Prevent Clickjacking in CSRF error page
(cherry picked from commit 6026c9dabdd66a154c8a9a5170947ea098959835)
Fixed it so it will validate that it is an image uploaded and not something else
Fix saving the CRL choice for OpenVPN clients. Fixes #8088
(cherry picked from commit 5bd94e5f2e3a4b694e3cfa91d16dab76078c118b)(cherry picked from commit 2055285920b2714b7115911e0a0ea723256e5b2f)
Detect when system is running a newer version than the one available on remote repository
Fix #7946: Display installed packages missing on remote repo to let user to delete it
Reindex the user and group arrays after deleting items, to avoid operating on incorrect array entries. Fixes #7733
(cherry picked from commit 92c27793b4c7f87e89aec3faec5582c17502d6d5)(cherry picked from commit 106de6365c7407f2325d5b3e07625620c10436d0)
Do not print JS when there are input errors on diag_dns.php; fix json_encode syntax. Ticket #7999
(cherry picked from commit f32e9531ae21852ef0b21709b8278d1091d55d56)
Add support for copyright notice
Encode hostname parameter contents in javascript for diag_dns.php. Fixes #7999
(cherry picked from commit 43746e1b4ef6fec0e9c915495aa3926a6b97e7a3)
Welcome 2.3.5-RC
fixed indentation:
fixed weird merge issue
Fixed #7714 Edited it to show correct timezone
(cherry picked from commit fe814d92aae5c53305d484480fa403299a39541a)
Fix #7976: Do not add button value to gettext
Do not show Serial when it's empty
Helped make the ajax more robust to check for non json return types
Revert "Added JSON checks for widgets to prevent parsing errors."
This reverts commit e63aee854214c93fd0cba71f7023c194942c1ca9.
Added JSON checks for widgets to prevent parsing errors.
(cherry picked from commit 63f686bde3e95eed8d2223d00e5f6403a5ef2d4c)
xmlrpc, webgui, prevent that a xmlrpc.lock is placed that is never unlocked, thus hanging php and the webgui after a few more sync request are trying to acquire the lock and all are waiting..
(cherry picked from commit 8239af2dc167fd865818a29b4e01d7e464d564d3)
Remove no-op code
See https://redmine.pfsense.org/issues/7889 for related discussion
(cherry picked from commit 401e2ac783756e22ab738d28c0f170455f00e2ff)
(cherry picked from commit cbbb8fdb62fc75bfac28b26a867ceceee982b5aa)
Fixed #78962.3 is slightly different than 2.4 with different variables so thisfix is different than the 2.4 version.
roll back for 2_3 for picture widget
Fixed #7896Handled the case where there is no picture and made it simpler to loada picture.
(cherry picked from commit dc91c9490a61c374b4358a3a328019f3e0e150ab)
Fixed #7714Added JS code to formate the date/time for UCT
(cherry picked from commit 893b609111be502233a7a4ad6804fff1e4779a03)
Fixed #7921
(cherry picked from commit 5fce3e8e905c3a2029475293cf760ee2c2a51074)
Fix PPP log reference in status.php
(cherry picked from commit 35e5c404ef0d03d40eeac7f5a33f43da0d3ac6fc)(cherry picked from commit 69ed1107fac3c256695d9c1ba4fb684a328a6faa)
Don't call widget callback function if no data is returned
remove old logo from default page
make css compatible with newer nvd3 version
update top nav bar logo
remove image from rss widget
update favicon
Fixed #7811
Fixed #7804Replace Math.trunc with Math.floor to make IE happy
Captive portal: fix idle times in details popup
Explicitly cast $idle_time to integer.
(cherry picked from commit 07df3494bd9a508e568b4ae999369ec8b2d14ec2)
When saving a GIF interface, do not allow the user to enter a subnet directly in the address box. The subnet is determined by the "GIF tunnel subnet" drop-down. Fixes #7789
(cherry picked from commit 6d028dc26c129ce1b0b25551142819772664f1e5)(cherry picked from commit c7fd6ec9b196b0d7c37d14dad13f745dab82420d)
fixed #7795By changing var name to no longer conflict with ipsec widget
(cherry picked from commit 3ed475b11dfcb2999a71195987495ccf05808127)(cherry picked from commit bc2772c18ef2aa9a32b941fcf79c0c160fad7666)
Eliminate unused functions from functions.inc.php
Backport 2.4 getstats format for ease of maintenance
Fix system information widget display order
Avoid JS error by always rendering mobile ipsec DIV, even if empty
Fixed JSON format in IPSec widet per Kill Bill (Thanks!)
Interfaces menu "(Assign)" -> "Assigments" Add support for menu divider bars
Revise CPU load display to eliminate sleep in AJAX call
No longer experimental so comment removed
Speedup package related calls to get_pkg_info() since now we have a script that update metadata periodically
DOn't automatically update CIDR masks if the selector is disabled
Hide dashboard update period control. No longer needed with central refresh system
Convert firewall logs widget to centralized refresh system
COnvert thermal sensor widget to central refresh system
COnvert dyndns widget to central refresh system
Added refresh icon to version display
Add refresh icon to system info widget version display
Show user when pkg metadata was updated
Remove dead code using in the past to migrate from pfSense-repo-devel to a single pkg called pfSense-repo
System info widget prepared for background version checks
COmpleted conversion of dashboard widget to ventralized refresh system
Re-wrote ipsec widgt to return JSON formatted AJAX data
First part of dashboard update system
Adding widget and login css files
New login design back-ported from 2.4
Change IPsec widget tunnel status to handle newer strongSwan childid format. Fixes #7499
(cherry picked from commit 4de753e52d8bbc732f23f90dd77df1707fbc3912)
pfSense 2.4 setHelp syntax was applied to v 2.3 - arguments should be provided in an array
Fix #7625: Auto select '128' as mask for IPv6
Use correct wording for menu entry "Reset All States" in "System/Advanced Network"
(cherry picked from commit ee7bdbe69b873544b960c159386971af42cba52d)
Add GUI entry for ip_change_kill_states in Network/Advanced (See #1629)
(cherry picked from commit 66a405929e61938c036005cca8fde0ba17554a27)
Merge pull request #3774 from phil-davis/sort-if-names-RELENG_2_3
Trafficshaper, show interface names for disabled interfaces, dont just show a kinda 'empty' spot..
(cherry picked from commit 725aee3f19ea01d48f14e65ac60e4189218b3834)
Correct typo's as per Jim's request
(cherry picked from commit 3e86fa9913091ded202854a931fa02320f7fa1a0)
Add Option to use static IPV6 over v4 parent ( PPPoE
A new option when setting a v6 static on the WAN to allow the connection to use the V4 interfaces i.e. PPPoE
(cherry picked from commit b73313837b9efe6021fe7841adf6e837a89607a1)
typo
"Networked" not "network" - "Internet of Things" especially.
(cherry picked from commit d751dee379b37da868efa837df55434935efe9b8)
grammar fix
(cherry picked from commit 94ef78afa96f1870b453fab670754c01c6161665)
format %1$s etc in help
(cherry picked from commit ef77e40e0c7b861cc268cd1f0e30600f573b807e)
Improve the HELP note about what will/won't work if TLD is set to ".local"
For example, some people won't use mDNS and won't know other things might break; also it's not clear that while ".local" is a problem, ".local.lan" isn't.
(cherry picked from commit b45746a37c2a571553fec2cae0f07d5e68eacc47)
Add support for IPv6 AUTO_LINKLOCAL flag on bridge interfaces
(cherry picked from commit b060e08c9dd701b56b5163321b5e9a79f90b1f23)
Use attribute rekey_enable as usual but optionally allow to set margintime if rekeying is not disabled
(cherry picked from commit 376e6f6719e6463913045b233ca90d69254057ff)
Fix indent of if-block
(cherry picked from commit 9d472f01c31f2b56a95631dcd4f49e4685f55ea6)
Check if margintime is numeric and smaller than P1 lifetime
(cherry picked from commit af729f53f3c838f91dffb6368b656ddece527e05)
Hide margintime if rekeying is disabled
(cherry picked from commit e18ddb38449b6463fabf5782284b206a355dbad7)
Add strongswan rekeymargin attribute to vpn ipsec phase1 view
(cherry picked from commit 9542011684a26e0b1b959d9b56d5fcfc12023893)
dhcp6c Advanced Config prefix interface
Currently, when using dhcp6c advanced configuration the prefix interface is WAN, this is not very useful!
The changes here allow the user to select the interface that the PD will be applied on..
(cherry picked from commit 58a185aede55efe71cabc337938ed05f456eecea)
dns, allow deleting last row for "Additional Names for this Host"
(cherry picked from commit f6cf3687d21c6ca6ba7a25605fafe249f866b439)
Restructure how unbound zone data is written to fix processing of "redirect" zone entries. Fixes #7690Also corrects some other misc issues for formatting of zone data.While here, add an option, not exposed in the GUI, for users to get the previous behavior of defining short names for hosts.
Improve the way the auth server list is generated and account for a key being removed from the array when deleting. Fixes #7682
Remove extra spaces from User Agent
Send uniqueid instead of UUID on user-agent
Move uniqueid read to a function system_get_uniqueid()
Add user option to sort interface names RELENG_2_3
Signed-off-by: Phil Davis <phil@jankaritech.com>
Update diag_gmirror.php
Fix typo
(cherry picked from commit 55588e0ce32865568522e0afd0b577fdfabd3b74)
Issue #7659 foreach warning on adding gateway RELENG_2_3
Signed-off-by: Phil Davis <phil@jankaritech.com>(cherry picked from commit 5c88dacbc259c668899d8127e9ad1ec74d12e565)
Fix interface groups link
Add more checks to eliminate empty config tags in package settings. Fixes #7624
Add input validation for interface names on firewall_nat_edit.php and fix encoding of the interface name in dst_change. Fixes #7651
Fix handling of the 'type' parameter so it is validated and encoded on diag_table.php. Fixes #7652
Prevent the filename from being used to run XSS in the diag_edit.php file browser. Fixes #7650
Change paid support help link to new support URL
Restore the captive portal feature to view the captive portal page directly from the portal web server. Add this as an additional button so both methods are possible. Fixes #7646
Redact BGP MD5 password/key in status output. Fixes #7642
(cherry picked from commit aa18c5b9b62e110ebf88fbb24c39c2a13813bd89)
Various updates to PR
1) convert echo to print, and add infobox, as requested in PR comments2) If no identifiable line number, say so3) EVAL gives an error message format that wasn't picked up, it is now. Test case - enter as the code: eval("X");4) Warn that EVAL gives a "spurious" "error at line 1" as well, the real error is in the (...). See above test case for this....