Merge pull request #12 from Countly/next

frknbasaran · web-flow · commit 6aadb4c6ec5b · 2019-07-09T15:03:22.000+03:00
diff --git a/bin/commands/countly.sh b/bin/commands/countly.sh
@@ -17,29 +17,29 @@ export LANGUAGE=C ; export LC_ALL=C ;
 #stub commands to be overwritten
 countly_start (){
     echo "start stub";
-} 
+}
 
 countly_stop (){
     echo "stop stub";
-} 
+}
 
 countly_restart (){
     echo "restart stub";
 }
 
 countly_status (){
     echo "status stub";
-} 
+}
 
 countly_root (){
     if [[ $EUID -ne 0 ]]; then
-        echo "This command must be run as root" 
+        echo "This command must be run as root"
         exit 1
     fi
 }
 
 #real commands, can also be overwritten
-countly_upgrade (){ 
+countly_upgrade (){
     countly_root ;
     (cd $DIR/../.. ;
     echo "Installing dependencies...";
@@ -104,7 +104,7 @@ countly_backupfiles (){
     if [ -d $DIR/../../frontend/express/certificates ]; then
         cp -a $DIR/../../frontend/express/certificates/. files/frontend/express/certificates/
     fi
-    
+
     for d in $DIR/../../plugins/*; do
         PLUGIN=$(basename $d);
         if [ -f $d/config.js ]; then
@@ -164,12 +164,12 @@ countly_save (){
     then
         mkdir -p $2
     fi
-    
+
     if [ -f $1 ]
     then
         match=false
         files=$(ls $2 | wc -l)
-        
+
         if [ $files -gt 0 ]
         then
             for d in $2/*; do
@@ -193,7 +193,7 @@ countly_save (){
         echo "The file does not exist"
     fi
 }
-        
+
 countly_restorefiles (){
     if [ $# -eq 0 ]
     then
@@ -234,7 +234,7 @@ countly_restorefiles (){
         if [ -d files/frontend/express/certificates ]; then
             cp -a files/frontend/express/certificates/. $DIR/../../frontend/express/certificates/
         fi
-        
+
         for d in files/plugins/*; do
             PLUGIN=$(basename $d);
             if [ -f $d/config.js ]; then
diff --git a/bin/commands/scripts/add_user.sh b/bin/commands/scripts/add_user.sh
@@ -2,16 +2,33 @@
 DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 usage (){
     echo "";
-    echo "countly add_user <username> <password>";
-} 
+    echo "countly add_user <username>";
+}
 
-if [ -z "$1" ] && [ -z "$2" ]
+if [ -z "$1" ]
 then
     usage ;
 else
     if [[ $EUID -ne 0 ]]; then
-        echo "This command must be run as root" 
+        echo "This command must be run as root"
         exit 1
     fi
-    nodejs $DIR/user_mgmt.js register $1 $2 ;
+
+    if [ -z "$2" ]
+    then
+        read -sp "Enter password: " password
+        echo ""
+        read -sp "Enter password again: " password_confirmation
+        echo ""
+
+        if [ "$password" != "$password_confirmation" ]
+        then
+            echo "Passwords doesn't match!"
+            exit 1
+        fi
+    else
+        password=$2
+    fi
+
+    nodejs $DIR/user_mgmt.js register $1 $password ;
 fi
diff --git a/bin/commands/scripts/decrypt.sh b/bin/commands/scripts/decrypt.sh
@@ -4,11 +4,14 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 usage (){
     echo "";
     echo "countly decrypt usage:";
-    echo "    countly decrypt text # decrypts text with configuration provided in api/config.js encryption object";
-} 
+    echo "    countly decrypt # decrypts text with configuration provided in api/config.js encryption object";
+}
+
 if [ -z "$1" ]
 then
-    usage ;
+    read -p "Text to decrypt: " text
 else
-    nodejs $DIR/decrypt.js $1 ;
-fi
+    text=$1
+fi
+
+nodejs $DIR/decrypt.js $text ;
diff --git a/bin/commands/scripts/encrypt.sh b/bin/commands/scripts/encrypt.sh
@@ -4,11 +4,14 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 usage (){
     echo "";
     echo "countly encrypt usage:";
-    echo "    countly encrypt text # encrypts text with configuration provided in api/config.js encryption object";
-} 
+    echo "    countly encrypt # encrypts text with configuration provided in api/config.js encryption object";
+}
+
 if [ -z "$1" ]
 then
-    usage ;
+    read -p "Text to encrypt: " text
 else
-    nodejs $DIR/encrypt.js $1 ;
-fi
+    text=$1
+fi
+
+nodejs $DIR/encrypt.js $text ;
diff --git a/bin/commands/scripts/mongo.sh b/bin/commands/scripts/mongo.sh
@@ -5,7 +5,7 @@ usage (){
     echo "";
     echo "countly mongo:";
     echo "    countly mongo <dbname> # outputs mongo cmd params to connect to specified countly db";
-} 
+}
 if [ -z "$1" ]
 then
     nodejs $DIR/db.conf.js ;
diff --git a/bin/commands/scripts/remove_user.sh b/bin/commands/scripts/remove_user.sh
@@ -2,16 +2,25 @@
 DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 usage (){
     echo "";
-    echo "countly remove_user <username> <password>";
-} 
+    echo "countly remove_user <username>";
+}
 
 if [ -z "$1" ] && [ -z "$2" ]
 then
     usage ;
 else
     if [[ $EUID -ne 0 ]]; then
-        echo "This command must be run as root" 
+        echo "This command must be run as root"
         exit 1
     fi
-    nodejs $DIR/user_mgmt.js delete $1 $2 ;
+
+    if [ -z "$2" ]
+    then
+        read -sp "Enter password: " password
+        echo ""
+    else
+        password=$2
+    fi
+
+    nodejs $DIR/user_mgmt.js delete $1 $password ;
 fi
diff --git a/frontend/express/app.js b/frontend/express/app.js
@@ -3,6 +3,7 @@ process.title = "countly: dashboard node " + process.argv[1];
 
 var versionInfo = require('./version.info'),
     COUNTLY_VERSION = versionInfo.version,
+    COUNTLY_COMPANY = versionInfo.company || '',
     COUNTLY_TYPE = versionInfo.type,
     COUNTLY_PAGE = versionInfo.page = (!versionInfo.title) ? "http://count.ly" : null,
     COUNTLY_NAME = versionInfo.title = versionInfo.title || "Countly",
@@ -573,6 +574,7 @@ app.use(function(req, res, next) {
     req.template.css = "";
     req.template.form = "";
     req.countly = {
+        company: COUNTLY_COMPANY,
         version: COUNTLY_VERSION,
         type: COUNTLY_TYPE,
         page: COUNTLY_PAGE,
@@ -785,6 +787,7 @@ function renderDashboard(req, res, next, member, adminOfApps, userOfApps, countl
         _.extend(req.config, configs);
         var countlyGlobal = {
             countlyTitle: req.countly.title,
+            company: req.countly.company,
             languages: languages,
             countlyVersion: req.countly.version,
             countlyFavicon: req.countly.favicon,
diff --git a/frontend/express/public/javascripts/countly/countly.template.js b/frontend/express/public/javascripts/countly/countly.template.js
@@ -1235,6 +1235,12 @@ var AppRouter = Backbone.Router.extend({
             path: [countlyGlobal.cdn + 'localization/min/'],
             mode: 'map',
             callback: function() {
+                for (var key in jQuery.i18n.map) {
+                    if (countlyGlobal.company) {
+                        jQuery.i18n.map[key] = jQuery.i18n.map[key].replace(new RegExp("Countly", 'ig'), countlyGlobal.company);
+                    }
+                    jQuery.i18n.map[key] = countlyCommon.encodeSomeHtml(jQuery.i18n.map[key]);
+                }
                 self.origLang = JSON.stringify(jQuery.i18n.map);
             }
         });
@@ -1537,6 +1543,13 @@ var AppRouter = Backbone.Router.extend({
                     path: [countlyGlobal.cdn + 'localization/min/'],
                     mode: 'map',
                     callback: function() {
+                        for (var key in jQuery.i18n.map) {
+                            if (countlyGlobal.company) {
+                                jQuery.i18n.map[key] = jQuery.i18n.map[key].replace(new RegExp("Countly", 'ig'), countlyGlobal.company);
+                            }
+                            jQuery.i18n.map[key] = countlyCommon.encodeSomeHtml(jQuery.i18n.map[key]);
+                        }
+
                         self.origLang = JSON.stringify(jQuery.i18n.map);
                         $.when(countlyLocation.changeLanguage()).then(function() {
                             self.activeView.render();
diff --git a/frontend/express/public/javascripts/pre-login.js b/frontend/express/public/javascripts/pre-login.js
@@ -1,4 +1,4 @@
-/*global store, jQuery, $, document, countlyGlobal*/
+/*global store, jQuery, $, document, countlyGlobal, filterXSS */
 
 /**
  * Javascript file loaded on pre login pages with some handy global functions
@@ -19,6 +19,36 @@ function showMessage(key, prop) {
     $("#message").html(jQuery.i18n.prop(key, prop));
 }
 
+var htmlEncodeOptions = {
+    "whiteList": {"a": ["href", "class", "target"], "b": [], "br": [], "strong": [], "p": [], "span": ["class"], "div": ["class"]},
+    onTagAttr: function(tag, name, value/* isWhiteAttr*/) {
+        if (tag === "a") {
+            if (name === "target" && !(value === "_blank" || value === "_self" || value === "_top" || value === "_parent")) {
+                return "target='_blank'"; //set _blank if incorrect value
+            }
+
+            if (name === "href" && !(value.substr(0, 1) === "#" || value.substr(0, 1) === "/" || value.substr(0, 4) === "http")) {
+                return "href='#'"; //set # if incorrect value
+            }
+        }
+    }
+};
+
+/**
+* Encode some tags, leaving those set in whitelist as they are.
+* @param {string} html - value to encode
+* @param {object} options for encoding. Optional. If not passed, using default in common.
+* @returns {string} encode string
+*/
+function encodeSomeHtml(html, options) {
+    if (options) {
+        return filterXSS(html, options);
+    }
+    else {
+        return filterXSS(html, htmlEncodeOptions);
+    }
+}
+
 /**
 * By default only pre-login property file localization is available on prelogin pages, but you can additionally load other localization files, like for example needed for your plugin, using this function
 * @param {string} name - base name of the property file without the locale/language. Should be the same name as your plugin
@@ -39,8 +69,12 @@ function addLocalization(name, path, callback) {
         language: lang,
         callback: function() {
             $.each(jQuery.i18n.map, function(key, value) {
-                langs[key] = value;
+                if (countlyGlobal.company) {
+                    langs[key] = value.replace(new RegExp("Countly", 'ig'), countlyGlobal.company);
+                }
+                langs[key] = encodeSomeHtml(value);
             });
+
             jQuery.i18n.map = langs;
 
             $("[data-localize]").each(function() {
@@ -82,10 +116,12 @@ $(document).ready(function() {
         mode: 'map',
         language: lang,
         callback: function() {
-            // Localization test
-            //$.each(jQuery.i18n.map, function(key, value) {
-            //	jQuery.i18n.map[key] = key;
-            //});
+            $.each(jQuery.i18n.map, function(key, value) {
+                if (countlyGlobal.company) {
+                    jQuery.i18n.map[key] = value.replace(new RegExp("Countly", 'ig'), countlyGlobal.company);
+                }
+                jQuery.i18n.map[key] = encodeSomeHtml(value);
+            });
 
             $("[data-localize]").each(function() {
                 var elem = $(this),
diff --git a/frontend/express/public/stylesheets/main.css b/frontend/express/public/stylesheets/main.css
@@ -2663,6 +2663,8 @@ h4 + .mgmt-plugins-row {
 
 #view-app .cly-button-menu {
     max-width: 320px;
+    top: 50px;
+    right: 15px;
 }
 
 #view-app .cly-button-menu .item {
diff --git a/frontend/express/views/forgot.html b/frontend/express/views/forgot.html
@@ -79,6 +79,7 @@
 	<script language="javascript" type="text/javascript" src="javascripts/dom/jquery.noisy.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/store+json2.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/jquery.i18n.properties-min-1.0.9.js"></script>
+	<script language="javascript" type="text/javascript" src="javascripts/utils/jquery.xss.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/countly/countly.helpers.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/pre-login.js"></script>
 	<script>
diff --git a/frontend/express/views/login.html b/frontend/express/views/login.html
@@ -86,6 +86,7 @@
 	<script language="javascript" type="text/javascript" src="javascripts/dom/jquery.noisy.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/store+json2.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/jquery.i18n.properties-min-1.0.9.js"></script>
+	<script language="javascript" type="text/javascript" src="javascripts/utils/jquery.xss.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/pre-login.js"></script>
 	<script>
         var countlyTitle = "<%- countlyTitle %>";
diff --git a/frontend/express/views/reset.html b/frontend/express/views/reset.html
@@ -83,6 +83,7 @@
 	<script language="javascript" type="text/javascript" src="../javascripts/dom/jquery.noisy.min.js"></script>
 	<script language="javascript" type="text/javascript" src="../javascripts/utils/store+json2.min.js"></script>
 	<script language="javascript" type="text/javascript" src="../javascripts/utils/jquery.i18n.properties-min-1.0.9.js"></script>
+	<script language="javascript" type="text/javascript" src="../javascripts/utils/jquery.xss.js"></script>
 	<script language="javascript" type="text/javascript" src="../javascripts/pre-login.js"></script>
 	<script>
         var countlyTitle = "<%- countlyTitle %>";
diff --git a/frontend/express/views/setup.html b/frontend/express/views/setup.html
@@ -81,6 +81,7 @@
 	<script language="javascript" type="text/javascript" src="javascripts/dom/jquery.noisy.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/store+json2.min.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/utils/jquery.i18n.properties-min-1.0.9.js"></script>
+    <script language="javascript" type="text/javascript" src="javascripts/utils/jquery.xss.js"></script>
 	<script language="javascript" type="text/javascript" src="javascripts/pre-login.js"></script>
 	<script>
         var countlyTitle = "<%- countlyTitle %>";
diff --git a/plugins/crashes/frontend/public/javascripts/countly.views.js b/plugins/crashes/frontend/public/javascripts/countly.views.js
@@ -1996,7 +1996,12 @@ app.route('/crashes/:group', 'crashgroup', function(group) {
 app.addPageScript("/drill#", function() {
     var drillClone;
     var self = app.drillView;
-    if (countlyGlobal.record_crashes) {
+    var record_crashes = countlyGlobal.record_crashes;
+    if (countlyGlobal.apps && countlyGlobal.apps[countlyCommon.ACTIVE_APP_ID] && countlyGlobal.apps[countlyCommon.ACTIVE_APP_ID].plugins && countlyGlobal.apps[countlyCommon.ACTIVE_APP_ID].plugins.drill && typeof countlyGlobal.apps[countlyCommon.ACTIVE_APP_ID].plugins.drill.record_crashes !== "undefined") {
+        record_crashes = countlyGlobal.apps[countlyCommon.ACTIVE_APP_ID].plugins.drill.record_crashes;
+    }
+
+    if (record_crashes) {
         $("#drill-types").append('<div id="drill-type-crashes" class="item"><div class="inner"><span class="icon crashes"><i class="material-icons">warning</i></span><span class="text">' + jQuery.i18n.map["crashes.title"] + '</span></div></div>');
         $("#drill-type-crashes").on("click", function() {
             if ($(this).hasClass("active")) {
diff --git a/plugins/plugins/frontend/public/javascripts/countly.views.js b/plugins/plugins/frontend/public/javascripts/countly.views.js
diff --git a/plugins/plugins/frontend/public/localization/plugins.properties b/plugins/plugins/frontend/public/localization/plugins.properties
diff --git a/plugins/views/frontend/public/javascripts/countly.views.js b/plugins/views/frontend/public/javascripts/countly.views.js

Original file line number	Diff line number	Diff line change
`@@ -2663,6 +2663,8 @@ h4 + .mgmt-plugins-row {`
`2663`	`2663`
`2664`	`2664`	`#view-app .cly-button-menu {`
`2665`	`2665`	`max-width: 320px;`
	`2666`	`+ top: 50px;`
	`2667`	`+ right: 15px;`
`2666`	`2668`	`}`
`2667`	`2669`
`2668`	`2670`	`#view-app .cly-button-menu .item {`