aboutsummaryrefslogtreecommitdiffstats
path: root/Mailman/Cgi/admindb.py (unfollow)
Commit message (Collapse)AuthorFilesLines
2018-06-17Bump copyright dates.Mark Sapiro1-1/+1
2018-06-06Improved logging of security related eventsJim Popovitch1-0/+5
2017-06-24Added screen reader labels to some admindb radio buttons.Mark Sapiro1-15/+10
2017-06-09Display date of held subscriptions and keep newest.Mark Sapiro1-6/+11
2017-06-05Bumped Copyrights and fixed a bug in prior commit.Mark Sapiro1-1/+1
2017-06-05Defend against CGI requests with multiple values for the same parameter.Mark Sapiro1-8/+8
2016-08-26Fixes for CVE-2016-6893 and more.Mark Sapiro1-2/+22
2016-07-14Catch TypeError from certain defective crafted POST requests.Mark Sapiro1-0/+12
2016-05-22Prior fix for lp:1573623 at rev 1647 was incomplete.Mark Sapiro1-2/+3
2016-04-22White space left of Logout link is no longer part of the link.Mark Sapiro1-3/+4
2015-02-03Bumped copyright year for prior change.Mark Sapiro1-1/+1
2015-01-30The admindb interface has been fixed so the the detail message bodyMark Sapiro1-8/+6
display doesn't lose part of a multi-byte character, and characters which are invalid in the message's charset are replaced rather than the whole body not being converted to the display charset.
2014-06-09<label> tags have been added around most check boxes and radio buttonsMark Sapiro1-10/+29
and their text labels in the admin and admindb web GUI so they can be (de)selected by clicking the text. (LP: #266391)
2014-03-21 - Added the list name to the vette log "held message approved" entry.Mark Sapiro1-2/+2
(LP: 1295875) - Added the CGI module name to various "No such list" error log entries. (LP: 1295875) - Modified contrib/mmdsr to report module name if present in "No such list error log entries.
2013-07-19Enable setting a default grouping/sorting for the admindb held messageMark Sapiro1-4/+7
summary via a DISPLAY_HELD_SUMMARY_SORT_BUTTONS setting.
2013-07-18Backported the held message sorting to 2.1 and made it optional.Mark Sapiro1-18/+51
2013-06-07- It is no longer possible to add 'invalid' addresses to the ban_listMark Sapiro1-15/+39
and the *_these_nonmembers filters from the check boxes on the admindb interface. (LP: #1187201)
2013-04-03The pending (un)subscriptions waiting approval are now sorted by emailMark Sapiro1-5/+5
address in the admindb interface as intended. (LP: 1164160)
2011-12-31Fix for bug #629738 could cause a crash in the admindb details displayMark Sapiro1-1/+3
if the decoded message body contained characters not in the character set of the list's preferred language. Fixed. Bug #910440.
2011-05-10Fixed a problem in admindb.py where the character set for the display ofMark Sapiro1-1/+8
the message body excerpt was not correctly determined. Bug #779751.
2011-04-23Added a logout link to the admindb interface and made both admin andMark Sapiro1-3/+24
admindb logout effective for a site admin cookie if allowed. Bug #769318.
2010-09-03Fixed admindb interface to decode base64 and quoted-printable encodedMark Sapiro1-1/+1
message body excerpts for display. Bug #629738.
2010-06-25Fixed an issue in admindb that could result in a KeyError and "we hit aMark Sapiro1-6/+10
bug" response when a moderator acts on a post that had been handled by someone else after the first moderator had retrieved it. Bug #598671.
2010-03-29Added roster to the CGIs that return HTTP 401 status for an authenticationMark Sapiro1-0/+2
failure, and return HTTP 404 status from all CGIs for an invalid list name.
2010-03-06Fixed a bug in the admindb interface that could apply a moderatorMark Sapiro1-2/+10
action to a message not displayed. Bug #533468.
2009-12-04- Added vette logging for rejected and discarded (un)subscribe requests.Mark Sapiro1-1/+1
- Fixed a bug in admindb.py that could erroneously discard an unsubscribe request as a duplicate.
2009-02-03Fixed a bug in admindb.py in the implementation of replacing "No ReasonMark Sapiro1-2/+7
Given" with the default rejection reason. Bug #325016.
2009-01-02Mailman/Utils.pyMark Sapiro1-9/+8
- Fixed a long standing error that stopped relative hrefs from being generated for links on Mailman's web pages. Mailman/Cgi/admindb.py - Changed the admindb interface so that when messages are rejected from the summary page, the reject reason is the rejection message from the Errors.HoldMessage subclass instead of the generic "No reason given".
2007-06-12admindb.py - Changed to not show the "Discard all messages marked Defer" ↵msapiro1-2/+5
checkbox when there are only (un)subscribes and no held messages. - Added a separator and heading for "Held Messages" like the ones for "Subscribe Requests" and "Unsubscribe Requests".
2007-05-08- CGI/admin.pymsapiro1-3/+3
The email address which forms a part of the various CGI data keys in the admin membership list is now urllib.quote()ed. This allows changing options for and unsubbing an address which contains a double-quote character. - CGI/admindb.py Added additional test to not display "Database Updated ..." when coming from the login page. - CGI/roster.py, HTMLFormatter.py Changed to show hidden members when authorization is site or list's admin or moterator password. Patch 1587651. - Defaults.py.in, Handlers/Cleanse_DKIM.py Added a new REMOVE_DKIM_HEADERS Defaults.py/mm_cfg.py setting (default = No) to control removing dkim/domainkey signatures from posts and mail to -owner. - Handlers/Decorate.py, Handlers/Scrubber.py Changed to preserve format=flowed and delsp=yes in the Content-Type: of the body when adding header/footer and when scrubbing attachments and to remove trailing spaces from the header/footer lines so they won't be flowed. Bug 1495122. Fixed a scrubber issue where the i18n translated 'next part' separator can be garbled if the list charset is different from the message. - Queue/Runner.py. Queue/Switchboard.py Now that we have .bak queue entries for recovery, it is no longer the case that an unparseable message is lost. In this case, and in case of other exceptions when dequeueing, I added a preservation feature to move the .bak file to qfiles/shunt as a .psv file and write an appropriate log entry. It is also possible for an attempt to shunt a message to fail. One example that occurred in practice (bug 1656289) was caused by a huge message that threw a MemoryError in processing and then threw another MemoryError in the attempt to pickle the message for the shunt queue. In this case as well, I log and attempt to preserve the original queue entry by renaming.
2006-09-21Removed the "Discard all messages marked Defer" checkbox from themsapiro1-2/+2
details=all page.
2006-08-30CVE-2006-3636. Fixes for various cross-site scripting issues. Discovery bybwarsaw1-3/+3
Moritz Naumann and most of the repair work done by Mark Sapiro (with some additional work by Barry).
2005-12-30A cleansing pass, almost entirely cosmetic. Such things as whitespacebwarsaw1-5/+6
normalization, removal of tabs, copyright year updates to changed files, docstring and comment fixes, and usage of True/False. I also made a pass through the NEWS file. One import was reordered, and after this commit I will move the mmdsr.readme file to README.mmdsr. From my perspective, after that we're ready to go. I will port these changes forward to the trunk.
2005-12-03Improving banned subscription logic to cover all invites, subscribes, ↵msapiro1-1/+8
address changes and confirmations of same.
2005-08-27FSF office has moved to 51 Franklin Street.tkikuchi1-1/+1
2004-12-07[ mailman-Bugs-1047532 ] problem with "discard all ..."tkikuchi1-12/+14
[ mailman-Patches-1080477 ] discard all marked as defer Fixed in a different way for what "all" means may confusing when partial message list are shown. Also fixed 'details' case.
2004-12-01Precautions against 'charset=' (empty) message.tkikuchi1-1/+1
2004-04-30main(): Add discard checkbox above the last submit button too.bwarsaw1-0/+5
2004-04-25main(), process_form(): Due to popular demand, added SF patch # 810675 whichbwarsaw1-1/+13
adds a "discard all messages marked Defer" for quicker admindb maintenance. Patch by Eddie Kohler, SF id xexd.
2003-12-27show_pending_subs(): The address in the pending database may be a unicode, butbwarsaw1-1/+3
it must be ascii. Coerce to an 8-bit string so the bogus u'' doesn't show up. Closes SF 862906.
2003-12-27show_helds_overview(), show_post_requests(): Another part of TK'sbwarsaw1-2/+13
patch # 865661. Encode the subject header in the list's preferred character set and make sure it is all on one line.
2003-12-22Comment repair.bwarsaw1-1/+1
2003-09-22Backporting from the HEAD -- updated cgi'sbwarsaw1-1/+1
2003-02-08Backporting from the trunk.bwarsaw1-6/+6