From 6e02e84ad6fc215514da980c02c03fb1f61fd20a802f838288880818af713bf7 Mon Sep 17 00:00:00 2001 From: Eric Schirra Date: Wed, 16 Jul 2025 13:08:54 +0000 Subject: [PATCH 1/2] - Update to 2.12.5 * PHP 8.4 Support We're again a little behind schedule, but now we support PHP 8.4! This means that installations on Ubuntu 25.04 and Fedora 42+ can now install Icinga Web without worrying about PHP related incompatibilities. Icinga packages will be available in the next few days. * Good Things Take Time There's only a single (notable) recent issue that is fixed with this release. All the others are a bit older. - External URLs set up as dashlets are not embedded the same as navigation items #5346 * But the team sat together a few weeks ago and fixed a bug here and there. And of course, also in Icinga Web! - Users who are not allowed to change the theme, cannot change the theme mode either #5385 - Improved compatibility with several SSO authentication providers #5000, #5227 - Filtering for older-than events with relative time does not work #5263 - Empty values are NULL in CSV exports #5350 * Breaking, Somewhat This is mainly for developers. With the support of PHP 8.4, we introduced a new environment variable, ICINGAWEB_ENVIRONMENT. Unless set to dev, Icinga Web will not show nor log deprecation notices anymore. OBS-URL: https://build.opensuse.org/package/show/server:monitoring/icingaweb2?expand=0&rev=116 --- .gitattributes | 23 + .gitignore | 1 + README.SUSE | 12 + icingaweb2-2.12.1.tar.gz | 3 + icingaweb2-2.12.2.tar.gz | 3 + icingaweb2-2.12.4.tar.gz | 3 + icingaweb2-2.12.5.tar.gz | 3 + icingaweb2-additions.tar.gz | 3 + icingaweb2-php-fpm.conf | 40 ++ icingaweb2-rpmlintrc | 3 + icingaweb2.changes | 1198 +++++++++++++++++++++++++++++++++++ icingaweb2.spec | 204 ++++++ 12 files changed, 1496 insertions(+) create mode 100644 .gitattributes create mode 100644 .gitignore create mode 100644 README.SUSE create mode 100644 icingaweb2-2.12.1.tar.gz create mode 100644 icingaweb2-2.12.2.tar.gz create mode 100644 icingaweb2-2.12.4.tar.gz create mode 100644 icingaweb2-2.12.5.tar.gz create mode 100644 icingaweb2-additions.tar.gz create mode 100644 icingaweb2-php-fpm.conf create mode 100644 icingaweb2-rpmlintrc create mode 100644 icingaweb2.changes create mode 100644 icingaweb2.spec diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 0000000..9b03811 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,23 @@ +## Default LFS +*.7z filter=lfs diff=lfs merge=lfs -text +*.bsp filter=lfs diff=lfs merge=lfs -text +*.bz2 filter=lfs diff=lfs merge=lfs -text +*.gem filter=lfs diff=lfs merge=lfs -text +*.gz filter=lfs diff=lfs merge=lfs -text +*.jar filter=lfs diff=lfs merge=lfs -text +*.lz filter=lfs diff=lfs merge=lfs -text +*.lzma filter=lfs diff=lfs merge=lfs -text +*.obscpio filter=lfs diff=lfs merge=lfs -text +*.oxt filter=lfs diff=lfs merge=lfs -text +*.pdf filter=lfs diff=lfs merge=lfs -text +*.png filter=lfs diff=lfs merge=lfs -text +*.rpm filter=lfs diff=lfs merge=lfs -text +*.tbz filter=lfs diff=lfs merge=lfs -text +*.tbz2 filter=lfs diff=lfs merge=lfs -text +*.tgz filter=lfs diff=lfs merge=lfs -text +*.ttf filter=lfs diff=lfs merge=lfs -text +*.txz filter=lfs diff=lfs merge=lfs -text +*.whl filter=lfs diff=lfs merge=lfs -text +*.xz filter=lfs diff=lfs merge=lfs -text +*.zip filter=lfs diff=lfs merge=lfs -text +*.zst filter=lfs diff=lfs merge=lfs -text diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..57affb6 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +.osc diff --git a/README.SUSE b/README.SUSE new file mode 100644 index 0000000..79df6e9 --- /dev/null +++ b/README.SUSE @@ -0,0 +1,12 @@ + +Information: + +To use module setup you must enable feature ido-mysql or ido-pgsql. + + icinga2 feature enable ido-mysql + or + icinga2 feature enable ido-pgsql + +And you must change settings in in ido-mysql.conf or ido-pgsql.conf under /etc/icinga2/features-enabled. + +After that youd must restart icinga2. diff --git a/icingaweb2-2.12.1.tar.gz b/icingaweb2-2.12.1.tar.gz new file mode 100644 index 0000000..16e8c0a --- /dev/null +++ b/icingaweb2-2.12.1.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:4640b8cf38265c9c74689701c5e8e1a3b1938ad1ac9ad71674393d2ff3c2dc7f +size 6353911 diff --git a/icingaweb2-2.12.2.tar.gz b/icingaweb2-2.12.2.tar.gz new file mode 100644 index 0000000..9fbac2d --- /dev/null +++ b/icingaweb2-2.12.2.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:b15687a499f1774aaf953216990c5c94639a19a68977c288847b857541c84649 +size 6361027 diff --git a/icingaweb2-2.12.4.tar.gz b/icingaweb2-2.12.4.tar.gz new file mode 100644 index 0000000..7a4fbc6 --- /dev/null +++ b/icingaweb2-2.12.4.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:88595be8910b1b3be194ef49636a9b9654a87bac6e01439d27ee82ef7a4acf39 +size 6362942 diff --git a/icingaweb2-2.12.5.tar.gz b/icingaweb2-2.12.5.tar.gz new file mode 100644 index 0000000..4421718 --- /dev/null +++ b/icingaweb2-2.12.5.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:8756caba3287aaaa9b0bf398de7f581a7c0d25587c65b6e2804cf22819d54171 +size 6365042 diff --git a/icingaweb2-additions.tar.gz b/icingaweb2-additions.tar.gz new file mode 100644 index 0000000..5e31370 --- /dev/null +++ b/icingaweb2-additions.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:9459552305942c858c173603b0d438074c428ee13afa4715a7ce5d6e7d202007 +size 1509 diff --git a/icingaweb2-php-fpm.conf b/icingaweb2-php-fpm.conf new file mode 100644 index 0000000..3b1e827 --- /dev/null +++ b/icingaweb2-php-fpm.conf @@ -0,0 +1,40 @@ +[icingaweb2] +user = icinga +group = icingaweb2 +apparmor_hat = icingaweb2 + +listen = /run/php-fpm/fpm-icingaweb2.socket + +listen.owner = wwwrun +listen.group = www +listen.mode = 0660 + +pm = dynamic + +pm.max_children = 5 + +pm.start_servers = 1 + +pm.min_spare_servers = 1 + +pm.max_spare_servers = 3 + +chdir = /srv/www/vhosts/icingaweb2 + +env[PATH]=/usr/bin:/bin + +php_admin_value[open_basedir] = /usr/share/icingaweb2:/etc/icingaweb2:/var/log/icingaweb2/ +php_admin_value[upload_tmp_dir] = /srv/www/vhosts/icingaweb2/tmp +php_admin_value[session.save_path] = /srv/www/vhosts/icingaweb2/sessions +; php_admin_value[opcache.enable]=1 +; php_admin_value[opcache.enable_cli]=1 +; php_admin_value[opcache.interned_strings_buffer]=8 +; php_admin_value[opcache.max_accelerated_files]=10000 +; php_admin_value[opcache.memory_consumption]=128 +; php_admin_value[opcache.save_comments]=1 +; php_admin_value[opcache.revalidate_freq]=1 +; php_admin_value[memory_limit]=512M +php_admin_value[upload_max_filesize]=10G +php_admin_value[post_max_size]=10G + + diff --git a/icingaweb2-rpmlintrc b/icingaweb2-rpmlintrc new file mode 100644 index 0000000..2deead6 --- /dev/null +++ b/icingaweb2-rpmlintrc @@ -0,0 +1,3 @@ +# wrong fsf-adress +addFilter("files-duplicate"); +addFilter("zero-length"); diff --git a/icingaweb2.changes b/icingaweb2.changes new file mode 100644 index 0000000..1a42f7d --- /dev/null +++ b/icingaweb2.changes @@ -0,0 +1,1198 @@ +------------------------------------------------------------------- +Wed Jul 16 10:13:03 UTC 2025 - ecsos - 2.12.5 + +- Update to 2.12.5 + * PHP 8.4 Support + We're again a little behind schedule, but now we support PHP 8.4! + This means that installations on Ubuntu 25.04 and Fedora 42+ can + now install Icinga Web without worrying about PHP related + incompatibilities. Icinga packages will be available in the + next few days. + * Good Things Take Time + There's only a single (notable) recent issue that is fixed + with this release. All the others are a bit older. + - External URLs set up as dashlets are not embedded the same + as navigation items #5346 + * But the team sat together a few weeks ago and fixed a bug here + and there. And of course, also in Icinga Web! + - Users who are not allowed to change the theme, cannot change + the theme mode either #5385 + - Improved compatibility with several SSO authentication + providers #5000, #5227 + - Filtering for older-than events with relative time does not + work #5263 + - Empty values are NULL in CSV exports #5350 + * Breaking, Somewhat + This is mainly for developers. + With the support of PHP 8.4, we introduced a new environment + variable, ICINGAWEB_ENVIRONMENT. Unless set to dev, Icinga Web + will not show nor log deprecation notices anymore. + +------------------------------------------------------------------- +Wed Mar 26 17:19:21 UTC 2025 - ecsos + +- Update to 2.12.4 + - Database login broken after upgrade #5343 + +------------------------------------------------------------------- +Wed Mar 26 11:21:51 UTC 2025 - ecsos + +- Update to 2.12.3 + - XSS in embedded content CVE-2025-27405 + - DOM-based XSS CVE-2025-27404 + - Open redirect on login page CVE-2025-30164 + - Reflected XSS CVE-2025-27609 + - Login against Postgres DB is case-sensitive #5223 + - Role list has no functioning quick search #5300 + - After clicking on Check now, the page does not refresh itself #5293 + - Service States display wrong since update to 2.12.2 #5290 + +------------------------------------------------------------------- +Sun Jan 26 10:29:40 UTC 2025 - ecsos + +- Set right version for icinga-php-library. + +------------------------------------------------------------------- +Mon Nov 18 15:55:50 UTC 2024 - Dominique Leuenberger + +- Fix usage of %requires_eq: invalid syntax previosly resulted in + ignored lines and now properly returns an error. + +------------------------------------------------------------------- +Wed Nov 13 13:56:39 UTC 2024 - ecsos + +- Update to 2.12.2 + - Sort by name of roles does not work properly #4789 + - Settings menu flyout closes too fast / easy #5196 + - CSP header is missing the script-src policy #5180 + - Broken event overview due to IntlDateFormatter #5172 + - Downtimes, which were started and canceled, are missing in the history #5176 + - Usage of IcingaWeb2 api command returns 404, but is successful #5183 + - Allow fontawesome icons as menu items #5205 + - Error while opening a navigation root item #5177 + - Dashlets twice in dashboard & not deletable #5203 + - PluginOutputRenderer gets called twice #5271 + - Graphs disappear after form controls are used #4996 + - Make subgroups of custom variables fully collapsible #5256 + +------------------------------------------------------------------- +Tue Feb 13 10:53:58 CET 2024 - ro@suse.de + +- Provide group as required by RPM 4.19 + +------------------------------------------------------------------- +Thu Nov 16 17:01:14 UTC 2023 - ecsos + +- Update to 2.12.1 + - Add PHP 8.3 support + - Login Redirect Loop #5133 + - UI database migration not fully compatible with PostgreSQL #5129 + - Missing styles when logging out and in while CSP is enabled #5126 + +------------------------------------------------------------------- +Fri Sep 22 11:11:44 UTC 2023 - ecsos + +- Update to 2.12.0 + - Support for PHP 8.2 #4918 + - Support for Content-Security-Policy #4528 + - Allow to initiate a refresh with __REFRESH__ #5108 + - Don't refresh twice upon __CLOSE__ #5106 + - Add event column-moved #5049 + - Add copy-to-clipboard behavior #5041 + - Access Oracle Database via tnsnames.ora / LDAP Naming Services #5062 + - Reduce risk of crashing the x509 collector daemon #5115 + - CSV export does not escape double quotes #4910 + * Full changelog see: + https://github.com/Icinga/icingaweb2/milestone/79?closed=1 +- Massive changes in spec needed. + +------------------------------------------------------------------- +Tue Jul 4 07:34:26 UTC 2023 - James Pearson + +- DB schema files are in schema not etc/schema in packaged tarball + +------------------------------------------------------------------- +Tue May 9 11:02:10 UTC 2023 - ecsos + +- Add subpackge php-fpm with php-fpm configuration. +- Remove max php version restrictions for suse. +- Fix rights for /etc/icingaweb2/enabledModules directory + as upstream use. + +------------------------------------------------------------------- +Thu Jan 26 17:03:20 UTC 2023 - ecsos + +- Update to 2.11.4 + * Notable Fixes + - Add/Edit dashlet not possible #4970 + - Custom library path + custom library, without slash in its + name, results in exception #4971 + - Reflected XSS vulnerability in User Backends config page #4979 + See: https://github.com/Icinga/icingaweb2/milestone/78?closed=1 +- Add icingaweb2-additions.tar.gz with source from version 2.11.3 + because upstream has removed packages and etc source dir and files. + See: https://github.com/Icinga/icingaweb2/pull/4964 + +------------------------------------------------------------------- +Wed Dec 14 15:20:58 UTC 2022 - ecsos + +- Update to 2.11.3 + This is a security release. + * Minor to Medium Vulnerabilities + - Open Redirects for logged in users #4945 + - SSH Resource Configuration form XSS Bug #4947 + - Dashlets allow the user to run Javascript code #4959 + - Role member suggestion endpoint is reachable for unauthorized + users #4961 + * The More Usual Dose of Fixes + - Browser print dialog result broken #4957 + - Shared navigation items are not accessible #4953 + - While using dropdown filter menu it gets closed automatically + due to autorefresh #4942 + +------------------------------------------------------------------- +Tue Nov 8 10:42:22 UTC 2022 - ecsos + +- Update to 2.11.2 + It brings performance improvements and general fixes. + Most notable of which are that having e.g. notifications disabled + globally is now visible in the menu again and that the event + history is grouped by days again. + See: https://github.com/Icinga/icingaweb2/milestone/76?closed=1 + +------------------------------------------------------------------- +Thu Jul 7 11:53:35 UTC 2022 - ecsos + +- Update to 2.11.1 + This update's main focus is to solve the issue that all history + views didn't work correctly or showed invalid time and dates. (#4853) + +------------------------------------------------------------------- +Fri Jul 1 05:59:19 UTC 2022 - ecsos + +- Update to 2.11.0 + * Enhancements, Some + - Support for PHP 8.1 #4609 + - Redesign User Menu #4651 + - &showFullscreen suppresses announcements #4596 + * Fixes, More + - Navigation item filter * not working #4772 + - Objects with a * in the name are not found #4682 + - Theme mode switch disabled on theme with mode support #4744 + * When developers become cleaning maniacs + - User preferences in INI files not supported anymore #4765 + - mysql: use of utf8 vs utfmb4 #4680 + - Remove Vagrant file and its assets #4762 + +------------------------------------------------------------------- +Thu Jun 30 13:25:43 UTC 2022 - ecsos + +- Update to 2.10.3 + This release mainly ensures compatibility with icinga-php-library + v0.9.0 and Icinga DB Web 1.0.0. Two fixes regarding the theme + mode support are also included (#4744 and #4835) + +------------------------------------------------------------------- +Wed Apr 6 12:00:53 UTC 2022 - ecsos + +- Update to 2.10.1 + - Clicking anywhere on a list item in the dashboard now opens the + primary link again, instead of nothing #4710 + - The Check Now and Remove Acknowledgement quick actions in an + object's detail header are now working again #4711 + - Clicking on the big number in the tactical overview if there + are UNKNOWN services, shows UNKNOWN services now #4714 + - The contrast of text in the sidebar, while in light mode, + has been increased #4720 + - A theme without mode support, which is set globally, + now also prevents users from configuring the mode #4723 +- Drop 6498d8b035cbaa287d67a61b3f09310a191a5e10.patch, + because now in upstream. + +------------------------------------------------------------------- +Wed Mar 30 14:15:33 CEST 2022 - ro@suse.de + +- add 6498d8b035cbaa287d67a61b3f09310a191a5e10.patch + taken from upstream PR 4721 fixing mouseover for list items + to make checks selectable again + +------------------------------------------------------------------- +Thu Mar 24 11:23:27 UTC 2022 - ecsos + +- Update to 2.10.0 + Release information see: https://github.com/Icinga/icingaweb2/releases + Fixed issues see: https://github.com/Icinga/icingaweb2/milestone/63?closed=1 + +------------------------------------------------------------------- +Tue Mar 8 16:45:39 UTC 2022 - ecsos + +- Update to 2.9.6 + * Security Fixes + Please check the advisories on GitHub for more details. + - Path traversal in static library file requests for + unauthenticated users GHSA-5p3f-rh28-8frw + - SSH resources allow arbitrary code execution for + authenticated users GHSA-v9mv-h52f-7g63 + - Unwanted disclosure of hosts and related data, linked to + decommissioned services GHSA-qcmg-vr56-x9wf + +------------------------------------------------------------------- +Mon Nov 22 15:01:46 UTC 2021 - ecsos + +- Update to 2.9.5 + * This is a hotfix release which fixes the following issues: + - Some detail views of Icinga Director and other modules are + broken with Web 2.9.4 #4598 + - Error on skipping LDAP Discovery #4603 + +------------------------------------------------------------------- +Wed Nov 10 13:03:52 UTC 2021 - ecsos + +- Update to 2.9.4 + * Broken Preference Configuration + - Config/Preferences not accessible without config.ini #4504 + - "My Account" broken after Upgrade from 2.8.2 to 2.9.3 #4512 + * Notable Fixes in the UI + - Proposal for new Feature make comments collapsible #4515 + - new line character is being removed in the plugin output #4522 + * Less Notable But No Less Important Fixes + - announcements request clears focus #4543 + - js: Fix regression for loading dependent modules for sub-containers #4533 +- Changes from 2.9.3 + * Staying remembered on RHEL/CentOS 7 now possible + - Stay Logged In - Unknown cipher algorithm #4493 + * Missing icons with SLES/OpenSUSE 15 + - Missing fileinfo php extension on SLES/OpenSUSE 15+ #4503 + * Child downtimes for services are now removed automatically + - If appropriate, set the API parameter all_services for schedule-downtime #4501 +- Changes from 2.9.2 + This is a hotfix release. v2.9.1 included a change that wasn't + compatible with PostgreSQL again. This has been fixed in this + release. (#4490) +- Changes from 2.9.1 + * Pancakes everywhere + - Nested custom variables are flattened #4439 + - Disable login orb animation and all orbs for themes #4468 + - SVG chart library doesn't process input as UTF-8 #4462 + * Staying remembered too difficult + - RememberMe not working with only PostgreSQL #4441 + - RememberMe compatibility with php version 5.6+ #4472 + - RememberMe fails after running the wizard for grants #4434 + * Being picky pays off + - Datetimepicker not usable by keyboard #4442 + - Close the datepicker automatically #4461 + - Paragraphs in Acknowledge/Downtime not possible #4443 +- Changes from 2.9.0 + * Icinga DB + - We continue our endeavour soon. Icinga Web 2 is still a + crucial part of it and this update is again required for + Icinga DB. If you like to participate again, don't forget + to update Icinga Web 2 as well. + * Security Fixes + This release includes two security related fixes. Both were + published as part of a security advisory on Github. They allow + the circumvention of custom variable protection rules and + blacklists as well as a path traversal if the doc module is + enabled. Please check the respective advisory for details. + - Custom variable protection and blacklists can be circumvented GHSA-2xv9-886q-p7xx + - Possible path traversal by use of the doc module GHSA-cmgc-h4cx-3v43 + * RBAC, The Elephant In Icinga Web 2 + - Authorization enhancements #4306 + - Audit View #4336 + - Highlight modules with permissions set inside a role #4241 + * Support for PHP 8 + - Support PHP 8 #4289 + - Raise minimum required PHP version to 7.3 #4397 + * Stay, Be Remembered + - Implement a "remember me" feature #2495 + * It Does Matter, When + - Add datetime picker widget #4354 + - Expire Option for Comments #3447 + - Custom defaults for downtime end, comment and duration #4364 + +------------------------------------------------------------------- +Wed Nov 10 12:58:39 UTC 2021 - ecsos + +- Update to 2.8.5 + No changelog from upstream. + +------------------------------------------------------------------- +Tue Jul 27 17:18:09 UTC 2021 - ecsos + +- Update to 2.8.4 + - This release only contains a single fix for flattened custom + variables. #4439 + +------------------------------------------------------------------- +Mon Jul 12 12:45:35 UTC 2021 - ecsos + +- Update to 2.8.3 + * Security Fixes + This release includes two security related fixes. + Both were published as part of a security advisory on Github. + They allow the circumvention of custom variable protection + rules and blacklists as well as a path traversal if the doc + module is enabled. Please check the respective advisory for + details. + - Custom variable protection and blacklists can be circumvented + GHSA-2xv9-886q-p7xx + - Possible path traversal by use of the doc module + GHSA-cmgc-h4cx-3v43 + +------------------------------------------------------------------- +Fri Nov 27 15:03:40 UTC 2020 - ecsos + +- Expand README.SUSE. + +------------------------------------------------------------------- +Thu Nov 26 09:26:13 UTC 2020 - ecsos + +- Add missing requires php-curl, php-imagick. +- Add a2enmod mod_php and mod_rewrite at post section. + +------------------------------------------------------------------- +Sat Aug 22 15:00:54 UTC 2020 - ecsos + +- Update to 2.8.2 + + Notice: This is a security release. + It is recommended to immediately upgrade to this release. + + You can find all issues related to this release on the respective + milestone. + + * Path Traversal Vulnerability + The vulnerability in question allows an attacker to access + arbitrary files which are readable by the process running + Icinga Web 2. Technical details can be found at the + corresponding CVE-2020-24368 and in the issue below. + + - Possible path traversal when serving static image files #4226 + + * Broken Negated Filters with PostgreSQL + We've also included a small non-security related fix. Searching + for e.g. servicegroup!=support leads to an error instead of the + desired result when using a PostgreSQL database. + + - Single negated membership filter fails with PostgreSQL #4196 + +------------------------------------------------------------------- +Mon Jun 29 12:39:00 UTC 2020 - ecsos + +- Update to 2.8.1 + * Case Sensitivity Problems + A fix in v2.8.0 led to users being not able to login if they + got their username's case wrong. A hostgroup name's case has + also been incorrectly taken into account despite using a CI + labelled column in the servicegrid and other lists. + - Login usernames now case sensitive in 2.8 #4184 + - Case insensitive hostgroup filter in service grid not working + #4178 + * Issues With Numbers + An attempt to avoid misrepresenting environments in the + tactical overview had an opposite effect by showing negative + numbers. Filtering for timestamps in the event history also + showed no results because our filters couldn't cope with plain + numbers anymore. + - Tactical overview showing "-1 pending" hosts #4174 + - Timestamp filters not working correctly in history views + #4182 + +------------------------------------------------------------------- +Mon Jun 8 13:22:08 UTC 2020 - ecsos + +- Update to 2.8.0 + * Icinga DB + It's happening. Yes. Our latest achievement is now available + for those who are willing to participate in this enormous + endeavour. Icinga Web 2 is also a crucial part of it and + accompanies the first release of Icinga DB. If you like to + participate, don't forget to update Icinga Web 2 as well. + * Support for PHP 7.4 and MySQL 8 + We also made sure that you won't be disappointed by Icinga Web 2 + if you're running PHP 7.4 or trying to access a MySQL database + with version 8+. These should pose no issues anymore now. But + if you still somehow managed to get issues please let us now + and we'll fix it asap. + - Exceptions with MySQL 8 #3740 + - Support for PHP 7.4 #4009 + * Find What You Search For + It's been previously not possible to properly filter for range + values. This was especially true for custom variables where, + if you searched for e.g. _host_interfaces>=20, you wouldn't + find the correct results. If you often copy some values in our + search fields you may also been a victim of extraneous spaces + which are now automatically trimmed. + - Filter: more/less than doesn't seem to working #3974 + - Search object followed by a space finds no results #4002 + * Don't Leave Your Little Sheep Unattended + It's time again to further restrict your users. It's now + possible to completely block any access to contacts and + contactgroups for specific roles. These won't ever see again + who's notified and who's not. Also, if you are using single + accounts for a group of people you can now disable password + changes for those. + - Prohibit access to contacts and contactgroups #3973 + - Allow to forbid password changes on specific user accounts #3286 + * In and Out, Access Control Done Right + While we have no burgers but cookies you are nevertheless + welcome to visit Icinga Web 2. And now you can also successfully + leave while being externally authenticated and unsuccessfully + enter while being unable to not add extraneous spaces to your + username. + - External logout not working from the navigation dashboard #3995 + - Username with extraneous spaces are not invalid #4030 + +------------------------------------------------------------------- +Fri May 22 16:58:45 UTC 2020 - Lars Vogdt + +- update to 2.8.0~rc1 + * fixed exceptions with MySQL 8 #3740 + * fixed support for PHP 7.4 #4009 + * Filter: more/less than doesn't seem to working #3974 + * Search object followed by a space finds no results #4002 + * Prohibit access to contacts and contactgroups #3973 + * Allow to forbid password changes on specific user accounts #3286 + * External logout not working from the navigation dashboard #3995 + * Username with extraneous spaces are not invalid #4030 +- use /usr/share/bash-completion/completions/ instead of + /etc/bash_completion.d/ for icingacli + +------------------------------------------------------------------- +Fri Oct 18 09:02:43 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.3 + This is a hotfix release and fixes the following issue: + - Servicegroups for roles with filtered objects not available #3983 + +------------------------------------------------------------------- +Wed Oct 16 08:22:14 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.2 + You can find all issues related to this release on our Roadmap. + * Less Smoky Database Servers + The release of v2.7.1 introduced a change which revealed an + inefficient part of our database queries. We made some general + optimizations on our queries and changed the way we utilize + them in some views. The result are faster response times by + less work for the database server. + - Consuming more CPU resources since upgraded to 2.7.1 #3928 + * Anarchism Infested Dashboards + Recent history already showed signs of anarchism. (Pun intended) + A similar mindset now infested default dashboards which appeared + in a different way than before v2.7.0. We taught their dashlets + a lesson and order has been reestablished as previously. + - Recently Recovered Services in dashboard Current Incidents + seems out of order #3931 + * Solitary Downtimes + We improved the host and service distinction with v2.7.0. The + downtimes list however got confused by this and didn't knew + anymore how to combine multiple downtimes. If you now instruct + the list to select multiple downtimes this works again as we + removed the confusing parts. + - Selection of multiple downtimes fails #3920 + +------------------------------------------------------------------- +Sat Aug 24 16:21:55 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.1 + You can find all issues related to this release on our Roadmap. + * Sneaky Solution for Sneaky Links + Usually we try to include only bugs in minor-releases. Sorry, + bug-fixes, of course. But thanks to @winem_ we have also a + little enhancement this time: Links in comments, notes, etc. + are now highlighted as such. + - Highlight links in the notes of an object #3888 + * Nobody's Perfect, Not Even Developers + We knew it. We saw it coming. And forgot about it. Some views, + especially histories, showed an anarchic behavior since v2.7.0. + The change responsible for this has been undone and history's + order is reestablished now. + - Default sort rules no longer work in 2.7.0 #3891 + * Restrictions Gone Wild Cagey + A fix unfortunately caused restrictions using wildcards to show + no results anymore. This is now solved and such restrictions + are as permissive as ever. + - Wildcard filters in chains broken #3886 + +------------------------------------------------------------------- +Tue Jul 30 22:31:29 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.0 + You can find issues related to this release on our Roadmap. + * Icinga's Amazingness Spreads Further + All the Japanese and Ukrainian monitoring enthusiasts can now + appreciate our web-frontend in their native tongue. Being so + late to the party is also of their advantage, though. Because + they can adjust their dashboard without worrying it gets broke + with the next update. (All other admins with non-english users, + please have a look at our upgrading documentation) + - Add Japanese language support #3776 + - Add Ukrainian language support #3828 + - Don't translate pane and dashlet names in configs #3837 + * Modules - Bonus Functionality Unleashed + With this release module developers got additional ways to + customize Icinga Web 2. Whether you ever wanted to hook into + a configuration form's handling, to perform your very own Ajax + requests or enhance our multi-select views with fancy graphs. + All is possible now. + - Allow to hook into a configuration form's handling #3862 + - Allow to fully customize click and submit handling #3794 + - Integrate DetailviewExtension into multi-select views #3304 + * UI - Your Daily Routine and Incident Management, Enhanced + Users with color deficiencies now have a built-in theme to ease + navigating within Icinga Web 2. Also, our forms got a long + overdue re-design and now look less boring. Though, the best of + all features is that clicking while holding the Ctrl-key now + actually opens a new browser tab! Lost comments? No more. + Defining an expiry date again? No more! + - Add colorblind theme #3743 + - Improve the look of forms #3416 + - Make ctrl-click open new tab #3723 + * Stay Focused - More Room for More Important Stuff + Some of you know that some checks tend to produce walls of text + or measure (too) many interfaces. Now, plugin output and + performance data will collapse if they exceed a certain height. + If necessary they can of course be expanded and keep that way + across browser restarts. The same is also true for the sidebar. + (Though, this one stays collapsed) + - Persistent Collapsible Containers #3638 + - Collapsible plugin output #3870 + - Collapsed sidebar should stay collapsed #3682 + * Markdown - Tables, Lists and Emphasized Text The Easy Way + Since we now have the possibility to collapse large content + dynamically, we allow you to add entire wiki pages to hosts and + services. Though, if you prefer to use a real wiki to maintain + those (what we'd strongly suggest) it's now easier than ever + before to link to it. Copy url, paste url, submit comment,Done. + - Make notes, comments and announcements markdown aware #3814 + - Transform any URL in a Comment to a clickable Link #3441 + - Support relative links in plugin output #2916 + * Things You Have Missed Previously + The tactical overview, our fancy pie charts, is now the very + first result when you search something in the sidebar. + If you'll see two entirely green circles there, relax. + Also overdue or unreachable checks are now appropriately marked + in list views and the service grid now allows you to switch + between everything or problems only. + - Add tactical overview to global search #3845 + - Servicegrid: Add toggle to show problems only #3871 + - Make overdue/unreachable checks better visible #3860 + * Authorization - Knowing and Controlling What's Going On + Roles can now be even more tailored to users since the + introduction of a new placeholder. This placeholder allows to + use a user's name in restrictions. + Things like _service_responsible_person=$user:local_name$ are + now possible. The audit log now receives failed login-attempts, + that's been made possible since hooks can now run for anonymous + users. + - Allow roles to filter for the currently logged in user #3493 + - Add possibility to disable permission checks for hooks #3849 + - Send failed login-attempts to the audit log #3856 + See also the audit module which got an update and is required for + #3856 to work. + +------------------------------------------------------------------- +Thu Apr 25 10:37:29 UTC 2019 - Martin Liška + +- update to 2.6.3 + You can find issues related to this release on our Roadmap. + * PHP 7.3 + - Now supported. tada + * LDAP - Community contributions, that's the spirit + With the help of our users we've finally fixed the issue that + defining multiple hostnames and enabling STARTTLS has never + properly worked. Also, they've identified that defining + multiple hostnames caused a customized port not being utilized + and fixed it themselves. + There has also a rare case been fixed that caused no group + members being found in case object classes had a different + casing than what we expected. (Good news for all the + non-OpenLdap and non-MSActiveDirectory users) + - LDAP connection fails with multiple servers using STARTTLS + #3639 + - LDAPS authentication ignores custom port setting #3713 + - LDAP group members not found #3650 + * We take care about your data even better now + With this are newlines and HTML entities (such as  ) in + plugin output and custom variables meant. + Sorry if I've teased some data security folks now. innocent + - Newlines in plugin output disappear #3662 + - Windows path separators are converted to newlines in custom + variables #3636 + - HTML entities in plugin output are not resolved if no other + HTML is there #3707 + * You've wondered how you got into a famous blue police box? + Don't worry, not only you and the european union are sometimes + unsure what's the correct time. + - Set client timezone on DB connection #3525 + - Ensure a valid default timezone is set in any case #3747 + - Fix that the event detail view is not showing times in + correct timezone #3660 + * UI - The portal to your monitoring environment, improved + The collapsible sidebar introduced with v2.5 has been plagued + by some issues since then. They're now fixed. Also, the UI + should now flicker less and properly preserve the scroll + position when interacting with action links. (This also allows + the business process module to behave more stable when using + drag and drop in large configurations.) + - Collapsible Sidebar Issues #3187 + - Fix title when closing right column #3654 + - Preserve scroll position upon form submits #3661 + * Corrected things we've broke recently + That's due to preemptive changes to protect you from bad + individuals. Unfortunately this meant that some unforeseen + side-effects appeared after the release of v2.6.2. + These are now fixed. + - Multiline values in ini files broken #3705 + - PHP ini parser doesn't strip trailing whitespace #3733 + - Escaped characters in INI values are not unescaped #3648 + - Though, if you've faced issue #3705 you still need to take + manual action (if not already done) as the provided fix does + only prevent further occurrences of the resulting error. The + required changes involve the transformation of all real + newlines in Icinga Web 2's INI files to literal \n or \r\n + sequences. (Files likely having such are the roles.ini and + announcements.ini) + +------------------------------------------------------------------- +Wed Nov 21 12:33:40 UTC 2018 - ecsos@opensuse.org + +- update to 2.6.2 + You can find issues and features related to this release on our Roadmap. + This bugfix release addresses the following topics: + * Database connections to MySQL 8 no longer fail + * LDAP connections now have a timeout configuration which defaults to 5 seconds + * User groups are now correctly loaded for externally authenticated users + * Filters are respected for all links in the host and service group overviews + * Fixed permission problems where host and service actions provided by modules were missing + * Fixed an SQL error in the contact list view when filtering for host groups + * Fixed time zone (DST) detection + * Fixed the contact details view if restrictions are active + * Doc parser and documentation fixes +- Fix security issues: + boo#1119784 (CVE-2018-18246) and + boo#1119785 (CVE-2018-18247) and + boo#1119799 (CVE-2018-18249) and + boo#1119800 (CVE-2018-18250) and + boo#1119801 (CVE-2018-18248) + +------------------------------------------------------------------- +Wed Nov 21 12:17:42 UTC 2018 - ecsos@opensuse.org + +- Use current spec file from upstream. +- Insert missing things from old spec file in new upstream spec file. +- Remove setuid from new upstream spec file for following dirs: + /etc/icingaweb2, + /etc/icingaweb/modules, + /etc/icingaweb2/modules/setup, + /etc/icingaweb2/modules/translation, + /var/log/icingaweb2 + +------------------------------------------------------------------- +Wed Sep 26 10:39:55 UTC 2018 - ecsos@opensuse.org + +- Add README.SUSE. + +------------------------------------------------------------------- +Sat Aug 11 09:16:05 UTC 2018 - ecsos@opensuse.org + +- update to 2.6.1 + - You can find issues and features related to this release on our + [Roadmap](https://github.com/Icinga/icingaweb2/milestone/51?closed=1). + - The command audit now logs a command's payload as JSON which fixes + a [bug](https://github.com/Icinga/icingaweb2/issues/3535) + that has been introduced in version 2.6.0. + +------------------------------------------------------------------- +Sat Jul 28 22:17:03 UTC 2018 - ecsos@opensuse.org + +- updatet to 2.6.0 + You can find issues and features related to this release on our Roadmap. + * Enabling you to do stuff you couldn't before + - Support for PHP 7.2 added + - Support for SQLite resources added + - Login and Command (monitoring) auditing added with the help of a dedicated module + - Pluginoutput rendering is now hookable by modules which allows to render custom icons, emojis and .. cute kitties :octocat: + * Avoiding that you miss something + - It's now possible to toggle between list- and grid-mode for the host- and servicegroup overviews + - The servicegrid now supports to flip its axes which allows it to be put into a landscape mode + - Contacts only associated with services are visible now when restricted based on host filters + - Negated and combined membership filters now work as expected (#2934) + - A more prominent error message in case the monitoring backend goes down + - The filter editor doesn't get cleared anymore upon hitting Enter + * Making your life a bit easier + - The tactical overview is now filterable and can be safely put into the dashboard + - It is now possible to register new announcements over the REST Api + - Filtering for custom variables now works in UTF8 environments + * Ensuring you understand everything + - The monitoring health is now beautiful to look at and properly behaves in narrow environments + - Updated German localization + - Updated Italian localization + * Freeing you from unrealiable things + - Removed support for PHP < 5.6 + - Removed support for persistent database connections +- Drop 0001-Don-t-call-session_start-after-ini_set.patch, + because now in upstrem + +------------------------------------------------------------------- +Mon Jul 16 19:39:30 UTC 2018 - uhaider.msee15seecs@seecs.edu.pk + +- boo#1101357: Fixed missing dependency php-ctype in spec file. + +------------------------------------------------------------------- +Tue May 22 20:47:34 UTC 2018 - dev@stellardeath.org + +- Backport of fix for PHP 7.2 (upstream git commit dadd2c80f) + * 0001-Don-t-call-session_start-after-ini_set.patch + +------------------------------------------------------------------- +Fri Apr 27 15:48:12 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.3 + + Hotfix + * This is a hotfix release and addresses an issue with frequent + delays/timeouts when viewing hosts and services in the front-end. + (https://github.com/Icinga/icingaweb2/milestone/50?closed=1) + +------------------------------------------------------------------- +Fri Apr 27 15:46:52 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.2 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/49?closed=1) + +------------------------------------------------------------------- +Thu Jan 25 16:41:52 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.1 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/47?closed=1) + +------------------------------------------------------------------- +Fri Jan 12 08:13:34 UTC 2018 - ecsos@opensuse.org + +- remove addFilter("permissions-directory-setuid-bit") and + addFilter("non-standard-gid") + +------------------------------------------------------------------- +Thu Jan 11 11:42:39 UTC 2018 - ecsos@opensuse.org + +- insert missing requires(pre): user(wwwrun) for Tumbleweed + +------------------------------------------------------------------- +Mon Jan 8 11:18:07 UTC 2018 - ecsos@opensuse.org + +- fix rpmlint errors, reduce rpmlint warnings + +------------------------------------------------------------------- +Tue Dec 26 13:58:32 UTC 2017 - jengelh@inai.de + +- Remove redundant %clean section. Fix RPM groups. + Update summaries. + +------------------------------------------------------------------- +Mon Dec 11 11:46:24 UTC 2017 - ecsos@opensuse.org + +- drop permissions.d and add BuildRequires nagios-rpm-macros >= 14.0 + to remove setBadness in rpmlintrc + +------------------------------------------------------------------- +Wed Dec 06 14:36:52 UTC 2017 - adamradovits12@hotmail.com + +- removed php5-Zendframework dependency +- added icingaweb2-vendor-zf1 package + +------------------------------------------------------------------- +Wed Dec 06 12:17:52 UTC 2017 - adamradovits12@hotmail.com + +- update to 2.5.0 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/45?closed=1). + +------------------------------------------------------------------- +Wed Oct 18 12:09:52 UTC 2017 - adamradovits12@hotmail.com + +- update to 2.4.2 + + Bugfixes + * Bug 2965: Transport config: Default port not changing upon auto-submit + * Bug 2926: Wrong order when sorting by host_severity + * Bug 2923: Number fields should be valid when empty + * Bug 2919: Fix cached loading of module config + * Bug 2911: Acknowledgements are not working without an expiry time + * Bug 2878: process-check-result Button is visible even when user isn't allowed to use it + * Bug 2850: Link to acknowledgements is wrong in the timeline + * Bug 2841: Wrong menu height when switching back from mobile layout + * Bug 2806: Wrong service state count in hostgroup overview + * Bug 2805: Response from the Icinga 2 API w/ an empty result set leads to exception + * Bug 2801: Wrong help text for the director in the icingacli + * Bug 2784: Module and gravatar images are not served with their proper MIME type + * Bug 2776: Defaults not respected when acknowledging problems + * Bug 2767: Monitoring module: Config field protected vars not updated after zeroing config.ini + * Bug 2728: Gracefully handle invalid Icinga 2 API response types + * Bug 2718: Hide check attempt for hard states in history views + * Bug 2716: Web 2 doesn't detect the browser time zone if the time zone offset is negative + * Bug 2714: icingacli module disable fails on consecutive calls + * Bug 2695: Macros cannot be used for a navigation item's url-port + * Bug 2684: [dev.icinga.com #14027] Translation module should not write absolute path to .po files + * Bug 2683: [dev.icinga.com #14025] Translation module should remove temp files + * Bug 2661: [dev.icinga.com #13651] Don't offer the Icinga 2 API as transport if PHP cURL is missing + * Bug 2660: [dev.icinga.com #13649] Make the Icinga 2 API the default command transport + * Bug 2656: [dev.icinga.com #13627] Wrong count of handled critical service in the hover text + * Bug 2645: [dev.icinga.com #13539] Improve error handling and validation of multiple LDAP URIs + * Bug 2598: [dev.icinga.com #12977] Adding an empty user backend fails + * Bug 2545: [dev.icinga.com #12640] MSSQL ressource not working + * Bug 2523: [dev.icinga.com #12410] Click on Host in Service Grid can cause "Invalid Filter" error + * Bug 2519: [dev.icinga.com #12330] Filter editor may show wrong values after searching + * Bug 2509: [dev.icinga.com #12295] group_name_attribute should be "sAMAccountName" by default + +------------------------------------------------------------------- +Wed Oct 4 10:40:54 UTC 2017 - ecsos@opensuse.org + +- make package compatible to php7 + +------------------------------------------------------------------- +Sun Aug 20 17:57:01 UTC 2017 - ecsos@opensuse.org + +- change spec to use php7 also + +------------------------------------------------------------------- +Sat May 27 08:27:00 UTC 2017 - ecsos@opensuse.org + +- fix build error for Tumbleweed + +------------------------------------------------------------------- +Wed Feb 22 12:03:46 UTC 2017 - ecsos@opensuse.org + +- rename package icingacli to icingaweb-icingacli + and make icingacli as Recommends + +------------------------------------------------------------------- +Tue Jan 24 17:19:52 UTC 2017 - ecsos@opensuse.org + +- update to 2.4.1 + + Bugfixes + * Bug 2651: [dev.icinga.com #13607] Displayed times messed up in Icinga Web 2.4.0 w/ PostgreSQL + * Bug 2654: [dev.icinga.com #13615] Setup wizard: Not possible to setup Icinga Web 2 with an external database + * Bug 2663: [dev.icinga.com #13691] Hook::all() is broken on CLI + * Bug 2669: [dev.icinga.com #13735] Setup wizard: Progress bar isn't shown correctly, if setup is at finish step + * Bug 2681: [dev.icinga.com #13957] Support failover API command transport configuration + * Bug 2686: Granular module permissions do not work for hooks + * Bug 2687: Update URLs to icinga.com, remove wiki & update to GitHub + +------------------------------------------------------------------- +Wed Dec 14 22:40:51 UTC 2016 - ecsos@opensuse.org + +- update to 2.4.0-2 + + Bugfixes + * RPM: Fix specfile + * RPM: Update revision + * CSS: Reset line-height in the button mixin + +- update to 2.4.0 + + Feature + * Feature 12598 (Authentication & Authorization): Support nested AD groups for Roles and not just login + * Feature 11809 (Authentication & Authorization): Test and document multiple LDAP-URIs separated by space in LDAP ressources + * Feature 10616 (Authentication & Authorization): Users w/o administrative permissions should be allowed to change their password + * Feature 13381 (CLI): Allow to configure the default listen address for the CLI command web serve + * Feature 11820 (Configuration): Check whether chosen locale is available + * Feature 11214 (Configuration): Logger: Allow to configure the Syslog Facility + * Feature 13117 (Framework): Add charset UTF-8 to default content type + * Feature 12634 (Framework): Possibitlity to fold and unfold filter by click + * Feature 11198 (Framework): Announce banner + * Feature 11115 (Framework): Add SSL support to MySQL database resources + * Feature 8270 (Installation): Add SELinux policy for Icinga Web 2 + * Feature 13187 (Monitoring): Command toolbar in the host and service detail views + * Feature 12873 (Monitoring): Change default for sticky option of acknowledgements from true to false + * Feature 12820 (Monitoring): Export detail views to JSON + * Feature 12766 (Monitoring): Show flapping events in the host and service history views + * Feature 12764 (Monitoring): Display downtime end even if it hasn't been started yet + * Feature 12125 (Monitoring): Allow th in plugin output + * Feature 11952 (Monitoring): Allow changing default of 'sticky' in acknowledgement and other command options + * Feature 11398 (Monitoring): Send commands over Icinga 2's API + * Feature 11835 (UI): Add clear button to search field + * Feature 11792 (UI): Show hint if notifications are disabled globally + * Feature 11664 (UI): Show git HEAD for modules if available + * Feature 13461 (Vendor Libraries): Use Icinga's fork of Zend Framework 1 icingaweb2-vendor-zf1 + + Bugfixes + * Bug 12396 (Authentication & Authorization): Hooks don't respect module permissions + * Bug 12164 (Authentication & Authorization): REDIRECT_REMOTE_USER not evaluated during external auth + * Bug 12108 (Authentication & Authorization): assertPermission allows everything for unauthenticated requests + * Bug 13357 (Configuration): Persistent database resources cannot be made non-persistent + * Bug 12848 (Configuration): Empty "Protected Custom Variables" falls back to defaults + * Bug 12655 (Configuration): Permission application/log is not configurable + * Bug 12170 (Configuration): Adding a DB resource via webinterface requires one to enter a password + * Bug 10401 (Configuration): LdapUserGroupBackendForm: user_* settings not purged + * Bug 9804 (Configuration): Renaming the resource used for the config backend does not update the global configuration + * Bug 11920 (Dashboard): Add to dashboard: wrong url makes whole dashboard unusable + * Bug 13387 (Documentation): Can't display documentation of disabled modules + * Bug 12923 (Framework): Navigation Item name must be of type string or NavigationItem + * Bug 12852 (Framework): Hosts without any services are hidden from roles with monitoring/filter/objects set + * Bug 12760 (Framework): Do not log exceptions other than those resulting in a HTTP 500 status-code + * Bug 12583 (Framework): Unhandled exceptions while handling REST requests will silently drop the http response code + * Bug 12580 (Framework): REST requests cannot be anonymous + * Bug 12557 (Framework): Module description cannot be on a single line + * Bug 12299 (Framework): FilterExpression renders a&!b as a=1&b!=1 + * Bug 12161 (Framework): Icinga Web 2 doesn't set Content-Type + * Bug 12065 (Framework): IniRepository: update/delete not possible with iterator + * Bug 11743 (Framework): INI writer must not persist section keys with a null value + * Bug 11185 (Framework): SummaryNavigationItemRenderer should show worst state + * Bug 10361 (Framework): Handle E_RECOVERABLE_ERROR + * Bug 13459 (Installation): Setup: Can't view monitoring config summary with Icinga 2 API as command transport + * Bug 13467 (JavaScript): renderLayout has side-effects + * Bug 13115 (JavaScript): actiontable should not clear active row in case there is no newer one + * Bug 12541 (JavaScript): Menu not reloaded in case no search is available + * Bug 12328 (JavaScript): Separate vendor JavaScript libraries w/ semicolons and newlines on import + * Bug 10704 (JavaScript): JS: Always use the jQuery find method w/ node context when selecting elements + * Bug 10703 (JavaScript): JS: Don't use var self = this, but var _this = this + * Bug 11431 (Modules): Modules can't require permission on menu items + * Bug 10870 (Modules): Refuse erroneous module folder names when enabling the module + * Bug 13243 (Monitoring): Inconsistent host and service flags + * Bug 12889 (Monitoring): Timeline broken + * Bug 12810 (Monitoring): Scheduling a downtime for all services of a host does not work w/ the Icinga 2 API as command transport + * Bug 12313 (Monitoring): Multi-line strings within host.notes are being displayed as single line + * Bug 12223 (Monitoring): State not highlighted in plugin output if it contains HTML + * Bug 12019 (Monitoring): Contact view shows service filters with 'Downtime' even if not set + * Bug 11915 (Monitoring): Performance data: negative values not handled + * Bug 11859 (Monitoring): Can't separate between SOFT and HARD states in the history views + * Bug 11766 (Monitoring): Performance data: Fit label column to show as much text as possible + * Bug 11744 (Monitoring): Empty user groups are not displayed + * Bug 10774 (Monitoring): Scheduling downtimes for child hosts doesn't work w/ Icinga 2.x (waiting for Icinga 2) + * Bug 10537 (Monitoring): Filtering with not-equal on custom variable doesn't show hosts without this cv + * Bug 7755 (Monitoring): Remove autosubmit in eventgrid + * Bug 12133 (Navigation): Username and password not being passed in navigation item URLs + * Bug 12776 (Print & Export): dompdf fails when border-style is set to auto + * Bug 12723 (Print & Export): Allowed memory size exhausted when exporting the history view to CSV + * Bug 12660 (QA): Choosing the Icinga theme floods the log with error messages + * Bug 12774 (UI): Lot's of in Output + * Bug 12134 (UI): Copy and paste: Plugin output contains unicode zero-width space characters + * Bug 10691 (UI): Closing the detail area does not update the rows selected counter + * Bug 13095 (Vagrant VM): TicketSalt constant missing + * Bug 12717 (Vagrant VM): PluginContribDir constant removed during vagrant provisioning + +------------------------------------------------------------------- +Fri Jul 15 21:04:17 UTC 2016 - ecsos@opensuse.org + +- add minimum version 1.12.18 to ZendFramwork, + because of Bug #655: ZF2015-08 breaks binary data + https://github.com/zendframework/zf1/issues/655 + +------------------------------------------------------------------- +Sat Jun 25 14:02:17 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.4 + + Bugfixes + * Bug 11267: Links in plugin output don't behave as expected + * Bug 11348: Host aliases are not shown in detail area + * Bug 11728: First non whitespace character after comma stripped from plugin output + * Bug 11729: Sort by severity depends on state type + * Bug 11737: Zero width space characters destroy state highlighting in plugin output + * Bug 11796: Zero width space characters may destroy links in plugin output + * Bug 11831: module.info parsing fails in case it contains newlines that are not part of the module's description + * Bug 11850: "Add to menu" tab unnecessarily appears in command forms + * Bug 11871: Colors used in the timeline are not accessible + * Bug 11883: Delete action on comments and downtimes in list views not accessible because they lack context + * Bug 11885: Database: Asterisk filters ignored when combined w/ other filters + * Bug 11910: Web 2 lacks mobile meta tags + * Fix remote code execution via remote command transport + +------------------------------------------------------------------- +Mon May 30 14:03:12 UTC 2016 - mopp@gmx.net + +- Changed spec file to work with SLES 11 + +------------------------------------------------------------------- +Tue May 10 21:05:09 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.2 + + Feature + * Feature 11629: Simplified event-history date and time representation + + Bugfixes + * Fix a privilege escalation issue in the monitoring module for authenticated users + * Bug 10486: Menu rendering fails when no monitoring backend was configured + * Bug 10847: Warn about illogical dates + * Bug 10848: Can't change items per page if filter is in modify state + * Bug 11392: Can't configure monitoring backend via the web interface when no monitoring backend was configured + +------------------------------------------------------------------- +Mon Apr 18 09:50:12 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.1 + + Bugfixes + * Bug 11598: Invalid SQL queries for PostgreSQL + +- changes from 2.3.0 + + Features + * Feature 10887: lib: Provide User::getRoles() + * Feature 10965: Roles: Restrict visibility of custom variables + * Feature 11404: Add is_reachable filter column to host and service data views + * Feature 11485: lib/LDAP: Support scopes base and one + * Feature 11495: Support data URIs in href + * Feature 11529: Don't offer command disable notifications /w expire time if backend is Icinga 2 + + Bugfixes + * Bug 9386: Improve order of documentation chapters + * Bug 10820: Style problems with long plugin output lines + * Bug 11078: Can't remove default dashboards + * Bug 11099: Mobile menu icon is mispositioned + * Bug 11128: Menu stops refreshing when there is text in the search field + * Bug 11145: Pagination compontents should not float around + * Bug 11171: Icinga Web 2 tries to load an ifont which results in 404 + * Bug 11245: icingacli monitoring list --problems throws an exception + * Bug 11264: Cannot execute queries while other unbuffered queries are active + * Bug 11277: external auth with PHP internal webserver still buggy + * Bug 11279: Restrict access to Applicationlog + * Bug 11299: Icon images no longer prepend img/icons + * Bug 11391: External auth reads REMOTE_USER from process environment instead of request + * Bug 11414: Doc module does not render images with relative path + * Bug 11465: Stylesheet remains unchanged when module CSS/LESS files have been changed + * Bug 11489: lib/LDAP: ordering does explicitly set fields + * Bug 11490: lib/LDAP: LdapUtils::explodeDN replace deprecated use of eval in preg_replace + * Bug 11516: Accessibility: Focus in Tactical Overview barely visible + * Bug 11558: Missing ) in the documentation + * Bug 11568: Docs: Global permissions table is broken + +------------------------------------------------------------------- +Tue Apr 5 15:01:39 UTC 2016 - ecsos@opensuse.org + +- update to 2.2.0 + + Features + * Feature 8487: Number headings in the documentation module + * Feature 8963: Feature commands in the multi select views + * Feature 10654: Render links in acknowledgements, comments and downtimes + * Feature 11062: Allow style classes in plugin output + * Feature 11238: Puppet/Vagrant: Install mod_ssl and forward port 443 + + Bugfixes + * Bug 7350: Tabs are missing if JS is disabled + * Bug 9800: Debian packaging: Ship translation module w/ the icingaweb2 package and install its config.ini + * Bug 10173: Failed commands give no useful error any more + * Bug 10251: Icinga Web 2 fails to run with PHP7 + * Bug 10277: Special characters are incorrectly escaped for tooltips in the service grid + * Bug 10289: Doc module: Headers are cut off when clicking on TOC links + * Bug 10309: Move auth backend configuration to app config + * Bug 10310: Monitoring details: information/action ordering + * Bug 10362: Debian packaging: Separate package for CLI missing + * Bug 10366: Text plugin output treated as HTML in too many occasions + * Bug 10369: Accessibility: Focus not visible and lost after refresh + * Bug 10397: Users with no permissions can check multiple services + * Bug 10442: Edit user control should be more prominent + * Bug 10469: "Remove Acknowledgement" text missing in multi-select views + * Bug 10506: HTTP basic auth request is sent when using Kerberos authentication with Apache2 and mod_php + * Bug 10625: Return local date and time when lost connection to the web server + * Bug 10640: Respect protected_variables in nested custom variables too + * Bug 10778: Filters in the host group and service group overview not applied to state links + * Bug 10786: Whitespace characters are ignored in the plugin output in list views + * Bug 10805: Setup Wizard: Obsolete PHP sockets requirement + * Bug 10856: Benchmark is not rendered on many pages + * Bug 10871: Get rid of padding in controls + * Bug 10878: Dashboards different depending on username casing + * Bug 10881: Move iframe from modules to framework + * Bug 10917: Event grid tiles: The filter column "from" is not allowed here + * Bug 10918: Error on logout when using external authentication + * Bug 10921: icingacli monitoring list --format=csv throws error + * Bug 11000: Change license header to only reflect a file's year of creation/initial commit + * Bug 11008: Wobbling spinners + * Bug 11021: Global default theme is not applied while not authenticated + * Bug 11032: Fix icon_image size and provide a CSS class for theming + * Bug 11039: Misleading tooltip in Tactical Overview + * Bug 11051: Preferences and navigation items stored in INI files rely on case sensitive usernames + * Bug 11073: Active row is flickering on refresh + * Bug 11091: Custom navigation items: URL is not escaped/encoded + * Bug 11100: Comments are always persistent + * Bug 11114: Validate that a proper root DN is set for LDAP resources + * Bug 11117: Vendor: Update dompdf to version 0.6.2 + * Bug 11119: icingacli shows ugly exception when unable to access the config directory + * Bug 11120: icingacli: command and action shortcuts have been broken + * Bug 11126: Invalid cookie value in cookie icingaweb2-tzo + * Bug 11142: LDAP User Groups backend group_filter + * Bug 11143: Layout: Tabs should be left-aligned + * Bug 11151: Having basic authentication on the webserver but not in Icinga Web 2 causes Web 2 to require basic auth + * Bug 11168: Debian packaging: Don't patch HTMLPurifier loading and install HTMLPurifier*.php files from the library/vendor root + * Bug 11187: Session cookie: Path too broad and unset secure flag on HTTPS + * Bug 11197: Menu items without url should ignore the target configuration + * Bug 11260: Scheduling downtimes through the API not working + +- changes from 2.1.1 + + Features + * Feature 10488: Use _ENV variables with built-in PHP webserver + * Feature 10705: Theming + * Feature 10898: Winter theme + + Bugfixes + * Bug 9685: Deprecate Module::registerHook() in favor of Hook::provideHook() + * Bug 9957: Sort hosts and services by last state change + * Bug 10123: CSS loading may fail w/ mkdir(): File exists in FileCache.php + * Bug 10126: setup config directory --config should use mkdir -p instead of mkdir() + * Bug 10166: library/vendor/HTMLPurifier tree is incorrectly unpacked + * Bug 10170: Link to service downtimes from multiple selected services includes host downtimes aswell + * Bug 10338: Debian: Failed to open stream HTMLPurifier/HTMLPurifier.php + * Bug 10603: Line breaks are not respected in acknowledgements, comments and downtimes + * Bug 10658: SUSE packages have the wrong dependencies + * Bug 10659: LDAP group members are shown with their DN and membership registration does not work + * Bug 10670: State not highlighted in plugin output + * Bug 10671: Auto-focus the username field on the login page + * Bug 10683: lib/CLI command web serve: rename variable basedir to something meaningful + * Bug 10702: Host- and Service-Actions configured in Web 2 do not resolve any macros + * Bug 10749: XHR application-state requests pollute the URL if not authenticated + * Bug 10771: Login shows "Anmelden........" upon login with the german locale + * Bug 10781: LoggingConfigForm.php complains about whitespace but checks with /^[^\W]+$/ + * Bug 10790: "Problems - Service Grid" does not work with host names that contain only digits + * Bug 10884: Tabs MUST throw an exception when activating an inexistant tab + * Bug 10886: "impacted" container is no longer fading out + * Bug 10892: Wrong mask for FileCache's temp directory + +- changes from 2.1.0 + + Features + * Feature 10613: Extend and simplify Hook api + + Bugfixes + * Bug 8713: Invalid filter "host_name=*(test)*", unexpected ) at pos 17 + * Bug 8999: Navigation and search bar is not available using a small width + * Bug 10229: Dashboard requests do not refresh the session + * Bug 10268: Unhandled services in the hosts overview list don't stand out + * Bug 10287: Redirect after login no longer working + * Bug 10288: The order for the limit links is incorrect + * Bug 10292: Hovered links in hover menu are unreadable + * Bug 10293: Hover menu is missing it's arrow for menu entries providing badges + * Bug 10295: Reset static line-height on body + * Bug 10296: Scrolling to the bottom of the page does not load more events + * Bug 10299: Badges are overridden by menu text + * Bug 10301: Format helpers like timeSince are polluted with text-small + * Bug 10303: Zooming in, or having another layout destroys the hover menu + * Bug 10304: Cannot access a host's customvars for service actions + * Bug 10305: Hover menu arrow color no longer fits background color + * Bug 10316: Not all Servicegroups / Hostgroups are shown + * Bug 10317: Event history style broken + * Bug 10319: Recursive sharing navigation items doesn't work. + * Bug 10321: Module iframe doesn't show website with parameters as a single column + * Bug 10328: ZendFramework packages missing for SLES12 + * Bug 10359: Charset option not passed thru PDO adapter + * Bug 10364: PostgreSQL queries apply LOWER() on selected columns + * Bug 10367: Broken user- and group-management + * Bug 10389: Host overview: vsprintf(): Too few arguments + * Bug 10402: LdapUserGroupBackend: user_base_dn not used from UserBackend + * Bug 10419: Swapped icon image order in service header + * Bug 10490: Unhandled service counter in the hosts overview shows incorrect values + * Bug 10533: Form notifications of type information are green + * Bug 10567: Member user name used for basedn when querying usergroup members + * Bug 10597: Empty PDO charset option is invalid + * Bug 10614: Class loader: hardcode module and Zend prefixes + * Bug 10623: Acknowledging multiple selected objects erroneous + +- add set_permission and verify_permissions in spec +- add permissions to /etc/permissions.d +- fix some rpmlint-warnings +- add rpmlintrc +- remove if statements for deprecated suseversion +- comment out requires for not existing packages zend-db-adapter-pdo-mysql, + zend-db-adapter-pdo-pgsql + +------------------------------------------------------------------- +Sat Oct 31 21:59:11 UTC 2015 - lars@linux-schulserver.de + +- enable env, php5 and rewrite in apache on new installations + +------------------------------------------------------------------- +Thu Oct 15 22:01:02 UTC 2015 - lars@linux-schulserver.de + +- initial version 2.0.0, based on upstream spec file diff --git a/icingaweb2.spec b/icingaweb2.spec new file mode 100644 index 0000000..29ba679 --- /dev/null +++ b/icingaweb2.spec @@ -0,0 +1,204 @@ +# +# spec file for package icingaweb2 +# +# Copyright (c) 2025 SUSE LLC +# +# All modifications and additions to the file contributed by third parties +# remain the property of their copyright owners, unless otherwise agreed +# upon. The license for this file, and modifications and additions to the +# file, is the same license as for the pristine package itself (unless the +# license for the pristine package is not an Open Source License, in which +# case the license is the MIT License). An "Open Source License" is a +# license that conforms to the Open Source Definition (Version 1.9) +# published by the Open Source Initiative. + +# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# + + +%define php_major_version 8 +Name: icingaweb2 +Version: 2.12.5 +Release: 0 +Summary: Icinga Web +License: GPL-2.0-or-later +Group: System/Monitoring +URL: https://icinga.com +Source0: https://github.com/Icinga/icingaweb2/archive/v%{version}/%{name}-%{version}.tar.gz +Source1: icingaweb2-additions.tar.gz +Source10: %{name}-php-fpm.conf +Source90: README.SUSE +Source99: %{name}-rpmlintrc +BuildRequires: apache2 +BuildRequires: nagios-rpm-macros +Requires: apache2 +Requires: icinga-l10n >= 1.1.0 +Requires: icingacli = %{version} +Requires: icingaweb2-common = %{version} +Requires: php-icinga = %{version} +Requires: (mod_php_any or php-fpm) +Provides: group(%icinga_command_group) +Recommends: icingaweb2-module-pdfexport >= 0.10 +BuildArch: noarch + +%description +Lightweight and extensible web interface to tackle your monitoring challenge. + +%package common +Summary: Common files for Icinga Web and the Icinga CLI +PreReq: permissions +Requires(pre): shadow +Provides: group(%icinga_webgroup) + +%description common +Manages common files for Icinga Web and the Icinga CLI. + +%package -n icingacli +Summary: Icinga CLI +Requires: bash-completion +Requires: icinga-l10n >= 1.1.0 +Requires: icingaweb2-common = %{version} +Requires: php-cli +Requires: php-icinga = %{version} + +%description -n icingacli +Icinga command line interface. + +%package php-fpm +Summary: PHP FPM configuration for %{name} +Group: Productivity/Networking/Web/Utilities +BuildRequires: php%{php_major_version}-fpm +Requires: %{name} = %{version} +%requires_eq php%{php_major_version}-fpm + +%description php-fpm +This package contains the PHP FPM configuration file to run %{name} with php-fpm. + +%package -n php-icinga +Summary: Icinga Web PHP library +Group: Development/Libraries/Other +Requires: icinga-php-library >= 0.13.2 +Requires: icinga-php-thirdparty >= 0.12.0 +Requires: php-curl +Requires: php-dom +Requires: php-fileinfo +Requires: php-gd +Requires: php-gettext +Requires: php-intl +Requires: php-json +Requires: php-ldap +Requires: php-mbstring +Requires: php-openssl +Requires: php-pdo +Requires: php-pdo_mysql +Requires: php-pdo_pgsql +Requires: php-posix +Requires: php-xml +Obsoletes: php-Icinga < %{version} +Provides: php-Icinga = %{version} +Obsoletes: icingaweb2-vendor-HTMLPurifier < %{version} +Provides: icingaweb2-vendor-HTMLPurifier = %{version} +Obsoletes: icingaweb2-vendor-JShrink < %{version} +Provides: icingaweb2-vendor-JShrink = %{version} +Obsoletes: icingaweb2-vendor-Parsedown < %{version} +Provides: icingaweb2-vendor-Parsedown = %{version} +Obsoletes: icingaweb2-vendor-dompdf < %{version} +Provides: icingaweb2-vendor-dompdf = %{version} +Obsoletes: icingaweb2-vendor-lessphp < %{version} +Provides: icingaweb2-vendor-lessphp = %{version} +Obsoletes: icingaweb2-vendor-zf1 < %{version} +Provides: icingaweb2-vendor-zf1 = %{version} + +%description -n php-icinga +Icinga Web PHP and vendor libraries. + +%prep +%autosetup -a1 + +%build + +%install +install -d %{buildroot}%{_datadir}/%{name} +cp -pr application doc library modules public schema %{buildroot}%{_datadir}/%{name} +install -dm 0770 %{buildroot}%{_sysconfdir}/%{name} +install -dm 2770 %{buildroot}%{_sysconfdir}/%{name}/enabledModules +install -dm 0770 %{buildroot}%{_sysconfdir}/%{name}/modules +install -Dpm 0644 etc/bash_completion.d/icingacli %{buildroot}%{_datadir}/bash-completion/completions/icingacli +cp -p additions/index.php %{buildroot}%{_datadir}/%{name}/public +install -d %{buildroot}%{_datadir}/php +mv %{buildroot}%{_datadir}/%{name}/library/Icinga %{buildroot}%{_datadir}/php +install -dm 770 %{buildroot}%{_localstatedir}/cache/%{name} %{buildroot}%{_localstatedir}/lib/%{name} +install -dm 775 %{buildroot}%{_localstatedir}/log/%{name} +install -Dpm 0644 additions/icingaweb2.conf %{buildroot}%{_sysconfdir}/apache2/conf.d/icingaweb2.conf +install -Dpm 0755 additions/icingacli %{buildroot}%{_bindir}/icingacli +# fpm +mkdir -p %{buildroot}%{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d +cp -avL %{SOURCE10} %{buildroot}%{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d/%{name}.conf + +%pre +getent group %icinga_command_group >/dev/null || groupadd -r %icinga_command_group +usermod -a -G %icinga_command_group,%icinga_webgroup %icinga_command_user + +%pre common +getent group %icinga_webgroup >/dev/null || groupadd -r %icinga_webgroup + +%verifyscript common +# TODO: Maybe the others are needed after all? +#%%verify_permissions -e %%{_sysconfdir}/%%{name} +%verify_permissions -e %{_sysconfdir}/%{name}/enabledModules +%verify_permissions -e %{_sysconfdir}/%{name}/modules +#%%verify_permissions -e %%{_localstatedir}/cache/%%{name} +#%%verify_permissions -e %%{_localstatedir}/lib/%%{name} +#%%verify_permissions -e %%{_localstatedir}/log/%%{name} + +%post common +# TODO: Maybe the others are needed after all? +#%%set_permissions %%{_sysconfdir}/%%{name} +%set_permissions %{_sysconfdir}/%{name}/enabledModules +%set_permissions %{_sysconfdir}/%{name}/modules +#%%set_permissions %%{_localstatedir}/cache/%%{name} +#%%set_permissions %%{_localstatedir}/lib/%%{name} +#%%set_permissions %%{_localstatedir}/log/%%{name} + +%files +%doc CHANGELOG.md +%doc README.md +%docdir %{_datadir}/%{name}/doc +%license LICENSE +%dir %{_datadir}/%{name} +%dir %{_datadir}/%{name}/application +%{_datadir}/%{name}/application/controllers +%{_datadir}/%{name}/application/fonts +%{_datadir}/%{name}/application/forms +%{_datadir}/%{name}/application/layouts +%{_datadir}/%{name}/application/views +%{_datadir}/%{name}/application/VERSION +%{_datadir}/%{name}/doc +%{_datadir}/%{name}/modules +%{_datadir}/%{name}/public +%{_datadir}/%{name}/schema +%config(noreplace) %{_sysconfdir}/apache2/conf.d/icingaweb2.conf + +%files common +%attr(0770, root, %icinga_webgroup) %dir %{_localstatedir}/cache/%{name} +%attr(0775, root, %icinga_webgroup) %dir %{_localstatedir}/log/%{name} +%attr(0770, root, %icinga_webgroup) %dir %{_localstatedir}/lib/%{name} +%attr(0770, root, %icinga_webgroup) %config(noreplace) %dir %{_sysconfdir}/%{name} +%attr(0770, root, %icinga_webgroup) %config(noreplace) %dir %{_sysconfdir}/%{name}/modules +%verify(not mode caps) %attr(2770,root,%icinga_webgroup) %{_sysconfdir}/%{name}/enabledModules +%attr(2770, root, %icinga_webgroup) %dir %{_sysconfdir}/%{name}/enabledModules + +%files -n icingacli +%license LICENSE +%{_datadir}/%{name}/application/clicommands +%{_datadir}/bash-completion/completions/icingacli +%{_bindir}/icingacli + +%files php-fpm +%config(noreplace) %{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d/%{name}.conf + +%files -n php-icinga +%license LICENSE +%{_datadir}/php/Icinga + +%changelog -- 2.51.1 From 1eae3af8b762432ac1d1d0f6d5289322fc0509d5a47d31a56b52b4865ced411c Mon Sep 17 00:00:00 2001 From: Eric Schirra Date: Fri, 21 Nov 2025 10:14:54 +0000 Subject: [PATCH 2/2] - Update to 2.12.6 - Search box shows many magnifying glasses for some community themes #5395 - Authentication hooks are not called with external backends #5415 - Improve Minimal layout #5386 OBS-URL: https://build.opensuse.org/package/show/server:monitoring/icingaweb2?expand=0&rev=118 --- .gitattributes | 23 + .gitignore | 1 + README.SUSE | 12 + icingaweb2-2.12.5.tar.gz | 3 + icingaweb2-2.12.6.tar.gz | 3 + icingaweb2-additions.tar.gz | 3 + icingaweb2-php-fpm.conf | 40 ++ icingaweb2-rpmlintrc | 3 + icingaweb2.changes | 1206 +++++++++++++++++++++++++++++++++++ icingaweb2.spec | 204 ++++++ 10 files changed, 1498 insertions(+) create mode 100644 .gitattributes create mode 100644 .gitignore create mode 100644 README.SUSE create mode 100644 icingaweb2-2.12.5.tar.gz create mode 100644 icingaweb2-2.12.6.tar.gz create mode 100644 icingaweb2-additions.tar.gz create mode 100644 icingaweb2-php-fpm.conf create mode 100644 icingaweb2-rpmlintrc create mode 100644 icingaweb2.changes create mode 100644 icingaweb2.spec diff --git a/.gitattributes b/.gitattributes new file mode 100644 index 0000000..9b03811 --- /dev/null +++ b/.gitattributes @@ -0,0 +1,23 @@ +## Default LFS +*.7z filter=lfs diff=lfs merge=lfs -text +*.bsp filter=lfs diff=lfs merge=lfs -text +*.bz2 filter=lfs diff=lfs merge=lfs -text +*.gem filter=lfs diff=lfs merge=lfs -text +*.gz filter=lfs diff=lfs merge=lfs -text +*.jar filter=lfs diff=lfs merge=lfs -text +*.lz filter=lfs diff=lfs merge=lfs -text +*.lzma filter=lfs diff=lfs merge=lfs -text +*.obscpio filter=lfs diff=lfs merge=lfs -text +*.oxt filter=lfs diff=lfs merge=lfs -text +*.pdf filter=lfs diff=lfs merge=lfs -text +*.png filter=lfs diff=lfs merge=lfs -text +*.rpm filter=lfs diff=lfs merge=lfs -text +*.tbz filter=lfs diff=lfs merge=lfs -text +*.tbz2 filter=lfs diff=lfs merge=lfs -text +*.tgz filter=lfs diff=lfs merge=lfs -text +*.ttf filter=lfs diff=lfs merge=lfs -text +*.txz filter=lfs diff=lfs merge=lfs -text +*.whl filter=lfs diff=lfs merge=lfs -text +*.xz filter=lfs diff=lfs merge=lfs -text +*.zip filter=lfs diff=lfs merge=lfs -text +*.zst filter=lfs diff=lfs merge=lfs -text diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..57affb6 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +.osc diff --git a/README.SUSE b/README.SUSE new file mode 100644 index 0000000..79df6e9 --- /dev/null +++ b/README.SUSE @@ -0,0 +1,12 @@ + +Information: + +To use module setup you must enable feature ido-mysql or ido-pgsql. + + icinga2 feature enable ido-mysql + or + icinga2 feature enable ido-pgsql + +And you must change settings in in ido-mysql.conf or ido-pgsql.conf under /etc/icinga2/features-enabled. + +After that youd must restart icinga2. diff --git a/icingaweb2-2.12.5.tar.gz b/icingaweb2-2.12.5.tar.gz new file mode 100644 index 0000000..4421718 --- /dev/null +++ b/icingaweb2-2.12.5.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:8756caba3287aaaa9b0bf398de7f581a7c0d25587c65b6e2804cf22819d54171 +size 6365042 diff --git a/icingaweb2-2.12.6.tar.gz b/icingaweb2-2.12.6.tar.gz new file mode 100644 index 0000000..8e5e8b6 --- /dev/null +++ b/icingaweb2-2.12.6.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:0297c1f28c2e00db74b9778030fe346f5b34a148745d0a9926d6eeef8665d873 +size 6365228 diff --git a/icingaweb2-additions.tar.gz b/icingaweb2-additions.tar.gz new file mode 100644 index 0000000..5e31370 --- /dev/null +++ b/icingaweb2-additions.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:9459552305942c858c173603b0d438074c428ee13afa4715a7ce5d6e7d202007 +size 1509 diff --git a/icingaweb2-php-fpm.conf b/icingaweb2-php-fpm.conf new file mode 100644 index 0000000..3b1e827 --- /dev/null +++ b/icingaweb2-php-fpm.conf @@ -0,0 +1,40 @@ +[icingaweb2] +user = icinga +group = icingaweb2 +apparmor_hat = icingaweb2 + +listen = /run/php-fpm/fpm-icingaweb2.socket + +listen.owner = wwwrun +listen.group = www +listen.mode = 0660 + +pm = dynamic + +pm.max_children = 5 + +pm.start_servers = 1 + +pm.min_spare_servers = 1 + +pm.max_spare_servers = 3 + +chdir = /srv/www/vhosts/icingaweb2 + +env[PATH]=/usr/bin:/bin + +php_admin_value[open_basedir] = /usr/share/icingaweb2:/etc/icingaweb2:/var/log/icingaweb2/ +php_admin_value[upload_tmp_dir] = /srv/www/vhosts/icingaweb2/tmp +php_admin_value[session.save_path] = /srv/www/vhosts/icingaweb2/sessions +; php_admin_value[opcache.enable]=1 +; php_admin_value[opcache.enable_cli]=1 +; php_admin_value[opcache.interned_strings_buffer]=8 +; php_admin_value[opcache.max_accelerated_files]=10000 +; php_admin_value[opcache.memory_consumption]=128 +; php_admin_value[opcache.save_comments]=1 +; php_admin_value[opcache.revalidate_freq]=1 +; php_admin_value[memory_limit]=512M +php_admin_value[upload_max_filesize]=10G +php_admin_value[post_max_size]=10G + + diff --git a/icingaweb2-rpmlintrc b/icingaweb2-rpmlintrc new file mode 100644 index 0000000..2deead6 --- /dev/null +++ b/icingaweb2-rpmlintrc @@ -0,0 +1,3 @@ +# wrong fsf-adress +addFilter("files-duplicate"); +addFilter("zero-length"); diff --git a/icingaweb2.changes b/icingaweb2.changes new file mode 100644 index 0000000..3bf240c --- /dev/null +++ b/icingaweb2.changes @@ -0,0 +1,1206 @@ +------------------------------------------------------------------- +Fri Nov 21 09:57:52 UTC 2025 - ecsos - 2.12.6 + +- Update to 2.12.6 + - Search box shows many magnifying glasses for some community themes #5395 + - Authentication hooks are not called with external backends #5415 + - Improve Minimal layout #5386 + +------------------------------------------------------------------- +Wed Jul 16 10:13:03 UTC 2025 - ecsos - 2.12.5 + +- Update to 2.12.5 + * PHP 8.4 Support + We're again a little behind schedule, but now we support PHP 8.4! + This means that installations on Ubuntu 25.04 and Fedora 42+ can + now install Icinga Web without worrying about PHP related + incompatibilities. Icinga packages will be available in the + next few days. + * Good Things Take Time + There's only a single (notable) recent issue that is fixed + with this release. All the others are a bit older. + - External URLs set up as dashlets are not embedded the same + as navigation items #5346 + * But the team sat together a few weeks ago and fixed a bug here + and there. And of course, also in Icinga Web! + - Users who are not allowed to change the theme, cannot change + the theme mode either #5385 + - Improved compatibility with several SSO authentication + providers #5000, #5227 + - Filtering for older-than events with relative time does not + work #5263 + - Empty values are NULL in CSV exports #5350 + * Breaking, Somewhat + This is mainly for developers. + With the support of PHP 8.4, we introduced a new environment + variable, ICINGAWEB_ENVIRONMENT. Unless set to dev, Icinga Web + will not show nor log deprecation notices anymore. + +------------------------------------------------------------------- +Wed Mar 26 17:19:21 UTC 2025 - ecsos + +- Update to 2.12.4 + - Database login broken after upgrade #5343 + +------------------------------------------------------------------- +Wed Mar 26 11:21:51 UTC 2025 - ecsos + +- Update to 2.12.3 + - XSS in embedded content CVE-2025-27405 + - DOM-based XSS CVE-2025-27404 + - Open redirect on login page CVE-2025-30164 + - Reflected XSS CVE-2025-27609 + - Login against Postgres DB is case-sensitive #5223 + - Role list has no functioning quick search #5300 + - After clicking on Check now, the page does not refresh itself #5293 + - Service States display wrong since update to 2.12.2 #5290 + +------------------------------------------------------------------- +Sun Jan 26 10:29:40 UTC 2025 - ecsos + +- Set right version for icinga-php-library. + +------------------------------------------------------------------- +Mon Nov 18 15:55:50 UTC 2024 - Dominique Leuenberger + +- Fix usage of %requires_eq: invalid syntax previosly resulted in + ignored lines and now properly returns an error. + +------------------------------------------------------------------- +Wed Nov 13 13:56:39 UTC 2024 - ecsos + +- Update to 2.12.2 + - Sort by name of roles does not work properly #4789 + - Settings menu flyout closes too fast / easy #5196 + - CSP header is missing the script-src policy #5180 + - Broken event overview due to IntlDateFormatter #5172 + - Downtimes, which were started and canceled, are missing in the history #5176 + - Usage of IcingaWeb2 api command returns 404, but is successful #5183 + - Allow fontawesome icons as menu items #5205 + - Error while opening a navigation root item #5177 + - Dashlets twice in dashboard & not deletable #5203 + - PluginOutputRenderer gets called twice #5271 + - Graphs disappear after form controls are used #4996 + - Make subgroups of custom variables fully collapsible #5256 + +------------------------------------------------------------------- +Tue Feb 13 10:53:58 CET 2024 - ro@suse.de + +- Provide group as required by RPM 4.19 + +------------------------------------------------------------------- +Thu Nov 16 17:01:14 UTC 2023 - ecsos + +- Update to 2.12.1 + - Add PHP 8.3 support + - Login Redirect Loop #5133 + - UI database migration not fully compatible with PostgreSQL #5129 + - Missing styles when logging out and in while CSP is enabled #5126 + +------------------------------------------------------------------- +Fri Sep 22 11:11:44 UTC 2023 - ecsos + +- Update to 2.12.0 + - Support for PHP 8.2 #4918 + - Support for Content-Security-Policy #4528 + - Allow to initiate a refresh with __REFRESH__ #5108 + - Don't refresh twice upon __CLOSE__ #5106 + - Add event column-moved #5049 + - Add copy-to-clipboard behavior #5041 + - Access Oracle Database via tnsnames.ora / LDAP Naming Services #5062 + - Reduce risk of crashing the x509 collector daemon #5115 + - CSV export does not escape double quotes #4910 + * Full changelog see: + https://github.com/Icinga/icingaweb2/milestone/79?closed=1 +- Massive changes in spec needed. + +------------------------------------------------------------------- +Tue Jul 4 07:34:26 UTC 2023 - James Pearson + +- DB schema files are in schema not etc/schema in packaged tarball + +------------------------------------------------------------------- +Tue May 9 11:02:10 UTC 2023 - ecsos + +- Add subpackge php-fpm with php-fpm configuration. +- Remove max php version restrictions for suse. +- Fix rights for /etc/icingaweb2/enabledModules directory + as upstream use. + +------------------------------------------------------------------- +Thu Jan 26 17:03:20 UTC 2023 - ecsos + +- Update to 2.11.4 + * Notable Fixes + - Add/Edit dashlet not possible #4970 + - Custom library path + custom library, without slash in its + name, results in exception #4971 + - Reflected XSS vulnerability in User Backends config page #4979 + See: https://github.com/Icinga/icingaweb2/milestone/78?closed=1 +- Add icingaweb2-additions.tar.gz with source from version 2.11.3 + because upstream has removed packages and etc source dir and files. + See: https://github.com/Icinga/icingaweb2/pull/4964 + +------------------------------------------------------------------- +Wed Dec 14 15:20:58 UTC 2022 - ecsos + +- Update to 2.11.3 + This is a security release. + * Minor to Medium Vulnerabilities + - Open Redirects for logged in users #4945 + - SSH Resource Configuration form XSS Bug #4947 + - Dashlets allow the user to run Javascript code #4959 + - Role member suggestion endpoint is reachable for unauthorized + users #4961 + * The More Usual Dose of Fixes + - Browser print dialog result broken #4957 + - Shared navigation items are not accessible #4953 + - While using dropdown filter menu it gets closed automatically + due to autorefresh #4942 + +------------------------------------------------------------------- +Tue Nov 8 10:42:22 UTC 2022 - ecsos + +- Update to 2.11.2 + It brings performance improvements and general fixes. + Most notable of which are that having e.g. notifications disabled + globally is now visible in the menu again and that the event + history is grouped by days again. + See: https://github.com/Icinga/icingaweb2/milestone/76?closed=1 + +------------------------------------------------------------------- +Thu Jul 7 11:53:35 UTC 2022 - ecsos + +- Update to 2.11.1 + This update's main focus is to solve the issue that all history + views didn't work correctly or showed invalid time and dates. (#4853) + +------------------------------------------------------------------- +Fri Jul 1 05:59:19 UTC 2022 - ecsos + +- Update to 2.11.0 + * Enhancements, Some + - Support for PHP 8.1 #4609 + - Redesign User Menu #4651 + - &showFullscreen suppresses announcements #4596 + * Fixes, More + - Navigation item filter * not working #4772 + - Objects with a * in the name are not found #4682 + - Theme mode switch disabled on theme with mode support #4744 + * When developers become cleaning maniacs + - User preferences in INI files not supported anymore #4765 + - mysql: use of utf8 vs utfmb4 #4680 + - Remove Vagrant file and its assets #4762 + +------------------------------------------------------------------- +Thu Jun 30 13:25:43 UTC 2022 - ecsos + +- Update to 2.10.3 + This release mainly ensures compatibility with icinga-php-library + v0.9.0 and Icinga DB Web 1.0.0. Two fixes regarding the theme + mode support are also included (#4744 and #4835) + +------------------------------------------------------------------- +Wed Apr 6 12:00:53 UTC 2022 - ecsos + +- Update to 2.10.1 + - Clicking anywhere on a list item in the dashboard now opens the + primary link again, instead of nothing #4710 + - The Check Now and Remove Acknowledgement quick actions in an + object's detail header are now working again #4711 + - Clicking on the big number in the tactical overview if there + are UNKNOWN services, shows UNKNOWN services now #4714 + - The contrast of text in the sidebar, while in light mode, + has been increased #4720 + - A theme without mode support, which is set globally, + now also prevents users from configuring the mode #4723 +- Drop 6498d8b035cbaa287d67a61b3f09310a191a5e10.patch, + because now in upstream. + +------------------------------------------------------------------- +Wed Mar 30 14:15:33 CEST 2022 - ro@suse.de + +- add 6498d8b035cbaa287d67a61b3f09310a191a5e10.patch + taken from upstream PR 4721 fixing mouseover for list items + to make checks selectable again + +------------------------------------------------------------------- +Thu Mar 24 11:23:27 UTC 2022 - ecsos + +- Update to 2.10.0 + Release information see: https://github.com/Icinga/icingaweb2/releases + Fixed issues see: https://github.com/Icinga/icingaweb2/milestone/63?closed=1 + +------------------------------------------------------------------- +Tue Mar 8 16:45:39 UTC 2022 - ecsos + +- Update to 2.9.6 + * Security Fixes + Please check the advisories on GitHub for more details. + - Path traversal in static library file requests for + unauthenticated users GHSA-5p3f-rh28-8frw + - SSH resources allow arbitrary code execution for + authenticated users GHSA-v9mv-h52f-7g63 + - Unwanted disclosure of hosts and related data, linked to + decommissioned services GHSA-qcmg-vr56-x9wf + +------------------------------------------------------------------- +Mon Nov 22 15:01:46 UTC 2021 - ecsos + +- Update to 2.9.5 + * This is a hotfix release which fixes the following issues: + - Some detail views of Icinga Director and other modules are + broken with Web 2.9.4 #4598 + - Error on skipping LDAP Discovery #4603 + +------------------------------------------------------------------- +Wed Nov 10 13:03:52 UTC 2021 - ecsos + +- Update to 2.9.4 + * Broken Preference Configuration + - Config/Preferences not accessible without config.ini #4504 + - "My Account" broken after Upgrade from 2.8.2 to 2.9.3 #4512 + * Notable Fixes in the UI + - Proposal for new Feature make comments collapsible #4515 + - new line character is being removed in the plugin output #4522 + * Less Notable But No Less Important Fixes + - announcements request clears focus #4543 + - js: Fix regression for loading dependent modules for sub-containers #4533 +- Changes from 2.9.3 + * Staying remembered on RHEL/CentOS 7 now possible + - Stay Logged In - Unknown cipher algorithm #4493 + * Missing icons with SLES/OpenSUSE 15 + - Missing fileinfo php extension on SLES/OpenSUSE 15+ #4503 + * Child downtimes for services are now removed automatically + - If appropriate, set the API parameter all_services for schedule-downtime #4501 +- Changes from 2.9.2 + This is a hotfix release. v2.9.1 included a change that wasn't + compatible with PostgreSQL again. This has been fixed in this + release. (#4490) +- Changes from 2.9.1 + * Pancakes everywhere + - Nested custom variables are flattened #4439 + - Disable login orb animation and all orbs for themes #4468 + - SVG chart library doesn't process input as UTF-8 #4462 + * Staying remembered too difficult + - RememberMe not working with only PostgreSQL #4441 + - RememberMe compatibility with php version 5.6+ #4472 + - RememberMe fails after running the wizard for grants #4434 + * Being picky pays off + - Datetimepicker not usable by keyboard #4442 + - Close the datepicker automatically #4461 + - Paragraphs in Acknowledge/Downtime not possible #4443 +- Changes from 2.9.0 + * Icinga DB + - We continue our endeavour soon. Icinga Web 2 is still a + crucial part of it and this update is again required for + Icinga DB. If you like to participate again, don't forget + to update Icinga Web 2 as well. + * Security Fixes + This release includes two security related fixes. Both were + published as part of a security advisory on Github. They allow + the circumvention of custom variable protection rules and + blacklists as well as a path traversal if the doc module is + enabled. Please check the respective advisory for details. + - Custom variable protection and blacklists can be circumvented GHSA-2xv9-886q-p7xx + - Possible path traversal by use of the doc module GHSA-cmgc-h4cx-3v43 + * RBAC, The Elephant In Icinga Web 2 + - Authorization enhancements #4306 + - Audit View #4336 + - Highlight modules with permissions set inside a role #4241 + * Support for PHP 8 + - Support PHP 8 #4289 + - Raise minimum required PHP version to 7.3 #4397 + * Stay, Be Remembered + - Implement a "remember me" feature #2495 + * It Does Matter, When + - Add datetime picker widget #4354 + - Expire Option for Comments #3447 + - Custom defaults for downtime end, comment and duration #4364 + +------------------------------------------------------------------- +Wed Nov 10 12:58:39 UTC 2021 - ecsos + +- Update to 2.8.5 + No changelog from upstream. + +------------------------------------------------------------------- +Tue Jul 27 17:18:09 UTC 2021 - ecsos + +- Update to 2.8.4 + - This release only contains a single fix for flattened custom + variables. #4439 + +------------------------------------------------------------------- +Mon Jul 12 12:45:35 UTC 2021 - ecsos + +- Update to 2.8.3 + * Security Fixes + This release includes two security related fixes. + Both were published as part of a security advisory on Github. + They allow the circumvention of custom variable protection + rules and blacklists as well as a path traversal if the doc + module is enabled. Please check the respective advisory for + details. + - Custom variable protection and blacklists can be circumvented + GHSA-2xv9-886q-p7xx + - Possible path traversal by use of the doc module + GHSA-cmgc-h4cx-3v43 + +------------------------------------------------------------------- +Fri Nov 27 15:03:40 UTC 2020 - ecsos + +- Expand README.SUSE. + +------------------------------------------------------------------- +Thu Nov 26 09:26:13 UTC 2020 - ecsos + +- Add missing requires php-curl, php-imagick. +- Add a2enmod mod_php and mod_rewrite at post section. + +------------------------------------------------------------------- +Sat Aug 22 15:00:54 UTC 2020 - ecsos + +- Update to 2.8.2 + + Notice: This is a security release. + It is recommended to immediately upgrade to this release. + + You can find all issues related to this release on the respective + milestone. + + * Path Traversal Vulnerability + The vulnerability in question allows an attacker to access + arbitrary files which are readable by the process running + Icinga Web 2. Technical details can be found at the + corresponding CVE-2020-24368 and in the issue below. + + - Possible path traversal when serving static image files #4226 + + * Broken Negated Filters with PostgreSQL + We've also included a small non-security related fix. Searching + for e.g. servicegroup!=support leads to an error instead of the + desired result when using a PostgreSQL database. + + - Single negated membership filter fails with PostgreSQL #4196 + +------------------------------------------------------------------- +Mon Jun 29 12:39:00 UTC 2020 - ecsos + +- Update to 2.8.1 + * Case Sensitivity Problems + A fix in v2.8.0 led to users being not able to login if they + got their username's case wrong. A hostgroup name's case has + also been incorrectly taken into account despite using a CI + labelled column in the servicegrid and other lists. + - Login usernames now case sensitive in 2.8 #4184 + - Case insensitive hostgroup filter in service grid not working + #4178 + * Issues With Numbers + An attempt to avoid misrepresenting environments in the + tactical overview had an opposite effect by showing negative + numbers. Filtering for timestamps in the event history also + showed no results because our filters couldn't cope with plain + numbers anymore. + - Tactical overview showing "-1 pending" hosts #4174 + - Timestamp filters not working correctly in history views + #4182 + +------------------------------------------------------------------- +Mon Jun 8 13:22:08 UTC 2020 - ecsos + +- Update to 2.8.0 + * Icinga DB + It's happening. Yes. Our latest achievement is now available + for those who are willing to participate in this enormous + endeavour. Icinga Web 2 is also a crucial part of it and + accompanies the first release of Icinga DB. If you like to + participate, don't forget to update Icinga Web 2 as well. + * Support for PHP 7.4 and MySQL 8 + We also made sure that you won't be disappointed by Icinga Web 2 + if you're running PHP 7.4 or trying to access a MySQL database + with version 8+. These should pose no issues anymore now. But + if you still somehow managed to get issues please let us now + and we'll fix it asap. + - Exceptions with MySQL 8 #3740 + - Support for PHP 7.4 #4009 + * Find What You Search For + It's been previously not possible to properly filter for range + values. This was especially true for custom variables where, + if you searched for e.g. _host_interfaces>=20, you wouldn't + find the correct results. If you often copy some values in our + search fields you may also been a victim of extraneous spaces + which are now automatically trimmed. + - Filter: more/less than doesn't seem to working #3974 + - Search object followed by a space finds no results #4002 + * Don't Leave Your Little Sheep Unattended + It's time again to further restrict your users. It's now + possible to completely block any access to contacts and + contactgroups for specific roles. These won't ever see again + who's notified and who's not. Also, if you are using single + accounts for a group of people you can now disable password + changes for those. + - Prohibit access to contacts and contactgroups #3973 + - Allow to forbid password changes on specific user accounts #3286 + * In and Out, Access Control Done Right + While we have no burgers but cookies you are nevertheless + welcome to visit Icinga Web 2. And now you can also successfully + leave while being externally authenticated and unsuccessfully + enter while being unable to not add extraneous spaces to your + username. + - External logout not working from the navigation dashboard #3995 + - Username with extraneous spaces are not invalid #4030 + +------------------------------------------------------------------- +Fri May 22 16:58:45 UTC 2020 - Lars Vogdt + +- update to 2.8.0~rc1 + * fixed exceptions with MySQL 8 #3740 + * fixed support for PHP 7.4 #4009 + * Filter: more/less than doesn't seem to working #3974 + * Search object followed by a space finds no results #4002 + * Prohibit access to contacts and contactgroups #3973 + * Allow to forbid password changes on specific user accounts #3286 + * External logout not working from the navigation dashboard #3995 + * Username with extraneous spaces are not invalid #4030 +- use /usr/share/bash-completion/completions/ instead of + /etc/bash_completion.d/ for icingacli + +------------------------------------------------------------------- +Fri Oct 18 09:02:43 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.3 + This is a hotfix release and fixes the following issue: + - Servicegroups for roles with filtered objects not available #3983 + +------------------------------------------------------------------- +Wed Oct 16 08:22:14 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.2 + You can find all issues related to this release on our Roadmap. + * Less Smoky Database Servers + The release of v2.7.1 introduced a change which revealed an + inefficient part of our database queries. We made some general + optimizations on our queries and changed the way we utilize + them in some views. The result are faster response times by + less work for the database server. + - Consuming more CPU resources since upgraded to 2.7.1 #3928 + * Anarchism Infested Dashboards + Recent history already showed signs of anarchism. (Pun intended) + A similar mindset now infested default dashboards which appeared + in a different way than before v2.7.0. We taught their dashlets + a lesson and order has been reestablished as previously. + - Recently Recovered Services in dashboard Current Incidents + seems out of order #3931 + * Solitary Downtimes + We improved the host and service distinction with v2.7.0. The + downtimes list however got confused by this and didn't knew + anymore how to combine multiple downtimes. If you now instruct + the list to select multiple downtimes this works again as we + removed the confusing parts. + - Selection of multiple downtimes fails #3920 + +------------------------------------------------------------------- +Sat Aug 24 16:21:55 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.1 + You can find all issues related to this release on our Roadmap. + * Sneaky Solution for Sneaky Links + Usually we try to include only bugs in minor-releases. Sorry, + bug-fixes, of course. But thanks to @winem_ we have also a + little enhancement this time: Links in comments, notes, etc. + are now highlighted as such. + - Highlight links in the notes of an object #3888 + * Nobody's Perfect, Not Even Developers + We knew it. We saw it coming. And forgot about it. Some views, + especially histories, showed an anarchic behavior since v2.7.0. + The change responsible for this has been undone and history's + order is reestablished now. + - Default sort rules no longer work in 2.7.0 #3891 + * Restrictions Gone Wild Cagey + A fix unfortunately caused restrictions using wildcards to show + no results anymore. This is now solved and such restrictions + are as permissive as ever. + - Wildcard filters in chains broken #3886 + +------------------------------------------------------------------- +Tue Jul 30 22:31:29 UTC 2019 - ecsos@opensuse.org + +- Update to 2.7.0 + You can find issues related to this release on our Roadmap. + * Icinga's Amazingness Spreads Further + All the Japanese and Ukrainian monitoring enthusiasts can now + appreciate our web-frontend in their native tongue. Being so + late to the party is also of their advantage, though. Because + they can adjust their dashboard without worrying it gets broke + with the next update. (All other admins with non-english users, + please have a look at our upgrading documentation) + - Add Japanese language support #3776 + - Add Ukrainian language support #3828 + - Don't translate pane and dashlet names in configs #3837 + * Modules - Bonus Functionality Unleashed + With this release module developers got additional ways to + customize Icinga Web 2. Whether you ever wanted to hook into + a configuration form's handling, to perform your very own Ajax + requests or enhance our multi-select views with fancy graphs. + All is possible now. + - Allow to hook into a configuration form's handling #3862 + - Allow to fully customize click and submit handling #3794 + - Integrate DetailviewExtension into multi-select views #3304 + * UI - Your Daily Routine and Incident Management, Enhanced + Users with color deficiencies now have a built-in theme to ease + navigating within Icinga Web 2. Also, our forms got a long + overdue re-design and now look less boring. Though, the best of + all features is that clicking while holding the Ctrl-key now + actually opens a new browser tab! Lost comments? No more. + Defining an expiry date again? No more! + - Add colorblind theme #3743 + - Improve the look of forms #3416 + - Make ctrl-click open new tab #3723 + * Stay Focused - More Room for More Important Stuff + Some of you know that some checks tend to produce walls of text + or measure (too) many interfaces. Now, plugin output and + performance data will collapse if they exceed a certain height. + If necessary they can of course be expanded and keep that way + across browser restarts. The same is also true for the sidebar. + (Though, this one stays collapsed) + - Persistent Collapsible Containers #3638 + - Collapsible plugin output #3870 + - Collapsed sidebar should stay collapsed #3682 + * Markdown - Tables, Lists and Emphasized Text The Easy Way + Since we now have the possibility to collapse large content + dynamically, we allow you to add entire wiki pages to hosts and + services. Though, if you prefer to use a real wiki to maintain + those (what we'd strongly suggest) it's now easier than ever + before to link to it. Copy url, paste url, submit comment,Done. + - Make notes, comments and announcements markdown aware #3814 + - Transform any URL in a Comment to a clickable Link #3441 + - Support relative links in plugin output #2916 + * Things You Have Missed Previously + The tactical overview, our fancy pie charts, is now the very + first result when you search something in the sidebar. + If you'll see two entirely green circles there, relax. + Also overdue or unreachable checks are now appropriately marked + in list views and the service grid now allows you to switch + between everything or problems only. + - Add tactical overview to global search #3845 + - Servicegrid: Add toggle to show problems only #3871 + - Make overdue/unreachable checks better visible #3860 + * Authorization - Knowing and Controlling What's Going On + Roles can now be even more tailored to users since the + introduction of a new placeholder. This placeholder allows to + use a user's name in restrictions. + Things like _service_responsible_person=$user:local_name$ are + now possible. The audit log now receives failed login-attempts, + that's been made possible since hooks can now run for anonymous + users. + - Allow roles to filter for the currently logged in user #3493 + - Add possibility to disable permission checks for hooks #3849 + - Send failed login-attempts to the audit log #3856 + See also the audit module which got an update and is required for + #3856 to work. + +------------------------------------------------------------------- +Thu Apr 25 10:37:29 UTC 2019 - Martin Liška + +- update to 2.6.3 + You can find issues related to this release on our Roadmap. + * PHP 7.3 + - Now supported. tada + * LDAP - Community contributions, that's the spirit + With the help of our users we've finally fixed the issue that + defining multiple hostnames and enabling STARTTLS has never + properly worked. Also, they've identified that defining + multiple hostnames caused a customized port not being utilized + and fixed it themselves. + There has also a rare case been fixed that caused no group + members being found in case object classes had a different + casing than what we expected. (Good news for all the + non-OpenLdap and non-MSActiveDirectory users) + - LDAP connection fails with multiple servers using STARTTLS + #3639 + - LDAPS authentication ignores custom port setting #3713 + - LDAP group members not found #3650 + * We take care about your data even better now + With this are newlines and HTML entities (such as  ) in + plugin output and custom variables meant. + Sorry if I've teased some data security folks now. innocent + - Newlines in plugin output disappear #3662 + - Windows path separators are converted to newlines in custom + variables #3636 + - HTML entities in plugin output are not resolved if no other + HTML is there #3707 + * You've wondered how you got into a famous blue police box? + Don't worry, not only you and the european union are sometimes + unsure what's the correct time. + - Set client timezone on DB connection #3525 + - Ensure a valid default timezone is set in any case #3747 + - Fix that the event detail view is not showing times in + correct timezone #3660 + * UI - The portal to your monitoring environment, improved + The collapsible sidebar introduced with v2.5 has been plagued + by some issues since then. They're now fixed. Also, the UI + should now flicker less and properly preserve the scroll + position when interacting with action links. (This also allows + the business process module to behave more stable when using + drag and drop in large configurations.) + - Collapsible Sidebar Issues #3187 + - Fix title when closing right column #3654 + - Preserve scroll position upon form submits #3661 + * Corrected things we've broke recently + That's due to preemptive changes to protect you from bad + individuals. Unfortunately this meant that some unforeseen + side-effects appeared after the release of v2.6.2. + These are now fixed. + - Multiline values in ini files broken #3705 + - PHP ini parser doesn't strip trailing whitespace #3733 + - Escaped characters in INI values are not unescaped #3648 + - Though, if you've faced issue #3705 you still need to take + manual action (if not already done) as the provided fix does + only prevent further occurrences of the resulting error. The + required changes involve the transformation of all real + newlines in Icinga Web 2's INI files to literal \n or \r\n + sequences. (Files likely having such are the roles.ini and + announcements.ini) + +------------------------------------------------------------------- +Wed Nov 21 12:33:40 UTC 2018 - ecsos@opensuse.org + +- update to 2.6.2 + You can find issues and features related to this release on our Roadmap. + This bugfix release addresses the following topics: + * Database connections to MySQL 8 no longer fail + * LDAP connections now have a timeout configuration which defaults to 5 seconds + * User groups are now correctly loaded for externally authenticated users + * Filters are respected for all links in the host and service group overviews + * Fixed permission problems where host and service actions provided by modules were missing + * Fixed an SQL error in the contact list view when filtering for host groups + * Fixed time zone (DST) detection + * Fixed the contact details view if restrictions are active + * Doc parser and documentation fixes +- Fix security issues: + boo#1119784 (CVE-2018-18246) and + boo#1119785 (CVE-2018-18247) and + boo#1119799 (CVE-2018-18249) and + boo#1119800 (CVE-2018-18250) and + boo#1119801 (CVE-2018-18248) + +------------------------------------------------------------------- +Wed Nov 21 12:17:42 UTC 2018 - ecsos@opensuse.org + +- Use current spec file from upstream. +- Insert missing things from old spec file in new upstream spec file. +- Remove setuid from new upstream spec file for following dirs: + /etc/icingaweb2, + /etc/icingaweb/modules, + /etc/icingaweb2/modules/setup, + /etc/icingaweb2/modules/translation, + /var/log/icingaweb2 + +------------------------------------------------------------------- +Wed Sep 26 10:39:55 UTC 2018 - ecsos@opensuse.org + +- Add README.SUSE. + +------------------------------------------------------------------- +Sat Aug 11 09:16:05 UTC 2018 - ecsos@opensuse.org + +- update to 2.6.1 + - You can find issues and features related to this release on our + [Roadmap](https://github.com/Icinga/icingaweb2/milestone/51?closed=1). + - The command audit now logs a command's payload as JSON which fixes + a [bug](https://github.com/Icinga/icingaweb2/issues/3535) + that has been introduced in version 2.6.0. + +------------------------------------------------------------------- +Sat Jul 28 22:17:03 UTC 2018 - ecsos@opensuse.org + +- updatet to 2.6.0 + You can find issues and features related to this release on our Roadmap. + * Enabling you to do stuff you couldn't before + - Support for PHP 7.2 added + - Support for SQLite resources added + - Login and Command (monitoring) auditing added with the help of a dedicated module + - Pluginoutput rendering is now hookable by modules which allows to render custom icons, emojis and .. cute kitties :octocat: + * Avoiding that you miss something + - It's now possible to toggle between list- and grid-mode for the host- and servicegroup overviews + - The servicegrid now supports to flip its axes which allows it to be put into a landscape mode + - Contacts only associated with services are visible now when restricted based on host filters + - Negated and combined membership filters now work as expected (#2934) + - A more prominent error message in case the monitoring backend goes down + - The filter editor doesn't get cleared anymore upon hitting Enter + * Making your life a bit easier + - The tactical overview is now filterable and can be safely put into the dashboard + - It is now possible to register new announcements over the REST Api + - Filtering for custom variables now works in UTF8 environments + * Ensuring you understand everything + - The monitoring health is now beautiful to look at and properly behaves in narrow environments + - Updated German localization + - Updated Italian localization + * Freeing you from unrealiable things + - Removed support for PHP < 5.6 + - Removed support for persistent database connections +- Drop 0001-Don-t-call-session_start-after-ini_set.patch, + because now in upstrem + +------------------------------------------------------------------- +Mon Jul 16 19:39:30 UTC 2018 - uhaider.msee15seecs@seecs.edu.pk + +- boo#1101357: Fixed missing dependency php-ctype in spec file. + +------------------------------------------------------------------- +Tue May 22 20:47:34 UTC 2018 - dev@stellardeath.org + +- Backport of fix for PHP 7.2 (upstream git commit dadd2c80f) + * 0001-Don-t-call-session_start-after-ini_set.patch + +------------------------------------------------------------------- +Fri Apr 27 15:48:12 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.3 + + Hotfix + * This is a hotfix release and addresses an issue with frequent + delays/timeouts when viewing hosts and services in the front-end. + (https://github.com/Icinga/icingaweb2/milestone/50?closed=1) + +------------------------------------------------------------------- +Fri Apr 27 15:46:52 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.2 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/49?closed=1) + +------------------------------------------------------------------- +Thu Jan 25 16:41:52 UTC 2018 - adamradovits12@hotmail.com + +- update to 2.5.1 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/47?closed=1) + +------------------------------------------------------------------- +Fri Jan 12 08:13:34 UTC 2018 - ecsos@opensuse.org + +- remove addFilter("permissions-directory-setuid-bit") and + addFilter("non-standard-gid") + +------------------------------------------------------------------- +Thu Jan 11 11:42:39 UTC 2018 - ecsos@opensuse.org + +- insert missing requires(pre): user(wwwrun) for Tumbleweed + +------------------------------------------------------------------- +Mon Jan 8 11:18:07 UTC 2018 - ecsos@opensuse.org + +- fix rpmlint errors, reduce rpmlint warnings + +------------------------------------------------------------------- +Tue Dec 26 13:58:32 UTC 2017 - jengelh@inai.de + +- Remove redundant %clean section. Fix RPM groups. + Update summaries. + +------------------------------------------------------------------- +Mon Dec 11 11:46:24 UTC 2017 - ecsos@opensuse.org + +- drop permissions.d and add BuildRequires nagios-rpm-macros >= 14.0 + to remove setBadness in rpmlintrc + +------------------------------------------------------------------- +Wed Dec 06 14:36:52 UTC 2017 - adamradovits12@hotmail.com + +- removed php5-Zendframework dependency +- added icingaweb2-vendor-zf1 package + +------------------------------------------------------------------- +Wed Dec 06 12:17:52 UTC 2017 - adamradovits12@hotmail.com + +- update to 2.5.0 + + Features + * You can find issues and features related to this release on our Roadmap + (https://github.com/Icinga/icingaweb2/milestone/45?closed=1). + +------------------------------------------------------------------- +Wed Oct 18 12:09:52 UTC 2017 - adamradovits12@hotmail.com + +- update to 2.4.2 + + Bugfixes + * Bug 2965: Transport config: Default port not changing upon auto-submit + * Bug 2926: Wrong order when sorting by host_severity + * Bug 2923: Number fields should be valid when empty + * Bug 2919: Fix cached loading of module config + * Bug 2911: Acknowledgements are not working without an expiry time + * Bug 2878: process-check-result Button is visible even when user isn't allowed to use it + * Bug 2850: Link to acknowledgements is wrong in the timeline + * Bug 2841: Wrong menu height when switching back from mobile layout + * Bug 2806: Wrong service state count in hostgroup overview + * Bug 2805: Response from the Icinga 2 API w/ an empty result set leads to exception + * Bug 2801: Wrong help text for the director in the icingacli + * Bug 2784: Module and gravatar images are not served with their proper MIME type + * Bug 2776: Defaults not respected when acknowledging problems + * Bug 2767: Monitoring module: Config field protected vars not updated after zeroing config.ini + * Bug 2728: Gracefully handle invalid Icinga 2 API response types + * Bug 2718: Hide check attempt for hard states in history views + * Bug 2716: Web 2 doesn't detect the browser time zone if the time zone offset is negative + * Bug 2714: icingacli module disable fails on consecutive calls + * Bug 2695: Macros cannot be used for a navigation item's url-port + * Bug 2684: [dev.icinga.com #14027] Translation module should not write absolute path to .po files + * Bug 2683: [dev.icinga.com #14025] Translation module should remove temp files + * Bug 2661: [dev.icinga.com #13651] Don't offer the Icinga 2 API as transport if PHP cURL is missing + * Bug 2660: [dev.icinga.com #13649] Make the Icinga 2 API the default command transport + * Bug 2656: [dev.icinga.com #13627] Wrong count of handled critical service in the hover text + * Bug 2645: [dev.icinga.com #13539] Improve error handling and validation of multiple LDAP URIs + * Bug 2598: [dev.icinga.com #12977] Adding an empty user backend fails + * Bug 2545: [dev.icinga.com #12640] MSSQL ressource not working + * Bug 2523: [dev.icinga.com #12410] Click on Host in Service Grid can cause "Invalid Filter" error + * Bug 2519: [dev.icinga.com #12330] Filter editor may show wrong values after searching + * Bug 2509: [dev.icinga.com #12295] group_name_attribute should be "sAMAccountName" by default + +------------------------------------------------------------------- +Wed Oct 4 10:40:54 UTC 2017 - ecsos@opensuse.org + +- make package compatible to php7 + +------------------------------------------------------------------- +Sun Aug 20 17:57:01 UTC 2017 - ecsos@opensuse.org + +- change spec to use php7 also + +------------------------------------------------------------------- +Sat May 27 08:27:00 UTC 2017 - ecsos@opensuse.org + +- fix build error for Tumbleweed + +------------------------------------------------------------------- +Wed Feb 22 12:03:46 UTC 2017 - ecsos@opensuse.org + +- rename package icingacli to icingaweb-icingacli + and make icingacli as Recommends + +------------------------------------------------------------------- +Tue Jan 24 17:19:52 UTC 2017 - ecsos@opensuse.org + +- update to 2.4.1 + + Bugfixes + * Bug 2651: [dev.icinga.com #13607] Displayed times messed up in Icinga Web 2.4.0 w/ PostgreSQL + * Bug 2654: [dev.icinga.com #13615] Setup wizard: Not possible to setup Icinga Web 2 with an external database + * Bug 2663: [dev.icinga.com #13691] Hook::all() is broken on CLI + * Bug 2669: [dev.icinga.com #13735] Setup wizard: Progress bar isn't shown correctly, if setup is at finish step + * Bug 2681: [dev.icinga.com #13957] Support failover API command transport configuration + * Bug 2686: Granular module permissions do not work for hooks + * Bug 2687: Update URLs to icinga.com, remove wiki & update to GitHub + +------------------------------------------------------------------- +Wed Dec 14 22:40:51 UTC 2016 - ecsos@opensuse.org + +- update to 2.4.0-2 + + Bugfixes + * RPM: Fix specfile + * RPM: Update revision + * CSS: Reset line-height in the button mixin + +- update to 2.4.0 + + Feature + * Feature 12598 (Authentication & Authorization): Support nested AD groups for Roles and not just login + * Feature 11809 (Authentication & Authorization): Test and document multiple LDAP-URIs separated by space in LDAP ressources + * Feature 10616 (Authentication & Authorization): Users w/o administrative permissions should be allowed to change their password + * Feature 13381 (CLI): Allow to configure the default listen address for the CLI command web serve + * Feature 11820 (Configuration): Check whether chosen locale is available + * Feature 11214 (Configuration): Logger: Allow to configure the Syslog Facility + * Feature 13117 (Framework): Add charset UTF-8 to default content type + * Feature 12634 (Framework): Possibitlity to fold and unfold filter by click + * Feature 11198 (Framework): Announce banner + * Feature 11115 (Framework): Add SSL support to MySQL database resources + * Feature 8270 (Installation): Add SELinux policy for Icinga Web 2 + * Feature 13187 (Monitoring): Command toolbar in the host and service detail views + * Feature 12873 (Monitoring): Change default for sticky option of acknowledgements from true to false + * Feature 12820 (Monitoring): Export detail views to JSON + * Feature 12766 (Monitoring): Show flapping events in the host and service history views + * Feature 12764 (Monitoring): Display downtime end even if it hasn't been started yet + * Feature 12125 (Monitoring): Allow th in plugin output + * Feature 11952 (Monitoring): Allow changing default of 'sticky' in acknowledgement and other command options + * Feature 11398 (Monitoring): Send commands over Icinga 2's API + * Feature 11835 (UI): Add clear button to search field + * Feature 11792 (UI): Show hint if notifications are disabled globally + * Feature 11664 (UI): Show git HEAD for modules if available + * Feature 13461 (Vendor Libraries): Use Icinga's fork of Zend Framework 1 icingaweb2-vendor-zf1 + + Bugfixes + * Bug 12396 (Authentication & Authorization): Hooks don't respect module permissions + * Bug 12164 (Authentication & Authorization): REDIRECT_REMOTE_USER not evaluated during external auth + * Bug 12108 (Authentication & Authorization): assertPermission allows everything for unauthenticated requests + * Bug 13357 (Configuration): Persistent database resources cannot be made non-persistent + * Bug 12848 (Configuration): Empty "Protected Custom Variables" falls back to defaults + * Bug 12655 (Configuration): Permission application/log is not configurable + * Bug 12170 (Configuration): Adding a DB resource via webinterface requires one to enter a password + * Bug 10401 (Configuration): LdapUserGroupBackendForm: user_* settings not purged + * Bug 9804 (Configuration): Renaming the resource used for the config backend does not update the global configuration + * Bug 11920 (Dashboard): Add to dashboard: wrong url makes whole dashboard unusable + * Bug 13387 (Documentation): Can't display documentation of disabled modules + * Bug 12923 (Framework): Navigation Item name must be of type string or NavigationItem + * Bug 12852 (Framework): Hosts without any services are hidden from roles with monitoring/filter/objects set + * Bug 12760 (Framework): Do not log exceptions other than those resulting in a HTTP 500 status-code + * Bug 12583 (Framework): Unhandled exceptions while handling REST requests will silently drop the http response code + * Bug 12580 (Framework): REST requests cannot be anonymous + * Bug 12557 (Framework): Module description cannot be on a single line + * Bug 12299 (Framework): FilterExpression renders a&!b as a=1&b!=1 + * Bug 12161 (Framework): Icinga Web 2 doesn't set Content-Type + * Bug 12065 (Framework): IniRepository: update/delete not possible with iterator + * Bug 11743 (Framework): INI writer must not persist section keys with a null value + * Bug 11185 (Framework): SummaryNavigationItemRenderer should show worst state + * Bug 10361 (Framework): Handle E_RECOVERABLE_ERROR + * Bug 13459 (Installation): Setup: Can't view monitoring config summary with Icinga 2 API as command transport + * Bug 13467 (JavaScript): renderLayout has side-effects + * Bug 13115 (JavaScript): actiontable should not clear active row in case there is no newer one + * Bug 12541 (JavaScript): Menu not reloaded in case no search is available + * Bug 12328 (JavaScript): Separate vendor JavaScript libraries w/ semicolons and newlines on import + * Bug 10704 (JavaScript): JS: Always use the jQuery find method w/ node context when selecting elements + * Bug 10703 (JavaScript): JS: Don't use var self = this, but var _this = this + * Bug 11431 (Modules): Modules can't require permission on menu items + * Bug 10870 (Modules): Refuse erroneous module folder names when enabling the module + * Bug 13243 (Monitoring): Inconsistent host and service flags + * Bug 12889 (Monitoring): Timeline broken + * Bug 12810 (Monitoring): Scheduling a downtime for all services of a host does not work w/ the Icinga 2 API as command transport + * Bug 12313 (Monitoring): Multi-line strings within host.notes are being displayed as single line + * Bug 12223 (Monitoring): State not highlighted in plugin output if it contains HTML + * Bug 12019 (Monitoring): Contact view shows service filters with 'Downtime' even if not set + * Bug 11915 (Monitoring): Performance data: negative values not handled + * Bug 11859 (Monitoring): Can't separate between SOFT and HARD states in the history views + * Bug 11766 (Monitoring): Performance data: Fit label column to show as much text as possible + * Bug 11744 (Monitoring): Empty user groups are not displayed + * Bug 10774 (Monitoring): Scheduling downtimes for child hosts doesn't work w/ Icinga 2.x (waiting for Icinga 2) + * Bug 10537 (Monitoring): Filtering with not-equal on custom variable doesn't show hosts without this cv + * Bug 7755 (Monitoring): Remove autosubmit in eventgrid + * Bug 12133 (Navigation): Username and password not being passed in navigation item URLs + * Bug 12776 (Print & Export): dompdf fails when border-style is set to auto + * Bug 12723 (Print & Export): Allowed memory size exhausted when exporting the history view to CSV + * Bug 12660 (QA): Choosing the Icinga theme floods the log with error messages + * Bug 12774 (UI): Lot's of in Output + * Bug 12134 (UI): Copy and paste: Plugin output contains unicode zero-width space characters + * Bug 10691 (UI): Closing the detail area does not update the rows selected counter + * Bug 13095 (Vagrant VM): TicketSalt constant missing + * Bug 12717 (Vagrant VM): PluginContribDir constant removed during vagrant provisioning + +------------------------------------------------------------------- +Fri Jul 15 21:04:17 UTC 2016 - ecsos@opensuse.org + +- add minimum version 1.12.18 to ZendFramwork, + because of Bug #655: ZF2015-08 breaks binary data + https://github.com/zendframework/zf1/issues/655 + +------------------------------------------------------------------- +Sat Jun 25 14:02:17 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.4 + + Bugfixes + * Bug 11267: Links in plugin output don't behave as expected + * Bug 11348: Host aliases are not shown in detail area + * Bug 11728: First non whitespace character after comma stripped from plugin output + * Bug 11729: Sort by severity depends on state type + * Bug 11737: Zero width space characters destroy state highlighting in plugin output + * Bug 11796: Zero width space characters may destroy links in plugin output + * Bug 11831: module.info parsing fails in case it contains newlines that are not part of the module's description + * Bug 11850: "Add to menu" tab unnecessarily appears in command forms + * Bug 11871: Colors used in the timeline are not accessible + * Bug 11883: Delete action on comments and downtimes in list views not accessible because they lack context + * Bug 11885: Database: Asterisk filters ignored when combined w/ other filters + * Bug 11910: Web 2 lacks mobile meta tags + * Fix remote code execution via remote command transport + +------------------------------------------------------------------- +Mon May 30 14:03:12 UTC 2016 - mopp@gmx.net + +- Changed spec file to work with SLES 11 + +------------------------------------------------------------------- +Tue May 10 21:05:09 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.2 + + Feature + * Feature 11629: Simplified event-history date and time representation + + Bugfixes + * Fix a privilege escalation issue in the monitoring module for authenticated users + * Bug 10486: Menu rendering fails when no monitoring backend was configured + * Bug 10847: Warn about illogical dates + * Bug 10848: Can't change items per page if filter is in modify state + * Bug 11392: Can't configure monitoring backend via the web interface when no monitoring backend was configured + +------------------------------------------------------------------- +Mon Apr 18 09:50:12 UTC 2016 - ecsos@opensuse.org + +- update to 2.3.1 + + Bugfixes + * Bug 11598: Invalid SQL queries for PostgreSQL + +- changes from 2.3.0 + + Features + * Feature 10887: lib: Provide User::getRoles() + * Feature 10965: Roles: Restrict visibility of custom variables + * Feature 11404: Add is_reachable filter column to host and service data views + * Feature 11485: lib/LDAP: Support scopes base and one + * Feature 11495: Support data URIs in href + * Feature 11529: Don't offer command disable notifications /w expire time if backend is Icinga 2 + + Bugfixes + * Bug 9386: Improve order of documentation chapters + * Bug 10820: Style problems with long plugin output lines + * Bug 11078: Can't remove default dashboards + * Bug 11099: Mobile menu icon is mispositioned + * Bug 11128: Menu stops refreshing when there is text in the search field + * Bug 11145: Pagination compontents should not float around + * Bug 11171: Icinga Web 2 tries to load an ifont which results in 404 + * Bug 11245: icingacli monitoring list --problems throws an exception + * Bug 11264: Cannot execute queries while other unbuffered queries are active + * Bug 11277: external auth with PHP internal webserver still buggy + * Bug 11279: Restrict access to Applicationlog + * Bug 11299: Icon images no longer prepend img/icons + * Bug 11391: External auth reads REMOTE_USER from process environment instead of request + * Bug 11414: Doc module does not render images with relative path + * Bug 11465: Stylesheet remains unchanged when module CSS/LESS files have been changed + * Bug 11489: lib/LDAP: ordering does explicitly set fields + * Bug 11490: lib/LDAP: LdapUtils::explodeDN replace deprecated use of eval in preg_replace + * Bug 11516: Accessibility: Focus in Tactical Overview barely visible + * Bug 11558: Missing ) in the documentation + * Bug 11568: Docs: Global permissions table is broken + +------------------------------------------------------------------- +Tue Apr 5 15:01:39 UTC 2016 - ecsos@opensuse.org + +- update to 2.2.0 + + Features + * Feature 8487: Number headings in the documentation module + * Feature 8963: Feature commands in the multi select views + * Feature 10654: Render links in acknowledgements, comments and downtimes + * Feature 11062: Allow style classes in plugin output + * Feature 11238: Puppet/Vagrant: Install mod_ssl and forward port 443 + + Bugfixes + * Bug 7350: Tabs are missing if JS is disabled + * Bug 9800: Debian packaging: Ship translation module w/ the icingaweb2 package and install its config.ini + * Bug 10173: Failed commands give no useful error any more + * Bug 10251: Icinga Web 2 fails to run with PHP7 + * Bug 10277: Special characters are incorrectly escaped for tooltips in the service grid + * Bug 10289: Doc module: Headers are cut off when clicking on TOC links + * Bug 10309: Move auth backend configuration to app config + * Bug 10310: Monitoring details: information/action ordering + * Bug 10362: Debian packaging: Separate package for CLI missing + * Bug 10366: Text plugin output treated as HTML in too many occasions + * Bug 10369: Accessibility: Focus not visible and lost after refresh + * Bug 10397: Users with no permissions can check multiple services + * Bug 10442: Edit user control should be more prominent + * Bug 10469: "Remove Acknowledgement" text missing in multi-select views + * Bug 10506: HTTP basic auth request is sent when using Kerberos authentication with Apache2 and mod_php + * Bug 10625: Return local date and time when lost connection to the web server + * Bug 10640: Respect protected_variables in nested custom variables too + * Bug 10778: Filters in the host group and service group overview not applied to state links + * Bug 10786: Whitespace characters are ignored in the plugin output in list views + * Bug 10805: Setup Wizard: Obsolete PHP sockets requirement + * Bug 10856: Benchmark is not rendered on many pages + * Bug 10871: Get rid of padding in controls + * Bug 10878: Dashboards different depending on username casing + * Bug 10881: Move iframe from modules to framework + * Bug 10917: Event grid tiles: The filter column "from" is not allowed here + * Bug 10918: Error on logout when using external authentication + * Bug 10921: icingacli monitoring list --format=csv throws error + * Bug 11000: Change license header to only reflect a file's year of creation/initial commit + * Bug 11008: Wobbling spinners + * Bug 11021: Global default theme is not applied while not authenticated + * Bug 11032: Fix icon_image size and provide a CSS class for theming + * Bug 11039: Misleading tooltip in Tactical Overview + * Bug 11051: Preferences and navigation items stored in INI files rely on case sensitive usernames + * Bug 11073: Active row is flickering on refresh + * Bug 11091: Custom navigation items: URL is not escaped/encoded + * Bug 11100: Comments are always persistent + * Bug 11114: Validate that a proper root DN is set for LDAP resources + * Bug 11117: Vendor: Update dompdf to version 0.6.2 + * Bug 11119: icingacli shows ugly exception when unable to access the config directory + * Bug 11120: icingacli: command and action shortcuts have been broken + * Bug 11126: Invalid cookie value in cookie icingaweb2-tzo + * Bug 11142: LDAP User Groups backend group_filter + * Bug 11143: Layout: Tabs should be left-aligned + * Bug 11151: Having basic authentication on the webserver but not in Icinga Web 2 causes Web 2 to require basic auth + * Bug 11168: Debian packaging: Don't patch HTMLPurifier loading and install HTMLPurifier*.php files from the library/vendor root + * Bug 11187: Session cookie: Path too broad and unset secure flag on HTTPS + * Bug 11197: Menu items without url should ignore the target configuration + * Bug 11260: Scheduling downtimes through the API not working + +- changes from 2.1.1 + + Features + * Feature 10488: Use _ENV variables with built-in PHP webserver + * Feature 10705: Theming + * Feature 10898: Winter theme + + Bugfixes + * Bug 9685: Deprecate Module::registerHook() in favor of Hook::provideHook() + * Bug 9957: Sort hosts and services by last state change + * Bug 10123: CSS loading may fail w/ mkdir(): File exists in FileCache.php + * Bug 10126: setup config directory --config should use mkdir -p instead of mkdir() + * Bug 10166: library/vendor/HTMLPurifier tree is incorrectly unpacked + * Bug 10170: Link to service downtimes from multiple selected services includes host downtimes aswell + * Bug 10338: Debian: Failed to open stream HTMLPurifier/HTMLPurifier.php + * Bug 10603: Line breaks are not respected in acknowledgements, comments and downtimes + * Bug 10658: SUSE packages have the wrong dependencies + * Bug 10659: LDAP group members are shown with their DN and membership registration does not work + * Bug 10670: State not highlighted in plugin output + * Bug 10671: Auto-focus the username field on the login page + * Bug 10683: lib/CLI command web serve: rename variable basedir to something meaningful + * Bug 10702: Host- and Service-Actions configured in Web 2 do not resolve any macros + * Bug 10749: XHR application-state requests pollute the URL if not authenticated + * Bug 10771: Login shows "Anmelden........" upon login with the german locale + * Bug 10781: LoggingConfigForm.php complains about whitespace but checks with /^[^\W]+$/ + * Bug 10790: "Problems - Service Grid" does not work with host names that contain only digits + * Bug 10884: Tabs MUST throw an exception when activating an inexistant tab + * Bug 10886: "impacted" container is no longer fading out + * Bug 10892: Wrong mask for FileCache's temp directory + +- changes from 2.1.0 + + Features + * Feature 10613: Extend and simplify Hook api + + Bugfixes + * Bug 8713: Invalid filter "host_name=*(test)*", unexpected ) at pos 17 + * Bug 8999: Navigation and search bar is not available using a small width + * Bug 10229: Dashboard requests do not refresh the session + * Bug 10268: Unhandled services in the hosts overview list don't stand out + * Bug 10287: Redirect after login no longer working + * Bug 10288: The order for the limit links is incorrect + * Bug 10292: Hovered links in hover menu are unreadable + * Bug 10293: Hover menu is missing it's arrow for menu entries providing badges + * Bug 10295: Reset static line-height on body + * Bug 10296: Scrolling to the bottom of the page does not load more events + * Bug 10299: Badges are overridden by menu text + * Bug 10301: Format helpers like timeSince are polluted with text-small + * Bug 10303: Zooming in, or having another layout destroys the hover menu + * Bug 10304: Cannot access a host's customvars for service actions + * Bug 10305: Hover menu arrow color no longer fits background color + * Bug 10316: Not all Servicegroups / Hostgroups are shown + * Bug 10317: Event history style broken + * Bug 10319: Recursive sharing navigation items doesn't work. + * Bug 10321: Module iframe doesn't show website with parameters as a single column + * Bug 10328: ZendFramework packages missing for SLES12 + * Bug 10359: Charset option not passed thru PDO adapter + * Bug 10364: PostgreSQL queries apply LOWER() on selected columns + * Bug 10367: Broken user- and group-management + * Bug 10389: Host overview: vsprintf(): Too few arguments + * Bug 10402: LdapUserGroupBackend: user_base_dn not used from UserBackend + * Bug 10419: Swapped icon image order in service header + * Bug 10490: Unhandled service counter in the hosts overview shows incorrect values + * Bug 10533: Form notifications of type information are green + * Bug 10567: Member user name used for basedn when querying usergroup members + * Bug 10597: Empty PDO charset option is invalid + * Bug 10614: Class loader: hardcode module and Zend prefixes + * Bug 10623: Acknowledging multiple selected objects erroneous + +- add set_permission and verify_permissions in spec +- add permissions to /etc/permissions.d +- fix some rpmlint-warnings +- add rpmlintrc +- remove if statements for deprecated suseversion +- comment out requires for not existing packages zend-db-adapter-pdo-mysql, + zend-db-adapter-pdo-pgsql + +------------------------------------------------------------------- +Sat Oct 31 21:59:11 UTC 2015 - lars@linux-schulserver.de + +- enable env, php5 and rewrite in apache on new installations + +------------------------------------------------------------------- +Thu Oct 15 22:01:02 UTC 2015 - lars@linux-schulserver.de + +- initial version 2.0.0, based on upstream spec file diff --git a/icingaweb2.spec b/icingaweb2.spec new file mode 100644 index 0000000..7a66098 --- /dev/null +++ b/icingaweb2.spec @@ -0,0 +1,204 @@ +# +# spec file for package icingaweb2 +# +# Copyright (c) 2025 SUSE LLC and contributors +# +# All modifications and additions to the file contributed by third parties +# remain the property of their copyright owners, unless otherwise agreed +# upon. The license for this file, and modifications and additions to the +# file, is the same license as for the pristine package itself (unless the +# license for the pristine package is not an Open Source License, in which +# case the license is the MIT License). An "Open Source License" is a +# license that conforms to the Open Source Definition (Version 1.9) +# published by the Open Source Initiative. + +# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# + + +%define php_major_version 8 +Name: icingaweb2 +Version: 2.12.6 +Release: 0 +Summary: Icinga Web +License: GPL-2.0-or-later +Group: System/Monitoring +URL: https://icinga.com +Source0: https://github.com/Icinga/icingaweb2/archive/v%{version}/%{name}-%{version}.tar.gz +Source1: icingaweb2-additions.tar.gz +Source10: %{name}-php-fpm.conf +Source90: README.SUSE +Source99: %{name}-rpmlintrc +BuildRequires: apache2 +BuildRequires: nagios-rpm-macros +Requires: apache2 +Requires: icinga-l10n >= 1.1.0 +Requires: icingacli = %{version} +Requires: icingaweb2-common = %{version} +Requires: php-icinga = %{version} +Requires: (mod_php_any or php-fpm) +Provides: group(%icinga_command_group) +Recommends: icingaweb2-module-pdfexport >= 0.10 +BuildArch: noarch + +%description +Lightweight and extensible web interface to tackle your monitoring challenge. + +%package common +Summary: Common files for Icinga Web and the Icinga CLI +PreReq: permissions +Requires(pre): shadow +Provides: group(%icinga_webgroup) + +%description common +Manages common files for Icinga Web and the Icinga CLI. + +%package -n icingacli +Summary: Icinga CLI +Requires: bash-completion +Requires: icinga-l10n >= 1.1.0 +Requires: icingaweb2-common = %{version} +Requires: php-cli +Requires: php-icinga = %{version} + +%description -n icingacli +Icinga command line interface. + +%package php-fpm +Summary: PHP FPM configuration for %{name} +Group: Productivity/Networking/Web/Utilities +BuildRequires: php%{php_major_version}-fpm +Requires: %{name} = %{version} +%requires_eq php%{php_major_version}-fpm + +%description php-fpm +This package contains the PHP FPM configuration file to run %{name} with php-fpm. + +%package -n php-icinga +Summary: Icinga Web PHP library +Group: Development/Libraries/Other +Requires: icinga-php-library >= 0.13.2 +Requires: icinga-php-thirdparty >= 0.12.0 +Requires: php-curl +Requires: php-dom +Requires: php-fileinfo +Requires: php-gd +Requires: php-gettext +Requires: php-intl +Requires: php-json +Requires: php-ldap +Requires: php-mbstring +Requires: php-openssl +Requires: php-pdo +Requires: php-pdo_mysql +Requires: php-pdo_pgsql +Requires: php-posix +Requires: php-xml +Obsoletes: php-Icinga < %{version} +Provides: php-Icinga = %{version} +Obsoletes: icingaweb2-vendor-HTMLPurifier < %{version} +Provides: icingaweb2-vendor-HTMLPurifier = %{version} +Obsoletes: icingaweb2-vendor-JShrink < %{version} +Provides: icingaweb2-vendor-JShrink = %{version} +Obsoletes: icingaweb2-vendor-Parsedown < %{version} +Provides: icingaweb2-vendor-Parsedown = %{version} +Obsoletes: icingaweb2-vendor-dompdf < %{version} +Provides: icingaweb2-vendor-dompdf = %{version} +Obsoletes: icingaweb2-vendor-lessphp < %{version} +Provides: icingaweb2-vendor-lessphp = %{version} +Obsoletes: icingaweb2-vendor-zf1 < %{version} +Provides: icingaweb2-vendor-zf1 = %{version} + +%description -n php-icinga +Icinga Web PHP and vendor libraries. + +%prep +%autosetup -a1 + +%build + +%install +install -d %{buildroot}%{_datadir}/%{name} +cp -pr application doc library modules public schema %{buildroot}%{_datadir}/%{name} +install -dm 0770 %{buildroot}%{_sysconfdir}/%{name} +install -dm 2770 %{buildroot}%{_sysconfdir}/%{name}/enabledModules +install -dm 0770 %{buildroot}%{_sysconfdir}/%{name}/modules +install -Dpm 0644 etc/bash_completion.d/icingacli %{buildroot}%{_datadir}/bash-completion/completions/icingacli +cp -p additions/index.php %{buildroot}%{_datadir}/%{name}/public +install -d %{buildroot}%{_datadir}/php +mv %{buildroot}%{_datadir}/%{name}/library/Icinga %{buildroot}%{_datadir}/php +install -dm 770 %{buildroot}%{_localstatedir}/cache/%{name} %{buildroot}%{_localstatedir}/lib/%{name} +install -dm 775 %{buildroot}%{_localstatedir}/log/%{name} +install -Dpm 0644 additions/icingaweb2.conf %{buildroot}%{_sysconfdir}/apache2/conf.d/icingaweb2.conf +install -Dpm 0755 additions/icingacli %{buildroot}%{_bindir}/icingacli +# fpm +mkdir -p %{buildroot}%{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d +cp -avL %{SOURCE10} %{buildroot}%{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d/%{name}.conf + +%pre +getent group %icinga_command_group >/dev/null || groupadd -r %icinga_command_group +usermod -a -G %icinga_command_group,%icinga_webgroup %icinga_command_user + +%pre common +getent group %icinga_webgroup >/dev/null || groupadd -r %icinga_webgroup + +%verifyscript common +# TODO: Maybe the others are needed after all? +#%%verify_permissions -e %%{_sysconfdir}/%%{name} +%verify_permissions -e %{_sysconfdir}/%{name}/enabledModules +%verify_permissions -e %{_sysconfdir}/%{name}/modules +#%%verify_permissions -e %%{_localstatedir}/cache/%%{name} +#%%verify_permissions -e %%{_localstatedir}/lib/%%{name} +#%%verify_permissions -e %%{_localstatedir}/log/%%{name} + +%post common +# TODO: Maybe the others are needed after all? +#%%set_permissions %%{_sysconfdir}/%%{name} +%set_permissions %{_sysconfdir}/%{name}/enabledModules +%set_permissions %{_sysconfdir}/%{name}/modules +#%%set_permissions %%{_localstatedir}/cache/%%{name} +#%%set_permissions %%{_localstatedir}/lib/%%{name} +#%%set_permissions %%{_localstatedir}/log/%%{name} + +%files +%doc CHANGELOG.md +%doc README.md +%docdir %{_datadir}/%{name}/doc +%license LICENSE +%dir %{_datadir}/%{name} +%dir %{_datadir}/%{name}/application +%{_datadir}/%{name}/application/controllers +%{_datadir}/%{name}/application/fonts +%{_datadir}/%{name}/application/forms +%{_datadir}/%{name}/application/layouts +%{_datadir}/%{name}/application/views +%{_datadir}/%{name}/application/VERSION +%{_datadir}/%{name}/doc +%{_datadir}/%{name}/modules +%{_datadir}/%{name}/public +%{_datadir}/%{name}/schema +%config(noreplace) %{_sysconfdir}/apache2/conf.d/icingaweb2.conf + +%files common +%attr(0770, root, %icinga_webgroup) %dir %{_localstatedir}/cache/%{name} +%attr(0775, root, %icinga_webgroup) %dir %{_localstatedir}/log/%{name} +%attr(0770, root, %icinga_webgroup) %dir %{_localstatedir}/lib/%{name} +%attr(0770, root, %icinga_webgroup) %config(noreplace) %dir %{_sysconfdir}/%{name} +%attr(0770, root, %icinga_webgroup) %config(noreplace) %dir %{_sysconfdir}/%{name}/modules +%verify(not mode caps) %attr(2770,root,%icinga_webgroup) %{_sysconfdir}/%{name}/enabledModules +%attr(2770, root, %icinga_webgroup) %dir %{_sysconfdir}/%{name}/enabledModules + +%files -n icingacli +%license LICENSE +%{_datadir}/%{name}/application/clicommands +%{_datadir}/bash-completion/completions/icingacli +%{_bindir}/icingacli + +%files php-fpm +%config(noreplace) %{_sysconfdir}/php%{php_major_version}/fpm/php-fpm.d/%{name}.conf + +%files -n php-icinga +%license LICENSE +%{_datadir}/php/Icinga + +%changelog -- 2.51.1