Robert Lange authored 1 year ago and Mathias Maaß committed 1 year ago

* do not proxify local_addresses
* use Laminas http client in fid client
* do not use vufindhttp-psrcompat and zend-psr18bridge
* simplify: remove sendAuthenticatedRequest and buildRequest => senRequest
* refresh logon after 401 (when stale?)
* add comment and set headers always by key => value
* deactivate SSL_VERIFY for fidis request
* fix options for ssl
* do not retry refreshLogon

Robert Lange authored 1 year ago and Mathias Maaß committed 1 year ago

* update composer, use latest finc/vufindhttp-psrcompat version
* replace Zend by Laminas in php
* use laminas instead of Zend i18n resources
* use updated module for permission provider
* add translation for label_access_level_basic_access
* replace Zend by Laminas
* fix hydrator - use Laminas\Hydrator\ClassMethodsHydrator
* fix hydrator - use Laminas\Hydrator\ClassMethodsHydrator, adapt doc
* fix hydrator - use Laminas\Hydrator\ClassMethodsHydrator, adapt doc
* add csp ini
* convert inline script to Head script
* adjust UserDataStrategy hydrate-method (maybe php7 problem only)
** failure at creating user and edit user data by admin
** prevent error: Too few arguments to function fid\Hydrator\Strategy\UserDataStrategy::hydrate()
* adapt menu.phtml from finc
** add missing menu entries
* add hydrator's extract-method return type
* improve default config
** show createdAt-field in user list by default
** activate order export by default
* add missing closing tag

* no security question as of now
* wont work without expansion of fidis
* added route for order deletion (requires admin rights)
* config parameters displayCols defines, 'delete' for the delete button
* using font awesome for the fa-trash symbol, can be overwritte in field-delete.html
* design changes for orderDelete
* Code Stlye changes to Delete Order Modal
** Modal has its own template now, only rendered when activated via config
** fixed a bug where the default fid delete button would have missed crucial info and had just outright deleted the entry
** known problem: the delete route is actually reacheable for any one user but will be rebuffed by fidis itself, still not entirely clean

* usage of rules evaluator and GetItRules.yaml in instance
* add temp check with old implementation - TODO: remove with 22011

* fix status on invalid session state, also refs #22043
** throw UserNotAuthorizedException on 401
** on 401 logout in RecordController homeAction

* devops info:
** run "./install-codestylechecker.sh install" to install dependencies for git hooks code style checks
** see https://projekte.ub.uni-leipzig.de/projects/finc-intern/wiki/Code-Quality-Checking_mit_PHPStorm#section-5 for integration of CS Fixer validation in PHPStorm
* $HOME/bin/codestylechecker/php-cs-fixer3 fix --config=$HOME/bin/codestylechecker/vufind.php-cs-fixer.php_cs module/fid/src/
* add missing class and method comments
* move view helper classes to correct directory
* run codesniffer-beautifier for modules and templates

co-authored by: Dorian Merz <merz@ub.uni-leipzig.de>
co-authored by: Alexander Purr <purr@ub.uni-leipzig.de>

refs #21063 [fid] changes after using PHP CS Fixer 3.1.0 instead of 2.14.0 (friendsofphp/php-cs-fixer)

* PHP CS Fixer 3.1.0 is used in VuFind8
* working just with test/vufind.php-cs-fixer.php ruleset from VuFind8
** with updated ruleset
** some rule names / settings changed because of fixer version
* running by command:
** ../VuFind8/vendor/bin/php-cs-fixer fix --config=../VuFind8/tests/vufind.php-cs-fixer.php module/fid

* vendor/bin/phpcbf --standard=tests/phpcs.xml module/fid/
* vendor/bin/php-cs-fixer fix --config=tests/vufind.php_cs module/fid
* using PHP_CodeSniffer 3.6.2 instead of 3.4.0 (squizlabs/php_codesniffer)

* new Client methods:
** get order (uses fidis GET resource)
** update order (is complemented by fidis PUT resource - ticket 20690)
* add new route for EditOrder
* new UserController methods
** editOrderAction -> loads order, form-config & view; checks EditOrder-Permission
** updateOrder
** applyStatusOptions for correct prefilling and translate of status options
* new form-configs for simple (only status) and complete (status and due date) form
* new configuration blocks in fid.ini (disabled)
** OrderList section for displaying additional columns in order list table
** Edit section (depending on order type - here pda and digitization) sets form type (basic / complete) and possible status options
* templates
** add configured columns (like type, status, due date, edit button) on admin order list (and nested templates)
** new edit order main template (incl. some order information)
** new basic and complete form template
* add getter and se...

* add action in User Controller
* add form for password confirmation
* check credentials in Client
* add properties in User dto for deletion
* check for deleted property on login in Authenticator
* add default translation texts
* add template for success message
* redirect to home page after closing of modal

Alexander Purr authored 4 years ago and Dorian Merz committed 4 years ago

* using reload flag within user details request to force refresh
* do not save order list in session any more

Alexander Purr authored 4 years ago and Dorian Merz committed 4 years ago

* remove manual save of order to user session

Gregor Gawol authored 5 years ago and Dorian Merz committed 5 years ago

* set client function
* set get it box function
* set some translations

Sebastian Kehr authored 5 years ago and Dorian Merz committed 5 years ago

* fix: properly handle empty user data on hydration
* add missing translations
* account for anonymous logons on authorization
* remove headline in template

Alexander Purr authored 5 years ago and Dorian Merz committed 5 years ago

* citation is pre formatted with HTML and used in view
* add order to session saved user
* provides complete order list (even newest orders)
* create common getOrderLabel function

Sebastian Kehr authored 5 years ago and Dorian Merz committed 5 years ago

* add xdebug related headers to fidis requests
* update composer.lock

Robert Lange authored 5 years ago and Dorian Merz committed 5 years ago

* set library list in session correctly in method requestLibraryList
* add method 'requestLibraryById' for getting single library from api

* introduces new Exception types
* uses those Exceptions to authorize user

Sebastian Kehr authored 5 years ago and Dorian Merz committed 5 years ago

* API calls
* menu link
* translations

* adds actions and routes to
** user list
** user profile manipulation
* introduces basic authorization and permission handling

* introduces Admin config section containing
** editable fields
** applicable user permissions
** disable select inputs

* user overview
** styles user overview as a table
** links to user edit page for each

* adds 'denied' values for unselected permissions

* force login for admin pages
* flushes user list cache on successfull edit
** displays latest data in user list

* reacts on admin roles from API (cf. #15692)

* VuFind permission handling
** adds PermissionProvider to handle FID API permissions via Permission ViewHelper

Sebastian Kehr authored 5 years ago and Dorian Merz committed 5 years ago

* introduce custom method for password updates
* improvements to user access level selection
* improved user creation form look
* set college value in update form
* translate username to email address

Robert Lange authored 5 years ago and Dorian Merz committed 5 years ago

* add select in final registration form
* add properties to model and dto
* remove dto for permissions, use simple array instead
* set permission (group) in ILSAuthenticator
* show !multiple! groups in profile
* add select in update from
* refactor User model => extra property 'role'

Robert Lange authored 5 years ago and Dorian Merz committed 5 years ago

Co-authored-by: Sebastian Kehr <kehr@ub.uni-leipzig.de>

Sebastian Kehr authored 5 years ago and Dorian Merz committed 5 years ago

* migration of former core-module-package contents
* first adjustments of api client logon functionality
* fix initial registration step
* registration finalization adjustments
* fetch libraries on registration
* improved logon client method
* refresh logon only if stale
* throw exception on bad credentials
* adjust config files
* fetch user details only if logged on
* rename namespace, text domain as well as module and theme

* untrack compiled css
* let registration form look like login form
* rename ils driver for config injection by ils connection
* use aliases for authenticator and ils driver
* let authenticator support account creation
* enable account creation in base config
* override default account creation route

* introduce user controller and update action