Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Configure Renovate #1

Open
wants to merge 10,000 commits into
base: 3.10-dev
Choose a base branch
from

Conversation

renovate-bot
Copy link

@renovate-bot renovate-bot commented Jun 18, 2022

Mend Renovate

Welcome to Renovate! This is an onboarding PR to help you understand and configure settings before regular Pull Requests begin.

🚦 To activate Renovate, merge this Pull Request. To disable Renovate, simply close this Pull Request unmerged.


Detected Package Files

  • composer.json (composer)
  • .drone.yml (droneci)
  • .github/workflows/cacert-update.yml (github-actions)
  • .github/workflows/create-translation-pull-request-v4.yml (github-actions)
  • package.json (npm)

Configuration Summary

Based on the default config's presets, Renovate will:

  • Start dependency updates only once this onboarding PR is merged
  • Enable Renovate Dependency Dashboard creation.
  • If Renovate detects semantic commits, it will use semantic commit type fix for dependencies and chore for all others.
  • Ignore node_modules, bower_components, vendor and various test/tests directories.
  • Autodetect whether to pin dependencies or maintain ranges.
  • Rate limit PR creation to a maximum of two per hour.
  • Limit to maximum 10 open PRs at any time.
  • Group known monorepo packages together.
  • Use curated list of recommended non-monorepo package groupings.
  • A collection of workarounds for known problems with packages.

🔡 Would you like to change the way Renovate is upgrading your dependencies? Simply edit the renovate.json in this branch with your custom config and the list of Pull Requests in the "What to Expect" section below will be updated the next time Renovate runs.


What to Expect

With your current configuration, Renovate will create 81 Pull Requests:

Pin dependencies
Pin dependencies
Pin dependency @​fortawesome/fontawesome-free to v
Update dependency @​popperjs/core to v2.11.5
  • Schedule: ["at any time"]
  • Branch name: renovate/popperjs-core-2.x
  • Merge into: 4.2-dev
  • Upgrade @popperjs/core to 2.11.5
Update dependency @​rollup/plugin-babel to v5.3.1
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-babel-5.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-babel to 5.3.1
Update dependency accessibility to v3.0.17
  • Schedule: ["at any time"]
  • Branch name: renovate/accessibility-3.x
  • Merge into: 4.2-dev
  • Upgrade accessibility to 3.0.17
Update dependency autoprefixer to v10.4.8
  • Schedule: ["at any time"]
  • Branch name: renovate/autoprefixer-10.x
  • Merge into: 4.2-dev
  • Upgrade autoprefixer to 10.4.8
Update dependency chokidar to v3.5.3
  • Schedule: ["at any time"]
  • Branch name: renovate/chokidar-3.x
  • Merge into: 4.2-dev
  • Upgrade chokidar to 3.5.3
Update dependency codeception/module-phpbrowser to v1.0.3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-phpbrowser-1.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-phpbrowser to 1.0.3
Update dependency codemirror to v5.65.7
  • Schedule: ["at any time"]
  • Branch name: renovate/codemirror-5.x
  • Merge into: 4.2-dev
  • Upgrade codemirror to 5.65.7
Update dependency composer/ca-bundle to v1.3.3
  • Schedule: ["at any time"]
  • Branch name: renovate/composer-ca-bundle-1.x
  • Merge into: 4.2-dev
  • Upgrade composer/ca-bundle to 1.3.3
Update dependency karma-jasmine to v4.0.2
  • Schedule: ["at any time"]
  • Branch name: renovate/karma-jasmine-4.x
  • Merge into: 4.2-dev
  • Upgrade karma-jasmine to 4.0.2
Update dependency karma-verbose-reporter to v0.0.8
  • Schedule: ["at any time"]
  • Branch name: renovate/karma-verbose-reporter-0.x
  • Merge into: 4.2-dev
  • Upgrade karma-verbose-reporter to 0.0.8
Update dependency mediaelement to v5.0.5
  • Schedule: ["at any time"]
  • Branch name: renovate/mediaelement-5.x
  • Merge into: 4.2-dev
  • Upgrade mediaelement to 5.0.5
Update dependency phpmailer/phpmailer to v6.6.3
  • Schedule: ["at any time"]
  • Branch name: renovate/phpmailer-phpmailer-6.x
  • Merge into: 4.2-dev
  • Upgrade phpmailer/phpmailer to 6.6.3
Update dependency phpunit/phpunit to v8.5.28
  • Schedule: ["at any time"]
  • Branch name: renovate/phpunit-phpunit-8.x
  • Merge into: 4.2-dev
  • Upgrade phpunit/phpunit to 8.5.28
Update dependency postcss to v8.4.14
  • Schedule: ["at any time"]
  • Branch name: renovate/postcss-8.x
  • Merge into: 4.2-dev
  • Upgrade postcss to 8.4.14
Update dependency postcss-scss to v4.0.4
  • Schedule: ["at any time"]
  • Branch name: renovate/postcss-scss-4.x
  • Merge into: 4.2-dev
  • Upgrade postcss-scss to 4.0.4
Update dependency skipto to v4.1.6
  • Schedule: ["at any time"]
  • Branch name: renovate/skipto-4.x
  • Merge into: 4.2-dev
  • Upgrade skipto to 4.1.6
Update dependency tinymce to v5.10.5
  • Schedule: ["at any time"]
  • Branch name: renovate/tinymce-5.x
  • Merge into: 4.2-dev
  • Upgrade tinymce to 5.10.5
Update vue monorepo to v3.2.37
  • Schedule: ["at any time"]
  • Branch name: renovate/vue-monorepo
  • Merge into: 4.2-dev
  • Upgrade @vue/compiler-sfc to 3.2.37
  • Upgrade vue to 3.2.37
Update babel monorepo to v7.18.10
  • Schedule: ["at any time"]
  • Branch name: renovate/babel-monorepo
  • Merge into: 4.2-dev
  • Upgrade @babel/core to 7.18.10
  • Upgrade @babel/preset-env to 7.18.10
Update dependency @​rollup/plugin-commonjs to v21.1.0
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-commonjs-21.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-commonjs to 21.1.0
Update dependency @​rollup/plugin-node-resolve to v13.3.0
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-node-resolve-13.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-node-resolve to 13.3.0
Update dependency @​rollup/plugin-replace to v3.1.0
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-replace-3.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-replace to 3.1.0
Update dependency bootstrap to v5.2.0
  • Schedule: ["at any time"]
  • Branch name: renovate/bootstrap-5.x
  • Merge into: 4.2-dev
  • Upgrade bootstrap to 5.2.0
Update dependency codeception/codeception to v4.2.1
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-codeception-4.x
  • Merge into: 4.2-dev
  • Upgrade codeception/codeception to 4.2.1
Update dependency core-js to v3.24.1
  • Schedule: ["at any time"]
  • Branch name: renovate/core-js-3.x
  • Merge into: 4.2-dev
  • Upgrade core-js to 3.24.1
Update dependency cssnano to v5.1.12
  • Schedule: ["at any time"]
  • Branch name: renovate/cssnano-5.x
  • Merge into: 4.2-dev
  • Upgrade cssnano to 5.1.12
Update dependency diff to v5.1.0
  • Schedule: ["at any time"]
  • Branch name: renovate/diff-5.x
  • Merge into: 4.2-dev
  • Upgrade diff to 5.1.0
Update dependency eslint to v8.21.0
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-8.x
  • Merge into: 4.2-dev
  • Upgrade eslint to 8.21.0
Update dependency eslint-plugin-import to v2.26.0
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-import-2.x
  • Merge into: 4.2-dev
  • Upgrade eslint-plugin-import to 2.26.0
Update dependency eslint-plugin-vue to v8.7.1
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-vue-8.x
  • Merge into: 4.2-dev
  • Upgrade eslint-plugin-vue to 8.7.1
Update dependency fig/link-util to v1.2.0
  • Schedule: ["at any time"]
  • Branch name: renovate/fig-link-util-1.x
  • Merge into: 4.2-dev
  • Upgrade fig/link-util to 1.2.0
Update dependency friendsofphp/php-cs-fixer to v3.9.5
  • Schedule: ["at any time"]
  • Branch name: renovate/friendsofphp-php-cs-fixer-3.x
  • Merge into: 4.2-dev
  • Upgrade friendsofphp/php-cs-fixer to 3.9.5
Update dependency fs-extra to v10.1.0
  • Schedule: ["at any time"]
  • Branch name: renovate/fs-extra-10.x
  • Merge into: 4.2-dev
  • Upgrade fs-extra to 10.1.0
Update dependency jasmine-core to v3.99.1
  • Schedule: ["at any time"]
  • Branch name: renovate/jasmine-monorepo
  • Merge into: 4.2-dev
  • Upgrade jasmine-core to 3.99.1
Update dependency jquery-migrate to v3.4.0
  • Schedule: ["at any time"]
  • Branch name: renovate/jquery-migrate-3.x
  • Merge into: 4.2-dev
  • Upgrade jquery-migrate to 3.4.0
Update dependency karma to v6.4.0
  • Schedule: ["at any time"]
  • Branch name: renovate/karma-6.x
  • Merge into: 4.2-dev
  • Upgrade karma to 6.4.0
Update dependency karma-coverage to v2.2.0
  • Schedule: ["at any time"]
  • Branch name: renovate/karma-coverage-2.x
  • Merge into: 4.2-dev
  • Upgrade karma-coverage to 2.2.0
Update dependency laminas/laminas-diactoros to v2.14.0
  • Schedule: ["at any time"]
  • Branch name: renovate/laminas-laminas-diactoros-2.x
  • Merge into: 4.2-dev
  • Upgrade laminas/laminas-diactoros to 2.14.0
Update dependency psr/link to v1.1.1
  • Schedule: ["at any time"]
  • Branch name: renovate/psr-link-1.x
  • Merge into: 4.2-dev
  • Upgrade psr/link to 1.1.1
Update dependency rollup to v2.77.2
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-2.x
  • Merge into: 4.2-dev
  • Upgrade rollup to 2.77.2
Update dependency sass to v1.54.1
  • Schedule: ["at any time"]
  • Branch name: renovate/sass-1.x
  • Merge into: 4.2-dev
  • Upgrade sass to 1.54.1
Update dependency selenium-standalone to v8.2.0
  • Schedule: ["at any time"]
  • Branch name: renovate/selenium-standalone-8.x
  • Merge into: 4.2-dev
  • Upgrade selenium-standalone to 8.2.0
Update dependency squizlabs/php_codesniffer to v3.7.1
  • Schedule: ["at any time"]
  • Branch name: renovate/squizlabs-php_codesniffer-3.x
  • Merge into: 4.2-dev
  • Upgrade squizlabs/php_codesniffer to 3.7.1
Update dependency stylelint to v14.9.1
  • Schedule: ["at any time"]
  • Branch name: renovate/stylelint-14.x
  • Merge into: 4.2-dev
  • Upgrade stylelint to 14.9.1
Update dependency stylelint-scss to v4.3.0
  • Schedule: ["at any time"]
  • Branch name: renovate/stylelint-scss-4.x
  • Merge into: 4.2-dev
  • Upgrade stylelint-scss to 4.3.0
Update dependency terser to v5.14.2
  • Schedule: ["at any time"]
  • Branch name: renovate/terser-5.x
  • Merge into: 4.2-dev
  • Upgrade terser to 5.14.2
Update Node.js to v18
  • Schedule: ["at any time"]
  • Branch name: renovate/node-18.x
  • Merge into: 4.2-dev
  • Upgrade node to 18-alpine
Update actions/checkout action to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-checkout-3.x
  • Merge into: 4.2-dev
  • Upgrade actions/checkout to v3
Update actions/setup-node action to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/actions-setup-node-3.x
  • Merge into: 4.2-dev
  • Upgrade actions/setup-node to v3
Update dependency @​fortawesome/fontawesome-free to v6
Update dependency @​rollup/plugin-commonjs to v22
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-commonjs-22.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-commonjs to 22.0.1
Update dependency @​rollup/plugin-replace to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/rollup-plugin-replace-4.x
  • Merge into: 4.2-dev
  • Upgrade @rollup/plugin-replace to 4.0.0
Update dependency accessibility to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/accessibility-4.x
  • Merge into: 4.2-dev
  • Upgrade accessibility to 4.0.0
Update dependency choices.js to v10
  • Schedule: ["at any time"]
  • Branch name: renovate/choices.js-10.x
  • Merge into: 4.2-dev
  • Upgrade choices.js to 10.1.0
Update dependency codeception/codeception to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-codeception-5.x
  • Merge into: 4.2-dev
  • Upgrade codeception/codeception to 5.0.0
Update dependency codeception/module-asserts to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-asserts-3.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-asserts to 3.0.0
Update dependency codeception/module-db to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-db-3.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-db to 3.0.1
Update dependency codeception/module-phpbrowser to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-phpbrowser-3.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-phpbrowser to 3.0.0
Update dependency codeception/module-rest to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-rest-3.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-rest to 3.1.0
Update dependency codeception/module-webdriver to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/codeception-module-webdriver-3.x
  • Merge into: 4.2-dev
  • Upgrade codeception/module-webdriver to 3.1.2
Update dependency codemirror to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/codemirror-6.x
  • Merge into: 4.2-dev
  • Upgrade codemirror to 6.0.1
Update dependency commander to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/commander-9.x
  • Merge into: 4.2-dev
  • Upgrade commander to 9.4.0
Update dependency doctrine/inflector to v2
  • Schedule: ["at any time"]
  • Branch name: renovate/doctrine-inflector-2.x
  • Merge into: 4.2-dev
  • Upgrade doctrine/inflector to 2.0.4
Update dependency eslint-plugin-vue to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/eslint-plugin-vue-9.x
  • Merge into: 4.2-dev
  • Upgrade eslint-plugin-vue to 9.3.0
Update dependency ini to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/ini-3.x
  • Merge into: 4.2-dev
  • Upgrade ini to 3.0.0
Update dependency jasmine-core to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/major-jasmine-monorepo
  • Merge into: 4.2-dev
  • Upgrade jasmine-core to 4.3.0
Update dependency karma-jasmine to v5
  • Schedule: ["at any time"]
  • Branch name: renovate/karma-jasmine-5.x
  • Merge into: 4.2-dev
  • Upgrade karma-jasmine to 5.1.0
Update dependency mysql to v8
  • Schedule: ["at any time"]
  • Branch name: renovate/mysql-8.x
  • Merge into: 4.2-dev
  • Upgrade mysql to 8.0
Update dependency phpunit/phpunit to v9
  • Schedule: ["at any time"]
  • Branch name: renovate/phpunit-phpunit-9.x
  • Merge into: 4.2-dev
  • Upgrade phpunit/phpunit to 9.5.21
Update dependency postgres to v14
  • Schedule: ["at any time"]
  • Branch name: renovate/postgres-14.x
  • Merge into: 4.2-dev
  • Upgrade postgres to 14-alpine
Update dependency psr/link to v2
  • Schedule: ["at any time"]
  • Branch name: renovate/psr-link-2.x
  • Merge into: 4.2-dev
  • Upgrade psr/link to 2.0.1
Update dependency psr/log to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/psr-log-3.x
  • Merge into: 4.2-dev
  • Upgrade psr/log to 3.0.0
Update dependency stylelint-config-standard to v26
  • Schedule: ["at any time"]
  • Branch name: renovate/stylelint-config-standard-26.x
  • Merge into: 4.2-dev
  • Upgrade stylelint-config-standard to 26.0.0
Update dependency tinymce to v6
  • Schedule: ["at any time"]
  • Branch name: renovate/tinymce-6.x
  • Merge into: 4.2-dev
  • Upgrade tinymce to 6.1.2
Update dependency wamania/php-stemmer to v3
  • Schedule: ["at any time"]
  • Branch name: renovate/wamania-php-stemmer-3.x
  • Merge into: 4.2-dev
  • Upgrade wamania/php-stemmer to 3.0.0
Update dependency web-auth/webauthn-lib to v4
  • Schedule: ["at any time"]
  • Branch name: renovate/web-auth-webauthn-lib-4.x
  • Merge into: 4.2-dev
  • Upgrade web-auth/webauthn-lib to 4.0.5
Update peter-evans/create-pull-request action to v4
Update symfony packages to v6 (major)

🚸 Branch creation will be limited to maximum 2 per hour, so it doesn't swamp any CI resources or spam the project. See docs for prhourlylimit for details.


❓ Got questions? Check out Renovate's Docs, particularly the Getting Started section.
If you need any further assistance then you can also request help here.


This PR has been generated by Mend Renovate. View repository job log here.

roland-d and others added 30 commits April 2, 2022 14:07
* Make all Cassiopeia variables !default

* Fix double
* fix issue #36545

* fix code style issue

* fix another code style issue

Co-authored-by: Allon Moritz <[email protected]>
Co-authored-by: Quy <[email protected]>
* fix it

* Remove unused import

* Update ToolbarHelper.php
* [4.1] Web Assets everywhere

2nd pass at making sure we use the web asset manager everywhere

* Update administrator/components/com_installer/tmpl/updatesites/default.php
* layout="joomla.form.field.list-fancy-select"

* code style
This pr adds the required table caption and column/row scope to the table.

There are no visual changes and brings this table into line with all other admin tables.

As webauthn requires https this PR cannot be tested on a site without https.

Co-authored-by: Quy <[email protected]>
* Restore image

* Update components/com_finder/tmpl/search/default_result.php

Co-authored-by: Richard Fath <[email protected]>
Something broke the `SELECT *` query, resulting in a NULL id when
it was finally evaluated against the DB in TasksModel. This broke
the `scheduler:run` console command which is fixed by this commit.
* styles

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Benjamin Trenkle <[email protected]>

* Freely select to also copy styles from parent or childs (of the same parent)

* cleanup

* Update administrator/components/com_templates/tmpl/template/default_modal_child_body.php

Co-authored-by: Quy <[email protected]>

* update

Signed-off-by: dgrammatiko <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Richard Fath <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/tmpl/template/default_modal_child_body.php

Co-authored-by: Quy <[email protected]>

* Update administrator/language/en-GB/com_templates.ini

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/View/Template/HtmlView.php

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/Controller/TemplateController.php

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php

Co-authored-by: Quy <[email protected]>

* sprintf

* txt

* oops

* Update administrator/language/en-GB/com_templates.ini

Co-authored-by: Quy <[email protected]>

* Update administrator/components/com_templates/src/Model/TemplateModel.php
Change the layout to vertical in cassiopeia so it is the same as in atum. This makes it much easier to read.

Co-authored-by: Quy <[email protected]>
# Conflicts:
#	administrator/components/com_banners/tmpl/banners/default.php
#	administrator/components/com_banners/tmpl/clients/default.php
#	administrator/components/com_categories/tmpl/categories/default.php
#	administrator/components/com_contact/tmpl/contacts/default.php
#	administrator/components/com_fields/tmpl/fields/default.php
#	administrator/components/com_fields/tmpl/groups/default.php
#	administrator/components/com_installer/tmpl/database/default.php
#	administrator/components/com_installer/tmpl/languages/default.php
#	administrator/components/com_installer/tmpl/updatesites/default.php
#	administrator/components/com_languages/tmpl/languages/default.php
#	administrator/components/com_languages/tmpl/overrides/default.php
#	administrator/components/com_menus/tmpl/items/default.php
#	administrator/components/com_modules/tmpl/modules/default.php
#	administrator/components/com_newsfeeds/tmpl/newsfeeds/default.php
#	administrator/components/com_plugins/tmpl/plugins/default.php
#	administrator/components/com_privacy/tmpl/consents/default.php
#	administrator/components/com_privacy/tmpl/requests/default.php
#	administrator/components/com_redirect/tmpl/links/default.php
#	administrator/components/com_tags/tmpl/tags/default.php
#	administrator/components/com_templates/tmpl/styles/default.php
#	administrator/components/com_templates/tmpl/templates/default.php
#	administrator/components/com_users/tmpl/levels/default.php
#	administrator/components/com_users/tmpl/notes/default.php
#	administrator/components/com_users/tmpl/users/default.php
#	administrator/components/com_workflow/tmpl/stages/default.php
#	administrator/components/com_workflow/tmpl/transitions/default.php
#	administrator/components/com_workflow/tmpl/workflows/default.php
…llback to filter (#37478)

* When loading the menu form data, fallback to the session one

* unset access
* Fix Debug plugin to dump post requests

* Better comment
Co-authored-by: Quy <[email protected]>
* Check if the output to escape is null in BaseLayout

* Convert to inline

Co-authored-by: Benjamin Trenkle <[email protected]>
ReLater and others added 24 commits May 28, 2022 12:09
* Add interfaces for the objects who need a user

* cs

* always default

* Better desc

* only set the current user when not null

* tests

* Add unit tests

* version

* form model tests

* since

* cs

* Controller test

* make protected

* Fallback to global app identity when requesting the user

* cs

Co-authored-by: Roland Dalmulder <[email protected]>
* Initial commit to create a11y_issue.md

* Adding J version question

* Adding a11y label automatically

Per the GitHub docs, it's possible to add the appropriate label automatically in the YAML front matter: https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/manually-creating-a-single-issue-template-for-your-repository

Co-authored-by: Christiane Maier-Stadtherr <[email protected]>
* Merge action log DB changes

* Convert joomla action log plugin to services

* import

* cs

* doc

* cs

* Move to root

* Update plugins/actionlog/joomla/services/provider.php

Co-authored-by: Richard Fath <[email protected]>

* doc

* more doc

* Update plugins/actionlog/joomla/services/provider.php

Co-authored-by: heelc29 <[email protected]>

* Update plugins/actionlog/joomla/services/provider.php

Co-authored-by: heelc29 <[email protected]>

* moved to extension

* cs

* Update plugins/actionlog/joomla/services/provider.php

Co-authored-by: heelc29 <[email protected]>

* lower case

Co-authored-by: Richard Fath <[email protected]>
Co-authored-by: heelc29 <[email protected]>
Co-authored-by: Roland Dalmulder <[email protected]>
* Remove useless code

* CS

* Remove unnecessary use statement

Co-authored-by: Quy <[email protected]>
Co-authored-by: Robert Deutz <[email protected]>
Co-authored-by: Roland Dalmulder <[email protected]>
simple spelling correction
Co-authored-by: Brian Teeman <[email protected]>
Co-authored-by: Harald Leithner <[email protected]>
Co-authored-by: Quy <[email protected]>
Co-authored-by: Richard Fath <[email protected]>
Co-authored-by: Roland Dalmulder <[email protected]>
* Add Allon Moritz as code owner for libraries

* Remove web auth owner
* Add interfaces for the objects who need a user

* cs

* always default

* Better desc

* only set the current user when not null

* tests

* Add unit tests

* version

* form model tests

* since

* cs

* Controller test

* make protected

* State behaviour test

* Base model test

* adding more controller tests

* more tests

* item model test

* Remove test that

* Update tests/Unit/Libraries/Cms/MVC/Controller/BaseControllerTest.php

Co-authored-by: Brian Teeman <[email protected]>

* Doc

* Update tests/Unit/Libraries/Cms/MVC/Model/StateBehaviorTraitTest.php

Co-authored-by: Brian Teeman <[email protected]>

* Update tests/Unit/Libraries/Cms/MVC/Model/StateBehaviorTraitTest.php

Co-authored-by: Brian Teeman <[email protected]>

* doc

* doc

* path

* DIRECTORY_SEPARATOR

* doc

* Abstract view

* name

* path

* testdox combination with class

Co-authored-by: Brian Teeman <[email protected]>
# Conflicts:
#	.drone.yml
#	administrator/language/en-GB/install.xml
#	administrator/language/en-GB/langmetadata.xml
#	administrator/manifests/files/joomla.xml
#	administrator/manifests/packages/pkg_en-GB.xml
#	api/language/en-GB/install.xml
#	api/language/en-GB/langmetadata.xml
#	installation/language/en-GB/langmetadata.xml
#	language/en-GB/install.xml
#	language/en-GB/langmetadata.xml
#	libraries/src/Version.php
…912)

* Captive TFA

Import YubiKey plugin

* Captive TFA

Prepare SQL for new plugins

* Captive TFA

Import Fixed plugin (EXAMPLE)

* Captive TFA

System plugin

* Captive TFA

Replace the two factor authentication integration in the core

* Captive TFA

Fix wrong SQL / table name

* Captive TFA

Use correct prefix in the TFA helper when getting config UI

* Captive TFA

Fix a whoopsie or four

* Captive TFA

Coffee has long stopped working

* Captive TFA

Format the Methods page

* Captive TFA

Fix wrong TFA method internal name

* Captive TFA

Make sure we get the right view in the controllers

* Captive TFA

Remove yet another integration of the legacy TFA

* Captive TFA

Automatic migration from old TFA upon first login

* Captive TFA

Frontend MVC

* Captive TFA

Frontend routing

* Captive TFA

Style the method select page

* Captive TFA

Missed a legacy integration which needs removal

* Captive TFA

Better format of the configuration UI in the profile page

* Captive TFA

Use language strings when migrating data from legacy TFA

* Captive TFA

Only show the prompt to add a TFA method if none is already added

* Captive TFA

YubiKey should allow entry batching

This means that you can authenticate with any registered
YubiKey in your user profile.

* Captive TFA

Replace Tfa::triggerEvent

* Captive TFA

Import WebAuthn plugin

* Captive TFA

Improve TFA behavior on non-HTML pages. Basically, block
them!

* Captive TFA

Replace alerts with Joomla messages

* Captive TFA

Move onUserAfterDelete code to the `joomla` user plugin

* Captive TFA

Remove the System - Two Factor Authentication plugin

Use a trait for the application and fold the rest of
the code into Joomla's core user plugin.

* Captive TFA

Remove accidental leftover references to loginguard

* Captive TFA

Import Code by Email plugin

* Captive TFA

Post-installation messages

* Captive TFA

Enable the TFA plugins on NEW installations

* Captive TFA

XML formatting

* Captive TFA

Language and grammar in comments

* Captive TFA

Rearrange XML attributes

* Captive TFA

Fix typo

* Captive TFA

Fix wrong language key name

* Captive TFA

Remove leftover legacy TFA options

* Captive TFA

Fix wrong CSS class

* Captive TFA

Merge the padding classes

* Captive TFA

This lang string should never have had a link

* Captive TFA

Hide the Key emoji from screen readers

* Captive TFA

Accessibility improvements

* Captive TFA

Accessibility improvements

* Captive TFA

Accessibility improvements

* Captive TFA

Accessibility improvements

* Captive TFA

Accessibility improvements

* Captive TFA

Accessibility improvements

* Captive TFA

Use “Two Factor Authentication” / TFA consistently

* Captive TFA

Tytytytypo

* Captive TFA

Fixed PHPCS issue unrelated to PR but reported by Drone nonetheless

* Captive TFA

Lang improvement

Co-authored-by: Brian Teeman <[email protected]>

* Captive TFA

Lang improvement

Co-authored-by: Brian Teeman <[email protected]>

* Captive TFA

Remove no longer valid plugin options

* Captive TFA

Typo in plugin path

* Captive TFA

Move TFA options in com_users config next to the
password options

* Captive TFA

Add Show Inline Help button to com_users' options page

* Captive TFA

Move loading static assets to the view template

See joomla/joomla-cms#37356 for
the reasoning. This should REALLY have been documented
somewhere...

* Captive TFA

Fixed wrong plugin path

* Captive TFA

Language style guide

Co-authored-by: Brian Teeman <[email protected]>

* Captive TFA

Language style guide

* SQL code style and consistency fixes

* Add "CAN FAIL" installer hint

* Change longtext to mediumtext

* Change longtext to mediumtext in update script

* No default value for method

* Use real null values for last_used

* Captive TFA

Fix JS linter errors

* Captive TFA

Fix PHPCS issues after merging @richard67 's PR

* Captive TFA

Update formatRelative to use JNEVER, simplifying the
code in the view templates.

* Captive TFA

Fix typo

* Captive TFA

Fix transcription error

* Captive TFA

Show correct TFA column in the backend Users page

* Captive TFA

Fix PHPCS errors in UsersModel unrelated to this PR

* Captive TFA

Add note about supported browsers in TOTP's link

* Captive TFA

Remove bogus ESLint notice about qrcode

* Captive TFA

Fix confusing prompt

* Captive TFA

Consistently change ->qn to ->quoteName

* Captive TFA

Strict equality check

* Captive TFA

Move setSiteTemplateStyle to the views

* Captive TFA

Rename regbackupcodes to regenerateBackupCodes

* Captive TFA

Rename dontshowthisagain to doNotShowThisAgain

* Captive TFA

Throw deprecated notices from deprecated methods

* Captive TFA

Strict comparison

* Captive TFA

Typo in comment

* Captive TFA

Rename TwoFactorAuthenticationAware to TwoFactorAuthenticationHandler

* Captive TFA

Fix comment typo

* Captive TFA

Remove variables from SQL when not necessary

* codestyle changes

* Renamed SiteTemplateAware to SiteTemplateTrait

Change made against feedback item joomla/joomla-cms#37811 (review) for pull request #37811 with title "Improved Two Factor Authentication".

Feedback item marked the SiteTemplateAware trait name and had the following content:

> Still ...Aware is not a good name for a trait, since it usually denotes interfaces

* Remove more instances of "2SV"

Per feedback item joomla/joomla-cms#37811 (comment)

* s/Two Step Verification/Two Step Validation/

Per feedback item joomla/joomla-cms#37811 (comment)

* Language style

Per feedback item joomla/joomla-cms#37811 (comment)

* Remove unnecessary language string

* Remove redundant paragraph tags from PLG_TWOFACTORAUTH_EMAIL_XML_DESCRIPTION

Per feedback item joomla/joomla-cms#37811 (comment)

* Remove redundant paragraph tags from PLG_TWOFACTORAUTH_EMAIL_XML_DESCRIPTION

Per feedback item joomla/joomla-cms#37811 (comment)

The other file with the same language string I forgot to put in the previous commit.

* Remove the info tooltip in the methods list

Addresses feedback in joomla/joomla-cms#37811 (comment)

* Simplify the TFA enabled / disabled message

Per feedback item joomla/joomla-cms#37811 (comment)

* Fix layout of backup codes in methods list

Per feedback item joomla/joomla-cms#37811 (comment)

* Fix mail message

Per joomla/joomla-cms#37811 (comment)

* Confirm TFA method deletion

Per feedback item joomla/joomla-cms#37811 (comment)

* Simplify code label in Email plugin

Per feedback joomla/joomla-cms#37811 (comment)

We show short instructions above the field and the field label is simplified. Applied the same change to the Fixed plugin for consistency.

* Remove more dead code referencing the legacy TFA

* Use concrete events

This was the plan all along. Now that joomla/joomla-cms#36578 is merged we can FINALLY do it!

* WebAuthn support for some Android devices and FIDO keys

Backported from joomla/joomla-cms#37675

* Rename Tfa to Mfa

Ongoing process

* Move Joomla\CMS\Event\TwoFactor to Joomla\CMS\Event\MultiFactor

Ongoing process

* Two Factor Authentication => Multi-factor Authentication

Ongoing process

* `#__user_tfa` => `#__user_mfa`

Ongoing process

* twofactorauth => multifactorauth

Ongoing process

* Change the post-install message

Ongoing process

* Remove references to “second factor”

Ongoing process

* Remove the legacy TFA plugins

* I missed a few things

* I missed a few more things

* Wrong redirection from post-installation messages

Addresses joomla/joomla-cms#37811 (comment)

* Fix NotifyActionLog expected event names

Addresses feedback item joomla/joomla-cms#37811 (comment)

* Improve display of Last Used date

Addresses feedback item joomla/joomla-cms#37811 (comment)

* MFA extension helper

moves the group to the correct alpha order in the array now that it doesnt begin with T

* Remove unused field

* Remove no longer used language strings

* Undo changes in old SQL scripts

* Improve layout and accessibility of the methods list page

Based on VoiceOver testing on macOS 12.4 and the feedback from joomla/joomla-cms#37811 (comment) and joomla/joomla-cms#37811 (comment)

* Add missing options to plg_multifactorauth_email

* Sort lines alphabetically

Why not confuse the translators with out of order labels providing zero context to what they are translating? It's the One True Joomla Way...

* Add label to the One Time Emergency Password input

Per feedback item joomla/joomla-cms#37811 (comment)

* Sort lines

* Fix PHPCS complaint

* Formatting of XML files

* Forgot to remove extra CSS class

* Apply suggestions from code review

Formatting, wrong copyright and version information

Co-authored-by: heelc29 <[email protected]>

* Commit suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Commit formatting suggestions from code review

Co-authored-by: heelc29 <[email protected]>

* Update build/media_source/plg_multifactorauth_webauthn/js/webauthn.es6.js

Co-authored-by: heelc29 <[email protected]>

* Fix update SQL

Feedback item joomla/joomla-cms#37811 (review)

* Onboarding would result in a PHP exception

Feedback item joomla/joomla-cms#37811 (comment)

* Make MFA plugins' publish state consistent between MySQL and PostgreSQL

Feedback item joomla/joomla-cms#37811 (review)

* Update administrator/components/com_users/src/Controller/MethodsController.php

Co-authored-by: heelc29 <[email protected]>

* Update administrator/components/com_admin/sql/updates/mysql/4.2.0-2022-05-15.sql

Co-authored-by: heelc29 <[email protected]>

* Update administrator/components/com_admin/sql/updates/postgresql/4.2.0-2022-05-15.sql

Co-authored-by: heelc29 <[email protected]>

* Update administrator/components/com_admin/sql/updates/mysql/4.2.0-2022-05-15.sql

Co-authored-by: heelc29 <[email protected]>

* Update administrator/components/com_admin/sql/updates/postgresql/4.2.0-2022-05-15.sql

Co-authored-by: heelc29 <[email protected]>

* Update administrator/components/com_admin/sql/updates/postgresql/4.2.0-2022-05-15.sql

Co-authored-by: Richard Fath <[email protected]>

* Restore obsolete language strings

Per discussion with @bembelimen

I had to rename One Time Emergency Passwords to Backup Codes so as not to make major changes to the obsolete language strings. Having them named One Time Emergency Passwords (OTEPs) was both misleading (they are not passwords, they are second factor authentication codes) and would collide with the `_OTEP_` component of language existing strings. Backup Codes is a good compromise, one that is also field tested for nearly seven years. So, there you go!

* Re-add the obsolete plugins' language files

Per discussion with @bembelimen

Yes, it's pointless, it looks wrong, it is what it is. At least I've put a header that this file needs to be removed.

* Remove no longer used twofactor field

* Rename CSS class to com-users-profile__multifactor

* Update administrator/language/en-GB/plg_multifactorauth_email.sys.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/plg_multifactorauth_email.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/plg_multifactorauth_email.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/com_users.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/com_users.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/com_users.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/com_users.ini

Co-authored-by: Brian Teeman <[email protected]>

* Update administrator/language/en-GB/com_users.ini

Co-authored-by: Brian Teeman <[email protected]>

* Accessibility improvement

* Improve language

* Change the heading level

* Fix case of extension registry file

Regression after renaming TFA to MFA

* Remove accidental double space after echo

* Remove BS3 leftovers

* Remove BS3 leftovers

* Remove BS3 leftovers

* Update administrator/components/com_users/tmpl/methods/list.php

Co-authored-by: Brian Teeman <[email protected]>

* Update components/com_users/tmpl/methods/list.php

Co-authored-by: Brian Teeman <[email protected]>

* PHP warnings when there are no MFA plugins enabled

* MFA onboarding was shown with no MFA plugins enabled

* Backup codes alert is narrower than page on super-wide screens

* Backup codes alert heading font size fix in backend

* Revert wording for JENFORCE_2FA_REDIRECT_MESSAGE

* Backend users without `core.manage` on com_users were blocked

They were blocked from setting up / manage their on MFA,
blocked from the onboarding page and blocked from the
captive login page.

* Onboarding in backend shouldn't have a Back button

* Improve layout of method add/edit page

* Remove unnecessary H5 tag from TOTP setup table

* Kill that bloody Back button with fire

* MFA WebAuthn: use Joomla.Text instead of Joomla.JText

* MFA WebAuthn: show meaningful error on HTTP

* MFA Email: more sensible email body

* MFA WebAuthn: must be able to edit the title

* MFA add/edit: remove placeholders, replace with help text

* Heading levels

We assume an H1 will already be output on the page. This is always true on Atum and never true on Cassiopeia — but very likely on real world sites's frontend templates. So it's a compromise which is at least better than the previous case of starting at h3 or h4.

* Editing a user would show the wrong interface

When editing a user other than ourselves we need to show the MFA editing interface for the user being edited, not the MFA editing interface for our own user.

* Refactor security checks

Now they are conforming to the original intention

* Add missing Group By to the SQL query

* Show MFA enabled when a legacy method is enabled

* Users: filter by MFA status

* Language clarification

* Move the frontend onboarding page header to the top

* User Options language clarification

* PostgreSQL installation SQL wasn't updated

* Adding periods to the end of lines of error messages you will never, ever see

* Remove a tab

* Remove another tab from a comment

* Typo removing junk

* Remove useless imports

* Busywork

* Typo in the INI file

* Align comment

* Remove redundant SQL for PostgreSQL

* Typo in labels' `for` attribute

* Move backup codes to the top of the page

* Mandatory and forbidden MFA was not taken into account

If only one group matched, due to typo.

* Show information when MFA is mandatory

* Make the buttons smaller

* The secondary button looks horrid in the frontend

* Redirect users to login page in the frontend

When they try to access a captive or methods / method page.

* MFA Email: fallback to standard mailer when the mail template isn't installed

* Delete backup codes when the last MFA method is deleted

* Use text inputs for TOTP

With the correct input box attributes

* Fix the buttons for WebAuthn

* Clarify language strings

* Use toolbar buttons in the backend

Except for screen size small and extra small. Over there we ALSO display the inline content buttons because the toolbar buttons are hidden behind an unintuitive gears icon.

JUST BECAUSE THE DEFAULT JOOMLA WAY IS TO USE A TOOLBAR IT DOES NOT MEAN THAT IT MAKES SENSE ALWAYS, EVERYWHERE. THE USER IS KING. WE SERVE THE USER, NOT OURSELVES!

* Change the icon classes

* Forgot to copy over the changes to the frontend

* Regression: configure existing authenticators

We used to set field_type to custom to make the code entry disappear. After the changes to the field type handling we need to instead set input_type to hidden.

* Backup codes should never become the default method automatically

* Improve methods list layout

Now it is more clear which methods are enabled and which are available.

* Use toolbar buttons in backend pages

Except when the screen size is extra small which is the point where the toolbar is hidden and the interface becomes unintuitive.

* Fix return URLs for backend MFA edit pages

* Edit / Delete buttons mention the auth method name in the respective button's visually hidden text

* RTL aware back buttons

* Consistent use of the term Fixed Code

* Fix typo

Co-authored-by: Brian Teeman <[email protected]>
Co-authored-by: Richard Fath <[email protected]>
Co-authored-by: heelc29 <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.