Skip to content

OHRM5X-2609: Fix general defects #1909

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 11 commits into from
Oct 23, 2025
Merged

OHRM5X-2609: Fix general defects #1909

merged 11 commits into from
Oct 23, 2025

Conversation

@devishke-orange
Copy link
Contributor

Fixes for

  • OHRM5X-2610
  • OHRM5X-2611
  • ORHM5X-2612
  • OHRM5X-2613 (Partially complete)

@devishke-orange
OHRM5X-2610 fix
461a79e 
- validate emails in ResetPasswordService.php
- sanitize user names in ResetPasswordService.php
- add new page for email failures
- route to new page in RequestResetPasswordController.php
@devishke-orange
OHRM5X-2611 fix
1e2d4f1 
- get resetCode as a hidden input
- use existing validation of reset code to check for modified usernames
@devishke-orange
OHRM5X-2612 fix
b48878a 
- add isEntityAccessible check into attachment controller
@devishke-orange
OHRM5X-2613 fix
b92f066 
- add user active check to auth subscriber and logout if not
@devishke-orange devishke-orange marked this pull request as draft October 21, 2025 14:57
RajithaKumara
RajithaKumara requested changes Oct 21, 2025
View reviewed changes
@devishke-orange
OHRM5X-2613 fix
83fa567 
- add checks for terminated employee
@devishke-orange
move 5.7.1 migrations to 5.8
5f152e8
@devishke-orange
Update ControllerTrait.php forward to use Symfony Response type to pr…
8086923 
…event conflict with new logout logic
@devishke-orange
OHRM5X-2613 fix
e461541 
- store auth user last modified as session variable
- log out user if session last modified differs from db last modified
- update UpdatePasswordAPI to set last modified
- route on update password screen to trigger session expiry
- add "Session Expiry" lang string
@devishke-orange
OHRM5X-2610 fix
3c2dc93 
- add work email validation to FE and API
@devishke-orange
OHRM5X-2610 fix
1d60b62 
- validate email in email service
@devishke-orange
update failing tests
cf8f098
@devishke-orange devishke-orange marked this pull request as ready for review October 23, 2025 00:23
@RajithaKumara RajithaKumara changed the title Fixes OHRM5X-2609: Fix general defects Oct 23, 2025
@RajithaKumara RajithaKumara merged commit 1da6720 into orangehrm:5.8 Oct 23, 2025
28 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@RajithaKumara RajithaKumara RajithaKumara approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@devishke-orange @RajithaKumara