| Age | Commit message (Collapse) | Author |
|---|
|
* update doc blocks with new name
* submodule updates
* updates expected UI files
|
|
Co-authored-by: tsteur <tsteur@users.noreply.github.com>
|
|
* use latest puppeteer for screenshot testing
* updates expected UI screenshots
|
|
* some initial work
* add security page
* backing up some code
* more functionality
* adjust more UI parts
* adjust more code
* more tweaks
* add todo note
* few tweaks
* make sure date is in right format
* fix not existing column
* few fixes
* available hashes
* use different hash algo so tests run on php 5
* fix name of aglorithm
* trying to fix some tests
* another try to fix some tests
* more fixes
* more fixes
* few fixes
* update template
* fix some tests
* fix test
* fixing some tests
* various test fixes
* more fixes
* few more tests
* more tests
* various tweaks
* add translations
* add some ui tests
* fix selector
* tweaks
* trying to fix some ui tests
* fallback to regular authentication if needed
* fix call authenticate on null
* fix user settings
* fix some tests
* few fixes
* fix more ui tests
* update schema
* Update plugins/CoreHome/angularjs/widget-loader/widgetloader.directive.js
Co-Authored-By: Stefan Giehl <stefan@matomo.org>
* fix maps are not showing data
* trying to fix some tests
* set correct token
* trying to fix tracking failure
* minor tweaks and fixes
* fix more tests
* fix screenshot test
* trigger event so brute force logic is executed
* test no fallback to actual authentication
* allow fallback
* apply review feedback
* fix some tests
* fix tests
* make sure location values from query params are limited properly before attempting a db insert
* make sure plugin uninstall migration reloads plugins, make sure 4.0.0-b1 migration removes unique index that is no longer used, use defaults extra file in SqlDump to get test to run on travis
* Fix UI tests.
* update expected screenshot
Co-authored-by: Stefan Giehl <stefan@matomo.org>
Co-authored-by: diosmosis <diosmosis@users.noreply.github.com>
|
|
|
|
(#15561)
|
|
|
|
* Disable range select until overlay is fully loaded.
* If iframe origin cannot be parsed, do not throw.
|
|
refs #14835
First fix improves the loading when you have eg configured
https://fooBar.com as a site url, and the domain in the url is foobar.com
The second fix is event.data related where in this case a website was firing an event and the site was posting event.data as an object
|
|
|
|
|
|
|
|
|
|
* Allow row metadata to be datatables in API output.
* Fill out initial DataComparisonFilter.
* fixing some issues
* couple more fixes
* couple more fixes + initial system test
* more fixes
* Finish up segment comparison system test and get to pass.
* Soft limit for number of segments/periods.
* Add supportsComparison method.
* Add UX code for adding/removing/seeing data comparisons + code to forward query parameters in AJAX requests + allow broadcast to handle multi-value query param values.
* Start showing comparison tables in html tables.
* Adding all comparison rows to html table visualization and adding "all visits" segment translation and add currently selected segment to comparisons table.
* Show totals ratio for comparison rows.
* finished poc html table visualization support for comparison
* start working on comparisons support in graph visualizations
* Some UX tweaks to htmltable and add comparisons to bar/pie graphs.
* Getting comparisons to work in evolution graphs.
* Get row evolution to work properly in comparison table.
* Get segmented visitor log to work in comparison tables.
* Fix regression in comparisons in evolution graph.
* Get comparisons to work in actions datatable, fix twig issue that results in 100% cpu usage (when reading dataTable param w/ many rows & comparison tables), get overlay/transitions icons to appear, overlay should work properly.
* Get transitions and overlay to work in comparison rows.
* Fixing some datatable API output issues, fixing tests, support comparisons in subtables by forcing idSubtables of comparisons to be sent in request (makes UI work, but not pracitcal for API).
* Remove typo.
* apply original change
* Allow All Visits default segment to be compared.
* working on disabling currently compared segments.
* Get currently compared segments code to work.
* starting on refactoring datacomparisonfilter
* Most of refactor done.
* Get tests to pass and fix a bunch of datatable metadata consistency issues.
* Modify evolution graph to modify compare parameters and show some sort of accurate comparison line graphs.
* Set xaxis labels correctly in tooltips and make sure series data for comparisons is set correctly.
* more fixes to displaying evolution comparisons where compared date ranges vary in length + make sure normal reports w/ no data display the no data message even when comparing
* Show period type in comparison card.
* Unsanitize compare segments.
* Get correct period count.
* Couple more fixes to evolution graph series labels, but still wonky.
* Include comparison series label in comparison output so evolution graph has an easier time of building series data.
* For multi period vs multi period show correct compareDate/comparePeriod for child tables.
* Redesign period selector comparison section and get to work.
* Allow plugins to disable comparisons for specific pages.
* Start supporting comparison in sparkline visualization.
* Get sparkline points & lengths to work correctly when comparing.
* Fix comparison enabling check.
* Pick series and shade colors.
* Rewriting comparison card to show individual serieses.
* Rewrite comparisons cards to only show segments as cards and individual serieses inside the cards.
* Use comparison colors and shades in evolution graph + fix a couple bugs.
* Tweak series colors and fix a couple regressions to comparison totals calculation.
* Add ratio tooltip suffix explaining comparison percent.
* fix typo
* Forward comparison params in report export.
* tweak series colors again + add tooltip with visitssummary metrics to comparison rows + fix a bug in using array query params in piwik-api + fix bug in formatting of comparison table metrics
* Tooltip fixes, start on sparklines supporting comparison, modify comparison filter to only calculate change metrics against periods since they are time related.
* Sparkline comparison support.
* Tweak line thickness and set metric index properly in jqplot data generator.
* In sparklines comparison, show evolution for compared period, rewrite top tooltip to be better, fix tooltip issues when multiple metrics used in evolution graph, and get comparison to previous period to work.
* Update submodule
* Make things look ok w/ a very long segment name, add numbers to compared datatable row labels, fix pie chart colors + a couple other regressions.
* more bug fixes
* Fix query param retrieval issue.
* Do not throw if no comparison params specified, just do nothing.
* try to fix a couple warnings
* Another query param get fix.
* Do not save comparison parameters.
* pass by reference
* fix JS error
* DO not set compare params if not set in URL for dashboard widgets.
* Fix comparison table styling in dashboard.
* Expand bar graph if there are too many bars when comparing.
* tweak comparison bar graph sizing
* make sure flatten works w/ comparison
* Apply compute processed metrics to comparison tables.
* Hack to get Goals.get to be formatted during comparison.
* Fix ordering of yunits in evolution graph.
* If rows are selected, incorporate into comparison series names.
* Format revenue properly in goals comparison sparklines.
* First working attempt at adding Referrers.get method for use w/ Sparklines visualization.
* get referrers sparklines to work w/ comparison
* Finish using new referrers API method and get referrers sparklines/evolution graph to play well w/ each other in comparison mode.
* Simplify table comparison view if only comparing periods, no segments.
* Take into account visible rows when calculating series metric index.
* Get comparison to work when totals rows are added to tables.
* Show series color in evolution graph tooltip.
* Fix error when loading row evolution/segmented visitor log for compared ranges.
* fix regression in normal subtable loading
* Fix row style
* Forward comparisonIdSubtables parameter if present so it is used when changing limit/offset
* Initialize the row index prefix to the filter offset.
* Do not show period header if only segments compared in table.
* Add UI tests and fix issues so they pass locally.
* quick tweak
* Fix PHP error
* Updating screenshots
* Fixing several bugs and updating expected screenshots.
* Fix comparison tests and clear some TODO.
* Prefix referrers metrics.
* Revert "apply original change"
This reverts commit 8f6ceb0430e5c7306a777498199ad7db21fd7175.
* Show period label if comparing two periods of same type.
* segment sanitization fixes
* More segment fixes.
* Another fix to the tooltip.
* Fix related reports when comparing + make totals tooltip clearer + store segment + pretty title in datatable metadata so it does not have to be looked up every time.
* Allow disabling comparisons for individual uses of visualizations.
* Remove limit on hover for actions tables + fix subtable expansion for normal actions tables.
* Make sure parameters are arrays.
* Stricter check for empty parameters.
* Allow first compared segment to be "removed".
* several more fixes
* Fixing table cell alignment and width and everything else that broke while making changes (hopefully).
* Several fixes, including xss fixes and test fixes and bug fixes for comparisons.
* more table css tweaks
* Correct workings of previous period/year comparison + always convert periods to ranges when comparing in evolution graph.
* Correct workings of previous period/year comparison + always convert periods to ranges when comparing in evolution graph + more css tweaks.
* fix more test regressions
* Forgot to add file
* fix several TODO as well ass get comparison sparklines to have right colors in widgets.
* Use DataTable metadata instead of getting available segments.
* When comparing periods that do not uniformly support unique visitors, do not display unique visitors metric.
* Small refactor and make sure sparklines shows over period w/o using lastN.
* more refactoring and fixes
* some more refactoring
* Move comparison index math to helper methods.
* Use piwikUrl.getSearchParam
* Process comparison tables like normal tables in API.getProcessedReport.
* remove some code redundancy
* use new format date method
* Add first working unit test for comparisons service.
* Finish writing unit test for comparison service.
* refactor comparisons service and fix a couple regressions
* Fix more TODO items and refactoring.
* Fill out more TODO.
* Remove more TODO.
* Fixing some tests.
* another test fix
* FIx some more tests.
* More test fixes and regression fixes.
* Do not add segments to summary rows in actions reports.
* more test fixes
* fix more tests
* more test fixes
* Fixing more tests.
* Fixing more tests + debugging failing one.
* Fix twig loop issue
* Make sure empty compare params are not used in URL.
* Remove cached request array.
* Support comparison rows in multirow evolution popover and LabelFilter.
* Tweak placement of some icons.
* Forward current segment in reporting menu links.
* Fix for split dimension view.
* tweak css
* Add more tests.
* Add year to xlabels in evolution graph (but not xaxis tick).
* applying review feedback
* Apply more PR feedback
* remove debugging code
* tweak event docs
* Fix test.
* fix some test
* fix a test and regression
* updating tes files + fixing test
* Fix regression
* Fix dropdown z-index issue (or workaround really).
* Fixing tests again.
* Update screenshots
* Fix bug and remove some debugging code
* Apply review feedback.
* Make sure ratio tooltips show in widgetized mode.
* Fix some UI tests.
* Fix tests
* Fix a couple more tests.
|
|
|
|
* start changing the logo
* update logo
* improve position of logo
* position link instead of logo
* seems margin is not allowed, try using padding
* fix some tests
|
|
|
|
that is how overlay is dets detected in piwik.js. (#14766)
|
|
* Updates npm dependencies for screenshot testing
* updates expected screenshots
* improve some randomly failing tests
* avoid feedback popup in tests
* fix integration test
* updates screenshot
|
|
|
|
I updated the link tag for all php files with the new matomo link.
Not sure if it is realistic that this will get merged but I though that someday someone has to do this(?)
|
|
* Add empty config.php and tracker.php files to each plugin that doesn't have them; add to whitelist of files that are included in new plugins generated by generate:plugin
* Add plugin files for plugins which were missing them
|
|
|
|
|
|
* Make sure xss entries is always an array.
* Update expected test files and submodule.
* Regenerate broken omnifixture dump.
* poc conversion to chrome headless for UI tests, single test works locally
* Get single test to pass on travis & local w/ headless chrome.
* Remove old diff viewer generation, and get output to look the same as before when there is a failure.
* Add global timeout & get ViewDataTableTest to pass.
* Convert BarGraph_spec.js.
* Convert EmptySite_spec.
* Update EvolutionGraph spec for chrome headless.
* Convert GoalsTable test & find/replace for common changes.
* Convert MeasurableManager.
* Another find & replace.
* Get Menus/OptOutForm to pass w/ chrome headless
* Convert PeriodSelector, PieGraph & PivotByDimension UI tests.
* undo unrelated debugging change
* Convert QuickAccess UI tests
* Converts ActionsDataTable UI tests
* reset viewport after each testsuite
* Converts RowEvolution UI tests
* Converts Theme UI tests
* Converts SiteSelector UI tests
* Converts CustomVariables UI test
* Converts DBStats UI test
* Ignore empty responses when calling api/controller
* Converts Dashboard UI tests
* Converts Live UI tests
* Converts SimpleUI tests
* Converts Installation UI tests
* Converts ImageGraph UI tests
* Converts Login UI tests
* Converts Marketplace UI tests
* Converts Insights UI tests
* Converts ReportExporting UI tests
* Converts UIIntegration tests
* Updates ViewDataTable UI tests
* Converts CoreUpdater UI tests
* Converts UsersManager UI tests
* Converts Morpheus UI tests
* Converts MultiSites UI tests
* Fix testEnvironment.callApi handling of array parameters
* Converts Overlay UI tests
* Converts PrivacyManager UI tests
* Converts ScheduledReports UI tests
* Converts SegmentEditor UI tests
* compare pixel difference in images
* Converts PeriodSelector UI tests
* allow a pixel difference
* Converts SingleMetricView UI tests
* Converts SitesManager UI tests
* Converts Transitions UI tests
* Converts MeasurableManager UI tests
* Move Mouse out of screen after each test suite
* Converts PieGraph UI tests
* Ensure cursor is not shown in focused input elements
* Converts VisitorMap UI tests
* Converts CustomLogo UI tests
* Converts BarGraph UI tests
* Converts EvolutionGraph UI tests
* Converts IntranetMeasurable UI tests
* Converts TrackingFailures UI tests
* Converts CampaignBuilder UI tests
* Converts TagManagerTeaser UI tests
* fix request url rewrite for changed port
* Converts TwoFactorAuth UI tests
* do not print full responses in logs, but size instead
* improve additional style injection
* use submodule branches
* fix request interception
* update dependencies
* [TEMP] disable dangerous link checks
* [TEMP] limit tests
* Use puppeteer@next and make sure diffs get uploaded properly.
* Use correct fs function.
* Allow timeout to be specified on command line for UI tests and debug console logs.
* timeout option tweak
* Setup diff dir once before running tests not before each suite.
* fix last commit
* Update screenshots and fix some specs.
* Convert some tests that were not converted during merge.
* updating screenshots
* Updating screenshots and fixing some tests.
* more test fixes
* couple more test fixes
* More test fixes and plugin updates.
* wait for jquery
* Fix some screenshots and tests.
* more test fixes
* debug travis test failure
* remove .only
* more test fixes and updated expected files
* another test fixing iteration
* typo
* another quick test change
* more tests updates
* Test fixes and & more debugging.
* more debugging and test fixes
* more fixes and debugging.
* remove .only
* Another round of fixed tests.
* more debugging & fixes
* more test changes
* more debugging and fixes
* Fixing more tests + some bug fixes.
* Couple more fixes.
* Couple more fixes.
* Fixing tracking failures test
* more fixes
* Last couple fixes hopefully.
* couple more test fixes
* more fixes, bug fix in usersmanager, some test updates
* Some more test fixes/changes.
* more and more fixes
* hoping for a green build
* Do not compare against existing files in dashboard_spec.
* more fixes, re-enabling travis
* really re-enable travis
* Install puppeteer on travis-ci.
* more fixes
* try to fix random failues
* remove return
* Convert some login tests I forgot and update UsersManager expected file
* Fix test for primary key update
* Update AddPrimaryKey.php
* More test fixes + implement synchronous comparison threshold (so no resemblejs)
* More wait fixes + reset token detection fix.
* couple more fixes
* Fix login/overlay screenshot issue & magick command running issue.
* identify is the executable on travis (hopefully) + fix some random failures
* Another run.
* Last fix.
* two more tweaks
* typo
|
|
* fix condition
* NullHandler must be end of writer array to allow other handlers to handle the message (since it seems to stop bubbling).
* Do not do php eol check during tests.
* Just in case.
* try to fix the build
* Add screenshot.
|
|
enable_framed_pages = 1. (#14133)
* Propagate token auth in ajax requests if something is widgetized OR if enable_framed_pages is set to 1.
* Add UI tests for embedding entire app.
* Forgot to add file.
* Adds missing UI file
|
|
|
|
|
|
|
|
* Rename long files.
* fix test name
* Try to fix several test failures.
* Rename expected files.
* --amend
* Try to fix tests.
* Fix more system tests.
* Fix more tests.
* Add debug log.
* Update CustomAlerts submodule for test fix.
* Fix some more screenshots.
* Fixing more tests.
* Update more expected test files & screenshots.
* Last couple fixes.
* update tagmanager submodule
* update submodule
* update submodule
|
|
* add new category profiles
* disable row evolution
* add real time reports
* improve style when full-width
* change menu order plus remove visitors report
* remove more traces of the profiles report
* fix some ui tests
* fix more tests
* fix tests
* fix some tests
* Update en.json
* Update SegmentedVisitorLog.js
* updates expected test files
* updates expected UI files
* Updating expected files.
* Update expected screenshot.
|
|
* add possibility to switch period in evolution graph
* fix some tests
* fix ui test
* Update screenshots.
|
|
avoid unintentionally sending private data to foreign servers
|
|
* fix some tests
* fix more tests
* fix more tests
|
|
|
|
|
|
|
|
(#13446)
* Use postMessage instead of directly making API calls in the overlay iframe.
* Make sure it will work when Matomo is on a subfolder.
* Increase overlay security with domain and method whitelists.
* Try to fix UI test.
* Fix tests + UI test blacklist check.
* broadcast.getValuesFromUrl does not decode URL params.
|
|
|
|
|
|
|
|
|
|
* Modifying "cookie authentication" to be more secure.
Instead of authenticating by token auth if it exists in the cookie, validate an existing session. If the session
has the user name stored as a session var, it has been authenticated. If the request has the same IP address and
user agent as the request that created the session, the request is from the user that created the session. If
both of these are true, then the session is valid, and we don't need a token auth to authenticate.
If the session is deleted before the Piwik auth cookie expires (due to garbage collection), we attempt to
re-authenticate using a secure hash of the token auth. We don't do this on every request since password_verify()
will, at BEST, add 3.5ms to every request.
* Invalidate existing sessions after user password change.
Invalidation is accomplished w/o having to individually touch sessions by:
1. Using the password hash as the piwik_auth key secret, instead of the token auth. So when a password changes, existing piwik_auth keys are no longer valid. This affects session re-authentication.
2. Saving the session start time & the last time a user's password was modified, and checking that the session start time is always newer than the password modification time.
* Set session.gc_maxlifetime to login_cookie_expire time so session data does not disappear, remove session re-auth functionality & tie cookie hash to password modified time instead of password hash to retain automatic session invalidation on password change.
* In SessionInitializer, clear other cookie values so previously stored token auths will be removed.
* Make sure anonymous user is still default user whan authenticating.
* fixing test failures
* Remove hash checking in piwik_auth cookie.
piwik_auth cookie still required since it's presence indicates we should use SessionAuth instead of the normal authentication mechanism. Since there's always a session, even if you're not logged in, PIWIK_SESSID can't be used by itself to determine this.
* Make sure session auth doesnt break in edge case where ts_password_modified column does not exist.
* Clarify session destruction/invalidation logic in SessionAuth.
* Make UsersManagerTest slightly more comprehensive.
* Use Date::now()->getTimestampUTC() instead of time() in SessionFingerprint::initialize().
* Check getUser returns correct user info in SessionAuth for sanity.
* Add SessionInitializer::getAuthCookie() back since it is @api.
* Remove IP address from session auth info + check.
* Refactor session start changes so it is started in one place only.
* Remove SessionAuthCookieFactory & deprecate auth cookie INI config vars (still needed for SessionInitializer deprectaed method).
* Make sure user can still login if ts_password_modified column is not present in database.
* Rename ts_password_modified Update class.
* Update comment in SessionAuth to include why Piwik tries to create another session.
* Restore 3.x-dev SessionInitializer for BC (deprecated), move new SessionInitializer to core, add tests for both SessionInitializers.
* Change update to 3.5 version.
* Make sure normal auth implementation is used if sessionauth fails so anonymous user can be logged in.
* On logout clear session fingerprint so same session cannot be used to login.
* Change update name + bump version, and make sure Session::rememberMe() is called before session is started (otherwise it has no effect).
* Fixing tests.
* apply review fixes
* remove test
|
|
* Replace proxy redirect with rel=noreferrer
* Add noopener
* Restore action=redirect for non-Matomo links
* Wrap referring URLs
* NO target on download link
* Fix Github links
* Fix whitespace
* Fix tests
* Revert change
* Revert changes
* Fix tests
* Add noreferrer shim for MSIE 10
* Remove all action=redirect links
* Restore noreferrer
* Restore test
* Fix one more occurrence
* Update changelog
* Combine if's
* Fix changelog wording
* Fix stray whitespace
|
|
|
|
* Implements new referrer type for social networks
* removes footer message from social report
* Show social network referrers in Transitions
* update / improve tests
* Improves API code
* use transient cache instead of static properties
* remove debugging statement
* updates changelog
* cs
* Update expected test files.
* Update expected screenshots
|
|
* started working on some ACL concept
* acl implementation
* add category
* small tweaks
* more tweaks
* more api methods and fixes
* cache capabilities
* various enhancements, fixes, tweaks
* more tweaks
* added more tests and fixed some bugs
* fix parameter
* make sure to be BC
* make sure to be BC
* fix some tests
* more apis, translations, changelog entry, ...
* update db
* correct error message
* fix capabilities were not detected in tests
* directly access provider
* fix and add test
* JS api to check capabilities, better structure for capabilities in tests
* add ability to inject permissions
* apply review changes
* fix test
|
|
Only the files declaring a shebang have their execution bit set.
Everything else is not executable to avoid possible security issues
|
|
* set correct lineThickness and fix default fill color
* update UI files
|
