From d5cb33579db8646ea0cfdb9ae5c3fe6bdb4232a9 Mon Sep 17 00:00:00 2001
From: Nasrullo Nurullaev <61620246+nasrullonurullaev@users.noreply.github.com>
Date: Mon, 21 Aug 2023 18:05:07 +0500
Subject: [PATCH 1/7] fix Bug 63689 - Fix issue with adding administrators
(#1647)
---
build/install/win/DocSpace.aip | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/build/install/win/DocSpace.aip b/build/install/win/DocSpace.aip
index 4d7421e93a..5969f7be8e 100644
--- a/build/install/win/DocSpace.aip
+++ b/build/install/win/DocSpace.aip
@@ -1060,7 +1060,7 @@
-
+
From 4dcd8099d6b913384c4b60a93d790b1d5c863212 Mon Sep 17 00:00:00 2001
From: Nasrullo Nurullaev <61620246+nasrullonurullaev@users.noreply.github.com>
Date: Mon, 21 Aug 2023 18:07:13 +0500
Subject: [PATCH 2/7] Reduce the install time in DocSpace msi build (#1611)
---
build/install/win/DocSpace.aip | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/build/install/win/DocSpace.aip b/build/install/win/DocSpace.aip
index 5969f7be8e..6dde825f79 100644
--- a/build/install/win/DocSpace.aip
+++ b/build/install/win/DocSpace.aip
@@ -51,7 +51,7 @@
-
+
From 195a1c7386f3049368491d687de7cef06011c790 Mon Sep 17 00:00:00 2001
From: Nasrullo Nurullaev <61620246+nasrullonurullaev@users.noreply.github.com>
Date: Tue, 22 Aug 2023 12:46:14 +0500
Subject: [PATCH 3/7] fix Bug 63642 - Fix issue with installing MySql (#1649)
---
build/install/win/DocSpace.aip | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/build/install/win/DocSpace.aip b/build/install/win/DocSpace.aip
index 6dde825f79..9a9f26e59d 100644
--- a/build/install/win/DocSpace.aip
+++ b/build/install/win/DocSpace.aip
@@ -1526,7 +1526,7 @@
-
+
From 83d4daf9e1420b7635b37a90226b250e4e5d9f4c Mon Sep 17 00:00:00 2001
From: Timofey Boyko
Date: Tue, 22 Aug 2023 11:47:46 +0300
Subject: [PATCH 4/7] Fixed Bug 63730 - Rooms: Tags. Refresh page with active
tag 'xss' view to fall
---
packages/common/utils/index.ts | 11 ++++++++---
1 file changed, 8 insertions(+), 3 deletions(-)
diff --git a/packages/common/utils/index.ts b/packages/common/utils/index.ts
index 9984823aff..5f46f00548 100644
--- a/packages/common/utils/index.ts
+++ b/packages/common/utils/index.ts
@@ -77,11 +77,16 @@ export function getObjectByLocation(location) {
.replace(/\\\\"\]/g, '"]')
.replace(/"\[/g, "[")
.replace(/\]"/g, "]")
- .replace(/\\\\",\\\\"/g, '","');
+ .replace(/\\\\",\\\\"/g, '","')
+ .replace(/\\\\\\\\"/g, '\\"');
- const object = JSON.parse(`{"${decodedString}"}`);
+ try {
+ const object = JSON.parse(`{"${decodedString}"}`);
- return object;
+ return object;
+ } catch (e) {
+ return {};
+ }
}
export function changeLanguage(i18n, currentLng = getCookie(LANGUAGE)) {
From f182292c44717253cc14de8bd85c73139b785a46 Mon Sep 17 00:00:00 2001
From: Timofey Boyko
Date: Tue, 22 Aug 2023 12:16:14 +0300
Subject: [PATCH 5/7] Fixed Bug 63728 - Settings: Customization. Xss script
inserted into the Welcome Page line breaks the authorization page.
---
packages/login/src/server/lib/template.ts | 10 +++++++++-
1 file changed, 9 insertions(+), 1 deletion(-)
diff --git a/packages/login/src/server/lib/template.ts b/packages/login/src/server/lib/template.ts
index dd42a6449c..d05abc5a57 100644
--- a/packages/login/src/server/lib/template.ts
+++ b/packages/login/src/server/lib/template.ts
@@ -49,9 +49,17 @@ const template: Template = (
});
}
+ const initialLoginStateStringify = JSON.stringify(initLoginState);
+
+ const initialLoginStateString = initialLoginStateStringify.includes(
+ ""
+ )
+ ? initialLoginStateStringify.replace(/<\/script>/g, "<\\/script>")
+ : initialLoginStateStringify;
+
const scripts = `