Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2026-01-19 15:56:09 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
12839 commits 1 branch 848 tags 144 MiB
Commit graph

344 commits

Author SHA1 Message Date
Lauri Ojansivu
74f1dfde72 Fix copy move card at board and MultiSelect to have numbered target of board, card above or below. Added MultiSelect change color. 
Thanks to mimZD and xet7 !

Fixes #6045
 2025-12-29 19:09:45 +02:00
Lauri Ojansivu
181f837d8c Security Fix 5: Read-only roles can still update cards. 
Thanks to Joshua Rogers of joshua.hu, Twitter MegaManSec !
 2025-12-29 16:47:11 +02:00
Lauri Ojansivu
198509e760 Security Fix 4: Cross-board card move without destination authorization. 
Thanks to Joshua Rogers of joshua.hu, Twitter MegaManSec !
 2025-12-29 16:39:23 +02:00
Lauri Ojansivu
414b8dbf41 Per-User and Board-level data save fixes. Per-User is collapse, width, height. Per-Board is Swimlanes, Lists, Cards etc. 
Thanks to xet7 !

Fixes #5997
 2025-12-23 07:49:37 +02:00
Lauri Ojansivu
ecfb0f0fdf Manually merged fixes from seve12. 
Thanks to seve12 !

Related https://github.com/wekan/wekan/pull/5967
 2025-12-22 23:18:01 +02:00
Mial Lewis
003a07ebce change restore to unarchive 2025-11-27 22:00:43 +00:00
Mial Lewis
d3c237bc66 fix more indenting 2025-11-27 08:29:36 +00:00
Mial Lewis
bac0fa81fc correce indent 2025-11-27 08:27:38 +00:00
Mial Lewis
5ff9bf331f add restore to api 2025-11-27 08:23:56 +00:00
Mial Lewis
36d7b0f8a7 correct return values 2025-11-27 00:52:28 +00:00
Mial Lewis
a81a603031 update bool to boolean 2025-11-26 23:59:00 +00:00
Mial Lewis
e30ce78053 add archive card to api 2025-11-26 23:57:49 +00:00
Lauri Ojansivu
0a1a075f31 Fix SECURITY ISSUE 4: Members can forge others’ votes (Low). Bonus: Similar fixes to planning poker too done by xet7. 
Thanks to Siam Thanat Hack (STH) and xet7 !
 2025-11-02 11:12:41 +02:00
Lauri Ojansivu
cb6afe67a7 Replaced moment.js with Javascript date. 
Thanks to xet7 !
 2025-10-17 00:26:11 +03:00
Lauri Ojansivu
2543df9425 Show original positions of swimlanes, lists and cards. 
Thanks to xet7 !

Fixes #5939
 2025-10-16 20:23:05 +03:00
Lauri Ojansivu
abad8cc4d5 Change list width by dragging between lists. 
Thanks to xet7 !
 2025-10-14 09:36:11 +03:00
Lauri Ojansivu
fc32a89292 Fixed per-card and per-board settings of showing checkist at minicard. 
Thanks to xet7 !
 2025-10-11 11:31:57 +03:00
Lauri Ojansivu
90899f0928 Fix DOMPurify paths. 
Thanks to xet7 !
 2025-10-11 00:49:43 +03:00
Lauri Ojansivu
ee79cab7b2 Security Fix JVN#86586539: Stored XSS. 
Thanks to Ryoya Koyama of Mitsui Bussan Secure Directions, Inc and xet7.
 2025-10-10 23:14:06 +03:00
Yang, Bo
0a969c59d3
Avoid calling ReactiveCache.getCard twice 2025-07-15 14:58:21 -07:00
Yang, Bo
fc77d0d201 Add REST API endpoint to retrieve a card by ID 2025-07-15 21:40:43 +00:00
Yang, Bo
6cc746df8b fix: correct return type in API documentation for custom fields 2025-07-09 15:43:20 +00:00
Lauri Ojansivu
908a5fc60d Comment out error message of non-existing Custom Field. 
Thanks to xet7 !

Related #5684
 2025-03-08 19:50:00 +02:00
Firas Saidi
14167b19b9 cards file 2025-03-08 18:02:03 +01:00
Martin Filser
bb17feaa17 Checklist, hide checked checklist items (configureable at each checklist) 2024-11-15 21:00:06 +01:00
Martin Filser
9fa36c3991 hide checklist-items per card now 
- performance relevant
- more granular setting
 2024-11-15 20:35:18 +01:00
Martin Filser
8a446de3e9 added comment section on card details to avoid loading the card comment activities from the server 
- and added to show only the activities a card

- to display the card comments a connection to the server was needed to get the activities of the card comments, now, it's not necessary
- also performance relevant. until now there were a lot of activities loaded, now only of the current card
 2024-11-15 19:55:07 +01:00
Martin Filser
c925a27870 Fixing opening cards and slow performance of closing cards 
Fixes: #5533
Fixes: #5548

Revert "Switch from kadira:flow-router to ostrio:flow-router-extra"

This reverts commit 718c1a393d.
 2024-10-22 21:45:36 +02:00
Denis Perov
718c1a393d Switch from kadira:flow-router to ostrio:flow-router-extra 2024-09-23 19:25:55 +03:00
Martin Filser
8a7a4f3033 fix empty parentId in cards 
- if the parentId is undefined or empty, the code run in a infinite loop and
  the browser "hangs"
 2024-08-06 22:35:16 +02:00
Martin Filser
a929d1e3a4 reducing card size in database if no planning poker was started 
reducing:
- cards collection size
- database size
- size to transfer from server to client (publish / subscribe)
 2024-08-03 20:40:29 +02:00
Lauri Ojansivu
ffafb30b9b Fixed API get_all_cards doesn't return SwimlaneId. Please test. 
Thanks to mohammadZahedian, xator91 and xet7.

Fixes #5319
 2024-03-07 13:36:42 +02:00
Lauri Ojansivu
7beced1e68 Fixed API get swimlane cards wrong order. Please test. 
Thanks to mohammadZahedian, xator91 and xet7.

Fixes #5319
 2024-03-07 13:10:41 +02:00
Lauri Ojansivu
c570405d02 Try to fix API get cards wrong order. Please test. 
Thanks to mohammadZahedian, xator91 and xet7.

Fixes #5319
 2024-03-06 12:07:18 +02:00
Mirko Genovese
f8ef2e33de
cards.js Added a control to check error if card is not updated 2024-02-22 07:50:21 +01:00
Gustav Engström
f5bc2b08f9 Added archive option to of Wekan API 2024-01-15 12:32:24 +01:00
Lauri Ojansivu
b40654cdfe Try to get some label outgoing webhooks working. 
Thanks to xet7 !

Related #4898
 2023-09-15 21:34:31 +03:00
Lauri Ojansivu
7d1ab0a388 Fix createCardWithDueDate Error: User id is required. 
Thanks to xet7!

Fixes #5114,
fixes #5111
 2023-09-10 04:37:53 +03:00
DimDz
32e50b869d
Added moveCard to editCard API 2023-08-18 15:48:49 +03:00
Jakub Jurczyk
aca6ba5270
Fix assignees description 2023-08-01 17:30:14 +02:00
Jakub Jurczyk
5d6367f404
Fix get_board_cards_count 2023-08-01 12:32:04 +02:00
Martin Filser
1067542b94 Move every Attachments.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:29 +02:00
Martin Filser
42fad8fb98 ReactiveMiniMongoIndex, added getCardCommentsWithCardId 2023-07-18 21:25:29 +02:00
Martin Filser
f80ecded0a ReactiveMiniMongoIndex, added getChecklistsWithCardId 2023-07-18 21:25:29 +02:00
Martin Filser
40a5422e75 ReactiveMiniMongoIndex created, Javascript Index of MiniMongo Client Database 
- I didn't find a solution to have indexes in MiniMongo on client. As i see /
  believe there isn't this feature yet in Meteor (v2.10).
- I got this and many more results while looking for an solution:

  https://forums.meteor.com/t/adding-indexing-to-minimongo/9130/12
  https://github.com/meteor/meteor-feature-requests/issues/66

So to speed up the MiniMongo i decided to create a own class for this,
currently per query. Of course, this isn't the best solution, but works for now
good.
 2023-07-18 21:25:29 +02:00
Martin Filser
fb3b47e2bb Move every Attachments.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:29 +02:00
Martin Filser
25989b9736 Move every CardComments.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:29 +02:00
Martin Filser
fef6433b75 Move every Activities.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:29 +02:00
Martin Filser
e5359dc838 Move every Checklists.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:28 +02:00
Martin Filser
981a641bce Move every CustomFields.find(idOrFirstObjectSelector, options) to the ReactiveCache (directory models/) 2023-07-18 21:25:28 +02:00