MokoSuiteBackup

Author	SHA1	Message	Date
gitea-actions[bot]	7ecc855e40	chore(version): pre-release bump to 01.22.09-dev [skip ci]	2026-06-18 15:56:16 +00:00
Jonathan Miller	a4c03d0032	fix: critical review — infinite recursion, SQL injection, FK prefix Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Universal: Auto Version Bump / Version Bump (push) Successful in 4s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 5s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 5s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Universal: PR Check / Validate PR (pull_request) Failing after 7s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 7s Details Generic: Project CI / Lint & Validate (push) Successful in 31s Details Generic: Project CI / Lint & Validate (pull_request) Successful in 31s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 35s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Project CI / Tests (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Joomla: Extension CI / Build RC Pre-Release (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Critical: - Fix infinite recursion in getValidatedPrefix() — was calling itself instead of extracting from $data array - Fix SQL injection in actionResetAdmin() — prefix not validated, now uses getValidatedPrefix() High: - Fix prefix abstraction to cover FK REFERENCES — str_replace now targets backtick+prefix pattern to catch all table references in CREATE TABLE output, not just the current table name Medium: - Security gate file write check — skip verification gracefully if file cannot be written (don't lock user out) - Stepped notification catch \Throwable instead of \Exception	2026-06-18 10:56:02 -05:00
gitea-actions[bot]	682538e4de	chore(version): pre-release bump to 01.22.08-dev [skip ci]	2026-06-18 15:42:29 +00:00
Jonathan Miller	b2874f32f2	feat: abstract DB prefix, stepped checksum, restore security gate Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 4s Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 6s Details Universal: PR Check / Validate PR (pull_request) Failing after 7s Details Universal: Auto Version Bump / Version Bump (push) Successful in 3s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Generic: Project CI / Lint & Validate (pull_request) Successful in 32s Details Generic: Project CI / Lint & Validate (push) Successful in 32s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 35s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Project CI / Tests (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Joomla: Extension CI / Build RC Pre-Release (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Database prefix abstraction: - DatabaseDumper uses #__ placeholder instead of live prefix in all SQL output (DROP TABLE, CREATE TABLE, INSERT INTO) - SteppedBackupEngine::dumpSingleTable() same #__ replacement - DatabaseImporter replaces #__ with current site prefix on import - MokoRestore replaces #__ with user-specified prefix on import - Backups are now portable across sites with different prefixes Stepped backup checksum: - completeRecord() now computes and stores SHA-256 checksum MokoRestore security gate: - Writes .mokorestore-security.php with random 8-char code to site root - User must read code from filesystem and enter it in browser - Proves filesystem access before any restore actions are allowed - Security file auto-deleted after successful verification - All AJAX actions blocked until verification completes	2026-06-18 10:42:10 -05:00
gitea-actions[bot]	b3e7c8ec72	chore(version): pre-release bump to 01.22.07-dev [skip ci]	2026-06-18 15:27:08 +00:00
Jonathan Miller	9656a2a92b	fix: PR #46 review — error handling, failure notifications, cleanup Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 7s Details Generic: Project CI / Lint & Validate (push) Successful in 11s Details Universal: Auto Version Bump / Version Bump (push) Successful in 4s Details Universal: PR Check / Branch Policy (pull_request) Successful in 2s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 10s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 8s Details Universal: PR Check / Validate PR (pull_request) Failing after 8s Details Generic: Project CI / Lint & Validate (pull_request) Successful in 35s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 38s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Project CI / Tests (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Joomla: Extension CI / Build RC Pre-Release (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Critical: - Wrap cleanupOldBackups() in try-catch to prevent admin panel crash - Add missing fields (total_size, files_count, etc.) to failure record so failure notifications actually send High: - Log unlink failures in deleteBackupRecord() instead of silent return - Wrap DB delete in try-catch so one failed record doesn't abort loop - Check for ext-curl before calling curl_init() in sendNtfy() Medium: - Change runPreActionBackup catch from \Exception to \Throwable - Log warning for skipped files during archive encryption - Truncate ntfy response body in error logs (200 chars max)	2026-06-18 10:26:48 -05:00
gitea-actions[bot]	f47a99636b	chore(version): pre-release bump to 01.22.06-dev [skip ci]	2026-06-18 15:19:59 +00:00
Jonathan Miller	36ec6dd5a3	fix: notifications for AJAX backups, download CSRF token Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Universal: Auto Version Bump / Version Bump (push) Successful in 4s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 4s Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 7s Details Generic: Project CI / Lint & Validate (push) Successful in 11s Details Generic: Project CI / Lint & Validate (pull_request) Successful in 11s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 12s Details Universal: PR Check / Validate PR (pull_request) Failing after 48s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 54s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Project CI / Tests (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Joomla: Extension CI / Build RC Pre-Release (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details SteppedBackupEngine now sends email + ntfy notifications on both success (completeRecord) and failure (failRecord). Previously only BackupEngine (synchronous CLI/toolbar path) sent notifications. Download link in backups template now includes the CSRF token in the URL query string, fixing "security token did not match" error when clicking download buttons.	2026-06-18 10:19:43 -05:00
gitea-actions[bot]	6810edcd7f	chore(version): pre-release bump to 01.22.05-dev [skip ci]	2026-06-18 14:35:16 +00:00
Jonathan Miller	b2eab66d27	fix: include backup_type and archivename in notification record Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Universal: Auto Version Bump / Version Bump (push) Successful in 4s Details Generic: Project CI / Lint & Validate (push) Successful in 18s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details The update object passed to NotificationSender only had fields being updated in the DB (total_size, checksum, etc). It was missing backup_type, archivename, description, origin, and backupstart — which are set on the initial insert and don't change. This caused ntfy notifications to show empty Type and Archive fields.	2026-06-18 09:31:51 -05:00
gitea-actions[bot]	ee48b150f5	chore(version): pre-release bump to 01.22.04-dev [skip ci]	2026-06-18 14:12:38 +00:00
gitea-actions[bot]	2c58ebed38	chore(version): pre-release bump to 01.22.03-dev [skip ci]	2026-06-18 14:10:46 +00:00
Jonathan Miller	2a4676c999	fix: expand PHP extension checks (#22 ) Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Universal: Auto Version Bump / Version Bump (push) Successful in 4s Details Generic: Project CI / Lint & Validate (push) Successful in 8s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 5s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details BackupEngine: check ext-zip, ext-pdo, ext-pdo_mysql, ext-mbstring before running (was only zip + mbstring). Installer preflight: warn about missing extensions (zip, pdo, pdo_mysql, mbstring, curl) during install/update. Warns but does not block installation so the component can still be configured. MokoRestore already checks ext-zip, ext-pdo_mysql, ext-mbstring, ext-json in its preflight step. composer.json already declares all six extensions as requirements (zip, pdo, pdo_mysql, curl, ftp, mbstring) — composer install fails if any are missing, which CI enforces. Closes #22	2026-06-18 09:10:35 -05:00
gitea-actions[bot]	b3928915fe	chore(version): pre-release bump to 01.22.02-dev [skip ci]	2026-06-18 13:19:05 +00:00
gitea-actions[bot]	dd09b65cc4	chore(version): pre-release bump to 01.22.01-dev [skip ci]	2026-06-17 16:42:27 +00:00
gitea-actions[bot]	9a908e2e3c	chore(version): pre-release bump to 01.22.00-rc [skip ci]	2026-06-17 07:57:03 +00:00
gitea-actions[bot]	d8367d7beb	chore(version): pre-release bump to 01.21.01-dev [skip ci]	2026-06-17 07:56:07 +00:00
Jonathan Miller	11141f27f4	feat: per-profile backup retention (days and count) Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Universal: Auto Version Bump / Version Bump (push) Successful in 3s Details Generic: Project CI / Lint & Validate (push) Successful in 8s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Each profile can now set its own retention_days and retention_count. A value of 0 means use the global default from component options. Cleanup logic refactored to iterate per-profile with individual retention thresholds. Also cleans up orphaned records where the parent profile was deleted. Log files alongside archives are now removed during cleanup. Extracted deleteBackupRecord() helper for consistent file+DB cleanup.	2026-06-17 02:55:55 -05:00
gitea-actions[bot]	89047cdf02	chore(release): build 01.21.00 [skip ci]	2026-06-16 17:06:32 +00:00
jmiller	a647709441	Merge pull request 'fix: admin submenu items and icons for Joomla 6' (#45 ) from dev into main Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Project CI / Lint & Validate (push) Successful in 12s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details	2026-06-16 17:06:14 +00:00
Jonathan Miller	d3b6fe7663	Merge remote-tracking branch 'origin/main' into dev Universal: Auto Version Bump / Version Bump (push) Successful in 6s Details Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 2s Details Generic: Project CI / Lint & Validate (push) Successful in 13s Details Universal: PR Check / Branch Policy (pull_request) Successful in 2s Details Generic: Project CI / Lint & Validate (pull_request) Successful in 12s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Branch Cleanup / Delete merged branch (pull_request) Has been skipped Details RC Revert / Rename rc/ back to dev/ (pull_request) Has been skipped Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 7s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 13s Details Universal: Build & Release / Promote to RC (pull_request) Has been skipped Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 12s Details Universal: PR Check / Validate PR (pull_request) Failing after 10s Details Universal: Build & Release / Build & Release Pipeline (pull_request) Successful in 14s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 38s Details Generic: Project CI / Tests (push) Has been cancelled Details Generic: Project CI / Tests (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Joomla: Extension CI / Build RC Pre-Release (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details # Conflicts: # .mokogitea/workflows/issue-branch.yml # .mokogitea/workflows/pre-release.yml # source/pkg_mokojoombackup.xml	2026-06-16 12:06:01 -05:00
gitea-actions[bot]	c50a39226b	chore(version): pre-release bump to 01.20.00-rc [skip ci]	2026-06-16 12:01:10 +00:00
gitea-actions[bot]	ff3c1ed977	chore(version): pre-release bump to 01.19.00-rc [skip ci]	2026-06-15 09:33:39 +00:00
gitea-actions[bot]	74a14f5fe4	chore(version): pre-release bump to 01.18.03-dev [skip ci]	2026-06-15 09:33:25 +00:00
Jonathan Miller	5f04332fc5	feat: ntfy push notification support per backup profile Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 1s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 6s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 10s Details Universal: Auto Version Bump / Version Bump (push) Successful in 15s Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 10s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 14s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Add ntfy (https://ntfy.sh) push notifications alongside email. Each backup profile can configure its own ntfy topic, server, and access token independently. - New profile fields: ntfy_topic, ntfy_server (default ntfy.sh), ntfy_token (optional, for private topics) - NotificationSender sends both email and ntfy in parallel - Uses priority 5 (urgent) for failures, 3 (default) for success - Includes backup status emoji, profile name, type, archive, size - 10-second timeout to prevent blocking backup completion - SQL migration 01.18.00 adds columns to profiles table	2026-06-15 04:32:57 -05:00
gitea-actions[bot]	77667d436a	chore(version): pre-release bump to 01.18.02-dev [skip ci]	2026-06-15 06:10:22 +00:00
Jonathan Miller	c466839a40	fix: final review — SQL injection, input escaping, undefined var Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 3s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 6s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 6s Details Universal: Auto Version Bump / Version Bump (push) Successful in 9s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Universal: PR Check / Validate PR (pull_request) Failing after 20s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Critical/High: - Fix undefined $configFile → $configPath in from-scratch config path - Escape all user input with addcslashes before interpolating into configuration.php (both regex-replace and HEREDOC paths) - Add getValidatedPrefix() helper — validates db_prefix format before use in SQL table names across all restore functions - fixPackageClientId() now warns user via enqueueMessage on failure - sanitizeConfiguration() logs error on file read failure Medium: - Content-Disposition header uses RFC 6266 rawurlencode (both admin and API download controllers) - Remove @unlink suppression, log warning on failure - viewLog() catch block now logs exception context - writeDefaultHtaccess() checks copy/write, returns status to caller - actionConfig() checks file_put_contents return value	2026-06-15 01:10:04 -05:00
gitea-actions[bot]	bb0f04ec15	chore(version): pre-release bump to 01.18.01-dev [skip ci]	2026-06-15 05:50:02 +00:00
Jonathan Miller	b0fa2cceba	fix: address final review — garbled code, error handling, write checks Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 3s Details Universal: PR Check / Branch Policy (pull_request) Successful in 2s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 3s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 8s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 13s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 15s Details Universal: Auto Version Bump / Version Bump (push) Successful in 18s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 16s Details Universal: PR Check / Validate PR (pull_request) Failing after 47s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Critical: - Fix garbled getDbConnection() in MokoRestore — duplicated lines and broken regex causing parse errors in the standalone restore script High: - fixPackageClientId() now warns user via enqueueMessage on failure - sanitizeConfiguration() logs error when file read fails - actionConfig() checks file_put_contents return value on both paths - writeDefaultHtaccess() returns status string, checks copy and write, callers append warnings to response message Medium: - Remove @unlink suppression before archive rename, log warning - viewLog() catch block now logs exception message for diagnostics	2026-06-15 00:49:28 -05:00
gitea-actions[bot]	a6de692639	chore(version): pre-release bump to 01.18.00-rc [skip ci]	2026-06-15 05:36:22 +00:00
gitea-actions[bot]	f418d48597	chore(version): pre-release bump to 01.17.01-dev [skip ci]	2026-06-15 05:35:24 +00:00
Jonathan Miller	79e577edf0	fix: set package client_id to 0 (site) for update matching Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 2s Details Universal: PR Check / Branch Policy (pull_request) Successful in 2s Details Generic: Repo Health / Access control (pull_request) Successful in 2s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 7s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 7s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 9s Details Universal: Auto Version Bump / Version Bump (push) Successful in 13s Details Universal: PR Check / Validate PR (pull_request) Failing after 11s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 10s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Joomla packages must have client_id=0 in #__extensions for the updater to match against <client>site</client> in updates.xml. The package was incorrectly registered with client_id=1 (admin), causing updates to be invisible in the Joomla update manager. Adds fixPackageClientId() to postflight so it self-corrects on every install/update.	2026-06-15 00:35:00 -05:00
gitea-actions[bot]	dc1089e6bf	chore(version): pre-release bump to 01.17.00-rc [skip ci]	2026-06-15 05:12:33 +00:00
gitea-actions[bot]	34d55ea300	chore(version): pre-release bump to 01.16.00-rc [skip ci]	2026-06-15 02:23:26 +00:00
gitea-actions[bot]	c212a3d179	chore(version): pre-release bump to 01.15.03-dev [skip ci]	2026-06-15 02:23:09 +00:00
Jonathan Miller	b785b0e748	feat: add .htaccess reset option to MokoRestore Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 2s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 5s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 5s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 7s Details Universal: Auto Version Bump / Version Bump (push) Successful in 10s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Universal: PR Check / Validate PR (pull_request) Failing after 19s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Add checkbox in Step 4 to reset .htaccess to Joomla defaults. Backs up existing as .htaccess.bak before overwriting. Optional and unchecked by default to preserve custom rules.	2026-06-14 21:22:45 -05:00
gitea-actions[bot]	cb3f1ab3cc	chore(version): pre-release bump to 01.15.02-dev [skip ci]	2026-06-14 20:30:35 +00:00
Jonathan Miller	3a6354e648	refactor: store config as .bak, rebuild on restore Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 3s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Universal: PR Check / Branch Policy (pull_request) Successful in 2s Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 5s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 6s Details Universal: Auto Version Bump / Version Bump (push) Successful in 8s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Universal: PR Check / Validate PR (pull_request) Failing after 18s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Instead of storing a sanitized configuration.php in the archive, save it as configuration.php.bak with credentials stripped. No configuration.php exists in the archive — it's rebuilt from the .bak template + user-provided credentials during restore. Backup side: - configuration.php stored as configuration.php.bak (sanitized) - No configuration.php in the archive (prevents accidental use) MokoRestore side: - Reads .bak as base template (preserves non-sensitive settings: debug, cache, SEF, editor, timezone, etc.) - Replaces all sanitized fields with user input - Clears proxy/Redis/TLS placeholders to empty strings - Deletes .bak after successful rebuild - Falls back to configuration.php for legacy backups FileRestorer: - Added configuration.php.bak to skip list	2026-06-14 15:30:17 -05:00
gitea-actions[bot]	f43664dbef	chore(version): pre-release bump to 01.15.01-dev [skip ci]	2026-06-14 20:26:13 +00:00
Jonathan Miller	c96444fe80	feat: add SMTP fields to MokoRestore config step Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 5s Details Universal: Auto Version Bump / Version Bump (push) Successful in 8s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 4s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 4s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Since configuration.php is now sanitized in backups, MokoRestore needs UI fields for the stripped SMTP credentials. Adds: - SMTP Host, User, Password fields in Step 4 (Site Configuration) - Clean card-based layout with General and Mail sections - Only replaces SMTP values if provided (blank = leave existing) - Pre-fills SMTP fields from extracted config (if not sanitized) - Expanded info banner explaining secret key regeneration	2026-06-14 15:25:58 -05:00
gitea-actions[bot]	a97db76caf	chore(version): pre-release bump to 01.15.00-rc [skip ci]	2026-06-14 20:07:46 +00:00
gitea-actions[bot]	1dee5ad3a9	chore(version): pre-release bump to 01.14.01-dev [skip ci]	2026-06-14 20:07:39 +00:00
Jonathan Miller	2ff76263ff	fix: recompute checksum after MokoRestore wrapping Generic: Repo Health / Access control (push) Successful in 1s Details Generic: Repo Health / Site Health (push) Has been skipped Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 4s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 7s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 7s Details Universal: Auto Version Bump / Version Bump (push) Successful in 10s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Universal: PR Check / Validate PR (pull_request) Failing after 23s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details The SHA-256 checksum was computed before the MokoRestore wrap step, then the archive was replaced with the wrapped version without recomputing the hash. This left the checksum column empty or stale for MokoRestore-wrapped backups.	2026-06-14 15:07:18 -05:00
gitea-actions[bot]	0b7c61ce17	chore(version): pre-release bump to 01.14.00-rc [skip ci]	2026-06-14 19:43:46 +00:00
gitea-actions[bot]	44b82da2cf	chore(version): pre-release bump to 01.13.01-dev [skip ci]	2026-06-14 19:43:20 +00:00
Jonathan Miller	2f490c3208	feat: sanitize configuration.php in backups Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 2s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 4s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 5s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 5s Details Universal: PR Check / Validate PR (pull_request) Failing after 7s Details Universal: Auto Version Bump / Version Bump (push) Successful in 12s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 8s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Strip sensitive credentials from configuration.php before adding it to the backup archive. Replaced fields use [SANITIZED:field] placeholders: - Database: host, user, password, db - Security: secret - SMTP: smtpuser, smtppass, smtphost - Proxy: proxy_user, proxy_pass - Redis: redis_server_auth, session_redis_server_auth - DB TLS: dbsslkey, dbsslcert, dbsslca Non-sensitive fields (sitename, debug, cache, SEF, paths, etc.) are preserved as-is for inspection and partial restores. MokoRestore detects sanitized placeholders and leaves those form fields blank so the user must enter fresh credentials (like the Joomla installer). In-Joomla restore is unaffected because RestoreEngine preserves the current site's configuration.php. Applied to both BackupEngine (synchronous) and SteppedBackupEngine (AJAX-based) code paths.	2026-06-14 14:42:54 -05:00
gitea-actions[bot]	88b930835a	chore(version): pre-release bump to 01.13.00-rc [skip ci]	2026-06-13 13:03:08 +00:00
gitea-actions[bot]	67f2637319	chore(version): pre-release bump to 01.12.01-dev [skip ci]	2026-06-13 13:02:24 +00:00
Jonathan Miller	e745735ccd	feat: auto-backup before extension update or uninstall Generic: Repo Health / Site Health (push) Has been skipped Details Generic: Repo Health / Access control (push) Successful in 2s Details Universal: PR Check / Branch Policy (pull_request) Successful in 1s Details Generic: Repo Health / Site Health (pull_request) Has been skipped Details Generic: Repo Health / Access control (pull_request) Successful in 1s Details Joomla: Extension CI / Lint & Validate (pull_request) Failing after 5s Details Joomla: Extension CI / Release Readiness Check (pull_request) Failing after 5s Details Universal: Secret Scanning / Gitleaks Secret Scan (pull_request) Successful in 5s Details Universal: PR Check / Validate PR (pull_request) Failing after 8s Details Universal: Auto Version Bump / Version Bump (push) Successful in 9s Details Universal: Pre-Release / Build Pre-Release (${{ inputs.stability \|\| github.ref_name }}) (push) Successful in 6s Details Generic: Repo Health / Scripts governance (push) Has been cancelled Details Generic: Repo Health / Repository health (push) Has been cancelled Details Generic: Repo Health / Report Issues (push) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.2) (pull_request) Has been cancelled Details Joomla: Extension CI / Tests (PHP 8.3) (pull_request) Has been cancelled Details Joomla: Extension CI / PHPStan Analysis (pull_request) Has been cancelled Details Universal: PR Check / Build RC Package (pull_request) Has been cancelled Details Universal: PR Check / Report Issues (pull_request) Has been cancelled Details Generic: Repo Health / Scripts governance (pull_request) Has been cancelled Details Generic: Repo Health / Repository health (pull_request) Has been cancelled Details Generic: Repo Health / Report Issues (pull_request) Has been cancelled Details Add two new options in component config (Pre-action Backups fieldset): - Backup Before Extension Update (default: No) - Backup Before Extension Uninstall (default: No) System plugin subscribes to onExtensionBeforeUpdate and onExtensionBeforeUninstall events. When enabled, runs a full backup using the default profile before any extension is updated or uninstalled. Throttled to once per 10 minutes via session flag to prevent duplicate backups during batch operations.	2026-06-13 08:02:07 -05:00
gitea-actions[bot]	330e7d96fe	chore(version): pre-release bump to 01.12.00-rc [skip ci]	2026-06-13 12:43:23 +00:00

1 2 3 4 5 ...

263 Commits