Clone Tools
  • last updated a few minutes ago
Constraints: committers
Constraints: files
Constraints: dates
Improved: Temporarily comment out the "stream" request-map in ecommerce controller for security reason (OFBIZ-11348)

No functional change, simply amend the comment

Fixed: Temporarily comment out the "stream" request-map in ecommerce controller for security reason (OFBIZ-11348)

A vulnerability has been reported to the OFBiz security team. We were able to

quickly and quietly fix it in supported versions, but in the ecommerce component.

To be able to release the 17.12.01 version with this vulnerability fixed we need

to temporarily comment out the "stream" request-map in ecommerce controller.

We will later fix the specific issue in ecommerce to put back the functionnalities

allowed by the "stream" request-map in ecommerce controller.

Improved: no functional change

This was added for OFBIZ-9198 but was superfluous since the same is already in

the included ecommerce controller

    • -0
    • +41
Merge pull request #5 from adityasharma7/OFBIZ-11333

Implemented: Cookie Consent In E-Commerce

Implemented: Cookie Consent In E-Commerce (OFBIZ-11333) Implemented internationalisation by initialising the plugin in header.ftl and using uiLabels for title, message and labels. Thanks Michael Brohl for your inputs

    • -0
    • +15
    • -0
    • +15
Implemented: Cookie Consent In E-Commerce (OFBIZ-11333) The Cookie Law is a piece of privacy legislation that requires websites to get consent from visitors to store or retrieve any information on their computer, smartphone or tablet. It was designed to protect online privacy, by making consumers aware of how information about them is collected and used online, and give them a choice to allow it or not.

The EU Cookie Legislation began as a directive from the European Union. Some variation on the policy has since been adopted by all countries within the EU.

The EU Cookie Legislation requires 4 actions from website owners who use cookies:

1. When someone visits your website, you need to let them know that your site uses cookies.

2. You need to provide detailed information regarding how that cookie data will be utilized.

3. You need to provide visitors with some means of accepting or refusing the use of cookies in your site.

4. If they refuse, you need to ensure that cookies will not be placed on their machine.

Used bsgdprcookies plugin to implement the feature. Thanks Deepak Nigam for initiating and providing initial patch. Thanks Deepak Nigam, Pierre Smits, Michael Brohl, Jacques Le Roux and Swapnil M Mane for inputs.

    • -0
    • +20
    • -0
    • +1
    • -0
    • +21
    • -0
    • +139
    • -0
    • +12
Improved: no functional change Added .gitignore file

Fixed: Error when initialize billFromParty from groovy context in loadSalesOrderItemFact service

After the conversion from bsh to groovy, the script that resolve

billFromParty need to propage the value on context Map to be available

on minilang context

Fixed: service 'loadSalesOrderItemFact' has hard coded currencyUomId (OFBIZ-11033)

Used PartyAccountingPreference.baseCurrencyUomId instead of hard coded USD.

Thanks: Pierre Smits for your contribution.

Implemented: Have a Country Dimension (OFBIZ-10954)

Added new CountryDimension entity in olap.

Thanks: Pierre Smits for your contribution.

Fixed: User is unable to create return. (OFBIZ-10850) Thanks, Ashish and Ankush Upadhyay for your contribution.

Fixed: User should not be directed to main page after adding product to cart from showcart page (OFBIZ-11223)

Navigate to URL: https://demo-trunk.ofbiz.apache.org/ecomseo/

Click on View Cart at top-right of the page (User will be directed to showcart page)

Enter product number (Eg: GZ-2644)

Enter quantity

Click on add to cart

Product is added to the cart but user is directed to main page of ecommerce.

Thanks: Arpit Mor for report, Sourabh Punyani for the fix

Fixed: Corrected file path for ProcessPaymentSettings.groovy (OFBIZ-11324)

Fixed: processorder is submitted as GET instead of POST


During checkout of shopping cart, it is observed that the processorder of the form action is submitted as GET which is incorrect.

Thanks: Jacques for the review

    • -1
    • +1
Improved: Add 'controlPath' attribute to 'ofbizUrl' freemarker macro


Adding the controlPath attribute to allow the controls by ofbizUrl to support uri to other OFBiz web application.

Thanks: Jacques for the review

    • -10
    • +10
Improved: no functional change (OFBIZ-INFRA-19550)

Buildbot build triggered by another project

This to test the ofbiz-plugins (only) trigger

Fixed: Add XML declaration in “web.xml” files (OFBIZ-6993)

These declarations avoid SAXParseException traceback when parsing web.xml

the first time in WebappUtil.parseWebXmlFile

A schema conformance issue has been fixed in ecommerce “web.xml”.

    • -1
    • +1
    • -1
    • +1
    • -1
    • +1
    • -1
    • +1
    • -1
    • +1
    • -1
    • +1
  1. … 11 more files in changeset.
No functional change

Just re-adds a line to fix INFRA-19505

No functional change

Just adds a line to check that a sole plugins commit triggers the

frameworl-plugins Buildbot build

Fixed: Use correct package name for ‘OrderNotificationTests.groovy’

This test belongs to the ‘ecommerce’ plugin not to the ‘order’ plugin.

Fixed: Add missing view permissions checks to various screens.

Fixed: Link in verification email for Newsletter gives security error (OFBIZ-9804)

Changes ContactListEmailTemplate.ftl to also use GET.

Because we dont' want a form to ask, but only to hide parameters.

See details in Jira.

Handles the emails also in ecomseo after OFBIZ-11278

I have still to see why I get this message at the end of the process:

"Invalid verify code for the New Product Announcements"

ie when using the link in the last (3rd) email:

"Subscribe Contact List New Product Announcements"

This will be another Jira..!

Fixed: double forward slashes in ecommerce emails (OFBIZ-2618)

I reopened this issue because while working on OFBIZ-9804 I found that

since maybe r1052457 some baseEcommerceSecureUrl in screens like

ContactListSubscribeEmail are not working anymore.

While at it I remove the commented out lines

    • -120
    • +115
Create .sonarcloud.properties

    • -0
    • +1
Improved: no functional change We use HSTS but anyway replaces HTTP by HTTPS in some data.

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1869102 13f79535-47bb-0310-9956-ffa450edef68

Adds a specific TortoiseSVN commit log header

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1869101 13f79535-47bb-0310-9956-ffa450edef68

Fixed: Move OrderNotificationTests.groovy from order to ecommerce (OFBIZ-11255)

Fixes the errors in framework only tests, order and ecommerce suites tests pass

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1868591 13f79535-47bb-0310-9956-ffa450edef68

    • -0
    • +30
Fixed: EditExample always update status, because current Status not shown (OFBIZ-11230)

In the EditExample Form, the drop-down is populates with the Valid change status

only. So current status is not in the list and the status print in the drop-down

is the next authorized. I want to modify exampleName or exampleType, I go to

editExample and change what I want and validate. The problem is status is also


There are 12 other same or similar cases. For the first of them (in FinAccount)

there is the same bug: when I change FinAccount Name, status change too. If I

add current="first-in-list" in the tag drop-down it works

jleroux: Quote is a peculiar case due to OFBIZ-7337 which was a wrong fix

Thanks: Oliver for the analysis and the fix

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1868545 13f79535-47bb-0310-9956-ffa450edef68

    • -1
    • +2
Improved: Upgrade Tomcat from 9.0.26 to 9.0.27 (OFBIZ-11249)

Forgot a plugin, as ever :/

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1868544 13f79535-47bb-0310-9956-ffa450edef68

Improved: Update build.gradle to the latest dependencies (OFBIZ-11245)

git-svn-id: https://svn.apache.org/repos/asf/ofbiz/ofbiz-plugins/trunk@1868194 13f79535-47bb-0310-9956-ffa450edef68