From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 09:37:00 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] New: Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 07:36:59 +0000
Message-ID:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3705413082491368519=="
--===============3705413082491368519==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
Bug ID: 35072
Summary: Invalid usage of "&" in JavaScript intranet-tmpl
script redirects
Change sponsored?: ---
Product: Koha
Version: 23.05
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P5 - low
Component: Templates
Assignee: oleonard@myacpl.org
Reporter: schodkowy.omegi-0r@icloud.com
QA Contact: testopia@bugs.koha-community.org
There are several files under `koha-tmpl/intranet-tmpl/prog/js/**.js`, where
`&` character in the URLs is incorrectly replaced with `&`.
In practice, `&` should only ever be used a part of HTML elements, for
example inside of link. Using it in JS redirects such as
`window.location=3D"addbiblio.pl?op=3Ddelete&biblionumber=3D` is incorrec=
t!
The `&` part is preserved like this by both the web browser and the web
server.
This creates several bugs, such as the one I've encountered and managed to
trace back to this very issue. For example this makes you unable to delete a
biblio record in admin interface AT ALL. To reproduce just install a fresh Ko=
ha
installation, import a record and try to delete it. It would redirect you to
the search.pl page, but nothing would happen.
I traced the above to this:
https://github.com/Koha-Community/Koha/blob/f27ed123be8ac1f0ecd76cd54ed9c2a8e=
591aefe/koha-tmpl/intranet-tmpl/prog/js/catalog.js#L55
Which causes the variable `$biblionumber` to be null here:
https://github.com/Koha-Community/Koha/blob/f27ed123be8ac1f0ecd76cd54ed9c2a8e=
591aefe/cataloguing/addbiblio.pl#L488
Which causes the `$frameworkcode` variable to be unpopulated here:
https://github.com/Koha-Community/Koha/blob/f27ed123be8ac1f0ecd76cd54ed9c2a8e=
591aefe/cataloguing/addbiblio.pl#L510-L511
Which causes the following warnings:
```
[2023/10/17 09:04:43] [WARN] Use of uninitialized value $frameworkcode in
string eq at /usr/share/koha/intranet/cgi-bin/cataloguing/addbiblio.pl line
513.
[2023/10/17 09:04:43] [WARN] Use of uninitialized value $frameworkcode in
string eq at /usr/share/koha/intranet/cgi-bin/cataloguing/addbiblio.pl line
517.
[2023/10/17 09:04:43] [WARN] Use of uninitialized value $frameworkcode in
string eq at /usr/share/koha/intranet/cgi-bin/cataloguing/addbiblio.pl line
536.
```
I did a quick search, and found out that these files need to be corrected:
* koha-tmpl/intranet-tmpl/prog/js/catalog.js
* koha-tmpl/intranet-tmpl/prog/js/members-menu.js
* koha-tmpl/intranet-tmpl/prog/js/holds.js
* koha-tmpl/intranet-tmpl/prog/js/cart.js
* koha-tmpl/intranet-tmpl/prog/js/ill-list-table.js
* koha-tmpl/intranet-tmpl/prog/js/pages/results.js
I ended up submitting it as bug, as it will probably be much faster to get
submitted and approved by someone who already has a dev workflow set up to
contribute the patch...
Not sure if the severity I used is okay, but this prevents many features in t=
he
UI from working properly at all, so I think it is pretty important to fix this
quickly. The random bugs/partial breakage this can cause can make
hard-to-notice and hard-to-trace problems appear...
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============3705413082491368519==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 09:39:20 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 07:39:19 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============1033884963801945637=="
--===============1033884963801945637==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
M changed:
What |Removed |Added
----------------------------------------------------------------------------
Priority|P5 - low |P2
Patch complexity|--- |Trivial patch
--
You are receiving this mail because:
You are watching all bug changes.
--===============1033884963801945637==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 09:57:27 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 07:57:27 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============7691636238926609942=="
--===============7691636238926609942==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
--- Comment #1 from M ---
I see that this issue is actually present in a lot of .pl Perl files on the
server...
All of this needs to be fixed, the escape to `&` can only ever be done
within HTML elements, but it's not even obligatory there either, so it's easi=
er
to just remove it outright. There's no reason to ever enter `&` manually =
in
URLs!
I dug a tad deeper, and it seems a reverse proxy that we're currently forced =
to
use does sanitize URLs and so it strips out invalid parameter entirely, meani=
ng
that anything after "&" is inclusively removed...
I imagine the way it was never noticed and all fixed is because Perl must
handle this issue somewhere internally in case someone makes a malformed
request?
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============7691636238926609942==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 09:59:47 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 07:59:46 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============2819376185720589300=="
--===============2819376185720589300==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
--- Comment #2 from Katrin Fischer ---
Hi, thx for the research and explanation.=20
The bug is filed perfectly - I only moved it up to "master", because I am sure
these are also present in our development version. A fix will then be
backported to all older versions affected.
If you want, we can help you with submitting a patch?=20
The koha-testing-docker (https://gitlab.com/koha-community/koha-testing-docke=
r)
dev environment gives you all the tools you'd need to do it.
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============2819376185720589300==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 12:29:01 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 10:29:00 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0385488516409337751=="
--===============0385488516409337751==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
--- Comment #3 from Owen Leonard ---
(In reply to M from comment #0)
> For example this makes you unable to delete a
> biblio record in admin interface AT ALL.
I'm not able to reproduce this problem. Can you describe in more detail where
you're trying to delete the record?
--
You are receiving this mail because:
You are watching all bug changes.
--===============0385488516409337751==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 12:34:17 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 10:34:17 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============9063105175981122905=="
--===============9063105175981122905==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Owen Leonard changed:
What |Removed |Added
----------------------------------------------------------------------------
Version|23.05 |master
Priority|P2 |P5 - low
--
You are receiving this mail because:
You are watching all bug changes.
--===============9063105175981122905==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 12:44:37 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 10:44:36 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3155811683214986481=="
--===============3155811683214986481==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
--- Comment #4 from Owen Leonard ---
I'm also curious what browser and operating system you're using.
--
You are receiving this mail because:
You are watching all bug changes.
--===============3155811683214986481==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 15:07:09 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 13:07:08 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============8891103626964128612=="
--===============8891103626964128612==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
--- Comment #5 from M ---
Firefox on Windows. But the & part gets removed by reverse proxy actually,
and currently we're forced to use this proxy.
I remove the record from staff interface
(/cgi-bin/koha/catalogue/detail.pl?biblionumber=3D1715&found1=3D1), I press
Modify->Delete Record.
It does seem that using Apache2 directly there will not make it complain, but
there are intermediate servers that reparse URLs, and that's where there's
trouble.
This just coincidentally works in Perl, but is undefined behavior due to being
invalid request. For example in PHP you'd end up with $_REQUEST variable havi=
ng
key "amp;biblionumber" instead of "biblionumber" in such request...
Btw the addbiblio.pl script could have some validation if delete operation
supplied the number parameter instead of just silently redirecting to search.=
pl
without doing anything actually...
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============8891103626964128612==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 17 15:19:06 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 13:19:06 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============8312300293749841023=="
--===============8312300293749841023==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
--- Comment #6 from M ---
In default setup:
- When making a request to delete biblio record, open up devtools (enable
persistent request saving in Network tab), and look at what request browser is
making (it should not have & in the url, just &)
- Observe the same in Apache2 logs in /var/log/koha
Our actual setup currently uses serveo.net to create a simple tunnel to access
Koha over the internet, as we haven't set up proper redirection *yet*, and th=
is
is setup so that staff can work on the database until it's ready to move to t=
he
proper server. Generally this setup works great, but the URLs are sanitized a=
nd
so invalid parameter is removed.
You can try for yourself as the site doesn't require an account and you just
use appropriate SSH command to set up port redirect and get an address in
return. Use that over the dev setup and try removing a biblio record, and then
see what gets logged in Apache2 now (& and afterwards is stripped). Then =
if
you repeat the same request (Edit and repeat in Firefox devtools, and correct
& to &), you see it will actually work fine then...
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============8312300293749841023==--
From bugzilla-daemon@bugs.koha-community.org Wed Oct 18 00:19:38 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 22:19:37 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3271566542521520498=="
--===============3271566542521520498==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Mason James changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mtj@kohaaloha.com
--
You are receiving this mail because:
You are watching all bug changes.
--===============3271566542521520498==--
From bugzilla-daemon@bugs.koha-community.org Wed Oct 18 01:44:29 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 17 Oct 2023 23:44:28 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============2864758360340714626=="
--===============2864758360340714626==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
David Cook changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |dcook@prosentient.com.au
--
You are receiving this mail because:
You are watching all bug changes.
--===============2864758360340714626==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 16:02:09 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 14:02:09 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============6033523355225032520=="
--===============6033523355225032520==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3D35072
M changed:
What |Removed |Added
----------------------------------------------------------------------------
Assignee|oleonard@myacpl.org |schodkowy.omegi-0r@icloud.c
| |om
Status|NEW |Needs Signoff
--- Comment #7 from M ---
Created attachment 157654
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=3D157654&action=
=3Dedit
Bug 35072: Fix invalid usage of "&" in JavaScript intranet-tmpl script
redirects
This patch fixes it in just JS templates, which is where it causes actual
breakage (as invalid HTTP requests are being sent).
It does not fix invalid escape occurences that might happen inside of Perl
templates (second case I've mentioned later), as those are silently handled by
this piece of code in case of CGI redirects:
https://metacpan.org/release/LDS/CGI.pm-3.48/source/lib/CGI.pm#L1630-1647
As such, this patch itself fixes only JS templates to keep things simple, and
is ready to be merged and fix the prime bug.
As for the second case with Perl templates, I'll wait for feedback on whether=
I
should look into that and make a patch as well, as that technically happens to
not break things, just isn't right pedantically...
--=20
You are receiving this mail because:
You are watching all bug changes.
--===============6033523355225032520==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 18:29:47 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 16:29:46 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============6931739058878633151=="
--===============6931739058878633151==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Owen Leonard changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Needs Signoff |Signed Off
--
You are receiving this mail because:
You are watching all bug changes.
--===============6931739058878633151==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 18:29:57 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 16:29:48 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============7361005638131109043=="
--===============7361005638131109043==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Owen Leonard changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #157654|0 |1
is obsolete| |
--- Comment #8 from Owen Leonard ---
Created attachment 157681
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=157681&action=edit
Bug 35072: Fix invalid usage of "&" in JavaScript intranet-tmpl script
redirects
These escapes were invalid in these places, as HTML entity escapes
are meant to be used only inside of HTML elements/attributes, not
inside of JavaScript code.
These URLs would be sent out by the browser as-is, and that'd usually
work on the default install only coincidentally. Unfortunately, on some
setups (such as when using reverse proxies), this would break, and the
URL after "&" would have been truncated.
This small patch adjusts the URLs in templates to not use wrong escapes,
and makes them consistent with how URLs are formatted for JavaScript
redirects in most of the templates already.
Signed-off-by: Owen Leonard
--
You are receiving this mail because:
You are watching all bug changes.
--===============7361005638131109043==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 22:43:46 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 20:43:45 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============7336098390364427150=="
--===============7336098390364427150==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Katrin Fischer changed:
What |Removed |Added
----------------------------------------------------------------------------
QA Contact|testopia@bugs.koha-communit |katrin.fischer@bsz-bw.de
|y.org |
--
You are receiving this mail because:
You are watching all bug changes.
--===============7336098390364427150==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 23:05:28 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 21:05:27 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============1876853962926649100=="
--===============1876853962926649100==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Katrin Fischer changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Signed Off |Passed QA
--
You are receiving this mail because:
You are watching all bug changes.
--===============1876853962926649100==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 23:05:48 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 21:05:30 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============6847396418422764536=="
--===============6847396418422764536==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Katrin Fischer changed:
What |Removed |Added
----------------------------------------------------------------------------
Attachment #157681|0 |1
is obsolete| |
--- Comment #9 from Katrin Fischer ---
Created attachment 157693
-->
https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=157693&action=edit
Bug 35072: Fix invalid usage of "&" in JavaScript intranet-tmpl script
redirects
These escapes were invalid in these places, as HTML entity escapes
are meant to be used only inside of HTML elements/attributes, not
inside of JavaScript code.
These URLs would be sent out by the browser as-is, and that'd usually
work on the default install only coincidentally. Unfortunately, on some
setups (such as when using reverse proxies), this would break, and the
URL after "&" would have been truncated.
This small patch adjusts the URLs in templates to not use wrong escapes,
and makes them consistent with how URLs are formatted for JavaScript
redirects in most of the templates already.
Signed-off-by: Owen Leonard
Signed-off-by: Katrin Fischer
--
You are receiving this mail because:
You are watching all bug changes.
--===============6847396418422764536==--
From bugzilla-daemon@bugs.koha-community.org Mon Oct 23 23:05:58 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 23 Oct 2023 21:05:45 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============4728159899482915614=="
--===============4728159899482915614==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
--- Comment #10 from Katrin Fischer ---
Thanks for your patch!
--
You are receiving this mail because:
You are watching all bug changes.
--===============4728159899482915614==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 24 15:08:04 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 24 Oct 2023 13:06:58 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0217235036934008415=="
--===============0217235036934008415==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Tomás Cohen Arazi changed:
What |Removed |Added
----------------------------------------------------------------------------
Version(s)| |23.11.00
released in| |
Status|Passed QA |Pushed to master
--
You are receiving this mail because:
You are watching all bug changes.
--===============0217235036934008415==--
From bugzilla-daemon@bugs.koha-community.org Tue Oct 24 15:08:14 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Tue, 24 Oct 2023 13:07:00 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============0666960957354844366=="
--===============0666960957354844366==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
--- Comment #11 from Tomás Cohen Arazi ---
Pushed to master for 23.11.
Nice work everyone, thanks!
--
You are receiving this mail because:
You are watching all bug changes.
--===============0666960957354844366==--
From bugzilla-daemon@bugs.koha-community.org Thu Oct 26 08:57:39 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Thu, 26 Oct 2023 06:57:38 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============3010901860022022397=="
--===============3010901860022022397==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Fridolin Somers changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Pushed to master |Pushed to stable
Version(s)|23.11.00 |23.11.00,23.05.05
released in| |
CC| |fridolin.somers@biblibre.co
| |m
--- Comment #12 from Fridolin Somers ---
Pushed to 23.05.x for 23.05.05
--
You are receiving this mail because:
You are watching all bug changes.
--===============3010901860022022397==--
From bugzilla-daemon@bugs.koha-community.org Mon Nov 13 16:13:13 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 13 Nov 2023 15:11:30 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============8598370937760687246=="
--===============8598370937760687246==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
Matt Blenkinsop changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|Pushed to stable |Pushed to oldstable
Version(s)|23.11.00,23.05.05 |23.11.00,23.05.05,22.11.12
released in| |
--
You are receiving this mail because:
You are watching all bug changes.
--===============8598370937760687246==--
From bugzilla-daemon@bugs.koha-community.org Mon Nov 13 16:13:23 2023
From: bugzilla-daemon@bugs.koha-community.org
To: koha-bugs@lists.koha-community.org
Subject: [Koha-bugs] [Bug 35072] Invalid usage of "& " in JavaScript
intranet-tmpl script redirects
Date: Mon, 13 Nov 2023 15:11:32 +0000
Message-ID:
In-Reply-To:
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============5281769919990479750=="
--===============5281769919990479750==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=35072
--- Comment #13 from Matt Blenkinsop ---
Nice work everyone!
Pushed to oldstable for 22.11.x
--
You are receiving this mail because:
You are watching all bug changes.
--===============5281769919990479750==--