Updated version for v0.14.3

Merge branch 'v0.14' into release
Fixed entities wrongly visible on 404
2026-02-18 03:09:40 +03:00 · 2017-02-05 21:23:27 +00:00 · 2017-02-05 21:21:54 +00:00 · 2017-02-05 21:19:29 +00:00 · 2017-02-01 22:27:04 +00:00 · 2017-02-01 22:22:38 +00:00
14 changed files with 63 additions and 34 deletions
--- a/app/Http/Controllers/BookController.php
+++ b/app/Http/Controllers/BookController.php
@@ -208,7 +208,7 @@ class BookController extends Controller
        }

        // Update permissions on changed models
-        $this->entityRepo->buildJointPermissions($updatedModels);
+        if (count($updatedModels) === 0) $this->entityRepo->buildJointPermissions($updatedModels);

        return redirect($book->getUrl());
    }
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -13,6 +13,8 @@ class Kernel extends HttpKernel
     */
    protected $middleware = [
        \Illuminate\Foundation\Http\Middleware\CheckForMaintenanceMode::class,
+        \Illuminate\Session\Middleware\StartSession::class,
+        \Illuminate\View\Middleware\ShareErrorsFromSession::class,
    ];

    /**
@@ -24,8 +26,6 @@ class Kernel extends HttpKernel
        'web' => [
            \BookStack\Http\Middleware\EncryptCookies::class,
            \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
-            \Illuminate\Session\Middleware\StartSession::class,
-            \Illuminate\View\Middleware\ShareErrorsFromSession::class,
            \BookStack\Http\Middleware\VerifyCsrfToken::class,
            \Illuminate\Routing\Middleware\SubstituteBindings::class,
            \BookStack\Http\Middleware\Localization::class
--- a/app/Repos/EntityRepo.php
+++ b/app/Repos/EntityRepo.php
@@ -332,12 +332,12 @@ class EntityRepo
                $parents[$key] = $entities[$index];
                $parents[$key]->setAttribute('pages', collect());
            }
-            if ($entities[$index]->chapter_id === 0) $tree[] = $entities[$index];
+            if ($entities[$index]->chapter_id === 0 || $entities[$index]->chapter_id === '0') $tree[] = $entities[$index];
            $entities[$index]->book = $book;
        }

        foreach ($entities as $entity) {
-            if ($entity->chapter_id === 0) continue;
+            if ($entity->chapter_id === 0 || $entity->chapter_id === '0') continue;
            $parentKey = 'BookStack\\Chapter:' . $entity->chapter_id;
            $chapter = $parents[$parentKey];
            $chapter->pages->push($entity);
--- a/app/Services/PermissionService.php
+++ b/app/Services/PermissionService.php
@@ -243,13 +243,14 @@ class PermissionService
     */
    protected function deleteManyJointPermissionsForEntities($entities)
    {
+        if (count($entities) === 0) return;
        $query = $this->jointPermission->newQuery();
-        foreach ($entities as $entity) {
-            $query->orWhere(function($query) use ($entity) {
-                $query->where('entity_id', '=', $entity->id)
-                    ->where('entity_type', '=', $entity->getMorphClass());
-            });
-        }
+            foreach ($entities as $entity) {
+                $query->orWhere(function($query) use ($entity) {
+                    $query->where('entity_id', '=', $entity->id)
+                        ->where('entity_type', '=', $entity->getMorphClass());
+                });
+            }
        $query->delete();
    }

--- a/app/User.php
+++ b/app/User.php
@@ -165,7 +165,7 @@ class User extends Model implements AuthenticatableContract, CanResetPasswordCon
        if ($imageId === 0 || $imageId === '0' || $imageId === null) return $default;

        try {
-            $avatar = baseUrl($this->avatar->getThumb($size, $size, false));
+            $avatar = $this->avatar ? baseUrl($this->avatar->getThumb($size, $size, false)) : $default;
        } catch (\Exception $err) {
            $avatar = $default;
        }
--- a/app/helpers.php
+++ b/app/helpers.php
@@ -37,6 +37,15 @@ function user()
    return auth()->user() ?: \BookStack\User::getDefault();
 }

+/**
+ * Check if current user is a signed in user.
+ * @return bool
+ */
+function signedInUser()
+{
+    return auth()->user() && !auth()->user()->isDefault();
+}
+
 /**
 * Check if the current user has a permission.
 * If an ownable element is passed in the jointPermissions are checked against
--- a/composer.json
+++ b/composer.json
@@ -47,7 +47,9 @@
        ],
        "post-install-cmd": [
            "Illuminate\\Foundation\\ComposerScripts::postInstall",
-            "php artisan optimize"
+            "php artisan optimize",
+            "php artisan cache:clear",
+            "php artisan view:clear"
        ],
        "post-update-cmd": [
            "Illuminate\\Foundation\\ComposerScripts::postUpdate",
--- a/public/css/export-styles.css
+++ b/public/css/export-styles.css
--- a/public/css/styles.css
+++ b/public/css/styles.css
--- a/resources/assets/sass/_text.scss
+++ b/resources/assets/sass/_text.scss
@@ -119,6 +119,11 @@ sup, .superscript {
  font-size: 0.8em;
 }

+sub, .subscript {
+  vertical-align: sub;
+  font-size: 0.8em;
+}
+
 pre {
  font-family: monospace;
  white-space:pre;
--- a/resources/views/base.blade.php
+++ b/resources/views/base.blade.php
@@ -55,15 +55,15 @@
                    <div class="float right">
                        <div class="links text-center">
                            <a href="{{ baseUrl('/books') }}"><i class="zmdi zmdi-book"></i>{{ trans('entities.books') }}</a>
-                            @if(isset($currentUser) && userCan('settings-manage'))
+                            @if(signedInUser() && userCan('settings-manage'))
                                <a href="{{ baseUrl('/settings') }}"><i class="zmdi zmdi-settings"></i>{{ trans('settings.settings') }}</a>
                            @endif
-                            @if(!isset($signedIn) || !$signedIn)
+                            @if(!signedInUser())
                                <a href="{{ baseUrl('/login') }}"><i class="zmdi zmdi-sign-in"></i>{{ trans('auth.log_in') }}</a>
                            @endif
                        </div>
-                        @if(isset($signedIn) && $signedIn)
-                            @include('partials._header-dropdown', ['currentUser' => $currentUser])
+                        @if(signedInUser())
+                            @include('partials._header-dropdown', ['currentUser' => user()])
                        @endif

                    </div>
--- a/resources/views/errors/404.blade.php
+++ b/resources/views/errors/404.blade.php
@@ -10,22 +10,24 @@
    <p>{{ trans('errors.sorry_page_not_found') }}</p>
    <p><a href="{{ baseUrl('/') }}" class="button">{{ trans('errors.return_home') }}</a></p>

-    <hr>
+    @if (setting('app-public') || !user()->isDefault())
+        <hr>

-    <div class="row">
-        <div class="col-md-4">
-            <h3 class="text-muted">{{ trans('entities.pages_popular') }}</h3>
-            @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Page::class]), 'style' => 'compact'])
+        <div class="row">
+            <div class="col-md-4">
+                <h3 class="text-muted">{{ trans('entities.pages_popular') }}</h3>
+                @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Page::class]), 'style' => 'compact'])
+            </div>
+            <div class="col-md-4">
+                <h3 class="text-muted">{{ trans('entities.books_popular') }}</h3>
+                @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Book::class]), 'style' => 'compact'])
+            </div>
+            <div class="col-md-4">
+                <h3 class="text-muted">{{ trans('entities.chapters_popular') }}</h3>
+                @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Chapter::class]), 'style' => 'compact'])
+            </div>
        </div>
-        <div class="col-md-4">
-            <h3 class="text-muted">{{ trans('entities.books_popular') }}</h3>
-            @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Book::class]), 'style' => 'compact'])
-        </div>
-        <div class="col-md-4">
-            <h3 class="text-muted">{{ trans('entities.chapters_popular') }}</h3>
-            @include('partials.entity-list', ['entities' => Views::getPopular(10, 0, [\BookStack\Chapter::class]), 'style' => 'compact'])
-        </div>
-    </div>
+    @endif
 </div>

@stop
--- a/tests/PublicActionTest.php
+++ b/tests/PublicActionTest.php
@@ -80,4 +80,14 @@ class PublicActionTest extends TestCase
        ]);
    }

+    public function test_content_not_listed_on_404_for_public_users()
+    {
+        $page = \BookStack\Page::first();
+        $this->asAdmin()->visit($page->getUrl());
+        Auth::logout();
+        view()->share('pageTitle', '');
+        $this->forceVisit('/cats/dogs/hippos');
+        $this->dontSee($page->name);
+    }
+
 }
--- a/2
+++ b/2
@@ -1 +1 @@
-v0.14.0
+v0.14.3
Author	SHA1	Message	Date
Dan Brown	598758b991	Updated version for v0.14.3	2017-02-05 21:23:27 +00:00
Dan Brown	9926e23bc8	Merge branch 'v0.14' into release	2017-02-05 21:21:54 +00:00
Dan Brown	6638ee47d3	Fixed entities wrongly visible on 404 Also ensured header state as expected on 404. In reference to BookStackApp/website#9	2017-02-05 21:19:29 +00:00
Dan Brown	5d3264bc63	Updated assets for release v0.14.2	2017-02-01 22:27:04 +00:00
Dan Brown	d71f819f95	Merge branch 'v0.14' into release	2017-02-01 22:22:38 +00:00
Dan Brown	80f844139c	Fixed missing subscript styling Closes #284	2017-02-01 22:20:44 +00:00
Dan Brown	9eecaea31a	Attempt to fix bookchildren and user getThumb Hopefully Fixes #292 and #294 and #287	2017-02-01 22:16:32 +00:00
Dan Brown	ee13509760	Updated version number	2017-01-23 22:28:31 +00:00
Dan Brown	82d7bb1f32	Merge branch 'master' into release	2017-01-23 22:28:02 +00:00
Dan Brown	492e2f173e	Fixed error causing permissions to be deleted on book sort Closes #282	2017-01-23 22:27:11 +00:00