Commit
- Loading branch information
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -11,7 +11,7 @@ | |
<?php $this->widget('yiiwheels.widgets.switch.WhSwitch', array( | ||
'name' => 'surveyPreview_require_Auth', | ||
'id'=>'surveyPreview_require_Auth', | ||
'value' => getGlobalSetting('surveyPreview_require_Auth'), | ||
'value' => Yii::app()->getConfig('surveyPreview_require_Auth'), | ||
'onLabel'=>gT('On'), | ||
'offLabel' => gT('Off'))); | ||
?> | ||
|
@@ -24,24 +24,42 @@ | |
<?php $this->widget('yiiwheels.widgets.switch.WhSwitch', array( | ||
'name' => 'filterxsshtml', | ||
'id'=>'filterxsshtml', | ||
'value' => getGlobalSetting('filterxsshtml'), | ||
'value' => Yii::app()->getConfig('filterxsshtml'), | ||
'onLabel'=>gT('On'), | ||
'offLabel' => gT('Off') | ||
)); | ||
?> | ||
</div> | ||
<div class="help-block"> | ||
<span class='text-success'><?php eT("Note: XSS filtering is always disabled for the superadministrator."); ?></span> | ||
</div> | ||
</div> | ||
|
||
<div class="form-group"> | ||
<label class=" control-label" for='disablescriptwithxss'><?php eT("Disable question script for XSS restricted user:"); ?></label> | ||
<div class=""> | ||
<span class='hint'><?php eT("Note: XSS filtering is always disabled for the superadministrator."); ?></span> | ||
<?php $this->widget('yiiwheels.widgets.switch.WhSwitch', array( | ||
'name' => 'filterxsshtml', | ||
'id'=>'filterxsshtml', | ||
'value' => Yii::app()->getConfig('disablescriptwithxss'), | ||
'onLabel'=>gT('On'), | ||
'offLabel' => gT('Off') | ||
)); | ||
?> | ||
</div> | ||
<div class="help-block"> | ||
<span class='text-warning'><?php eT("If you disable this option : user with XSS restriction still can add script. This allow user to add cross-site scripting javascript system."); ?></span> | ||
This comment has been minimized.
Sorry, something went wrong.
This comment has been minimized.
Sorry, something went wrong.
This comment has been minimized.
Sorry, something went wrong.
Shnoulle
Author
Collaborator
|
||
</div> | ||
</div> | ||
|
||
|
||
<div class="form-group"> | ||
<label class=" control-label" for='usercontrolSameGroupPolicy'><?php eT("Group member can only see own group:"); ?></label> | ||
<div class=""> | ||
<?php $this->widget('yiiwheels.widgets.switch.WhSwitch', array( | ||
'name' => 'usercontrolSameGroupPolicy', | ||
'id'=>'usercontrolSameGroupPolicy', | ||
'value' => getGlobalSetting('usercontrolSameGroupPolicy'), | ||
'value' => Yii::app()->getConfig('usercontrolSameGroupPolicy'), | ||
'onLabel'=>gT('On'), | ||
'offLabel' => gT('Off'))); | ||
?> | ||
|
@@ -57,7 +75,7 @@ | |
<div class=""> | ||
<?php $this->widget('yiiwheels.widgets.buttongroup.WhButtonGroup', array( | ||
'name' => 'x_frame_options', | ||
'value'=> getGlobalSetting('x_frame_options'), | ||
'value'=> Yii::app()->getConfig('x_frame_options'), | ||
'selectOptions'=>array( | ||
"allow"=>gT("Allow",'unescaped'), | ||
"sameorigin"=>gT("Same origin",'unescaped') | ||
|
@@ -75,7 +93,7 @@ | |
<div class=""> | ||
<?php $this->widget('yiiwheels.widgets.buttongroup.WhButtonGroup', array( | ||
'name' => 'force_ssl', | ||
'value'=> getGlobalSetting('force_ssl'), | ||
'value'=> Yii::app()->getConfig('force_ssl'), | ||
'selectOptions'=>array( | ||
"on"=>gT("On",'unescaped'), | ||
"off"=>gT("Off",'unescaped') | ||
|
8 comments
on commit ae8a6cb
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This feature has no acceptance tests and should be reverted.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why was it merged?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@olleharstedt sorry, but … #1364
And … more and more complex to add new feature on LS ? Maybe time to fork and stop contribution …
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
And … more and more complex to add new feature on LS ? Maybe time to fork and stop contribution …
If our new workflow doesn't work, we should reevaluate it. But we have to try it first. If we continue like before, we will have the same instability as before. We should test the new workflow with scenarios, acceptance tests, regular releases. Then we'll crunch the numbers and see if the stability went up. Maybe we have to reach a compromise if contributors hate it or come up with something new. I hope this makes sense to you. We need to discuss internally (and on IRC, perhaps) what "regular releases" means. I gave you some details on Zulip. I definitely want to get away from large releases with tons of regressions, and also from "feature freeze". We can talk more about it later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Or maybe LS GmbH should do some of the work of a PR, depending on how requested the new feature is.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I mean : The 2st pull request done for this feature are #1358
And here : about acceptance test : i don't want to do a Admin Gui edition acceptance test for this single option.
Give me a working admin gui question edition acceptance test … before.
I can do with import, but how to check JS is here or not … must find a way.
And currently : this part of feature are not totally made : need XSS for admin and Question script management.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Give me a working admin gui question edition acceptance test … before.
This is a reasonable request, I think. Contributors should have access to example tests they can copy and paste from, to make it easy to add new tests.
And currently : this part of feature are not totally made : need XSS for admin and Question script management.
Right.
@Shnoulle I am sorry but I have no clue what you want to say here. Can you please give me an explanation in French and I will try to correct the string?