Koha-community/Koha
13
7
Fork 0
Code Issues Releases Wiki Activity
Main Koha release repository https://koha-community.org
22237 commits 35 branches 612 tags 1.8 GiB
Perl 45.3%
JavaScript 39.4%
HTML 7.2%
XSLT 3.9%
Vue 1.4%
Other 2.3%
Find a file
Mark Tompsett 85489f7bdf Bug 643: QA Followup - server-side verification of permissions 
Only allow $force_allow=1 if the logged in user has permissions.

TEST PLAN
---------
Attempt to intentionally override the checkout by passing an
appropriately handcrafted URL.
-- Regardless of the force_allow value, it should be not allowed
   for those lacking the force_checkout permission.

NOTE: I didn't test this. I figured Marc Veron could do that. :)
      (Sorry, couldn't easily get git bz to work with the accent)

Signed-off-by: Nick Clemens <nick@quecheelibrary.org>
Signed-off-by: Katrin Fischer <Katrin.Fischer.83@web.de>
Signed-off-by: Tomas Cohen Arazi <tomascohen@gmail.com>
2014-10-31 15:15:49 -03:00
acqui Bug 7162: Factorize code for order cancellation (QA fixes) 2014-10-30 00:44:16 -03:00
admin Bug 12844: Use Koha::Number::Price where it can be useful 2014-10-27 12:56:21 -03:00
authorities Bug 12573: Use correct comparison for comparing strings 2014-10-28 10:44:21 -03:00
basket Bug 9530 making changes to basket/sendbasket.pl 2014-10-27 10:38:20 -03:00
C4 Bug 11876: (qa-followup) some minor changes 2014-10-31 14:25:13 -03:00
catalogue
cataloguing Bug 12884: Get rid of redefined subroutine warnings in dateaccessioned.pl 2014-10-22 14:18:40 -03:00
circ Bug 643: QA Followup - server-side verification of permissions 2014-10-31 15:15:49 -03:00
course_reserves
debian Bug 13173 - remove some operations that are no longer needed 2014-10-31 12:11:03 -03:00
docs Bug 7143 Adding a new developer to the history 2014-10-11 16:23:08 -03:00
errors Bug 11349: Change .tmpl -> .tt in scripts using templates 2014-07-17 11:05:49 -03:00
etc Revert "Bug 9828: More specific indexing of UNIMARC 6XX fields" 2014-10-28 12:02:34 -03:00
install_misc Bug 12068 - label-create-pdf.pl Add support for RTL language 2014-10-21 16:14:57 -03:00
installer Bug 7162: DBRev 3.17.00.043 2014-10-30 01:02:36 -03:00
Koha Bug 7162: Update DBIx 2014-10-30 01:05:11 -03:00
koha-tmpl Bug 643: Followup: Display override button only if issuing staff member has force_checkout permission 2014-10-31 15:15:39 -03:00
labels
members
misc Bug 12995 - script update_totalissues.pl stops on corrupted record 2014-10-31 14:14:24 -03:00
offline_circ
opac Bug 10433 - colspan calculation done by opac/opac-reserve.pl should be moved to template 2014-10-29 22:11:44 -03:00
OpenILS Bug 9239 QA follow-up: remove stray debug code 2013-03-16 21:32:34 -04:00
patron_lists
patroncards
plugins
reports Bug 13141: Add ability for biblio_framework to be a dropdown in Guided Reports 2014-10-31 13:14:59 -03:00
reserve
reviews
rotating_collections
selenium
serials Bug 5342: Serial claiming improvements: add a counter 2014-10-28 10:07:37 -03:00
services
skel Bug 11078: Add locking to rebuild_zebra 2014-02-28 22:21:41 +00:00
sms
suggestion
svc Bug 12590 - Support deletion of biblio in svc API 2014-10-27 11:13:49 -03:00
t Bug 11876 [Unit test] Add a diff view to staged MARC Records 2014-10-31 14:25:18 -03:00
tags Bug 11349: Change .tmpl -> .tt in scripts using templates 2014-07-17 11:05:49 -03:00
test
tmp/modified_authorities
tools Bug 11876: (qa-followup) some minor changes 2014-10-31 14:25:13 -03:00
virtualshelves Bug 9530 making changes to virtualshelves/sendshelf.pl 2014-10-27 10:38:25 -03:00
xt Bug 12653: (RM followup) Fix the test count 2014-10-29 20:43:52 -03:00
.editorconfig Bug 12545: Add EditorConfig.org file to the source tree 2014-08-22 11:07:45 -03:00
.htaccess Fix file permissions: if it is not a script, it should not be executable. 2010-04-16 00:40:34 -04:00
.mailmap Bug 12479: (QA followup) minor fixes, and tcohen added 2014-06-30 10:04:10 -03:00
about.pl Bug 13140: Add a notice on the About page about GRS-1 deprecated 2014-10-27 11:24:09 -03:00
changelanguage.pl Bug 6755 Problems with switching languages 2011-09-23 09:47:09 +12:00
edithelp.pl
fix-perl-path.PL
help.pl Bug 11238: contruct links to the appropriate manual version dynamically 2013-11-23 19:30:16 +00:00
INSTALL
install-CPAN.pl
INSTALL.debian Bug 8092 follow-up: Add optional dependency on CHI 2012-06-09 13:08:18 +02:00
INSTALL.fedora7
INSTALL.opensuse
INSTALL.ubuntu
koha_perl_deps.pl bug 10548: fix count of missing required dependencies by koha_perl_deps.pl 2013-07-11 14:03:32 +00:00
kohaversion.pl Bug 7162: DBRev 3.17.00.043 2014-10-30 01:02:36 -03:00
LICENSE
mainpage.pl Bug 11349: Change .tmpl -> .tt in scripts using templates 2014-07-17 11:05:49 -03:00
Makefile.PL Bug 12651: DOM indexing is the default 2014-10-27 12:35:44 -03:00
MANIFEST.SKIP
README
README.robots
rewrite-config.PL Bug 12031: [QA Follow-up] Undefined routine and change to koha-conf.xml 2014-10-27 10:38:11 -03:00

README 

Koha is a free software integrated library system.

Koha is distributed under the GNU GPL version 3 or later.
Please read the file LICENSE for more details.

To install or upgrade Koha, please see the INSTALL file appropriate
to your platform.

Report bugs at http://bugs.koha-community.org/

Visit the Koha Project website at http://www.koha-community.org/