|
2111 | Installer and Upgrader | Bug Report | Medium | Upon trying to install flyspray release, setup says I'm... | Planned | |
| | | 24.03.2016 | 05.06.2016 |
Task Description
When I tried to install a instance of flyspray that is a release, I am greeted with a screen that says that I am trying to install a development version of flyspray. Due to me using shared hosting, I am unable to run any composer commands.
My version of flyspray was downloaded from flyspray.org, so why would this be happening? Thanks
|
|
2112 | API | Bug Report | Medium | Assigned tickets aren't editable for lower privileged u... | Unconfirmed | |
| | | 31.03.2016 | 11.04.2016 |
Task Description
An assigned ticket can't be edited by a lower privileged user.
Steps to reproduce:
One Project, Two Users. User A is Admin, User B is Basic
A creates a Task.
A take ownership of the Task. (it’s important to do this AFTER saving the task. You cannot assign User A if you are A in this moment. Maybe another Bug...!?)
Now B is allowed to take ownershop too. B click now “Add me to assignees”.
Now B can edit the task.
If B click “save”, the task can’t be saved, because some fields haven’t the correct values (esp: state is now “unconfirmed”). Many error messages said, that unexpected values exist
Some weird moments:
Why can B edit a task? He have no rights to edit tasks...
If B are Basic and have “edit own Task”-Right too, this bug also exist.
|
|
2114 | Translations | TODO | Medium | Standardize the priority meaning across flyspray transl... | New | |
| | | 07.04.2016 | 26.03.2018 |
Task Description
Standardize the priority meaning across flyspray translations.
Idea:
0 - priority unset (database field default value)
1 - defer (or very low priority, often results the task is defered, see “Eisenhower principle”) 2 - low 3 - normal 4 - high 5 - very high
6 - flash (house burns, catastrophic event, website down, “boss” decision)
Some other software (other task planers/ email programs) use a 1-5 step priority. So an export feature to other software may merge priority 6 to priority 5 for such software.
In 2012 meaning was changed only in english translation.
Before normal was priority 2 in a 1-6 range, after it is priority 4 in a 1-6 range. It should be IMHO 3 in that 1-6 range.
|
|
2116 | Email | Bug Report | Medium | Error with email notification | Unconfirmed | |
| | | 08.04.2016 | 15.04.2016 |
Task Description
I have a major problem. At the first I thought that problem is on my server - Windows OS, IIS. But now when I have second bug tracker site on Apache server and error is the same I know that this is not server error but bug tracker error.
How can I help that we resolve this problem?
If e-mail need’s to be sent I got blank white page and nothing happens.
In attachment is my bug tracker with installer (setup) folder. If this somehow helps it?
Version which is used is 1.0 (latest on web) (edit by peterdd: was a mix of older Flyspray versions). The problem is that nothing works because e-mails are not working..
|
|
2119 | Backend/Core | Bug Report | Medium | function filter_input not always available | Researching | |
| | | 15.04.2016 | 15.04.2016 |
Task Description
filter_input() is in extension “Filter”.
It is enabled by default since PHP5.2, see http://php.net/manual/en/migration52.new-extensions.php but not “always”, see https://groups.google.com/forum/?hl=de#!topic/flyspray/QM75BvwPqGM
filter_input() is only used at 1 section in Flyspray (since 2014 up to v1.0rc1) in includes/fix.inc.php This is the commit https://github.com/Flyspray/flyspray/commit/40861911260812c99682fe3456350cb63bb243a9
How do we solve it? Several possibilities:
|
|
2121 | Backend/Core | Bug Report | Medium | 'my assigned tasks' uses like %?% search instead of use... | Confirmed | |
| 1.0 | | 19.04.2016 | 03.02.2018 |
Task Description
Problem: https://github.com/Flyspray/flyspray/pull/552
The button ‘My assigned tasks’ should search only by userid, not in username or realname with the LIKE ‘%...%’ operator.
Currently the button is using the same as doing an advanced search filling the ‘Assigned To’ input field. (currently ‘dev’ param) But that search param searches in userid, username and realname.
Edit: Implemented simpler solution: if param is digitsonly, then search by userid, otherwise by username and realname if that param exists.
|
|
2122 | Backend/Core | Bug Report | Medium | open_basedir restrictions for FS_CACHE_DIR not respecte... | Suspended | |
| | | 22.04.2016 | 16.08.2016 |
Task Description
Edit by peterdd: renamed task summary
Affected versions: at least Flyspray 0.9.9(.7/*?) up to Flyspray 1.0 RC1
Original report: Title ‘Problem regarding 0.9.7 (1.0) to 1.0 RC-1 update’
I tried to update BT from modified version (database in original state) 0.9.7 to 1.0 RC-1 but I got strange error.
PHP is 5.6.
I try to use: Precompiled with 3rd party libs for PHP5.6
and was doing as was written on upgrade procedure.
Strange is that “D:\SShopBT\includes\class.flyspray.php” there are errors regarding writtable path... Because the path is correct and all other Joomla and Wordpress web sites are working correctly..
After upgrade web site do not work att all. Login not working - just get error. So I must reverse (use backup) database and files.
Server is Windows Server and IIS (Internet Information Services)..
Complete error was (also seen in screenshot):
Warning: is_writable(): open_basedir restriction in effect. File(C:\PHP-temp) is not within the allowed path(s): (D:\) in D:\SShopBT\includes\class.flyspray.php on line 1162
Warning: is_writable(): open_basedir restriction in effect. File(C:\PHP-temp) is not within the allowed path(s): (D:\) in D:\SShopBT\includes\class.flyspray.php on line 1164
Warning: is_dir(): open_basedir restriction in effect. File(C:\Windows\TEMP\e865fa2fdfc11dbb32cc6262d247e766) is not within the allowed path(s): (D:\) in D:\SShopBT\includes\constants.inc.php on line 82
Warning: Cannot modify header information - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\header.php on line 14
Warning: Cannot modify header information - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\header.php on line 15
Warning: Cannot modify header information - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\header.php on line 16
Warning: session_start(): Cannot send session cookie - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\includes\class.flyspray.php on line 893
Warning: session_start(): Cannot send session cache limiter - headers already sent (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\includes\class.flyspray.php on line 893
Warning: Cannot modify header information - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\index.php on line 93
Warning: Cannot modify header information - headers already sent by (output started at D:\SShopBT\includes\class.flyspray.php:1162) in D:\SShopBT\index.php on line 94 Headers are already sent, this should not have happened. Please inform Flyspray developers.
|
|
2136 | User Interface | Bug Report | Medium | After updating user properties as admin - return to wro... | Confirmed | |
| | | 08.06.2016 | 23.07.2016 |
Task Description
Logged in as admin, modify a users group membership. After clicking update, you are returned to your logged-in profile (admin in this case). It should re-display the user’s profile you are editing.
The ‘back’ button will return to updated page.
|
|
2200 | User Interface | Bug Report | Medium | Incomplete list of timezones available in the user pref... | Unconfirmed | |
| | | 26.08.2016 | 26.08.2016 |
Task Description
The user preferences and the add new user screens both allow you to set the timezone offset of the user, however, we are only provided with whole hour offsets from GMT. This makes it impossible to select our timezone here in India, which is GMT+5:30 - IST(Indian Standard Time - Asia/Kolkata as per TZ Zoneinfo). In addition, there are also timezones in the GMT+x:45, which wouild also require to be handled. Note, this is totally independent of DST Changes, since some of the countries use DST(Like in Australia) and others do not(Like India).
Here is a link with more details of the same - http://www.timeanddate.com/time/time-zones-interesting.html
I will be trying to identify and fix the codebase to resolve this, and will hopefully have a patch to submit soon.
Regards R. K. Rajeev
|
|
2304 | Database Queries | Bug Report | Medium | Greek letters crash tags | Confirmed | |
| | | 26.10.2016 | 26.10.2016 |
Task Description
When adding a tag in Greek letters (e.g. “Δοκιμή”) I get:
Query {SELECT tag_id FROM `flyspray_list_tag` WHERE (project_id=0 OR project_id=?) AND tag_name LIKE ? ORDER BY project_id} with params {5,Δοκιμή} Failed! (Illegal mix of collations (latin1_swedish_ci,IMPLICIT) and (utf8_general_ci,COERCIBLE) for operation ‘like’)
|
|
2317 | User Interface | Bug Report | Medium | Date format wrong | Confirmed | |
| 1.1 devel | | 22.11.2016 | 22.11.2016 |
Task Description
In some parts of the world (primarily the US), the date is viewed as Month/Day/Year. However, all options in the current rc4 build are listed as Day/Month/Year aside from one, which goes ShortWrittenMonth/Day#/Year#.
This is poor from a customer perspective, and can be highly confusing. I can change the date globally to a correct format in the database, but this doesn’t help much as every user can select their own date which has all incorrect formats.
|
|
2323 | User Interface | Feature Request | Medium | show category tree in task list | Unconfirmed | |
| | | 13.12.2016 | 14.12.2016 |
Task Description
we should show the category tree in the task list. in the task we show the tree.
e.g. “Parent → Sub” instead of “Sub”
|
|
2328 | Backend/Core | Feature Request | Medium | Add [key] support for each project instead of FS# | Unconfirmed | |
| | | 20.01.2017 | 10.02.2017 |
Task Description
Adding key support for each project instead of using the prefix FS#<task_id>
Let the administrator choose the key for project.
What’s a project key? It prefixes each task in the project
|
|
2332 | Backend/Core | Bug Report | Medium | CSV export filename filtering | New | |
| | | 24.01.2017 | 24.01.2017 |
Task Description
The filename for the csv export is build based on project name and current date.
Due different handling of web browsers, the appropriate http header should send the filename in ascii and also provide them as utf-8 for web browsers who can handle that.
Related RFC5987
|
|
2338 | Backend/Core | Bug Report | Medium | Export tasks to csv has issues | Unconfirmed | |
| | | 02.02.2017 | 12.03.2019 |
Task Description
You cannot select the fields for export to csv. This means that the commentfield (edit: you mean task description, right?) is always exported too. As this commentfield task description (?) could contain quotes, comma’s etc (like people inserting copies of emails on an issue) it corrupts the output file and the file cannot be read by excel.
|
|
2343 | Email | Bug Report | Medium | Notification mail | Unconfirmed | |
| | | 14.02.2017 | 15.02.2017 |
Task Description
Good Morning,
I have this message error when I want configure SMTP Server : Completely unexpected exception: Connection could not be established with host 192.168.0.10 [Permission denied #13] This should never happend, please inform Flyspray Developers
My flyspray installs on CentOS v7. Postfix installs on the server but I don’t configure anymore.
Can you help me please
Julia LECLERC
|
|
2441 | Backend/Core | Bug Report | Medium | refactor dokuwiki image tags | New | |
| | | 15.09.2017 | 15.09.2017 |
Task Description
I’ve tried inserting an image in the intro message but it doesn’t show. Is there something broken in the formattext.inc file? Seems unlikley because it’s so old but can’t work out why nothing shows.
Alan
I had to disable some parts last year within dokuwiki quickly due sever reported security issues in that area.
As tradeoff embedding images currently don’t work within dokuwiki textareas in Flyspray.
As I too wish that feature reappear working for my projects, this is on my personal list. But requires focused free time because must be made secure.
Maybe instead of using fetch.php of dokuwiki, we can use Flypsray’s ?getfile=id , which also checks permissions. But must check also securly file types and maybe resize images to fit into the desired page (thumbnails).
|
|
2447 | Backend/Core | Feature Request | Medium | Allow notifications when a new task is created | Unconfirmed | |
| | | 26.10.2017 | 29.10.2017 |
Task Description
The only (only!) feature that I have missing in Flyspray is an option to receive email notifications when a new task is created
I think that this could be in the profile of the user, and/or in the main configurations as “send a notification to the -group- (admins?) when a new task is created”
Thanks a lot! flyspray r00lz after all these years, never failed, no bugs, no hacks, fast and efficient! :)
A Happy user.
|
|
2453 | Backend/Core | Bug Report | Medium | validate category before storing a new task | New | |
| 1.0 | | 14.12.2017 | 14.12.2017 |
Task Description
Currently the category_id is not checked if the value is legal for the project when a new task is created.
If invalid category_id is sent, deny creating task and show error message and show filled form again.
If no category_id is sent (or empty string) and category select is enabled:
or
implement feature request FS#2451 and show that user should select a category.
|
|
2536 | Backend/Core | Feature Request | Medium | store session in Flyspray database | New | |
| | | 21.01.2019 | 15.03.2019 |
Task Description
Currently the sessions are stored by the webservers default settings.
Having this sessions under control by Flyspray by storing it in the database has following advantages:
Allows handling of all sessions of a user by Flyspray.
Providing a session management for each user. The user can see on which devices he is currently logged in and could also force a logout on selective devices.
A forced logoff of all or some user sessions is easy implementable for admins.
Statistics about how many users and who is logged in. (user status: hide always, online, offline, do not disturb, ..)
Could make onpage-notifications easier to implement.
.. ?
Disadvantages:
A potential unknown security bug in Flyspray that could lead to reading a session db table could leak informations like who is currently online/active and make further attacks more focused or makes session takeover easier.
.. ?
|
|
2561 | Backend/Core | Feature Request | Medium | ability to limit assignee permissions (was:User without... | Confirmed | |
| | | 05.08.2019 | 08.08.2019 |
Task Description
I gave a role the following privileges:
A user with the assigned role can still modify the task descriptions and task details. (I want that user to only be able to add comments.) I think there is a bug. Is there a fix or walk around? Thx
|
|
2568 | Documentation | Bug Report | Medium | [MANUAL] a missing image in "Understanding Permissions:... | Unconfirmed | |
| | | 01.09.2019 | 02.09.2019 |
Task Description
In the page http://www.flyspray.org/manual/group_permissions/ , it is written
Shown is an image of the permissions page for the Flyspray project’s Contributors group
but there is no image in there.
I can think of two ways of dealing with that I guess:
add an image
remove the sentence
What do you think?
|
|
2585 | User Interface | TODO | Medium | Upgrade CKEditor to 4.13 | New | |
peterdd | | | 02.12.2019 | 17.02.2020 |
Task Description
To fix some other open tasks, an update of the CKEditor4 files is probably the best way.
Starting with CKEditor4 ‘Basic’ preset, evaluate every additional Plugin before adding them to the config.
Because the selection of plugins starts with the ‘Basic’ preset, some configs are disabled in the resulting config.sys like the ‘Strike’ button or the Copy/Paste functionality.
I am also evaluating the possibilities to make some of the options configurable within the Flyspray configuration. It is probably required to analyze if a setting applies to only CKEditor syntax or would be also by used for installs using dokuwiki syntax/engine.
I can also imagine enable/disable features based on Flyspray user permissions. (but that requires not only CKEditor config, but also server side changes like HTMLpurifier settings.)
Languages
Just choose all languages available in the CKBuilder.
Probably we need to adjust the CKEditor to use the users Flyspray language settings too. I changed my language to french in a test install but the CKEditor still shows german user interface. (probably detected by browser http request headers)
Compare that the used language abbreviations work together between files in lang/ of Flyspray and that of CKEditors. (Flyspray: lang/pt_br.php vs. CKEditor: js/ckeditor/lang/pt-br.js)
Theme selection
Probably use a CKEditor source maintained Moona-Lisa or Moona as these are easier to modify their color themes like auto light/dark mode browser detection or base colors that match the theme.
Moona Color currently has issues and not maintained by CKEditor guys.
Plugins
The previous contained CKEditor 4.4.7 probably hat the standard preset used.
Following I keep track of plugins we should add to the basic preset. This list is growing/edited until the final config that ships with Flyspray is found.
Mentions
This would enable choosing a user by their username, like @peterdd.
Requires writing an extra php file for retrieving a matching list of users, that respects current user permissions and status of users (like not fetch disabled users). This extra php file could be also used for the editor textareas with a dokuwiki toolbar.
Auto Grow
This is just a promising usability improvement. No scrollbars needed when writing longer texts.
Auto Link
This just sound like a promising usability improvement. Not tried yet. Only add when there is use case (other plugins usability profit from it) for Flyspray.
Blockquote
Probably required because existing Flyspray installs had it too and citing a comment/text snippet should be also able.
Code Snippet
Probably requires deeper look how secure integrate with server side cleanup (HTMLpurifier).
h1-h6 and other tags. Probably required as previous Flyspray versions used that too. (TODO: What happens to old content with h1-h6 tags when editing with a CKEditor without the Format plugin?)
Also configure it to accept only tags useful for within Flyspray. (see also server side configuration of HTMLPurifier)
Existing Flysprays had this too and probably a good thing when the user can cleanup their word/whateverwhere pasted stuff cleaned before HTMLpurifier does it server side too with maybe surprises to the end user.
Show Blocks
Gives the user some confidence on command if his current editing has the right/intended structure.
Well, that missing is one of the reasons why I hated WYSIWYG or wannabe WYSIWYG editors in the past. Uncertainty by the end user, and pain for the admin/webmaster when he sees the garbage stored in the database (endless spans and other garbage tags partly wrong nested by just pasting from Word documents.) (little bug in CKEditor 4.13.0: doesn’t expand the area with plugin Auto Grow enabled)
Source Editing Area
Useful for people that can read HTML or are responsible to fix things.
|
|
2587 | Backend/Core | TODO | Medium | display_errors=1 should not set in release candidate | Unconfirmed | |
| | | 18.12.2019 | 18.12.2019 |
Task Description
display_errors = 1 should not set in include/fix.inc.php for releases or releases candidate, because with this it is not possibele to disable the error reporting globaly.
The problem is, if I want to enable full error reporting to logfile via “error_log=…” in php.ini, then the error will also full reported to user. Full error reporting is a hig risk for security.
Did you installed an official release or did you used an inoffical docker?! flyspray-1.0-rc9
Steps done to create the problem: Create a file php.in in base directory with follow contens: error_reporting = E_ALL | E_STRICT log_errors = On display_errors = Off error_log = /var/log/php-flyspray-errors.log
Expected behavior: Errors only to log file
Experienced behavior: All errors goes also to user. The option “display_errors = Off” has no effect.
|
|
2601 | Public Relations | Feature Request | Medium | http -> https missing redirection (19-04-09) | Assigned | |
Florian SchmitzCristian Rodríguez R. | | | 21.04.2020 | 25.09.2020 |
Task Description
From: https://groups.google.com/forum/?hl=en#!topic/flyspray/rAnks5y_uLk
19-04-09 // More one year ago.
There are not http → https redirections.
Only one example: - http://www.flyspray.org/docs/download/ is not redirected to https://www.flyspray.org/docs/download/
Note: It is better to have the main website in https://flyspray.org/.
http://www.flyspray.org/ + https://www.flyspray.org/ + http://www.flyspray.org/ must be redirected to https://flyspray.org/
|
|
2608 | Email | Bug Report | Medium | Notification email sent although not requested | Unconfirmed | |
| | | 05.05.2020 | 05.05.2020 | |
|
2612 | User Interface | Information | Medium | Restrict some projects to users | Waiting on Customer | |
| | | 19.08.2020 | 24.08.2020 | |
|
2616 | Backend/Core | Bug Report | Medium | There is a problem after a http/https link on a line wi... | Confirmed | |
| | | 25.09.2020 | 08.02.2021 | |
|
2620 | Backend/Core | TODO | Medium | PHP8 compatibility | New | |
peterdd | | | 26.11.2020 | 10.02.2021 | |
|
2621 | Backend/Core | Bug Report | Medium | php notice/warning when reopening in some circumstances | New | |
peterdd | 1.0 | | 27.11.2020 | 27.11.2020 | |
|
2623 | User Interface | Bug Report | Medium | Completely unexpected exception on email errors | Unconfirmed | |
| | | 01.02.2021 | 01.02.2021 | |
|
1485 | User Interface | Feature Request | Low | Additional extended Printview for the Tasks | Planned | |
| 2.0 | | 13.05.2008 | 11.03.2015 | |
|
1518 | Notifications | Feature Request | Low | Show last date/time when a reminder was sent | Unconfirmed | |
| | | 15.11.2008 | 15.11.2008 | |
|
1521 | Backend/Core | Feature Request | Low | Assignees should be able to see and create reminders fo... | Unconfirmed | |
| | | 22.11.2008 | 18.04.2009 | |
|
1529 | Backend/Core | Bug Report | Low | Inactivity-close doesn't work, bug is left open | Maybe | |
| 2.0 | | 07.01.2009 | 24.09.2015 | |
|
1608 | Installer and Upgrader | Bug Report | Low | reserved characters cause database error after installa... | Unconfirmed | |
| 2.1 | | 07.10.2009 | 03.03.2013 | |
|
1628 | Notifications | Feature Request | Low | Global Notification address | Unconfirmed | |
| 2.0 | | 25.02.2010 | 17.01.2013 | |
|
1670 | User Interface | Feature Request | Low | Assign Key-Shortcuts to form fields | Unconfirmed | |
| | | 04.12.2010 | 04.12.2010 | |
|
1720 | Backend/Core | Feature Request | Low | Better Access Control Lists and User / Group Management | Planned | |
| 1.1 devel | | 01.05.2012 | 20.03.2015 | |
|
1734 | Backend/Core | Bug Report | Low | Add Timezone Selection to Admin Panel | Maybe | |
| 2.0 | | 12.05.2012 | 07.03.2015 | |
|
1736 | User Interface | Feature Request | Low | Be able to add colors for Task Statuses | Planned | |
| 1.1 devel | | 16.05.2012 | 15.10.2015 | |
|
1748 | Database Queries | Feature Request | Low | Sort by recent activity | Planned | |
| 1.1 devel | | 17.06.2012 | 11.03.2015 | |
|
1749 | User Interface | Bug Report | Low | Submit form buttons on lower right | Unconfirmed | |
| | | 17.06.2012 | 24.09.2015 | |
|
1774 | Backend/Core | Feature Request | Low | Email Layout | Maybe | |
| 2.0 | | 11.10.2012 | 20.07.2015 | |
|
1792 | Backend/Core | Feature Request | Low | Changes from Deprecated 1.0.0 | New | |
| 2.1 | | 13.12.2012 | 03.03.2013 | |
|
1798 | Backend/Core | Feature Request | Low | Bounty System | New | |
| 2.0 | | 13.12.2012 | 06.03.2015 | |
|
1809 | User Interface | Feature Request | Low | Searching closed tasks by Reason for closing | Maybe | |
| 2.0 | | 17.01.2013 | 06.11.2015 | |
|
1811 | Backend/Core | Feature Request | Low | Google Docs/Dropbox Integration | New | |
| 2.0 | | 17.01.2013 | 13.03.2015 | |
|
1812 | Backend/Core | Feature Request | Low | Multiple email addresses | Planned | |
| 1.1 devel | | 17.01.2013 | 30.12.2015 | |
|
1820 | Backend/Core | Feature Request | Low | Merge comments, history, and details | New | |
| 2.0 | | 17.01.2013 | 25.05.2016 | |