Skip to content

Voicemail: Add option to lock the password (i.e. for shared mailboxes) #31

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
hannes427 wants to merge 6 commits into
base: release/17.0
Choose a base branch
from
Open

Voicemail: Add option to lock the password (i.e. for shared mailboxes) #31

hannes427 wants to merge 6 commits into from

Conversation

@hannes427
Copy link
Contributor

@hannes427 hannes427 commented Mar 6, 2025

@hannes427
Copy link
Contributor Author

hannes427 commented Mar 6, 2025

@kguptasangoma This is the new pull request without the i18n files.

@miken32
Copy link
Contributor

miken32 commented Apr 2, 2025

If this is intended as a security feature, it's very trivial to just remove the dash from the hidden input value. The server-side code should be checking for a leading dash and not allowing updates from UCP in that case.

miken32
miken32 reviewed Apr 2, 2025
View reviewed changes
Copy link
Contributor

@miken32 miken32 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

str_starts_with($settings['pwd'], '-') seems simpler to read at a glance than the regex, IMO

hannes427 added 4 commits April 5, 2025 14:00
@hannes427
Merge branch 'FreePBX:release/17.0' into Issue-151-new
e7034ee
@hannes427
Voicemail: Add option to lock the password (i.e. for shared mailboxes)
64b43bb 
If the password is prefixed by '-', the password is locked (see https://github.com/asterisk/asterisk/blob/2d7948fa483c8703cf9948811fd67147f4d560d4/configs/samples/voicemail.conf.sample#L330 for details).

* Add server-side check in ucp/Voicemail.class.php check for leading '-'
  in the old password before password is saved
* Replaced regex in ucp/views/vmsettings.php by str_starts_with()
* Modified regex in functions.inc.php to allow voicemail passwords with leading '-' in admin-panel
@hannes427
Voicemail: Add option to lock the password (i.e. for shared mailboxes)
076819a 
If the password is prefixed by '-', the password is locked (see https://github.com/asterisk/asterisk/blob/2d7948fa483c8703cf9948811fd67147f4d560d4/configs/samples/voicemail.conf.sample#L330 for details).

* Add server-side check in ucp/Voicemail.class.php check for leading '-'
  in the old password before password is saved
* Replaced regex in ucp/views/vmsettings.php by str_starts_with()
* Modified regex in functions.inc.php to allow voicemail passwords with leading '-' in admin-panel

Bugfix FreePBX/issue-tracker#151
@hannes427
Voicemail: Add option to lock the password (i.e. for shared mailboxes)
b572e23 
If the password is prefixed by '-', the password is locked (see https://github.com/asterisk/asterisk/blob/2d7948fa483c8703cf9948811fd67147f4d560d4/configs/samples/voicemail.conf.sample#L330 for details).

* Add server-side check in ucp/Voicemail.class.php check for leading '-'
  in the old password before password is saved
* Replaced regex in ucp/views/vmsettings.php by str_starts_with()
* Modified regex in functions.inc.php to allow voicemail passwords with leading '-' in admin-panel

Bugfix FreePBX/issue-tracker#151
@hannes427
Copy link
Contributor Author

hannes427 commented Apr 5, 2025

@miken32 Thank you for your comments. Added a new PR with your modifications

@hannes427
Add option to lock the password (i.e. for shared mailboxes)
e8742b2 
* Removed displaying '-' from Voicemail Pin in UCP if password is
  locked
@kguptasangoma
Copy link
Member

kguptasangoma commented Apr 21, 2025

hi @miken32 thanks for your feedback on this PR. Just want to know how does this PR now looks to you?

@miken32
Copy link
Contributor

miken32 commented Apr 21, 2025 via email
edited
Loading

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@miken32 miken32 miken32 left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@hannes427 @miken32 @kguptasangoma