProcesss TYPO3\CMS\Workspaces\Service\GridDataService::SIGNAL_GetDataArray_PostProcesss TYPO3\CMS\Workspaces\Service\GridDataService::SIGNAL_SortDataArray_PostProcesss Relates: #89733 Resolves: #89813 Releases: master Change-Id: I13f2454fd8f4efb5f4c5248d0b839634b77578db Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62422 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Andreas Fernandez <a.fernandez@scripting-base.de> Tested-by: Susanne Moog <look@susi.dev> Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Susanne Moog <look@susi.dev>
-
Jo Hasenau authored
Due to deprecations (in v9) and marking properties from public to protected, some hooks are not as powerful anymore, so special getter methods are provided to overcome this issue. Resolves: #87064 Releases: master, 9.5 Change-Id: I5a05bb8b31c2a9df2801092bd9ead60061bbd15f Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62480 Tested-by: Georg Ringer <georg.ringer@gmail.com> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Georg Ringer <georg.ringer@gmail.com> Reviewed-by: Benni Mack <benni@typo3.org>
-
Benni Mack authored
Tests should be consistent and reflect the way we do things in Core. However, testing framework offers too many different ways to do things, and "_callRef" is one of that. Resolves: #89817 Releases: master Change-Id: I44759df255365d0f90e0928f3f5726b66ecf9f3e Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62493 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Andreas Fernandez <a.fernandez@scripting-base.de> Tested-by: Frank Nägler <frank.naegler@typo3.org> Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Frank Nägler <frank.naegler@typo3.org>
-
- Nov 29, 2019
-
-
Patrick Broens authored
In some versions of PHP there is a PCRE bug, which will be triggered when using an unquoted array syntax in Fluid templates, leading to an error and possibly not able to display the rendered template. This is solved by using the quoted array syntax where it is not used yet. Resolves: #87970 Releases: master, 9.5 Change-Id: I36f4ee86765fae24f7daa0e7e59ff9fc6741144f Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62450 Reviewed-by: Rens Admiraal <rens@simplyadmire.com> Reviewed-by: Alexander Schnitzler <review.typo3.org@alexanderschnitzler.de> Reviewed-by: Claus Due <claus@phpmind.net> Reviewed-by: Benni Mack <benni@typo3.org> Reviewed-by: Susanne Moog <look@susi.dev> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org> Tested-by: Susanne Moog <look@susi.dev>
-
Benni Mack authored
TYPO3 Core now requires at least doctrine/annotations 1.7, effectively helping to upgrade to PHP 7.4. Resolves: #89812 Releases: master, 9.5 Change-Id: I8ca951711bbcb19d935baad67ff69705d8e51aa2 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62498 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Benni Mack <benni@typo3.org>
-
Benni Mack authored
The normalizedparams middleware is not executed in the install tool anymore, which is added by the NormalizedParamsAttribute middleware. In addition, the NormalizedParams class now contains factory methods for building up NormalizedParams based on $_SERVER or a PSR-7 request object. Resolves: #89808 Releases: master Change-Id: I1b3713ba22f100f652d746ae15f58f9024808ef1 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62494 Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Georg Ringer <georg.ringer@gmail.com> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Tested-by: Georg Ringer <georg.ringer@gmail.com>
-
Tymoteusz Motylewski authored
In order to lower response size (by 40-50%) of the page tree controller several page tree item properties are only sent when they have non-default values. Resolves: #89687 Releases: master, 9.5 Change-Id: I65ef2b21c71041994ea86d09d1b989b4515e2e42 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62329 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Richard Haeser <richard@maxserv.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Richard Haeser <richard@maxserv.com> Reviewed-by: Benni Mack <benni@typo3.org>
-
Susanne Moog authored
Resolves: #89373 Releases: master Change-Id: I5ee8789c43c681d1bed310a74e5947a78130f82e Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62492 Tested-by: Andreas Fernandez <a.fernandez@scripting-base.de> Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Andreas Fernandez <a.fernandez@scripting-base.de> Reviewed-by: Benni Mack <benni@typo3.org>
-
Andreas Fernandez authored
If a preview is opened via the TYPO3 backend, the opened window has the name `newTYPO3frontendWindow` to ensure only one preview window is open. However, if somebody changes in such window into the TYPO3 backend, the window name is not changed, causing that such preview links are opened in the same window again. This patch resets the window name before a preview is opened to ensure that previews are always opened in a new window. Resolves: #89805 Releases: master, 9.5 Change-Id: Ib4b31e78da21befc27c50ea3d49762f2a81fe029 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62491 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Susanne Moog <look@susi.dev> Tested-by: Daniel Goerz <daniel.goerz@posteo.de> Reviewed-by: Susanne Moog <look@susi.dev> Reviewed-by: Daniel Goerz <daniel.goerz@posteo.de>
-
Susanne Moog authored
Resolves: #89806 Releases: master Change-Id: I587bda0e8101d963e6e8c2bfc72f7f1cb3632243 Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/62490 Tested-by: TYPO3com <noreply@typo3.com> Tested-by: Benni Mack <benni@typo3.org> Reviewed-by: Benni Mack <benni@typo3.org>
-