MokoConsulting/MokoSuiteCross
1
0
Fork 0
Code Issues 2 Pull Requests Releases 5 Wiki Activity

fix: analytics MVC model, PreviewController IDOR, README/CHANGELOG updates #202

Merged
jmiller merged 3 commits from fix/changelog-security-readme into dev 2026-06-28 17:05:05 +00:00
Conversation 0 Commits 3 Files Changed 60
+303 -147
jmiller commented 2026-06-28 17:04:21 +00:00
Owner
Copy Link
Copy Source

Summary\n\n- Extract AnalyticsModel from controller for proper Joomla MVC separation (queries existing posts table for heatmap/best-times)\n- Fix PreviewController IDOR: validate service ownership before returning preview\n- Add analytics + calendar to admin submenu and dashboard quick links\n- Update README and CHANGELOG with all new v01.08.x features\n\n## Test plan\n\n- [ ] Analytics view loads at index.php?option=com_mokosuitecross&view=analytics\n- [ ] Heatmap renders 7x24 grid with tooltips\n- [ ] Service and period filters work\n- [ ] PreviewController rejects unauthorized service IDs\n\nCloses #165

## Summary\n\n- Extract AnalyticsModel from controller for proper Joomla MVC separation (queries existing posts table for heatmap/best-times)\n- Fix PreviewController IDOR: validate service ownership before returning preview\n- Add analytics + calendar to admin submenu and dashboard quick links\n- Update README and CHANGELOG with all new v01.08.x features\n\n## Test plan\n\n- [ ] Analytics view loads at index.php?option=com_mokosuitecross&view=analytics\n- [ ] Heatmap renders 7x24 grid with tooltips\n- [ ] Service and period filters work\n- [ ] PreviewController rejects unauthorized service IDs\n\nCloses #165
jmiller added 2 commits 2026-06-28 17:04:22 +00:00
fix: PreviewController IDOR + update README and CHANGELOG 3d567353c9 
- Add ACL check and parameterized query to PreviewController
- Filter articles by user view access levels
- Update README with new features (AI captions, social preview, OG image
  gen, link shortening, post calendar, analytics)
- Update Nostr status from stub to implemented
- Add security fix entry to CHANGELOG

Authored-by: Moko Consulting
fix: add missing calendar/analytics submenu entries and language strings
Universal: PR Check / Branch Policy (pull_request) Successful in 2s
Details
Universal: Pre-Release / Build Pre-Release (${{ inputs.stability || github.ref_name }}) (push) Successful in 20s
Details
Universal: PR Check / Validate PR (pull_request) Failing after 8s
Details
Universal: PR Check / Secret Scan (pull_request) Successful in 10s
Details
Joomla: Metadata Validation / Validate Joomla Metadata (pull_request) Successful in 46s
Details
Universal: PR Check / Build RC Package (pull_request) Has been cancelled
Details
Universal: PR Check / Report Issues (pull_request) Has been cancelled
Details
dd4de77202 
- Add 'calendar' and 'analytics' entries to MokoSuiteCrossHelper submenu
- Add COM_MOKOSUITECROSS_CALENDAR_PREV_MONTH/NEXT_MONTH/TODAY strings
- Add COM_MOKOSUITECROSS_SUBMENU_CALENDAR string

Authored-by: Moko Consulting
jmiller added 1 commit 2026-06-28 17:04:25 +00:00
chore(version): pre-release bump to 01.08.57-dev [skip ci]
RC Revert / Rename rc/ back to dev/ (pull_request) Has been skipped
Details
Branch Cleanup / Delete merged branch (pull_request) Failing after 2s
Details
ee581032c3
jmiller merged commit 5621542141 into dev 2026-06-28 17:05:05 +00:00
jmiller deleted branch fix/changelog-security-readme 2026-06-28 17:05:06 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
No items
No labels
Priority -
Type -
Milestone
No items
No Milestone
Assignees
Clear assignees
jmiller (Jonathan Miller)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MokoConsulting/MokoSuiteCross#202
Delete Branch "fix/changelog-security-readme"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?