mantisbt - Roadmap
Feature and maintenance release. Dropping support for PHP 7.3 and older.
0 of 2 issue(s) resolved View Issues
Maintenance release
- 0026365: [api rest]
Missing Authorization header in REST API causing requests to fail(dregad) - 0032889: [plug-ins]
EVENT_MENU_DOCS is never triggered(dregad) - 0032865: [html]
Wrong HTML tags on "Manage Filters" page(atrol) - 0032860: [api rest]
REST API allows resolving an issue with unresolved children(dregad) - 0032835: [api rest]
REST API errors when attempting to add or delete issue relationships(dregad) - 0032809: [bugtracker]
PHP 8.1 deprecation notice in user_search_cache()(dregad) - 0032451: [bugtracker]
Email uniqueness is not enforced on case-sensitive databases(dregad) - 0028618: [bugtracker]
Category empty but required does not prevent form submission on Firefox Windows and Safari(dregad) - 0032788: [ui]
Incorrect styling of table headers(dregad) - 0032703: [bugtracker]
Local documentation is not accessible (403)(dregad) - 0032612: [bugtracker]
DEPRECATED: 'Creation of dynamic property BugData::$bug_text_id(dregad) - 0029438: [api rest]
Unsupported operand types when an incident with time tracking notes is updated via REST API(dregad) - 0032459: [bugtracker]
Graphics x Apple Safari 16(atrol) - 0032432: [security]
Update guzzlehttp/psr7 to 1.9.1(dregad) - 0032390: [plug-ins]
Impossible to install a plugin without any dependencies(dregad)
15 of 15 issue(s) resolved View Issues
Feature and maintenance release. Dropping support for PHP 7.1 and older, the earliest supported PHP version is now 7.2.5. New configuration options were added to control access to Export and Print Report features (see 0022224). The default value for the latter was set to UPDATER for security reasons (see 0025492); to restore earlier behavior, administrators should set $g_print_reports_threshold = VIEWER;
.
- 0026599: [db schema] Behavioural changes for BLOBs in ADOdb 5.21
- 0024689: [administration] Remove clickable alphanumeric index in manage_user_page.php
- 0020577: [plug-ins] Consistent use of EVENT_UPDATE_BUG_DATA
- 0021908: [security] Weakened security headers in 2.0.x
- 0028860: [localization] Incorrectly configured serbo-croatian (sh) language
- 0032787: [administration] Facilitate identification of user accounts sharing the same email (dregad)
- 0024628: [markdown] Double quotes " and lesser than sign < are shown as HTML entity within Markdown code blocks (dregad)
- 0032940: [administration] Add admin check to detect users without e-mail address when allow_empty_email = OFF (dregad)
- 0032489: [documentation] Document impersonation of users via REST API (vboctor)
- 0032577: [api rest] Get Issues should return total count of issues for pagination (vboctor)
- 0032470: [api rest] REST API: Project Category Add/Update/Delete (vboctor)
- 0022839: [authentication] Deprecate MD5 login method and replace with BCRYPT hash (dregad)
- 0027572: [administration] Improve management of failed logins and locked accounts (atrol)
- 0020431: [db schema] Use utf8mb4 charset for new MySQL installations (dregad)
- 0008141: [bugtracker] Issue reporters should be able to update their own issues (atrol)
- 0030047: [bugtracker] After login with HTTP_AUTH user is redirected to "main_page.php" (dregad)
- 0022408: [custom fields] Custom field's value logged as changed in history, when it wasn't changed (dregad)
- 0028831: [ui] Improve date filter fields display (label and "no filter" text) (dregad)
- 0021694: [ui] inconsistent presentation of required fields (syncguru)
- 0020307: [printing] Print issue page needs to adjust formatting for tags and relationship handler (vboctor)
- 0017577: [performance] Improve print_user_option_list() performance (dregad)
- 0019964: [authentication] Wrong anonymous rights application (dregad)
- 0020540: [attachments] Implement upgrade step to cleanup corrupt disk attachments after db->disk conversion (dregad)
- 0020874: [ui] Content Security Policy blocked embedded images added by Chrome Extension (vboctor)
- 0022464: [custom fields] Loose type comparison can prevent custom field update (dregad)
- 0022840: [authentication] Don't expire user sessions when updating password hash after login method change (dregad)
- 0022841: [authentication] Don't truncate password when it exceeds db field size (dregad)
- 0024188: [ui] Update issue history code to display user names via standard APIs
- 0024241: [markdown] $g_html_valid_tags are not rendered if Markdown is enabled (dregad)
- 0026929: [api rest] Support user account unlock via REST API (dregad)
- 0027807: [bugtracker] Prevent silent update of invalid enum fields when editing issue (dregad)
- 0032810: [tools]
Ugrade to PHPUnit 8.5 and adapt test suite(dregad) - 0027840: [installation]
Increase minimum PHP requirement to 7.2.5(dregad) - 0030812: [administration]
"Copy Categories From" copies global categories(dregad) - 0027383: [tools]
Refactor and improve output of 'test_langs.php' admin script(dregad) - 0032038: [email]
Missing In-Reply-To header in new bugnote email notification(community) - 0032027: [bugtracker]
PHP 8.2 support(dregad) - 0032734: [filters]
Saving a filter triggers deprecated warning on PHP 8.2(dregad) - 0032028: [db schema]
Update ADOdb to 5.22.5(dregad) - 0027840: [installation]
Increase minimum PHP requirement to 7.2.5(dregad) - 0032807: [api rest]
Update Guzzle to 7.8.0(dregad) - 0027840: [installation]
Increase minimum PHP requirement to 7.2.5(dregad) - 0032926: [administration]
Disallow setting logging options in database(atrol) - 0032900: [security]
Use PHP random_bytes() instead of our custom crypto_generate_random_string function(atrol) - 0029025: [email]
Update PHPMailer to 6.8.0(dregad) - 0030415: [api rest]
REST API: Add API to Get / Delete / Update versions(vboctor) - 0032901: [code cleanup]
Unneeded PHP version checks(atrol) - 0032866: [api rest]
Allow REST API to run on PHP 8.1 without squelching E_DEPRECATED notices(dregad) - 0030907: [api soap]
SOAP API mc_project_get_users doesn't enforce access check(vboctor) - 0032235: [api soap]
SOAP API Create Project doesn't trigger EVENT_MANAGE_PROJECT_CREATE plugin event(vboctor) - 0032234: [api soap]
SOAP API Create Project API requires administrator rather than(vboctor)create_project_threshold
- 0032468: [api rest]
REST API: Update Project User(vboctor) - 0032465: [api rest]
REST API: User Update API(vboctor) - 0032464: [code cleanup]
Implement UserUpdateCommand(vboctor) - 0024757: [api rest]
To move a user to disabled(vboctor) - 0027130: [api rest]
change username via rest api(vboctor) - 0032864: [api rest]
Missing PHPUnit tests for Projects REST API endpoints(dregad) - 0032232: [code cleanup]
Create ProjectDeleteCommand(dregad) - 0032858: [api rest]
Status codes returned by REST API delete operations are not consistent(dregad) - 0029882: [tools]
Enable PHP 8.1 builds on Travis-CI(dregad) - 0032814: [api soap]
PHPUnit SOAP API tests trigger syntax error when extension is not loaded(dregad) - 0032815: [tools]
Error when executing the complete PHPUnit test suite with AllTests.php(dregad) - 0032816: [tools]
Use phpunit.xml to define Test Suites(dregad) - 0032828: [tools]
TravisCI ' /usr/sbin/sendmail: not found' error after successful test execution(dregad) - 0032831: [code cleanup]
Remove unnecessary check on Version Id(dregad) - 0032811: [tagging]
Wrong display of tag filter(atrol) - 0032735: [code cleanup]
Use range() function instead of string increment(dregad) - 0032806: [documentation]
Developers Guide PHPUnit section is out of date(dregad) - 0032804: [api rest]
REST API unit test incorrectly failing with anonymous user(dregad) - 0032805: [api rest]
REST API /users/me endpoint returns 403 (unauthorized) when called without Authorization header(dregad) - 0025956: [installation]
Drop support for PHP 5.x(dregad) - 0020647: [administration]
Not able to update existing user accounts if $g_email_ensure_unique == ON(vboctor) - 0032726: [filters]
Filtering on "projection" field is missing(dregad) - 0027793: [documentation]
Admin Guide lists incorrect/incomplete/obsolete required PHP extensions(dregad) - 0032704: [code cleanup]
Remove deprecated function db_prepare_string()(dregad) - 0032714: [code cleanup]
Remove function check_php_version()(atrol) - 0032245: [api rest]
REST API for creating API tokens for users(vboctor) - 0032466: [api rest]
REST API: Create Project User(vboctor) - 0032504: [documentation]
Documentation: Hooking events declared by other plugins(dregad) - 0032469: [api rest]
REST API: Support impersonation of users(vboctor) - 0032467: [api rest]
REST API: Delete Project User(vboctor) - 0028528: [administration]
Outdated PostgreSQL version information in Admin Checks(dregad) - 0032445: [api rest]
REST API: Project Add API to return information about added version(vboctor) - 0004993: [administration]
Utility to copy attachments from File to Database(dregad) - 0027128: [api rest]
Can not get userid from another user with REST API(vboctor) - 0032356: [api rest]
REST API: Support Get User By ID(vboctor) - 0032357: [api rest]
REST API: Support(vboctor)select
for fields to return when getting user info - 0032385: [bugtracker]
Incorrect use of mb_strimwidth() to truncate old/new values in history API(dregad) - 0032331: [api rest]
Support selecting which fields to retrieve for an issue(vboctor) - 0032382: [code cleanup]
Duplicated code in email API(dregad) - 0032236: [api rest]
REST API Create Project doesn't trigger EVENT_MANAGE_PROJECT_CREATE plugin event(vboctor) - 0032237: [api rest]
REST API Create Project API requires administrator rather than create_project_threshold(vboctor) - 0032248: [api rest]
Get Project REST API returns html if user doesn't have access(vboctor) - 0032249: [api rest]
Get Project Issues returns html if user doesn't have access to project(vboctor) - 0032231: [code cleanup]
Create ProjectAddCommand(vboctor) - 0032238: [code cleanup]
Create ProjectUpdateCommand(vboctor) - 0032258: [api rest]
Add REST API for setting config options that are settable via database(vboctor) - 0032244: [performance]
Issue view page timeouts or inefficient for issues with large number of notes and attachments(vboctor) - 0032247: [api rest]
REST API for deleting API token(vboctor) - 0032246: [api rest]
Deleting a user should revoke (delete) all their API tokens(vboctor) - 0017121: [api soap]
phpunit FilterTest fail if there are more than 50 issues in the tracker(dregad) - 0031993: [documentation]
Using Docker to build Documentation(dregad) - 0031666: [plug-ins]
Hook for Custom field on bug_change_status_page(community) - 0031944: [ui]
"pinning" an issue calls for not CSS code in view_all_inc.php(atrol) - 0031833: [bugtracker]
Issues should have canonical meta tag(community) - 0022190: [markdown]
Markdown markup should be done with CSS classes, not inline styles(community) - 0030908: [api rest]
Update postman collection(vboctor) - 0022791: [api rest]
Support retrieving users with specified access level to a project(vboctor) - 0030773: [performance]
Only load dynamic CSS status_config.php when necessary(dregad) - 0030551: [administration]
Project Edit Page improvements(dregad) - 0030423: [ui]
Regroup the 2 Subprojects sections on Manage Project Edit page(dregad) - 0030550: [ui]
Buttons' vertical size is slightly smaller than other form elements(dregad) - 0030494: [javascript]
list.js navigation buttons scrolling to top of page(dregad) - 0027274: [ui]
Move Delete buttons into main form(dregad) - 0030435: [ui]
Manage Project Edit page should redirect to relevant section after updates(dregad) - 0028562: [administration]
Undefined constant ERROR_VERSION_NO_ACTION and missing matching error message(dregad) - 0028557: [administration]
Inconsistent use of hyperlink instead of button to edit Custom Fields in Edit Project page(dregad) - 0028606: [administration]
Incorrect filtering of users on Manage Project / Accounts(dregad) - 0030490: [javascript]
list.js library causing CSP violation in manage_proj_edit_page.php(dregad) - 0030494: [javascript]
list.js navigation buttons scrolling to top of page(dregad) - 0030447: [administration]
Detect invalid HTML in language strings(dregad) - 0024621: [html]
Closing </div> tag missing in sign up page(dregad) - 0030428: [installation]
admin/check.php script says upload_max_size but actually checks upload_max_filesize(atrol) - 0030278: [code cleanup]
Removing unused CUSTOM_FIELD_TYPE_xxx constants(dregad) - 0030279: [ui]
Text Custom Field columns should be left-aligned(dregad) - 0027114: [ui]
Long unbreakable text does not auto wrap in bug details page(community) - 0029585: [email]
Unable to set the In-Reply-To header to a domain different from the current one(community) - 0029583: [email]
Support for sending emails with CC and/or BCC(community) - 0029454: [email]
monitor receives no mails if he is not project member(atrol) - 0030283: [html]
Invalid 'literal' tag used in MantisCoreFormatting language strings(dregad) - 0022224: [bugtracker]
Access Restrictions to "Print Reports", "CSV Export", "Excel Export" in view all bugs page(dregad) - 0025492: [security]
Printing (print_all_bug_page) is a perf/security risk(dregad) - 0030192: [change log]
Changelog/Roadmap items are printed without any structure(dregad) - 0028902: [db mssql]
APPLICATION ERROR 0000401 / Error MSSQL 4145 when view all bugs for 1000 projects or more(atrol) - 0029903: [relationships]
Wrong html syntax - 0022109: [ui]
Bugnotes links tilde ' ~' sign rendered as dash '-' in View page(dregad) - 0028964: [tools]
New build script to download updated font files(dregad) - 0029611: [bugtracker]
Cookies "SameSite" attribute triggers warnings in Firefox console(dregad) - 0029616: [bugtracker]
collapse_settings cookie is hardcoded(dregad) - 0028122: [administration]
Improve handling of project assignment in manage_user_edit_page.php(dregad) - 0022371: [wiki]
Support for WackoWiki(dregad) - 0029517: [authentication]
Login redirection to plugin credentials page for non-existent user(community) - 0028068: [db mssql]
Impossible to insert child records with ADOdb 5.21.0 on mssql(dregad) - 0028069: [db postgresql]
PHP notices leading to unusable system with ADOdb 5.21.0 on pgsql(dregad) - 0029269: [administration]
Filter settings are not available on "Workflow Thresholds" page(atrol) - 0028965: [attachments]
Show issue attachments along with issue header information(vboctor) - 0029230: [ldap]
Can't set a custom field for ldap email(dregad) - 0026148: [ui]
Add hash to MantisBT CSS files to force browser cache update(vboctor) - 0029027: [other]
function gpc_set_cookie() ignores $p_httponly argument(community) - 0028963: [administration]
Do not buffer output for CLI scripts(dregad) - 0028918: [upgrade]
Improve handling of unserialize->json conversion during upgrade(dregad) - 0029026: [administration]
Language checks should warn about languages not defined in config(dregad) - 0008664: [localization]
Translation in Espéranto(dregad) - 0028861: [localization]
Incorrectly configured saraiki language(dregad) - 0028905: [localization]
String optimizations for English language(atrol) - 0028826: [ui]
Removing vertical lines in tabular presentation to reduce clutter(community) - 0028648: [localization]
New Hindi Language Translation(dregad) - 0028830: [code cleanup]
Remove PHP < 5.4 compatibility code from user_get_all_accessible_projects()(dregad) - 0026998: [plug-ins]
Event on access level modifications(dregad) - 0028533: [bugtracker]
print_form_button() generates bad security token name for plugin action page(dregad) - 0028668: [localization]
Missing language codes in browser's auto map(dregad) - 0028182: [ui]
progress bar on the title bar (road map)(dregad) - 0028525: [administration]
Using MySQL 8.0 gives warning in admin checks(atrol) - 0028120: [performance]
Improve performance of user_pref_clear_invalid_project_default()(dregad) - 0028119: [code cleanup]
Calling user_get_field() with non-existing user throws incorrect warning(dregad) - 0028124: [ui]
Visually align the 1st column's width in manage_user_proj_delete.php(dregad) - 0028114: [code cleanup]
Invalid HTML in manage_user_edit_page.php(dregad)
133 of 164 issue(s) resolved View Issues