Merge branch 'release/1.2.18'

Author: Gipetto

CHANGELOG.markdown

@@ -1,5 +1,19 @@
 # OpenVBX Change Log
 
+## OpenVBX 1.2.18
+
+- Fix implementation of several methods by making them static.
+- Update config of `base_url` to accommodate servers living behind a proxy.
+- Fix validation of the Twilio Request for servers not running mod-rewrite support.
+- Fix notification settings save when altering settings as a tenant. (Thanks @AsaadQ)
+- Removing obsolete update check.
+- Numerous small fixes, code style updates, and docblock fixes of issues found during static analysis.
+- Implement cache control on `messages/scripts` endpoint and script tag to prevent caching.
+- Fix user edit button href after new users are added to contain the proper user edit url.
+- Explicitly hide `E_DEPRECATED` and `E_STRICT` errors in the default error reporting to handle the differences in how different versions of PHP report errors.
+- Convert html entities in license section that were causing an email address to be hidden.
+
+
 ## OpenVBX 1.2.17
 
 - Fix implementation of `OpenVBX::connectAuthTenant()` by making it static.

OpenVBX/config/config.php

@@ -19,8 +19,18 @@
 |	http://example.com/
 |
 */
-$config['base_url']= "http".((!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] != 'off')? 's' : '')
-	  				 ."://".$config['server_name']. rtrim(WEB_ROOT, '/').'/';
+$is_ssl_proto = false;
+switch(true) {
+	case !empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] != 'off':
+		$is_ssl_proto = true;
+		break;
+	case !empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https':
+		$is_ssl_proto = true;
+		break;
+}
+
+$config['base_url'] = "http".($is_ssl_proto ? 's' : '') .
+					  "://".$config['server_name'] . rtrim(WEB_ROOT, '/') . '/';
 
 /*
 |--------------------------------------------------------------------------
@@ -30,7 +40,7 @@
 | Used for asset url versioning.
 |
 */
-$config['site_rev'] = 1024;
+$config['site_rev'] = 1026;
 
 /*
 |--------------------------------------------------------------------------

OpenVBX/config/version.php

@@ -1,3 +1,3 @@
 <?php  if ( ! defined('BASEPATH')) exit('No direct script access allowed');
 
-$config['version'] = '1.2.17';
+$config['version'] = '1.2.18';

OpenVBX/controllers/audiofiles.php

@@ -119,9 +119,7 @@ function add_file()
 
 					// Return the URL for our newly created file
 					$json['url'] = "vbx-audio-upload://" . basename($targetFile);
-
-					$ci =& get_instance();
-
+					
 					// And, make a record in the database
 					$audioFile = new VBX_Audio_File();
 					$audioFile->label = "Upload of " . $file['name'];
@@ -322,6 +320,7 @@ function accept_or_reject_recording_twiml()
 				break;
 			case 2:
 				$response->redirect(site_url('audiofiles/prompt_for_recording_twiml'));
+				break;
 			default:
 				$response->redirect(site_url('audiofiles/replay_recording_twiml'));
 				break;

OpenVBX/controllers/auth/connect.php

@@ -51,12 +51,12 @@ public function index()
 				if ($account_sid = $this->input->get('AccountSid')) // regular account sid
 				{
 					$this->setup_connect_tenant($account_sid, $user->tenant_id);
-					return redirect($tenant[0]->url_prefix.'/welcome#step-2');
+					redirect($tenant[0]->url_prefix.'/welcome#step-2');
 				}
 				elseif ($error = $this->input->get('error')) // unauthorized_client
 				{
 					$this->setup_connect_tenant($error, $user->tenant_id);
-					return redirect($tenant[0]->url_prefix.'/welcome');
+					redirect($tenant[0]->url_prefix.'/welcome');
 				}
 			}
 		}
@@ -150,7 +150,7 @@ protected function validate_returning_user($user_id)
 	protected function returning_user_fail() 
 	{
 		$this->session->sess_destroy();
-		return redirect('auth/login');
+		redirect('auth/login');
 	}
 
 	/**

OpenVBX/controllers/auth/login.php

@@ -125,12 +125,12 @@ private function login($redirect)
 					return $this->after_login_completed($user, $redirect);
 				}
 
-				return $this->redirect($redirect);
+				$this->redirect($redirect);
 			}
 
 			$this->session->set_flashdata('error',
 										  'Email address and/or password is incorrect');
-			return redirect('auth/login?redirect='.urlencode($redirect));
+			redirect('auth/login?redirect='.urlencode($redirect));
 		}
 		catch(GoogleCaptchaChallengeException $e)
 		{
@@ -175,7 +175,7 @@ protected function after_login_completed($user, $redirect)
 						$path = '/'.(($this->tenant->id > 1)? $this->tenant->name : '');
 						setrawcookie('banner', rawurlencode(json_encode($banner)), 0, $path);
 						set_last_known_url(site_url('/numbers'));
-						return redirect('');
+						redirect('');
 					}
 				}
 				catch(VBX_IncomingNumberException $e)
@@ -189,11 +189,11 @@ protected function after_login_completed($user, $redirect)
 			if(empty($devices))
 			{
 				set_last_known_url(site_url('/devices'));
-				return redirect('');
+				redirect('');
 			}
 		}
 
 		set_last_known_url($redirect);
-		return $this->redirect('');
+		$this->redirect('');
 	}
 }

OpenVBX/controllers/auth/reset.php

@@ -47,7 +47,7 @@ public function set_password($invite_code = '')
 	{
 		if(empty($invite_code))
 		{
-			return redirect('auth/login');
+			redirect('auth/login');
 		}
 
 		$user = VBX_User::get(array(
@@ -57,7 +57,7 @@ public function set_password($invite_code = '')
 
 		if(!$user)
 		{
-			return redirect('auth/login');
+			redirect('auth/login');
 		}
 
 		$data = array('invite_code' => $invite_code);
@@ -67,7 +67,7 @@ public function set_password($invite_code = '')
 			try
 			{
 				$user->set_password($_POST['password'], $_POST['confirm']);
-				return redirect('auth/login');
+				redirect('auth/login');
 			}
 			catch(VBX_UserException $e) {
 				$data['error'] = $e->getMessage();
@@ -98,7 +98,7 @@ public function reset()
         if(empty($user))
 		{
 			$this->session->set_flashdata('error', 'No active account found.');
-			return redirect('auth/reset');
+			redirect('auth/reset');
 		}
 
 		if($user->auth_type == 'google')
@@ -116,10 +116,10 @@ public function reset()
 				$this->session->set_flashdata('error',
 							'The email was not sent. Contact your admin.');
 			}
-			return redirect('auth/login');
+			redirect('auth/login');
 		}
 
-		return redirect('auth/reset');
+		redirect('auth/reset');
 	}
 
 }

OpenVBX/controllers/client.php

@@ -44,57 +44,6 @@ public function index()
 		}
 	}
 
-	public function updates()
-	{
-		switch($this->request_method)
-		{
-			case 'GET':
-				return $this->get_updates();
-			default:
-				break;
-		}
-	}
-
-	private function get_updates()
-	{
-		if($this->session->userdata('loggedin') != 1
-		   || $this->session->userdata('is_admin') != 1)
-		{
-			$data['json'] = array('message' => 'Unable to fetch updates', 'error' => true);
-			return $this->respond('', '', $data);
-		}
-		
-		$ch = curl_init();
-		curl_setopt($ch, CURLOPT_URL, 'http://openvbx.org/updates/latest.json');
-		curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
-		$resp = curl_exec($ch);
-		
-		if(!$resp)
-		{
-			// Its okay we can't connect to the update system but log it
-			error_log('Unable to connect to OpenVBX Update notification server');
-		}
-		
-		$data['json'] = array('message' => 'Unable to fetch updates', 'error' => true);
-		
-		if($obj = json_decode($resp))
-		{
-			$data['json']['upgradeAvailable'] = false;
-			list($current['major'], $current['minor']) = explode('.', OpenVBX::version());
-			list($latest['major'], $latest['minor']) = explode('.', $obj->version);
-			if($latest['major'] > $current['major']
-			   || $latest['major'] == $current['major'] && $latest['minor'] > $current['minor'])
-			{
-				$data['json'] = array(
-					'error' => false,
-					'upgradeAvailable' => true
-				);
-			}
-		}
-
-		$this->respond('', '', $data);
-	}
-
 	private function get_client()
 	{
 		$theme_type = $this->input->get('type');
@@ -122,7 +71,7 @@ private function get_client()
 
 		if($this->response_type != 'json')
 		{
-			return redirect('');
+			redirect('');
 		}
 
 		$data['json'] = $client;

OpenVBX/controllers/devices.php

@@ -201,7 +201,7 @@ private function update_order()
 
 		if($this->response_type == 'html')
 		{
-			return redirect('account/number');
+			redirect('account/number');
 		}
 
 		$this->respond('', 'account/number', $data);

OpenVBX/controllers/dialog.php

@@ -19,6 +19,11 @@
  * Contributor(s):
  **/
 
+/**
+ * @param VBX_User|stdClass $a
+ * @param VBX_User|stdClass $b
+ * @return int
+ */
 function sortUsersAndGroupsByNameComparator($a, $b)
 {
 	$aName = null;

OpenVBX/controllers/external.php

@@ -2,15 +2,21 @@
 
 class External extends MY_Controller {
 
+	/**
+	 * @param $id
+	 */
 	public function message_details($id) {
-		return $this->request(site_url('messages/details/'.$id), array(
+		$this->request(site_url('messages/details/'.$id), array(
 			'iphone' => site_url('iphone/messages/details/'.$id)
 		));
 	}
 
 	/**
 	 * Handle all external requests detecting if they're a mobile 
 	 * device otherwise pass-thru to target url
+	 *
+	 * @param $url
+	 * @param array $alternativeURLs
 	 */
 	protected function request($url, $alternativeURLs = array()) {
 		set_last_known_url($url);

OpenVBX/controllers/install.php

@@ -498,6 +498,7 @@ private function setup_openvbx_settings($settings)
 	 * Check for the existence of a Twilio Client specific application
 	 * Create one if necessary
 	 *
+	 * @throws InstallException
 	 * @param array $settings 
 	 * @return string Application Sid
 	 */
@@ -517,6 +518,8 @@ private function get_application($settings)
 			));
 
 			$application = false;
+
+			/** @var Services_Twilio_Rest_Application $_application */
 			foreach ($applications as $_application)
 			{
 				if ($_application->friendly_name == $app_name) 

OpenVBX/controllers/messages/inbox.php

@@ -164,8 +164,12 @@ public function scripts($group = false)
 			$messageIdsJson = '{}';
 		}
 
-		/* TODO: implement JS responding */
 		header('content-type: text/javascript');
+		header('Expires: Fri, 22 Mar 1974 06:30:00 GMT');
+		header('Last-Modified: ' . gmdate( 'D, d M Y H:i:s') . ' GMT');
+		header('Cache-Control: no-store, no-cache, must-revalidate');
+		header('Cache-Control: post-check=0, pre-check=0', false);
+		header('Pragma: no-cache');
 		echo "$(document).ready(function(){ Message.Player.messageIdsToRecordingURLs = ".
 				$messageIdsJson."; });";
 	}
@@ -196,8 +200,10 @@ private function inbox($group = false)
 			return;
 		}
 
+		$ts = time();
+
 		$this->template->add_js('messages/scripts'.($group? '/'.$group : '').'?'.
-									http_build_query(compact('max', 'offset')), 'dynamic');
+									http_build_query(compact('max', 'offset', 'ts')), 'dynamic');
 
 		$data['group'] = $group;
 		$total_items = 0;
@@ -372,7 +378,7 @@ function edit($message_id) {
 			// set message read flag
 			$this->vbx_message->mark_read($message->id, $this->user_id);		
 			$message->caller = format_phone($message->caller);
-			$accepts = split(',', $_SERVER['HTTP_ACCEPT']);
+			$accepts = explode(',', $_SERVER['HTTP_ACCEPT']);
 			if(in_array('application/json', $accepts))
 			{
 				echo json_encode($message);

OpenVBX/controllers/numbers.php

@@ -204,6 +204,7 @@ protected function get_flows_list()
 	/**
 	 * Build a list of flow options for attaching numbers to flows
 	 *
+	 * @param VBX_Flow[]
 	 * @return array
 	 */
 	protected function get_flow_options($flows)
@@ -251,6 +252,9 @@ function add()
 		$this->respond('', 'numbers', $data);
 	}
 
+	/**
+	 * @param int $phone_id
+	 */
 	function delete($phone_id)
 	{
 		$this->admin_only($this->section);
@@ -288,6 +292,10 @@ function delete($phone_id)
 		echo json_encode($data);
 	}
 
+	/**
+	 * @param int $phone_id
+	 * @param int $id id of flow to assign number to
+	 */
 	function change($phone_id, $id)
 	{
 		$this->admin_only($this->section);