Mahara 1.6.0

Milestone information

Project:
Mahara
Series:
1.6
Version:
1.6.0
Released:
 
Registrant:
Melissa Draper
Release registered:
Active:
No. Drivers cannot target bugs and blueprints to this milestone.  

Download RDF metadata

Activities

Assigned to you:
No blueprints or bugs assigned to you.
Assignees:
3 Alan McNatty, 2 Chris Wharton, 6 Christopher Tombleson, 35 Hugh Davenport, 4 Jiri Baum (Catalyst), 11 Kristina Hoeppner, 1 Matt Kolb, 3 Melissa Draper, 1 Mike Kelly, 17 Richard Mansfield, 1 Ruslan Kabalin, 2 Simon Story, 44 Son Nguyen, 1 Stacey Walker
Blueprints:
3 Implemented
Bugs:
129 Fix Released

Download files for this release

File Description Downloads

Release notes 

Mahara 1.6.0 Release Notes

This is a stable release of Mahara 1.6. Stable releases are fit for
general use. If you find a bug, please report it to the tracker:

https://bugs.launchpad.net/mahara/+filebug

This release includes an upgrade path from 1.0. If you wish to
upgrade, we encourage you to make a copy of your website and test the
upgrade on it first, to minimise the effect of any potential
unforeseen problems.

Changes from 1.5:

Theming

    A new "responsive theme", designed to work fluidly on many screen sizes; especially mobile devices
    Members of multiple institutions can decide which theme to use
    Basic support for theming logged-out users

Pages and blocks

    Option for images to be resized at upload time
    Ability to add journal entries directly from a page
    Tagged journal entries block can show full entries

Copying and sharing

    Collections can be submitted to groups
    Mobile uploads support multiple devices
    Mobile API support for journal entries and attaching files to journal entries
    Mobile API support for syncing messages, tags, files, and journals

Usability and documentation

    Breadcrumbs in small headers are visible at all times
    New "Unpublish" button for journal entries
    Optional "Clean URLs" for user profiles, portfolio page, groups and group pages with support for subdomains

Groups

    More sorting options on member's listing in a group
    Collections are available for groups, institutions and on the site level
    Group information expanded to include number of forums, topics and posts
    Group admins can enable and view participation reports within groups
    Editability of group content can be limited with a start and end time
    Pagination for forum topics

Admin tools

    Statistics for institutions and more statistics at the site level
    Cron error message appears red for visibility
    Option to add institution staff rights during registration approval
    Configurable SafeIframe site list
    Option to allow self registration process for users authenticating via Persona
    Cron can poll an imap inbox for mail bounces
    Option to allow local customisation of "Edit site pages" list
    "User search" in the admin area links to profile pages

Changelog 

View the full changelog

Replace the call removeElement() in filebrowser.js (bug #1057846)
Fix issue with full screen tinymce on default theme
Fix alignment of tinymce to fit in firefox
Fix Leap2A import from Moodle
Update Makefile for new gerrit syntax
Escape pieform errors displayed to users
Escape user uploaded SVG files
Fix Click-Jacking attack on account deletion page
Fix up old file permissions to remove executable
Escape user uploaded XHTML files
Fix saved file permissions
Remove clamav from site admin options
Update the 'editmeta' value when change owner (bug #1060495)
Correct capitalization of "Collections" (Bug 892959)
Fix group upload csv (Bug #1055859)
Fix pagination on statistics to work with nonadmins
Check if the Mahara installed before access the database table (bug #1057226)
Add option to disable device detection
Fix: the <link> tag in HTML should have no end tag (bug #1052062)
Add support for multiupload clamav scanning
Correct punctuation
Fix width of responsive menu (Bug #1052071)
Fix theming issues
Update licence header of Image/Canvas/Color.php to match upstream
Change message in HTML export when pages have duplicated titles
Bug #1050292: Fix pagination for viewing blogpost artefacts
Fix 'newforumpostnotificationsubjectline' and 'replyforumpostnotificationsubjectline' strings
Fix XML Security bug
Mark file/folder name as a required field (bug#1036990)
Display "Editable" dates on /group/mygroups.php (bug #1048425)
Update test cases for 1.6 (bug #1034249)
Fix a few alignment issues
Add extra div to externallink login divs
Undefined index: 'tabs' warning after editing a file or folder (Bug
Fix the error when attempting to add saml auth with 'create users' checked
Fix the authentication warning for registration (bug #1043015)
Fix group information display regression, following Bug #1045722
Allow users to choose institution themes for browsing if in multiple institutions (Bug #793308)
Group editability - fix lang string, positioning (Bug #1045722)
Fix minor lang string mistakes (Bug 892959)
Reorder auth plugins so browserid comes first
Fix display all wall to show all posts (bug #1046763)
Fix instiutution selector on statistics page
Responsive Design: hide html editing for mobile device,
Fix the profile block height
Fix a few theme issues
Fix a few PHP warning, Bug #1034172
Use institution display name (Bug #941551)
Blog post with only images or allowed embed codes cannot be submitted (Bug #1023630)
Use mb_ funcs on new usernames with diacritics. (Bug #1026618)
Rename BrowserID to Persona (bug #1030033)
Better i18n for group editability date window strings (Bug #1017354).
Use the correct date format for group edit window.
Reword administration menu title (bug #1037450)
Fix institution menu (Bug #1045234)
Correct capitalization of "coll." & "inst." (Bug 892959)
Fixed misspelling of administrators per bug #1017903
Correct 2 minor lang strings (Bug #1044822)
Registration reason textbox is missing (bug #1030664)
Make admin navigation more consistent (bug #1037450)
Remove the 'Upload' button when inserting images into a page (bug#1030665)
Account settings page hangs with mobile uploads enabled (Bug #1037420)
Responsive Design - hide 'Print' and disable 'Export' functionality
interaction/forum: Theme update
Theme update for blocktypes
artefact/comment: Theme update
artefact/resume: Theme update
artefact/plans: Theme update
artefact/internal: Theme update
artefact/file: Theme update
artefact/blog: Theme update
theme/ultima: Theme update
theme/sunset: Theme update
theme/primaryschool: Theme update
theme/fresh: Theme update
Device detection for responsive design
theme/default: Theme update
theme/custom: Theme update
theme/aqua: Theme update
theme/raw: Theme update
Minor theme changes
Add a Javascript library to help with Responsive Design
Responsive Design: Do not display tinyMCE for mobile
Device detection - layouts for mobile devices
Device detection - do not display dropdown menu and admin menu
Device detection - setting session variables
Add CleanURLs to Admin home (Bug #1031524)
Change "Available" to "Editable" in group (Bug #1041639)
Update wording for resizing images (Bug #1038993)
Make remote username descr. more generic (Bug 1039011)
Make lang string for mutliple journals consistent (Bug #892959)
I18n for descriptions of group edit window dates.
Correct spelling of "occurred" (Bug #1034726)
Add help for mobile upload token (Bug #1033459)
Expand "Suspended users" to include expired (Bug #1037632)
Fix folder link in group/institution file area (Bug #1034183)
Swap multiple journals hidden option to disabled instead of ignored
Add string for seperating time and date (Bug #1017354)
Check the BrowserID connection before enable it (bug #1015912)
Folder should not be deleted if containing submitted files or subfolders
Extracting a zip file should not be carried out if its folder has been in submitted pages
Remove 'Add one' link if user don't have permission to edit group collections
'Create one' link in collection navigation block should create a group/institution/site collection while editing a group/institution/site page.
Fix collection nav when clean urls enabled (bug #1036020)
Fix param_ bugs for numerous fields in sync/upload (Bug #1032420)
Fix selenium tests to run on master (Bug #1034249)
Allow deleting of institutions in mysql (Bug #1034268)
Text box should be locked upon submitting it to a group (Bug #1015381)
Fixing login issue (Bug #1030826)
Enable Unicode filename for exporting HTML (Bug #996172)
Create new branch with 1.5_STABLE changelog
Fix errors when mobile upload not enabled (Bug #1032414)
Allow deleting of views (bug #1034223)
Fix unrecoverable error when displaying wall (Bug #1034204)
Enhance tagged posts block - show full entry or summary
Date limits for groups (bug #1017354) - obey limits
Date limits for groups (bug #1017354) - view/edit
Date limits for groups (bug #1017354) - date/time
Date limits for groups (bug #1017354) - add fields
Add cron job to poll an imap mailbox for bounces
Changes for Mobile API v2 (Bug #1032420)
Mobile upload token changed to a multitext field (Bug #1032414).
Ensure user loses session when password hash upgraded
User cannot edit their own collections (bug #1032015)
Make Group name clickable in admin interface per bug #1030062
Fix graphs of institution stats
Add site option staffstats
Allow viewing of institution statististics by staff
Change "Recent activity" to "Inbox" (Bug #1030161)
Fixed install errors (Bug #1029230)
Creating object from empty value (Bug #1030695)
Paginate forum posts in a topic (Bug #992905)
List posts page by page (Bug #992905)
Update column 'path' when adding a new topic or post (Bug #992905)
Add column 'path' to table interaction_forum_post (bug #992905)
Sanitize links in links and resources menu (bug #1009774)
Json-encode login form when injected by js (bug #1009784)
Patch XSS vulnerability in Insert/Edit Image in Edit blog
Add display_default_name dwoo plugin (bug #1009777)
Array to string conversion (Bug #1029231)
resizeuploaduseroption config throws errors on the journal post edit page
Warning when deleting a profile picture (Bug #959926)
Refactor login form elements (bug #1023834)
Correct minor spelling mistakes (Bug #892959)
Change login redirection for clean urls
Reword institution statistics page when no institutions
Change string for institution statistics
Change lang string for historical statistics
Enhance tagged posts block - restrict tags
Enable group collections tab for all group members (Bug #886080)
Deleting files copied from another user causes deleting the original files
Change the order of "Next" and "Cancel" buttons (bug #1026428)
"Edit" button doesn't work for files in "Files to download" (Bug #1012846)
Change browserid login URL (Bug #1024255)
New facebook logo change gives debug message in error logs
Remember current page when changing limit (Bug #1017280)
Do not display empty extra login container (bug #1023791)
Correct lang string for site-level page (Bug 886080)
Disable "Show online users" in "Administer institutions" if admin disallows
Add a static Mahara logo that can be picked up by Facebook Bug#900529
Theme update from master
Fix lang strings for copy page / collection functionality (Bug 886080)
Add config for participation reports, default to off (bug #1018711)
Manually and automatically copying of institution and site collections (Bug #886080)
Show the lang string "Copying is allowed" for collections (Bug #886080)
Fix the bug when copying a collection from another user (Bug #886080)
Fix lang string not requiring re-translations (Bug 892959)
Change lang strings in Edit access (Bug #886080)
Enable Navigation block for group, institution and site collections (Bug #886080)
Fix up lang strings in statistics
Copy institution views and collection to the new member's portfolio (Bug #886080)
Copy site views and collections to the new user's profile (Bug #886080)
Copy site collections for the new group (Bug #886080)
Add new parameter to template creation functions (Bug #886080)
Enable collections in groups and institutions (Bug #886080)
Add 2 new fields: "group" and "institution" into the table "collection"
Fix a bug in Collection::_construct($data)
Participation reports for groups (bug #1018711)
Remove Strings from cpd from core.
Refactor csv download code
Show all institution registration statistics by default
Show only numeric and non version statistics
Center table in statistics when no summary
Added statistics language strings
Add institution comparison stats page
Add registration and historical stats for entire site
Add historical page for institution statistics
Add registration statistics page for institutions
Allow exporting statistics as CSV file
Add dropdown selector for number of statistics
Add institution statistics page
Store daily institutional stats
Add cron job to store institution stats
Allow staff to view site statistics
Add more statitics to institution stats
Add function to get institution statistics
Store weekly registration data in local table
Add blog post directly from a page (bug #792645)
Insert fewer rows per query in MySQL textbox upgrade (bug #1018590)
Json-encode strings in resume javascript
Add Request to list of group options (bug #970439)
Remove plans block javascript from template (bug #1002168)
Use get_all_blocktype_javascript in 5 files:
Group collections and views in the submission drop-down (bug #786389)
Add optgroups to pieform select element
Use View::get_views_and_collections for submission lists (bug #786389)
Filter by submitted views in View::get_views_and_collections
Fixed undefined index "urlid" (Bug #1011861)
Add SAML config error for autocreation & registerallowed (bug #1003980)
Add required db fields for 'resize images on upload' feature.
Add language and help files for 'resize images on upload' feature.
Add option to set default user setting for 'resize images on upload'.
Display 'resize images on upload' option in filebrowser form element.
Add 'resize images on upload' support to filebrowser pieform element.
Add dedicated image resizer class.
Resize Large Images On Upload
Add spans and classes to pieform element pre- and post-html
Move lang string "addone" from artefact/blog to mahara
Show submission information on collection index page (bug #786389)
Disallow editing and deletion of submitted collections (bug #786389)
Get the details of the entity a collection is submitted to
Modify release form to release entire collections (bug #786389)
Handle collection submissions in view/submit.php (bug #786389)
Bug#1012924: 'Copy page' should always copy to user's
Add a function to release a submitted collection (bug #786389)
Allow required activity parameters to be specified as strings
Separate db-specific parts from View::release
Deal with collections in submission forms (bug #786389)
Fix group tab on site stats page (bug #1015884)
Add submission properties to Collection class (bug #786389)
Add submission fields to collection table (bug #786389)
Display plans in alphabetical order (Bug #1011796)
Move strftimenotspecified string to langconfig
Fix active topics query with multiple forum ids (bug #1014924)
Avoid cross-domain ajax requests from user subdomains (bug #1006634)
Use subdomain URLs on Settings and Edit view pages (bug #1006634)
Allow html to appear directly after an element in pieforms
Allow login redirect to subdomains (bug #1006634)
Add a function to get the servername from the request
Always use wwwroot to generate the cookie domain (bug #1006634)
Add clean URL "User subdomain" option (bug #1006634)
Remove unnecessary variables and functions in collection module
The collection id is required when editing an existing collection
Remove the redundant use of get_record_select() for getting collection info from database because Collection::_construct() will do this
Remove the use of hsc for TITLE in collection/index.php because this will be escaped in the template.
Remove use of bitwise assignments on boolean values
Change warning/error messages to one div
Fixed undefined properties (Bug #1011888)
Add read message icon to block and inbox for user messages (bug #852956)
Remove join_institution call on browserid user creation (bug #1011355)
Add a reminder for $config->version in lib/version.php
Fix malformed 'display page' urls when cleanurls are enabled
When changing urlid on the settings page, force a page reload
Add an option to stop users from editing their profile urls
Fix malformed block pagination urls when clean urls are enabled
Delete urlids when deleting users and groups
Use clean group url for notification after adding a user to a group
Use clean group urls in redirect after editing group homepage content
Remove unused ownerlink dwoo variable
Use clean group urls on view access page
Use clean group url for redirect after editing group hompepage access
Use clean group url in 'you have submitted this view...' message
Use clean group urls on group topics page
Use clean profile urls on the view access page
Use clean urls in tagged posts block
Use clean urls on share page
Use clean profile and group urls in the artefactchooser
Use clean profile urls in forums area
Use get_user_for_display in View::get_owner_object()
Use clean profile urls on the users tab of the site stats page
Replace miscellaneous hardcoded view urls
Use clean urls on notes page
Use clean urls in watchlist block
When releasing a view, redirect to the clean group or view url
Use clean urls on the view submission page
Use clean urls in admin stats area
Use clean urls for views listed on my friends page
Don't fetch views on staff, online users lists unnecessarily
Collect url information and display clean urls in collections
Two minor optimisations to get_extra_view_info
Use clean urls in profile sideblock
Replace hardcoded urls on choose template page
Use clean urls on view/artefact.php
Let can_view_view take a View object
Use clean urls elsewhere in lib/view.php
Use clean urls in view access notifications
Deal with institution views in formatted_owner()
Use full url in togglewatchlist link
Use clean urls in watchlist notifications
Use clean view urls on tags page
Use View::get_url() to generate view urls in view listings
Display clean urls on Portfolio->Pages aka My Views
Generate view urls in get_extra_view_info
Use clean urls in View::get_url() function
Use group_homepage_url for group links when url is available
Use clean urls for view owners after running view_search
Use profile_url when data is easy or inexpensive to fetch
Use clean profile urls on sendmessage, denyrequest pages
Use clean profile urls when data is already available
Use group_homepage_url when data is easy/inexpensive to fetch
Remove unused 'returnto' element from view submission form
Use clean group urls on find/my groups
Fix noisy log message from local_header_top_content and productionmode
Add more info on page submission consequences (Bug 985410)
Cut down on similar failed notification notifications (bug #1009301)
Don't recursively notify admins about notification exceptions (bug #1009301)
User search link to user profile (Bug #981987)
Add workaround for extra blogs that are hidden via old data etc (bug #942239)
Remove misleading comment
Find profiles, group homepages, and portfolio pages by urlid
Allow users to edit clean urls
Allow html to appear between label and element in pieforms
Add admin page to generate clean URLs
Split locale-setting code out of current_language function
Autogenerate clean urlids for new users, groups, and portfolio pages
New function for generation of clean urlid fields
Add clean url configuration options to config-defaults (bug #1006634)
Add urlid fields to usr, group, and view tables
Add config option to allow users to change their theme
Add support in User for theme preference
Gather themename, logo & stylesheets together in User object
Expand group info to include number of forums and posts Bug#900652
Load jquery on every page (bug #1006213)
Have more sorting options on member's listing in a group Bug#781990
Initilization the property 'artefactplugin' of BlockInstance
Add new function get_all_blocktype_javascript
Add warning at top of screen when in testing mode
Add button class around external login links
Add a label to the extra login links
Add divs around login form
Add support for a generic pieform container
Use consistent ordering in plans, blog blocks
Remove duplicate rows
Be flexible in the number to results shown on a page Bug#781989
Preserve registration 'extra' values during approval (bug #1001064)
Don't write logged out user preferences to the db (bug #1001064)
Add local hooks for registration and user initialisation (bug #1001064)
Include "Unpublish" button for published blog posts Bug#605730
Allow local customisation of the "Edit site pages" list (bug #999464)
Ensure users are automatically created by browserid authentication
Add ability to register with a BrowserID (bug #986004)
Add a minaccept test for missing space in "){"
Fix minaccept test for opening bracket following an if statement
Request browserid javascript file from head element
Delete "Institution" from 2nd level menu item (Bug #998940)
Pieform element for an array of text fields (bug #997834)
Don't run pluralrule string through sprintf (bug #996987)
Template markers on frontpage (Bug#883377)
Rename unzip button (Bug#914573)
Assign staff permissions during registration approval (bug #982670)
Add more info to cron message (Bug 987115)
Fix problem with '/' in email addresses (bug #994370)
Fix requirement for $_ENV by using getenv (Bug #993710)
Check image file exists in db (bug #992930)
Don't require reason for registering with weautocreate
Split the registration form into js and form
Move the registration form into a library function
Remove email verification in registration with approval (bug #918431)
Move registration reason field to register form (bug #918431)
Call pieform before smarty on the register page
Apply element classes to description line in pieform table renderer.
Missing text about how many pages can be displayed Bug#969794
Change version of safe iframe sources upgrade (bug #971282)
Add voki.com to the list of allowed iframe sources
Hide URL-processing mediasources when iframe output is not allowed
Use MySQL database collation for string literals (bug #985608)
Make breadcrumbs in small headers visible at all times Bug#947556
More errors should be in red to get admin attention Bug#949973
Make download.php publicly accessible (bug #979538)
Use htmlpurifier in external media block (bug #971289)
Remove unused function and debugging from voki mediasources
Admin page to manage SafeIframe sites (bug #971282)
Move the list of safe iframe sources to the database (bug #971282)
Fix selenium tests for changed profile string (Bug 960816)
Forgot password screen has confusing wording Bug#548117
Submitting tags over 128 characters throws postgres errors Bug#864926
Make password optional when updating users by CSV (bug #971917)
Correct alphabetical sorting of tags Bug#926530
XMLRPC authentication setup misses string for wrong login form message Bug#920285
Theming of search buttons, fresh theme, and more
Change file quota string to not include MB (Bug 909831)
Add "Standard or external avatar" to Profile pictures Bug#792996
Fix filter for google apps presentation (bug #958791)
Correct spelling mistake (Bug 892959)
'Query:' string in selfsearch.tpl hard coded Bug#959090
Fix get_string calls for duplicate remote username message (bug #968697)
Update the help file for Google Apps block (Bug 958791)
Fix capitalization (Bug 892959)
Show useful message on install/upgrade without triggers (bug #967001)
Add a new lang string on choosetemplate.php (Bug 964283)
Display a message when plpgsql cannot be created (bug #960631)
Fix overly permissive SafeIframeRegexp in htmlpurifier (bug #922360)
Improve the instructions for enabling plpgsql (bug #960631)
String "Retain view access" to include collection (Bug 964322)
Change postgres requirement to version 8.3+
Add the links for "privacy" and "topics" and fix lang strings (Bug 960816)

3 blueprints and 129 bugs targeted

Blueprint Priority Assignee Delivery
Clean URLs for user profiles, group homepages, portfolio pages Clean URLs for user profiles, group homepages, portfolio pages 1 Undefined Richard Mansfield  11 Implemented
Extend the external media block Extend the external media block 1 Undefined   11 Implemented
VERP Mail Bounces VERP Mail Bounces 1 Undefined Hugh Davenport  11 Implemented
Bug report Importance Assignee Status
1032015 #1032015 Users can't edit collections in their own portfolio 2 Critical Son Nguyen  10 Fix Released
1032026 #1032026 When upgrading to 1.6, if a user is logged in while the upgrade script is run, their password is not rehashed permanently 2 Critical Hugh Davenport  10 Fix Released
1034204 #1034204 An InvalidArgumentException has been thrown when click 'View whole wall' 2 Critical Hugh Davenport  10 Fix Released
1034223 #1034223 Unrecoverable error when deleting a view 2 Critical Hugh Davenport  10 Fix Released
1037420 #1037420 Account settings page hangs with mobile uploads enabled 2 Critical Son Nguyen  10 Fix Released
1047111 #1047111 XEE possible in mahara 2 Critical Hugh Davenport  10 Fix Released
1055232 #1055232 XSS using user uploaded XHTML files 2 Critical Hugh Davenport  10 Fix Released
1057226 #1057226 Latest development does not install 2 Critical Son Nguyen  10 Fix Released
1057238 #1057238 Arbitrary Code Execution via pathtoclam config setting 2 Critical Hugh Davenport  10 Fix Released
1061980 #1061980 XSS using user uploaded SVG files 2 Critical Hugh Davenport  10 Fix Released
992905 #992905 Paginate forum posts in a topic 3 High Son Nguyen  10 Fix Released
996172 #996172 No unique directory for exporting multiple pages written in Japanese 3 High Son Nguyen  10 Fix Released
1015381 #1015381 Text box should be locked upon submitting it to a group 3 High Son Nguyen  10 Fix Released
1020102 #1020102 Copying a collection is creating extra duplicates 3 High Stacey Walker  10 Fix Released
1023668 #1023668 resizeuploaduseroption config throws errors on the journal post edit page 3 High Son Nguyen  10 Fix Released
1024255 #1024255 BrowserID changed login URL 3 High Hugh Davenport  10 Fix Released
1026864 #1026864 Deleting files copied from another user causes deleting the original files 3 High Son Nguyen  10 Fix Released
1028685 #1028685 redirect loop when accessing pages with cleanurls 3 High Hugh Davenport  10 Fix Released
1030826 #1030826 Usernames with diacritics cause an error at login on Windows 3 High Christopher Tombleson  10 Fix Released
1031592 #1031592 Folder should not be deleted if containing submitted files or subfolders 3 High Son Nguyen  10 Fix Released
1032009 #1032009 Extracting a zip file should not be carried out if its folder has been in submitted pages 3 High Son Nguyen  10 Fix Released
1033315 #1033315 Remove 'Add one' link if user don't have permission to edit group/institution/site collection 3 High Son Nguyen  10 Fix Released
1034249 #1034249 Fix selenium tests for 1.6 3 High Hugh Davenport  10 Fix Released
1034268 #1034268 Can't delete an institution on postgres 3 High Hugh Davenport  10 Fix Released
1045234 #1045234 Site staff with institution admin rights doesn't see site statistics 3 High Hugh Davenport  10 Fix Released
1045722 #1045722 Lang string missing for group editability and positioning issue 3 High Jiri Baum (Catalyst)  10 Fix Released
1046763 #1046763 Wall doesn't show all posts 3 High Hugh Davenport  10 Fix Released
1048425 #1048425 Editability setting not visible on /group/mygroups.php once you joined the group 3 High Son Nguyen  10 Fix Released
1050292 #1050292 blog not shown after clicking "next page" 3 High Hugh Davenport  10 Fix Released
1055908 #1055908 Pagination on the 'Pages' tab of institution statistics doesn't work 3 High Hugh Davenport  10 Fix Released
1057240 #1057240 Click-Jacking attack on user account self-deletion page 3 High Hugh Davenport  10 Fix Released
1057846 #1057846 removing image in block before adding new one causes upload failure 3 High Son Nguyen  10 Fix Released
1060495 #1060495 Editing file after changing tab in filebrowser crashes the block editor 3 High Son Nguyen  10 Fix Released
1063480 #1063480 Reflected XSS in user/group bulk CSV upload 3 High Hugh Davenport  10 Fix Released
1067551 #1067551 tinymce fullscreen doesn't use fullscreen 3 High Hugh Davenport  10 Fix Released
605708 #605708 Foreign characters in files within zip file cause trouble 4 Medium Son Nguyen  10 Fix Released
947556 #947556 Make breadcrumbs in small headers visible at all times 4 Medium Son Nguyen  10 Fix Released
959090 #959090 'Query:' string in selfsearch.tpl hard coded 4 Medium Son Nguyen  10 Fix Released
976274 #976274 Institution admin can select "Show online users" desipte site admin not allowing it 4 Medium Son Nguyen  10 Fix Released
1009301 #1009301 Too many admin notifications about notification failures 4 Medium Richard Mansfield  10 Fix Released
1012846 #1012846 "Edit" button doesn't work for files in "Files to download" 4 Medium Son Nguyen  10 Fix Released
1014924 #1014924 Sitemap not generated when a public group has >1 forum 4 Medium Richard Mansfield  10 Fix Released
1015912 #1015912 BrowserID plugin should check for firewall issues before getting enabled 4 Medium Son Nguyen  10 Fix Released
1017280 #1017280 pagination dropdown selector doesn't remember current page when changing limit 4 Medium Son Nguyen  10 Fix Released
1023630 #1023630 Blog post with only images or allowed embed code cannot be submitted. 4 Medium Son Nguyen  10 Fix Released
1026618 #1026618 The registration link can fail if a user's name contains a diacritic 4 Medium Simon Story  10 Fix Released
1030033 #1030033 Rename BrowserID to Persona 4 Medium Son Nguyen  10 Fix Released
1030664 #1030664 Registration reason textbox is missing 4 Medium Son Nguyen  10 Fix Released
1030665 #1030665 Inserting images into a page - browse for image - then click save - dialogue box hangs 4 Medium Son Nguyen  10 Fix Released
1032478 #1032478 Undefined index: 'tabs' warning after editing a file or folder 4 Medium Son Nguyen  10 Fix Released
1034172 #1034172 When editing access to a folder or file in the groups area, the folder dissapears until refreshed 4 Medium Hugh Davenport  10 Fix Released
1036020 #1036020 large collections that have clean urls produce unusable urls 4 Medium Hugh Davenport  10 Fix Released
1036800 #1036800 Lang strings missing in Group editability setting 4 Medium Hugh Davenport  10 Fix Released
1037450 #1037450 Make admin navigation more consistent 4 Medium Son Nguyen  10 Fix Released
1041638 #1041638 Show date in the same way as elsewhere for group editability 4 Medium Jiri Baum (Catalyst)  10 Fix Released
1041639 #1041639 Change "Available" to "Editable" in group 4 Medium Kristina Hoeppner  10 Fix Released
1052060 #1052060 unable to access administration menu on mobile 4 Medium Hugh Davenport  10 Fix Released
1052062 #1052062 Invalid short tag on site logo link in header 4 Medium Son Nguyen  10 Fix Released
1052071 #1052071 menu closes only after a page refresh on mobile 4 Medium Hugh Davenport  10 Fix Released
1055239 #1055239 ClamAV doesn't support scanning multifile uploads 4 Medium Hugh Davenport  10 Fix Released
1055859 #1055859 Warning 'Undefined index: editwindowstart' when adding groups by CSV 4 Medium Hugh Davenport  10 Fix Released
792996 #792996 If Gravatar is enabled, the "no default" profile picture means "choose Gravatar" 5 Low Son Nguyen  10 Fix Released
864926 #864926 submitting tags over 128 characters throws postgres errors 5 Low Son Nguyen  10 Fix Released
941551 #941551 Should display instition's displayname rather than name 5 Low Christopher Tombleson  10 Fix Released
942239 #942239 Allow multiple journals setting missing 5 Low Melissa Draper  10 Fix Released
969794 #969794 "Watchlist", "Recent journal entries" and "Tagged journal entries" blocks miss how many pages can be displayed 5 Low Son Nguyen  10 Fix Released
970439 #970439 Group type "Request" doesn't show up on group homepage 5 Low Richard Mansfield  10 Fix Released
987115 #987115 Update "cron is not running" string 5 Low Kristina Hoeppner  10 Fix Released
992930 #992930 When an image artefact isn't present in the database, getimagesize is called on a directory 5 Low Hugh Davenport  10 Fix Released
993710 #993710 Processing email bounces requires $_ENV to be set 5 Low Hugh Davenport  10 Fix Released
994370 #994370 When handling bounce emails, some SMTP servers don't like the / character 5 Low Hugh Davenport  10 Fix Released
998940 #998940 Change institution navigation items to not include "institution" in 2nd level 5 Low Kristina Hoeppner  10 Fix Released
1002168 #1002168 Remove plans block javascript from template 5 Low Richard Mansfield  10 Fix Released
1006213 #1006213 Add jquery on every page 5 Low Richard Mansfield  10 Fix Released
1011355 #1011355 Browserid user autocreation fails with usersuniquebyusername 5 Low Richard Mansfield  10 Fix Released
1014962 #1014962 strftimenotspecified string should be in langconfig 5 Low Hugh Davenport  10 Fix Released
1017903 #1017903 Typo in group.php in language pack 5 Low Matt Kolb  10 Fix Released
1023791 #1023791 No need to display extra login container if no extra methods are in use 5 Low Ruslan Kabalin  10 Fix Released
1024269 #1024269 New facebook logo change gives debug message in error logs 5 Low Son Nguyen  10 Fix Released
1025135 #1025135 Need more clear error message when exporting views with same title 5 Low Son Nguyen  10 Fix Released
1029230 #1029230 fix warnings on install 5 Low Christopher Tombleson  10 Fix Released
1029231 #1029231 Warning when adding a artefact 5 Low Christopher Tombleson  10 Fix Released
1030161 #1030161 Change "Recent activity" to "Inbox" 5 Low Kristina Hoeppner  10 Fix Released
1030695 #1030695 Various warnings when cron is run 5 Low Christopher Tombleson  10 Fix Released
1031524 #1031524 "Clean URLs" should be listed on "Admin home" 5 Low Kristina Hoeppner  10 Fix Released
1032013 #1032013 'Create one' link should create a group collection when adding a collection navigation block to group page 5 Low Son Nguyen  10 Fix Released
1033459 #1033459 Change description for token with the new "multiple token" feature 5 Low Kristina Hoeppner  10 Fix Released
1034183 #1034183 folder link in group and institution files area is incorrect 5 Low Hugh Davenport  10 Fix Released
1034726 #1034726 Main unrecoverable error message has spelling mistake 5 Low Kristina Hoeppner  10 Fix Released
1036990 #1036990 File name is not marked as required field 5 Low Son Nguyen  10 Fix Released
1037632 #1037632 Menu option should be "Suspended and expired users" 5 Low Kristina Hoeppner  10 Fix Released
1038993 #1038993 Change wording for resizing uploaded images 5 Low Kristina Hoeppner  10 Fix Released
1039011 #1039011 Update lang string for remote username 5 Low Kristina Hoeppner  10 Fix Released
1039766 #1039766 the strings "Group cannot be edited by members before this date" / "...after this date" are not found in the lang strings, but hardcoded in /group/edit.php. 5 Low Jiri Baum (Catalyst)  10 Fix Released
1044822 #1044822 Some language strings are misspelled 5 Low Kristina Hoeppner  10 Fix Released
1045134 #1045134 error when attempting to add saml auth with 'create users' checked 5 Low Son Nguyen  10 Fix Released
605730 #605730 Include "Unpublish" button for published blog posts 6 Wishlist Son Nguyen  10 Fix Released
717184 #717184 Resize images at upload time 6 Wishlist Mike Kelly  10 Fix Released
781989 #781989 Be flexible in the number to results shown on a page 6 Wishlist Son Nguyen  10 Fix Released
781990 #781990 Have more sorting options on member's listing in a group 6 Wishlist Son Nguyen  10 Fix Released
786389 #786389 Submitting of collections 6 Wishlist Richard Mansfield  10 Fix Released
792645 #792645 Add blog post directly from a page 6 Wishlist Son Nguyen  10 Fix Released
793308 #793308 When a member of multiple institutions, decide which theme to use 6 Wishlist Richard Mansfield  10 Fix Released
852956 #852956 Change icon for read messages in "Recent activity / "My inbox" 6 Wishlist Melissa Draper  10 Fix Released
886080 #886080 Collections for groups, institutions and site level 6 Wishlist Son Nguyen  10 Fix Released
900529 #900529 Add a static Mahara logo that can be picked up by Facebook 6 Wishlist Son Nguyen  10 Fix Released
900652 #900652 Expand group info to include number of forums and posts 6 Wishlist Son Nguyen  10 Fix Released
918431 #918431 Registration confirmation could be simplified 6 Wishlist Richard Mansfield  10 Fix Released
949973 #949973 Cron error should be in red to get admin attention 6 Wishlist Son Nguyen  10 Fix Released
971282 #971282 Configurable SafeIframe site list 6 Wishlist Richard Mansfield  10 Fix Released
971289 #971289 Use htmlpurifier in external media block 6 Wishlist Richard Mansfield  10 Fix Released
981987 #981987 "User search" should link to profile pages 6 Wishlist Christopher Tombleson  10 Fix Released
982670 #982670 Add institution staff rights during registration approval 6 Wishlist Richard Mansfield  10 Fix Released
986004 #986004 Allow self registration process for browserid users 6 Wishlist Hugh Davenport  10 Fix Released
993018 #993018 Add a cron job to poll an imap inbox for mail bounces 6 Wishlist Hugh Davenport  10 Fix Released
997834 #997834 Add pieform element for multiple text fields 6 Wishlist Richard Mansfield  10 Fix Released
999464 #999464 Allow local customisation of "Edit site pages" list 6 Wishlist Richard Mansfield  10 Fix Released
1001064 #1001064 Basic support for theming logged-out users 6 Wishlist Richard Mansfield  10 Fix Released
1003980 #1003980 SAML user autocreation can become impossible 6 Wishlist Simon Story  10 Fix Released
1006634 #1006634 Clean URLs for user profiles, group homepages, portfolio pages 6 Wishlist Richard Mansfield  10 Fix Released
1017354 #1017354 date-limited groups 6 Wishlist Jiri Baum (Catalyst)  10 Fix Released
1018711 #1018711 participation report for group pages 6 Wishlist Melissa Draper  10 Fix Released
1027736 #1027736 Enhance tagged posts block - show full entries 6 Wishlist Chris Wharton  10 Fix Released
1027738 #1027738 Enhance tagged posts block - restrict tags 6 Wishlist Chris Wharton  10 Fix Released
1030062 #1030062 Make group name clickable in admin interface 6 Wishlist Alan McNatty  10 Fix Released
1031586 #1031586 Add institution statistics 6 Wishlist Hugh Davenport  10 Fix Released
1032414 #1032414 Change the mobile upload token to use a multitext field 6 Wishlist Alan McNatty  10 Fix Released
1032420 #1032420 Mobile API upgrade for journals and sync'ing 6 Wishlist Alan McNatty  10 Fix Released
1041645 #1041645 Responsive design 6 Wishlist Hugh Davenport  10 Fix Released
This milestone contains Public information
Everyone can see this information.