Cris 0fc2de2155 Fixed & Secured: Approving LA not causing permission error anymore ...

Before the organisational unit of the lv was sent via AJAX to the server
and used for checking the permissions on that organisational unit.
This was insecure (post data manipulation) and organisational units were
wrong (prepared string instead of oe_kurzbz).

This is fixed now by serverside check of organisational unit.
(based on given vertrag_id)

2019-10-30 15:05:31 +01:00

..

api

Fixed models

2019-04-26 12:43:51 +02:00

crm

Merge branch 'master' into permissions

2018-06-28 14:52:09 +02:00

extensions

- Removed file system execute permission for all files (no directories)

2017-11-13 10:45:49 +01:00

jobs

Refactor Reihungstest-Jobs

2019-06-12 14:51:57 +02:00

lehre/lehrauftrag

Fixed & Secured: Approving LA not causing permission error anymore

2019-10-30 15:05:31 +01:00

organisation

- Removed private methods _setNavigationMenuIndex, _fillCustomFilters and _fillFilters from controller organisation/Reihungstest.php

2018-12-03 14:53:25 +01:00

person

Gradelist - Max-ECTS-Sum includes ECTS of assigned Courses without Grades

2019-07-05 17:07:06 +02:00

system

- Moved controller system/Filters to widgets/Filters

2019-07-10 14:39:59 +02:00

widgets

Now is possible to have more than one FilterWidget in a single page

2019-07-17 11:38:47 +02:00

index.html

- Removed file system execute permission for all files (no directories)

2017-11-13 10:45:49 +01:00

MailJob.php

Merge branch 'master' into permissions

2018-06-28 14:52:09 +02:00

Redirect.php

- Removed config file application/config/fhcomplete.php

2018-07-17 17:13:12 +02:00

ViewMessage.php

- Added new model CL/Messages_model.php

2019-02-25 15:23:31 +01:00

Vilesci.php

Merge branch 'master' into permissions

2018-06-28 14:52:09 +02:00