aboutsummaryrefslogtreecommitdiffstats
path: root/Mailman/Cgi/admindb.py (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Bump copyright dates.Mark Sapiro2018-06-171-1/+1
|
* Implement security log.Mark Sapiro2018-06-111-0/+7
|\
| * Improved logging of security related eventsJim Popovitch2018-06-061-0/+5
|/
* Added screen reader labels to some admindb radio buttons.Mark Sapiro2017-06-241-15/+10
|
* Display date of held subscriptions and keep newest.Mark Sapiro2017-06-091-6/+11
|
* Bumped Copyrights and fixed a bug in prior commit.Mark Sapiro2017-06-051-1/+1
|
* Defend against CGI requests with multiple values for the same parameter.Mark Sapiro2017-06-051-8/+8
|
* Fixes for CVE-2016-6893 and more.Mark Sapiro2016-08-261-2/+22
|
* Catch TypeError from certain defective crafted POST requests.Mark Sapiro2016-07-141-0/+12
|
* Prior fix for lp:1573623 at rev 1647 was incomplete.Mark Sapiro2016-05-221-2/+3
|
* White space left of Logout link is no longer part of the link.Mark Sapiro2016-04-221-3/+4
|
* Bumped copyright year for prior change.Mark Sapiro2015-02-031-1/+1
|
* The admindb interface has been fixed so the the detail message bodyMark Sapiro2015-01-301-8/+6
| | | | | | display doesn't lose part of a multi-byte character, and characters which are invalid in the message's charset are replaced rather than the whole body not being converted to the display charset.
* <label> tags have been added around most check boxes and radio buttonsMark Sapiro2014-06-091-10/+29
| | | | | and their text labels in the admin and admindb web GUI so they can be (de)selected by clicking the text. (LP: #266391)
* - Added the list name to the vette log "held message approved" entry.Mark Sapiro2014-03-211-2/+2
| | | | | | | | | | (LP: 1295875) - Added the CGI module name to various "No such list" error log entries. (LP: 1295875) - Modified contrib/mmdsr to report module name if present in "No such list error log entries.
* Enable setting a default grouping/sorting for the admindb held messageMark Sapiro2013-07-191-4/+7
| | | | summary via a DISPLAY_HELD_SUMMARY_SORT_BUTTONS setting.
* Backported the held message sorting to 2.1 and made it optional.Mark Sapiro2013-07-181-18/+51
|
* - It is no longer possible to add 'invalid' addresses to the ban_listMark Sapiro2013-06-071-15/+39
| | | | | and the *_these_nonmembers filters from the check boxes on the admindb interface. (LP: #1187201)
* The pending (un)subscriptions waiting approval are now sorted by emailMark Sapiro2013-04-031-5/+5
| | | | address in the admindb interface as intended. (LP: 1164160)
* Fix for bug #629738 could cause a crash in the admindb details displayMark Sapiro2011-12-311-1/+3
| | | | | if the decoded message body contained characters not in the character set of the list's preferred language. Fixed. Bug #910440.
* Fixed a problem in admindb.py where the character set for the display ofMark Sapiro2011-05-101-1/+8
| | | | the message body excerpt was not correctly determined. Bug #779751.
* Added a logout link to the admindb interface and made both admin andMark Sapiro2011-04-231-3/+24
| | | | | admindb logout effective for a site admin cookie if allowed. Bug #769318.
* Fixed admindb interface to decode base64 and quoted-printable encodedMark Sapiro2010-09-031-1/+1
| | | | message body excerpts for display. Bug #629738.
* Fixed an issue in admindb that could result in a KeyError and "we hit aMark Sapiro2010-06-251-6/+10
| | | | | bug" response when a moderator acts on a post that had been handled by someone else after the first moderator had retrieved it. Bug #598671.
* Added roster to the CGIs that return HTTP 401 status for an authenticationMark Sapiro2010-03-291-0/+2
| | | | failure, and return HTTP 404 status from all CGIs for an invalid list name.
* Fixed a bug in the admindb interface that could apply a moderatorMark Sapiro2010-03-061-2/+10
| | | | action to a message not displayed. Bug #533468.
* - Added vette logging for rejected and discarded (un)subscribe requests.Mark Sapiro2009-12-041-1/+1
| | | | | - Fixed a bug in admindb.py that could erroneously discard an unsubscribe request as a duplicate.
* Fixed a bug in admindb.py in the implementation of replacing "No ReasonMark Sapiro2009-02-031-2/+7
| | | | Given" with the default rejection reason. Bug #325016.
* Mailman/Utils.pyMark Sapiro2009-01-021-9/+8
| | | | | | | | | | - Fixed a long standing error that stopped relative hrefs from being generated for links on Mailman's web pages. Mailman/Cgi/admindb.py - Changed the admindb interface so that when messages are rejected from the summary page, the reject reason is the rejection message from the Errors.HoldMessage subclass instead of the generic "No reason given".
* admindb.py - Changed to not show the "Discard all messages marked Defer" ↵msapiro2007-06-121-2/+5
| | | | | | | checkbox when there are only (un)subscribes and no held messages. - Added a separator and heading for "Held Messages" like the ones for "Subscribe Requests" and "Unsubscribe Requests".
* - CGI/admin.pymsapiro2007-05-081-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The email address which forms a part of the various CGI data keys in the admin membership list is now urllib.quote()ed. This allows changing options for and unsubbing an address which contains a double-quote character. - CGI/admindb.py Added additional test to not display "Database Updated ..." when coming from the login page. - CGI/roster.py, HTMLFormatter.py Changed to show hidden members when authorization is site or list's admin or moterator password. Patch 1587651. - Defaults.py.in, Handlers/Cleanse_DKIM.py Added a new REMOVE_DKIM_HEADERS Defaults.py/mm_cfg.py setting (default = No) to control removing dkim/domainkey signatures from posts and mail to -owner. - Handlers/Decorate.py, Handlers/Scrubber.py Changed to preserve format=flowed and delsp=yes in the Content-Type: of the body when adding header/footer and when scrubbing attachments and to remove trailing spaces from the header/footer lines so they won't be flowed. Bug 1495122. Fixed a scrubber issue where the i18n translated 'next part' separator can be garbled if the list charset is different from the message. - Queue/Runner.py. Queue/Switchboard.py Now that we have .bak queue entries for recovery, it is no longer the case that an unparseable message is lost. In this case, and in case of other exceptions when dequeueing, I added a preservation feature to move the .bak file to qfiles/shunt as a .psv file and write an appropriate log entry. It is also possible for an attempt to shunt a message to fail. One example that occurred in practice (bug 1656289) was caused by a huge message that threw a MemoryError in processing and then threw another MemoryError in the attempt to pickle the message for the shunt queue. In this case as well, I log and attempt to preserve the original queue entry by renaming.
* Removed the "Discard all messages marked Defer" checkbox from themsapiro2006-09-211-2/+2
| | | details=all page.
* CVE-2006-3636. Fixes for various cross-site scripting issues. Discovery bybwarsaw2006-08-301-3/+3
| | | | | Moritz Naumann and most of the repair work done by Mark Sapiro (with some additional work by Barry).
* A cleansing pass, almost entirely cosmetic. Such things as whitespacebwarsaw2005-12-301-5/+6
| | | | | | | | | | | | | normalization, removal of tabs, copyright year updates to changed files, docstring and comment fixes, and usage of True/False. I also made a pass through the NEWS file. One import was reordered, and after this commit I will move the mmdsr.readme file to README.mmdsr. From my perspective, after that we're ready to go. I will port these changes forward to the trunk.
* Improving banned subscription logic to cover all invites, subscribes, ↵msapiro2005-12-031-1/+8
| | | | address changes and confirmations of same.
* FSF office has moved to 51 Franklin Street.tkikuchi2005-08-271-1/+1
|
* [ mailman-Bugs-1047532 ] problem with "discard all ..."tkikuchi2004-12-071-12/+14
| | | | | | [ mailman-Patches-1080477 ] discard all marked as defer Fixed in a different way for what "all" means may confusing when partial message list are shown. Also fixed 'details' case.
* Precautions against 'charset=' (empty) message.tkikuchi2004-12-011-1/+1
|
* main(): Add discard checkbox above the last submit button too.bwarsaw2004-04-301-0/+5
|
* main(), process_form(): Due to popular demand, added SF patch # 810675 whichbwarsaw2004-04-251-1/+13
| | | | | adds a "discard all messages marked Defer" for quicker admindb maintenance. Patch by Eddie Kohler, SF id xexd.
* show_pending_subs(): The address in the pending database may be a unicode, butbwarsaw2003-12-271-1/+3
| | | | | it must be ascii. Coerce to an 8-bit string so the bogus u'' doesn't show up. Closes SF 862906.
* show_helds_overview(), show_post_requests(): Another part of TK'sbwarsaw2003-12-271-2/+13
| | | | | patch # 865661. Encode the subject header in the list's preferred character set and make sure it is all on one line.
* Comment repair.bwarsaw2003-12-221-1/+1
|
* Backporting from the HEAD -- updated cgi'sbwarsaw2003-09-221-1/+1
|
* Backporting from the trunk.bwarsaw2003-02-081-6/+6
|
* This commit was manufactured by cvs2svn to create branch2003-01-021-0/+769
'Release_2_1-maint'.