Newer
Older
osTicket v1.12.5
================
### Performance and Security
* Hotfix: File data callback (d3e643d)
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
osTicket v1.12.4
================
### Enhancements
* issue: Spaces In Username (7c8f557)
* i18n: KnowledgeBase JS (bce8296)
* i18n: KnowledgeBase Category (5646e7c)
* i18n: OpenSSL Error (af6f0e9)
* Message Variable - %{message} (315c4e7)
* Datatimepicker: Time format (f0fccbc)
### Improvements
* Highlight tab with error(s) (b81b703)
* format: Clickable URLs (4f7569d)
* Queue Pages Default (dff8bc1, 5105250)
* Add Time boundaries to Between date range (cbc89b3, 31c97cf)
* Clear Overdue Flag on Due Date Change (8c76d70)
* db: System Time Zone (76087fc, d8adf85)
* Modify Reopen Assignment (d50ebbb)
* issue: Format File Name (bd427cd)
* issue: DB Error #1062 (27c925c)
* Issue: Edit Task Fields (05cbb75)
* issue: In-Reply-To Header (8849c19)
* orm: Refetch Failure (eb4bda8)
* issue: Delete Org Session Failure (bbd0c25)
* Feature: Mark as Answered permission option (2fcc664, 52aaa0b)
* issue: Umlauts In Subject (cccdb15)
* issue: Umlauts In Sender's Name (e3f42c3)
* Fix use of possibly uninitialised $_SERVER['HTTPS'] (8e9b150)
* issue: ACL Oopsie (4d774bc)
* issue: Revert fefed14 (c9be2e0)
### Performance and Security
* Arbitrary Method Invocation (4dfb77c)
* Auth: Authentication Token Bypass (a9834d8)
* mPDF: Remote Code Execution Vulnerability (6e039ab)
* issue: Attachment Filter (9f4fbc2)
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
osTicket v1.12.3
================
### Enhancements
* Datetime Formats (4709824)
* issue: Revert 453e815 (ddde34b)
* Revert "issue: Advanced Search Default Sorting" (d4befcd)
* feature: Expanded Print View (b2bd45f)
* i18n: Register Include (9b18dd6)
* Lint Fix (68f11e1)
* Update osTicket Requirements (a6a18ee)
* Update osTicket Requirements (27f1578)
* issue: Update Installer PHP Requirements (15d678b)
* issue: Update Outdated Links (25bf88f)
### Improvements
* issue: Mbstring Extension Requirement (5a96884)
* Instantiate StaffDeptAccess (390ec3e)
* issue: Complete Thread Var Padding (Outlook) (d96285f)
* Issue: Empty Due Date (30f3b55)
* issue: PHP 7.3 New Agent Set Password (1bcd0e2)
* European Date Format Issue (df7306f)
* issue: CSV Patch Adv. Search Error (6ea7526)
* Issue: Annul Closed Events (8029b1b)
* issue: Department Referral Email (26d2990)
* Date Range Period Timezone (0f06f85)
* Issue: Undefined Constant Warning (c2ca730)
* issue: Support Exchange Shared Mailbox Auth (ac9ea5b)
* Issue: Inline Ticket Assignment (b757ec4)
* issue: Dashboard No Help Error (ab0cdc6)
* Organization Update (1588344)
* issue: Advanced Search Default Sorting (dda483e)
* issue: Image Attachment View (eb1a4ea)
* issue: Reset Role Permissions (0c2cecb)
* issue: Error On QueueSort Config (1b1e742)
* Required Short Answer Field = '0' (c58916b)
* Fix Admin Alert (5f6bd42)
* issue: Set Staff Password On Creation (d9108b1)
* issue: THIS_VERSION Utilize MAJOR_VERSION (5b4c512)
* Issue: Reopen Assignment (e73e881)
osTicket v1.12.2
================
### Enhancements
* issue: v1.12 Git MAJOR_VERSION (3f80266)
### Improvements
* issue: README.md osTicket Logo (7121043)
* issue: README.md Image Size (8b90010)
* issue: DatetimeField Remove Unused Vars / Use parseDateTime() (d9aa91b)
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
osTicket v1.12.1
================
### Enhancements
* issue: Queue Sort Title No Validation Error (029b0f2)
* Issue: Tickets Visibility (60aa7b8)
* task: Implement edit of task thread (394ddee)
* Reformat Incorrect Reply-To Headers (e9dda94)
* DatetimeField: Add jquery-ui-timepicker-addon (dbff3b2)
* Add/Remove Collaborators Without Refresh (5a5044a)
### Improvements
* issue: API Unexpected Data Warnings (4f68eb9)
* Double semicolon removed (bacd836)
* Empty extra in list_items (1309a6c)
* Issue: Ticket Alerts vs Dept Recipients (581f1f9)
* issue: iFrame Single Quotes (4b59b4f)
* issue: PDF Squares Instead Of Text (69c5095)
* issue: Class Format Disposition Misspelling (1d3f1a3)
### Performance and Security
* Remove File Type Override (539d343)
* Validate integrity of uploads (eba6fb9)
* issue: Rogue Closing div Breaks HTML Thread Tree (3bb4c0a)
* xss: Install Form (c3ba5b7)
* security: CSV Formula Injection (9981848)
* security: HTML File Browser Execution (Windows: Firefox/IE) (33ed106)
osTicket v1.10.7
================
### Enhancements
* Lint Fixes (8c878db)
* cli: Package Better Wording (bf20bdd)
### Improvements
* queues: Fix compatibility issues with newer jQuery (c54372f)
* FAQ Issues (ce3d69a)
* cli: Package No File Permissions (25e6c6e)
* oops: .eml/.msg Missing Not Operator (ce8aadf)
* issue: Retained Deleted ListItem Errors (a3297a2)
* issue: Account Registration Throws Errors (a720507)
* issue: ISO-8859-8-i Charset Issues (4da0324)
* issue: Search Reindexing Thread Entries (bbf1010)
* issue: is_formula Dotall Mode (992e904)
### Performance and Security
* Remove File Type Override (539d343)
* Validate integrity of uploads (eba6fb9)
* issue: Rogue Closing div Breaks HTML Thread Tree (3bb4c0a)
* xss: Install Form (c3ba5b7)
* security: CSV Formula Injection (9981848)
* security: HTML File Browser Execution (Windows: Firefox/IE) (33ed106)
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
osTicket v1.12
==============
### Enhancements
* issue: Upgrader Wrong Guide Link (#4739)
* iframe: Allow Multiple iFrame Domains (#4781)
* variable: Complete Thread ASC or DESC (#4737)
* issue: Strip Emoticons (#4523)
* feature: ACL (Access Control List) (#4841)
### Improvements
* issue: Maxfilesize Comma Crash (#4340)
* issue: System Ban List (#4706)
* queues: Fix compatibility issues with newer jQuery (#4698)
* filedrop: Fix file drag and drop (#4719)
* issue: PHP 7.2 Plugin Delete (#4722)
* issue: Local Avatar Annotation (#4721)
* Selected Navigation Item (#4724)
* Issue: Attachments on Information Fields (#4730)
* issue: No Save Button On Quicknotes (#4706)
* Issue: Duplicate Tickets in Closed Queue (#4736)
* issue: APC CLI (#4731)
* users: Fix seaching of users (#4741)
* issue: Custom Column Org Link (#4755)
* issue: Internal Note Ignored (#4745)
* issue: PHP 7.2 Ticket Status (#4758)
* issue: Canned Response Variables (#4759)
* issue: FAQ Search Results (#4771)
* issue: FAQ Return Errors (#4772)
* Queue Columns (#4785)
* issue: Duplicate Form Titles (#4788)
* Issue: Exporting Tickets (#4790)
* issue: Organizations Users Sort (#4806)
* issue: Multilingual FAQ Category w/ Parent (#4812)
* issue: Task Print PDF (#4814)
* Issue: MPDF Export PHP < 7.0 (#4815)
* Quick Filter Fixes: (#4728)
* Assignment Restriction Issue (#4744)
* Issue: Saving Checkbox Values (#4798)
* Issue: Choosing Fields to Export (#4797)
* oops: Thread Variable Fatal Error (#4820)
* oops: Emojis Strip Korean (#4823)
* issue: iFrame On Install (#4824)
* Issue: Ticket Export Headers (#4796)
* issue: Organization Ticket Export No Filename (#4825)
* MPDF Issues (#4827)
* issue: sendAccessLink On NULL (#4828)
* issue: sendAccessLink On NULL v1.11 (#4829)
* Update README.md (eccc57a, e5f4180)
* issue: iFrame Single Quotes (#4844)
* issue: Choice Validation Accept Punctuation (#4847)
* issue: ACL Move To Inc Files (#4848)
* Issues since v1.11 release (#4850)
* PJAX: Increase default timeout (#4855)
* Mime Decode - Encoded char (#4851)
* MPDF Tasks (#4856)
* issue: .eml/.msg Attachments (#4857)
* issue: Task EstDueDate (#4862)
* Bug fixes and enhancements for v1.11 (#4863)
* Mailer: Allow for ability to pass -f option as from_address (#4864)
* Ticket Link: Always return a link (#4865)
* Minor Fixes (e628373)
### Performance and Security
* xss: XSS To LFI Vulnerability (#4869)
* jquery: Update Again (#4858)
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
osTicket v1.10.6
================
### Enhancements
* issue: Upgrader Wrong Guide Link (#4739)
* iframe: Allow Multiple iFrame Domains (#4781)
* issue: Strip Emoticons (#4523)
### Improvements
* issue: Maxfilesize Comma Crash (#4340)
* issue: No Save Button On Quicknotes (#4706)
* issue: PHP 7.2 Ticket Status (#4758)
* issue: Canned Response Variables (#4759)
* issue: FAQ Search Results (#4771)
* issue: FAQ Return Errors (#4772)
* issue: Duplicate Form Titles (#4788)
* issue: Organizations Users Sort (#4806)
* oops: Emojis Strip Korean (#4823)
* issue: iFrame On Install (#4824)
* issue: sendAccessLink On NULL (#4828)
* Update README.md (eccc57a, e5f4180)
* issue: iFrame Single Quotes (#4844)
* issue: .eml/.msg Attachments (#4857)
### Performance and Security
* xss: XSS To LFI Vulnerability (#4869)
* jquery: Update Again (#4858)
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
osTicket 1.11
=============
## Major New Features
* Release Ticket Assignment (d354e095)
* Require Help Topic To Close Ticket (#4400)
* Disable Collaborators On Reply (#4420)
* Complete Thread Variable (#4613)
* Public Mark As Answered/Unanswered (#4612)
###Enhancements
* Canned Response Select2 (#4311)
* filters: Move to the ORM (3c1bc3d9)
* oops: New sessions require non-null data (0d58a28a)
* issue: IE White Screen Of Death (#4346)
* Recipients Icon View Email Recipients for Users (8c707b5d)
* Collaborator Fixes: (a4de3514)
* Collaborator Thread Event for Web Portal: (0b34753c)
* Collaborator Tickets Visibility Fix: (98dc5d9b)
* thread: getId On Non-Object (e3b333ed)
* Email Recipients Revisited Corrections (731c9fe9)
* Ticket-View Collaborator Collapsible Fix: (7be98ee7)
* mailer: EmailAddress Object as Array (#4368)
* collab: @localhost Mailer Error (#4380)
* SavedSearch Fixup (eadccc2a)
* Help Topic Inline Save Fix: (00a3be21)
* Email Name Format: (#4396, #4500)
* issue: Saved Searches Flags (#4395)
* queue: Improve queries necessary for rendering (#4342)
* status: Allow Reopen (#4411)
* Agent Default Queue: (#4412)
* Referral Assignment Issue: (#4414)
* Team Referral Check (#4415)
* Implement 'Select Active Collaborators': (#4420)
* Upgrader: Old search criteria (#4421)
* Advanced Search: TicketStatus / Status Name (#4423)
* Search All Tickets Setting (#4424)
* queues: Column Conditions Overwrite (#4445)
* queues: Row Conditions (#4444)
* issue: Multiple File Display (#4427)
* Staff Profile Updates: (#4462)
* Charset: Add generic transcode php_user_filter (#4469)
* issue: Image CID Attributes (#4477)
* Filter Action Saving Fix: (#4475)
* issue: Session form-data Files (#4482)
* issue: Default Help Topic Issue Summary (#4484)
* Implement Referral Internal Notes (#4486)
* issue: Existing User Registration (#4488)
* Adjust Filter Saving (49edbb3e)
* oops: Selection Search Bug (#4495)
* Filter Action Send an Email Issue (#4502)
* Optimize Upgrade: Remove ThreadEvent 'state' Enum (ebca2f9a)
* Creating Tickets with Attachments (47920c49)
* issue: Duplicate Personal Queues (#4503)
* issue: Newly Added Queues (#4504)
* Help Topic: Ignore invalid help topics (d93bb51b)
* footer: htmlchars company name (f6687f0f)
* Thread Entry: Chucked body (aff9bcb6)
* Filters: Cleanup filter actions on delete (6372b9c)
* orm: Add route to merge InstrumentedList (4a793a9)
* Search: Add duedate to base fields (b8bdd27)
* DateTimeFilter: Support empty value (95856cd)
* Export: Make Export Fast Again (#4479)
* DatetimeField: Format (8623ed60)
* Oops: Creating Tickets with Attachments (#4508)
* Column Annotation (2f7e3a01)
* Add NumericField (af829e82)
* Add Queue Columns Annotation as Fields. (aa0924a8)
* Retain Help Topics for Emails (#4512)
* export: Field Display (8adbd37d)
* Filter Action Validation Fixes (#4513)
* Advanced Search Column Conditions (#4514)
* Update Thread Events in Batches (bea99ae3)
* Update Fresh Install Process (fce25fbc)
* View All Tickets for User (#4528)
* Ticket Sources (#4534)
* Add period to DateTimeField (#4535)
* Form Attachment Issues (#4539)
* Attachment Names Issue (#4540)
* File Disposition (0c6e9acc)
* Primary Queues Buckets (#4538)
* Saving Changes to Filters (5f5951d2)
* Event Migration Optimization (#4561)
* Add new API headers to whitelist (#4563)
* upgrade: Actually re-fetch the config from database (#4564)
* issue: Export Event State Error (#4569)
* issue: Delete User Error (#4570)
* Dashboard Statistics Issue (#4574, #4585)
* issue: ticket_link Fatal Error (#4575)
* Queue Counts (#4572)
* issue: Queue sort_id (#4577)
* FileUploadField Validation (#4581)
* Status Column: Fix display and sorting (#4582)
* queue: Top-Level Ticket Counts (#4580)
* Deleting the Default Queue (#4576)
* issue: Email Default Dept (#4588)
* issue: create_date Variable (#4589)
* issue: FAQ/Page Attachments (#4595)
* Forms: Field Permissions (#4593)
* Field: Help Topic Forms (#4601)
* Task Collaborators (#4640)
* Issue: Edit Export Column Heading (#4649)
* Clarify User Import Instructions (#4651)
* Issue: Duplicate Search Results (#4630)
* Issue: DynamicFormEntry render (26ebcae0)
* Issue: Filters (#4655)
* issue: Task Response With Collaborators (#4661)
* issue: Scrollable Quickfilters (#4663)
* profile: Reply Redirect (#4656)
* Oops: Modify 0 in Short Answer Field Fix (#4670)
* Issue: Mass Assign (#4671)
* issue: SubQueues Hide PersonalQueues (#4682)
* issue: New Ticket Field Permissions (#4683)
* issue: Remove Referral Borked (#4684)
* Fix crashes compiling language packs on PHP 7 (#4688)
###Performance and Security
* PHP v5.6-v7.2 Support (#4680)
* Latest jQuery Upgrade (#4672)
* Update To Latest mPDF (460b445)
* Create Ticket or Task from Thread Entry
* Custom Columns/Custom Queues
* Inline Edit
* Ticket Referral
* CC/BCC
* Export Agent CSV
* Department Access CSV
* Archive Help Topics/Departments
* Nested Knowledgebase Categories
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
* Fix Custom Department Field (#3976)
* Remove Future Search/Filter Criteria if Invalid
* Dashboard Statistics
* Fix Vimeo iFrames
* Fix randNumber()
* Section Break Hint
* List & Choice Searching (#3703, #3493, #2625)
* Adds osTicket Favicons (#4112)
* Fix Most Redactor Issues (#3849)
* Send Login Errors Still Sends (#4073)
* Private FAQs In Sidebar Search
* User Password Reset (#4030)
* Disabled & Private Help Topic (#3538)
* Helpdesk Status Help Tip
* Local Names In Validation Errors
* User Registration Form (#4043)
* Organization User List Pages Link (#4116)
* Ticket Edit Internal Note (#4028)
* Disable Canned Responses On New Ticket (#3971)
* Canned Response Margin
* Ticket Preview Custom Fields
* Help Topic SLA (#3979)
* Fix Agent Identity Masking (#2955, #3524)
* Force Keys For Choice Field Options (#4071)
* Check Missing Required Fields
* Task Action Button Styling
* Add Fullscreen To Embedded Videos
* Fix Serbian Flag Icon (#3952)
* Optimize Lock Table
* Fix Outdated Alerts Link (#3935)
* Fix Default Dept. Private Error (#3934)
* Mailto TLD Length (#4063)
* Remove Primary Contacts (#3903)
* Fix Reset Button(s) (#3670)
* Newsletter Link
* Offline Page Images (#3869)
* User Login Page Translation (#3860)
* Translate Special Characters (#3842)
* Custom Form Deletion (#3542, #4059)
* Client Side Long FAQ Title (#3380)
* Client FAQ Last Updated Time (#3475)
* Email Banlist Sorting (#3452)
* Fix New Ticket Cancel Button (#2624, #2881)
* SQL Error Unknown column 'relevance' (#2655)
* Fixes issue with last_update ticket variable
* Ticket Notice Alert
* Fix CSRF fail + shake effect (#3928, #3546)
* Issue/ticket preview collabs
* Allowing translation of copyrights in footers
* User/Organization are not translated (#3650)
* Fix DatePicker on client side (#3625, #3817, #3804, 0fbc09a)
* Add Custom Forms to Ticket Filter Data
* Fix for LDAP/AD auth plugin (#4198, #3460, #3544, #3549)
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
osTicket v1.10.5
================
### Enhancements
* issue: Translation Flags Not Clickable (#4687)
* issue: Hide Task Loading Overlay (#4660)
* Issue: Tasks Within Tickets (#4653)
* issue: Dashboard Export Period (#4650)
* Improve the Staff login (#4629)
* oops: Remove DST From User Update (#4599)
* issue: Dupe Page Requests Fix (#4568)
* change old wiki urls to new doc urls (#4517)
* oops: Class GenericAttachment Not Found (#4481)
* issue: Duplicate Page Requests (#4472)
* forms: Render Instructions (#4494)
* accessibility: Screen Readable Actions (#4490)
* forms: Disabled By Help Topic Users (#4476)
* issue: CDATA Phone Contains (#4471)
* Tasks: Task visibility (#4467)
* issue: mPDF SetAutoFont RTL (#4466)
* issue: SelectionField nset (#4465)
* cron: Clean Expired Passwd Resets (#4451)
* sessions: Clear On Password Set/Reset (#4450)
* Make getFiles() return files (#4410)
* issue: mPDF Arabic Fonts (#4455)
* issue: Task Term Search (#4453)
* Relative Time Fixes: (#4452)
* perms: Alphabetize Role/Staff Permissions (#4439)
* issue: Ticket Filter Does Not Match Regex (#4443)
* Task Assigned Team Issue: (#4437)
* issue: FAQ & Canned Attachments Dropping (#4428)
* issue: Wrong Attachment Names (#4426, #4425)
* issue: Featured FAQs On Disable (#4416)
* issue: Deleted Field Thread Events (#4394)
* issue: Custom File Upload Dropping (#4406)
* issue: Priority Field Template Variable (#4390)
* issue: Client Side Thread Entries (#4383)
* Web Portal Fixes: (#4369)
* issue: jQuery Sortable Redactor (#4381)
* issue: CLI Deploy Missing Bootstrap Fix (#4363)
* issue: Client Side Column Sorting (#4362)
* issue: ChoiceField Template Variable (#4359)
* issue: TextThreadEntryBody Sanitize (#4355)
* issue: Installer Footer Copyright (#4351)
### Performance and Security
* Latest jQuery Upgrade (#4672)
osTicket v1.10.4
================
### Enhancements
* issue: Auto-Assignment Log (#4316)
* issue: Language Pack Locale Mismatch (#4326)
* issue: CLI Deploy Missing Bootstrap (#4332)
* issue: User Import No Email (#4330)
* issue: Ticket Lock On Disable (#4335)
### Performance and Security
* security: Fix Multiple XSS Vulnerabilities (#4331)
* department: Error Feedback (#4331)
osTicket v1.10.3
================
### Enhancements
* issue: Org. User Account Status (#4219)
* upgrader: Flush Cache On Upgrade (#4227)
* issue: Outlook _MailEndCompose (#4206)
* issue: Files - deleteOrphans() (#4253)
* issue: Fix imap_open Disable Authenticator (#4195)
* Check permissions before displaying Close Task (#4177)
### Performance and Security
* issue: Information Page Performance (#4275)
* issue: Prevent Click Jacking (#4266)
* orm: queryset: Fix circular reference error (#4247)
osTicket v1.10.2
================
### Performance and Security
* Prevent Account Takeover (be0133b)
* Prevent Agent Directory XSS (36651b9)
* Httponly Cookies (5b2dfce)
* File Upload Bypass (3eb1614)
* Only allow image attachments to be opened in the browser window (4c79ff8)
* Fix randNumber() (5b8b95a)
* CSRF in users.inc.php URL (285a292)
* AJAX Reflected XSS (e919d8a)
osTicket v1.10.1
================
### Enhancements
* Users: Support search by phone number
* i18n: Fix getPrimaryLanguage() on non-object (#3799)
* Add TimezoneField (#3786)
* Chunk long text body (#3757, 7b68c994)
* Spyc: convert hex strings to INTs under PHP 7 (#3621)
* forms: Proper Field Deletion
* Move orphaned tasks on department deletion to the default department (42e2c55a)
* List: Save List Item Abbreviation (8513f137)
* XSS: Encode html entities of advanced search title (#3919)
* XSS: Encode html entities of cached form data (#3960, bcd58e8)
* ORM: Addresses an SQL injection vulnerability in ORM lookup function (#3959, 1eaa6910)
osTicket v1.10
==============
### Enhancements
* Support Passive Email Threading (#3276)
* Account for agents name format setting when sorting agents (#3274, 5c548c7)
* Ticket Filters: Support Lookup By Name (#3274, ef9b743)
* Enable preloaded canned responses by default (#3274, 7267531)
### Improvements
* Task: Missing Description on create (#3274, 865db9)
* Save task due date on create (#3438)
* Show overlay on forms submit (#3426, #3391)
* upgrader: Fix crash on SequenceLoader (#3421)
* upgrader: Fix undefined js function when upgrading due to stale JS file (#3424)
* Use help topic as the subject line when issue summary is disabled (#3274, 74bdc02)
* PEAR: Turn off peer name verification by default (SMTP) (#3274, 4f68aeb)
* Cast orm objects to string when doing db_real_escape (#3274, e63ba58)
* Save department on __create (#3274, c664c93)
* Limit records to be indexed per cron run to 500 (#3274, 9174bab)
### Performance and Security
* Fix memory leak when applying 'Use Reply-To Email' ticket filter action (#3437, 84f085d)
* XSS: Sanitize and validate HTTP_X_FORWARDED_FOR header (#3439, b794c599)
* XSS: Encode html chars on help desk title/name (#3439, a57de770)
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
osTicket v1.10-rc.3
===================
### Enhancements
* Compatibility with PHP7 (#2828)
* Share tickets among organization members (#2405)
* Add lock semantics compatible with v1.9 (lock on view) (f826189)
* Staff login backdrop is customizable (#2468)
* Add advanced search for closed date, thread last message, thread last
response (#2444)
* Disable auto-claim by department (#2591)
* Properly flag SYSTEM thread postings (#2702)
* Add option to use dept/agent name on replies (#2700)
* Add a preference option to set the sort order of the thread entries in DESC
or ASC order (#2700)
* Thread dates can be shown as relative or absolute timestamps (#2700)
* Make Avatars optional on thread view (#2701)
* Make Authentication Tokens Optional (auto-login links in emails) (#2714)
* Use icons for ticket and task actions (#2760)
* role: Add option to use primary role on assignment (#2832)
### Improvements
* All improvements cited in v1.9.12 and v1.9.13
* Fix deleting of custom logos (#2433)
* Fix assignment setting on new tasks (#2452)
* Fix subject display of non-short-answer fields on ticket view and ticket
queue (#2463)
* Fix advanced search of ticket source (#2479)
* Forbid adding deleted forms via "Manage Forms" (#2483)
* Use horizontal tabs for translatable article content rather than the left
tabs in a table (#2484)
* Fix lock expiration time if PHP and database have different time zones
(#2533)
* Fix user class and ID matching from email headers (#2549)
* Fix emission of `Content-Language` header in client portal for multiple
system languages, thanks @t-oster (#2555)
* Fix deployment of fresh git repo or download on PHP 5.6 (#2571)
* Fix handling of abbreviated database timezones like `CDT` (#2570)
* Fix incorrect height display of avatars (#2580, #2609)
* Sort help topic names case insensitively, thanks @jdelhome3578 (#2530)
* Fix detection of looped emails (f2cac64)
* Fix crash in ticket preview (popout) if ticket has no thread (bd9e9c5)
* Fix javascript crash adding new ticket filter (d2af0eb)
* Fix crash if the `name` field of a user is a drop-down (ec0b2c5)
* Fix incorrect SQL query removing departments (cf6cd81)
* Properly fallback to database file storage if system is misconfigured (1580136)
* Fix crash handling fields with `__` in the name in the VisibilityConstraint
class (b3d09b6)
* Remove staff-dept records when removing an agent (ecf6931)
* Avoid crashing processing ORM records with NULL select_related models (#2589)
* Fix several full-text search related issues (#2588, #2603)
* Fix crash sending registration link for a guest user (#2552)
* Avoid showing lock icon for expired locks on ticket listing (#2617)
* Fix incorrect redirect from SSO authentication, thanks @kevinoconnor7
(#2641)
* Fix vertical overflow of uploaded image preview (#2616)
* Fix unnecessary dropping of CDATA table on MySQL 5.6 (#2638)
* Fix several issues on user directory ticket listing (#2626)
* Fix encoding of attachment filenames in emails (#2586)
* Fix warning rendering advanced search dialog, thanks @t-oster (#2594)
* Fix bounce message loop for message alert to a bad agent email address
(#2639)
* Make fulltext search optional on user lookup (#2657)
* Add the [claim] feature again (#2681)
* Fix agent's Signature & Timezone dropped on update (#2720)
* Fix crash in user CSV import (#2708)
* Fix crash in user ajax lookup (#2600)
* Send Reference and In-Reply-To headers only for thread items pertinent to
the receiving user (#2723)
* Properly clean HTML custom fields (#2736)
* Fix changing/saving properties on internal ticket statuses, with the
exception of the state (#2767)
* Fix CSV list import (#2738)
* Fix late redirect header for single ticket typeahead result (#2830)
* Add sortable column headers in the ticket and task queues (#2761)
* Fix several issues with the file CLI app (#2808)
* Fix config crash on install (#2827, #2844)
* Set due date based on user's timezone (#2812, #2981)
* Fix crash rendering some email addresses to string (#2844)
* Fix crash rendering thread with invalid timestamps (#2844)
* Log assignment note (comments), if any, when staff created ticket is
assigned (#2944)
* Change transient SLA, on transfer, if target department has a valid SLA
(#2944)
* Fix typo on task transfer modal dialog (#2944)
* Fix ticket source on ticket edit (#2944)
* Convert user time to database time when querying stats (#2944)
* Fix date picker clearing input on invalid date format (#2944)
* Show topic-specific thank-you page (#2915)
* Department manager can be excluded from the new ticket alert (#2974)
* Do not scrub iframe `@src` attribute (#2940)
### Performance and Security
* Use full-text search for quick-search typeahead boxes (#2479)
* Speed up a few slow and noisy queries (5c68eb3, 340fee7, 208fcc3)
* Lower memory requirements processing attachments (#2491, #2492)
* Ensure agent still has access when reopening a ticket (#2768)
* Always perform validation server-side for ajax uploads (#2844)
* Protect access to files shown in the FileUpload field (#2618)
* Decode entities prior to HTML scrubbing (#2940)
### Known Issues
* Uploading multiple files simultaneous (via drag and drop) will cause some
files to be dropped
osTicket v1.10-rc.2
===================
### Enhancements
* Lazy locking system for ticket locking (#2325, #2351, 37cdf25, de92ec5,
37a0676)
* Add settings for avatars and local "Oscar's A-Team" avatars (#2334)
* Several UI tweaks (7436195, #2426)
* Add transfer and assign mass actions to tickets (#2375)
* Import agents from the command line (#2323)
* User select dialog can be opened after closing in new ticket by staff
(605c313)
* Deadband new message alert and autoresponse to once per five minutes per
user per thread (598dedc)
* [Add Rule] button to add many new rules at one to a ticket filter (c03279d)
### Improvements
* Fix several install and upgrade-related issues (fc10dcb, e1ca975, b709139,
abc8619, #2411, 832ea94, abb9a08, e3bb6c2, 8e373d4)
* Fix database timezone detection on Windows (#2297)
* Fix several tasks related issues (#2311, #2344, #2376, #2400, #2421, c3d48a9)
* Fix hiding of department-specific canned responses (#2315)
* Fix add and edit of ticket status list items (#2314)
* Fix incorrect definition of some ORM tables (#2324, 69839af)
* Fix crash rendering a closed ticket (#2328)
* Fix case-insensitive sorting of help topics (#2357)
* Fix several advanced search related issues (#2317, 3d4313f, ce3ceae,
b5e6d4e, 5a935ca)
* Fix incorrect SQL deleting a department (#2359)
* Fix incorrect array usage of department members for alerts (#2356)
* Add missing perm for view all agents' stats (#2358)
* Fix missing thread inline images from redactor image manager (be77da4)
* Fix updating configuration for file upload fields (2f4f9c1)
* Fix crash creating tickets with canned attachments (a156bba)
* Fix missing inline images in mailouts (84c9b54)
* Prefer submitted text over last-saved draft (46ab79b)
* Fix incorrect FAQ link in front-page sidebar (ea9dd5f)
* Fix missing assignee selection on new ticket by staff (7865eee)
* Fix issue details showing up on ticket edit (a183a98, 7fbd0f6)
* Fix inability to change SLA on some tickets (#2392)
* Fix auto-claim on new ticket by staff if a filter added a canned reply (c2ce2e9)
* Fix Dept::getMembersForAlerts() missing primary members (abc93efd)
* Fix inability to create tickets if missing the ASSIGN permission on all
depts (0c49e62)
* Fix inability as staff to reset a user's password (0006dd8)
* Render fields marked !visible and !editable, but required on the client
portal (7f55a0b)
* Fix sorting of help topics (a7cc49f, 08a32a4)
* Fix new message alert to a random staff member (d3685a9)
* Fix saving abbreviations on new list items (538087b)
* Fix parsing of some multi-part MIME messages (c57c22a)
* Fix numerous crashes
### Performance and Security
* Improve performance loading the ticket view (6bba226, 4b12d54)
* Improve performance loading queue statistics (0a89510, 6b76402)
* Dramatically improve full-text search performance (167287d)
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
## Major New Features
### Internationalization, Phase III

Phase III of the internationalization project is the next major advancement of
osTicket language support. The greatest improvement is that all
administratively customizable content. While this is a great last mile for many
multilingual support teams, we've also revisited the client interface main
pages as well as the knowledge base on both the client and staff panels.
* Elect primary and secondary languages
* Any language can be the primary, any number of languages can be secondary
* English-US can be disabled
* Order of secondary languages is sortable and controls flag order
* All content is translatable to secondary languages
* Help Topics
* Alphabetic sorting happens after translation
* SLA Plans
* Departments
* Custom Forms (and all configurations such as placeholders)
* Custom Lists
* Items
* Properties and configurations
* Site Pages
* FAQ Categories
* FAQ Articles
* Common attachments (available for all translations)
* Per-language attachments
* Content such as welcome emails and password-reset emails
* Olson timezones are used instead of GMT offset
* Auto-detect support for agent and client timezone
* Time and date formats can be automatic by locale preference now.
* Locale preference is the default
* Locale preference with forced 24-hour time is also an option
* Advanced format is also possible using the intl library and `sprintf` as a backup
* Formats including the day of the week are localized
* Chinese and Arabic formats using alternate day, month, and year digits and separators are now automatic.
* Client portal has HTML headers indicate search engine links to pages of other
languages, as well as the Content-Header HTTP header to indicate the intended
audience
* Spell check in text boxes, textareas and rich text editors should respect the
language of the content being edited
### Tasks

Tasks are sub-tickets which can be created and attached to tickets as well as
created separately. Tasks have their own assignees, department routing and
visibility, due date, and custom data. Tasks have their own threads and can
have a list of collaborators. All in all, tasks may very well be the greatest
advancement of osTicket since the advent of the ticket itself.
### New Advanced Search

The advanced search feature is rewritten to address several shortcomings of
the original feature as well as a host of new features including
* Search by any field, built-in or custom
* Save your searches
* Advanced search is shown as a new queue
* Current advanced search criteria is maintained between searches
* Sorting options are relevant to queue and preference remains after navigation between queues
## Minor New Features
### Thread editing

Thread items can now be edited. The original entries are preserved and are
accessible via a thread item's "History". Items can be resent with or without
editing them, and a signature selection is available when resending.
### Roles, and custom extended access

The group permissions component has been offloaded to a new component, named
"Roles". Roles allow for naming a set of permissions. Agents now have a
"Primary Role" which defines their access to global things like the user
directory and their access for their primary department. Each department
granted via "Groups" is allows to be linked to a distinct "Role". This allows
granting Read-Only access to some departments, for instance.
### Improved knowledge base interface

* "Featured" articles show on the front page
* Knowledge base search on front page
* Translatable content
* Locale-specific attachments
### Multiple forms and disable individual fields for Help Topics
Help Topic configuration has a new super feature. Multiple forms can now be
associated with each help topic, and the order the forms should appear for new
tickets and editing tickets is configurable. Previously, the custom forms were
always rendered above the "Ticket Details" form; but now it's completely
customizable. What's more is that individual fields **including the issue
details** can be disabled for any help topic.
### Department hierarchy
Departments are now nestable. All departments can have a parent department, and
the hierarchy is arbitrarily nestable. Access is cascaded so that access to a
parent department automatically extends access to all descendent departments.
### Image annotation

Images can be annotated to add simple shapes like ovals, boxes, arrows and
text. Annotates can be committed, and a new image is created from the
annotations; however, annotations can still be edited before the thread post is
submitted. Annotations are supported for both clients and agents, and the
images can be selected from the ticket thread, so images already posted can be
easily marked up.
### Variable context type-ahead

When editing content which uses variables, such as a thank-you page or an email
template, variable placeholders now use a type-ahead feature. This new pop out
significantly improves the connection between which variables are available in
which templates. It also allows for adding significantly to the variable
library without relying on exhaustive documentation to convey this information.
Some new variables include
* User lists, such as department members, team members, and collaborator lists
* Lists can be rendered as names, emails, or both
* Dates are format-able to time, short, full, and long
* Dates can be humanized to something like *in about an hour*
* Dates can be auto localized and formatted to the recipients locale and time
zone selection
* Attachments to thread items and custom fields can be attached via variable
(e.g. `%{message.files}`)
### Redesigned list management

The list management feature has a significant overhaul to accommodate larger
lists. It also provides a heads display of list item properties as well as AJAX
updates. CSV import and pagination have also been added as well as mass enable,
disable, and delete.
### Pluggable filter actions

Filter actions are now far more flexible allowing for more elaborate and
creative filter actions to be created. A new filter action has been added as an
example of future possibilities: send an email. The new feature allows for
ticket filter actions to be defined without modification to internal table
structures, and even allows actions to be created via plugins!
Actions are also sortable and performed in the order specified, which allows
doing something like sending an email before rejecting the ticket.
### Other Improvements
#### Custom Data
* Fields have more granular access configuration. View, edit, and requirement
can be enabled individually for both agents and end users
* Fields can be marked for required for closed. Therefore they can inhibit
closure of a ticket without a valid value.
#### Export
The agent's locale is considered when exporting CSV and semicolon separators
are used where necessary
#### User Interface
The subject line and many other text fields around the system are truncated by
the browser, which fixes early truncation for some language with long Unicode
byte stream, such as Chinese.
#### Improved lock system
The ticket lock system uses a code now which is rotated when updates to tickets
are submitted. This helps prevent unwanted extra posts to tickets. A new
annoying popup is displayed when viewing the ticket and the lock is about to
expire.
#### Draft system
The draft system has been rewritten to reduce the number of requests to the
backend and to reduce the dreaded "Unable to save draft" popup
#### ORM
The database query system is being redesigned to use an object relational
mapper (ORM) instead of SQL queries. This will eventually lead to fewer
database queries to use the system, cleaner code, and will allow the use of
database engines other than MySQL. The ORM was originally introduced in
osTicket v1.8.0, but has seen the greatest boost in capability in this release.
About 47% of the SQL queries are removed between v1.9.7 and v1.10
osTicket v1.9.12
================
### Improvements
* Fix missing search box adding user to organization (#2431)
* Fix incorrect update time on FAQ view in staff portal (194f890)
* Fix incorrect parsing of some multi-part MIME messages (fe62226)
* Fix auto-claim for new ticket by staff if a filter added a canned response
(eca531f)
* Fix malformed results on remote user search when adding users (#2335)
* Fix search by ticket number on client portal (#2294)
* Fix association of user email without a domain to an organization without
an email domain setting (#2293)
### Performance and Security
* Revert poor performing ticket stats query (#2318)
osTicket v1.9.11
================
*We skipped v1.9.10 to avoid confusion with v1.10 (the major release coming out at the same time)*
### Enhancements
* Log to syslog on php mail() error (#2128)
* Full path of help topics shown in filter management (3d98dff)
* Auto rebuild the search index if %_search table is dropped (#2250)
* New version available message in system information (0cca608)
### Improvements
* Fix appearance of ` <div>` in user names (*regression in v1.9.9*) (be2f138)
* Out-of-office notification does not clear closing agent (#2181)
* Fix check for departments limiting assignees to members only (#2143)
* Fix signal data pass by reference (#2195)
* Fix template variables not rendering in href attributes (#2223)
* Fix missing custom data for new users (#2203)
* Fix incorrect cli option expansion (#2199)
* Properly encode `To` header for php mail() sends (857dd22)
* Fix incorrect message body when fetching TNEF emails (0ec7cf6)
* Fix layout of some tables in PDF export (cef3dd3)
### Performance and Security
* Fix XSS issue on choices field type (#2271)
osTicket v1.9.9
===============
### Enhancements
* Properly balance stripped and invalid HTML (#2145)
* Add MANIFEST file to deployment process and retire duplicate code for packaging (#2052)
### Improvements
* Fix inability to configure LDAP and S3 plugins (*regression*) (59337b3)
* Fix incorrect whitespace in search indexed HTML content (#2111)
* Add support for invalid `multipart/relative` content type (aaf1b74)
* Force line breaks for very long HTML lines (56cc709)
### Performance and Security
* Fix slow query for ticket counts for large datasets (c4ace2d)
* Fix slow thread load query (thanks @torohill) (7b7e855)
osTicket v1.9.8.1
=================
### Enhancements
* Add option to disable email address verification
### Improvements
* Fix crash upgrading from osTicket v1.6
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
osTicket v1.9.8
===============
### Enhancements
* Update user information for existing users when importing CSV (#1993)
* Agent names are consistently formatted and sorted throughout the system (#1972)
* Memcache session backend support. (See `include/ost-sampleconfig.php`) (#2031)
* Email domain validation includes DNS record verification (#2042)
* Make ticket queue selection sticky (aa2dc85)
### Improvements
* Fix incorrect mapping of ISO charsets to ISO-8859-1, thanks @nerull7
* Fix unnecessary drop of ticket CDATA table because of update to deleted
field (#1932)
* Fix inability to create or update organization custom data (#1942)
* Fix inability to update some fields of user custom data (#1942)
* Fix filtering user custom data for email tickets (#1943)
* Fix missing email headers resulting in incorrectly threaded emails when
delivered (#1947)
* Cleanup file data when removing custom file uploads (#1942)
* Fix crash when exporting PDF and PHAR extension is not enabled
* Fix crash processing some TNEF documents (89f3ed7, #1956)
* Fix handling of GBK charset when gb2312 is advertised (#2000)
* Fix link to client ticket listing when logged in, thanks @neewy (#1952)
* Disambiguate staff and collaborators when processing a some emails (#1983)
* Fix several i18n phrase and layout issues (#1958, #1962, #2039)
* Improve detection of some bounce notices with alternative content (#1994)
* Fix image URL rewrite when pasting existing images, from a KB article for
instance (#1960)
* Preserve internal note formatting on new ticket by staff if HTML is
disabled (#2001)
* Touch organization `updated` timestamp on custom data update (#2007)
* Fix deployment on Windows® platforms, thanks @yadimon (#2033)
* Fix upgrade crash if retrying an old, failed upgrade from v1.6 (#1995)
* Fix corruption of some html content (9ae01bf)
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
osTicket v1.9.7
===============
### Enhancements
* Remote IP is logged for staff replies (#1846)
* Add option to require client login to view knowledge base (#1851)
* Internal activity alert, replacing the internal note alert, includes alerts
of responses made by other agents (#1865)
* Email system now uses LF instead of CRLF as the default (#1909)
* Mass actions for user directory (#1924)
* Unassign tickets on transfer if current assignee is not a member of the new
department and the department has "Restrict assignment to members" enabled
(#1923)
### Improvements
* Clear overdue flag when a ticket is closed, thanks @A-Lawrence (#1739)
* Clear attached file listing on client post (regression) (#1845)
* Delete ticket custom data on delete (#1840)
* Trim whitespace from filter match data on update (#1844)
* Fix dropping of custom data on API post (#1839)
* Fix advanced search on create date (#1848)
* Fix initial load and pagination of dashboard page (#1856)
* Fix incorrect internal/public category setting in drop down for new FAQ
(#1867)
* Add UTF-8 BOM to CSV export for correct Unicode detection (#1869)
* Fix not considering the setting for alert assigned on new message (#1850)
* Skip new activity notice if collaborator(s) included in email To or Cc
header (#1871)
* Fix inability to uncheck a custom data checkbox (#1866)
* Fix advanced search for unassigned tickets (#1857)
* Fix navigation warning if not using the lock feature (#1898)
* Fix detection of message of some bounce notices (#1914)
* Fix SQL alert with multiple Message-ID headers (#1920)
* Add a warning if attempting to configure archiving for POP accounts (#1921)
* Fix missing UTF-8 output encoding header for staff control panel (#1918)
* Fix z-index issue between popup previews and modal dialogs (#1919)
* Record imported file backend when importing files (f1e31ba)
### Performance and Security
* Fix XSS vulnerability in sequence management (88bedbd)
* Defer loading of thread email header information when loading ticket thread
(#1900)
1047
1048
1049
1050
1051
1052
1053
1054
1055
1056
1057
1058
1059
1060
1061
1062
1063
1064
1065
1066
1067
1068
1069
1070
1071
1072
1073
1074
1075
1076
1077
1078
1079
1080
1081
1082
osTicket v1.9.6
===============
### Enhancements
* New Message-Id system allowing for better threading in mail clients (#1549,
#1730)
* Fix forced session expiration after 24 hours (#1677)
* Staff panel logo is customizable (#1718)
* Priority fields have a selectable default (instead of system default) (#1732)
* Import/Export support for file contents via cli (#1661)
### Improvements
* Fix broken links in documentation, thanks @Chefkeks (#1675)
* Fix handling of some Redmond-specific character set encoding names (#1698)
* Include the users name in the "To" field of outbound email (#1549)
* Delete collaborators when deleting tickets (#1709)
* Fix regression preventing auto-responses for staff new tickets (#1712)
* Fix empty export if ticket details form has multiple priority fields (#1732)
* Fix filtering by list item properties in ticket filters (#1741)
* Fix missing icon for "add new filter", thanks @Chefkeks (#1735)
* Support Firefox v6 - v12 on the file drop widget (#1776)
* Show update errors on access templates (#1778)
* Allow empty staff login banner on update (#1778)
* Fix corruption of text thread bodies for third-party collaborator email
posts (#1794)
* Add some hidden template variables to pop out content (#1781)
* Fix missing validation for user name and email address (#1816, eb8858e)
* Turn off search indexing when complete, disable incorrectly implemented
work breaking, squelch error 1062 email from search backend (afa9692)
* Fix possible out of memory crash in custom forms (#1707, 0440111)
### Performance and Security
* Fix generation of random data on Windows® platforms (#1672)
* Fix possible DoS and brute force on login pages (#1727)
* Fix possible redirect away from HTTPS on client login page, thanks @ldrumm
(#1782)
osTicket v1.9.5.1
=================
### Improvements
* Fix file.php to serve files added to system before osTicket v1.9.1
* Fix file.php to serve files if client panel or system is offline
* Fix popover download of inline images
* Avoid de-duplicating zero-length files
* Send new message alert to team members if not assigned to an agent
* Fix import of users to organization not setting the organization
* Fix redactor toolbar showing over the date picker (#1450, thanks @Chefkeks)
### Performance and Security
* Fix XSS vulnerability in client language selection
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
osTicket v1.9.5
===============
### Enhancements
* Add support for organization vars in templates
(`%{ticket.user.organization...}`) (#1561)
* Canned responses feature can now be disabled (#1562)
* Drop link redirection through l.php (#1640)
* Use unified file download script (#1641). Links can now be shared with
external users and accessed without authenticating.
* Ticket filters support matching and banning based on the Reply-To user
information (#1645)
### Improvements
* Remove custom data when users are deleted (#1492)
* Fix matching of ticket number in subject (regression in v1.9.4) (#1486)
* Several minor translatable strings (#1441, #1489, #1560), thanks @Chefkeks
* Fix invalid UTF-8 chars PDF error for empty thread title (regression in
v1.9.4) (#1512)
* Consider auto response checkbox and department setting for new ticket by
staff (#1509)
* Fix PHP crash if `finfo` extension is missing (#1437)
* Fix export of choice field items (#1436)
* Properly handle alert and auto response flags from API (#1435), thanks
@stevepacker
* Fix current value of choice fields if set to boolean false (#1466)
* Do not reopen tickets for automated responses (#1529)
* Properly handle uppercase file extensions in file field configuration
(#1549)
* Fix release of ticket lock when navigating away from ticket view (#1552)
* Display FAQ article consistently on client portal (#1553)
* Avoid wrapping password reset URLs on text emails (#1558)
* Fix field requirement for clients when only required for agents (#1559)
* Fix language selection for new email template group (#1563)
* Fix incorrect status of new ticket if opened as `closed` and assigning to
an agent (#1565)
* Forbid disabling the only active administrator (#1569)
* Searching for tickets searches to midnight of the end date (#1572), thanks
@grintor
* Fix rejection of tickets by filter, even if a previous matching filter
would stop on match (#1644)
* Fix matching of `User / Email Address` in ticket filters (#1644)
* Properly HTML escape thread bodies when quoting (#1637)
* Use department email for agent alerts (#1555)
* Skip team assignment alert on new ticket if assigned to an agent (fddb3c7)
* Use custom form name as the page title when editing (#1646)
### Performance and Security
* Fix possible XSS vulnerability in sortable table view pages (#1639)
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
1189
1190
1191
1192
1193
1194
1195
1196
1197
1198
1199
1200
1201
1202
1203
1204
1205
1206
1207
1208
1209
1210
1211
1212
1213
osTicket v1.9.4
===============
### Major New Features
* New ticket states (resolved, archived, and deleted) (#1094, #1159)
* Custom ticket statuses (#1159)
* Custom ticket number formats (#1128)
* Full text search capabilities (*beta*)
* Multiselect for choice fields and custom list selections
* Phase II Multi-Lingual Support (User Interface) (see
http://i18n.osticket.com and http://jipt.i18n.osticket.com) (#1096)
* Active interface translations of 46 languages currently
* Popup help tip documentation in all languages
* Flags displayed on client portal for manual switch of UI language by
EndUsers
* Automatic detection of enduser and agent language preference as
advertised by the browser
* Improved PDF ticket printing support, including greater support for
eastern characters such as Thai, Korean, Chinese, and Japanese
* Proper support for searching, including breaking words for languages
which do not use word breaks, such as Japanese
* Proper user interface layout for right-to-left languages such as Hebrew,
Arabic, and Farsi
* Right-to-Left support for the HTML text editor, regardless of the viewing
user’s current language setting
* Proper handling of bidirectional text in PDF output and in the ticket
view
### Enhancements
* Plugins can have custom configurations (#1156)
* Upgrade to mPDF to v5.7.3 (#1356)
* Add support for PDF fonts in language packs (#1356)
* Advanced search improved to support multiple selections, custom status and flags
### Improvements
* Fix display of text thread entries with HTML characters (`<`) (#1360)
* Fix crash creating new ticket if organization custom data has a selection field (#1361)
* Fix footer disappearance on PJAX navigation (#1366)
* Fix User Directory not sortable by user status (#1375)
* Fix loss of enduser or agent priority selection on new ticket (#1365)
* Add validation error if setting EndUser username to an email address (#1368)
* Fix skipped validation of some fields (#1369) (*regression from rc4*)
* Fix detection of inline attachments from rich text inputs (#1357)
* Fix dropping attachments when updating canned responses (#1357)
* Fix PJAX navigation crash in some browsers (#1378)
* Fix searching for tickets in the client portal (#1379) (*regression from rc4*)
* Fix crash submitting new ticket as agent with validation errors (#1380)
* Fix display of unanswered tickets in open queue (#1384)
* Fix incorrect statistics on dashboard page (#1345)
* Fix sorting by ticket number if using sequential numbers
* Fix threading if HTML is enabled and QR is disabled (#1197)
* Export ticket `created` date (#1201)
* Fix duplicate email where a collaborator would receive a confirmation
for his own message (#1235)
* Fix multi-line display of checkbox descriptions (#1160)
* Fix API validation failure for custom list selections (#1238)
* Fix crash adding a new user with a selection field custom data
* Fix failed user identification from email headers if `References` header
is sorted differently be mail client (#1263)
* Fix deletion of inline images on pages if draft was not saved (#1288)
* Fix corruption of custom date time fields on client portal if using non
US date format (#1320)
* Fix corruption of email mailbox if improperly encoded as ISO-8859-1
without RFC 2047 charset hint (#1332)
* Fix occasional MySQL Commands OOS error from ORM (#1334)
### Performance and Security
* Fix possible XSS vulnerability in email template management (#1163)
osTicket v1.9.3
===============
### Enhancements
* Redactor link dialog has a few common links selectable (#1135)
### Improvements
* Fix missing `%{recipient}` variable used in canned reply (filters) (#1047)
* Fix `%{ticket.close_date}` variable in email message templates (#1090)
* Fix timezone offset used in time drop down (#1103)
* Fix premature session expiration (#1111)
* Correctly tag emails with source `email` (#1104)
* Correctly handle custom data for help topics (#1105)
* Fix validation and display issues for email mailboxes with system default priority and department (#1114)
* Fix crash when rendering custom list drop-downs with retired list items (#1113)
* Avoid system alert notices bouncing and creating tickets (#1115)
* Redactor no longer shortens URLs (#1135)
### Performance and Security
* Fix XSS vulnerability in user name (#1108, #1131)
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
1251
1252
1253
1254
1255
1256
1257
1258
1259
1260
1261
1262
1263
1264
1265
osTicket v1.9.2
===============
### Enhancements
* Help topics have super powers (#974)
* They can be arbitrarily nested
* They can be manually sorted
* Admins can select a system default help topic
* They can inherit the form from a parent
* Form data entered to custom forms is preserved when switching help topics
* Update to Redactor 9.2.4 (http://imperavi.com/redactor/log/)
* Using canned responses no longer requires [Append] click (#973)
* Guests can sign out (#1000)
* Filter by custom list item properties (#1024)
* Time selection is based on admin configured time format (#1036)
* (Optionally) clients can access tickets without clicking email link (#999)
* Introduction of signals for mail filter plugins (#952)
### Improvements
* Fix a few glitches on site page management (#986)
* Fix saving department alert recipients (#985)
* Fix assignment to account manager regardless of setting (#1013)
* Fix dialog boxes on some PJAX navigations (#1034)
* Help topics are properly sorted in FAQ management (#1035)
* Fix MySQL commands out-of-sync triggered by the ORM (#1012)
* Clients can follow email links from multiple tickets (#1001)
* Workaround for PHP variable corruption issue (#917, #969)
* All other improvements cited in v1.8.3
### Performance and Security
* Fix XSS vulnerability in phone number widget (#1025)
* Fix several XSS vulnerabilities in client and staff interfaces (#1024, #1025)
1266
1267
1268
1269
1270
1271
1272
1273
1274
1275
1276
1277
1278
1279
1280
1281
1282
1283
1284
1285
1286
1287
osTicket v1.8.4
===============
### Improvements
* Fix misleading and incorrect custom form management pages (#919)
* Fix linked external image tag corruption (#936)
* Fix multiple [Show Images] button for external images in client interface (e4b721c)
* Properly handle email address personal names with commas (#940)
* Organizations can define a website now (13312dd)
* Correctly handle email headers with leading tabs (RFC 2047) (#895, #953)
* Implement `%{ticket.user.x}` for email templates and canned responses (#966)
* Handle shameful `X-AMAZON-MAIL-RELAY-TYPE` invented by Amazon
* Issue summary field type must have associated data (#987)
* Fix `%{recipient.ticket_link}` for new message auto response (#989)
* Fix corruption of `%{company.name}` on new ticket notice (#1002)
* Fix signal data byref (#1037)
* Correctly handle email priority headers (#491)
* Fix mail header newline corruption with the Suhosin extension (#442)
### Performance and Security
* Fix XSS vulnerability in the phone number widget (#1025)
* Fix several XSS vulnerabilities (#1025)
osTicket v1.9.1
1290
1291
1292
1293
1294
1295
1296
1297
1298
1299
1300
1301
1302
1303
1304
1305
1306
1307
1308
1309
1310
1311
1312
### Enhancements
* [Draft Saved] box does not show if nothing entered yet (be38e8b)
* `Your Information` is now translatable (b189b86)
* Canceling new ticket also deletes drafts (2695dce)
* A users organization can be updated (#955)
* Users can be removed from an organization (#957)
### Bugs
* Fix confusing form view after adding a new form (#923)
* Fix whitespace munging in emails if HTML ticket thread is disabled (#924)
* Fix [loading] popup on form save (#925)
* Fix URLs in emails linking through l.php (#929)
* Fix crash on custom list view if there no properties defined (#935)
* Fix handling of encoded email mailboxes with commas (#940)
* Fix display of link, external images in the ticket thread (99e719d)
* Fix crash submitting a new ticket with organization collaborators (7335525)
* Fix handling of custom date and time fields (#944)
* Fix PJAX detection of new deployment (a18bf0c)
* Fix continual release of ticket locks after navigation (30a3d2)
* Fix logout if following link from client email (bda2e42)
* Fix un-editable organization website (13312dd)
* Fix incorrect constant usage in User object (#958)
1313
1314
1315
1316
1317
1318
1319
1320
1321
1322
1323
1324
1325
1326
1327
1328
1329
1330
1331
1332
1333
1334
1335
1336
1337
1338
1339
1340
1341
1342
1343
1344
1345
1346
1347
1348
1349
1350
1351
1352
1353
1354
1355
1356
1357
1358
1359
1360
1361
1362
1363
1364
1365
1366
1367
1368
1369
1370
1371
1372
osTicket v1.9
=============
### Client Login and Registration
Setup flexible user registration policy for your help desk to match your
needs. Users can register for accounts via the client portal and can now
login with a username and password instead of email and ticket number. We
also have a forgot-my-password link and several other new minor adjustments
to the user profile.
### External Authentication Support
Use third-party SSO to authenticate your users and staff. Initial support
include OAuth2 and LDAP (v0.5 of the LDAP plugin is required)
### User Directory
Search, view, and manage, even delete! contact information from the users
from whom you receive tickets. Staff can also manually register users and
even set an initial password. Users can also be imported and exported via
CSV data.
### Organizations
Organize your users together into organizations. Organizations can have
internal owners ("Account Manager") and external owners ("Primary Contact").
The Account Manager can receive new ticket and new message alerts.
Organization Primary Contacts and members can be automatically added to
tickets as collaborators.
### User and Organization Notes
Quickly view, edit, add and remove pertinent notes on your users and
organizations
### Form Management
Staff members can now add, delete, and sort forms attached to tickets, users
and organizations as well as remove stale data where fields have been
retired from active forms.
### Custom Properties for Lists
Add properties to your list items and use it in your email templates and
pages. For example create an address property to a list of locations. List
items can also be disabled now, which causes them to be hidden from
selection.
### PJAX page loading
For browsers supporting PJAX, navigating around the system will see a
performance improvement as javascript and css files are not re-parsed for
each page load.
### Redactor 9.2
Several new features including a floating editor bar as well better support
for non-US keyboards
### Minor Enhancements
* Agent selection for assignment can be limited to the current department
* Complete help tip documentation for the Admin panel
* Email addresses can have an associated Help Topic
* Alerts and Notices can be disabled per Department
* Agent portal can have a login banner
* Inline images are not displayed with the attachments in the ticket view
* Original thread content format is saved (html or text)
* Alerts and Notices support quoted response removal
=================
### Enhancements
* Support filtering based on help topic (#728)
* Embedded images ([rfc2397](http://www.ietf.org/rfc/rfc2397.txt)) are correctly supported (#740)
* Allow regular staff members to show assigned open tickets on open queue (#751)
* Support [rfc1892](http://www.ietf.org/rfc/rfc1892.txt) style bounce notices (#871)
1380
1381
1382
1383
1384
1385
1386
1387
1388
1389
1390
1391
1392
1393
1394
1395
1396
1397
1398
1399
1400
1401
1402
1403
1404
1405
1406
1407
1408
1409
1410
1411
1412
1413
1414
1415
1416
1417
1418
1419
1420
1421
1422
1423
1424
1425
* Disable autocomplete on CAPTCHA fields (#821)
* Show `closed` date on the closed ticket queue (#865)
* Departments support assignment to members only (#862)
* Department email selection is optional (#862)
### Bugs
* Fix error output on some systems if the `i18n` folder is not readable (#714)
* Fix possible crash if an email has no body (#707)
* Fix errors in download hash generation (#743)
* Support two-character file extensions (#719)
* Fix inline images with an invalid content id (#708)
* Remove confusing false-positive banner and admin email for client login (#763, #765)
* Fix detection of inline images without a `cid:` URL scheme (#779)
* Fix crash sending fatal alert email (bdfb2f1)
* Fix partial corruption of HTML @style attributes (#784)
* Fix several CSS styles for the staff interface (#785)
* Properly clear department selection from other settings on deletion (#792)
* Users with ticket-edit rights can see the "Change Owner" option in the more drop-down (#799)
* Links to new osTicket site are now correct (#808)
* Fix incorrect ticket count on simple ticket search (#809)
* Fix attachment size detection on systems with `mbstring.func_overload` set (#811)
* Fix horribly incorrect TNEF stream parsing (#825)
* Fix incorrect SQL query searching staff directory (91d65d9)
* Properly trim user input for ban list entries (#837)
* Ticket assignment alert can be disabled (#839)
* Preserve newlines in long answer form fields (with HTML disabled) (a04c5e7)
* Fix javascript error on form submission with empty date picker field (0013b40)
* Fix images in message portion of the new ticket notice to end user (#842)
* Send new internal note alert to assigned team members (#858)
* Properly strip leading and trailing whitespace from text/plain emails (fa7a025)
* Fix incorrect default template for ticket auto responses (97d6e25)
* Canned responses can be disabled (120d90b)
* Don't corrupt filters with selected, disabled teams, SLAs (120d90b)
* Fix crash sending some alert emails (efa7311)
* Fix HTML scrubbing with some content-ids (efa7311, eb5861f)
* Squelch E_WARN from ContentAjaxAPI::getSignature (ed33d06)
* `@localhost` is *not* a valid email address (f40c018)
* Fix `web.config` for newly patched IIS setups (78a47c2)
* Honor disabled assignment alerts for teams (#894)
* Send out internal note alerts to assigned staff (and Team) if Agent closes the ticket with the note (#903)
### Performance and Security
* Fix cross site scripting (XSS) vulnerability in thread entry widget (9916214)
* Mail parsing uses significantly less memory (#861)
1426
1427
1428
1429
1430
1431
1432
1433
1434
1435
1436
1437
1438
1439
1440
1441
1442
1443
1444
1445
1446
1447
1448
1449
1450
1451
1452
1453
1454
1455
1456
1457
1458
1459
1460
1461
1462
1463
1464
1465
1466
1467
1468
1469
osTicket v1.8.1.2
=================
* All fixes and enhancements from v1.8.0.4, plus *
### Enhancements
* Better detection of email loops (#584, #684)
### Bugs
* Fix selection of the auto-response email for a department (#666)
* Don't require current password when resetting (#671)
* Fix incorrect matchup of collaborators to users (#676)
osTicket v1.8.1.1
=================
* All fixes and enahncements from v1.8.0.4, plus *
### Enhancements
* Add signature to activity notice for staff replies (#605)
* Show company name in the copyright footer (#586)
* Signature is displayed below the staff response box (#609)
### Bugs
* Fix footnotes generated in html2text for same link text but different URLs (5e2f58d)
* Fix processing of emails for existing users (#588)
* Avoid adding an aliased system email address as a collaborator (#604, #627)
* Show current staff / user names where possible (#608)
* Fix display of _forgot my password_ link (#611)
* Export the value of custom fields (not the ID number) (#610)
* Fix saving the backend with file metadata (#595)
* Use the database as a failsafe attachment backend (#594)
* Avoid a crash when sending some mails (#589)
* Fix migrating attachments when upgrading from osTicket 1.6 (#614)
* Email templates ship with the ticket number in the subject line (#644)
* If inline images are stripped from the email, they are not considered attachments (#649, bcbebd0, 35a23be)
* Fix incorrect Content-Id headers generated for inline images (23ce0a0, e37ec74)
* New installs have the `Staff` group enabled (c7130c5)
* Always show the ticket thread when following an email link (17725ca)
### Security and Performance
* Staff can only see closed tickets if they have access via group or primary department (#623, #655)
* Fix incorrect honoring of ban list and over limit settings (#660)
* Keep existing session after login (c4bfb69)
* Fix password reset system (dfaca0d, #664)
1470
1471
1472
1473
1474
1475
1476
1477
1478
1479
1480
1481
1482
1483
1484
1485
1486
1487
1488
1489
1490
1491
1492
1493
1494
1495
1496
1497
1498
1499
1500
1501
1502
1503
1504
1505
1506
1507
osTicket v1.8.0.4
=================
### Enhancements
* Departments can have a department if there are no members (#618)
* Any valid email address can be used throughout the system (#673, e3adfaa)
### Bugs
* Preserve inline image floating in ticket thread (#612)
* Recover from crash when creating new user accounts (#617)
* Fix SQL error for some variable names on custom fields (#620)
* Fix canned append in non-HTML mode (#621)
* Fix stripping of leading zeros from phone numbers (#622)
* Strip `<?xml ... >` processing instructions from html email (#628)
* Disable error_reporting for releases (#630)
* Fix crash during PDF generation for some PHP installations (#631)
* Clicking away from popup tips closes them (#645)
* FAQ last-modified time can be something other than midnight (#647)
* Fix creeping widget sizes in create-user dialog (#648)
* Usernames can have Unicode characters (#650)
* If Auto-claim tickets is disabled, reopen tickets unassigned (#651)
* New SLA's default to have alerts enabled (#654)
* Fix creating ticket by staff without required contact-information fields (#656)
* Fix crash viewing ticket in the client portal if no departments are public (#658)
* Fix crash for some custom field configurations (#659)
* Allow manual update of SLA to a transient SLA (#663, e37ec74)
* Fix upgrade crash from some osTicket 1.6 installations (#687)
* Fix over-stripping of some HTML element sections (#686)
* Better detection of email loops (#584, #684)
* Fix attachments from new ticket by staff to be associated with the response (#688)
### Geeky Stuff
* Persistent database connections are supported (#693)
* Regression testing now tests for JS syntax errors (#669)
* Add git version to the deployment script (#630)
### Performance and Security
* Staff can only see closed tickets if they have access via group or primary department (#623, #655)
1508
1509
1510
1511
1512
1513
1514
1515
1516
1517
1518
1519
1520
1521
1522
1523
1524
1525
1526
1527
1528
1529
1530
1531
1532
osTicket v1.8.1
===============
*All fixes and enhancements from v1.8.0.3, plus*
### Enhancements
* Ticket filters support matching on email To and Cc fields (#529)
* Popup summary and collaborator list on ticket queue page (#521)
### Bugs
* New ticket by staff adds `recipient` and `staff` context to email templates (#527)
* Forbid password reset for non-local users (#570)
* Allow an administrator to lift the force password change flag (#570)
* Locks are released on logout (#522)
* Text email footnotes are written as [title][#] (7ccbf0c)
* Fix several issues with display and download of attachments (#530)
* Fix sending a reply email if requested not to (#531)
* Only consider collaborators if the receiving system email is identified (#537)
* Do not consider `delivered-to` addresses as collaborators (#544)
* Assume `iso-8859-1` MIME body encoding if not specified (#551)
* Add new features to the storage API to implement Amazon S3 (#515)
### Performance and Security
* Support auditing login attempts (#559)
* Avoid auth strikeouts when not attempting a login (#559, #523)
1533
1534
1535
1536
1537
1538
1539
1540
1541
1542
1543
1544
1545
1546
1547
1548
1549
1550
1551
1552
1553
1554
1555
1556
1557
1558
1559
1560
1561
1562
1563
1564
1565
1566
1567
1568
1569
1570
1571
osTicket v1.8.0.3
=================
### Enhancements
* Much better email bounce detection (#461, #474)
* Microsoft® TNEF emails are supported (#555, 0890481, #567)
* Handle messages forwarded as `message/rfc822` content type (#482)
* [Esc] key cancels popup dialogs (#465)
* New ticket by staff workflow is simplified (#543)
* Support regex matches in ticket filter (584465c)
### Bugs
* 'Priority' column is included in the ticket queue export (#451)
* Retry queries on MySQL error 1213 (#493)
* Client login email is not case-sensitive (398cbc7)
* Drop silly border on text emails if HTML ticket thread is disabled (439a32a)
* Fix ticket submission error if client is already logged in (#469)
* Fix fetching from more than 10 mail accounts (#468)
* Fix clickable links ending with punctuation (#497)
* Fix whitespace mangling of Unicode text with non-breaking-spaces (#502)
* Fix image size set to zero when images are added to drafts (#504)
* Correctly detect php-dom extension (#503)
* Fix delivery issue of emails delivered to group mailboxes (#510)
* Fix E_STRICT annoyance from class.config.php (#518)
* Fix dashboard report timeframe for non-US date formats (#520)
* Fix dashboard report ending "period" (#520)
* Fixup Message-Id and Delivered-To for encapsulated messages (#528)
* Much better compatibility implementation of the `mbstring` module (#517)
* Consider the `delivered-to` header in finding the system email (#535)
* Ticket variables are available in templates regardless of case (#545)
* Allow advanced search on any priority *regression* (#547)
* Fix email address list parsing on bad MIME headers (#560)
* Automatically detect file MIME type if not specified (ac42e62)
* Fix login issue when upgrading from osTicket 1.6 (#571)
* Fix attachment corruption on some documents like PDFs (#576)
### Performance and Security
* Reuse SMTP connections where possible (#462)
* Enforce max file size for attachments sent via API (#568)
1572
1573
1574
1575
1576
1577
1578
1579
1580
1581
1582
1583
1584
1585
1586
1587
1588
1589
1590
1591
1592
1593
1594
1595
1596
1597
1598
1599
1600
1601
1602
1603
1604
1605
1606
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618
1619
1620
1621
1622
1623
1624
1625
1626
1627
1628
1629
1630
1631
1632
1633
1634
1635
1636
1637
1638
1639
1640
1641
1642
1643
osTicket v1.8.1-rc1
===================
### Enhancements
* Much better email bounce detection (#461, #474)
* Handle messages forwarded as `message/rfc822` content type (#482)
* [Esc] key cancels popup dialogs (#465)
* Support regex matches in ticket filter (584465c)
### Bugs
* 'Priority' column is included in the ticket queue export (#451)
* Retry queries on MySQL error 1213 (#493)
* Client login email is not case-sensitive (398cbc7)
* Drop silly border on text emails if HTML ticket thread is disabled (439a32a)
* Fix ticket submission error if client is already logged in (#469)
* Fix fetching from more than 10 mail accounts (#468)
* Fix `deploy` command-line application (#450)
* Fix error email on upgrade (#452)
* Ship with a `plugins/` folder (90b0a65)
* Fix file key not replaced in thread body correctly for de-duplicated files (#492)
* Better handling of text and html thread posts (#508)
* Fix clickable links ending with punctuation (#497)
* Fix whitespace mangling of Unicode text with non-breaking-spaces (#502)
* Fix image size set to zero when images are added to drafts (#504)
* Correctly detect php-dom extension (#503)
* Fix delivery issue of emails delivered to group mailboxes (#510)
### Merged from v1.8.0.2
* Log entry for password reset attempts (#435)
osTicket v1.8.1 (Preview)
=========================
### Collaborator Support (CC)
In addition to the ticket owner, other end users can be collaborators on a
ticket. Responses received from them are integrated automatically into the
ticket thread, and emails are sent to all collaborators when new messages and
responses arrive into the system. All collaborators have access to the ticket
via the client portal and are able to log new messages.
### Plugin management system
osTicket supports plugins via a (currently undocumented) simple plugin API and
interface. Plugins can be written and distributed as files or unpacked via ZIP
archives, or distributed via PHP PHAR files. The plugin system is developed in
hopes of adding extensibility to osTicket without significant overhead.
Initially, two "classes" of plugins are supported: authentication, and file
storage.
### Pluggable authentication
Staff members can now be authenticated against a backend other than the
osTicket internal database. Available immediately is integration with LDAP
(RFC-2307) and Microsoft® Active Directory. The initial authentication system
also support user lookups, so when browsing for new users when creating
tickets, your directory server will be queried for users and email addresses.
### Pluggable attachment storage
Attachments can live outside the database again. You can now write or install a
plugin to store your attachments somewhere other than in your database, and
osTicket will use the backend to store and retrieve (or redirect to) your
attachments. We've initially made a plugin available to store attachments on
the filesystem and plan on adding an Amazon S3 plugin very soon.
### Internationalization, Phase 1
Select your default data on installation, and select the language preference,
as a staff member, for the help tips. You can also now select the language of
the email templates when creating a new template. The templates for that
language will be used instead of the English ones where translated versions are
available.
### Minor Enhancements
* Clients can update their profile information on the web portal
* Clients can update ticket details (if enabled)
* Custom ticket-details fields are included in ticket queue exports
1644
1645
1646
1647
1648
1649
1650
1651
1652
1653
1654
1655
1656
1657
1658
1659
1660
1661
1662
1663
1664
1665
1666
1667
1668
1669
1670
1671
1672
1673
1674
1675
1676
1677
1678
1679
1680
1681
1682
osTicket v1.8.0.2
=================
### Enhancements
* HTML editor has an underline button (#377)
* New ticket form pre-selects default priority (#400)
* Help topics do not require an associated priority (#397)
* Extra fields associated with help topics are shown above the ticket-details form (#398)
* Auto-complete is supported on email address fields (#401)
* Choice fields allow specification of a prompt and default value (#427)
* Email template page makes templates easier to manage (#417)
* New ticket user-lookup popup supports cancel (#434)
### Bugs
* Ticket locks are correctly released (#335)
* Pages show inline images correctly (8a1f4e6)
* Internet Explorer compatibility view is disabled for the scp (#368)
* *regression* Staff no longer receive attachments on alerts (#379)
* Emails correctly differentiate HTML and text versions (#212, #384)
* Ticket queue counts are correct for limited users (#298, #389)
* Phone number field might be a text box (#390)
* Fix incorrect ticket rejection for new ticket by staff (#425)
* Fix crash of cron executions on some platforms (#421)
* `realpath` may fail on some Windows® platforms (#424, cff8db8)
* Fix incorrect handling of typeahead list fields with leading numeric chars (#422)
### Performance and Security
* Ticket queue has significantly better performance (#357, #388, #413, a03dec5, 31bb4ac, e9a3b98)
* Remove several unnecessary queries (#415)
* Password reset attempts are logged (#435)
* Handle garbage username input for password reset (344c95f)
### Upstream 1.7 Commits
* Database hostname supports local socket specified as localhost:/path/to/socket (osTicket/osTicket-1.7#864)
* Upgrader correct upgrades the ban list from 1.6. Migrator corrects incorrect upgrade (osTicket/osTicket-1.7#869)
* Ticket number is detected in subject line without brackets (osTicket/osTicket-1.7#873, 358cdeb)
* Fixup redirect headers for modern IIS servers (osTicket/osTicket-1.7#874)
* Correctly support PHP 5.5 (5e8e233)
* Fix missing parameter to TicketLock::lookup (osTicket/osTicket-1.7#878)
1683
1684
1685
1686
1687
1688
1689
1690
1691
1692
1693
1694
1695
1696
1697
1698
1699
1700
1701
1702
1703
1704
1705
1706
1707
1708
1709
1710
osTicket v1.8.0.1
=================
### Enhancements
* Allow edit of user on the ticket open page (#291)
* Display complete contact information to lookup dialog (07ec37d)
* Clarify `mysqli` extension requirement on install and upgrade pages (#309,
334461e)
* Add option to display unprocessed name (original) (#323)
### Bugfixes
* Fix parser error for PHP < 5.3 on upgrade and install (1ff1540)
* Remove dependency on mbstring (for real this time) (50d3d70)
* Fix incorrect advanced search hits on some custom fields (#290)
* Custom forms require a title (otherwise you cannot click on them to edit)
(#293)
* Update client phone number on ticket view page after update (#292)
* Fix regression where validation errors were not shown on new ticket form
(#303)
* Fix bug where client name and email were not filterable for web submissions
(#319)
* Fix various autocorrect annoyances (#321)
### Performance and Security
* Improve performance of ticket filtering on some configurations (#301)
* Fix possible cross site scripting (XSS) vulnerability on display of contact
information values (#297)
osTicket v1.8.0
1711
1712
1713
1714
1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732
1733
=============
### Enhancements
* Rich text ticket thread (#5)
* Custom forms and fields (#2)
* Translatable initial data *almost*
### Rich Text Ticket Thread
As an option, enabled by default, osTicket can now process HTML email and
allows for rich text markup in most long-answer boxes across the system,
including staff replies and internal notes posted to the ticket thread. To keep
the feature consistent throughout, canned responses and email templates also
sport an HTML theme now.
### Custom Forms and Fields
The data collected from your users when they fill out the ticket form is now
customizable. You can now ask any information relevant to your business
practice, and can customize the type of input show from the user. Currently,
short and long answer fields, drop-down lists, checkboxes, date and time, and
phone number fields are available. Each field is configurable and can be setup
according to your liking. Fields can also be marked as required, whose input is
required to submit the ticket, and internal, whose input is not visible to the
end user.
1734
1735
1736
1737
1738
1739
1740
1741
1742
1743
1744
1745
1746
1747
1748
1749
1750
1751
1752
1753
1754
1755
1756
1757
1758
1759
1760
1761
1762
1763
1764
1765
1766
1767
1768
1769
1770
1771
1772
1773
1774
1775
1776
1777
1778
1779
1780
1781
1782
1783
1784
1785
1786
1787
1788
1789
1790
1791
1792
1793
1794
1795
1796
1797
1798
1799
1800
1801
1802
osTicket v1.7.3
===============
### Enhancements
* Ticket thread items are now available for email templates (#790)
* Support MySQL servers on a non-standard port number, which is also not set
in the `php.ini` file (#775)
### Bugfixes
* Fix email handling where the character set advertised is `us-ascii` but
`iso-8859-1` was intended (#770)
* Ticket source is now editable (#772, #777)
* Email parsing would crash if `Reply-To` header was not found (#780)
* CSRF token creation would fail on some Windows installations (#771, #776)
* Tickets without an SLA set would never go overdue (#757, #767)
* FAQ search now hits category names (#781)
* FAQ search hits are sorted by article title now (#786)
* Email replies with nothing before the quoted response marker should remain
as is (#787)
* CAPTCHA responses are now considered case-insensitive (#823)
* `References` email header how includes the parent email `Message-Id` (#825)
* Email attachment parsing would crash if the `Content-Disposition` header
had no parameters (#828)
* Date format on the jQuery-UI datepicker is admin configurable now (#829)
### Performance
* Scanning deleting orphaned files is much faster (#773, #778)
osTicket v1.7.2
===============
### Enhancements
* The ticket number is no longer required in the subject line and staff can
reply to emails and create an internal note (*released in v1.7.1.2*)
* Show customized site logo on PDF output (#763)
* Support deployment for initial install with cli deploy script (#750)
* Require complete regression test pass before packaging new release (#751)
* Die with HTTP/500 for misconfiguration or database connect failure (#762)
### Bug fixes
* Detect and import inline attachments without a Content-Disposition header
(#737)
* Show correct template description *again* (#742, #743)
* Import attachments from emails continuing a ticket thread (*regression
introduced in v1.7.1.2*) (#745)
* Support UTF-8 encoded filenames for fetched emails (#738)
* Disable Kerberos and NTLM authentication in mail fetching (#739)
* Forbid empty reply-separator setting (#752)
* Only email administrators for log messages that would be written to the
database (#754)
* Emails fetched and rejected by a ticket filter that are not deleted or
moved to a folder will not be re-fetched and re-rejected (#755)
* Workaround for some mail clients' inability to properly decode
quoted-printable encoded emails (#760)
* Inline text bodies are incorrectly detected as attachments without a
filename (#761)
* Properly decode and display some international chars in PDF printing (#765)
* Do not double encode XML entities in ticket thread titles (#718, #567)
* Display correct template description on edit (#724, #727)
* Fix download of attachments with commas (',') in the filename (#702)
* Fix incorrect content-type header for CAPTCHA (#699)
### Security
* Require email address match if ticket number is matched in subject line and
neither references or in-reply-to headers match an existing ticket thread
item (*regression introduced in v1.7.1.2*) (#748)
### Performance
* Address database performance issue scanning for orphaned file_chunk records
(#764)
1803
1804
1805
1806
1807
1808
1809
1810
1811
1812
1813
1814
1815
1816
1817
1818
1819
1820
1821
1822
1823
1824
1825
1826
1827
1828
1829
1830
1831
1832
1833
1834
1835
1836
1837
1838
1839
1840
1841
1842
1843
1844
1845
1846
1847
1848
1849
1850
1851
1852
1853
1854
1855
1856
1857
1858
1859
1860
1861
1862
1863
1864
1865
1866
1867
1868
1869
1870
1871
osTicket v1.7.1
===============
### Bugfixes
* Properly reject attachments submitted via the API (#668)
* Correctly support the "Use Reply-To" in ticket filters (#669)
* Don't log users out after changing username or email address (#684)
* Don't leak private FAQ article titles (#683)
osTicket v1.7.1-rc1
===================
### Enhancements
* Custom logos and site pages (#604, #632, #616)
* Password reset link (#638)
* Export and import feature. Useful for migrations and backups. (#626)
* Use your email address as your username for logins (#631)
* SLA's can be marked *transient*. Tickets with a transient SLA will
change to the SLA of the new department or help-topic when transferred
or edited.
* Support installation on MySQL and MariaDB clusters. Use default storage
engine and don't assume predictable auto-increment values (#568, #621)
### Geeky Stuff
* mysqli support for PHP5+
* SSL support for database connections
* Namespaced configuration. This greatly simplifies the process of adding
* new configurable item (#564)
* Add signals API. A simple event hooking mechanism to allow for
* extensibility (#577)
* Add deployment command-line script (#586)
* Allow XHTML editing in the nicEditor (#615)
* Allow parallel database migration streams (#563) -- paves the way for
*extensions*
* Use row-based email templates (#604) -- simplifies the process of adding
new email message templates (think *extensions*)
* Support fetching from email boxes with aliased email addresses (#663)
* Introduce new crypto library that provides failsafe encryption for email
passwords (#651)
### Bugfixes
* Several typos in code and messages (#617, #618, #644, #660)
* Fix several upgrader bugs (#548, #619)
* Fix install fail on some Windows platforms (#570)
* Fix several issues in the command-line management (#580)
* Make room for command-line installation of osTicket (#581)
* *regression* Fix corrupted attachment downloads (#579, #583)
* Fix truncated attachment downloads when `zlib.output_compression` is
enabled (#596)
* Disable cron activities when upgrade is pending (#594)
* Provide failsafe encoding for improperly-formatted emails (#601)
* Fix corrupted email attachments processed via `pipe.php` (#607)
* Fix discarding of poorly encoded base64 emails (#624)
* Support MariaDB 10.0+ (#630)
* Properly trim ticket email and name fields (#600)
* Fix truncated text from text/plain emails and web interface posts (#652)
* Add **Assigned To** and other fields to ticket view export (#646)
* *regression* Fix attachment migration (#648)
* Display correct staff notes (#588)
* Display correct auto-response email for departments (#575)
* Fix login form ("Authentication Required") loop (#653)
* Ensure email message-id is fetched correctly (#664)
* Ensure X-Forwarded-For header does not have leading or trailing
whitespace (#665)
### Performance
* Only fetch configuration for multifile upload if necessary (#637)
* Don't use sessions on the API (#623)
* *regression* Avoid an extra query per request to fetch schema signature
(#658)
New stuff in 1.7.0
====================
* Bug fixes from rc6
New stuff in 1.7-rc6
====================
* Bug fixes and enhancements from rc5
New stuff in 1.7-rc5
====================
* Bug fixes from rc4
New stuff in 1.7-rc4
====================
* Bug fixes from rc3
New stuff in 1.7-rc3
====================
* Bug fixes from rc2
* Canned auto-reply template
* Modal dialogs
* PEAR packages upgrade
New stuff in 1.7-rc2
====================
* Bug fixes from rc1
* Nested help topics support
New stuff in 1.7-rc1
====================
* Upgrade support for osTicket 1.6-rc1 and later
* Multi-file upload support -- more than one file (configurable) can be
uploaded with new messages, replies, and internal notes via the web
interface
* Department/Group access feature allowing members of a group access to a
department. Staff members are members of a (primary) group, and that
group can be granted access to one or more departments, granting the
associated staff access to departments other than their primary
department.
* Email filters can specify a canned auto-response
* Support inline attachments for fetched email
* Dashboard reports for ticket system activity and statistics
* PDF print / export for tickets (staff pages only)
New stuff in 1.7-dpr3
======================
* Advanced search on tickets page
* Ticket thread -- revised ticket message storage model for greater
flexability
* New database upgrade system allowing for continuous updates to the
database model. This will greatly simplify the process of making
modifications to the osTicket database.
New stuff in 1.7-dpr2
======================
* Autocomplete for ticket search box (emails and ticket numbers typeahead)
* Redesigned staff login page
* Warning when leaving unsaved changes in admin and staff settings pages
* Auto change admin settings pages when selecting a new page from the
drop-down list
* Create a ticket in one click from the staff panel
* Preview ticket from the search results
* Export tickets to CSV file
New Features in 1.7
===================
Version 1.7 includes several new features
As an upgrade from email banning (which is still supported), ticket filters
allow for matching incoming email in the subject line and message body. For
matching emails, the administrator has the ability to automatically route
tickets:
* To a specific department, staff member, and/or team
* Automatically assign ticket priority and/or service-level-agreement
* Disable ticket auto-responses
Tickets filters are also applied to tickets submitted via all ticket
interfaces, including the API, email, staff and client web interfaces. And,
as a bonus, the filters can be configured to target only a single interface.
So an administrator could, for instance, target tickets received via email
from a particular domain.
Canned Attachments
------------------
Attach files to your canned responses. These attachments are automatically
attached to the ticket thread along with the canned response. The
attachments are not duplicated in the database and therefore use virtually
no space.
Database-backed Attachments
---------------------------
No more crazy security-related configuration to your host server in order to
support attachments. Attachments are now quietly stored in the database. The
upgrade migration will automatically port attachments from the previous
locations into the database.
Service Level Agreements
------------------------
Service level agreements allow for a configurable grace period based on the
department or help topic associated with the ticket. A default SLA is
provided, and a due date can be set to override the grace period of the SLA
for a ticket.
Client-side Knowledgebase
-------------------------
Manage a searchable help document portal for your users
Flashy reports of ticket system activity as well as exportable ticket system
statistics, allowing for easy report generation from office spreadsheet
applications.
Ticket Export
-------------
Convert the ticket thread to a printed format for long term storage. The
ticket view page now supports a print feature, which will render the ticket
as a PDF document.
API
---
Interface with osTicket via HTTP requests. Starting with version 1.7,
tickets are createable by submitting an HTTP POST request to either
/api/tickets.xml
/api/tickets.json
The API can also be used to pipe emails into the osTicket system. Use the
included `automail.php` or `automail.pl` script to pipe emails to the
system, or post raw email messages directly to
/api/tickets.email
Use of the API requires an API key, which can be created and configured in
the admin panel of the support system.
For technical details, please refer to [API Docs] (setup/doc/api.md).
Geeky New Features
==================
Unicode
-------
Better and more consistent international text handling
Flexible Template Variables
---------------------------
Template variables have been redesigned to be more flexible. They have been
integrated into the respective object classes so that an object as well as
its properties can be represented in template variables. For instance
%{ticket.staff.name}